last executing test programs:

6m22.177667205s ago: executing program 32 (id=2778):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000580)="d8000000140081054e81f782db44b904021d080225000000040000a118000200fcffffff00000e1208000f0100810401a8", 0x31}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000580)=ANY=[], 0xfe33)

5m12.175985762s ago: executing program 33 (id=3324):
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff0}, {0xe, 0xffff}}}, 0x24}}, 0x0)
r0 = userfaultfd(0x801)
migrate_pages(0x0, 0x201001, 0x0, 0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x18)
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})

5m9.284635977s ago: executing program 34 (id=3338):
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x45)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e0c810110"], 0xf)

5m3.340540225s ago: executing program 35 (id=3379):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000480)={0x0, <r2=>0x0})
r3 = socket$alg(0x26, 0x5, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bind$alg(r3, &(0x7f00000004c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha384\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x0)
syz_open_procfs$pagemap(r2, &(0x7f0000000500))
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu'], 0x5)
setreuid(0xee00, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x181c82, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = openat$tun(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000002280)={'pim6reg0\x00', 0x2102})
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x6, 0xbb43, 0x6, 0x3, 0x12, "de79c64d051533bc"})
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f0000000080)={'ip6_vti0\x00', 0x400})
ioctl$TUNSETTXFILTER(r4, 0x401054d5, &(0x7f0000000000)=ANY=[])
r5 = openat$tun(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000002280)={'pim6reg0\x00', 0x2102})

5m1.651488738s ago: executing program 36 (id=3391):
pipe2$9p(&(0x7f0000000080), 0x84880)
r0 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x3, 0xd, &(0x7f0000000200)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x87}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3800000}}]}, &(0x7f0000000180)='GPL\x00', 0xfffffffe, 0x0, 0x0, 0x5c93067603d2de2a, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200000d4}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r3 = openat$fb1(0xffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x3f, 0x0, 0x1, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440)={<r4=>0xffffffffffffffff})
ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r4, 0x8983, &(0x7f0000000480)={0x7, 'team_slave_1\x00', {0x1}, 0x7})
setxattr$trusted_overlay_opaque(&(0x7f0000000180)='./bus\x00', &(0x7f00000001c0), 0x0, 0x0, 0x1)
listxattr(0x0, &(0x7f0000001d00)=""/4096, 0x1000)
semctl$GETALL(0x0, 0x0, 0xd, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x0, 0x0)
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x8001, 0x0)
ioctl$PTP_EXTTS_REQUEST2(r5, 0x40103d0b, &(0x7f0000000000)={0x1, 0x9})
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
sendto(r7, 0x0, 0x0, 0x24000000, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000840)='net/packet\x00')
ioctl$sock_ifreq(r6, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r6, 0x8949, &(0x7f0000000000))

5m0.120638381s ago: executing program 37 (id=3396):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0}, 0x1, 0x0, 0x0, 0x810}, 0x20004090)
sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="540000000906010200000000000000000500000205000100070000002c0007800c00148008000140e00000020c0001800800014064010100060004404e20000005000700880000000900020073797a31"], 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x4850)

4m58.231420572s ago: executing program 38 (id=3402):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x1, 0x0, &(0x7f00000001c0)=""/43, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/245, &(0x7f0000000780)=""/87, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001cc0)={0x1, 0x0, [{0x0, 0xffb, &(0x7f0000001d80)=""/4091}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000380)={0x0, 0x3ff, 0x5})
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x8528c000)

4m57.564324848s ago: executing program 8 (id=3392):
r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r1, 0x0, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000240)={r1, r1, 0x4, 0x1, &(0x7f00000001c0)="af", 0xc0, 0x4, 0x15c2, 0x40, 0x5, 0x2, 0x7, 'syz0\x00'})

4m57.471902772s ago: executing program 8 (id=3404):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000980)="d542f6300b61ca7913e7cd7b4036afcfddb3c77fc63db30ef223f1cc4fcdcbb56655be4873ea15e1a9d348fadc935180e702560acae65d42d95f6ddcae59879a1ce7e78eb197a0c8231a504b2614ac6dfd9a5760fe75ba4204694d382eb51806597cde99cedde3f0edd8bd3fce154f83e47f422d0e5bf427c23771a122bd0369cec32bbe791bfc2c0fce202d51df0862c31baa7b80bab6d64c1d5826a7f4c1982e3693e7a0677f2ad388ce872b890394a3ecfd1cec45ba7966945271fc033565d4a9bb17a41aacf550c4510ba99a24b48eab32e5d7549de9bae7954e0f750b55f706de3d5001638a1260dd8d2a", 0xed}, {&(0x7f0000000580)="49a6cc7e52cf0644e1fb10e13cb6893bd19afc65f2af20dd1746a881eb4dabcaf163ce54133d2499c296320937b805f1880adf0cb1507d", 0x37}, {&(0x7f0000000a80)}], 0x3, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x2d}}, @timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x60}}], 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {&(0x7f0000000540)}, {&(0x7f00000006c0)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8afc7d8376e847f403535371a24ce2a19c3898aca95", 0x8a}, {0x0}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0x6, 0x0, 0x6, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0xb, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0x9000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x4, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0xf3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x4, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x7, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0xa901, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
preadv(0xffffffffffffffff, &(0x7f0000001540)=[{&(0x7f0000001600)=""/171, 0xab}], 0x1, 0x2000000, 0x0)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

4m57.262277011s ago: executing program 8 (id=3405):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000140)={0x2, 0x0, @broadcast}, 0x10)

4m57.262046132s ago: executing program 8 (id=3406):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$bind(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x84000, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

4m57.161563062s ago: executing program 8 (id=3408):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x58, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xd}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x1, 0x2, 0x3, 0xfffffff9, 0x9, 0x101, 0x2, 0xffff}}}}]}, 0x58}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4m56.238867732s ago: executing program 8 (id=3409):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000080)={0x0, &(0x7f00000001c0)=[@wrmsr={0x65, 0x20, {0x40000000, 0x3}}, @wrmsr={0x65, 0x20, {0x40000001, 0x3f}}], 0x40})
ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000000)={0x1, 0x0, [{0x40000001, 0x4, 0x2, 0x31237648, 0x6, 0x2, 0x80}]})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000200)={[0x8, 0x4, 0x800010002, 0x10000, 0x9, 0x4, 0x7, 0xfffffffffffffffd, 0x3, 0x8000000000000000, 0x2, 0x0, 0xffffffffffffffff, 0x5, 0x3, 0xffffffffffffffff], 0x0, 0x194d40})
ioctl$KVM_RUN(r1, 0xae80, 0x0)

4m56.166148808s ago: executing program 39 (id=3409):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000080)={0x0, &(0x7f00000001c0)=[@wrmsr={0x65, 0x20, {0x40000000, 0x3}}, @wrmsr={0x65, 0x20, {0x40000001, 0x3f}}], 0x40})
ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000000)={0x1, 0x0, [{0x40000001, 0x4, 0x2, 0x31237648, 0x6, 0x2, 0x80}]})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000200)={[0x8, 0x4, 0x800010002, 0x10000, 0x9, 0x4, 0x7, 0xfffffffffffffffd, 0x3, 0x8000000000000000, 0x2, 0x0, 0xffffffffffffffff, 0x5, 0x3, 0xffffffffffffffff], 0x0, 0x194d40})
ioctl$KVM_RUN(r1, 0xae80, 0x0)

