last executing test programs:

29m50.150811519s ago: executing program 2 (id=3668):
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000002240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r1, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e22}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2000}, 0x1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0)
read$FUSE(r2, &(0x7f0000000200)={0x2020}, 0x2020)
mount(&(0x7f0000000300), &(0x7f0000000080)='.\x00', &(0x7f00000000c0)='tmpfs\x00', 0xa145cf, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
mq_timedsend(0xffffffffffffffff, 0x0, 0xff7f, 0x0, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
listen(0xffffffffffffffff, 0x5)
socket$vsock_stream(0x28, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='rdma.current\x00', 0x275a, 0x0)
epoll_wait(r5, &(0x7f00000000c0), 0x0, 0x7)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f00000006c0)={{{@in6=@mcast2, @in=@multicast1}}, {{@in=@local}, 0x0, @in=@initdev}}, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000180)={0x53, 0xfffffffffffffffb, 0x0, 0x0, @buffer={0x0, 0x56, &(0x7f0000000240)=""/86}, 0x0, 0x0, 0xfffffffb, 0x10039, 0x0, 0x0})
lseek(r3, 0xfff, 0x0)

29m49.832615509s ago: executing program 2 (id=3672):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$kcm(0x11, 0x3, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000004c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70a926, 0x25dfdc01, {0x0, 0x0, 0x0, r5, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_plug={{0x9}, {0xc, 0x2, {0x1, 0x3}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0xa888, r6, 0x3a}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000840)='\'', 0x1}], 0x1}, 0x90) (fail_nth: 2)

29m49.571264487s ago: executing program 2 (id=3676):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$kcm(0x11, 0x3, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000004c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70a926, 0x25dfdc01, {0x0, 0x0, 0x0, r5, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_plug={{0x9}, {0xc, 0x2, {0x1, 0x3}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0xa888, r6, 0x3a}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000840)='\'', 0x1}], 0x1}, 0x90)

29m49.371910668s ago: executing program 2 (id=3681):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
umount2(&(0x7f0000000100)='./file0\x00', 0x8)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000000c0)={0x6c, 0x2, 0x6, 0x101, 0x0, 0x0, {0x4, 0x0, 0xffff}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4044081}, 0x0)
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001300)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_fw={{0x7}, {0xe58, 0x2, [@TCA_FW_ACT={0xe54, 0x4, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x4, 0x1ff, 0x20000001, 0xc, 0x6}, 0x7f, 0x5}, [{0x2a9, 0x6, 0x1, 0x4, 0x5}, {0x4a7, 0x1ff, 0x4, 0x1, 0x7, 0xdd}, {0x9, 0x7, 0x3ff, 0x7, 0xfffffffd, 0x4}, {0x8, 0x0, 0x6, 0x2, 0x7fff, 0x3}, {0x4f9a, 0x5, 0x1, 0x1, 0x2, 0x8}, {0x0, 0x5, 0x1437, 0x0, 0xee57, 0x9}, {0x77d, 0x8, 0x9, 0x6, 0x8, 0x1}, {0x5, 0x6, 0x0, 0x2, 0x1, 0x7fff}, {0x0, 0x5, 0x4235da1, 0x9, 0x7ec9, 0x8}, {0x10000, 0x2, 0x0, 0x9, 0x3, 0x9}, {0xd, 0xffff0001, 0x0, 0x6, 0x81, 0x4}, {0xfffffffc, 0x4, 0xffff, 0x8, 0xffffffff, 0xfffffffa}, {0x5, 0xd29, 0x101, 0x3, 0x7, 0xc}, {0x0, 0xfffffff7, 0x1, 0x72b2, 0xc874, 0x3}, {0x3, 0xf, 0x5, 0x1, 0x1ff, 0x40}, {0x9b9b, 0xffff, 0x6, 0xb, 0xb3d, 0x812}, {0x5, 0x7, 0x2, 0x5, 0x5, 0x4}, {0x6, 0x0, 0x9, 0x2, 0x82, 0x2}, {0xfffffff7, 0x6, 0x2, 0x9, 0xff}, {0x4, 0x1, 0x371, 0x8, 0xfffffffb, 0xeac}, {0x9, 0x2, 0xd77, 0x8, 0x113, 0x8d3f}, {0x10000, 0xffffffff, 0x4, 0x92a4, 0x9, 0x10}, {0x1a4a13f0, 0x9, 0xe, 0x3, 0xad47, 0xf83b}, {0x7, 0x5, 0x7, 0xfff, 0x9}, {0x100, 0x4, 0x200, 0x9, 0x1, 0x9df}, {0x9, 0x1, 0x65, 0x9, 0x7}, {0x401, 0xffff, 0x9, 0x44, 0x9, 0x1}, {0x6, 0x10, 0xf, 0x80002, 0x6, 0x3}, {0xf23, 0x3ff, 0x0, 0x9, 0xffffffff}, {0x80000000, 0x6, 0x0, 0x6, 0x6, 0xd}, {0x0, 0x9, 0xd, 0x8000, 0x3, 0x2}, {0x800, 0x9, 0x6, 0x3, 0x7, 0x8}, {0x7, 0x8, 0x7358, 0x7, 0x8, 0xffffffff}, {0x4d9, 0x45db8bad, 0xb3dd, 0x1, 0xbc, 0x7ff}, {0x7, 0x1, 0x3, 0x3, 0x3, 0x7a}, {0x5a1b, 0x1, 0x1, 0x7ff, 0x3, 0x1}, {0x3, 0x7, 0x4, 0x4, 0x1c716ddc, 0x2}, {0xffffffa5, 0x7, 0x0, 0x10, 0x3, 0x5}, {0x8219, 0x0, 0x2, 0x6, 0x3, 0x2}, {0x62, 0xf4, 0x5, 0x4, 0x4, 0x6f}, {0x5, 0x4, 0x53, 0x8, 0xc0000000, 0x7}, {0x2, 0x5, 0x2, 0xffff, 0x2, 0x2}, {0x80000001, 0x94c, 0x6, 0xfffffe00, 0x5, 0x7b27}, {0x2, 0x2, 0x1000, 0x9, 0x9}, {0xe, 0x0, 0x9, 0x4, 0xe, 0x9}, {0xdf, 0x7fff, 0x8000, 0x81, 0xff, 0xfffffff8}, {0x2, 0x10000, 0x9, 0x2, 0x2}, {0x2, 0x6, 0x9, 0x1, 0x2, 0x40}, {0xfffffe00, 0x3, 0x74d2, 0x3, 0x80000001, 0x6}, {0xe3f6, 0x8, 0xfffffff7, 0x1, 0x6, 0xc}, {0x8, 0x9, 0x8e, 0x33, 0x10001, 0x22cb}, {0x2, 0x31f1, 0x7, 0x5, 0x7fffffff, 0x1}, {0x9, 0x10001, 0x4, 0x8, 0x7, 0x9}, {0xb, 0x1ff, 0xb, 0x3, 0x5, 0x80000001}, {0x7, 0x7, 0x69b, 0x3, 0x8, 0x339}, {0xee, 0x80000000, 0xfba6, 0x101, 0x5, 0xb}, {0x3, 0x458, 0x6, 0xf, 0x7, 0x8000}, {0x9, 0xfffffffa, 0x1000, 0x8, 0xb, 0xce5a}, {0x400, 0xffff, 0x3, 0xbcbb, 0x7, 0xb}, {0x0, 0xe000, 0xb, 0x8, 0x2, 0x1}, {0x1, 0x0, 0x2, 0x9, 0x0, 0x401}, {0xd, 0x1, 0x2, 0xf, 0x81, 0x5}, {0x6, 0xfff, 0x3, 0x5, 0x3ff, 0x3649}, {0x800007, 0x2, 0x80000000, 0x9, 0x1630, 0x9e73}, {0xb, 0x1b6, 0xc4, 0x3, 0x4, 0xca}, {0x4, 0x5, 0x401, 0x4, 0xfffffff8, 0x40}, {0x8, 0x4594, 0x8, 0x4, 0x0, 0xffff}, {0x100, 0xfffffffb, 0x6, 0x0, 0x9, 0x6}, {0x3, 0xf7b, 0x3, 0x8, 0x6, 0x3}, {0x1, 0x5, 0x3, 0xab9, 0x7, 0x9}, {0xffffffff, 0x4, 0xfc, 0x7, 0x6, 0x10}, {0xf, 0xfffffffe, 0xa000000, 0x1, 0x101, 0x1f3}, {0x7ff, 0x9, 0xfffff001, 0x8001, 0x2, 0x2}, {0x4, 0x10001, 0x6, 0x1, 0x9, 0xfffffff8}, {0x3, 0xa, 0x7, 0x9, 0x10, 0x1}, {0x5, 0x100, 0xffffffff, 0x963, 0x2, 0xc}, {0x6, 0x50, 0x6, 0xa, 0x0, 0x3}, {0x649, 0x2, 0x80000001, 0x8, 0x0, 0x1}, {0x8, 0xfff, 0x6, 0x80000001, 0x7fffffff, 0x3}, {0xa3, 0x81, 0x9fcb, 0x1, 0x8, 0x7fff}, {0x0, 0x2, 0x750c, 0x0, 0x1, 0xfffffffc}, {0x7ff, 0x7, 0x10000, 0x94, 0x4, 0x40000088}, {0x5, 0x10001, 0x7fff, 0x81, 0xfffffff4, 0x7}, {0x5, 0x7, 0x5, 0x2, 0x1ff, 0x80000001}, {0x3, 0x0, 0x3ff, 0x7fffffff, 0x9, 0x7}, {0xdac, 0x0, 0x4, 0x80000001, 0x3, 0x8}, {0x7, 0xffffffff, 0x6, 0x8, 0x80000001, 0xa}, {0x2, 0x4, 0x4, 0x401, 0xe32}, {0x5, 0x7, 0x6, 0x8, 0x2, 0x2}, {0x10001, 0x5, 0x3, 0x4, 0x9, 0xfffffffa}, {0x2, 0x3, 0x3, 0x6, 0x800, 0x7}, {0x0, 0x0, 0x3, 0x2, 0x1, 0x3}, {0x3, 0x3, 0xffffffff, 0x3, 0x800, 0xde}, {0x5, 0x66, 0x41d0, 0x8001, 0xc851, 0x3}, {0x6, 0x731, 0xfffffffc, 0x4, 0x3, 0x92c}, {0x4, 0xffff, 0x0, 0x101, 0x4, 0x1}, {0x9, 0xf667, 0x5, 0x0, 0x9, 0x4}, {0x1731, 0xa, 0x9960, 0x9, 0x1, 0x7}, {0xd, 0xfffffffa, 0x1, 0x3, 0x40, 0x2}, {0x1, 0x4, 0x80000000, 0x80000001, 0x2, 0x6}, {0x7, 0x2, 0xffffff3a, 0x4cf, 0x800, 0x6}, {0x8000, 0x6, 0x1, 0x0, 0x100, 0x80000000}, {0x3b, 0x5562334a, 0x2, 0x2, 0x6, 0x81}, {0x5a, 0x96, 0x81, 0x0, 0x101, 0x7}, {0x4, 0xff, 0x9, 0x0, 0x81, 0x29}, {0xa, 0x5, 0x0, 0x9, 0xffffffff, 0xfb4}, {0x80000000, 0x2, 0xffff, 0x39b4, 0x1, 0x800}, {0x61, 0x2d, 0x6, 0x1fe4c5d2, 0x1, 0x3}, {0x1, 0xe2, 0x7ff, 0x7ff, 0x7f, 0x29d0}, {0x0, 0x4, 0xc, 0xd594, 0x9, 0x7}, {0x8, 0x0, 0x7, 0x9, 0x7, 0x9}, {0x80e9, 0x7, 0x9, 0x1, 0x1, 0x18000}, {0x400, 0x9, 0x0, 0x6f}, {0x2, 0x1, 0x6, 0x3, 0xfffff71b, 0xce}, {0x1, 0xff, 0xb, 0x4, 0x800, 0x1}, {0x6, 0x2, 0x8, 0xfff, 0x4, 0x7fff}, {0x0, 0x0, 0x7f, 0x401, 0x7, 0x7fff}, {0x7, 0xb, 0x10000, 0x1, 0x8000, 0xfffff830}, {0x3, 0x4, 0x2, 0x1, 0x3, 0x2b4}, {0x3cd2dbce, 0x929a, 0x9dc, 0x0, 0x8, 0xfffffffc}, {0x6, 0x9, 0xe61, 0xc5c3, 0x3, 0x1}, {0x4, 0x2, 0x197a, 0x7, 0x1, 0x8}, {0xff, 0x2c, 0xfffffc01, 0x1, 0x3, 0x100}, {0x0, 0x6, 0x10001, 0x40ce7, 0xec, 0x1000}, {0xffffffff, 0x6, 0xffffffff, 0x9, 0x2, 0x6}, {0xfa, 0x9, 0xbf1d, 0x9, 0x80, 0x5}, {0x1c91, 0x5f27, 0x1, 0x0, 0x6, 0xcf}, {0x37, 0x622, 0x2, 0x1, 0x7, 0x2}], [{0x5}, {0x4}, {}, {0x2}, {0x2}, {0x0, 0x1}, {0x3}, {0x4, 0x1}, {}, {0x1}, {0x1}, {0x2}, {0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x3}, {0x1}, {0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1}, {}, {0x2, 0x1}, {0x2, 0x1}, {0x2}, {0x2, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {}, {0x5, 0x1}, {0x3}, {0x2}, {0x4}, {0x5}, {0x3, 0x1}, {0x2}, {0x1, 0x1}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x4, 0x1}, {0x2}, {0x1, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0xed3229170eca159}, {0x2, 0x1}, {0x1}, {0x3}, {0x3, 0x1}, {}, {0x2, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x3}, {0x4}, {0x3, 0x1}, {0x1}, {0x3}, {0x1, 0x1}, {0x2}, {0x5, 0x1}, {0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x4}, {0x0, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x1, 0x1}, {0x4}, {0x4}, {0x5}, {0x54e1b160e6ec45e8, 0x1}, {0x1}, {0x2}, {0x3, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {}, {0x4, 0x1}, {0x4, 0x1}, {0x5}, {0x0, 0x1}, {0x3}, {0x0, 0x1}, {}, {}, {0x2}, {0x5, 0x1}, {0x4}, {0x2}, {0x9baeccaf277094c4, 0x1}, {}, {0x2, 0x1}, {}, {}, {0x8f9fc2e2ef57f2f0}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x3}, {0x3}, {0x2, 0x1}, {0x2, 0x1}, {0x1}, {0x1}], 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x81, 0x7d}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x81}, 0x800)
ioctl$SIOCRSGCAUSE(r1, 0x89e0, &(0x7f0000000000))

29m49.312991584s ago: executing program 2 (id=3683):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0)
add_key(0x0, 0x0, &(0x7f0000000080)="f1fe4a3b8809c5", 0x7, 0xfffffffffffffffe)
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x40801, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x8, 0x8a, 0x7fffffffffffe, 0x81, 0x105, 0xfffffffffbfffffd, 0x4002004c4, 0x1003, 0x3, 0x8, 0x10, 0x6, 0x4, 0x0, 0x3], 0x10000, 0x2100})
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 2)

29m48.951899011s ago: executing program 2 (id=3687):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18020000fcffbfff00ea1019000000230b32b65162eb44ff641ca6e6000000d525", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0xe, 0x0, &(0x7f00000003c0)="6f11ba816056a1827a33ae059cf3", 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
add_key$keyring(&(0x7f0000000400), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$l2tp6(0xa, 0x2, 0x73)
ioctl$KDFONTOP_SET(r6, 0x4b72, &(0x7f0000000180)={0x0, 0x1, 0x12, 0x6, 0x200, &(0x7f0000000880)="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"})
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000940)=@newsa={0x134, 0x1a, 0x1, 0xfffffffe, 0x100, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x717, 0x4e23, 0x5, 0xa, 0x0, 0x20, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, {0xfe, 0x1000000000000192, 0x8000000009ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc, 0x4}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffe, 0x3f9}, 0x7e, 0x3505, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x134}}, 0x844)
ioctl$DVB_DVR_DMX_EXPBUF(0xffffffffffffffff, 0xc00c6f3e, &(0x7f00000000c0)={0x80000001, 0x80000})

29m48.796543765s ago: executing program 32 (id=3687):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18020000fcffbfff00ea1019000000230b32b65162eb44ff641ca6e6000000d525", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0xe, 0x0, &(0x7f00000003c0)="6f11ba816056a1827a33ae059cf3", 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
add_key$keyring(&(0x7f0000000400), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$l2tp6(0xa, 0x2, 0x73)
ioctl$KDFONTOP_SET(r6, 0x4b72, &(0x7f0000000180)={0x0, 0x1, 0x12, 0x6, 0x200, &(0x7f0000000880)="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"})
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000940)=@newsa={0x134, 0x1a, 0x1, 0xfffffffe, 0x100, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x717, 0x4e23, 0x5, 0xa, 0x0, 0x20, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, {0xfe, 0x1000000000000192, 0x8000000009ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc, 0x4}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffe, 0x3f9}, 0x7e, 0x3505, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x134}}, 0x844)
ioctl$DVB_DVR_DMX_EXPBUF(0xffffffffffffffff, 0xc00c6f3e, &(0x7f00000000c0)={0x80000001, 0x80000})

14m26.909713756s ago: executing program 1 (id=8130):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000021c0)=ANY=[@ANYBLOB="1c0000004a0001002bbd7000fcdbdf250a008000", @ANYRES32=0x0, @ANYBLOB="06eb2900857041f9e65980b8548b505337b0b9a8e4755020f12708009ea6c33f49e74a859eda955cbf1a941abc1564e14d2ac340494fb85e4778695b562e3eeaa9fb72f51b7ce3f472a9119ad84ef1bdb6242e6b1f2fbf62443718168f69bfeb1f1e68febf8da511bec30f2d1aa16214b75593e34545aa"], 0x1c}, 0x1, 0xba01, 0x0, 0x18014}, 0x4000890)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000002380)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = syz_open_dev$usbmon(&(0x7f0000000000), 0x6, 0x200)
ioctl$MON_IOCX_MFETCH(r5, 0xc00c9207, &(0x7f0000000080)={&(0x7f0000000040)=[0x0], 0x1, 0x7fff})
readv(r5, &(0x7f0000000040), 0x2000000000000213)
syz_open_dev$usbfs(&(0x7f0000000240), 0x10, 0x80100)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000040)=@mangle={'mangle\x00', 0x64, 0x6, 0x4d4, 0x190, 0x190, 0x0, 0x320, 0x320, 0x40c, 0x40c, 0x40c, 0x40c, 0x40c, 0x6, 0x0, {[{{@ipv6={@private0, @private1, [], [], 'team_slave_0\x00', 'veth1_vlan\x00', {}, {}, 0x87}, 0x0, 0xa4, 0xc8, 0x0, {0x0, 0x3a010000}}, @HL={0x24}}, {{@ipv6={@private1, @loopback, [0x0, 0xff], [], 'tunl0\x00', 'sit0\x00'}, 0x0, 0xa4, 0xc8}, @common=@unspec=@STANDARD={0x24, '\x00', 0x0, 0x320}}, {{@ipv6={@private0, @remote, [], [], 'veth0_to_team\x00', 'tunl0\x00', {}, {}, 0x11, 0x1, 0x3, 0x44}, 0x0, 0xa4, 0xc8}, @unspec=@CHECKSUM={0x24}}, {{@ipv6={@local, @private0={0xfc, 0x0, '\x00', 0x1}, [0xff000000, 0xff000000, 0xff], [0xff, 0x0, 0xffffffff, 0xff000000], 'dvmrp0\x00', 'ip6gretap0\x00', {}, {0xff}, 0x3c, 0x6, 0x7, 0x40}, 0x0, 0xa4, 0xc8}, @common=@inet=@SYNPROXY={0x24}}, {{@ipv6={@loopback, @private2, [0x0, 0x0, 0xff000000], [0x0, 0x0, 0x0, 0xff], 'syzkaller1\x00', 'veth0_to_batadv\x00'}, 0x0, 0xa4, 0xec}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, 'vlan0\x00'}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x530)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r1, 0x4)
sendmsg$inet(r3, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
r6 = openat$ocfs2_control(0xffffffffffffff9c, 0x0, 0x102, 0x0)
read$FUSE(r6, &(0x7f0000000040)={0x2020}, 0x2084)
writev(r6, &(0x7f0000002180)=[{&(0x7f0000002080)='T01\n', 0x4}, {&(0x7f00000020c0)="090b51e52598c61daf651a394200", 0xe}], 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000dc0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x45}, 0x48)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvfrom$packet(r6, &(0x7f0000002100)=""/96, 0x60, 0x2020, &(0x7f0000002340)={0x11, 0x2, 0x0, 0x1, 0x4, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x14)
pipe2$watch_queue(&(0x7f00000000c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'})
mount$bind(0x0, 0x0, 0x0, 0xb44cde618d5dd7e6, 0xfffff000)
ioctl$FIGETBSZ(r7, 0x2, &(0x7f0000000180))

14m26.736992027s ago: executing program 1 (id=8131):
r0 = socket(0x10, 0x803, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bind$inet(0xffffffffffffffff, 0x0, 0x0) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r2 = dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x13, r2, 0x5000) (async)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
socket$inet_tcp(0x2, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, 0x0) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000002000)=""/102400, 0x19000) (async)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r0, 0x0, 0x8001) (async)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0) (async)
write$binfmt_elf32(0xffffffffffffffff, 0x0, 0x58) (async)
write$binfmt_aout(r2, 0x0, 0xffffffdb)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) (async)
socket(0x10, 0x803, 0x0)
r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$int_in(r4, 0x5421, &(0x7f00000000c0)=0xb) (async)
listen(r4, 0x1ad72f7)
accept4(r4, 0x0, 0x0, 0x80000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10012, r5, 0x0) (async)
ioctl$TUNSETCARRIER(r5, 0x400454e2, &(0x7f0000000100)) (async)
socket$nl_route(0x10, 0x3, 0x0)

14m26.50025683s ago: executing program 1 (id=8132):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi0\x00', 0x400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r2, 0xc008640a, &(0x7f0000000140))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x4)
r6 = getpid()
r7 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x7, 0x4, 0x100, 0x10004, 0x2c}, 0x50)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r8, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r6}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x30)
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r9, 0x84, 0x6f, &(0x7f0000000000)={<r10=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e21, @local}]}, &(0x7f0000000440)=0xc)
setsockopt$inet_sctp6_SCTP_CONTEXT(r9, 0x84, 0x11, &(0x7f0000000100)={r10, 0xd}, 0x8)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x3, &(0x7f0000000140)=[{0x20, 0x0, 0x4, 0xfffff010}, {0xb1, 0xe, 0x0, 0x46}, {0x6, 0x0, 0x0, 0x6ce3}]}, 0x8)
sendmmsg(r0, &(0x7f0000001c00), 0x400000000000159, 0x40840)

14m22.75568672s ago: executing program 1 (id=8139):
futex(&(0x7f0000000040), 0x6, 0x2, &(0x7f0000000080), 0x0, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x240048d4}, 0x40800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x94, 0x30, 0x1, 0xfffffffc, 0x0, {}, [{0x80, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x10000000, 0x5, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x38, 0x1, 0x0, 0x0, {{0x8}, {0x10, 0x2, 0x0, 0x1, [@TCA_IFE_SMAC={0xa, 0x4, @local}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2}}}}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x20000084}, 0x4050)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x6, &(0x7f0000000380)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$can_bcm(0x1d, 0x2, 0x2)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000000))
readv(r1, &(0x7f0000000040)=[{&(0x7f00000000c0)=""/94, 0x5e}], 0x1)
openat$snapshot(0xffffff9c, 0x0, 0x20900, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x4008890)
lseek(0xffffffffffffffff, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000680)=ANY=[@ANYBLOB="6c000000100001040400"/20, @ANYRES32=0x0, @ANYBLOB="03050000000000004400128009000100766c616e00000000340002800600010003000000280003800c00010006000000080000000c00010004000000000800000c000100060000000000000008000500", @ANYRES32=r3, @ANYBLOB="8355acf0d22d3a5dd86aa75adf25823762be1c586215446242e61a25d386f776e7ea5855350b90f40f09534f7ed1dcda531bd1d6e411aa797e9f77e6ccd944b89bdd3853b24bc65dfee653ed2c470f59f3580dc9788c2840322e03027c6e4d742b27fd731aa248845ebb154e064cc6b9d32c0cd16c863219b01d52fac8221d4a9f05639e2e1eebee3f8743cde613dd2b260617f53f2a3eef"], 0x6c}, 0x1, 0x0, 0x0, 0x20004800}, 0x4000804)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[])
chdir(&(0x7f0000000100)='./file0\x00')
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000200)={'#! ', './file0', [{0x20, '#! '}]}, 0xf)

14m18.360672158s ago: executing program 1 (id=8151):
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x5af, {0xfeffffffffffffff, 0x4, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8000000000000, 0x0, 0x21, 0x7, 0x1, 0x8000, 0x0, 0x0, 0x0, 0x1000003, 0x7d1d}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000", 0xe, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{0x0, 0x0, &(0x7f0000000300)}, 0xfbfffffe}], 0x1, 0x40000002, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40001}, 0xc0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x6}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})
socket$inet6_udp(0xa, 0x2, 0x0)
close(0xffffffffffffffff)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x34)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
socket$kcm(0x29, 0x5, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='debugfs\x00', 0x1214040, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) (fail_nth: 5)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80)
getdents64(r2, &(0x7f0000000400)=""/4096, 0x1000)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$XFS_IOC_FSGROWFSRT(r1, 0x40105870, &(0x7f0000000100)={0xada6, 0xfffffff8})
syz_pidfd_open(r3, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x0, 0x124)

14m16.202361731s ago: executing program 1 (id=8155):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file7\x00', 0x1ac)
rename(&(0x7f0000000100)='./file7/file0\x00', &(0x7f0000000180)='./file0\x00')
set_mempolicy(0x3, &(0x7f0000000000)=0x7, 0x7)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$IMGETCOUNT(r0, 0x80044943, &(0x7f0000000080))
write$binfmt_script(r0, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000713000/0x1000)=nil, 0x1000, 0x200000a, 0x28011, r0, 0x1000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
cachestat(r0, &(0x7f00000000c0)={0x80000003}, &(0x7f000009de80), 0x0)

14m0.855851453s ago: executing program 33 (id=8155):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file7\x00', 0x1ac)
rename(&(0x7f0000000100)='./file7/file0\x00', &(0x7f0000000180)='./file0\x00')
set_mempolicy(0x3, &(0x7f0000000000)=0x7, 0x7)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$IMGETCOUNT(r0, 0x80044943, &(0x7f0000000080))
write$binfmt_script(r0, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000713000/0x1000)=nil, 0x1000, 0x200000a, 0x28011, r0, 0x1000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
cachestat(r0, &(0x7f00000000c0)={0x80000003}, &(0x7f000009de80), 0x0)

10m51.477552735s ago: executing program 3 (id=8867):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
readv(r0, &(0x7f0000000200)=[{&(0x7f0000000040)=""/36, 0x24}], 0x1)
ioctl$TIOCSTI(r0, 0x5412, 0x0)
r1 = userfaultfd(0x1)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x8})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r2=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r2, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x100000b, 0x204031, 0xffffffffffffffff, 0xec776000)
ioctl$UFFDIO_CONTINUE(r1, 0xc020aa08, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})

10m51.317421744s ago: executing program 3 (id=8868):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040))
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfbffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000280)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r5, {0xffff, 0x5}, {}, {0x7, 0x3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x8, 0x8, 0x8, 0xa, 0x3}, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x84}}, 0x800)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x7}})
r7 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$kcm(r7, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r8, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4)

10m50.977646105s ago: executing program 3 (id=8871):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x3}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x42}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0xc00e, &(0x7f0000000140)={&(0x7f0000000480)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd0c, 0x25dfdb00, {0x0, 0x0, 0x0, r3, {0xc, 0xc}, {0x1, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000001}, 0x4004090)

10m50.857333149s ago: executing program 3 (id=8873):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x820000, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r1, &(0x7f0000002380)={0x2020}, 0x2020)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = openat$nullb(0xffffff9c, &(0x7f0000000000), 0x121501, 0x0)
ioctl$BLKROSET(r3, 0x125d, &(0x7f0000000100)=0xfffffffc)
io_setup(0x6, &(0x7f0000001380)=<r4=>0x0)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000006c0)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
io_submit(r4, 0x3, &(0x7f0000001140)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x0, r5, 0x0}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x7, 0x2, 0xffffffffffffffff, 0x0}])
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r6, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10)
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r7, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r8, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r11, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x4d, 0xfffffffb, 0x7fffffff}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000008)
r12 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r12, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)

10m50.599847656s ago: executing program 3 (id=8874):
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, &(0x7f0000002500)=@vmx={0x108, 0x0, 0x2080, {0x70000, 0x8080000, {0x1}, 0x1, 0x2}, {"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", "69de554c8a4c51329abf8937612775997ecfd3ecfa9c8656a0f700c57cb10ffe61f1b692f00fa5c27a6ea700b5623d39f204e9f48dc10c5f6c8d186f5c03a974ca2a6ec1443892ff17dda99c423f6afb91a78b82a54caa89fecc83ecc1a96c977976fb384b120ead9378b5ce081f013387f1bbc2b0633e49007d40c7d76f6156c909821c4a5b7f7ebfca5d746ef8eb29c1627411629da1c10a7d5a98862086b22bf670d1659de6f3e8dfb5eb88fc1295520fc89d8a992d6d0d5943a543ee6d7e94e51f32ac4607381cb1ac472d8e254b6c76236e7eda560e8096e88c0cd9c2b13ce46f30c31d111457d9968522514b6feb4e8c423258787fa3fa80e25deed36e96a3b909bf4bc9da203cb93cc1daa110bd966c00a4f1b03d6afb8517bd60413ed6ad6906fea5217e0667b566bb210b78fd28113f6889119aa356211e410ba0f8f4770ed269d00a47e328fa607d442e25521298676e3ac13ca3af30b4af45b14711d74de6de2f7e2a242f09a4a0c49613207a17ef97866aa159b1eafda0738443994135475c9113ebecc291a06e1a04c73b87f53eae6800be2ce07cf0c07cd69569e5465bb39a1ec363d59fa5480519befc02281266db574ca45329ad096bc632fe2b814ef5cb13f3b0616866958e8131de3775d5a900336b24500df6b31180528cf3558c7b52898535f25cfbdc6221f7bd81b4b215a5cfc021952011fa9efe44a88d09ab5f6d210e8f370e2dc34558e067da420f7f3b74f4dc89ea0c937a5d812425684f4bb641d5a79b381b4457a319db05bd2ca2cf0c46746a4bc00e2fd37119dc827abaca37b0c8df5f61582b955fe884c697e557d635299b3c95ea1b589803a85e23b4bf6d5cfb2de691db25df3016e4c4478364861f2124f58655b0c2f805d70d08ff3c48e50f01b1a060deac77488236c30869f080780431eda3178ecff1a94839764168189bd57dbf302b77683df568eba85e231c8fe6c2604fb49c9234f83a74247488eac4592132cc0b9e4e23b9ee32b133141470f02840d5f7e54b3a6154c031287ff23582c57bef9f3b41b40104b7291c1393038f8be31c62144ded2d531950fc98b79fd681a90e0d335053702b94448cdb2e68d3dd511b31c3ecc5870dee56877490a688d0189bb9c6c9f84793e729a1c4c26b902744f40609dffd4b368049b3e364200aef6e125a9ebec0a51eb4d3334adbaa49c2bc4f2b9a2b03a28e86e3ae31f771e2d8fd6f8c2b152e70a8031464fcd8578144a3f21d63b5de80ebc2eda4e28c87d68bb1a76128c0201616769210d7eb3c3120f3ac00d6a1ee5654a09413b0d4a87365ae31d23de0e18a11b673377d0bc7cb892c04e27388408adc461b2788474c998a6325e5c8bd0d4ce8d1fb8e16e29caf56c2a5504e379059014bc3c41e01d60290975adabe20d22f9f022831e6abd3b17286f7c634a427fa5db85148e07669a235d3e83521114f163fb9f5a7483d0bc9838a14d440327cd5be205f58808b8fd13972e09c63a2243b5cb6ef89f299e1b37f842a1b0b53bc4dd40f39b226f9b4c88c04a616fdc661b1fe4b26197404fa411cea0c109e474bca517e22f441d913b8768602a80c010645b10ec257a30d805cef6c78cc0e4f3b97bff3b9553aa4738f9c89fb95363fbb9bac8d92f9eb56f7d2969ae17ad3429ca291d040c9c0a0cb9b93781e4160be25b5ee39f76a49da70e40850ca8a6a41893fadc676e1937938ae5d6451e412896d04d25faba146a96c411fe013e7ddcd941a55e70e447426e34d50b6a052c897bac61c09b4b445960507ef34afe9aab0ca1b681643904a82805170a3b26e2e72998fe605167564705c2b03858885c7560a898a642e7d920d962dfc4f95b32364eb6b076f53736cf17cb8110f69c5e89d0378fc8dde6e7c271ba72e6e23655cc054c105fe2c4c46298940aca867bb64ebf4b4cb4e48bfd114db7beb2af83f61f2b7765e960bfd22aaacf00a92b7c695d2891434079536e8499551748a253e960697cf7ee9947e18a6359bd391900574338af21cf641765e0c61e740a8f4803993e8bb5764038ba56be98d58e3a4b86d6461b43bd1e82862babd48e277dcf59f99b13143c22a73b9ebfa7d524f81b59af00a58c7bf048e2ece7ff7f3c7413ca8fde4ab91e8f7e630b0570340fcb777f3b6ee0f67b01d6589ed0a6bb62106edca8b3adbd2dc4dc19c124e0a7d758525f76efd75d6022c9ebdb009e78e286a5042d5a3f25b86f245602ebdedefa1a0e4ebb3bdecb6cb34717543f30d506cea28e6bacda37b25bfc51a4fd98e2e2534570984bbb17957460cc3afccbf1395dd89cdb301346ec0f591fcdcdd5e0600ff3871dec77697bdef8b89b27be663eb2f1a68b90ee5ca249188cfc9fc14d59ea5319152546bdeb89cbb78cd6ec19f7aa88eccd5e5883e420fb57b594e7ed24db993c7845e393a79594564b82460145a8bb0ba73aa12c2fd288c36e217acb55a44eb45db307124fd1865172c7a97074ee4b8f4568cb6e559b9f0e525a11692d442147f45a0767cd1b1b886fc4cea7c5f3e1836196bdc495e1b673ff9d212bb80ab712e53cbe8a148bde13ad5c0ab6fcf5a97af6473cfd581a3724729f229c7a210481ed7f0f9d969ca676b437c0da390f4687ca57adaf66b807a087b4ae342005594d8b0d535b9bfb60a479ba14a31e09463caa314a2b68fccaa7c20dbcf449c1aa5dfd73d8c989c3e889e9209d9ae9bb3239c5d49cfe6ea315b7d066b8df5ccb017b86c320a73a9920db0ea712b83f80302f1e614596a0a05e2e4010d1b6a06350c79c18ab0d68601e0c956d439a9ca8d1a857efbbcd045777cef10a82ff2cb2021824487de1a583410d5cc338b37da99daf1ddabae5bb97b300b4dc74e29975459ec7e48a8ad26cf17fc470ce2be86547ba86700f7db7f5d56247089a4ce2018ab7c97cda6ad31877d21fc42b58a98764b0ae0840faaccbc77cc355213fbf185f488b9bd3a8eda10d241c721e6f108dfb846038381e1d04ffa17c247bd0a5b07e71f6ab4e18b14d1096712e6010448ed2020138ba8120780521c96a51ec0b6058cd2c719eaa4e32e895b86076af7afed5c7a83c998138be19eb65c7ff97b4f809fd65a4aff9b1a5ba69f7013bcfae0f596d1850fad2f336fad5d8a789f50b7500d87ad978db0b017c892b1c120b0478f02c07bf6f871cc17fdbda7b4da3aa902fff84df59279bfd1012f6bf60b1a21e689db90295202abe004dad2e00929dc0c2b2d45488967f774f4fd7a0e67c8d125202fd10787ebbddc4a704ac5de2f78191c0006a13a7134c5c10e49d09eff5ad0d31f26aa90a4d6bebd6038a9f70fcf83bc273b52a90cc231d4a447cc5962e0a9794a1570a29348caf5f7e2ddb3ba331d5efde679ff539389d6f664adc31c49733e018b47fd3fa67b10023a25a182b0ba1c73ebfb2cf0d0e9bb27dd4115ee1a4eb5f14596ee6c475675b34dafcf0c07f70b346a7ca202ddf24de2336a238970b8fc455034406b1c956421e95355bd5074cd46a7bbc96ce63db748fed4a97fe41b1ab09b4f4e1d7c5b93e86d8005bdcaed6fdafd088e95af54b690c7816376eecc9f5c421ddb7dab1b4e079bf8ecd8cb389ef50d9b9dfc95b991ee4cfd64012ddffd11419eb3946cda59f50a95786efedd9ee2b981de0ded9ea5a045846fa9bc929f9bfcc27180e9b0b5d2b778c269207b5317a605c4e8d8e7948994c4e0d2a9a97499d2eaad6288f33c216b95f5f0b63a95f893be1dc96360c63c04c49c3a0faec6c6fede557fb0e9ae4680097ce335f5f0d5cf31f52fc7249d0d45efaf3af8fcc5fdf8faa6f9ad47b6f17af03d06730ed66eae7f25c87d1a973dd533a0d8ebc03e0fb7ec5d7352d80a1029f0747f9158d767fa31bf553c25fd7608eb589eaa7094e0d24fcdd1ed385a4dee1d94608571ede2ca86f3314b06b619f0d778b4aa2767f2a3961b1a774e0b1210c0fdb2f68da2f9a642b9f6d851babf1b57f2cccd610a2405bbcad16b43171b67eb4e1c523a67aaa9cf4f63ac346d0ab62b45c0fe009e1ad8b1f2ab25eb5b4d5520bf18acbb8bed908f3c3051ebe020c9c392e450a956e341f80870c9dcc1666a9deebdded4d7bae15c51a5d67cf0b630d35dc715d66966001aa9daa5add11102e3f314542cafcd673850894471f8f7161e08d6b3081417805fd6cbee8485d6b63cff7ebdb423004fa107692a81ebfdbed3521dafed59ecde51136e937211791b88eed4f54abd2588b63ff0fc28cf6fbeec0cbef3d05962aef87166d04d28379ca96d0959c7e380dcff409ebba960378f040cafae3a623279b9f33b87c1b903c9bfe480acb65cd26f4598f90dc4303e7d344a6d6af3d2f32ee7add58b3d73a312711443419ba8b2dfce28b00f228b16f0116b33376deb03f9f7eccbbe3f1ddb8abce810ad6ddb9b226747a200db7b22ceb896ade44b18cd0b6b0ce74b9ff37b19b59c5e1dee9e647edff49d295acb0d64ce9f1b9cdce6195995f0bd803072fa4ba8415ba5b4b922e8de2796784b4e1696718cb0a7f4c7ab8fd9b9393afa44b06fd98829510620ba1d4447afb2820e199a960fa828324df6eafd048f5c67a25792b4c4095845e5ecaafc1b77ce59af163db7c3fe83bc10bb03dd36efdaaa6f4f783acf42b3e4a62994a328388b6d5a6d274be365061ec4dc7a83f8ede5719ada27cc0a80bd85a910b29f8170551efe8e376a97d040ebc513bfcdb8ead118d4592ef2b3dcc5425acd24ee3deafb88b47b8e6b10bfb3d67c7b01ada015e969707a348572f0a4244fb589ed2938d274590db20371933715607e323d81bef00bee8ce3cb6b8d3a8745bf0fc561e539055e0ed20c826abf2713a31f49b060e0417633f9b3ebf25504878fe8a8f89cf1ed3a292691693f5c43cf91d4db8a4d82d498a4375589386c32e2573bcc090a251b1a0d7402bdd8d2a8ea61b325b4118b74e979b78853ed7dffec2f523ba3db0c4c1dd22af07bdae0c1abe50653d7c0259f6bb1f931cc172a328977f454677a61d3a2856e8110834ac7fb26886a6e16bd104411aa26caa11a291e147d81ec236ed06e58ae7aeaba6d17718761c60d15e367981a17263e8d1afd104ecafebdb513a08792453bb0a7ac1fa408c595540d3723bf5025fc7569879756587a424b5bbe4aa0ff7e4134202b0657c96e7d28b1fa8c7822cd97831e4994e8cfc3ca378f82204a6cc12d39d5800d7a73a7bd9aed22aca97180e74fc40568d9f27247fabf836c57674564e6225f41078187d574b7dc0fc8c5e50fa117ad37dff1f81b7d8a29fef7665ccd026e848400edc347b455aa189634c21060dac7700c6940a8c3de6c57824e4856a4f0ca631946c443f8230b7e47697b6c4c208f99e494c42eea500c73b6012286e1730cf1de1950ad8ea274a584115ff7aa61896a82196ad01a2198cb2adea7bacff2d3671f08128111488a1128010c728342ff52031b847c3ddb6e927dd5d1db24c1492ab8142c00ee986082f0ffcc157d638b524839abedcee07b9291e79c09617b874c73d1db732f30cc5924c8cc89c1f2a5d4170968f0ed7dd0f81bb08d6467c3090fa7a79c7cb508a75779795e750aff17dbda9f62e4a79675d62838dd90a7029a82e4dba0125de429f3e78cecb7558b46aff6906eb00e462c361c7bc857a2d92c0db6112f7ada6d96188ada32c75b3df6ca4310b3252ced5a09266841457a2002da142bb2f108a31fe28b7b013348faf451f301eebde0ea1145a76efbe4aba8645e2ab96f4e7c6c24a517ed57acbf4da6ee4919e5"}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="01000000050000000100000007"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x20075, r1}, 0x38) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0xfffffffffffffe8b, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000040)={0xfffffff0, <r3=>0x0}, 0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r4, 0x2000000, 0xe, 0x0, &(0x7f0000000600)="c9f7b98600"/14, 0x0, 0x7ffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r5=>0x0})
ioctl$XFS_IOC_SWAPEXT(r2, 0xc0a4586d, &(0x7f0000001380)={0x0, r2, r4, 0x3, 0x6, '\x00', {0x2, 0x7, 0x6, 0x1, 0x2, 0xfff, 0x3, 0x3ff, {0x92, 0x7}, {0x2, 0xffffffff}, {0x8001, 0xe}, 0x1, 0xf, 0x5, 0x6, 0x5, 0xe855, 0x40, 0x8, 0x8, 0x1b, '\x00', 0x9, 0xc, 0x7, 0xff}})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r4, r5, 0x25, 0x19, @void}, 0x10) (async)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010c0000000c000000020000000000000000000004000000000000"], 0x0, 0x26}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000280)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r6, 0x8, 0x0, 0x0, 0x29, &(0x7f00000004c0), 0x10}, 0x94)
r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f00000024c0)={0x4, 0x1, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) (async)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

10m50.435226829s ago: executing program 3 (id=8875):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000180)='net/unix\x00')
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
add_key$keyring(&(0x7f0000000400), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x80000000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xf}, 0x1c)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8b0f, &(0x7f0000000000)={'wlan0\x00'})
ioctl$KDFONTOP_SET(r4, 0x4b72, &(0x7f0000000180)={0x0, 0x1, 0x12, 0x6, 0x200, &(0x7f0000000880)="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"})
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200080d0}, 0x0)

10m50.373634809s ago: executing program 34 (id=8875):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000180)='net/unix\x00')
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
add_key$keyring(&(0x7f0000000400), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = socket$l2tp6(0xa, 0x2, 0x73)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x80000000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xf}, 0x1c)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8b0f, &(0x7f0000000000)={'wlan0\x00'})
ioctl$KDFONTOP_SET(r4, 0x4b72, &(0x7f0000000180)={0x0, 0x1, 0x12, 0x6, 0x200, &(0x7f0000000880)="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"})
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200080d0}, 0x0)

6m46.840220172s ago: executing program 5 (id=9973):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfbffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000280)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r4, {0xffff, 0x5}, {}, {0x7, 0x3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x8, 0x8, 0x8, 0xa, 0x3}, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x84}}, 0x800)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x7}})
r6 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$kcm(r6, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, 0x0, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4)

6m46.668830717s ago: executing program 5 (id=9976):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
dup3(r1, r0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x10, 0x2, 0x9, 0x0, 0xffffffffffffffff, 0x10000}, 0x50)
socket$inet(0xa, 0x801, 0x84)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x94)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
fcntl$dupfd(r2, 0x406, r2)
socket(0x10, 0x803, 0x0)
r3 = syz_io_uring_setup(0xf01, &(0x7f0000000080)={0x0, 0x2, 0xc00, 0x6, 0x42f6}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
socket$kcm(0x2, 0x1, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
socket$kcm(0x2, 0xa, 0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
syz_io_uring_submit(r4, r5, r6, &(0x7f0000000040)=@IORING_OP_CLOSE={0x13, 0x10})
io_uring_enter(r3, 0x742f, 0x77ae, 0x1, 0x0, 0x0)

6m46.509432069s ago: executing program 5 (id=9980):
prctl$PR_GET_DUMPABLE(0x3)
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000640), 0x41, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000800)={r0, 0x20, &(0x7f00000007c0)={&(0x7f0000000500)=""/163, 0xa3, <r2=>0x0, &(0x7f0000000900)=""/253, 0xfd}}, 0x10)
r3 = syz_open_dev$swradio(&(0x7f0000000400), 0x1, 0x2)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000440)={0x0, 0xb, 0x80, "8e78cacb3dbf10b725495719fee20eb38ad35f6075402684ffe70a689c3ed01c", 0x584e4f53})
ioctl$VIDIOC_G_FREQUENCY(r3, 0xc02c5638, &(0x7f0000000080)={0x6, 0x4, 0x5})
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r4, &(0x7f0000000300)={0xa, 0x4e20, 0xd19, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x2f}}, 0x4}, 0x1c)
connect$inet6(r4, &(0x7f0000001d40)={0xa, 0x4e1d, 0x3, @empty, 0x8}, 0x1c)
syz_emit_ethernet(0xb9, &(0x7f0000000340)={@multicast, @empty, @void, {@ipv4={0x800, @dccp={{0x6, 0x4, 0x3, 0x2, 0xab, 0x65, 0x0, 0x4, 0x21, 0x0, @private=0xa010101, @dev={0xac, 0x14, 0x14, 0x23}, {[@generic={0x86, 0x3, "ac"}]}}, {{0x4e22, 0x4e22, 0x4, 0x1, 0x7, 0x0, 0x0, 0x1, 0x0, "0cb41e", 0x3, "e848ac"}, "40e2fac1e97e2affc300a515c7f4ca69117f71237d2435cef2ceea0367d2542fa01344b7fd88d4328159109034508ce38215b56ddefce8a173a4657271081ae15050ce08d0fb86d2dcbc2a724747884c18f2cb8cfba84e51bd45ddb81170869244caad85cfca76f6279cac6fc0d0f2ad013b47bd1da7c8f3b48310d9f7815bbf796fc7"}}}}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x6, 0x10, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000100000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006a00000095", @ANYRES8=r0, @ANYRES32], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x68, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = fsopen(&(0x7f0000000280)='ntfs3\x00', 0x0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f00000000c0)={0x0, 0x83, "858206df0629aa549fe0b3aee27060ddda3dcebe14e9195706f10ebcf919c7bfb71a67dd384625c675a6bdf96bf61bc677f71934bcddfef66c20c26ed648b9f9f23a1d3b3d4605986f7825739fe17a2e4634a491a57460d21f170e55db802b010e3ce837c5966de65e7df6697dc0ad4bb960d1bf0ebffeb64aab182925fb775f170445"}, &(0x7f0000000200)=0x8b)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r5, 0x0, 0xe, 0x0, &(0x7f0000000180)="00800000000000000045a9000000", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x12}, 0x50)

6m46.445205609s ago: executing program 5 (id=9982):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r0 = syz_usb_connect$uac2(0x3, 0x10c, &(0x7f00000001c0)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x8, 0x644, 0x800e, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xfa, 0x3, 0x1, 0x6, 0x0, 0xa, {0x8, 0xb, 0x2, 0x2, 0x1, 0x7, 0x20, 0x3}, {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x20, 0x0, {{0x9, 0x24, 0x1, 0x203e, 0x0, 0x2e, 0x2}, [@effect_unit={0xd, 0x24, 0x7, 0x5, 0x1, 0x3, [0x2, 0x2, 0x3]}, @input_terminal={0x10, 0x24, 0x2, 0x2, 0x3, 0x4, 0x0, 0x80, 0x345b, 0x0, 0x2, 0xfa}, @mixer_unit={0x8, 0x24, 0x4, 0x5, 0x40, "58230e"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x20, 0x0, {[@format_type_ii_discrete={0xa, 0x24, 0x2, 0x2, 0xf, 0x9, 0x80, "c3"}, @format_type_i_descriptor={0x6, 0x24, 0x2, 0x1, 0x2, 0x9}, @as_header={0x10, 0x24, 0x1, 0x30, 0x3, 0x2, 0x2, 0x9, 0x3, 0x7}, @format_type_i_discrete={0xc, 0x24, 0x2, 0x1, 0x6, 0x3, 0x40, 0xfb, "82597131"}]}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x3, 0x80, 0xff, {0x8, 0x25, 0x1, 0x0, 0x3f, 0x80, 0x7fff}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x20, 0x0, {[@format_type_i_discrete={0xc, 0x24, 0x2, 0x1, 0x7, 0x4, 0x1, 0x8, "6385b7cb"}, @format_type_ii_discrete={0x12, 0x24, 0x2, 0x2, 0xfff9, 0x3, 0xd, "7ff70db4037d5dbe71"}, @format_type_ii_ext={0xa, 0x24, 0x2, 0x2, 0x3, 0x100, 0x8, 0x9}, @format_type_ii_ext={0xa, 0x24, 0x2, 0x2, 0x4, 0x4, 0x0, 0xd}, @format_type_ii_discrete={0xe, 0x24, 0x2, 0x2, 0x0, 0x5, 0x0, "840cb4a960"}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0xb, 0x18, 0x2, {0x8, 0x25, 0x1, 0x80, 0x30, 0x2}}}}}}}}]}}, &(0x7f0000000440)={0xa, &(0x7f0000000340)={0xa, 0x6, 0x310, 0x9, 0x7, 0x1, 0x0, 0x7b}, 0x10, &(0x7f0000000000)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0x88, 0x81, 0xfc, 0xc, 0x1}]}, 0x2, [{0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x80a}}, {0x5d, &(0x7f00000004c0)=@string={0x5d, 0x3, "96bb203925aece65a39fdcfb87b7098b68f768eec8ccfa9e10000000000000000000000000670a996be4b848f42008bedc19cb9c5afd61e3594996f25de2935d4c374873ee7a177230a8dc7fd0616aa9d2cec81f3c93fe05a0a76f"}}]})
syz_usb_disconnect(r0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = syz_open_dev$dvb_demux(&(0x7f0000001e00), 0x0, 0x2000)
ioctl$DVB_DEMUX_DMX_SET_FILTER(r1, 0x403c6f2b, &(0x7f0000001e40)={0x4, {"0dbad96fff01000008ff002084000100", "3dfab043e15fad27a639f105b5e9f977", "a7c947420000000000000000ff4a70f3"}, 0x4000c, 0x5})
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = dup(r2)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x6, @empty, 0x2d}}, 0x7, 0x1, 0xf06, 0x3, 0xb4, 0x7f, 0x9}, 0x9c)
ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000080)=0xfffffff9)
preadv(r1, &(0x7f0000000480)=[{&(0x7f0000000180)=""/1, 0x1}], 0x1, 0x1, 0xd)
ioctl$DVB_DEMUX_DMX_REMOVE_PID(r1, 0x40026f34, &(0x7f0000000100))

6m43.164754529s ago: executing program 5 (id=10017):
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='debugfs\x00', 0x1214040, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x60004, 0xc8)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x1, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x10000000, 0xfffffffe}, 0x800}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x24c4436d5a174b6d, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4004000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
keyctl$set_reqkey_keyring(0xe, 0x6)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0xa000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = shmget$private(0x0, 0x2000, 0x0, &(0x7f00000eb000/0x2000)=nil)
shmat(r4, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
shmctl$SHM_LOCK(r4, 0xb)
madvise(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xe)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
shmctl$SHM_UNLOCK(r4, 0xc)
lseek(r0, 0xc3, 0x2)
r5 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})

6m42.04179335s ago: executing program 5 (id=10021):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfbffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000280)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r4, {0xffff, 0x5}, {}, {0x7, 0x3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x8, 0x8, 0x8, 0xa, 0x3}, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x84}}, 0x800)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x7}})
r6 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$kcm(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4)

6m25.784531558s ago: executing program 35 (id=10021):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfbffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000280)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r4, {0xffff, 0x5}, {}, {0x7, 0x3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x8, 0x8, 0x8, 0xa, 0x3}, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x84}}, 0x800)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x7}})
r6 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$kcm(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4)