4m52.275499245s ago: executing program 0 (id=3435):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
getsockname$inet(0xffffffffffffffff, 0x0, &(0x7f0000002280))
ioctl$SIOCGIFHWADDR(0xffffffffffffffff, 0x8927, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000300)={0x6, 0x2, 0x4})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
unshare(0x62040200)
socket$inet6(0xa, 0x800000000000002, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newlink={0x28, 0x10, 0x1, 0x70bd28, 0x25dfdbf9, {0x0, 0x0, 0x0, 0x0, 0x48815, 0x83}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r1, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e20, 0x80000, @dev={0xfe, 0x80, '\x00', 0x41}}, 0x1c, 0x0}, 0x40c0)

4m52.032086914s ago: executing program 0 (id=3439):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x1a5042, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r0, 0x0)
timer_settime(0x0, 0x1, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
write(r1, &(0x7f0000000040)=' \x00\x00\x00', 0x4)

4m51.801003932s ago: executing program 0 (id=3441):
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0xfffffffc}, 0x10)
r2 = fsopen(&(0x7f0000000240)='ramfs\x00', 0x0)
fsmount(r2, 0x0, 0x0)
mkdir(0x0, 0x144)
r3 = openat$dir(0xffffffffffffff9c, 0x0, 0x101000, 0x108)
getdents64(r3, &(0x7f00000000c0)=""/55, 0x37)
lseek(r3, 0x7, 0x1)
sendmmsg(r0, 0x0, 0x0, 0x9200000000000000)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r1, 0x0, 0x40010)
recvmmsg(r1, &(0x7f0000002840), 0x0, 0x7ffeedc0, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x20182)
ioctl$USBDEVFS_ALLOW_SUSPEND(r5, 0x5522)
ioctl$USBDEVFS_BULK(r5, 0x5523, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r6, 0x5522, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a02fa560186d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f68530c2b21a100efb76cba37ff3111d6847e0c7f719e169a596e5fc008daefba68f6222103472bc55704cdb72b4b996ed82ccb1eaae27969d008ba7d34171113d80672e65a6a0a72e19c2b60bd6276fd8bb6366e9d1ed9a60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13e4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe3635b2ee97c143f28def4b73905ca14d10d1f600"})
ioctl$USBDEVFS_ALLOW_SUSPEND(r4, 0x5522)
ioctl$USBDEVFS_SETINTERFACE(r4, 0x80045510, &(0x7f0000000000))

4m50.409708802s ago: executing program 0 (id=3448):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$bind(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x84000, 0x0)

4m50.290777632s ago: executing program 0 (id=3450):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_INITMSG(0xffffffffffffffff, 0x84, 0x2, 0x0, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000040), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f00000000c0)={0x4, 0x2, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000080))
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x3, &(0x7f0000000380)=ANY=[], 0x0, 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x30, 0x8b}, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000000)='source', 0x0, 0x0)
ioctl$XFS_IOC_PATH_TO_HANDLE(r2, 0xc01c5869, &(0x7f00000003c0)={<r3=>r2, &(0x7f0000000440)='!^\x00', 0x50a40, &(0x7f00000000c0)={@_ha_fsid={[0xfff, 0x7fff]}, {0xa3, 0x4, 0x4, 0x53d}}, 0x8, &(0x7f0000000100)={@_ha_fsid}, &(0x7f0000000280)=0x8})
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0x7, &(0x7f0000000400)={0x2, 0x6, 0x0, 0x1}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x20, &(0x7f0000000180)={@private0, 0x8000000, 0x0, 0xff, 0x1, 0xffff}, 0x20)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f00000025c0)={0x26, 'hash\x00', 0x0, 0x0, 'sha384\x00'}, 0x60)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)
bind(r7, &(0x7f0000000480)=@pppol2tpv3={0x18, 0x1, {0x0, r5, {0x2, 0x4e22, @local}, 0x3, 0x1, 0x1, 0x4}}, 0x80)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x400000000a882, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

4m49.151406895s ago: executing program 0 (id=3453):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000d80)=@newsa={0x13c, 0x10, 0x1, 0x70bd28, 0x25dfdbfd, {{@in=@local, @in6=@empty, 0x4000, 0x0, 0x3, 0x3}, {@in=@broadcast, 0x0, 0x33}, @in6=@mcast2, {0x0, 0xfffffffffffffffa, 0x0, 0x401, 0x0, 0x0, 0x1}, {}, {0x0, 0x4}, 0x70bd2b, 0x0, 0xa, 0x1}, [@tfcpad={0x8, 0x23, 0xd19}, @algo_auth={0x48, 0x1, {{'sha256\x00'}, 0xffffffffffffff73}}]}, 0x13c}}, 0x20000000)

4m49.047443214s ago: executing program 40 (id=3453):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000d80)=@newsa={0x13c, 0x10, 0x1, 0x70bd28, 0x25dfdbfd, {{@in=@local, @in6=@empty, 0x4000, 0x0, 0x3, 0x3}, {@in=@broadcast, 0x0, 0x33}, @in6=@mcast2, {0x0, 0xfffffffffffffffa, 0x0, 0x401, 0x0, 0x0, 0x1}, {}, {0x0, 0x4}, 0x70bd2b, 0x0, 0xa, 0x1}, [@tfcpad={0x8, 0x23, 0xd19}, @algo_auth={0x48, 0x1, {{'sha256\x00'}, 0xffffffffffffff73}}]}, 0x13c}}, 0x20000000)

4m37.752028328s ago: executing program 7 (id=3581):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_GUEST_MEMFD(r0, 0xc040aed4, &(0x7f0000000040)={0x1000200001fe0000, 0x1})
ioctl$KVM_SET_USER_MEMORY_REGION2(r0, 0x40a0ae49, &(0x7f0000000180)={0x4, 0x4, 0x6000, 0x2000, &(0x7f0000ffd000/0x2000)=nil, 0x100000000000000, r1})
ioctl$KVM_SET_USER_MEMORY_REGION2(r0, 0x40a0ae49, &(0x7f0000000440)={0x2710, 0x4, 0x3000, 0x1000, &(0x7f0000ffd000/0x1000)=nil, 0x100000000000000, r1})

4m37.751897048s ago: executing program 7 (id=3582):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
msgsnd(0x0, &(0x7f0000000a00)={0x1}, 0x3d, 0x0)

4m37.631886174s ago: executing program 7 (id=3583):
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="00220f0000000b2e2b5a"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGFLAG(r1, 0x8004480e, &(0x7f0000000000))

4m37.33069887s ago: executing program 3 (id=3594):
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x5a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000094c0)=ANY=[@ANYBLOB="8c45000043000701feff416ec366166e0314000004004580744501"], 0x458c}, 0x1, 0x0, 0x0, 0xc004}, 0xc000)

4m37.081217611s ago: executing program 7 (id=3599):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$bind(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x84000, 0x0)