6.010495112s ago: executing program 0 (id=11921):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$kcm(0x10, 0x3, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
setsockopt$SO_RDS_TRANSPORT(0xffffffffffffffff, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r3 = socket(0x23, 0x800, 0x2)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x5, 0x3032, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x80001, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@newqdisc={0x44, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0xffe0}, {0xffff, 0x8}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_SPLIT_GSO={0x8, 0x11, 0x1}, @TCA_CAKE_INGRESS={0x8, 0xf, 0x1}]}}]}, 0x44}}, 0x0)
ioctl$XFS_IOC_SCRUBV_METADATA(r0, 0xc0285840, &(0x7f0000000000)={0xd22, 0x200, 0x5, 0x0, 0x3, 0x0, 0x0, 0xffffffffffffffff})
socket$kcm(0x10, 0x2, 0x4)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1fd, 0x7d, 0xfffffffffffffffd, 0x8000, 0x104, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x4, 0x11, 0x80000006}, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8b20, &(0x7f0000000080)={'wlan1\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1e}})
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000500)={0xffffffffffffffff, 0x8, {0x0, 0x0, 0x0, 0x7, 0x430f, 0x0, 0x12, 0x4, 0x10, "9f3c50f960f080760effb4c0f3b67016c8dc5b5f46e2eda8a686b1842df4e8d96f4e6b420bd7f20c35d67624f504821ffd7d234ac7961994e6f0afbe7de78be3", "a8f97240b72c2e04ef958ef72e0be1f71e6e4aca0390590848f1cfe6d7a3d397b775a75f49bf318bef0dfcb5931dfb0c4d796c0f2ed06ca998e8629970121ad7", "5c34312a3324e8cb14424454f2b65619943f5b73217c4bdffd93bc7ab4a1d12a", [0x3, 0x200000000000000]}})
close_range(r5, 0xffffffffffffffff, 0x0)

5.032828979s ago: executing program 7 (id=11923):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={0x0}}, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
r1 = dup3(0xffffffffffffffff, r0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, 0xffffffffffffffff, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(0xffffffffffffffff, 0x40046208, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000300000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB='t\x00\x00\x00\n'], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@deltaction={0x30, 0x18, 0x1, 0x70bd2a, 0x25dfdc00, {0xa}, [@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x8f, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x5, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x64}}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0x20040844)
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x80)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x60042, 0x1)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched_retired(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000012100), 0xe078}}, 0x0)
recvmmsg(r4, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000580)=""/230, 0xe6}, {&(0x7f00000004c0)=""/168, 0xa8}, {&(0x7f0000000900)=""/106, 0x6a}, {&(0x7f00000000c0)=""/26, 0xfe4b}], 0x4}, 0x2000000}], 0x2, 0x101, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3f, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
lremovexattr(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)=@known='system.posix_acl_default\x00')

4.871227074s ago: executing program 7 (id=11924):
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000300)={0x134, 0x0, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x10}]}, @TIPC_NLA_BEARER={0xe8, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @multicast2}}, {0x14, 0x2, @in={0x2, 0x4e20, @local}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xeb}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0x17, 0x1, @l2={'eth', 0x3a, 'batadv_slave_0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x2, @private1, 0x8000}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}, 0xd537}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1000}]}, @TIPC_NLA_NODE={0x20, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xffffffff}, @TIPC_NLA_NODE_REKEYING={0x8}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xf}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6}]}]}, 0x134}, 0x1, 0x0, 0x0, 0x4014}, 0x4000000)
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="3400030013000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="100a06000908010014001a80100004800c0006"], 0x34}, 0x1, 0x0, 0x0, 0x200080d0}, 0x14)

4.870401581s ago: executing program 0 (id=11925):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r0, 0x3)
r1 = socket$netlink(0x10, 0x3, 0x0)
epoll_wait(0xffffffffffffffff, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0xa, 0x9)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bond0\x00'})
r3 = syz_clone(0x2008400, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'xfrm0\x00', 0x2})
madvise(&(0x7f0000d3a000/0x4000)=nil, 0x4000, 0x66)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000240)='.request_key_auth\x00', &(0x7f0000000200)=@chain)
r5 = epoll_create1(0x0)
r6 = fcntl$dupfd(r5, 0x2, 0xffffffffffffffff)
r7 = syz_open_dev$vim2m(&(0x7f0000000100), 0x7, 0x2)
r8 = socket$packet(0x11, 0x3, 0x300)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r10 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r10, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
connect$unix(r11, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000007e80)=[{{&(0x7f0000000300)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000540)=[{&(0x7f0000000380)="96aebf9686a61c2dd537c5b24a62c051793f94aa34fe55d57a43d8205b48568f87e385461f347ca76ac4af1e76a00d111e3e0ca135bbaaccf0e99c20de252f0009165bd216db7c03442d89260bef4b7f206207aece7363a60d01513252aa21df4448c4ecc07d19097d389ffc7fa6b39c0077bea8eb92ebe5e93d1448a971e06e18ec1b88e7b5ca57dde28b23992aa4d1b550caca", 0x94}, {&(0x7f0000000440)="8a00dddfeebaeb9b183c0a9fb41a0485018eebd7a9b12614e2f2b3d284fe3e627cdf63a3d7abcdb4e299f9810d69a2d956b6741fe3fc6e9408c00084fd8e897279927c7bc9ffca907ad147cab4e033057a7d6c51572964935deb278afded60ced46ff3c159b2d8bb97240634e0df56c7d7db401b6e08490308b64c1b1056ead9366c9393678963ddbb977c9a7d33a46d8e75727dfce72cc0f6637522520a464a2646b26e1b86953a2aeb6b86284641bee21a40b0525eaf6242662e20433a3d80db7d8dd81d941504ca42acfca1b43d3a526da774e2a6dfff95741b5b9b62b5b434e673ee", 0xe4}], 0x2, &(0x7f0000004ac0)=[@rights={{0x28, 0x1, 0x1, [r5, r4, 0xffffffffffffffff, r2, r5, r6, r9]}}, @cred={{0x18, 0x1, 0x2, {r10, 0xee00}}}, @cred={{0x18, 0x1, 0x2, {r3}}}, @cred={{0x18, 0x1, 0x2, {r3}}}, @cred={{0x18, 0x1, 0x2, {r3}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r2, r4, r12, r12, r9, 0xffffffffffffffff, r7, r1, r2]}}, @rights={{0x24, 0x1, 0x1, [r2, r0, r4, r12, r8, 0xffffffffffffffff]}}, @cred={{0x18}}], 0xf8, 0x24004010}}, {{&(0x7f0000006300)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000006540)=[{&(0x7f0000006380)="db4fe3d2fdf172b46f464354834e77e88f0521beaefe95f40a38f2c43ba3e4b2b862faa5b1c73bc961594c90fc2b2e117804bdc1d641eacf0cd0a4e57d860580ca0e8a9991984fee62c56d20c79f0a3a8a3d00dc2cb9ccdba4569b327c30964dbab2e21772e67c576674a0a5d1ac202d8c98d9a73fe2a534ad1b6a71797edff7ad872bcff366b4a8048e9f65", 0x8c}, {&(0x7f0000006440)="cc77fa2bbd4e3bc52eb8abd98c0af72295523757cc8b6426c1f81fbb7d4edd5a12c51a97f0e8716568ebd54e232066e277bf5bf4029f10518a74ab3446b6594889f0412b9bd7479c6c4e105642358a810446d96bdf90e070e31cea921069579ce1c8e7b803488cea1eaa76ca0bae66e1f6710694364569722cb01f9f87f5b0c1078062ede925253697780fda0bffbe4c07e3f7ed083fbac21a4fa3233ac90f945176efcfc35730e4c89cfbcdce3a53d538f6726e412467c741b0d72be0772d677f6563ade3e22fecba1e185203a62dfd8670f0dd061245e78a189b21b4dc1d0c92fe9bbb298782f681ba50c2b0d3f05de3bc720d71de004e", 0xf8}], 0x2, &(0x7f00000065c0)=[@rights={{0x10, 0x1, 0x1, [r11]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, r8, 0xffffffffffffffff, r2, r4, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff]}}], 0x40, 0x10}}, {{&(0x7f0000006600)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000007cc0)=[{&(0x7f0000006680)="c32ee23bece316f29f08390a18d9fffa1127172e6ffb2e5e56abe0d3d1ac17d760492733fc4678697a94e48d4547b551ec", 0x31}, {&(0x7f0000006840)="0a2d3195288022be03c7f4342f7cd803ddfca21c87e557da9685c2aa9cc79326f37b1666fcff568787a8933153588d69b943cf4936aad454e35c01616cd6521d168c8b92af8c05a839f1c20a605c57c0cfc4f5f9406df0c24c58db06e1bfdb0102d5e87934e3b3c8d05a5b3a5999090f6dbf06f80a0be694310ccbf764e09ae360bdeb8d608f01d1b6da4620f4a9293075f856dd0cefd8774bf4d2c9855977205a57fb725f22539453fd3218a6b27f9e3070aa8823dbb393c6be578b1bf2e6c1ec1e0b02ad7b7505e03558e4e5e07c725eba9f0d6202ed6cc000", 0xda}, {&(0x7f0000006940)="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", 0x1000}, {&(0x7f0000007940)="4dffca505643fb79c71558e4f6cb20e383270b0637bc77c87de7feb3cc45ad15e0d2592a407a8f4a25dd416b59f6b4ea16733c8165557e5a47bb2dce04f37f23b96745201790e14229b0c4e223e0a8f604a9e8ed1fb6534e5f5075bae3a02ae1fcce8bfe464eb2393b0ac35d3fae68d65e5e6b26b244f930862328c2888c4ba827c713a4a29a352027a0d1a583d2b850f3ed35dd53528e9834cc55012bfb3a8e11fae1e9f91893ee83120e5adb432a094bcd2c2b746565ff414418d849bc0c0b510bac652f047e9044", 0xc9}, {&(0x7f0000007a40)="e53168aad37f8e4e64589cb62534144d5670bd2ab7c4ac52c8e68e9be3703ac4c88bad64b1cad0580e9ac3d38a74db33b5b0e13078baa5b5f27b354e29c20b657a9114c75c9372bd624a1c81677af6106bee5ebfb987328e4e5bf270b995221f1408f537045828474d10bd297e235b53c66c86ec1e0b137e1f93", 0x7a}, {&(0x7f0000007ac0)="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", 0xfa}, {&(0x7f0000007bc0)="ccea687b1e834adc8b48fae04bf188b6da8215cc68c230728db2646310734b89a15b18891d324c7ec9f6b96d4fe478adcf0ad3a06d4332078f2dba42dca173db5a751fd8c1b2c10a38f4f7a2536a5dcbe202247ddf7a1d9a3cb97ad14d7026f4372d5bf3ef6ad6097f4e0d8b976f5dd8306dc5908433f7f597b88e083bc96e4f115263e38ae1e88fcee5e1fcda2ed7349307719c5ea42efbc37386e1b6a58f65fdaa960c208f8d1940381e4a6709b64c381f5cc592e691c1d9b3968b7aae9681d16cfd324fedddfe4690c01d37bbb39238fe91f2a7130c5320dc13b208b9b5d6ba6281de67ff3e76d286169be64599bf4591ea09cb40", 0xf6}], 0x7, &(0x7f0000007dc0)=[@cred={{0x18}}, @cred={{0x18}}, @rights={{0x28, 0x1, 0x1, [r2, r9, r11, 0xffffffffffffffff, r6, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r11, 0xffffffffffffffff, r5, r0, r8]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [r7, r11, 0xffffffffffffffff, r8]}}], 0xb0, 0x20000001}}], 0x3, 0x0)
sched_setaffinity(r10, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r12, &(0x7f0000000280), 0x0, 0x2, 0x0)
set_mempolicy(0x3, &(0x7f0000000100)=0x3, 0x9)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20040084)
socket(0xa, 0x3, 0x3a)

4.826725274s ago: executing program 7 (id=11926):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f00000002c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x7)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r4, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x8}, {0xfff1, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)

4.669128993s ago: executing program 0 (id=11928):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'sit0\x00'})
r2 = openat$fb0(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1200000004000000040000000500000000000000", @ANYRES32=0x1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002e00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)=ANY=[@ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="05"], 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@map=r3, 0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x541b, 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x4)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r5, 0xc08c5334, &(0x7f0000000600)={0x0, 0x8001, 0x0, 'queue1\x00', 0xfb})
r6 = syz_clone(0x500, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = syz_pidfd_open(r6, 0x0)
process_mrelease(r7, 0x700000000000000)

4.638904418s ago: executing program 7 (id=11929):
openat$binfmt(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x18, 0x30, 0x1, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_MIUX(r1, 0x118, 0x1, &(0x7f0000000000)=0x604, 0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_clone3(&(0x7f0000000300)={0x101004880, 0x0, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_emit_ethernet(0x6e, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

4.540820384s ago: executing program 0 (id=11931):
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_procfs$userns(0x0, &(0x7f0000000240))
ioctl$NS_GET_OWNER_UID(r2, 0xb704, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
r3 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x21800, 0x0)
syz_open_dev$vim2m(0x0, 0x0, 0x2)
socket(0x1d, 0x2, 0x6)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$VT_OPENQRY(r3, 0x5600, &(0x7f0000000000))
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'veth1_to_team\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xa}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x14, 0x2, [@TCA_HHF_RESET_TIMEOUT={0x8}, @TCA_HHF_HH_FLOWS_LIMIT={0x8, 0x3, 0x80}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x40000dc}, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps_rollup\x00')
sched_getattr(0x0, &(0x7f00000054c0)={0x38}, 0x38, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
read$FUSE(r6, &(0x7f00000007c0)={0x2020}, 0x2020)
r7 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r7, 0xaf01, 0x0)
r8 = eventfd2(0x43, 0x1)
ioctl$VHOST_SET_VRING_KICK(r7, 0x4008af20, 0x0)
ioctl$VHOST_SET_VRING_KICK(r7, 0x4008af20, &(0x7f00000005c0)={0x0, r8})
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f00000001c0)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x8000, 0x0, 0x0, 0x0, 0x33, 0x40, 0x0, 0xe4})

4.540267734s ago: executing program 7 (id=11932):
madvise(&(0x7f000030a000/0x1000)=nil, 0x1000, 0x10)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
io_uring_setup(0xd71, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x2})
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x4c, 0x12, 0x1, 0x0, 0x0, {0xa, 0x1, 0x4, 0x0, {0x4e22, 0xfffd, [], [], 0x0, [0x0, 0x2]}, 0x80000}}, 0x4c}}, 0x4)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(0xffffffffffffffff, 0x0, 0x3f, 0x28004044, &(0x7f0000000140)={0xa, 0x4001, 0xfffd, @empty, 0xfffffffd}, 0x1c)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='task\x00')
prctl$PR_SET_MM(0x23, 0x3, &(0x7f0000ffe000/0x1000)=nil)
fchdir(r3)
creat(&(0x7f0000000040)='./bus\x00', 0x181)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, r1, &(0x7f000001f000/0x18000)=nil, &(0x7f0000000300)=[@textreal={0x8, &(0x7f0000000000)="b842068ec80f79c666b9800000c00f326635008000000f30658b9299ebf000bfaa80260fc731baf80c66efbafc0c66b8f5ee91dd66efbaf80c66b8c076cd8066efbafc0c66b80000000066ef0f22666466f30f09", 0x54}], 0x1, 0x41, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r5, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a0000000086d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a100efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222103472bc55704cdb72b4b996ed831f3b802549db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe363590d1f600"})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x1000, 0x3, {0x0, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff5, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f00000004c0)=@security={'security\x00', 0xe, 0x4, 0x5c0, 0xffffffff, 0x1c0, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x4f8, 0x4f8, 0x4f8, 0xffffffff, 0x4, &(0x7f0000000280), {[{{@uncond, 0x0, 0x178, 0x1c0, 0x0, {}, [@common=@srh1={{0x8c}, {0x5c, 0x0, 0x1, 0x5, 0x6, @private1, @dev={0xfe, 0x80, '\x00', 0x1c}, @local, [0xff000000, 0xff0000ff, 0x0, 0xffffff00], [0xffffffff, 0x101, 0xff, 0xff000000], [0xff, 0x101000000, 0x0, 0x100ffff01], 0x100, 0x2cc8}}, @common=@dst={{0x48}, {0x6, 0xc, 0x0, [0x8, 0x0, 0x2, 0xbc7, 0xfffd, 0x6, 0x5, 0x0, 0x829, 0x7, 0x9, 0x4, 0x7, 0x9, 0xf96c, 0x2], 0xd}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x2, 'syz0\x00', {0x7}}}}, {{@ipv6={@empty, @mcast1, [0xffffff00, 0xff000000, 0xff0000ff], [0xff, 0xffffff00, 0xffffff00, 0xffffffff], 'batadv0\x00', 'dvmrp1\x00', {}, {0xff}, 0x67, 0x4, 0x0, 0x4c}, 0x0, 0xec, 0x12c, 0x0, {}, [@common=@icmp6={{0x24}, {0xe, "e932"}}, @common=@eui64={{0x24}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x7, 0x12, "21bec612d3ed3e27631cace769e20c866b446719642553ee968e03485b1e"}}}, {{@uncond, 0x0, 0x1dc, 0x20c, 0x0, {}, [@common=@rt={{0x138}, {0x40, [0x6, 0x4], 0x8, 0x2, 0x1, [@local, @local, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast1, @local, @private0, @local, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2, @loopback, @mcast2, @remote, @dev={0xfe, 0x80, '\x00', 0x43}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @dev={0xfe, 0x80, '\x00', 0x2a}, @mcast1], 0xb}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0xffffffffffffffff, 0x1}, {0x3, 0x6, 0x6}, 0x9, 0x1}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x61c)
ioctl$USBDEVFS_CLEAR_HALT(r5, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r6, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

4.198899674s ago: executing program 6 (id=11933):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={0x0}}, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
r1 = dup3(0xffffffffffffffff, r0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, 0xffffffffffffffff, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(0xffffffffffffffff, 0x40046208, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB='t\x00\x00\x00\n'], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@deltaction={0x30, 0x18, 0x1, 0x70bd2a, 0x25dfdc00, {0xa}, [@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x8f, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x5, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x64}}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0x20040844)
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x80)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x60042, 0x1)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched_retired(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000012100), 0xe078}}, 0x0)
recvmmsg(r4, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000580)=""/230, 0xe6}, {&(0x7f00000004c0)=""/168, 0xa8}, {&(0x7f0000000900)=""/106, 0x6a}, {&(0x7f00000000c0)=""/26, 0xfe4b}], 0x4}, 0x2000000}], 0x2, 0x101, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3f, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
lremovexattr(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)=@known='system.posix_acl_default\x00')

4.113841816s ago: executing program 6 (id=11934):
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
mount$9p_virtio(0x0, 0x0, &(0x7f0000000540), 0x20000, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=virtio,fscache,dfltgid=', @ANYRESHEX, @ANYBLOB="2c63616368653d6c6f6f73652c63836368653d6c6f6f73652c736d61636b66736465663d002c7063723d30303030303030303030303030303030303035302c00"])
r4 = dup2(r3, r3)
wait4(0x0, 0x0, 0x8, 0x0)
ioctl$sock_inet6_SIOCDELRT(r4, 0x890c, &(0x7f00000000c0)={@remote, @private0, @mcast2, 0x40003, 0x40, 0x5, 0x100, 0x0, 0x590043})

3.579363993s ago: executing program 4 (id=11936):
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, &(0x7f0000000600)={0x0, 0x8001, 0x0, 'queue1\x00', 0xfb})

3.472321191s ago: executing program 4 (id=11937):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x8e40, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={0x0}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff5644d, 0x70bd2c, 0x7fffa, {0x0, 0x0, 0x0, r7, {}, {0xb, 0xb}, {0xf, 0xb}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x9, 0x80000000, 0x9, 0x1, 0x0, 0x7, 0x1, 0x4, 0xfff}}}}]}, 0x58}}, 0x8000)
sendto$packet(r4, &(0x7f00000001c0)="bad33075218151db00316f3a277f", 0xe, 0x22008001, &(0x7f0000000080)={0x11, 0x88a8, r3, 0x1, 0xda, 0x6, @multicast}, 0x14)

3.375782489s ago: executing program 0 (id=11938):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000100)={0x2, 0x0, @ioapic={0xe000, 0x3, 0x8, 0xbfb, 0x0, [{0x8, 0x5, 0xf, '\x00', 0xd}, {0x52, 0x6, 0x8, '\x00', 0x7}, {0x9, 0x1, 0x7, '\x00', 0x8}, {0x22, 0x8, 0x8, '\x00', 0x4}, {0x8, 0xc, 0xda}, {0x9, 0x3, 0x83, '\x00', 0x2}, {0x0, 0x2, 0xa, '\x00', 0xa0}, {0x6, 0x4, 0x81, '\x00', 0xe}, {0x8, 0x8, 0x0, '\x00', 0x8}, {0x1, 0x40, 0x6, '\x00', 0xce}, {0x4, 0x4, 0x2, '\x00', 0x8}, {0x7f, 0xbf, 0xfd, '\x00', 0x8}, {0x3, 0x5, 0x9, '\x00', 0x81}, {0x9, 0xf9, 0x3, '\x00', 0x8}, {0x8, 0x8, 0xf, '\x00', 0x8}, {0xc, 0x5, 0x80, '\x00', 0x5}, {0xff, 0x85, 0x9, '\x00', 0x1}, {0x1, 0x4, 0x6, '\x00', 0x5}, {0x3, 0xea, 0x3, '\x00', 0x6}, {0x7, 0xb, 0x8, '\x00', 0x80}, {0x1, 0x1, 0x4, '\x00', 0xa}, {0x0, 0xa8, 0x8, '\x00', 0x7f}, {0xa, 0xf4, 0x7f, '\x00', 0xf0}, {0x10, 0x4, 0x20, '\x00', 0x1a}]}})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000042500010329bd70"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x3e59cdaa2f3e420c)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000200)={0xaa, 0x2cc})
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x42795000)
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000100)={{&(0x7f0000010000/0x1000)=nil, 0x1000}, 0x1})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x5, 0xffffff84}}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x64}, 0x48)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r3, 0x10e, 0x2, &(0x7f00000001c0)=0x1, 0x4)

3.16167309s ago: executing program 4 (id=11939):
r0 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, 0x0)
mmap(&(0x7f0000ab7000/0x4000)=nil, 0x4000, 0x3000001, 0x4280150, r0, 0x8bfc4000)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x2, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
getxattr(0x0, 0x0, 0x0, 0x0)

2.824062874s ago: executing program 4 (id=11940):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'sit0\x00'})
r2 = openat$fb0(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1200000004000000040000000500000000000000", @ANYRES32=0x1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002e00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)=ANY=[@ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="05"], 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@map=r3, 0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x541b, 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x4)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r5, 0xc08c5334, &(0x7f0000000600)={0x0, 0x8001, 0x0, 'queue1\x00', 0xfb})
r6 = syz_clone(0x500, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = syz_pidfd_open(r6, 0x0)
process_mrelease(r7, 0x700000000000000)

2.724146177s ago: executing program 4 (id=11941):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi0\x00', 0x400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r2, 0xc008640a, &(0x7f0000000140))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x4)
getpid()
r6 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x7, 0x4, 0x100, 0x10004, 0x2c}, 0x50)
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x4040010}, 0x30)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f0000000000)={<r8=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e21, @local}]}, &(0x7f0000000440)=0xc)
setsockopt$inet_sctp6_SCTP_CONTEXT(r7, 0x84, 0x11, &(0x7f0000000100)={r8, 0xd}, 0x8)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x3, &(0x7f0000000140)=[{0x20, 0x0, 0x4, 0xfffff010}, {0xb1, 0xe, 0x0, 0x46}, {0x6, 0x0, 0x0, 0x6ce3}]}, 0x8)
sendmmsg(r0, &(0x7f0000001c00), 0x400000000000159, 0x40840)

2.43983766s ago: executing program 6 (id=11942):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={0x0}}, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
r1 = dup3(0xffffffffffffffff, r0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, 0xffffffffffffffff, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(0xffffffffffffffff, 0x40046208, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB='t\x00\x00\x00\n'], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@deltaction={0x30, 0x18, 0x1, 0x70bd2a, 0x25dfdc00, {0xa}, [@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x8f, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x5, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x64}}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0x20040844)
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x80)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x60042, 0x1)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched_retired(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000012100), 0xe078}}, 0x0)
recvmmsg(r4, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000580)=""/230, 0xe6}, {&(0x7f00000004c0)=""/168, 0xa8}, {&(0x7f0000000900)=""/106, 0x6a}, {&(0x7f00000000c0)=""/26, 0xfe4b}], 0x4}, 0x2000000}], 0x2, 0x101, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3f, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
lremovexattr(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)=@known='system.posix_acl_default\x00')

2.360192328s ago: executing program 6 (id=11943):
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x20040004)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r3, &(0x7f0000000080)=[{{&(0x7f0000000140)={0xa, 0x4e20, 0x9, @dev={0xfe, 0x80, '\x00', 0xe}, 0x5}, 0x1c, &(0x7f0000000b40)=[{&(0x7f0000000340)="f2", 0x1}], 0x1}}, {{&(0x7f0000000180)={0xa, 0x4c20, 0xff, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1}, 0x1c, &(0x7f0000000400)=[{&(0x7f00000001c0)="17", 0x1}], 0x1}}], 0x2, 0x0)
shutdown(r3, 0x1)
syz_open_dev$tty1(0xc, 0x4, 0x1)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x0, 0x30}, &(0x7f0000000040)=0xc)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r2)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, 0x0, 0x40010)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
ioctl$LOOP_GET_STATUS(0xffffffffffffffff, 0x4c03, &(0x7f0000000840))
r4 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FD_FRAMES(r4, 0x65, 0x8, &(0x7f0000004400), &(0x7f0000004440)=0x4)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x400448df, &(0x7f0000000000))
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='oom_adj\x00')
setresuid(0xee00, 0xee00, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd6000000000200232fe8000000000000000000000000000aaff0200726b"], 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40046607, &(0x7f0000000240)=0x4)

212.143034ms ago: executing program 4 (id=11944):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc41, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x14, 0x2, [@TCA_FQ_CODEL_CE_THRESHOLD={0x8, 0x7, 0xfffffff9}, @TCA_FQ_CODEL_CE_THRESHOLD_MASK={0x5, 0xb, 0x7}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x240048e4}, 0x4890)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, 0x0, 0x0)
sendmsg$kcm(r4, &(0x7f00000000c0)={&(0x7f0000000580)=@xdp={0x2c, 0x0, r6, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000088a8ffff1144ee162fd4b8bf4a31accb", 0xfdef}], 0x1}, 0x0)

211.591371ms ago: executing program 6 (id=11945):
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x4)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r0, 0xc08c5334, &(0x7f0000000600)={0x0, 0x8001, 0x0, 'queue1\x00', 0xfb})