4m37.080849368s ago: executing program 7 (id=3600):
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000340)='illinois', 0x8)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(0xffffffffffffffff, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

4m36.859526024s ago: executing program 7 (id=3604):
r0 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
readv(r0, &(0x7f0000000100)=[{&(0x7f0000000080)=""/80, 0x50}], 0x1)
syz_open_dev$admmidi(&(0x7f0000000300), 0x20, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000300)={0x1, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r2, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000009c0)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd2c, 0x25dfdbfc, {0x60, 0x0, 0x0, r5, {0x0, 0xc}, {0xffe0, 0xa}, {0xfff3, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0xc5}, 0xc010)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000040)={0x30b, @tick=0x1000, 0x31, {0xfd}})
r6 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r7, 0x6, 0x2, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r7, 0x6, 0xd, &(0x7f0000000040)='vegas', 0x5)
sendmmsg$inet(r7, 0x0, 0x0, 0x30008001)
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r8, 0xc048aeca, &(0x7f0000000580)={0x6, 0x0, [{0xa0f, 0x0, 0x8000000000000000}, {0x9bf, 0x0, 0x2}, {0xa5c, 0x0, 0x4}, {0x38c, 0x0, 0x8f5}, {0xb3e, 0x0, 0x1ff}, {0xa5f, 0x0, 0x6}]})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180), 0xa0703, 0x0)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r9, 0xffffffffffffffff, 0x0)

4m36.781818207s ago: executing program 9 (id=3605):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4m36.582178375s ago: executing program 41 (id=3604):
r0 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
readv(r0, &(0x7f0000000100)=[{&(0x7f0000000080)=""/80, 0x50}], 0x1)
syz_open_dev$admmidi(&(0x7f0000000300), 0x20, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000300)={0x1, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r2, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000009c0)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd2c, 0x25dfdbfc, {0x60, 0x0, 0x0, r5, {0x0, 0xc}, {0xffe0, 0xa}, {0xfff3, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0xc5}, 0xc010)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000040)={0x30b, @tick=0x1000, 0x31, {0xfd}})
r6 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r7, 0x6, 0x2, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r7, 0x6, 0xd, &(0x7f0000000040)='vegas', 0x5)
sendmmsg$inet(r7, 0x0, 0x0, 0x30008001)
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r8, 0xc048aeca, &(0x7f0000000580)={0x6, 0x0, [{0xa0f, 0x0, 0x8000000000000000}, {0x9bf, 0x0, 0x2}, {0xa5c, 0x0, 0x4}, {0x38c, 0x0, 0x8f5}, {0xb3e, 0x0, 0x1ff}, {0xa5f, 0x0, 0x6}]})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180), 0xa0703, 0x0)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r9, 0xffffffffffffffff, 0x0)

4m36.540537149s ago: executing program 9 (id=3607):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000006c0), 0x10)
connect$can_bcm(r0, &(0x7f0000000140), 0x10)

4m36.427705186s ago: executing program 9 (id=3608):
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="00220f0000000b2e2b5a"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGFLAG(r1, 0x8004480e, &(0x7f0000000000))

4m35.862147742s ago: executing program 9 (id=3609):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$bind(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x84000, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

4m35.800788073s ago: executing program 9 (id=3610):
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r1, 0xfffffffc)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x24008004)
syz_emit_ethernet(0x36, &(0x7f0000000300)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x67, 0x0, 0x2, 0x6, 0x0, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x25}}, {{0x4, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)

4m35.608731603s ago: executing program 3 (id=3611):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x1a5042, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r0, 0x0)
timer_settime(0x0, 0x1, 0x0, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xe)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
write(r1, &(0x7f0000000040)=' \x00\x00\x00', 0x4)

4m35.491334402s ago: executing program 9 (id=3612):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000340)='illinois', 0x8)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

4m35.422810983s ago: executing program 42 (id=3612):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000340)='illinois', 0x8)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

4m35.360989269s ago: executing program 3 (id=3614):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd7000fcdbdf250200000008000100", @ANYRES32=r3], 0x1c}}, 0x840)
write$nci(r0, &(0x7f00000004c0)=@NCI_OP_RF_DISCOVER_NTF={0x1, 0x0, 0x3, 0x3, 0x3, @a={0x0, 0x5, 0x0, 0x5, {0x5, 0xf, "64ed5576d2cac3f55c4b40a2399eb1", 0x2a, 0xe}, 0x2}}, 0x1b)
ioctl$XFS_IOC_START_COMMIT(0xffffffffffffffff, 0x80585882, 0x0)

4m32.322154072s ago: executing program 3 (id=3617):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$bind(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x84000, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

4m32.321979329s ago: executing program 3 (id=3618):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @rand_addr, 0xfffffffd}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)

4m32.073032958s ago: executing program 3 (id=3621):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000a00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_INTERFACE(r0, 0x0, 0x4000)

4m32.019426023s ago: executing program 43 (id=3621):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000a00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_INTERFACE(r0, 0x0, 0x4000)

3m38.341800809s ago: executing program 1 (id=3997):
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x4000050)
r0 = syz_open_dev$dri(&(0x7f0000000440), 0xc, 0x2000)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000080)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f0000000f40)={&(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000ec0), 0x2c, r1, 0xeeeeeeee})

3m38.341511841s ago: executing program 1 (id=3998):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000300000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB='t\x00\x00\x00\n'], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0xc)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

3m37.870809154s ago: executing program 1 (id=4003):
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x119)
r0 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81)
ioctl$HIDIOCGRDESCSIZE(r0, 0x4004480d, 0x0)

3m37.731288966s ago: executing program 1 (id=4004):
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x5af, {0xfeffffffffffffff, 0x4, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8000000000000, 0x0, 0x21, 0x7, 0x1, 0x8000, 0x0, 0x0, 0x0, 0x1000003, 0x7d1d}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000", 0xe, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{0x0, 0x0, &(0x7f0000000300)}, 0xfbfffffe}], 0x1, 0x40000002, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40001}, 0xc0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x6}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})
socket$inet6_udp(0xa, 0x2, 0x0)
close(0xffffffffffffffff)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x34)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
socket$kcm(0x29, 0x5, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='debugfs\x00', 0x1214040, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80)
getdents64(r2, &(0x7f0000000400)=""/4096, 0x1000)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$XFS_IOC_FSGROWFSRT(r1, 0x40105870, &(0x7f0000000100)={0xada6, 0xfffffff8})
syz_pidfd_open(r3, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x0, 0x124)

3m36.681578435s ago: executing program 1 (id=4007):
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x4000050)
r0 = syz_open_dev$dri(&(0x7f0000000440), 0xc, 0x2000)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000080)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f0000000f40)={&(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000ec0), 0x2c, r1, 0xeeeeeeee})

3m34.361022905s ago: executing program 1 (id=4026):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9, 0x0, r0}, 0x50)

3m34.076710028s ago: executing program 44 (id=4026):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9, 0x0, r0}, 0x50)

4.077872538s ago: executing program 2 (id=6603):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) (async)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='ntfs3\x00', 0x80000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000200000005"], 0x50) (async)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000003c0)={0x0, <r0=>0x0}, 0x8)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080)=r0, 0x4) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async, rerun: 64)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) (async, rerun: 64)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f00000005c0)={&(0x7f00000004c0)="7a092815af447c43e33e0f940a34b3f36e6e104b25d0cfb522d1747616c13a11b4252fe5fe0f2fc2e6933a0888f9c6d8c05f6f7a04df921fd89652379265bd3b771d4bf7207b394648e7ef9b48b6c7c1f14cc838ef4111af0d9cb96608287788d36de587b5bbae1ffad771676d26ff6833ebdeb60fdadec7fc3c139677685ef707d8d9bed4ac1d63a2d87ed24eaa668c572374d72ecd0affdee08b9f62b7d655601e1e37322bd8265dea5c587f36da839580a25ed4f4cdd550301a28bcd93857500c959f20050aececdda99ac1a08b41759c536c7d6920e7843d38c27b1f67b7f4e46be237129f5a600182acded8ac33aeab534f", 0xf4, <r2=>0x0}) (async, rerun: 32)
r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1ff, 0x0) (rerun: 32)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000200)={0x28f, 0xffc, 0x1})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000700)={0x0, &(0x7f0000000000)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r3, 0xc01c64a3, &(0x7f0000000340)={0x3, r4, 0xfffffffa, 0x7ffffe02, 0xb, 0x200, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000640)={&(0x7f0000000600)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x0, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000700)={&(0x7f00000006c0)=[0x0, 0x0, 0x0, r2, 0x0, r4, r5, 0x0], 0x8, 0xc0800}) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000018110000", @ANYRES32=r1], &(0x7f0000000240)='GPL\x00', 0x2000, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r6}, 0xc) (async)
r7 = semget$private(0x0, 0x6, 0x0)
semtimedop(r7, &(0x7f00000003c0)=[{0x2, 0x4, 0x1800}], 0x1, 0x0) (async)
semop(r7, 0x0, 0x0) (async)
semop(r7, &(0x7f0000001240)=[{}, {0x2, 0x0, 0x2000}], 0x2)
semctl$GETZCNT(r7, 0x2, 0xf, 0x0) (async)
mkdir(&(0x7f0000000000)='./file0\x00', 0x5) (async)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) (async)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x1250022, 0x0)
r8 = socket(0x10, 0x2, 0x0)
ioprio_set$pid(0x2, 0xffffffffffffffff, 0x2000) (async)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$GIO_UNISCRNMAP(r9, 0x4b69, &(0x7f00000002c0)=""/72) (async)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r8, 0x89f1, &(0x7f0000000180)={'ip6tnl0\x00', &(0x7f0000000240)={'syztnl1\x00', 0x0, 0x0, 0xa, 0x4, 0x40000004, 0x12, @mcast1, @private2={0xfc, 0x2, '\x00', 0xff}, 0x1, 0x80, 0xfffffffc, 0x4c51}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r8, 0x89f2, &(0x7f0000000040)={'syztnl1\x00', 0x0})

4.022197562s ago: executing program 2 (id=6604):
bind$tipc(0xffffffffffffffff, &(0x7f0000000340)=@name={0x1e, 0x2, 0x3, {{0x43, 0x2}, 0x4}}, 0x10)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="000086dd03000a000000140000006c07010033d484"], 0x340a) (fail_nth: 1)