138.36733ms ago: executing program 7 (id=11946):
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_procfs$userns(0x0, &(0x7f0000000240))
ioctl$NS_GET_OWNER_UID(r2, 0xb704, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
r3 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x21800, 0x0)
syz_open_dev$vim2m(0x0, 0x0, 0x2)
socket(0x1d, 0x2, 0x6)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$VT_OPENQRY(r3, 0x5600, &(0x7f0000000000))
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'veth1_to_team\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xa}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x14, 0x2, [@TCA_HHF_RESET_TIMEOUT={0x8}, @TCA_HHF_HH_FLOWS_LIMIT={0x8, 0x3, 0x80}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x40000dc}, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps_rollup\x00')
sched_getattr(0x0, &(0x7f00000054c0)={0x38}, 0x38, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
read$FUSE(r6, &(0x7f00000007c0)={0x2020}, 0x2020)
r7 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r7, 0xaf01, 0x0)
r8 = eventfd2(0x43, 0x1)
ioctl$VHOST_SET_VRING_KICK(r7, 0x4008af20, 0x0)
ioctl$VHOST_SET_VRING_KICK(r7, 0x4008af20, &(0x7f00000005c0)={0x0, r8})
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f00000001c0)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x8000, 0x0, 0x0, 0x0, 0x33, 0x40, 0x0, 0xe4})

137.788025ms ago: executing program 6 (id=11947):
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000002240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r1, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e22}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2000}, 0x1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0)
read$FUSE(r2, &(0x7f0000000200)={0x2020}, 0x2020)
mount(&(0x7f0000000300), &(0x7f0000000080)='.\x00', &(0x7f00000000c0)='tmpfs\x00', 0xa145cf, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
mq_timedsend(0xffffffffffffffff, 0x0, 0xff7f, 0x0, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
listen(0xffffffffffffffff, 0x5)
socket$vsock_stream(0x28, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='rdma.current\x00', 0x275a, 0x0)
epoll_wait(r5, &(0x7f00000000c0), 0x0, 0x7)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f00000006c0)={{{@in6=@mcast2, @in=@multicast1}}, {{@in=@local}, 0x0, @in=@initdev}}, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000180)={0x53, 0xfffffffffffffffb, 0xffffffffffffff0f, 0x0, @buffer={0x0, 0x0, &(0x7f0000000240)=""/86}, &(0x7f00000000c0)="8516a69e20db268c99540c0c4d755ef653e8f4a6151d2e4d9f4c076575f96acf7c1518d5f60238b377d659f7bb700debccf243dbb01f49c4cb23c6c6bf4119e0df3d877e3263e5e3d9d4f4335d1eff843c53a999bed1ba0070eeda8f6717e0ea1d71aa6a3acedb5ed60c20a93f34bd93bfec5a81ec493fb3a69dff6dd7481d79822d14c335fbd34fd723beaea2", 0x0, 0xfffffffb, 0x10039, 0x0, 0x0})
lseek(r3, 0xfff, 0x0) (fail_nth: 3)

0s ago: executing program 0 (id=11948):
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="34010000", @ANYRES16=0x0, @ANYBLOB="000127bd7000fcdbdf25080000000c0006800800010010000000e80001800d0001007564703a73797a31000000002c00028008000300ff7f00000800010016000000080001000e000000080002000100008008000200060000002c0004001400010002004e20e000000200000000000000001400020002004e20ac1414aa000000000000000008000300eb0000000d0001007564703a73797a3000000000170001006574683a6261746164765f736c6176655f30000044000400200001000a004e2000000002fc01000000000000000000000000000000800000200002000a004e2000000004fc00000000000000000000000000000137d500000800030000100000200006800400020008000600ffffffff0800060000000000080001000f0000000c0007800800020006000000f7391bad3724c5ce5dc5bcc33fdaa0910a0c6bcb18bc8a73e9e7abee8340f3a69d00a0cfc9e8f46a5ed9d00f13b77f94eb5bb5cd93139f12173027475a7a47db3998f07b920e394eb6ad89c182d7173f8f556ba8aedb5b014138b5d83c82e037e7a851ac5352683b3522127827"], 0x134}, 0x1, 0x0, 0x0, 0x4014}, 0x4000000)
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
process_vm_writev(r3, &(0x7f00000001c0), 0x0, &(0x7f0000000280)=[{&(0x7f0000000500)=""/235, 0xeb}], 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r4, 0x107, 0xd, &(0x7f00000002c0)=@req3={0x10000, 0x0, 0x100, 0x100, 0x7, 0x0, 0x1}, 0x1c)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), r5)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x4c, r6, 0x1, 0x70bd2d, 0x1000000, {0x4e}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x39, 0xab, 0xfffffffc}}, {0x8, 0xb, 0xb6b}, {0x6}}]}, 0x4c}}, 0x4044040)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
r9 = openat$dlm_control(0xffffff9c, &(0x7f0000000380), 0x101200, 0x0)
ioctl$SYNC_IOC_FILE_INFO(r9, 0xc0383e04, &(0x7f0000000600)={""/32, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000440)=[{}, {}]})
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r11, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4c0000ad3d838fbe15f5f77fbbe000", @ANYRES16=r10, @ANYBLOB="01000000000000000000410000000e0001006e657464657673696d0000000f0002006e657464657673696d3000000d0087006c325f64726f70730000000008008718000000006b1e958a649c07272912cca78aadee38b1d18d2a48215c7c67812446ce3378fc0d6402efa91bea7d1534e17bd765ff1599a239aeb7e67b9b06bca55678074a2af966914daf9ed657edbf69bbd7d21db6b9dc"], 0x4c}}, 0x0)
set_mempolicy_home_node(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xffffffff, 0x0)
remap_file_pages(&(0x7f000060f000/0x1000)=nil, 0x1000, 0x8, 0x8, 0x40000)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="3400000013000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="100a06000908010014001a80100004800c0006"], 0x34}, 0x1, 0x0, 0x0, 0x200080d0}, 0x14)

kernel console output (not intermixed with test programs):