3.772596252s ago: executing program 2 (id=6610):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f00000000c0)={0xf14, 0x6, {<r1=>0x0}, {0xee00}, 0xe, 0x1000})
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f00000001c0)={0x2, 0x0, 0x8, 0x2, r1})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, r3, {0x7, 0x1f, 0xfffffffd, 0x490420, 0x2}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x1a)
ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000000380)=ANY=[])
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x109200, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r5, 0x3ba0, &(0x7f0000000000)={0x48, 0x2, r6, 0x0, 0x0, 0x0, <r7=>0x0})
ioctl$IOMMU_HWPT_ALLOC$NONE(r5, 0x3b89, &(0x7f0000000180)={0x28, 0x1, r7, r6, <r8=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$IOMMU_HWPT_ALLOC$TEST(r5, 0x3b89, &(0x7f0000000200)={0x28, 0x0, r7, r8, <r9=>0x0, 0x0, 0xdead, 0x4, &(0x7f0000000240)})
ioctl$IOMMU_HWPT_INVALIDATE$TEST(r5, 0x3b8d, &(0x7f0000000440)={0x20, r9, &(0x7f0000000100)=[{0x1, 0x3}, {0x0, 0x3}], 0xdeadbeef, 0x8, 0x2})
r10 = socket(0x400000000010, 0x3, 0x0)
r11 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r12, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1002, 0x200}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0x41d0, 0x2c, 0xd27, 0x70bd24, 0x25dfdbff, {0x0, 0x0, 0x0, r12, {0x4, 0xa}, {}, {0xfff2}}, [@filter_kind_options=@f_basic={{0xa}, {0x41a0, 0x2, [@TCA_BASIC_ACT={0x27ec, 0x3, [@m_simple={0x134, 0x2ceb, 0x0, 0x0, {{0xb}, {0x6c, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x0, 0x8, 0x20000000, 0x0, 0x101}}, @TCA_DEF_PARMS={0x18, 0x2, {0x75c, 0x7, 0x4, 0x280, 0x4}}, @TCA_DEF_DATA={0xb, 0x3, 'multiq\x00'}, @TCA_DEF_DATA={0x5, 0x3, '\x00'}, @TCA_DEF_DATA={0xa, 0x3, '*,-/(\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0xd6d, 0x9295, 0x4, 0xf1cd, 0x544}}]}, {0x9f, 0x6, "7acb976177523fb5552f4d9387e3885bad80d188d18957abd020a2591ce8c5ad674aef22ca20a134aae010afcfa2f391479d0b772e138969ea9d7ac6dfb1c2419d256fa62c0ee8c3580be1d41fa75f01f7a8eaea0c6dc94e7c80a9963ac7179c5487283862b650534893d8c6a9995552c70a7fcae1fea047babbb3c52f55b675bfea9e7c345858fdffa4fde9ece6810d9f0f4452422d7f8404424a"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_tunnel_key={0x94, 0x1f, 0x0, 0x0, {{0xf}, {0x50, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @mcast2}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @empty}, @TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x6, 0x2, 0x7, 0x1}, 0x2}}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @loopback}]}, {0x15, 0x6, "6d18afe3f9c4cd808d1775ec452d0f27b3"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}, @m_simple={0xf0, 0x4, 0x0, 0x0, {{0xb}, {0x10, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x9, 0x3, '[%!%\x00'}]}, {0xb5, 0x6, "627393c7cdc84e0aec1d78b571c172446b4fdb975cb4df16d8fae09124a07b1df59b7d9476532b2cdf6a16d71aff49aa7afba42fef1a93206cf7e88ceb02cd646142316dabfa854b7140e700ef5f47e5236746de85f8a66b043231734694a09812c017a280cf7fe40299fc1253d4ea9e8d487ba291ad9435e5dd3262968ed6e1ff57ef6707035d1cfe1736fdc1f6d1f95961da264f8dfad9caeecf6c7302b7383d5f1a0a6745d938e5f68b3479c2a98672"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x6}}}}, @m_bpf={0x84, 0x1d, 0x0, 0x0, {{0x8}, {0x44, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x6}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x107e5a8e, 0x3ff, 0x20000000}}, @TCA_ACT_BPF_FD={0x8, 0x5, r10}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x5, 0x225, 0x2, 0x100, 0x8}}]}, {0x1c, 0x6, "4c6d8cebcdfa92c133f560d32966c9ac152483cf931aa0b2"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_skbedit={0x84, 0x13, 0x0, 0x0, {{0xc}, {0x34, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x7}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x2f}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x7}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x7}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x6}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x8}]}, {0x26, 0x6, "bc569e7f1023b5cdcc688988cf2a931a7b1fcd341f9547e3a591f0096bc3ec03e679"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_skbmod={0x138, 0xc, 0x0, 0x0, {{0xb}, {0xbc, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0xfffb}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x1ff, 0x8, 0x10000000, 0x4, 0x4}, 0xc}}, @TCA_SKBMOD_SMAC={0xa, 0x4, @local}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x7fff, 0xfffffffc, 