77135][T13805]  ? arch_stack_walk+0xa6/0xf0
[ 2595.677152][T13805]  ? __lock_acquire+0x4a5/0x2630
[ 2595.677167][T13805]  ? stack_trace_save+0x8e/0xc0
[ 2595.677178][T13805]  ? __pfx_stack_trace_save+0x10/0x10
[ 2595.677195][T13805]  ? find_held_lock+0x2b/0x80
[ 2595.677206][T13805]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 2595.677217][T13805]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 2595.677229][T13805]  ? __pfx_rtnl_newlink+0x10/0x10
[ 2595.677241][T13805]  rtnetlink_rcv_msg+0x95e/0xe90
[ 2595.677254][T13805]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2595.677268][T13805]  ? __lock_acquire+0x4a5/0x2630
[ 2595.677285][T13805]  netlink_rcv_skb+0x159/0x420
[ 2595.677300][T13805]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2595.677313][T13805]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2595.677330][T13805]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 2595.677345][T13805]  netlink_unicast+0x5aa/0x870
[ 2595.677359][T13805]  ? __pfx_netlink_unicast+0x10/0x10
[ 2595.677376][T13805]  netlink_sendmsg+0x8b0/0xda0
[ 2595.677391][T13805]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2595.677406][T13805]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 2595.677421][T13805]  ____sys_sendmsg+0x9e1/0xb70
[ 2595.677436][T13805]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2595.677450][T13805]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2595.677470][T13805]  ___sys_sendmsg+0x190/0x1e0
[ 2595.677486][T13805]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2595.677517][T13805]  __sys_sendmsg+0x170/0x220
[ 2595.677529][T13805]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2595.677545][T13805]  ? __pfx_ksys_write+0x10/0x10
[ 2595.677560][T13805]  __do_fast_syscall_32+0xe3/0x8c0
[ 2595.677576][T13805]  do_fast_syscall_32+0x32/0x70
[ 2595.677590][T13805]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2595.677606][T13805] RIP: 0023:0xf70cef6c
[ 2595.677617][T13805] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2595.677628][T13805] RSP: 002b:00000000f54bd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2595.677640][T13805] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0
[ 2595.677647][T13805] RDX: 0000000000040080 RSI: 0000000000000000 RDI: 0000000000000000
[ 2595.677654][T13805] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2595.677660][T13805] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2595.677667][T13805] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2595.677682][T13805]  </TASK>
[ 2595.978176][T13812] syzkaller0: entered promiscuous mode
[ 2595.980196][T13812] syzkaller0: entered allmulticast mode
[ 2598.685944][T13834] netlink: 'syz.0.11300': attribute type 39 has an invalid length.
[ 2599.065169][  T841] usb 38-1: device descriptor read/8, error -110
[ 2599.197735][T13855] syzkaller0: entered promiscuous mode
[ 2599.199867][T13855] syzkaller0: entered allmulticast mode
[ 2599.374254][T13857] netlink: 'syz.4.11308': attribute type 39 has an invalid length.
[ 2599.571942][  T841] usb usb38-port1: unable to enumerate USB device
[ 2599.922753][T13845] binder: 13833:13845 ioctl c0285840 80000000 returned -22
[ 2600.183348][T13858] binder: 13856:13858 ioctl c0285840 80000000 returned -22
[ 2600.449057][T13874] tipc: Started in network mode
[ 2600.450979][T13874] tipc: Node identity 3ae7d1729d4, cluster identity 4711
[ 2600.453808][T13874] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 2600.458269][T13874] syzkaller0: entered promiscuous mode
[ 2600.460359][T13874] syzkaller0: entered allmulticast mode
[ 2600.707335][T13874] tipc: Resetting bearer <eth:syzkaller0>
[ 2600.722881][T13873] tipc: Resetting bearer <eth:syzkaller0>
[ 2601.077832][T13873] tipc: Disabling bearer <eth:syzkaller0>
[ 2601.610935][T13884] lo speed is unknown, defaulting to 1000
[ 2603.381679][T13924] FAULT_INJECTION: forcing a failure.
[ 2603.381679][T13924] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2603.387575][T13924] CPU: 1 UID: 0 PID: 13924 Comm: syz.4.11322 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2603.387597][T13924] Tainted: [L]=SOFTLOCKUP
[ 2603.387601][T13924] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2603.387609][T13924] Call Trace:
[ 2603.387614][T13924]  <TASK>
[ 2603.387619][T13924]  dump_stack_lvl+0x100/0x190
[ 2603.387647][T13924]  should_fail_ex.cold+0x5/0xa
[ 2603.387663][T13924]  _copy_to_user+0x32/0xd0
[ 2603.387681][T13924]  simple_read_from_buffer+0xcb/0x170
[ 2603.387703][T13924]  proc_fail_nth_read+0x1af/0x230
[ 2603.387722][T13924]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2603.387738][T13924]  ? rw_verify_area+0xce/0x6d0
[ 2603.387756][T13924]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2603.387771][T13924]  vfs_read+0x1e4/0xb30
[ 2603.387785][T13924]  ? __pfx_vfs_read+0x10/0x10
[ 2603.387795][T13924]  ? find_held_lock+0x2b/0x80
[ 2603.387809][T13924]  ? __fget_files+0x215/0x3d0
[ 2603.387823][T13924]  ? __fget_files+0x21f/0x3d0
[ 2603.387844][T13924]  ksys_read+0x12a/0x250
[ 2603.387859][T13924]  ? __pfx_ksys_read+0x10/0x10
[ 2603.387880][T13924]  do_int80_emulation+0x141/0x6b0
[ 2603.387907][T13924]  asm_int80_emulation+0x1a/0x20
[ 2603.387924][T13924] RIP: 0023:0xf7185cab
[ 2603.387938][T13924] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[ 2603.387954][T13924] RSP: 002b:00000000f543d4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 2603.387972][T13924] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f543d5d0
[ 2603.387983][T13924] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[ 2603.387992][T13924] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2603.388002][T13924] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2603.388012][T13924] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2603.388038][T13924]  </TASK>
[ 2603.464753][T13929] netlink: 'syz.0.11323': attribute type 39 has an invalid length.
[ 2604.084566][   T63] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2604.237208][   T63] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2604.244187][   T63] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2604.255060][   T63] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2604.263426][   T63] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2604.490359][T13932] binder: 13927:13932 ioctl c0285840 80000000 returned -22
[ 2605.114467][ T1560] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2605.159323][ T1560] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2605.168481][ T1560] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2605.171568][ T1560] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2605.179841][ T1560] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2605.249115][T13953] lo speed is unknown, defaulting to 1000
[ 2605.447007][  T736] netdevsim netdevsim6 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 2605.450257][  T736] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2605.508217][T13953] chnl_net:caif_netlink_parms(): no params data found
[ 2605.575323][  T736] netdevsim netdevsim6 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 2605.578911][  T736] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2605.645397][T13953] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2605.648175][T13953] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2605.652647][T13953] bridge_slave_0: entered allmulticast mode
[ 2605.656855][T13953] bridge_slave_0: entered promiscuous mode
[ 2605.664376][T13953] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2605.667010][T13953] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2605.669690][T13953] bridge_slave_1: entered allmulticast mode
[ 2605.672490][T13953] bridge_slave_1: entered promiscuous mode
[ 2605.690117][T13953] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2605.695415][T13953] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2605.712365][T13953] team0: Port device team_slave_0 added
[ 2605.716650][   T40] kauditd_printk_skb: 35 callbacks suppressed
[ 2605.716731][   T40] audit: type=1326 audit(2000000761.311:8011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13969 comm="syz.4.11331" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704ef6c code=0x0
[ 2605.726862][  T736] netdevsim netdevsim6 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 2605.730007][  T736] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2605.761641][T13953] team0: Port device team_slave_1 added
[ 2605.776194][T13953] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2605.779031][T13953] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2605.787066][T13953] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2605.791577][T13953] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2605.793753][T13953] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2605.801794][T13953] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2605.827087][T13953] hsr_slave_0: entered promiscuous mode
[ 2605.829885][T13953] hsr_slave_1: entered promiscuous mode
[ 2605.944371][  T736] netdevsim netdevsim6 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 2605.952815][  T736] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2606.002659][T15298] usb 5-1: new high-speed USB device number 75 using dummy_hcd
[ 2606.163811][T15298] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 2606.167684][T15298] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 2606.171278][T15298] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 2606.175932][T15298] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2606.182697][T15298] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 2606.187284][T15298] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 2606.190718][T15298] usb 5-1: Product: syz
[ 2606.192736][T15298] usb 5-1: Manufacturer: syz
[ 2606.200316][T15298] cdc_wdm 5-1:1.0: skipping garbage
[ 2606.202382][T15298] cdc_wdm 5-1:1.0: skipping garbage
[ 2606.207718][T15298] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[ 2606.210387][T15298] cdc_wdm 5-1:1.0: Unknown control protocol
[ 2606.334729][T13989] binder: BINDER_SET_CONTEXT_MGR bad uid 60928 != 0
[ 2606.336979][T13989] binder: 13988:13989 ioctl 4018620d 80000100 returned -1
[ 2606.417723][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[ 2606.419870][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[ 2606.422081][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[ 2606.424134][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[ 2606.426274][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[ 2606.428286][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[ 2606.430611][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[ 2606.432654][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[ 2606.434815][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[ 2606.437215][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[ 2606.439634][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[ 2606.441739][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[ 2606.443848][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[ 2606.445906][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[ 2606.447983][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[ 2606.450061][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[ 2606.452949][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[ 2606.455370][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[ 2606.457934][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[ 2606.459952][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[ 2606.465799][T23427] usb 5-1: USB disconnect, device number 75
[ 2606.647807][  T736] .` (unregistering): Released all slaves
[ 2606.653480][  T736] bond1 (unregistering): Released all slaves
[ 2606.660724][  T736] bond0 (unregistering): Released all slaves
[ 2606.861409][T13996] netlink: 24 bytes leftover after parsing attributes in process `syz.4.11338'.
[ 2607.401721][   T63] Bluetooth: hci0: command tx timeout
[ 2607.479716][   T40] audit: type=1326 audit(2000000762.958:8012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.0.11341" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[ 2607.490951][   T40] audit: type=1326 audit(2000000762.958:8013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.0.11341" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[ 2607.498008][   T40] audit: type=1326 audit(2000000762.967:8014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.0.11341" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf701ef6c code=0x7ffc0000
[ 2607.505213][   T40] audit: type=1326 audit(2000000762.967:8015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.0.11341" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[ 2607.513674][   T40] audit: type=1326 audit(2000000762.967:8016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.0.11341" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[ 2607.546657][   T40] audit: type=1326 audit(2000000762.967:8017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.0.11341" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf701ef6c code=0x7ffc0000
[ 2607.554179][   T40] audit: type=1326 audit(2000000762.967:8018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.0.11341" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[ 2607.561188][   T40] audit: type=1326 audit(2000000762.967:8019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.0.11341" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[ 2607.568593][   T40] audit: type=1326 audit(2000000762.967:8020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.0.11341" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf701ef6c code=0x7ffc0000
[ 2607.577892][T14005] netlink: 'syz.0.11342': attribute type 39 has an invalid length.
[ 2608.331549][T14008] binder: 14004:14008 ioctl c0285840 80000000 returned -22
[ 2608.458978][  T736] hsr_slave_0: left promiscuous mode
[ 2608.473085][  T736] hsr_slave_1: left promiscuous mode
[ 2608.482588][  T736] veth1_macvtap: left promiscuous mode
[ 2608.486209][  T736] veth0_macvtap: left promiscuous mode
[ 2608.488965][  T736] veth1_vlan: left promiscuous mode
[ 2608.490734][  T736] veth0_vlan: left promiscuous mode
[ 2609.062753][T13953] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 2609.178572][T13953] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 2609.185383][T13953] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 2609.202837][T13953] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 2609.614797][   T63] Bluetooth: hci0: command tx timeout
[ 2609.717527][T13953] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2609.739802][T13953] 8021q: adding VLAN 0 to HW filter on device team0
[ 2609.748793][T18265] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2609.751816][T18265] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2609.762867][T18265] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2609.765918][T18265] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2610.069931][T14063] netlink: 'syz.4.11352': attribute type 39 has an invalid length.
[ 2610.175623][T13953] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2610.267633][  T736] IPVS: stop unused estimator thread 0...
[ 2610.364377][T14078] binder: BINDER_SET_CONTEXT_MGR bad uid 60928 != 0
[ 2610.367017][T14078] binder: 14077:14078 ioctl 4018620d 80000100 returned -1
[ 2610.388284][T14073] syzkaller0: entered promiscuous mode
[ 2610.391256][T14073] syzkaller0: entered allmulticast mode
[ 2610.468119][T13953] veth0_vlan: entered promiscuous mode
[ 2610.475557][T13953] veth1_vlan: entered promiscuous mode
[ 2610.497221][T13953] veth0_macvtap: entered promiscuous mode
[ 2610.503665][T13953] veth1_macvtap: entered promiscuous mode
[ 2610.514257][T13953] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2610.526256][T13953] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2610.535702][T18280] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2610.540145][ T1352] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2610.545290][ T1352] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2610.549668][ T1352] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2610.609844][T14082] binder: 14061:14082 ioctl c0285840 80000000 returned -22
[ 2610.678457][ T1352] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2610.682381][ T1352] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2610.727741][  T736] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2610.730280][  T736] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2611.036075][T14099] vlan2: entered allmulticast mode
[ 2611.038172][T14099] bond0: entered allmulticast mode
[ 2611.040219][T14099] bond_slave_0: entered allmulticast mode
[ 2611.042767][T14099] bond_slave_1: entered allmulticast mode
[ 2611.160976][T14096] /dev/sr0: Can't open blockdev
[ 2611.435493][T14098] /dev/sr0: Can't open blockdev
[ 2611.688694][T11572] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[ 2611.793934][T14117] 9pnet_virtio: no channels available for device ./bus
[ 2611.836315][   T63] Bluetooth: hci0: command tx timeout
[ 2611.890788][T14119] netlink: 28 bytes leftover after parsing attributes in process `syz.4.11367'.
[ 2611.901903][T14119] netlink: 4 bytes leftover after parsing attributes in process `syz.4.11367'.
[ 2612.169171][ T2907] usb 9-1: new high-speed USB device number 60 using dummy_hcd
[ 2612.383390][ T2907] usb 9-1: config index 0 descriptor too short (expected 39, got 27)
[ 2612.386862][ T2907] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 2612.390135][ T2907] usb 9-1: config 0 interface 0 has no altsetting 0
[ 2612.433971][ T2907] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 2612.437819][ T2907] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 2612.440820][ T2907] usb 9-1: Product: syz
[ 2612.442584][ T2907] usb 9-1: Manufacturer: syz
[ 2612.444411][ T2907] usb 9-1: SerialNumber: syz
[ 2612.550881][ T2907] usb 9-1: config 0 descriptor??
[ 2612.619447][ T2907] hub 9-1:0.0: bad descriptor, ignoring hub
[ 2612.623249][ T2907] hub 9-1:0.0: probe with driver hub failed with error -5
[ 2612.650399][ T2907] usb 9-1: selecting invalid altsetting 0
[ 2613.065494][ T2907] usb 9-1: USB disconnect, device number 60
[ 2613.081552][T14140] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 1, id = 0
[ 2613.191868][T13963] udevd[13963]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 2613.211440][T14145] XFS (nbd0): SB validate failed with error -5.
[ 2613.228808][T14145] netlink: 164 bytes leftover after parsing attributes in process `syz.0.11376'.
[ 2613.231923][T14145] netlink: 164 bytes leftover after parsing attributes in process `syz.0.11376'.
[ 2613.421015][T14158] overlayfs: overlapping lowerdir path
[ 2614.040325][T14172] FAULT_INJECTION: forcing a failure.
[ 2614.040325][T14172] name failslab, interval 1, probability 0, space 0, times 0
[ 2614.045616][T14172] CPU: 3 UID: 0 PID: 14172 Comm: syz.6.11384 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2614.045650][T14172] Tainted: [L]=SOFTLOCKUP
[ 2614.045657][T14172] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2614.045668][T14172] Call Trace:
[ 2614.045677][T14172]  <TASK>
[ 2614.045687][T14172]  dump_stack_lvl+0x100/0x190
[ 2614.045726][T14172]  should_fail_ex.cold+0x5/0xa
[ 2614.045752][T14172]  should_failslab+0xc2/0x120
[ 2614.045778][T14172]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 2614.045805][T14172]  ? allocate_cgrp_cset_links+0xca/0x230
[ 2614.045832][T14172]  allocate_cgrp_cset_links+0xca/0x230
[ 2614.045859][T14172]  find_css_set+0x788/0x1c80
[ 2614.045894][T14172]  ? __pfx_find_css_set+0x10/0x10
[ 2614.045947][T14172]  cgroup_migrate_prepare_dst+0x10b/0x7f0
[ 2614.045982][T14172]  cgroup_attach_task+0x3e4/0x770
[ 2614.046010][T14172]  ? __pfx_cgroup_attach_task+0x10/0x10
[ 2614.046036][T14172]  ? percpu_down_write+0x22d/0x3e0
[ 2614.046087][T14172]  __cgroup1_procs_write.isra.0+0x2c4/0x420
[ 2614.046117][T14172]  ? __pfx___cgroup1_procs_write.isra.0+0x10/0x10
[ 2614.046146][T14172]  ? kernfs_root+0xf8/0x2a0
[ 2614.046180][T14172]  cgroup_file_write+0x1e9/0x790
[ 2614.046203][T14172]  ? __pfx_cgroup1_procs_write+0x10/0x10
[ 2614.046229][T14172]  ? __pfx_cgroup_file_write+0x10/0x10
[ 2614.046261][T14172]  kernfs_fop_write_iter+0x3e0/0x5f0
[ 2614.046282][T14172]  ? __pfx_cgroup_file_write+0x10/0x10
[ 2614.046310][T14172]  vfs_write+0x6ac/0x1070
[ 2614.046333][T14172]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 2614.046358][T14172]  ? __pfx_vfs_write+0x10/0x10
[ 2614.046396][T14172]  ksys_write+0x12a/0x250
[ 2614.046417][T14172]  ? __pfx_ksys_write+0x10/0x10
[ 2614.046436][T14172]  ? __pfx_ksys_write+0x10/0x10
[ 2614.046462][T14172]  __do_fast_syscall_32+0xe3/0x8c0
[ 2614.046488][T14172]  do_fast_syscall_32+0x32/0x70
[ 2614.046511][T14172]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2614.046535][T14172] RIP: 0023:0xf707ef6c
[ 2614.046553][T14172] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2614.046570][T14172] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[ 2614.046611][T14172] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000800001c0
[ 2614.046623][T14172] RDX: 0000000000000012 RSI: 0000000000000000 RDI: 0000000000000000
[ 2614.046634][T14172] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2614.046645][T14172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2614.046656][T14172] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2614.046683][T14172]  </TASK>
[ 2614.065006][   T63] Bluetooth: hci0: command tx timeout
[ 2614.241103][T14180] netlink: 'syz.7.11388': attribute type 39 has an invalid length.
[ 2614.278519][   T40] kauditd_printk_skb: 81 callbacks suppressed
[ 2614.278541][   T40] audit: type=1326 audit(2000000769.312:8102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14181 comm="syz.6.11389" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707ef88 code=0x7ffc0000
[ 2614.304873][   T40] audit: type=1326 audit(2000000769.312:8103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14181 comm="syz.6.11389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707ef6c code=0x7ffc0000
[ 2614.314183][   T40] audit: type=1326 audit(2000000769.312:8104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14181 comm="syz.6.11389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707ef6c code=0x7ffc0000
[ 2614.340485][   T40] audit: type=1326 audit(2000000769.322:8105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14181 comm="syz.6.11389" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707ef88 code=0x7ffc0000
[ 2614.350420][   T40] audit: type=1326 audit(2000000769.322:8106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14181 comm="syz.6.11389" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707ef88 code=0x7ffc0000
[ 2614.386366][   T40] audit: type=1326 audit(2000000769.322:8107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14181 comm="syz.6.11389" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707ef88 code=0x7ffc0000
[ 2614.396075][   T40] audit: type=1326 audit(2000000769.322:8108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14181 comm="syz.6.11389" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707ef88 code=0x7ffc0000
[ 2614.411695][   T40] audit: type=1326 audit(2000000769.322:8109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14181 comm="syz.6.11389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707ef6c code=0x7ffc0000
[ 2614.439010][   T40] audit: type=1326 audit(2000000769.322:8110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14181 comm="syz.6.11389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707ef6c code=0x7ffc0000
[ 2614.454643][   T40] audit: type=1326 audit(2000000769.322:8111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14181 comm="syz.6.11389" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707ef88 code=0x7ffc0000
[ 2614.472491][T14182] 9p: Unknown Cache mode or invalid value fP� ;F�����scache
[ 2614.619425][T14188] input: syz0 as /devices/virtual/input/input87
[ 2615.029673][T14195] syzkaller0: entered promiscuous mode
[ 2615.031638][T14195] syzkaller0: entered allmulticast mode
[ 2615.037025][T14195] tc action pedit 'at' offset -255 out of bounds
[ 2615.087971][T14189] binder: 14179:14189 ioctl c0285840 80000000 returned -22
[ 2615.914155][T14214] FAULT_INJECTION: forcing a failure.
[ 2615.914155][T14214] name failslab, interval 1, probability 0, space 0, times 0
[ 2615.918386][T14214] CPU: 3 UID: 0 PID: 14214 Comm: syz.0.11398 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2615.918406][T14214] Tainted: [L]=SOFTLOCKUP
[ 2615.918410][T14214] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2615.918418][T14214] Call Trace:
[ 2615.918423][T14214]  <TASK>
[ 2615.918428][T14214]  dump_stack_lvl+0x100/0x190
[ 2615.918455][T14214]  should_fail_ex.cold+0x5/0xa
[ 2615.918470][T14214]  ? tomoyo_encode2+0xfb/0x3c0
[ 2615.918488][T14214]  should_failslab+0xc2/0x120
[ 2615.918504][T14214]  __kmalloc_noprof+0xe0/0x850
[ 2615.918523][T14214]  ? d_absolute_path+0x136/0x1b0
[ 2615.918557][T14214]  tomoyo_encode2+0xfb/0x3c0
[ 2615.918596][T14214]  tomoyo_encode+0x29/0x50
[ 2615.918614][T14214]  tomoyo_realpath_from_path+0x18c/0x690
[ 2615.918635][T14214]  tomoyo_path_number_perm+0x23c/0x580
[ 2615.918650][T14214]  ? tomoyo_path_number_perm+0x22e/0x580
[ 2615.918666][T14214]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2615.918696][T14214]  ? find_held_lock+0x2b/0x80
[ 2615.918708][T14214]  ? hook_file_ioctl_common+0x146/0x410
[ 2615.918724][T14214]  ? __fget_files+0x215/0x3d0
[ 2615.918739][T14214]  ? __fget_files+0x21f/0x3d0
[ 2615.918754][T14214]  security_file_ioctl_compat+0xd3/0x230
[ 2615.918773][T14214]  __ia32_compat_sys_ioctl+0xc2/0x360
[ 2615.918793][T14214]  __do_fast_syscall_32+0xe3/0x8c0
[ 2615.918810][T14214]  do_fast_syscall_32+0x32/0x70
[ 2615.918825][T14214]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2615.918841][T14214] RIP: 0023:0xf701ef6c
[ 2615.918852][T14214] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2615.918864][T14214] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 2615.918877][T14214] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000007001
[ 2615.918885][T14214] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2615.918892][T14214] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2615.918899][T14214] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2615.918905][T14214] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2615.918924][T14214]  </TASK>
[ 2615.919184][T14214] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2617.046511][T14231] FAULT_INJECTION: forcing a failure.
[ 2617.046511][T14231] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2617.054063][T14231] CPU: 3 UID: 0 PID: 14231 Comm: syz.0.11403 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2617.054094][T14231] Tainted: [L]=SOFTLOCKUP
[ 2617.054100][T14231] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2617.054111][T14231] Call Trace:
[ 2617.054119][T14231]  <TASK>
[ 2617.054127][T14231]  dump_stack_lvl+0x100/0x190
[ 2617.054163][T14231]  should_fail_ex.cold+0x5/0xa
[ 2617.054187][T14231]  _copy_to_user+0x32/0xd0
[ 2617.054216][T14231]  simple_read_from_buffer+0xcb/0x170
[ 2617.054248][T14231]  proc_fail_nth_read+0x1af/0x230
[ 2617.054273][T14231]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2617.054298][T14231]  ? rw_verify_area+0xce/0x6d0
[ 2617.054325][T14231]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2617.054347][T14231]  vfs_read+0x1e4/0xb30
[ 2617.054369][T14231]  ? __pfx_vfs_read+0x10/0x10
[ 2617.054385][T14231]  ? find_held_lock+0x2b/0x80
[ 2617.054404][T14231]  ? __fget_files+0x215/0x3d0
[ 2617.054427][T14231]  ? __fget_files+0x21f/0x3d0
[ 2617.054452][T14231]  ksys_read+0x12a/0x250
[ 2617.054469][T14231]  ? __pfx_ksys_read+0x10/0x10
[ 2617.054494][T14231]  do_int80_emulation+0x141/0x6b0
[ 2617.054520][T14231]  asm_int80_emulation+0x1a/0x20
[ 2617.054537][T14231] RIP: 0023:0xf7155cab
[ 2617.054554][T14231] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[ 2617.054594][T14231] RSP: 002b:00000000f540d4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 2617.054614][T14231] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f540d5d0
[ 2617.054626][T14231] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[ 2617.054636][T14231] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2617.054646][T14231] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2617.054656][T14231] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2617.054680][T14231]  </TASK>
[ 2617.589262][T14238] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2618.150810][T14243] fuse: Unknown parameter '�9m�|�$��g��)q'N�uw��Ց��Թ��v~�w.�)�~�'
[ 2618.173186][T14236] x_tables: duplicate underflow at hook 1
[ 2618.209783][T14243] ksmbd: Daemon and kernel module version mismatch. ksmbd: 124, kernel module: 1. User-space ksmbd should terminate.
[ 2618.244981][T14236] hub 8-0:1.0: USB hub found
[ 2618.249661][T14236] hub 8-0:1.0: 1 port detected
[ 2620.257002][T14262] openvswitch: netlink: IP tunnel dst address not specified
[ 2621.714412][T14278] netlink: 24 bytes leftover after parsing attributes in process `syz.4.11415'.
[ 2622.076679][T14278] lo speed is unknown, defaulting to 1000
[ 2623.140884][T14289] netlink: 20 bytes leftover after parsing attributes in process `syz.4.11417'.
[ 2623.156790][T14289] netlink: 16 bytes leftover after parsing attributes in process `syz.4.11417'.
[ 2623.314572][T14291] FAULT_INJECTION: forcing a failure.
[ 2623.314572][T14291] name failslab, interval 1, probability 0, space 0, times 0
[ 2623.318627][T14291] CPU: 1 UID: 0 PID: 14291 Comm: syz.6.11419 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2623.318648][T14291] Tainted: [L]=SOFTLOCKUP
[ 2623.318652][T14291] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2623.318659][T14291] Call Trace:
[ 2623.318664][T14291]  <TASK>
[ 2623.318670][T14291]  dump_stack_lvl+0x100/0x190
[ 2623.318695][T14291]  should_fail_ex.cold+0x5/0xa
[ 2623.318711][T14291]  should_failslab+0xc2/0x120
[ 2623.318726][T14291]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 2623.318743][T14291]  ? tc_new_tfilter+0xe17/0x24a0
[ 2623.318758][T14291]  ? tcf_chain_tp_find+0x2b5/0x470
[ 2623.318778][T14291]  tc_new_tfilter+0xe17/0x24a0
[ 2623.318796][T14291]  ? rcu_is_cpu_rrupt_from_idle+0x210/0x270
[ 2623.318817][T14291]  ? kasan_quarantine_put+0x104/0x240
[ 2623.318836][T14291]  ? lockdep_hardirqs_on+0x78/0x100
[ 2623.318850][T14291]  ? __pfx_tc_new_tfilter+0x10/0x10
[ 2623.318864][T14291]  ? kmem_cache_free+0x124/0x6a0
[ 2623.318879][T14291]  ? skb_release_data+0x7a0/0x9d0
[ 2623.318895][T14291]  ? __lock_acquire+0x4a5/0x2630
[ 2623.318918][T14291]  ? find_held_lock+0x2b/0x80
[ 2623.318930][T14291]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 2623.318943][T14291]  ? __pfx_tc_new_tfilter+0x10/0x10
[ 2623.318956][T14291]  rtnetlink_rcv_msg+0x95e/0xe90
[ 2623.318970][T14291]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2623.318985][T14291]  ? ref_tracker_free+0x37e/0x6c0
[ 2623.319005][T14291]  netlink_rcv_skb+0x159/0x420
[ 2623.319019][T14291]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2623.319032][T14291]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2623.319049][T14291]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 2623.319064][T14291]  netlink_unicast+0x5aa/0x870
[ 2623.319078][T14291]  ? __pfx_netlink_unicast+0x10/0x10
[ 2623.319090][T14291]  ? __pfx___might_resched+0x10/0x10
[ 2623.319114][T14291]  netlink_sendmsg+0x8b0/0xda0
[ 2623.319129][T14291]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2623.319148][T14291]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 2623.319164][T14291]  ____sys_sendmsg+0x9e1/0xb70
[ 2623.319179][T14291]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2623.319193][T14291]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2623.319213][T14291]  ___sys_sendmsg+0x190/0x1e0
[ 2623.319230][T14291]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2623.319262][T14291]  __sys_sendmsg+0x170/0x220