0x20000000, 0x5}, 0x5}}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x7af, 0x88e0000, 0x5, 0xce, 0x7}, 0xe}}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x9}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x8, 0x8, 0x10000008, 0x348f, 0x5}}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}]}, {0x53, 0x6, "5688496d893018c90b83c070687591403d0d589e575f7afdbe6eac5cf5b009f6af337684afeaa8ee0d0783fae9c5dd4b7974d02b2b910c06980eab74f85383fd0fe623015cf49cf689d08eaf4328e6"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_police={0x226c, 0x16, 0x0, 0x0, {{0xb}, {0x21c8, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1}, @TCA_POLICE_RATE64={0xc, 0x8, 0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x3, 0xfff, 0x0, 0x9, 0x48b7, 0x0, 0x0, 0x7, 0x1, 0xd, 0x3, 0xd, 0xba9, 0x7, 0xfffffffa, 0x4, 0x4, 0xd80, 0x2, 0xd, 0x5, 0x37e8, 0x9, 0x3, 0xe, 0xff, 0xfffeffff, 0x40, 0x4, 0x1, 0x9, 0x3, 0x0, 0xffffffff, 0x6, 0x7, 0xff, 0x1, 0x3, 0xe, 0x180, 0xfffffff9, 0xfffffffa, 0x6, 0xfff, 0x8, 0x401, 0x2ee, 0x1, 0x1, 0x5, 0xfffffffd, 0x0, 0x0, 0x1000000, 0x4, 0x9, 0xf, 0x47869ce2, 0x9b13, 0x800, 0xffffffff, 0xa01d, 0x4, 0x7, 0x7f, 0x5, 0x1, 0x11000000, 0x0, 0x0, 0x89, 0xd, 0x563, 0x7, 0xffffffff, 0x13, 0xf, 0x4, 0x2, 0x2, 0x5, 0x6, 0x8, 0x3, 0x2, 0x9, 0x7, 0x10, 0xec88, 0x1000, 0x2, 0x5, 0x0, 0xc86, 0x7fffffff, 0x3, 0x4, 0xcb14, 0x40, 0x3, 0x3, 0xfffffff7, 0x749, 0x9, 0x9, 0x2, 0x6, 0xffffffff, 0x8, 0xffffffff, 0x5, 0x6, 0x7ff, 0x3, 0x9eb, 0x7ff, 0x9, 0x0, 0x0, 0x5, 0xc, 0x2, 0x9867, 0x401, 0x410, 0x1ff, 0x1000, 0x5, 0x3, 0x54, 0xffffff54, 0xc7, 0x7f, 0x0, 0x8, 0xcf4000, 0x3a, 0x0, 0x4, 0x1, 0x41, 0xb1b, 0x13d, 0x5, 0x3, 0x666, 0x7fffffff, 0xfffffff7, 0xbf, 0x0, 0x9, 0x101, 0xa6, 0x80, 0x8, 0x8, 0x2, 0x1, 0x9, 0xb2, 0x6d, 0x6, 0x5f, 0x3, 0x0, 0x1, 0x1ff, 0x7, 0x80, 0x6, 0x7f, 0xa, 0x59, 0x5, 0x1, 0x5, 0x0, 0xff, 0xfffffff7, 0x9, 0x3, 0x2, 0x1, 0x8, 0x1, 0x9, 0x0, 0x4, 0x4, 0x6, 0x8, 0x3, 0x5, 0x8, 0x6, 0x30b, 0x9, 0x0, 0x6, 0x9, 0x4, 0xfffffffc, 0xfff, 0x5, 0x4, 0x0, 0x1ff, 0x9, 0x4, 0x7, 0x0, 0xfffffffe, 0x2, 0x52b1, 0xb40e, 0x1, 0x8000, 0x8000, 0x7, 0x40, 0x9ed2, 0x401, 0x2b, 0x1b70, 0xf50, 0x3, 0x9, 0x4, 0xfffffffa, 0xffffb7e4, 0x7, 0x4, 0x3, 0x7, 0xfffff778, 0x2, 0xd6, 0x3, 0xa, 0x3, 0xe30, 0x16d560, 0xc5a3f05, 0x3, 0x80, 0x200, 0x9, 0xdf1, 0x200, 0x8f8, 0x0, 0x3, 0xffffff74, 0x2]}, @TCA_POLICE_RATE64={0xc, 0x8, 0x2000}, @TCA_POLICE_RATE64={0xc, 0x8, 0x6}], [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xffffffffffff8001}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x7fff, 0x0, 0x5, 0x4, 0x6, 0x800, 0x80000001, 0xfffffff8, 0x7, 0x3, 0x183, 0x6, 0x7c10, 0x2, 0x7c9, 0x8, 0x1, 0xcd, 0x3, 0x800, 0xd9fd, 0x200, 0x4, 0x4, 0xd74, 0x40, 0x3, 0x10000, 0xae, 0xfffffffc, 0xd, 0x75, 0x9, 0x8, 0x0, 0x3, 0x7, 0x0, 0x1000, 0x4, 0xffff, 0x4, 0xf9c000, 0x4, 0x3, 0x10, 0x8001, 0xfffff001, 0x40, 0x2, 0x7, 0xae, 0xa3c2, 0xfffffffd, 0x5, 0x6, 0x4, 0xc134, 0x1ff, 0x7, 0x400, 0x4, 0x2, 0xff, 0xffff9140, 0x81, 0x3, 0xfffff009, 0x0, 0x5d8, 0x3, 0x8f41, 0x8, 0x295, 0x5, 0x4, 0x8, 0x0, 0x973e, 0x8, 0x2d, 0x5, 0x0, 0xed, 0x9, 0x88c8, 0x1a, 0x5, 0x1, 0x800, 0x1, 0x8, 0x2f, 0xac3, 0x1, 0x3, 0x8, 0xc, 0x9, 0x1b, 0x4, 0xffff, 0x10000, 0x81, 0x200, 0x0, 0x6, 0xd, 0x5, 0x1, 0x1, 0xfffffffd, 0xffffffff, 0x8, 0x6, 0x2, 0xad, 0x6, 0x1, 0xb, 0xa, 0x4, 0x2, 0xff, 0x2b, 0x6, 0x1, 0x5, 0x4fb, 0x101, 0xf, 0x6, 0x8, 0x1, 0x7, 0x4, 0x3, 0xba5, 0x8, 0xfd, 0x6, 0x5, 0x1, 0x800, 0x5, 0xb, 0x80, 0x1, 0xe, 0x0, 0x80, 0x7, 0x7, 0x4, 0x2, 0x6, 0x5, 0xfffffff9, 0x1, 0x8, 0x4, 0x1, 0x0, 0x66b, 0x3ff, 0x1, 0x4, 0x2, 0x9, 0x9, 0x8b6, 0x6, 0x80000001, 0x9, 0x6, 0x2, 0x80000000, 0x6, 0x6a4143ad, 0x8, 0x8, 0x9, 0x1, 0xc, 0x402, 0x9, 0xe, 0x80000001, 0x10, 0x9, 0xdc, 0x5, 0x6, 0x79, 0x80, 0x3, 0x0, 0x7, 0x4, 0x7, 0x1, 0x1, 0xd, 0xa2a, 0x8000, 0x10000, 0xff, 0x4, 0x7, 0x0, 0xfffffff8, 0x200, 0x80, 0x80000001, 0xa526, 0x9, 0x1ff, 0x8, 0x9, 0xfffff3da, 0x0, 0x0, 0xffffffff, 0x1, 0x4, 0x1, 0x6, 0x5, 0x0, 0x5, 0x101, 0xa2c3, 0x6, 0x180a, 0x0, 0xfff, 0xea44, 0x5, 0x5, 0x7fffffff, 0x0, 0x9, 0x1000, 0x5, 0x3, 0x1, 0x9, 0x3ed8, 0x3, 0x40, 0x2, 0x4, 0x3, 0x7, 0xf22, 0x8]}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x5, 0x5, 0xa76, 0xfffffffd, 0xe3f0, 0x8, 0xd, 0x2, 0xf3, 0x6, 0x7, 0x0, 0xfffffffe, 0x80, 0x1000, 0x5, 0x4, 0x2, 0x3ff, 0x2, 0x10000, 0x101, 0xffff, 0x2, 0x5, 0x0, 0x9, 0xd, 0x9, 0x3, 0x1, 0x88800000, 0xffff, 0x0, 0x2, 0x5, 0x5, 0x40, 0xfffffff9, 0x6, 0xff, 0x1fd4, 0x3, 0xfffffffb, 0x7, 0x2, 0xba, 0x3, 0x5, 0xfffffff8, 0x5, 0xa51, 0x9, 0x5, 0x6, 0x4, 0x8, 0x7, 0x9370, 0x9, 0x1, 0x3, 0x3, 0xfffffff9, 0x8, 0xec1, 0x5, 0x0, 0x7, 0x3, 0x7, 0xfff, 0x3, 0x5, 0x3, 0xed, 0x6, 0x64e, 0x7, 0x4, 0x9, 0xdd14, 0xe99, 0x4, 0x2, 0x6, 0xaf23, 0x0, 0x4, 0xe0, 0x1000, 0x7, 0x38000000, 0x1000, 0x3, 0x3, 0x3, 0x3, 0x401, 0xc3b, 0x8, 0x5, 0xf1f, 0x8, 0x3d, 0xfffffff1, 0x4, 0x3, 0x3, 0x7, 0x16fa, 0x70, 0x9, 0x5, 0x12c, 0x3, 0x5, 0x8, 0x5, 0x5, 0x1000, 0x101, 0x1, 0x7, 0xb, 0x3, 0x6, 0xfffffffc, 0x3800000, 0x1, 0x7, 0x9, 0x0, 0x800, 0x2, 0x7, 0x8dd, 0xc, 0x1, 0x8, 0x9, 0x6, 0xc9e, 0x80000001, 0x919, 0xeed, 0x0, 0x1, 0x2, 0x7, 0x1, 0x1800, 0x0, 0xa, 0x7, 0x7, 0x4, 0x1000, 0x401, 0x7ff, 0xffffff09, 0x1, 0xd, 0x6, 0x7, 0xfff, 0x5, 0x8, 0x24, 0x4, 0xe, 0x8, 0xffff33ac, 0x6, 0x6, 0x2, 0x0, 0xfffff520, 0x2, 0x2f3, 0xe5, 0x6, 0x5, 0x1, 0x8, 0x7, 0xebe3811a, 0x9, 0xf79, 0x7, 0x7, 0xff, 0x9, 0x6, 0x8, 0xf87, 0x0, 0x10000, 0x5, 0x200, 0x6, 0x2, 0x3bd, 0xfffffff8, 0x8, 0x8001, 0x6, 0xd9, 0x6, 0x2, 0x2, 0x9, 0x3, 0x1, 0x5, 0x1, 0x2, 0x3, 0xf8, 0x877e, 0x10001, 0x4da, 0xffffffff, 0xcf, 0x8, 0x2, 0xbc, 0x4, 0xfffffff8, 0x3, 0xbf, 0x6, 0x1, 0x0, 0x7, 0x8001, 0x1, 0x0, 0x7, 0x1, 0xffff, 0x5, 0x8000, 0x7, 0x2, 0x0, 0xffff5e7e, 0xe, 0xd, 0x80000000, 0x9, 0xfffffffc, 0x5, 0x9, 0x1, 0x7b1]}, @TCA_POLICE_RATE={0x404, 0x2, [0xff, 0x9, 0xb4f, 0xffff56a4, 0x6d, 0x9, 0x25bb, 0x642, 0x7, 0x4, 0x6c, 0x7ff, 0x9, 0x0, 0x7, 0xfffffffd, 0x7f, 0xffff8000, 0xafac, 0x6, 0x7, 0x3, 0x0, 0x2, 0x5, 0x2, 0x8000, 0x0, 0x8, 0x9, 0x3, 0x1000, 0x2, 0x40, 0x5, 0x10, 0x3, 0xfffffa5a, 0x8, 0x4, 0x0, 0x6, 0x8, 0x3, 0x4, 0xf, 0x43, 0xfffffffc, 0x6, 0x68c, 0x0, 0x18e4d698, 0x467, 0x4, 0x1, 0x8, 0x2, 0x7, 0x0, 0xf919, 0x400, 0xc, 0x400, 0x57b8, 0xe, 0x5, 0x4, 0xfffffffe, 0xc8f91ae, 0x2, 0x4, 0x7, 0x7ff, 0x5, 0x7, 0x25, 0x5, 0x8, 0x5, 0x4, 0xfb1, 0xe, 0x6, 0xf7fb, 0x4, 0x9, 0xfffffffc, 0xb, 0x9, 0x3, 0x6e, 0x80000000, 0x7fffffff, 0x1475, 0xffffffff, 0x3, 0xf47, 0x0, 0x5, 0x5, 0xfffffff8, 0x7, 0xb, 0xfffff60a, 0x9, 0x7, 0xfffffffa, 0xa2, 0x5, 0x9, 0x2c, 0x3, 0x9, 0xef, 0x1, 0x9, 0x9, 0x401, 0x0, 0x8, 0x1, 0xc, 0x7, 0x8, 0x0, 0x0, 0x55ee, 0x4, 0x80000001, 0x1c6cc36d, 0x3ff, 0x1, 0x5, 0x400, 0x6, 0x3f7, 0x7, 0xe66f, 0x101, 0xfff, 0x5, 0x100, 0x81, 0x6, 0x4, 0x3, 0x8000, 0x1, 0x3, 0xb, 0xffff, 0x7fff, 0xff, 0x8, 0x3, 0x10001, 0x2, 0x400000, 0x6, 0xfffffffd, 0x5, 0x80000001, 0x81, 0x1ff, 0x0, 0xff, 0x4, 0x2, 0x2, 0x5, 0xebaa, 0x8001, 0x4, 0x130, 0xffff, 0xffff, 0x401, 0xe7, 0x4, 0x1000, 0x80, 0x5, 0x3, 0x101, 0x3a3, 0x4, 0xfffffffb, 0x3, 0xfffffffc, 0x800100, 0x5, 0x0, 0x5, 0xffffffff, 0x8ce9, 0xf2f, 0x800, 0xfffff801, 0x80000001, 0x5, 0x100, 0xa, 0x1, 0x0, 0xfffffffa, 0xbb4, 0x73c5b2fe, 0x6aef, 0x4, 0x1, 0xfffffffd, 0xc, 0xa1800000, 0x52f9, 0x3, 0x1, 0x3, 0x4, 0x1a, 0x7, 0x4, 0x4e6, 0x6, 0x80, 0x20000000, 0x8, 0x105, 0x80, 0x4, 0xfffffff1, 0x9, 0x8, 0x9, 0x7, 0x6, 0x4, 0x2, 0x7, 0x3ab2fe5b, 0x8, 0x5, 0xe, 0x40, 0x101, 0x268000, 0x8001, 0x9, 0x7, 0x3, 0xfffffc00, 0x9, 0xaf0, 0x1, 0xc0, 0x10000, 0x9]}], [@TCA_POLICE_RATE64={0xc, 0x8, 0x9}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1000, 0x1, 0x1, 0x4, 0x80000001, 0x8c8, 0x9562, 0x7, 0xffff7fff, 0x0, 0x1ff, 0x0, 0x8, 0x7fffffff, 0x1, 0xa, 0x24, 0x3, 0x100, 0x7fff, 0x6, 0x9b3, 0x0, 0x6, 0x2, 0x7, 0x960, 0x7, 0x5, 0x0, 0x7, 0x80, 0x0, 0xfa, 0x4, 0xd, 0x2, 0x8, 0x8, 0x2, 0x0, 0xe1, 0x5, 0x400, 0x0, 0x0, 0x1, 0x9, 0x6b, 0x40000000, 0x800, 0x100, 0x81, 0x81, 0x6152, 0x81, 0x3, 0x6, 0x8, 0x6, 0x0, 0x5, 0x0, 0x80000000, 0x4, 0xe, 0x1, 0x7, 0x8448, 0x100, 0x7fffffff, 0xe832, 0x2, 0x0, 0x4, 0x2, 0xdb, 0x0, 0xffffffff, 0x401, 0x0, 0x41, 0xf2f, 0xe, 0x7ff, 0x5, 0x2, 0x8d, 0x8, 0x7, 0x5, 0x4, 0x5, 0x5, 0x0, 0x3, 0xcc, 0x179, 0x4, 0x9, 0x1, 0x3ed, 0x0, 0x1, 0x3ff, 0x5, 0x81, 0x2, 0x7fffffff, 0x401, 0xa, 0x7d, 0x81, 0x3, 0xcd, 0x9, 0x0, 0xde6a, 0x8, 0x1, 0x3, 0x574, 0x0, 0x4, 0x0, 0x8, 0x7, 0x6, 0x3, 0x0, 0x3ff, 0xd, 0xa, 0x6, 0xfffffffe, 0x0, 0x1ebbcf53, 0x7, 0x7, 0xffffff81, 0x1, 0xf, 0x1c, 0x800, 0x80000000, 0x8, 0x1400000, 0x9, 0x5, 0x1000, 0xd, 0x5, 0xffffffff, 0x7, 0x46c, 0x5, 0x7, 0xa07, 0x5, 0xb, 0x1, 0x2, 0x8000, 0x0, 0x3, 0x2, 0xf47, 0x0, 0x8000, 0x4, 0x1, 0x8, 0x689, 0x7, 0x9, 0x5, 0x3, 0xffffff81, 0x8, 0x3ff, 0xf519, 0x80000000, 0x400, 0x6, 0x2, 0x8, 0x8, 0xffffffc8, 0x9, 0x915d, 0x4, 0x5, 0x90, 0x9, 0xfffff001, 0x8, 0xa, 0xfff, 0xfffffff8, 0x1, 0x401, 0x5, 0x240c, 0x3, 0xaf1, 0xf, 0x6, 0x457a, 0xe46, 0x8001, 0x8000, 0xa, 0x10, 0x0, 0x9, 0x1, 0x1c9f, 0x8000, 0x7, 0xfff, 0x10001, 