[ 2623.319274][T14291]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2623.319290][T14291]  ? __pfx_ksys_write+0x10/0x10
[ 2623.319307][T14291]  __do_fast_syscall_32+0xe3/0x8c0
[ 2623.319323][T14291]  do_fast_syscall_32+0x32/0x70
[ 2623.319337][T14291]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2623.319353][T14291] RIP: 0023:0xf707ef6c
[ 2623.319364][T14291] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2623.319376][T14291] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2623.319388][T14291] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000140
[ 2623.319396][T14291] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2623.319402][T14291] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2623.319408][T14291] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2623.319415][T14291] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2623.319443][T14291]  </TASK>
[ 2625.175034][T14311] lo speed is unknown, defaulting to 1000
[ 2626.820366][T14332] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2626.956360][T14332] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2627.033867][T14347] netlink: 'syz.4.11430': attribute type 39 has an invalid length.
[ 2627.098655][T14332] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2627.215026][T14352] netlink: 'syz.7.11432': attribute type 39 has an invalid length.
[ 2627.253278][T14332] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2627.374856][  T736] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2627.415843][  T736] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2627.424681][  T736] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2627.433742][  T736] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2627.696344][T14352] binder: 14351:14352 ioctl c0285840 80000000 returned -22
[ 2628.200078][   T40] kauditd_printk_skb: 1757 callbacks suppressed
[ 2628.200098][   T40] audit: type=1326 audit(2000000782.348:9869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14360 comm="syz.6.11434" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707ef6c code=0x0
[ 2628.563638][T14349] binder: 14345:14349 ioctl c0285840 80000000 returned -22
[ 2629.505784][T14388] netlink: 'syz.6.11442': attribute type 39 has an invalid length.
[ 2630.163032][T14403] netlink: 12 bytes leftover after parsing attributes in process `syz.0.11447'.
[ 2630.181133][T14403] vlan3: entered allmulticast mode
[ 2630.182868][T14403] bridge1: entered allmulticast mode
[ 2630.187455][T14403] bridge1: port 1(erspan0) entered blocking state
[ 2630.189876][T14403] bridge1: port 1(erspan0) entered disabled state
[ 2630.192256][T14403] erspan0: entered allmulticast mode
[ 2630.195045][T14403] erspan0: entered promiscuous mode
[ 2630.197590][T14403] bridge1: port 1(erspan0) entered blocking state
[ 2630.199791][T14403] bridge1: port 1(erspan0) entered forwarding state
[ 2630.298245][T14401] binder: 14387:14401 ioctl c0285840 80000000 returned -22
[ 2631.025417][T14409] netlink: 20 bytes leftover after parsing attributes in process `syz.4.11446'.
[ 2631.890484][T14420] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 2632.717314][T14433] program syz.7.11456 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2632.720325][T14433] FAULT_INJECTION: forcing a failure.
[ 2632.720325][T14433] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2632.724727][T14433] CPU: 0 UID: 0 PID: 14433 Comm: syz.7.11456 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2632.724749][T14433] Tainted: [L]=SOFTLOCKUP
[ 2632.724754][T14433] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2632.724763][T14433] Call Trace:
[ 2632.724770][T14433]  <TASK>
[ 2632.724777][T14433]  dump_stack_lvl+0x100/0x190
[ 2632.724807][T14433]  should_fail_ex.cold+0x5/0xa
[ 2632.724841][T14433]  ? fs_reclaim_acquire+0x70/0x100
[ 2632.724866][T14433]  should_fail_alloc_page+0xeb/0x140
[ 2632.724894][T14433]  prepare_alloc_pages+0x1f0/0x5f0
[ 2632.724917][T14433]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 2632.724953][T14433]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2632.724979][T14433]  ? rcu_is_watching+0x12/0xc0
[ 2632.725007][T14433]  ? trace_kmem_cache_alloc+0xf3/0x120
[ 2632.725025][T14433]  ? __kasan_slab_alloc+0x89/0x90
[ 2632.725052][T14433]  ? mempool_alloc_noprof+0x1ce/0x310
[ 2632.725073][T14433]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2632.725094][T14433]  ? policy_nodemask+0xed/0x4f0
[ 2632.725116][T14433]  alloc_pages_mpol+0x1fb/0x550
[ 2632.725135][T14433]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2632.725155][T14433]  ? __pfx_bio_alloc_bioset+0x10/0x10
[ 2632.725181][T14433]  alloc_pages_noprof+0x136/0x390
[ 2632.725201][T14433]  blk_rq_map_kern+0x4d0/0x7f0
[ 2632.725227][T14433]  ? capable+0xd3/0xf0
[ 2632.725247][T14433]  scsi_ioctl+0xad9/0x17b0
[ 2632.725272][T14433]  ? __pfx_scsi_ioctl+0x10/0x10
[ 2632.725290][T14433]  ? tomoyo_path_number_perm+0x28f/0x580
[ 2632.725317][T14433]  ? tomoyo_path_number_perm+0x188/0x580
[ 2632.725340][T14433]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2632.725371][T14433]  sg_ioctl+0x81e/0x26c0
[ 2632.725396][T14433]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 2632.725423][T14433]  ? __pfx_sg_ioctl+0x10/0x10
[ 2632.725445][T14433]  ? find_held_lock+0x2b/0x80
[ 2632.725464][T14433]  ? hook_file_ioctl_common+0x146/0x410
[ 2632.725488][T14433]  ? __fget_files+0x21f/0x3d0
[ 2632.725507][T14433]  ? __pfx_sg_ioctl+0x10/0x10
[ 2632.725525][T14433]  compat_ptr_ioctl+0x6e/0xa0
[ 2632.725549][T14433]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[ 2632.725572][T14433]  __ia32_compat_sys_ioctl+0x2cf/0x360
[ 2632.725601][T14433]  __do_fast_syscall_32+0xe3/0x8c0
[ 2632.725626][T14433]  do_fast_syscall_32+0x32/0x70
[ 2632.725646][T14433]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2632.725669][T14433] RIP: 0023:0xf70cef6c
[ 2632.725684][T14433] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2632.725700][T14433] RSP: 002b:00000000f54bd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 2632.725718][T14433] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000001
[ 2632.725728][T14433] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[ 2632.725738][T14433] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2632.725748][T14433] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2632.725757][T14433] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2632.725779][T14433]  </TASK>
[ 2632.848343][T14438] netlink: 'syz.6.11458': attribute type 39 has an invalid length.
[ 2633.998617][T14447] netlink: 'syz.7.11460': attribute type 39 has an invalid length.
[ 2634.316667][T14440] binder: 14434:14440 ioctl c0285840 80000000 returned -22
[ 2634.961879][T14450] binder: 14446:14450 ioctl c0285840 80000000 returned -22
[ 2635.037632][T14461] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2635.040530][T14460] lo speed is unknown, defaulting to 1000
[ 2635.040677][T14461] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2635.103384][T14473] netlink: 'syz.6.11466': attribute type 10 has an invalid length.
[ 2635.112546][T14473] team0: Port device dummy0 added
[ 2635.116740][T14470] FAULT_INJECTION: forcing a failure.
[ 2635.116740][T14470] name failslab, interval 1, probability 0, space 0, times 0
[ 2635.122341][T14470] CPU: 1 UID: 0 PID: 14470 Comm: syz.0.11465 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2635.122363][T14470] Tainted: [L]=SOFTLOCKUP
[ 2635.122367][T14470] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2635.122375][T14470] Call Trace:
[ 2635.122380][T14470]  <TASK>
[ 2635.122386][T14470]  dump_stack_lvl+0x100/0x190
[ 2635.122414][T14470]  should_fail_ex.cold+0x5/0xa
[ 2635.122431][T14470]  should_failslab+0xc2/0x120
[ 2635.122447][T14470]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[ 2635.122468][T14470]  ? __alloc_skb+0x140/0x710
[ 2635.122518][T14470]  __alloc_skb+0x140/0x710
[ 2635.122537][T14470]  ? __alloc_skb+0x5b7/0x710
[ 2635.122560][T14470]  ? __pfx___alloc_skb+0x10/0x10
[ 2635.122593][T14470]  netlink_dump+0x19b/0xd30
[ 2635.122620][T14470]  ? __pfx_netlink_dump+0x10/0x10
[ 2635.122651][T14470]  ? __asan_memset+0x23/0x50
[ 2635.122670][T14470]  ? genl_start+0x67a/0x970
[ 2635.122686][T14470]  __netlink_dump_start+0x6d6/0x990
[ 2635.122702][T14470]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[ 2635.122720][T14470]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[ 2635.122740][T14470]  ? __pfx_genl_get_cmd+0x10/0x10
[ 2635.122754][T14470]  ? __pfx_genl_start+0x10/0x10
[ 2635.122767][T14470]  ? __pfx_genl_dumpit+0x10/0x10
[ 2635.122781][T14470]  ? __pfx_genl_done+0x10/0x10
[ 2635.122797][T14470]  ? __dev_queue_xmit+0x5af/0x4800
[ 2635.122814][T14470]  ? __radix_tree_lookup+0x217/0x2b0
[ 2635.122840][T14470]  genl_rcv_msg+0x471/0x800
[ 2635.122857][T14470]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 2635.122873][T14470]  ? __pfx_nl80211_dump_station+0x10/0x10
[ 2635.122901][T14470]  netlink_rcv_skb+0x159/0x420
[ 2635.122914][T14470]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 2635.122931][T14470]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2635.122950][T14470]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 2635.122964][T14470]  genl_rcv+0x28/0x40
[ 2635.122977][T14470]  netlink_unicast+0x5aa/0x870
[ 2635.122991][T14470]  ? __pfx_netlink_unicast+0x10/0x10
[ 2635.123009][T14470]  netlink_sendmsg+0x8b0/0xda0
[ 2635.123038][T14470]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2635.123053][T14470]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 2635.123070][T14470]  ____sys_sendmsg+0x9e1/0xb70
[ 2635.123085][T14470]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2635.123099][T14470]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2635.123121][T14470]  ___sys_sendmsg+0x190/0x1e0
[ 2635.123150][T14470]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2635.123185][T14470]  __sys_sendmsg+0x170/0x220
[ 2635.123197][T14470]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2635.123219][T14470]  ? __pfx_ksys_write+0x10/0x10
[ 2635.123242][T14470]  __do_fast_syscall_32+0xe3/0x8c0
[ 2635.123264][T14470]  do_fast_syscall_32+0x32/0x70
[ 2635.123283][T14470]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2635.123304][T14470] RIP: 0023:0xf701ef6c
[ 2635.123318][T14470] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2635.123333][T14470] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2635.123346][T14470] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[ 2635.123353][T14470] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2635.123360][T14470] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2635.123366][T14470] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2635.123373][T14470] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2635.123388][T14470]  </TASK>
[ 2635.283378][T29654] usb 9-1: new full-speed USB device number 61 using dummy_hcd
[ 2635.403743][   T40] audit: type=1326 audit(2000000789.095:9870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14476 comm="syz.0.11467" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701ef6c code=0x0
[ 2635.443126][T29654] usb 9-1: config 0 has no interfaces?
[ 2635.444900][T29654] usb 9-1: New USB device found, idVendor=12d1, idProduct=42f7, bcdDevice=aa.47
[ 2635.448024][T29654] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2635.452402][T29654] usb 9-1: config 0 descriptor??
[ 2635.542022][T14481] bridge1: port 1(erspan0) entered disabled state
[ 2635.576828][T14481] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2635.579239][T14481] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2635.624728][T14481] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2635.632369][T14481] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2635.674403][ T2848] usb 9-1: USB disconnect, device number 61
[ 2635.746057][T14481] tipc: Resetting bearer <eth:syzkaller0>
[ 2635.820092][T18265] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 2635.823844][T18265] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 2635.827735][T18265] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 2635.831755][T18265] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 2636.347885][T14490] 9p: Bad value for 'wfdno'
[ 2636.528610][T14499] netlink: 'syz.4.11474': attribute type 12 has an invalid length.
[ 2636.533658][T14499] program syz.4.11474 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2637.000658][T14516] input: syz0 as /devices/virtual/input/input88
[ 2637.028953][T14517] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(7)
[ 2637.031193][T14517] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2637.038124][T14517] vhci_hcd vhci_hcd.0: Device attached
[ 2637.397362][  T841] usb 52-1: SetAddress Request (7) to port 0
[ 2637.403337][  T841] usb 52-1: new SuperSpeed USB device number 7 using vhci_hcd
[ 2637.639900][T14518] vhci_hcd: connection reset by peer
[ 2637.649860][T12613] vhci_hcd vhci_hcd.7: stop threads
[ 2637.651705][T12613] vhci_hcd vhci_hcd.7: release socket
[ 2637.655114][T12613] vhci_hcd vhci_hcd.7: disconnect device
[ 2637.791993][T14531] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[ 2638.005871][T14550] netlink: 'syz.0.11488': attribute type 39 has an invalid length.
[ 2638.349254][T14560] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 2638.529521][T14569] netlink: 1932 bytes leftover after parsing attributes in process `syz.4.11493'.
[ 2638.538028][T14569] netlink: 24 bytes leftover after parsing attributes in process `syz.4.11493'.
[ 2638.740663][T14572] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(8)
[ 2638.742890][T14572] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2638.746306][T14572] vhci_hcd vhci_hcd.0: Device attached
[ 2639.316900][T14573] vhci_hcd: connection closed
[ 2639.317432][T18265] vhci_hcd vhci_hcd.7: stop threads
[ 2639.323140][T18265] vhci_hcd vhci_hcd.7: release socket
[ 2639.325982][T18265] vhci_hcd vhci_hcd.7: disconnect device
[ 2640.641476][T14582] FAULT_INJECTION: forcing a failure.
[ 2640.641476][T14582] name failslab, interval 1, probability 0, space 0, times 0
[ 2640.645904][T14582] CPU: 0 UID: 0 PID: 14582 Comm: syz.0.11495 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2640.645925][T14582] Tainted: [L]=SOFTLOCKUP
[ 2640.645930][T14582] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2640.645936][T14582] Call Trace:
[ 2640.645942][T14582]  <TASK>
[ 2640.645949][T14582]  dump_stack_lvl+0x100/0x190
[ 2640.645975][T14582]  should_fail_ex.cold+0x5/0xa
[ 2640.645992][T14582]  should_failslab+0xc2/0x120
[ 2640.646018][T14582]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 2640.646039][T14582]  ? dst_alloc+0x99/0x1a0
[ 2640.646057][T14582]  ? widen_string+0xdb/0x2f0
[ 2640.646076][T14582]  dst_alloc+0x99/0x1a0
[ 2640.646094][T14582]  rt_dst_alloc+0x35/0x3a0
[ 2640.646122][T14582]  ip_route_output_key_hash_rcu+0x87a/0x2870
[ 2640.646143][T14582]  ip_route_output_key_hash+0x118/0x2b0
[ 2640.646160][T14582]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[ 2640.646176][T14582]  ? ns_capable+0xd2/0xf0
[ 2640.646192][T14582]  ? find_held_lock+0x2b/0x80
[ 2640.646207][T14582]  ip_route_output_flow+0x27/0x150
[ 2640.646224][T14582]  udp_sendmsg+0x1a77/0x2890
[ 2640.646239][T14582]  ? __pfx_ip_generic_getfrag+0x10/0x10
[ 2640.646252][T14582]  ? __pfx_udp_sendmsg+0x10/0x10
[ 2640.646264][T14582]  ? tomoyo_supervisor+0x1e7/0x1340
[ 2640.646279][T14582]  ? __pfx_tomoyo_supervisor+0x10/0x10
[ 2640.646301][T14582]  ? tomoyo_check_open_permission+0x1db/0x3c0
[ 2640.646320][T14582]  udpv6_sendmsg+0x156c/0x2f60
[ 2640.646341][T14582]  ? find_held_lock+0x2b/0x80
[ 2640.646358][T14582]  ? __pfx_udpv6_sendmsg+0x10/0x10
[ 2640.646397][T14582]  ? __local_bh_enable_ip+0x9e/0x120
[ 2640.646411][T14582]  ? lockdep_hardirqs_on+0x78/0x100
[ 2640.646423][T14582]  ? inet_autobind+0x145/0x1a0
[ 2640.646437][T14582]  ? __local_bh_enable_ip+0x9e/0x120
[ 2640.646450][T14582]  ? inet_autobind+0x14a/0x1a0
[ 2640.646484][T14582]  ? __pfx_udpv6_sendmsg+0x10/0x10
[ 2640.646509][T14582]  ? inet6_sendmsg+0x105/0x140
[ 2640.646519][T14582]  inet6_sendmsg+0x105/0x140
[ 2640.646531][T14582]  ____sys_sendmsg+0x704/0xb70
[ 2640.646549][T14582]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2640.646570][T14582]  ___sys_sendmsg+0x190/0x1e0
[ 2640.646587][T14582]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2640.646620][T14582]  __sys_sendmsg+0x170/0x220
[ 2640.646632][T14582]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2640.646649][T14582]  ? __pfx_ksys_write+0x10/0x10
[ 2640.646665][T14582]  __do_fast_syscall_32+0xe3/0x8c0
[ 2640.646681][T14582]  do_fast_syscall_32+0x32/0x70
[ 2640.646695][T14582]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2640.646711][T14582] RIP: 0023:0xf701ef6c
[ 2640.646723][T14582] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2640.646735][T14582] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2640.646748][T14582] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000400
[ 2640.646755][T14582] RDX: 0000000000040004 RSI: 0000000000000000 RDI: 0000000000000000
[ 2640.646762][T14582] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2640.646769][T14582] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2640.646775][T14582] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2640.646790][T14582]  </TASK>
[ 2640.760026][T14563] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[ 2640.763426][   T63] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2640.775375][T14563] Bluetooth: hci0: Opcode 0x0406 failed: -110
[ 2641.573507][T14563] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 2641.722971][T14592] Invalid argument reading file caps for ./file0
[ 2642.194301][T14608] netlink: 4 bytes leftover after parsing attributes in process `syz.6.11503'.
[ 2642.206291][T14608] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[ 2642.210189][T14608] team0: Device ipvlan2 is already an upper device of the team interface
[ 2642.830708][   T63] Bluetooth: hci0: unexpected event for opcode 0x040d
[ 2642.868771][  T841] usb 52-1: device descriptor read/8, error -110
[ 2643.051259][T14628] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11512'.
[ 2643.054887][T14628] netlink: 20 bytes leftover after parsing attributes in process `syz.0.11512'.
[ 2643.060157][T14628] binder: BINDER_SET_CONTEXT_MGR already set
[ 2643.062869][T14628] binder: 14627:14628 ioctl 4018620d 80004a80 returned -16
[ 2643.196279][T14641] netlink: 'syz.4.11514': attribute type 39 has an invalid length.
[ 2643.298536][  T841] usb usb52-port1: attempt power cycle
[ 2644.347677][  T841] usb usb52-port1: unable to enumerate USB device
[ 2646.197868][T14680] netlink: 'syz.0.11526': attribute type 39 has an invalid length.
[ 2646.569814][T14686] FAULT_INJECTION: forcing a failure.
[ 2646.569814][T14686] name failslab, interval 1, probability 0, space 0, times 0
[ 2646.573886][T14686] CPU: 1 UID: 0 PID: 14686 Comm: syz.4.11528 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2646.573907][T14686] Tainted: [L]=SOFTLOCKUP
[ 2646.573911][T14686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2646.573919][T14686] Call Trace:
[ 2646.573924][T14686]  <TASK>
[ 2646.573929][T14686]  dump_stack_lvl+0x100/0x190
[ 2646.573956][T14686]  should_fail_ex.cold+0x5/0xa
[ 2646.573972][T14686]  should_failslab+0xc2/0x120
[ 2646.574000][T14686]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[ 2646.574021][T14686]  ? __alloc_skb+0x140/0x710
[ 2646.574042][T14686]  __alloc_skb+0x140/0x710
[ 2646.574059][T14686]  ? __alloc_skb+0x5b7/0x710
[ 2646.574077][T14686]  ? __pfx___alloc_skb+0x10/0x10
[ 2646.574099][T14686]  __tipc_nl_compat_doit+0xa3/0x3d0
[ 2646.574118][T14686]  ? __pfx___tipc_nl_compat_doit+0x10/0x10
[ 2646.574140][T14686]  ? bpf_lsm_capable+0x9/0x10
[ 2646.574154][T14686]  ? security_capable+0x80/0x260
[ 2646.574169][T14686]  tipc_nl_compat_doit+0x11e/0x290
[ 2646.574186][T14686]  tipc_nl_compat_recv+0x908/0xc40
[ 2646.574204][T14686]  ? __pfx_tipc_nl_compat_recv+0x10/0x10
[ 2646.574220][T14686]  ? __pfx___tipc_nl_bearer_enable+0x10/0x10
[ 2646.574231][T14686]  ? __pfx_tipc_nl_compat_bearer_enable+0x10/0x10
[ 2646.574248][T14686]  ? lock_acquire+0x1cf/0x380
[ 2646.574269][T14686]  ? __mutex_lock+0x26a/0x1b90
[ 2646.574284][T14686]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[ 2646.574315][T14686]  genl_family_rcv_msg_doit+0x214/0x300
[ 2646.574333][T14686]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 2646.574347][T14686]  ? genl_get_cmd+0x3ef/0x720
[ 2646.574366][T14686]  ? __radix_tree_lookup+0x217/0x2b0
[ 2646.574387][T14686]  genl_rcv_msg+0x560/0x800
[ 2646.574403][T14686]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 2646.574418][T14686]  ? __pfx_tipc_nl_compat_recv+0x10/0x10
[ 2646.574458][T14686]  ? __lock_acquire+0x4a5/0x2630
[ 2646.574482][T14686]  netlink_rcv_skb+0x159/0x420
[ 2646.574500][T14686]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 2646.574521][T14686]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2646.574547][T14686]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 2646.574566][T14686]  genl_rcv+0x28/0x40
[ 2646.574584][T14686]  netlink_unicast+0x5aa/0x870
[ 2646.574603][T14686]  ? __pfx_netlink_unicast+0x10/0x10
[ 2646.574619][T14686]  ? __pfx___might_resched+0x10/0x10
[ 2646.574673][T14686]  netlink_sendmsg+0x8b0/0xda0
[ 2646.574694][T14686]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2646.574715][T14686]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 2646.574738][T14686]  ____sys_sendmsg+0x9e1/0xb70
[ 2646.574758][T14686]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2646.574778][T14686]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2646.574809][T14686]  ___sys_sendmsg+0x190/0x1e0
[ 2646.574827][T14686]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2646.574861][T14686]  __sys_sendmsg+0x170/0x220
[ 2646.574874][T14686]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2646.574895][T14686]  ? __pfx_ksys_write+0x10/0x10
[ 2646.574912][T14686]  __do_fast_syscall_32+0xe3/0x8c0
[ 2646.574928][T14686]  do_fast_syscall_32+0x32/0x70
[ 2646.574942][T14686]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2646.574959][T14686] RIP: 0023:0xf704ef6c
[ 2646.574970][T14686] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2646.574982][T14686] RSP: 002b:00000000f543d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2646.574995][T14686] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0
[ 2646.575002][T14686] RDX: 0000000000008010 RSI: 0000000000000000 RDI: 0000000000000000
[ 2646.575009][T14686] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2646.575016][T14686] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2646.575022][T14686] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2646.575037][T14686]  </TASK>
[ 2647.577369][T14695] FAULT_INJECTION: forcing a failure.
[ 2647.577369][T14695] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2647.585014][T14695] CPU: 3 UID: 0 PID: 14695 Comm: syz.0.11531 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2647.585037][T14695] Tainted: [L]=SOFTLOCKUP
[ 2647.585042][T14695] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2647.585049][T14695] Call Trace:
[ 2647.585054][T14695]  <TASK>
[ 2647.585059][T14695]  dump_stack_lvl+0x100/0x190
[ 2647.585087][T14695]  should_fail_ex.cold+0x5/0xa
[ 2647.585103][T14695]  _copy_to_user+0x32/0xd0
[ 2647.585125][T14695]  simple_read_from_buffer+0xcb/0x170
[ 2647.585147][T14695]  proc_fail_nth_read+0x1af/0x230
[ 2647.585165][T14695]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2647.585181][T14695]  ? rw_verify_area+0xce/0x6d0
[ 2647.585199][T14695]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2647.585215][T14695]  vfs_read+0x1e4/0xb30
[ 2647.585229][T14695]  ? __pfx_vfs_read+0x10/0x10
[ 2647.585239][T14695]  ? find_held_lock+0x2b/0x80
[ 2647.585253][T14695]  ? __fget_files+0x215/0x3d0
[ 2647.585268][T14695]  ? __fget_files+0x21f/0x3d0
[ 2647.585283][T14695]  ksys_read+0x12a/0x250
[ 2647.585294][T14695]  ? __pfx_ksys_read+0x10/0x10
[ 2647.585309][T14695]  do_int80_emulation+0x141/0x6b0
[ 2647.585327][T14695]  asm_int80_emulation+0x1a/0x20
[ 2647.585340][T14695] RIP: 0023:0xf7155cab
[ 2647.585351][T14695] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[ 2647.585362][T14695] RSP: 002b:00000000f540d4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 2647.585374][T14695] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f540d5d0
[ 2647.585381][T14695] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[ 2647.585387][T14695] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2647.585394][T14695] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2647.585401][T14695] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2647.585415][T14695]  </TASK>
[ 2647.751681][T14704] FAULT_INJECTION: forcing a failure.
[ 2647.751681][T14704] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2647.757336][T14704] CPU: 3 UID: 0 PID: 14704 Comm: syz.0.11535 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2647.757358][T14704] Tainted: [L]=SOFTLOCKUP
[ 2647.757363][T14704] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2647.757371][T14704] Call Trace:
[ 2647.757376][T14704]  <TASK>
[ 2647.757382][T14704]  dump_stack_lvl+0x100/0x190
[ 2647.757410][T14704]  should_fail_ex.cold+0x5/0xa
[ 2647.757427][T14704]  _copy_from_user+0x2e/0xd0
[ 2647.757445][T14704]  get_compat_msghdr+0xb3/0x4b0
[ 2647.757467][T14704]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2647.757492][T14704]  ___sys_sendmsg+0x1b6/0x1e0
[ 2647.757510][T14704]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2647.757543][T14704]  __sys_sendmsg+0x170/0x220
[ 2647.757556][T14704]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2647.757573][T14704]  ? __pfx_ksys_write+0x10/0x10
[ 2647.757590][T14704]  __do_fast_syscall_32+0xe3/0x8c0
[ 2647.757608][T14704]  do_fast_syscall_32+0x32/0x70
[ 2647.757622][T14704]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2647.757639][T14704] RIP: 0023:0xf701ef6c
[ 2647.757650][T14704] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2647.757663][T14704] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2647.757675][T14704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000500
[ 2647.757683][T14704] RDX: 000000000804c050 RSI: 0000000000000000 RDI: 0000000000000000
[ 2647.757691][T14704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2647.757698][T14704] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2647.757705][T14704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2647.757719][T14704]  </TASK>
[ 2648.100919][T14713] netlink: 236 bytes leftover after parsing attributes in process `syz.7.11534'.
[ 2648.740254][T14729] netlink: 'syz.7.11539': attribute type 39 has an invalid length.
[ 2648.864459][   T40] audit: type=1326 audit(2000000801.691:9871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14731 comm="syz.4.11540" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 2648.871501][   T40] audit: type=1326 audit(2000000801.691:9872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14731 comm="syz.4.11540" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 2648.880893][   T40] audit: type=1326 audit(2000000801.691:9873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14731 comm="syz.4.11540" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 2648.888099][   T40] audit: type=1326 audit(2000000801.691:9874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14731 comm="syz.4.11540" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 2648.894790][   T40] audit: type=1326 audit(2000000801.691:9875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14731 comm="syz.4.11540" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 2648.904808][   T40] audit: type=1326 audit(2000000801.710:9876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14731 comm="syz.4.11540" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 2648.914715][   T40] audit: type=1326 audit(2000000801.710:9877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14731 comm="syz.4.11540" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 2648.921920][   T40] audit: type=1326 audit(2000000801.710:9878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14731 comm="syz.4.11540" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 2648.922648][T14734] netlink: 'syz.0.11541': attribute type 39 has an invalid length.
[ 2648.932135][   T40] audit: type=1326 audit(2000000801.710:9879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14731 comm="syz.4.11540" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 2648.939709][   T40] audit: type=1326 audit(2000000801.710:9880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14731 comm="syz.4.11540" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 2649.328823][T14737] binder: 14733:14737 ioctl c0285840 80000000 returned -22
[ 2649.805147][T14760] lo speed is unknown, defaulting to 1000
[ 2649.837732][T14730] binder: 14727:14730 ioctl c0285840 80000000 returned -22
[ 2651.522232][T14797] netlink: 'syz.0.11554': attribute type 2 has an invalid length.
[ 2651.533695][T14797] : entered promiscuous mode
[ 2651.841824][T14800] netlink: 'syz.4.11556': attribute type 39 has an invalid length.
[ 2652.445662][T14805] binder: 14799:14805 ioctl c0285840 80000000 returned -22
[ 2652.856925][T14811] netlink: 'syz.7.11559': attribute type 39 has an invalid length.
[ 2653.806820][T14811] binder: 14810:14811 ioctl c0285840 80000000 returned -22
[ 2653.882448][T14825] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[ 2653.956399][T14826] �: renamed from pim6reg1
[ 2655.999086][T14853] netlink: 'syz.4.11571': attribute type 39 has an invalid length.
[ 2656.172835][T14849] netlink: 'syz.6.11569': attribute type 39 has an invalid length.
[ 2656.630041][T14859] lo speed is unknown, defaulting to 1000
[ 2657.145505][T14858] binder: 14848:14858 ioctl c0285840 80000000 returned -22
[ 2657.607433][T14855] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[ 2658.215917][T14866] binder: 14852:14866 ioctl c0285840 80000000 returned -22
[ 2659.194681][   T40] kauditd_printk_skb: 30 callbacks suppressed
[ 2659.194694][   T40] audit: type=1326 audit(2000000811.348:9911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14882 comm="syz.7.11577" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2659.204243][   T40] audit: type=1326 audit(2000000811.358:9912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14882 comm="syz.7.11577" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2659.211241][   T40] audit: type=1326 audit(2000000811.367:9913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14882 comm="syz.7.11577" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2659.218533][   T40] audit: type=1326 audit(2000000811.386:9914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14882 comm="syz.7.11577" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2659.225418][   T40] audit: type=1326 audit(2000000811.386:9915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14882 comm="syz.7.11577" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2659.232365][   T40] audit: type=1326 audit(2000000811.386:9916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14882 comm="syz.7.11577" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2659.239261][   T40] audit: type=1326 audit(2000000811.386:9917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14882 comm="syz.7.11577" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2659.246228][   T40] audit: type=1326 audit(2000000811.386:9918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14882 comm="syz.7.11577" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2659.253060][   T40] audit: type=1326 audit(2000000811.386:9919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14882 comm="syz.7.11577" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2659.260177][   T40] audit: type=1326 audit(2000000811.386:9920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14882 comm="syz.7.11577" exe="/syz-executor" sig=0 arch=40000003 syscall=430 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2659.852896][T14894] syzkaller0: entered promiscuous mode
[ 2659.854871][T14894] syzkaller0: entered allmulticast mode
[ 2659.898852][T14898] netlink: 'syz.7.11580': attribute type 1 has an invalid length.
[ 2659.926651][T14898] bond3: entered promiscuous mode
[ 2659.928592][T14898] 8021q: adding VLAN 0 to HW filter on device bond3
[ 2659.935826][T14898] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11580'.
[ 2659.938685][T14898] netlink: 4 bytes leftover after parsing attributes in process `syz.7.11580'.
[ 2659.944302][T14900] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11580'.
[ 2659.947791][T14900] netlink: 4 bytes leftover after parsing attributes in process `syz.7.11580'.
[ 2660.338812][T14900] lo speed is unknown, defaulting to 1000
[ 2661.199744][T14925] FAULT_INJECTION: forcing a failure.
[ 2661.199744][T14925] name failslab, interval 1, probability 0, space 0, times 0
[ 2661.204482][T14925] CPU: 2 UID: 0 PID: 14925 Comm: syz.7.11585 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2661.204504][T14925] Tainted: [L]=SOFTLOCKUP
[ 2661.204508][T14925] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2661.204515][T14925] Call Trace:
[ 2661.204521][T14925]  <TASK>
[ 2661.204527][T14925]  dump_stack_lvl+0x100/0x190
[ 2661.204552][T14925]  should_fail_ex.cold+0x5/0xa
[ 2661.204568][T14925]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 2661.204586][T14925]  should_failslab+0xc2/0x120
[ 2661.204601][T14925]  __kmalloc_noprof+0xe0/0x850
[ 2661.204623][T14925]  tomoyo_realpath_from_path+0xb6/0x690
[ 2661.204644][T14925]  tomoyo_path_number_perm+0x23c/0x580
[ 2661.204658][T14925]  ? tomoyo_path_number_perm+0x22e/0x580
[ 2661.204674][T14925]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2661.204689][T14925]  ? __lock_acquire+0x4a5/0x2630
[ 2661.204721][T14925]  ? from_kgid+0x8f/0xd0
[ 2661.204734][T14925]  ? __pfx_from_kgid+0x10/0x10
[ 2661.204749][T14925]  tomoyo_path_chown+0x14b/0x1b0
[ 2661.204760][T14925]  ? __pfx_tomoyo_path_chown+0x10/0x10
[ 2661.204772][T14925]  ? from_vfsuid+0xea/0x140
[ 2661.204790][T14925]  ? __pfx_from_vfsuid+0x10/0x10
[ 2661.204808][T14925]  security_path_chown+0x12a/0x2d0
[ 2661.204823][T14925]  chown_common+0x3da/0x6e0
[ 2661.204841][T14925]  ? __pfx_chown_common+0x10/0x10
[ 2661.204857][T14925]  ? mnt_get_write_access+0x52/0x2f0
[ 2661.204877][T14925]  ? mnt_get_write_access+0x1e9/0x2f0
[ 2661.204895][T14925]  do_fchownat+0x18e/0x1f0
[ 2661.204910][T14925]  ? __pfx_do_fchownat+0x10/0x10
[ 2661.204926][T14925]  ? ksys_write+0x1ac/0x250
[ 2661.204941][T14925]  __ia32_sys_chown16+0xe3/0x110
[ 2661.204962][T14925]  __do_fast_syscall_32+0xe3/0x8c0
[ 2661.204979][T14925]  do_fast_syscall_32+0x32/0x70
[ 2661.205006][T14925]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2661.205023][T14925] RIP: 0023:0xf70cef6c
[ 2661.205034][T14925] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2661.205046][T14925] RSP: 002b:00000000f54bd50c EFLAGS: 00000292 ORIG_RAX: 00000000000000b6
[ 2661.205058][T14925] RAX: ffffffffffffffda RBX: 00000000800003c0 RCX: 0000000000000000
[ 2661.205065][T14925] RDX: 000000000000ee01 RSI: 0000000000000000 RDI: 0000000000000000
[ 2661.205072][T14925] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2661.205079][T14925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2661.205085][T14925] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2661.205100][T14925]  </TASK>
[ 2661.205129][T14925] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2661.240498][T14927] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.11587'.
[ 2661.392940][T14931] syzkaller0: entered promiscuous mode
[ 2661.394830][T14931] syzkaller0: entered allmulticast mode
[ 2662.296436][T18279] Bluetooth: Error in BCSP hdr checksum
[ 2662.577060][T18279] Bluetooth: Error in BCSP hdr checksum
[ 2663.277739][T14969] dlm: no locking on control device
[ 2664.251396][   T63] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 2664.988998][ T6317] Bluetooth: Error in BCSP hdr checksum
[ 2665.267665][T18280] Bluetooth: Error in BCSP hdr checksum
[ 2665.448306][ T1560] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 2665.544654][T18280] Bluetooth: Error in BCSP hdr checksum
[ 2665.594768][T14989] Bluetooth: Short BCSP packet
[ 2666.890821][ T1560] Bluetooth: hci2: command 0x1003 tx timeout
[ 2666.890862][T14970] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 2667.591352][T15020] netlink: 68 bytes leftover after parsing attributes in process `syz.0.11612'.
[ 2667.713059][T15022] fuse: Unknown parameter 'VZn�7�6q0:d&�]�jƭ�uai�!�����*/ IwC�+�
[ 2667.713059][T15022] v����#�<��ddZ�D�@���h�+�0�B���W�GJ00S�sx@�Q�n9A��pL����e�j^���r�����'
[ 2667.787126][T15026] FAULT_INJECTION: forcing a failure.
[ 2667.787126][T15026] name failslab, interval 1, probability 0, space 0, times 0
[ 2667.799063][T15026] CPU: 3 UID: 0 PID: 15026 Comm: syz.4.11615 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2667.799086][T15026] Tainted: [L]=SOFTLOCKUP
[ 2667.799090][T15026] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2667.799098][T15026] Call Trace:
[ 2667.799103][T15026]  <TASK>
[ 2667.799110][T15026]  dump_stack_lvl+0x100/0x190
[ 2667.799135][T15026]  should_fail_ex.cold+0x5/0xa
[ 2667.799150][T15026]  should_failslab+0xc2/0x120
[ 2667.799165][T15026]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 2667.799183][T15026]  ? rtnl_newlink+0x126/0x2380
[ 2667.799196][T15026]  ? __pfx_rtnl_newlink+0x10/0x10
[ 2667.799208][T15026]  rtnl_newlink+0x126/0x2380
[ 2667.799221][T15026]  ? find_held_lock+0x2b/0x80
[ 2667.799233][T15026]  ? is_bpf_text_address+0x8a/0x1a0
[ 2667.799253][T15026]  ? is_bpf_text_address+0x8a/0x1a0
[ 2667.799271][T15026]  ? bpf_ksym_find+0x124/0x1c0
[ 2667.799286][T15026]  ? __pfx_rtnl_newlink+0x10/0x10
[ 2667.799297][T15026]  ? is_bpf_text_address+0x94/0x1a0
[ 2667.799316][T15026]  ? kernel_text_address+0x8d/0x100
[ 2667.799333][T15026]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2667.799347][T15026]  ? __kernel_text_address+0xd/0x30
[ 2667.799363][T15026]  ? unwind_get_return_address+0x59/0xa0
[ 2667.799378][T15026]  ? arch_stack_walk+0xa6/0xf0
[ 2667.799395][T15026]  ? __lock_acquire+0x4a5/0x2630
[ 2667.799410][T15026]  ? stack_trace_save+0x8e/0xc0
[ 2667.799421][T15026]  ? __pfx_stack_trace_save+0x10/0x10
[ 2667.799438][T15026]  ? find_held_lock+0x2b/0x80
[ 2667.799449][T15026]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 2667.799459][T15026]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 2667.799472][T15026]  ? __pfx_rtnl_newlink+0x10/0x10
[ 2667.799483][T15026]  rtnetlink_rcv_msg+0x95e/0xe90
[ 2667.799496][T15026]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2667.799510][T15026]  ? __lock_acquire+0x4a5/0x2630
[ 2667.799527][T15026]  netlink_rcv_skb+0x159/0x420
[ 2667.799542][T15026]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2667.799554][T15026]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2667.799572][T15026]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 2667.799586][T15026]  netlink_unicast+0x5aa/0x870
[ 2667.799600][T15026]  ? __pfx_netlink_unicast+0x10/0x10
[ 2667.799618][T15026]  netlink_sendmsg+0x8b0/0xda0
[ 2667.799633][T15026]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2667.799648][T15026]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 2667.799664][T15026]  ____sys_sendmsg+0x9e1/0xb70
[ 2667.799678][T15026]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2667.799692][T15026]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2667.799712][T15026]  ___sys_sendmsg+0x190/0x1e0
[ 2667.799729][T15026]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2667.799759][T15026]  __sys_sendmsg+0x170/0x220
[ 2667.799771][T15026]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2667.799787][T15026]  ? __pfx_ksys_write+0x10/0x10
[ 2667.799803][T15026]  __do_fast_syscall_32+0xe3/0x8c0
[ 2667.799819][T15026]  do_fast_syscall_32+0x32/0x70
[ 2667.799833][T15026]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2667.799849][T15026] RIP: 0023:0xf704ef6c
[ 2667.799860][T15026] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2667.799870][T15026] RSP: 002b:00000000f543d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2667.799882][T15026] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0
[ 2667.799889][T15026] RDX: 0000000000004054 RSI: 0000000000000000 RDI: 0000000000000000
[ 2667.799896][T15026] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2667.799902][T15026] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2667.799909][T15026] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2667.799923][T15026]  </TASK>
[ 2667.988480][T15028] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2668.008410][T15032] netlink: 'syz.4.11617': attribute type 39 has an invalid length.
[ 2668.139592][T15028] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2668.295531][T15028] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2668.670913][T15028] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2668.773515][   T40] kauditd_printk_skb: 62 callbacks suppressed
[ 2668.773528][   T40] audit: type=1326 audit(2000000820.323:9983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15035 comm="syz.7.11618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2668.783509][   T40] audit: type=1326 audit(2000000820.332:9984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15035 comm="syz.7.11618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2668.827880][T18265] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2668.836964][T18265] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2668.860105][   T40] audit: type=1326 audit(2000000820.398:9985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15035 comm="syz.7.11618" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2668.861262][T18265] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2668.887211][T18265] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2668.910968][   T40] audit: type=1326 audit(2000000820.398:9986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15035 comm="syz.7.11618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2668.917994][   T40] audit: type=1326 audit(2000000820.398:9987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15035 comm="syz.7.11618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2669.005270][T15034] binder: 15031:15034 ioctl c0285840 80000000 returned -22
[ 2669.417922][T15024] Cannot find add_set index 2 as target
[ 2669.438164][   T40] audit: type=1326 audit(2000000820.454:9988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15035 comm="syz.7.11618" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2669.446139][   T40] audit: type=1326 audit(2000000820.454:9989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15035 comm="syz.7.11618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2669.452920][   T40] audit: type=1326 audit(2000000820.454:9990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15035 comm="syz.7.11618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2669.459935][   T40] audit: type=1326 audit(2000000820.463:9991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15035 comm="syz.7.11618" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2669.467643][   T40] audit: type=1326 audit(2000000820.463:9992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15035 comm="syz.7.11618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2669.552487][T15060] netlink: 'syz.7.11624': attribute type 39 has an invalid length.
[ 2669.618754][T15064] FAULT_INJECTION: forcing a failure.
[ 2669.618754][T15064] name failslab, interval 1, probability 0, space 0, times 0
[ 2669.622258][T15064] CPU: 1 UID: 0 PID: 15064 Comm: syz.6.11626 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2669.622278][T15064] Tainted: [L]=SOFTLOCKUP
[ 2669.622283][T15064] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2669.622290][T15064] Call Trace:
[ 2669.622296][T15064]  <TASK>
[ 2669.622302][T15064]  dump_stack_lvl+0x100/0x190
[ 2669.622327][T15064]  should_fail_ex.cold+0x5/0xa
[ 2669.622362][T15064]  should_failslab+0xc2/0x120
[ 2669.622377][T15064]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 2669.622394][T15064]  ? fscrypt_parse_test_dummy_encryption+0x228/0x3f0
[ 2669.622418][T15064]  fscrypt_parse_test_dummy_encryption+0x228/0x3f0
[ 2669.622438][T15064]  ceph_parse_mount_param+0xeaa/0x28a0
[ 2669.622457][T15064]  ? __pfx___mutex_lock+0x10/0x10
[ 2669.622474][T15064]  ? __pfx_ceph_parse_mount_param+0x10/0x10
[ 2669.622492][T15064]  ? static_key_count+0x5a/0x70
[ 2669.622506][T15064]  ? security_fs_context_parse_param+0x109/0x140
[ 2669.622522][T15064]  ? __pfx_ceph_parse_mount_param+0x10/0x10
[ 2669.622537][T15064]  vfs_parse_fs_param+0x200/0x3b0
[ 2669.622553][T15064]  __do_sys_fsconfig+0x617/0xcb0
[ 2669.622570][T15064]  ? __pfx___do_sys_fsconfig+0x10/0x10
[ 2669.622588][T15064]  ? __pfx_ksys_write+0x10/0x10
[ 2669.622604][T15064]  __do_fast_syscall_32+0xe3/0x8c0
[ 2669.622620][T15064]  do_fast_syscall_32+0x32/0x70
[ 2669.622634][T15064]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2669.622650][T15064] RIP: 0023:0xf707ef6c
[ 2669.622659][T15064] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2669.622672][T15064] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 00000000000001af
[ 2669.622684][T15064] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000001
[ 2669.622691][T15064] RDX: 0000000080000000 RSI: 0000000080000080 RDI: 0000000000000000
[ 2669.622698][T15064] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2669.622705][T15064] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2669.622712][T15064] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2669.622726][T15064]  </TASK>
[ 2670.542140][T15062] binder: 15059:15062 ioctl c0285840 80000000 returned -22
[ 2671.704941][T15098] syzkaller0: entered promiscuous mode
[ 2671.706794][T15098] syzkaller0: entered allmulticast mode
[ 2671.712427][T15098] FAULT_INJECTION: forcing a failure.
[ 2671.712427][T15098] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2671.716627][T15098] CPU: 0 UID: 0 PID: 15098 Comm: syz.6.11635 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2671.716647][T15098] Tainted: [L]=SOFTLOCKUP
[ 2671.716655][T15098] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2671.716663][T15098] Call Trace:
[ 2671.716668][T15098]  <TASK>
[ 2671.716674][T15098]  dump_stack_lvl+0x100/0x190
[ 2671.716699][T15098]  should_fail_ex.cold+0x5/0xa
[ 2671.716715][T15098]  _copy_from_iter+0x1f4/0x1690
[ 2671.716736][T15098]  ? __pfx__copy_from_iter+0x10/0x10
[ 2671.716752][T15098]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 2671.716772][T15098]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[ 2671.716793][T15098]  skb_copy_datagram_from_iter+0x11f/0x720
[ 2671.716814][T15098]  packet_sendmsg+0x2476/0x53c0
[ 2671.716839][T15098]  ? __pfx___might_resched+0x10/0x10
[ 2671.716857][T15098]  ? osq_lock+0x498/0x600
[ 2671.716877][T15098]  ? aa_sk_perm+0x309/0xaa0
[ 2671.716894][T15098]  ? __pfx_packet_sendmsg+0x10/0x10
[ 2671.716909][T15098]  ? __pfx_aa_sk_perm+0x10/0x10
[ 2671.716927][T15098]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 2671.716942][T15098]  ____sys_sendmsg+0x9e1/0xb70
[ 2671.716957][T15098]  ? __pfx_packet_sendmsg+0x10/0x10
[ 2671.716974][T15098]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2671.716994][T15098]  ___sys_sendmsg+0x190/0x1e0
[ 2671.717011][T15098]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2671.717042][T15098]  __sys_sendmsg+0x170/0x220
[ 2671.717053][T15098]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2671.717069][T15098]  ? __pfx_ksys_write+0x10/0x10
[ 2671.717086][T15098]  __do_fast_syscall_32+0xe3/0x8c0
[ 2671.717102][T15098]  do_fast_syscall_32+0x32/0x70
[ 2671.717116][T15098]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2671.717132][T15098] RIP: 0023:0xf707ef6c
[ 2671.717143][T15098] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2671.717154][T15098] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2671.717167][T15098] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800000c0
[ 2671.717174][T15098] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[ 2671.717181][T15098] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2671.717187][T15098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2671.717194][T15098] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2671.717207][T15098]  </TASK>
[ 2671.976577][T15096] 9pnet: p9_errstr2errno: server reported unknown error #/msr
[ 2672.413772][T15111] 8021q: adding VLAN 0 to HW filter on device bond4
[ 2674.478424][   T40] kauditd_printk_skb: 54 callbacks suppressed
[ 2674.478461][   T40] audit: type=1326 audit(2000000825.666:10047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15123 comm="syz.7.11642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2674.487137][T15124] syzkaller0: entered promiscuous mode
[ 2674.488078][   T40] audit: type=1326 audit(2000000825.666:10048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15123 comm="syz.7.11642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2674.492142][T15124] syzkaller0: entered allmulticast mode
[ 2674.499036][   T40] audit: type=1326 audit(2000000825.666:10049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15123 comm="syz.7.11642" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2674.506233][   T40] audit: type=1326 audit(2000000825.666:10050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15123 comm="syz.7.11642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2674.515109][   T40] audit: type=1326 audit(2000000825.666:10051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15123 comm="syz.7.11642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2674.523412][   T40] audit: type=1326 audit(2000000825.666:10052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15123 comm="syz.7.11642" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2674.530394][   T40] audit: type=1326 audit(2000000825.666:10053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15123 comm="syz.7.11642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2674.651528][   T40] audit: type=1326 audit(2000000825.666:10054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15123 comm="syz.7.11642" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2674.670173][   T40] audit: type=1326 audit(2000000825.666:10055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15123 comm="syz.7.11642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2674.678633][   T40] audit: type=1326 audit(2000000825.666:10056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15123 comm="syz.7.11642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2675.949220][T15158] FAULT_INJECTION: forcing a failure.
[ 2675.949220][T15158] name failslab, interval 1, probability 0, space 0, times 0
[ 2675.953478][T15158] CPU: 2 UID: 0 PID: 15158 Comm: syz.7.11649 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2675.953500][T15158] Tainted: [L]=SOFTLOCKUP
[ 2675.953504][T15158] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2675.953511][T15158] Call Trace:
[ 2675.953516][T15158]  <TASK>
[ 2675.953522][T15158]  dump_stack_lvl+0x100/0x190
[ 2675.953576][T15158]  should_fail_ex.cold+0x5/0xa
[ 2675.953592][T15158]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 2675.953611][T15158]  should_failslab+0xc2/0x120
[ 2675.953626][T15158]  __kmalloc_noprof+0xe0/0x850
[ 2675.953647][T15158]  tomoyo_realpath_from_path+0xb6/0x690
[ 2675.953668][T15158]  tomoyo_path_number_perm+0x23c/0x580
[ 2675.953686][T15158]  ? tomoyo_path_number_perm+0x22e/0x580
[ 2675.953702][T15158]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2675.953730][T15158]  ? find_held_lock+0x2b/0x80
[ 2675.953742][T15158]  ? hook_file_ioctl_common+0x146/0x410
[ 2675.953757][T15158]  ? __fget_files+0x215/0x3d0
[ 2675.953772][T15158]  ? __fget_files+0x21f/0x3d0
[ 2675.953786][T15158]  security_file_ioctl_compat+0xd3/0x230
[ 2675.953803][T15158]  __ia32_compat_sys_ioctl+0xc2/0x360
[ 2675.953823][T15158]  __do_fast_syscall_32+0xe3/0x8c0
[ 2675.953901][T15158]  do_fast_syscall_32+0x32/0x70
[ 2675.953979][T15158]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2675.953999][T15158] RIP: 0023:0xf70cef6c
[ 2675.954013][T15158] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2675.954028][T15158] RSP: 002b:00000000f549c50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 2675.954041][T15158] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 000000000000541c
[ 2675.954048][T15158] RDX: 0000000080001900 RSI: 0000000000000000 RDI: 0000000000000000
[ 2675.954054][T15158] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2675.954060][T15158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2675.954067][T15158] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2675.954081][T15158]  </TASK>
[ 2675.954087][T15158] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2676.763739][T15171] netlink: 28 bytes leftover after parsing attributes in process `syz.7.11656'.
[ 2676.766962][T15171] netlink: 196 bytes leftover after parsing attributes in process `syz.7.11656'.
[ 2676.770208][T15171] netlink: 28 bytes leftover after parsing attributes in process `syz.7.11656'.
[ 2676.773210][T15171] netlink: 196 bytes leftover after parsing attributes in process `syz.7.11656'.
[ 2677.317064][T15184] netlink: 'syz.6.11661': attribute type 39 has an invalid length.
[ 2677.852885][T15191] binder: 15183:15191 ioctl c0285840 80000000 returned -22
[ 2678.546068][T15196] netlink: 'syz.6.11664': attribute type 39 has an invalid length.
[ 2679.150618][T15199] binder: 15195:15199 ioctl c0285840 80000000 returned -22
[ 2679.199937][T15179] FAULT_INJECTION: forcing a failure.
[ 2679.199937][T15179] name failslab, interval 1, probability 0, space 0, times 0
[ 2679.204074][T15179] CPU: 1 UID: 0 PID: 15179 Comm: syz.0.11659 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2679.204094][T15179] Tainted: [L]=SOFTLOCKUP
[ 2679.204098][T15179] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2679.204106][T15179] Call Trace:
[ 2679.204112][T15179]  <TASK>
[ 2679.204118][T15179]  dump_stack_lvl+0x100/0x190
[ 2679.204143][T15179]  should_fail_ex.cold+0x5/0xa
[ 2679.204159][T15179]  ? tomoyo_encode2+0xfb/0x3c0
[ 2679.204177][T15179]  should_failslab+0xc2/0x120
[ 2679.204191][T15179]  __kmalloc_noprof+0xe0/0x850
[ 2679.204210][T15179]  ? d_absolute_path+0x136/0x1b0
[ 2679.204229][T15179]  tomoyo_encode2+0xfb/0x3c0
[ 2679.204248][T15179]  tomoyo_encode+0x29/0x50
[ 2679.204264][T15179]  tomoyo_realpath_from_path+0x18c/0x690
[ 2679.204288][T15179]  tomoyo_path_number_perm+0x23c/0x580
[ 2679.204307][T15179]  ? tomoyo_path_number_perm+0x22e/0x580
[ 2679.204326][T15179]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2679.204366][T15179]  ? find_held_lock+0x2b/0x80
[ 2679.204379][T15179]  ? hook_file_ioctl_common+0x146/0x410
[ 2679.204394][T15179]  ? __fget_files+0x215/0x3d0
[ 2679.204409][T15179]  ? __fget_files+0x21f/0x3d0
[ 2679.204423][T15179]  security_file_ioctl_compat+0xd3/0x230
[ 2679.204440][T15179]  __ia32_compat_sys_ioctl+0xc2/0x360
[ 2679.204460][T15179]  __do_fast_syscall_32+0xe3/0x8c0
[ 2679.204478][T15179]  do_fast_syscall_32+0x32/0x70
[ 2679.204491][T15179]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2679.204507][T15179] RIP: 0023:0xf701ef6c
[ 2679.204519][T15179] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2679.204531][T15179] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 2679.204543][T15179] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000004024700a
[ 2679.204551][T15179] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 2679.204557][T15179] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2679.204564][T15179] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2679.204571][T15179] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2679.204585][T15179]  </TASK>
[ 2679.205007][T15179] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2680.325196][   T40] kauditd_printk_skb: 30 callbacks suppressed
[ 2680.325216][   T40] audit: type=1326 audit(2000000831.131:10087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15220 comm="syz.7.11672" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2680.346103][   T40] audit: type=1326 audit(2000000831.131:10088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15220 comm="syz.7.11672" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2680.353048][   T40] audit: type=1326 audit(2000000831.131:10089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15220 comm="syz.7.11672" exe="/syz-executor" sig=0 arch=40000003 syscall=186 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2680.366596][   T40] audit: type=1326 audit(2000000831.131:10090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15220 comm="syz.7.11672" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2680.385622][   T40] audit: type=1326 audit(2000000831.131:10091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15220 comm="syz.7.11672" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2680.396594][   T40] audit: type=1326 audit(2000000831.131:10092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15220 comm="syz.7.11672" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2680.409942][   T40] audit: type=1326 audit(2000000831.131:10093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15220 comm="syz.7.11672" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2680.426201][   T40] audit: type=1326 audit(2000000831.131:10094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15220 comm="syz.7.11672" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 2680.484669][T15224] netlink: 'syz.4.11673': attribute type 39 has an invalid length.
[ 2680.604353][T15227] netlink: 4 bytes leftover after parsing attributes in process `syz.7.11674'.
[ 2680.895854][T15232] netlink: 88 bytes leftover after parsing attributes in process `syz.0.11675'.
[ 2680.898797][T15232] netlink: 88 bytes leftover after parsing attributes in process `syz.0.11675'.
[ 2680.915590][T15234] netlink: 'syz.6.11676': attribute type 39 has an invalid length.
[ 2680.943680][ T2848] usb 12-1: new high-speed USB device number 7 using dummy_hcd
[ 2681.103192][ T2848] usb 12-1: Using ep0 maxpacket: 8
[ 2681.124139][ T2848] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2681.140987][ T2848] usb 12-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 2681.151317][ T2848] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2681.247922][ T2848] usb 12-1: config 0 descriptor??
[ 2681.418909][T15239] binder: 15233:15239 ioctl c0285840 80000000 returned -22
[ 2681.496059][ T2848] iowarrior 12-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[ 2681.672930][T15249] syzkaller0: entered promiscuous mode
[ 2681.674922][T15249] syzkaller0: entered allmulticast mode
[ 2681.922594][T15255] netlink: 868 bytes leftover after parsing attributes in process `syz.4.11685'.
[ 2682.121354][T15269] netlink: 'syz.0.11687': attribute type 39 has an invalid length.
[ 2682.156139][ T2705] usb 12-1: USB disconnect, device number 7
[ 2682.462375][T15274] syzkaller0: entered promiscuous mode
[ 2682.464859][T15274] syzkaller0: entered allmulticast mode
[ 2682.675849][T15282] syzkaller0: entered promiscuous mode
[ 2682.677697][T15282] syzkaller0: entered allmulticast mode
[ 2682.956905][T15287] lo speed is unknown, defaulting to 1000
[ 2683.511773][T15314] netlink: 'syz.0.11703': attribute type 39 has an invalid length.
[ 2684.250627][T15317] netlink: 4 bytes leftover after parsing attributes in process `syz.4.11704'.
[ 2684.613728][T15339] netlink: 'syz.4.11709': attribute type 39 has an invalid length.
[ 2684.707999][T15342] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[ 2684.710230][T15342] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2684.719438][T15342] vhci_hcd vhci_hcd.0: Device attached
[ 2685.014404][  T841] usb 38-1: SetAddress Request (51) to port 0
[ 2685.017974][  T841] usb 38-1: new SuperSpeed USB device number 51 using vhci_hcd
[ 2685.245329][T15346] binder: 15338:15346 ioctl c0285840 80000000 returned -22
[ 2685.364108][T15343] vhci_hcd: connection reset by peer
[ 2685.366936][T18265] vhci_hcd vhci_hcd.0: stop threads
[ 2685.369175][T18265] vhci_hcd vhci_hcd.0: release socket
[ 2685.371328][T18265] vhci_hcd vhci_hcd.0: disconnect device
[ 2685.995543][T15356] syzkaller0: entered promiscuous mode
[ 2685.998049][T15356] syzkaller0: entered allmulticast mode
[ 2686.063632][T15362] netlink: 1624 bytes leftover after parsing attributes in process `syz.6.11715'.
[ 2686.188215][T15367] openvswitch: netlink: Duplicate or invalid key (type 0).
[ 2686.190742][T15367] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 2686.199636][T15367] binder: 15366:15367 unknown command 0
[ 2686.201991][T15367] binder: 15366:15367 ioctl c0306201 80000340 returned -22
[ 2686.228792][T15367] netlink: 12 bytes leftover after parsing attributes in process `syz.4.11717'.
[ 2686.796192][T15388] FAULT_INJECTION: forcing a failure.
[ 2686.796192][T15388] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2686.802852][T15388] CPU: 3 UID: 0 PID: 15388 Comm: syz.4.11722 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2686.802886][T15388] Tainted: [L]=SOFTLOCKUP
[ 2686.802892][T15388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2686.802904][T15388] Call Trace:
[ 2686.802911][T15388]  <TASK>
[ 2686.802919][T15388]  dump_stack_lvl+0x100/0x190
[ 2686.802956][T15388]  should_fail_ex.cold+0x5/0xa
[ 2686.802981][T15388]  _copy_to_user+0x32/0xd0
[ 2686.803009][T15388]  simple_read_from_buffer+0xcb/0x170
[ 2686.803042][T15388]  proc_fail_nth_read+0x1af/0x230
[ 2686.803069][T15388]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2686.803095][T15388]  ? rw_verify_area+0xce/0x6d0
[ 2686.803123][T15388]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2686.803147][T15388]  vfs_read+0x1e4/0xb30
[ 2686.803170][T15388]  ? __pfx_vfs_read+0x10/0x10
[ 2686.803185][T15388]  ? find_held_lock+0x2b/0x80
[ 2686.803206][T15388]  ? __fget_files+0x215/0x3d0
[ 2686.803230][T15388]  ? __fget_files+0x21f/0x3d0
[ 2686.803273][T15388]  ksys_read+0x12a/0x250
[ 2686.803292][T15388]  ? __pfx_ksys_read+0x10/0x10
[ 2686.803318][T15388]  do_int80_emulation+0x141/0x6b0
[ 2686.803345][T15388]  asm_int80_emulation+0x1a/0x20
[ 2686.803364][T15388] RIP: 0023:0xf7185cab
[ 2686.803380][T15388] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[ 2686.803398][T15388] RSP: 002b:00000000f53fb4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 2686.803419][T15388] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f53fb5d0
[ 2686.803430][T15388] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[ 2686.803441][T15388] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2686.803452][T15388] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2686.803463][T15388] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2686.803488][T15388]  </TASK>
[ 2687.775367][T15398] 9pnet_virtio: no channels available for device ./bus
[ 2688.745335][T15415] netlink: 16 bytes leftover after parsing attributes in process `syz.4.11730'.
[ 2688.761585][T15418] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 2688.776184][T15419] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 2689.193950][T15435] syzkaller0: entered promiscuous mode
[ 2689.195770][T15435] syzkaller0: entered allmulticast mode
[ 2689.943207][T15447] netlink: 28 bytes leftover after parsing attributes in process `syz.4.11742'.
[ 2690.171435][T15454] binder: 15453:15454 ioctl c0306201 80004a40 returned -14
[ 2690.396843][T15463] syzkaller0: entered promiscuous mode
[ 2690.402355][  T841] usb 38-1: device descriptor read/8, error -110
[ 2690.411736][T15463] syzkaller0: entered allmulticast mode
[ 2690.664202][T15471] netlink: 'syz.4.11751': attribute type 39 has an invalid length.
[ 2690.803905][T15472] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 2690.998036][T15472] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[ 2691.003927][T15472] overlayfs: failed to look up (tracing) for ino (-66)
[ 2691.155745][  T841] usb usb38-port1: attempt power cycle
[ 2691.558789][T15471] binder: 15468:15471 ioctl c0285840 80000000 returned -22
[ 2691.928732][  T841] usb usb38-port1: unable to enumerate USB device
[ 2693.305698][T15506] netlink: 'syz.4.11761': attribute type 39 has an invalid length.
[ 2693.624059][T15510] binder: 15505:15510 ioctl c0285840 80000000 returned -22
[ 2694.602835][T15531] Bluetooth: MGMT ver 1.23
[ 2694.895325][T15541] netlink: 'syz.4.11770': attribute type 39 has an invalid length.
[ 2695.504945][T15542] binder: 15540:15542 ioctl c0285840 80000000 returned -22
[ 2696.089577][T15560] lo speed is unknown, defaulting to 1000
[ 2696.504221][T15567] netlink: 'syz.6.11776': attribute type 39 has an invalid length.
[ 2696.603446][T15571] FAULT_INJECTION: forcing a failure.
[ 2696.603446][T15571] name failslab, interval 1, probability 0, space 0, times 0
[ 2696.608481][T15571] CPU: 0 UID: 0 PID: 15571 Comm: syz.0.11778 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2696.608503][T15571] Tainted: [L]=SOFTLOCKUP
[ 2696.608507][T15571] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2696.608525][T15571] Call Trace:
[ 2696.608533][T15571]  <TASK>
[ 2696.608540][T15571]  dump_stack_lvl+0x100/0x190
[ 2696.608570][T15571]  should_fail_ex.cold+0x5/0xa
[ 2696.608586][T15571]  should_failslab+0xc2/0x120
[ 2696.608600][T15571]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 2696.608618][T15571]  ? alloc_bprm+0x86/0x710
[ 2696.608639][T15571]  alloc_bprm+0x86/0x710
[ 2696.608658][T15571]  do_execveat_common.isra.0+0x19c/0x580
[ 2696.608677][T15571]  ? do_getname+0x191/0x390
[ 2696.608695][T15571]  __ia32_compat_sys_execveat+0xe4/0x130
[ 2696.608708][T15571]  __do_fast_syscall_32+0xe3/0x8c0
[ 2696.608725][T15571]  do_fast_syscall_32+0x32/0x70
[ 2696.608738][T15571]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2696.608754][T15571] RIP: 0023:0xf701ef6c
[ 2696.608764][T15571] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2696.608775][T15571] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000166
[ 2696.608787][T15571] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000000
[ 2696.608794][T15571] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000001000
[ 2696.608801][T15571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2696.608807][T15571] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2696.608819][T15571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2696.608836][T15571]  </TASK>
[ 2696.802306][T15582] netlink: 'syz.0.11781': attribute type 39 has an invalid length.
[ 2697.083316][T15588] syzkaller0: entered promiscuous mode
[ 2697.085290][T15588] syzkaller0: entered allmulticast mode
[ 2697.160328][T15591] binder: 15566:15591 ioctl c0285840 80000000 returned -22
[ 2697.653722][T15603] netlink: 'syz.6.11786': attribute type 39 has an invalid length.
[ 2697.770555][T15604] binder: 15581:15604 ioctl c0285840 80000000 returned -22
[ 2698.414075][T15603] binder: 15602:15603 ioctl c0285840 80000000 returned -22
[ 2698.642460][T15616] netlink: 'syz.4.11797': attribute type 39 has an invalid length.
[ 2699.061358][T15619] binder: 15615:15619 ioctl c0285840 80000000 returned -22
[ 2699.910771][T30309] usb 9-1: new high-speed USB device number 62 using dummy_hcd
[ 2700.070956][T30309] usb 9-1: Using ep0 maxpacket: 8
[ 2700.074314][T30309] usb 9-1: config 0 has an invalid interface number: 55 but max is 0
[ 2700.077160][T30309] usb 9-1: config 0 has no interface number 0
[ 2700.079204][T30309] usb 9-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 2700.083035][T30309] usb 9-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 2700.086755][T30309] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2700.090254][T30309] usb 9-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 2700.094828][T30309] usb 9-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 2700.097756][T30309] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2700.105930][T30309] usb 9-1: config 0 descriptor??
[ 2700.123019][T30309] ldusb 9-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 2702.129629][T15643] netlink: 'syz.6.11796': attribute type 39 has an invalid length.
[ 2702.875571][  T841] usb 9-1: USB disconnect, device number 62
[ 2702.879211][  T841] ldusb 9-1:0.55: LD USB Device #0 now disconnected
[ 2703.542986][T15658] binder: 15642:15658 ioctl c0285840 80000000 returned -22
[ 2704.600665][T15672] syzkaller0: left promiscuous mode
[ 2704.605572][T15672] syzkaller0: left allmulticast mode
[ 2705.289702][   T56] usb 9-1: new high-speed USB device number 63 using dummy_hcd
[ 2705.452030][   T56] usb 9-1: Using ep0 maxpacket: 8
[ 2705.455154][   T56] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[ 2705.457904][   T56] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 2705.461324][   T56] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 2705.470520][   T56] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 2705.474056][   T56] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 2705.480791][   T56] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 2705.484649][   T56] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2705.712531][   T56] usb 9-1: usb_control_msg returned -32
[ 2705.719910][   T56] usbtmc 9-1:16.0: can't read capabilities
[ 2706.404998][   T56] usb 9-1: USB disconnect, device number 63
[ 2707.598712][T15715] netlink: 'syz.7.11815': attribute type 39 has an invalid length.
[ 2707.986812][T15720] syzkaller0: entered promiscuous mode
[ 2707.988829][T15720] syzkaller0: entered allmulticast mode
[ 2708.319579][T15725] syzkaller0: entered promiscuous mode
[ 2708.322009][T15725] syzkaller0: entered allmulticast mode
[ 2708.576685][T15716] binder: 15714:15716 ioctl c0285840 80000000 returned -22
[ 2708.939928][T15742] netlink: 'syz.0.11824': attribute type 39 has an invalid length.
[ 2709.007448][T15743] netlink: 'syz.4.11823': attribute type 39 has an invalid length.
[ 2710.464089][T15745] binder: 15741:15745 ioctl c0285840 80000000 returned -22
[ 2710.678060][T15751] binder: 15740:15751 ioctl c0285840 80000000 returned -22
[ 2711.074037][T15766] syzkaller0: entered promiscuous mode
[ 2711.075892][T15766] syzkaller0: entered allmulticast mode
[ 2711.501722][T15777] netlink: 'syz.4.11832': attribute type 39 has an invalid length.
[ 2712.542367][T15784] syzkaller0: entered promiscuous mode
[ 2712.544170][T15784] syzkaller0: entered allmulticast mode
[ 2712.646263][T15778] binder: 15776:15778 ioctl c0285840 80000000 returned -22
[ 2713.443771][T15789] netlink: 'syz.7.11836': attribute type 39 has an invalid length.
[ 2716.264167][T15826] netlink: 4 bytes leftover after parsing attributes in process `syz.4.11844'.
[ 2716.270215][T15826] FAULT_INJECTION: forcing a failure.
[ 2716.270215][T15826] name failslab, interval 1, probability 0, space 0, times 0
[ 2716.275282][T15826] CPU: 1 UID: 0 PID: 15826 Comm: syz.4.11844 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2716.275303][T15826] Tainted: [L]=SOFTLOCKUP
[ 2716.275308][T15826] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2716.275315][T15826] Call Trace:
[ 2716.275320][T15826]  <TASK>
[ 2716.275326][T15826]  dump_stack_lvl+0x100/0x190
[ 2716.275355][T15826]  should_fail_ex.cold+0x5/0xa
[ 2716.275372][T15826]  should_failslab+0xc2/0x120
[ 2716.275388][T15826]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 2716.275408][T15826]  ? dst_alloc+0x99/0x1a0
[ 2716.275430][T15826]  dst_alloc+0x99/0x1a0
[ 2716.275454][T15826]  ipv4_blackhole_route+0x35/0x860
[ 2716.275488][T15826]  xfrm_lookup_route+0x10e/0x200
[ 2716.275509][T15826]  ip_route_output_flow+0x11e/0x150
[ 2716.275527][T15826]  udp_sendmsg+0x1a77/0x2890
[ 2716.275541][T15826]  ? __pfx_ip_generic_getfrag+0x10/0x10
[ 2716.275555][T15826]  ? __pfx_udp_sendmsg+0x10/0x10
[ 2716.275577][T15826]  ? aa_sk_perm+0x309/0xaa0
[ 2716.275601][T15826]  ? __pfx_udp_sendmsg+0x10/0x10
[ 2716.275613][T15826]  inet_sendmsg+0x105/0x140
[ 2716.275629][T15826]  ____sys_sendmsg+0x98d/0xb70
[ 2716.275644][T15826]  ? __pfx_inet_sendmsg+0x10/0x10
[ 2716.275660][T15826]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2716.275674][T15826]  ? _parse_integer_limit+0x17f/0x1d0
[ 2716.275695][T15826]  ? _kstrtoull+0x13c/0x1f0
[ 2716.275713][T15826]  ? __pfx__kstrtoull+0x10/0x10
[ 2716.275733][T15826]  ___sys_sendmsg+0x190/0x1e0
[ 2716.275749][T15826]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2716.275764][T15826]  ? __lock_acquire+0x4a5/0x2630
[ 2716.275787][T15826]  ? find_held_lock+0x2b/0x80
[ 2716.275808][T15826]  __sys_sendmmsg+0x2ff/0x430
[ 2716.275825][T15826]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 2716.275841][T15826]  ? __fget_files+0x215/0x3d0
[ 2716.275860][T15826]  ? fput+0x79/0x100
[ 2716.275876][T15826]  ? ksys_write+0x1ac/0x250
[ 2716.275887][T15826]  ? __pfx_ksys_write+0x10/0x10
[ 2716.275900][T15826]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[ 2716.275921][T15826]  ? lockdep_hardirqs_on+0x78/0x100
[ 2716.275934][T15826]  __do_fast_syscall_32+0xe3/0x8c0
[ 2716.275949][T15826]  do_fast_syscall_32+0x32/0x70
[ 2716.275963][T15826]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2716.275980][T15826] RIP: 0023:0xf704ef6c
[ 2716.275991][T15826] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2716.276002][T15826] RSP: 002b:00000000f53fb50c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[ 2716.276015][T15826] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080004d00
[ 2716.276022][T15826] RDX: 0000000000000300 RSI: 0000000000000f00 RDI: 0000000000000000
[ 2716.276029][T15826] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2716.276036][T15826] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2716.276042][T15826] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2716.276057][T15826]  </TASK>
[ 2717.524576][T15837] netlink: 'syz.4.11848': attribute type 39 has an invalid length.
[ 2717.673213][T15843] netlink: 'syz.6.11850': attribute type 83 has an invalid length.
[ 2717.678098][T15843] netlink: 19 bytes leftover after parsing attributes in process `syz.6.11850'.
[ 2717.697308][T15843] netlink: 16 bytes leftover after parsing attributes in process `syz.6.11850'.
[ 2718.201031][T15840] binder: 15836:15840 ioctl c0285840 80000000 returned -22
[ 2718.368332][T15856] netlink: 'syz.7.11855': attribute type 1 has an invalid length.
[ 2718.467589][T15856] bond5: (slave bridge1): making interface the new active one
[ 2718.472784][T15856] bond5: (slave bridge1): Enslaving as an active interface with an up link
[ 2718.492183][T15856] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11855'.
[ 2718.591365][T15863] syzkaller0: entered promiscuous mode
[ 2718.593929][T15863] syzkaller0: entered allmulticast mode
[ 2718.728087][T15868] input: syz1 as /devices/virtual/input/input90
[ 2718.731927][T15868] FAULT_INJECTION: forcing a failure.
[ 2718.731927][T15868] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2718.736153][T15868] CPU: 2 UID: 0 PID: 15868 Comm: syz.4.11859 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2718.736186][T15868] Tainted: [L]=SOFTLOCKUP
[ 2718.736190][T15868] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2718.736198][T15868] Call Trace:
[ 2718.736203][T15868]  <TASK>
[ 2718.736209][T15868]  dump_stack_lvl+0x100/0x190
[ 2718.736236][T15868]  should_fail_ex.cold+0x5/0xa
[ 2718.736252][T15868]  _copy_from_user+0x2e/0xd0
[ 2718.736270][T15868]  input_event_from_user+0x137/0x290
[ 2718.736288][T15868]  ? __pfx_input_event_from_user+0x10/0x10
[ 2718.736303][T15868]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 2718.736324][T15868]  ? input_event+0xbb/0xd0
[ 2718.736338][T15868]  uinput_write+0xb9f/0xf60
[ 2718.736358][T15868]  ? __pfx_uinput_write+0x10/0x10
[ 2718.736375][T15868]  ? bpf_lsm_file_permission+0x9/0x10
[ 2718.736388][T15868]  ? security_file_permission+0x76/0x210
[ 2718.736406][T15868]  ? rw_verify_area+0xce/0x6d0
[ 2718.736427][T15868]  vfs_write+0x2aa/0x1070
[ 2718.736440][T15868]  ? __pfx_uinput_write+0x10/0x10
[ 2718.736457][T15868]  ? __pfx_vfs_write+0x10/0x10
[ 2718.736468][T15868]  ? find_held_lock+0x2b/0x80
[ 2718.736480][T15868]  ? __fget_files+0x215/0x3d0
[ 2718.736493][T15868]  ? __fget_files+0x215/0x3d0
[ 2718.736507][T15868]  ? __fget_files+0x21f/0x3d0
[ 2718.736523][T15868]  ksys_write+0x1f8/0x250
[ 2718.736535][T15868]  ? __pfx_ksys_write+0x10/0x10
[ 2718.736547][T15868]  ? __pfx_ksys_write+0x10/0x10
[ 2718.736562][T15868]  __do_fast_syscall_32+0xe3/0x8c0
[ 2718.736578][T15868]  do_fast_syscall_32+0x32/0x70
[ 2718.736592][T15868]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2718.736608][T15868] RIP: 0023:0xf704ef6c
[ 2718.736619][T15868] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2718.736631][T15868] RSP: 002b:00000000f541c50c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[ 2718.736643][T15868] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000000
[ 2718.736650][T15868] RDX: 000000000000fe4f RSI: 0000000000000000 RDI: 0000000000000000
[ 2718.736657][T15868] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2718.736664][T15868] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2718.736671][T15868] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2718.736686][T15868]  </TASK>
[ 2718.776233][T15871] program syz.7.11860 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2719.391690][T15883] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11865'.
[ 2719.429773][T15886] netlink: 'syz.4.11866': attribute type 39 has an invalid length.
[ 2719.661763][T15892] syzkaller0: entered promiscuous mode
[ 2719.671112][T15892] syzkaller0: entered allmulticast mode
[ 2719.869862][T15890] binder: 15885:15890 ioctl c0285840 80000000 returned -22
[ 2719.914411][T15895] input: syz1 as /devices/virtual/input/input91
[ 2720.639089][T15904] netlink: 'syz.0.11872': attribute type 39 has an invalid length.
[ 2720.937677][T15902] netlink: 'syz.4.11871': attribute type 39 has an invalid length.
[ 2721.775536][T15908] binder: 15901:15908 ioctl c0285840 80000000 returned -22
[ 2722.108362][T15906] binder: 15903:15906 ioctl c0285840 80000000 returned -22
[ 2722.533790][T30309] usb 11-1: new high-speed USB device number 19 using dummy_hcd
[ 2722.589448][T15919] /dev/sr0: Can't open blockdev
[ 2722.665568][T15933] netlink: 'syz.7.11879': attribute type 39 has an invalid length.
[ 2722.704471][T30309] usb 11-1: Using ep0 maxpacket: 8
[ 2722.711715][T30309] usb 11-1: config index 0 descriptor too short (expected 301, got 45)
[ 2722.718043][T30309] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 2722.724128][T30309] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 2722.729012][T30309] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 2722.732509][T30309] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 2722.738269][T30309] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 2722.741850][T30309] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2723.044449][T15937] binder: 15932:15937 ioctl c0285840 80000000 returned -22
[ 2723.070156][T15917] netlink: 'syz.6.11874': attribute type 1 has an invalid length.
[ 2723.108474][T30309] usb 11-1: usb_control_msg returned -32
[ 2723.115593][T30309] usbtmc 11-1:16.0: can't read capabilities
[ 2723.262742][T30309] usb 11-1: USB disconnect, device number 19
[ 2725.087786][T15951] netlink: 'syz.0.11884': attribute type 39 has an invalid length.
[ 2725.414264][T15960] syzkaller0: entered promiscuous mode
[ 2725.416651][T15960] syzkaller0: entered allmulticast mode
[ 2725.705650][T15967] netlink: 'syz.7.11890': attribute type 39 has an invalid length.
[ 2725.930947][T15968] binder: 15950:15968 ioctl c0285840 80000000 returned -22
[ 2726.403472][T15969] binder: 15966:15969 ioctl c0285840 80000000 returned -22
[ 2727.120295][T15988] FAULT_INJECTION: forcing a failure.
[ 2727.120295][T15988] name failslab, interval 1, probability 0, space 0, times 0
[ 2727.124333][T15988] CPU: 3 UID: 0 PID: 15988 Comm: syz.6.11894 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2727.124353][T15988] Tainted: [L]=SOFTLOCKUP
[ 2727.124357][T15988] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2727.124365][T15988] Call Trace:
[ 2727.124370][T15988]  <TASK>
[ 2727.124376][T15988]  dump_stack_lvl+0x100/0x190
[ 2727.124402][T15988]  should_fail_ex.cold+0x5/0xa
[ 2727.124418][T15988]  should_failslab+0xc2/0x120
[ 2727.124432][T15988]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 2727.124456][T15988]  ? skb_clone+0x190/0x400
[ 2727.124472][T15988]  skb_clone+0x190/0x400
[ 2727.124484][T15988]  netlink_deliver_tap+0xaed/0xcc0
[ 2727.124501][T15988]  netlink_unicast+0x650/0x870
[ 2727.124516][T15988]  ? __pfx_netlink_unicast+0x10/0x10
[ 2727.124534][T15988]  netlink_sendmsg+0x8b0/0xda0
[ 2727.124549][T15988]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2727.124563][T15988]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 2727.124580][T15988]  ____sys_sendmsg+0x9e1/0xb70
[ 2727.124594][T15988]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2727.124607][T15988]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2727.124628][T15988]  ___sys_sendmsg+0x190/0x1e0
[ 2727.124645][T15988]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2727.124677][T15988]  __sys_sendmsg+0x170/0x220
[ 2727.124689][T15988]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2727.124705][T15988]  ? __pfx_ksys_write+0x10/0x10
[ 2727.124721][T15988]  __do_fast_syscall_32+0xe3/0x8c0
[ 2727.124740][T15988]  do_fast_syscall_32+0x32/0x70
[ 2727.124753][T15988]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2727.124769][T15988] RIP: 0023:0xf707ef6c
[ 2727.124779][T15988] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2727.124791][T15988] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2727.124804][T15988] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000300
[ 2727.124811][T15988] RDX: 0000000000000014 RSI: 0000000000000000 RDI: 0000000000000000
[ 2727.124818][T15988] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2727.124824][T15988] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2727.124831][T15988] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2727.124845][T15988]  </TASK>
[ 2727.290277][T15997] syzkaller0: entered promiscuous mode
[ 2727.293360][T15997] syzkaller0: entered allmulticast mode
[ 2727.527320][T15998] vlan2: left allmulticast mode
[ 2727.529229][T15998] bond0: left allmulticast mode
[ 2727.531298][T15998] bond_slave_0: left allmulticast mode
[ 2727.533356][T15998] bond_slave_1: left allmulticast mode
[ 2728.096356][T16003] netlink: 'syz.4.11901': attribute type 39 has an invalid length.
[ 2728.742122][T16024] netlink: 'syz.0.11906': attribute type 39 has an invalid length.
[ 2729.482212][T16003] binder: 16002:16003 ioctl c0285840 80000000 returned -22
[ 2729.583982][T16027] binder: 16023:16027 ioctl c0285840 80000000 returned -22
[ 2729.604670][T16030] syzkaller0: entered promiscuous mode
[ 2729.607648][T16030] syzkaller0: entered allmulticast mode
[ 2729.922074][T16036] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11909'.
[ 2729.932960][T16036] nbd: must specify at least one socket
[ 2730.318830][T16058] FAULT_INJECTION: forcing a failure.
[ 2730.318830][T16058] name failslab, interval 1, probability 0, space 0, times 0
[ 2730.327929][T16058] CPU: 2 UID: 0 PID: 16058 Comm: syz.7.11916 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2730.327961][T16058] Tainted: [L]=SOFTLOCKUP
[ 2730.327966][T16058] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2730.327975][T16058] Call Trace:
[ 2730.327981][T16058]  <TASK>
[ 2730.327988][T16058]  dump_stack_lvl+0x100/0x190
[ 2730.328027][T16058]  should_fail_ex.cold+0x5/0xa
[ 2730.328046][T16058]  should_failslab+0xc2/0x120
[ 2730.328068][T16058]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 2730.328109][T16058]  ? do_getname+0x35/0x390
[ 2730.328132][T16058]  ? __fget_files+0x215/0x3d0
[ 2730.328157][T16058]  do_getname+0x35/0x390
[ 2730.328179][T16058]  user_path_at+0x26/0x60
[ 2730.328194][T16058]  __ia32_sys_mount+0x1fb/0x310
[ 2730.328220][T16058]  ? __pfx___ia32_sys_mount+0x10/0x10
[ 2730.328246][T16058]  __do_fast_syscall_32+0xe3/0x8c0
[ 2730.328271][T16058]  do_fast_syscall_32+0x32/0x70
[ 2730.328292][T16058]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2730.328312][T16058] RIP: 0023:0xf70cef6c
[ 2730.328324][T16058] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 2730.328341][T16058] RSP: 002b:00000000f54bd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[ 2730.328360][T16058] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000180
[ 2730.328371][T16058] RDX: 0000000000000000 RSI: 0000000000109122 RDI: 0000000000000000
[ 2730.328379][T16058] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2730.328388][T16058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2730.328396][T16058] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2730.328419][T16058]  </TASK>
[ 2730.475230][T16064] netlink: 'syz.7.11919': attribute type 39 has an invalid length.
[ 2730.593646][T16068] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2730.625474][T16075] netlink: 'syz.0.11921': attribute type 39 has an invalid length.
[ 2731.277763][T16078] binder: 16074:16078 ioctl c0285840 80000000 returned -22
[ 2731.339315][T16077] binder: 16062:16077 ioctl c0285840 80000000 returned -22
[ 2731.772988][T16086] syzkaller0: entered promiscuous mode
[ 2731.774879][T16086] syzkaller0: entered allmulticast mode
[ 2731.896057][T16093] netlink: 24 bytes leftover after parsing attributes in process `syz.7.11926'.
[ 2732.802430][T14970] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2732.903116][T16122] syzkaller0: entered promiscuous mode
[ 2732.905299][T16122] syzkaller0: entered allmulticast mode
[ 2733.242251][T16127] syzkaller0: entered promiscuous mode
[ 2733.244678][T16127] syzkaller0: entered allmulticast mode
[ 2735.025129][T14970] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2736.445949][T16149] syzkaller0: entered promiscuous mode
[ 2736.447908][T16149] syzkaller0: entered allmulticast mode
[ 2736.671993][T16158] netlink: 24 bytes leftover after parsing attributes in process `syz.0.11948'.
[ 2736.765970][T16158] ------------[ cut here ]------------
[ 2736.768454][T16158] inode->i_blocks
[ 2736.768467][T16158] WARNING: mm/shmem.c:1430 at shmem_evict_inode+0x8e6/0xbd0, CPU#2: syz.0.11948/16158
[ 2736.774056][T16158] Modules linked in:
[ 2736.776919][T16158] CPU: 2 UID: 0 PID: 16158 Comm: syz.0.11948 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2736.784882][T16158] Tainted: [L]=SOFTLOCKUP
[ 2736.786737][T16158] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2736.791110][T16158] RIP: 0010:shmem_evict_inode+0x8e6/0xbd0
[ 2736.793500][T16158] Code: fe e8 ae cc b9 ff 45 85 ff 75 ac e8 f4 d1 b9 ff 48 8b 74 24 28 48 8b 7c 24 30 e8 75 79 92 ff e9 e5 fd ff ff e8 db d1 b9 ff 90 <0f> 0b 90 e9 59 f9 ff ff e8 cd d1 b9 ff 4c 89 e2 48 b8 00 00 00 00
[ 2736.801673][T16158] RSP: 0000:ffffc90003a97700 EFLAGS: 00010293
[ 2736.804239][T16158] RAX: 0000000000000000 RBX: ffff88804cb06900 RCX: ffffffff824e6afe
[ 2736.807563][T16158] RDX: ffff8880250124c0 RSI: ffffffff824e71a5 RDI: ffff8880250124c0
[ 2736.811054][T16158] RBP: ffffc90003a97828 R08: 0000000000000007 R09: 0000000000000000
[ 2736.814337][T16158] R10: 0000000000000008 R11: 0000000000000000 R12: 0000000000000008
[ 2736.817626][T16158] R13: 0000000000000000 R14: ffff88804cb06930 R15: 0000000000000000
[ 2736.821044][T16158] FS:  0000000000000000(0000) GS:ffff888097340000(0000) knlGS:0000000000000000
[ 2736.824774][T16158] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 2736.827741][T16158] CR2: 000000008000c000 CR3: 000000000e598000 CR4: 0000000000352ef0
SYZFAIL: failed to recv rpc
[ 2736.831481][T16158] Call Trace:
[ 2736.833669][T16158]  <TASK>
[ 2736.835086][T16158]  ? inode_wait_for_writeback+0x171/0x390
[ 2736.837603][T16158]  ? __pfx_shmem_evict_inode+0x10/0x10
[ 2736.839968][T16158]  ? __pfx_inode_wait_for_writeback+0x10/0x10
[ 2736.842715][T16158]  ? find_held_lock+0x2b/0x80
[ 2736.844877][T16158]  ? evict+0x37e/0xad0
[ 2736.846680][T16158]  ? evict+0x37e/0xad0
[ 2736.848446][T16158]  ? __pfx_shmem_evict_inode+0x10/0x10
[ 2736.851126][T16158]  evict+0x3c2/0xad0
[ 2736.853282][T16158]  ? find_held_lock+0x2b/0x80
[ 2736.855352][T16158]  ? __pfx_evict+0x10/0x10
[ 2736.857282][T16158]  ? iput.part.0+0x5fd/0xf50
[ 2736.859285][T16158]  iput.part.0+0x605/0xf50
[ 2736.861395][T16158]  ? __pfx_inode_just_drop+0x10/0x10
[ 2736.863830][T16158]  iput+0x35/0x40
[ 2736.865445][T16158]  dentry_unlink_inode+0x2a1/0x490
[ 2736.867657][T16158]  __dentry_kill+0x1d0/0x600
[ 2736.869626][T16158]  finish_dput+0x76/0x480
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 2736.871462][T16158]  dput.part.0+0x456/0x570
[ 2736.874060][T16158]  dput+0x1f/0x30
[ 2736.875661][T16158]  __fput+0x519/0xb40
[ 2736.877381][T16158]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2736.879662][T16158]  task_work_run+0x150/0x240
[ 2736.881646][T16158]  ? __pfx_task_work_run+0x10/0x10
[ 2736.883837][T16158]  ? do_raw_spin_unlock+0x145/0x1e0
[ 2736.886217][T16158]  do_exit+0x8b8/0x2b60
[ 2736.888009][T16158]  ? __pfx_do_exit+0x10/0x10
[ 2736.889986][T16158]  ? do_raw_spin_lock+0x128/0x260
[ 2736.892180][T16158]  ? find_held_lock+0x2b/0x80
[ 2736.894447][T16158]  ? get_signal+0x7e0/0x21e0
[ 2736.896698][T16158]  do_group_exit+0xd5/0x2a0
[ 2736.898813][T16158]  get_signal+0x1ec7/0x21e0
[ 2736.902723][T16158]  ? __pfx_get_signal+0x10/0x10
[ 2736.904809][T16158]  ? do_futex+0x192/0x350
[ 2736.906856][T16158]  arch_do_signal_or_restart+0x91/0x770
[ 2736.909211][T16158]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 2736.911847][T16158]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[ 2736.914395][T16158]  exit_to_user_mode_loop+0x86/0x4a0
[ 2736.916819][T16158]  __do_fast_syscall_32+0x578/0x8c0
[ 2736.919052][T16158]  do_fast_syscall_32+0x32/0x70
[ 2736.921151][T16158]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2736.923825][T16158] RIP: 0023:0xf701ef6c
[ 2736.925569][T16158] Code: Unable to access opcode bytes at 0xf701ef42.
[ 2736.928465][T16158] RSP: 002b:00000000f540d5bc EFLAGS: 00000292 ORIG_RAX: 00000000000000f0
[ 2736.931950][T16158] RAX: fffffffffffffe00 RBX: 00000000f7414f88 RCX: 0000000000000080
[ 2736.935209][T16158] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f7414f8c
[ 2736.938707][T16158] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000
[ 2736.942018][T16158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2736.945320][T16158] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2736.948749][T16158]  </TASK>
[ 2736.950054][T16158] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 2736.953057][T16158] CPU: 2 UID: 0 PID: 16158 Comm: syz.0.11948 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2736.957522][T16158] Tainted: [L]=SOFTLOCKUP
[ 2736.959322][T16158] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2736.963503][T16158] Call Trace:
[ 2736.964907][T16158]  <TASK>
[ 2736.966204][T16158]  dump_stack_lvl+0x100/0x190
[ 2736.968204][T16158]  vpanic+0x552/0x970
[ 2736.969906][T16158]  ? __pfx_vpanic+0x10/0x10
[ 2736.971870][T16158]  panic+0xd1/0xe0
[ 2736.973428][T16158]  ? __pfx_panic+0x10/0x10
[ 2736.975331][T16158]  ? check_panic_on_warn+0x1f/0x90
[ 2736.977461][T16158]  check_panic_on_warn.cold+0x19/0x34
[ 2736.979694][T16158]  ? shmem_evict_inode+0x8e6/0xbd0
[ 2736.981839][T16158]  __warn.cold+0x191/0x348
[ 2736.983713][T16158]  __report_bug+0x296/0x3d0
[ 2736.985684][T16158]  ? shmem_evict_inode+0x8e6/0xbd0
[ 2736.987901][T16158]  ? __pfx___report_bug+0x10/0x10
[ 2736.990046][T16158]  ? find_held_lock+0x2b/0x80
[ 2736.992095][T16158]  ? inode_set_ctime_current+0x9c/0x8a0
[ 2736.994451][T16158]  ? timestamp_truncate+0x22e/0x2f0
[ 2736.996647][T16158]  ? __pfx_timestamp_truncate+0x10/0x10
[ 2736.998998][T16158]  ? shmem_evict_inode+0x8e6/0xbd0
[ 2737.001192][T16158]  report_bug+0xb2/0x220
[ 2737.003023][T16158]  ? shmem_evict_inode+0x8e6/0xbd0
[ 2737.005184][T16158]  handle_bug+0x16a/0x2a0
[ 2737.007048][T16158]  exc_invalid_op+0x17/0x50
[ 2737.008910][T16158]  asm_exc_invalid_op+0x1a/0x20
[ 2737.011031][T16158] RIP: 0010:shmem_evict_inode+0x8e6/0xbd0
[ 2737.013434][T16158] Code: fe e8 ae cc b9 ff 45 85 ff 75 ac e8 f4 d1 b9 ff 48 8b 74 24 28 48 8b 7c 24 30 e8 75 79 92 ff e9 e5 fd ff ff e8 db d1 b9 ff 90 <0f> 0b 90 e9 59 f9 ff ff e8 cd d1 b9 ff 4c 89 e2 48 b8 00 00 00 00
[ 2737.021271][T16158] RSP: 0000:ffffc90003a97700 EFLAGS: 00010293
[ 2737.023832][T16158] RAX: 0000000000000000 RBX: ffff88804cb06900 RCX: ffffffff824e6afe
[ 2737.026982][T16158] RDX: ffff8880250124c0 RSI: ffffffff824e71a5 RDI: ffff8880250124c0
[ 2737.030314][T16158] RBP: ffffc90003a97828 R08: 0000000000000007 R09: 0000000000000000
[ 2737.033653][T16158] R10: 0000000000000008 R11: 0000000000000000 R12: 0000000000000008
[ 2737.036961][T16158] R13: 0000000000000000 R14: ffff88804cb06930 R15: 0000000000000000
[ 2737.040296][T16158]  ? shmem_evict_inode+0x23e/0xbd0
[ 2737.042494][T16158]  ? shmem_evict_inode+0x8e5/0xbd0
[ 2737.044622][T16158]  ? inode_wait_for_writeback+0x171/0x390
[ 2737.047026][T16158]  ? __pfx_shmem_evict_inode+0x10/0x10
[ 2737.049283][T16158]  ? __pfx_inode_wait_for_writeback+0x10/0x10
[ 2737.051866][T16158]  ? find_held_lock+0x2b/0x80
[ 2737.053831][T16158]  ? evict+0x37e/0xad0
[ 2737.055575][T16158]  ? evict+0x37e/0xad0
[ 2737.057281][T16158]  ? __pfx_shmem_evict_inode+0x10/0x10
[ 2737.059571][T16158]  evict+0x3c2/0xad0
[ 2737.061267][T16158]  ? find_held_lock+0x2b/0x80
[ 2737.063236][T16158]  ? __pfx_evict+0x10/0x10
[ 2737.065121][T16158]  ? iput.part.0+0x5fd/0xf50
[ 2737.067069][T16158]  iput.part.0+0x605/0xf50
[ 2737.068982][T16158]  ? __pfx_inode_just_drop+0x10/0x10
[ 2737.071165][T16158]  iput+0x35/0x40
[ 2737.072716][T16158]  dentry_unlink_inode+0x2a1/0x490
[ 2737.074869][T16158]  __dentry_kill+0x1d0/0x600
[ 2737.076805][T16158]  finish_dput+0x76/0x480
[ 2737.078646][T16158]  dput.part.0+0x456/0x570
[ 2737.080498][T16158]  dput+0x1f/0x30
[ 2737.082163][T16158]  __fput+0x519/0xb40
[ 2737.083890][T16158]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2737.086051][T16158]  task_work_run+0x150/0x240
[ 2737.088087][T16158]  ? __pfx_task_work_run+0x10/0x10
[ 2737.090310][T16158]  ? do_raw_spin_unlock+0x145/0x1e0
[ 2737.092574][T16158]  do_exit+0x8b8/0x2b60
[ 2737.094446][T16158]  ? __pfx_do_exit+0x10/0x10
[ 2737.096366][T16158]  ? do_raw_spin_lock+0x128/0x260
[ 2737.098492][T16158]  ? find_held_lock+0x2b/0x80
[ 2737.100497][T16158]  ? get_signal+0x7e0/0x21e0
[ 2737.102512][T16158]  do_group_exit+0xd5/0x2a0
[ 2737.104452][T16158]  get_signal+0x1ec7/0x21e0
[ 2737.106412][T16158]  ? __pfx_get_signal+0x10/0x10
[ 2737.108485][T16158]  ? do_futex+0x192/0x350
[ 2737.110319][T16158]  arch_do_signal_or_restart+0x91/0x770
[ 2737.112686][T16158]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 2737.115246][T16158]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[ 2737.117741][T16158]  exit_to_user_mode_loop+0x86/0x4a0
[ 2737.119741][T16158]  __do_fast_syscall_32+0x578/0x8c0
[ 2737.121684][T16158]  do_fast_syscall_32+0x32/0x70
[ 2737.123346][T16158]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2737.125436][T16158] RIP: 0023:0xf701ef6c
[ 2737.126720][T16158] Code: Unable to access opcode bytes at 0xf701ef42.
[ 2737.128774][T16158] RSP: 002b:00000000f540d5bc EFLAGS: 00000292 ORIG_RAX: 00000000000000f0
[ 2737.131456][T16158] RAX: fffffffffffffe00 RBX: 00000000f7414f88 RCX: 0000000000000080
[ 2737.133913][T16158] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f7414f8c
[ 2737.136336][T16158] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000
[ 2737.138775][T16158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2737.141243][T16158] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2737.144175][T16158]  </TASK>
[ 2737.145993][T16158] Kernel Offset: disabled
[ 2737.147407][T16158] Rebooting in 86400 seconds..