0x0, 0x0, 0x3, 0x3, 0x2, 0x4, 0x101, 0x3, 0x3, 0x2, 0x5, 0xfffffe01, 0xfffffff9, 0xa19c, 0x9, 0x1ff, 0xff, 0x40, 0x8001, 0x8000, 0x8, 0x7, 0x4, 0x2, 0xffff, 0x8, 0x5, 0x6, 0xca, 0x9, 0xfffffff7, 0x3, 0x0, 0x59b9222e, 0x8]}], [@TCA_POLICE_RATE64={0xc, 0x8, 0x61d}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x367}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x40, 0x6, 0xeca, 0xfffffff7, 0x81, 0x9, 0xa9, 0x9, 0x7, 0x480000, 0xdb, 0x6, 0xcbc, 0x6, 0x5, 0x8001, 0x23, 0x7fff, 0x7f, 0x1, 0x1, 0x8, 0x3, 0x81, 0x2, 0x5, 0x5, 0x39, 0x9, 0x8, 0x3, 0xb, 0x0, 0x5, 0x0, 0x3, 0x8, 0x8, 0x80000001, 0x80000000, 0x0, 0x10000, 0x2, 0xfffffffa, 0x0, 0x3, 0x3, 0x30c8, 0x5, 0xe05f, 0x2, 0x4, 0x800, 0x80, 0x8, 0x81, 0x2, 0x3, 0x4, 0x5, 0x2, 0x3a, 0x1, 0x0, 0xf91, 0x9, 0x9, 0x8, 0x0, 0x6d21, 0x6, 0x7, 0x8, 0x5, 0xfffffffc, 0x9, 0x4, 0x10000, 0x0, 0x6, 0x5, 0x8, 0x4, 0xc, 0xff, 0xfffeffff, 0x8001, 0x0, 0xfff, 0x2, 0x2, 0xfffffff9, 0x7ff, 0x3, 0x8, 0x809, 0xe, 0x7, 0xffffffff, 0x5, 0x2, 0x4, 0x6, 0x5, 0x2, 0xac1, 0x3, 0x8, 0x0, 0x6, 0x6, 0x11a, 0x9, 0xa468, 0x7, 0x1, 0x0, 0x1000, 0x9f, 0xfffffffd, 0x15f, 0x6, 0x7, 0xa0, 0x5, 0x7fffffff, 0x0, 0x1, 0x1, 0x3, 0x0, 0x0, 0x2, 0x8f33, 0x3ff, 0xfff, 0x7f33, 0x9, 0x0, 0xfffffff8, 0x81, 0xffff, 0x9d, 0x4, 0x3ff, 0x6a03a2c5, 0x200, 0x6, 0xd, 0x7a75, 0x1, 0x2, 0x401, 0x5, 0xd08, 0x7, 0xfff, 0x1, 0x3, 0x7, 0x1, 0x6, 0xd3, 0x800, 0x9, 0x1, 0x7fff, 0x3, 0xb, 0x64d605b5, 0x0, 0x8, 0x5, 0x8, 0xe90, 0x2, 0x3, 0xe84, 0xfbb7, 0x3, 0x3, 0x4, 0x0, 0xfffff46c, 0xffffffff, 0x4, 0x4, 0x85d8, 0x400, 0x5, 0x1, 0x8bc, 0x7, 0x4, 0x7, 0x1, 0x8, 0xafd, 0x923f, 0x2, 0xb271, 0x5, 0x80000001, 0x9, 0x5, 0x0, 0x6, 0x8, 0x401, 0x8, 0x5400, 0x4, 0x3, 0x10, 0x3ff, 0x1000, 0x0, 0x1000, 0x1ff, 0xffffffff, 0x8, 0x6, 0x0, 0xdd03, 0x80000001, 0xc0000000, 0xa, 0x7, 0x9, 0x8, 0x4, 0x9a6, 0xc00, 0x5, 0x6, 0x4, 0x3, 0x2, 0x10, 0x526, 0x1, 0x8, 0x0, 0x108, 0x1, 0xb4, 0x3, 0x4, 0xd5, 0x8, 0x69a, 0x100, 0x80, 0x10, 0xb]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x2, 0x6, 0x200, {0x7, 0x0, 0xfff9, 0x6, 0x0, 0x7fffffff}, {0xf, 0x1, 0xffff, 0x2, 0x728, 0x8}, 0x7, 0x3, 0x1}}, @TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0xffffffffffffffff, 0x0, 0x8, 0xb15, {0xc, 0x1, 0x2, 0xeb, 0x800, 0x800}, {0xc, 0x2, 0x3, 0x4, 0x6, 0xe8}, 0xfffffffe, 0xfffffffc, 0x20000}}], [@TCA_POLICE_AVRATE={0x8, 0x4, 0x41f}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x2}, @TCA_POLICE_RATE={0x404, 0x2, [0x6, 0x9, 0x2, 0x1000, 0x3, 0x0, 0x2, 0xfffffff7, 0xffff, 0xffffff01, 0xfffffff8, 0x6, 0x4, 0x1, 0xfffffffd, 0x5, 0x9, 0x9, 0x0, 0x80000001, 0x33, 0xa33, 0x11, 0x12c, 0x1, 0x4, 0x8, 0x10001, 0x101, 0x7, 0x2534, 0x200, 0x6, 0x3, 0xd3aa, 0x7fff, 0x44aeea92, 0x10000, 0x5, 0x7, 0x800, 0xf, 0x8, 0x2d, 0x4, 0x7fffffff, 0x81, 0x1, 0x40, 0x8, 0x8000, 0x5, 0x6, 0x40, 0x1, 0x31, 0x2, 0xc9ae, 0xfffffffb, 0x3, 0x0, 0x7, 0x6, 0xfffffffe, 0xfff, 0xfffffffe, 0x7, 0x0, 0x1, 0x2, 0x9ea, 0x2, 0x3, 0x0, 0x3647, 0xcce, 0x6, 0x3, 0x80000000, 0x1, 0xa, 0xff, 0x10001, 0x1, 0x7, 0x1ad, 0x7, 0x966, 0x8, 0x9, 0x6, 0x7, 0x7, 0x1, 0x5, 0xffff0000, 0x7ff, 0x447cffe9, 0x9, 0x4, 0x3, 0x8, 0x2, 0x9, 0x6129, 0xfffffffd, 0x68, 0x6, 0x7, 0x3ff, 0x9, 0x3, 0x1000, 0x3, 0x7, 0x8, 0xf, 0x8a8b, 0x7, 0xd, 0xfffffffb, 0x3, 0x1, 0x1, 0x6, 0x4, 0x4, 0x3, 0x7, 0x5, 0xf50, 0x1d7e, 0x0, 0x1, 0xfffffffc, 0x3, 0x1, 0x9, 0x7fff, 0x100, 0x0, 0x9, 0xdfbb, 0x5, 0x4, 0x0, 0xff, 0x6, 0x6, 0x8, 0x200, 0x5, 0x5, 0xa7, 0x2, 0x3, 0x6, 0x2, 0x7ff, 0x0, 0x4, 0x4, 0x4, 0x4, 0x1, 0x8, 0x1000, 0x8, 0x8, 0xfffffff8, 0x8, 0x2, 0xc, 0x9, 0x6, 0xca, 0x0, 0x9, 0x9, 0x2, 0x0, 0x5, 0x7, 0xadd, 0x80000, 0x3, 0x9, 0x8, 0x1, 0x4, 0x5, 0x5, 0x7, 0x3, 0x2, 0x3, 0x8, 0x2, 0x441a, 0x6, 0xffffff7f, 0x9, 0xffffb43f, 0x3, 0x2, 0xc1, 0x95, 0xd76, 0x3, 0x4, 0xbf, 0x2, 0x5, 0x9, 0x1, 0xb, 0x7fffffff, 0x9, 0x5c, 0x2, 0x2, 0xff, 0x1, 0x3, 0x0, 0xc, 0x3, 0x76a, 0x0, 0x0, 0x2ea, 0x81, 0x6, 0xd0, 0x9, 0x67, 0x1ff, 0x1, 0x5, 0xf6, 0x6, 0x4, 0x5ff2, 0x9, 0x1, 0x3, 0x1000, 0xfff, 0xfff, 0x4, 0xfffffff8, 0x0, 0xf21d, 0x5, 0x7fff, 0x3]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x99b8}, @TCA_POLICE_RESULT={0x8, 0x5, 0x823}, @TCA_POLICE_TBF={0x3c, 0x1, {0x2, 0x0, 0xa, 0x81, 0x2, {0x2, 0x2, 0x1, 0x400, 0x7265, 0x9}, {0x6, 0x0, 0x6, 0x8, 0x8001, 0x8}, 0x9a, 0x401, 0x7ff}}, @TCA_POLICE_RESULT={0x8, 0x5, 0x7ff}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x463, 0x9, 0x653, 0x8, 0x1, 0x5, 0x8, 0x0, 0x3, 0x3, 0xb, 0x3204, 0xaa1, 0x4, 0x7fff, 0x9e65, 0x9, 0x6, 0x2465, 0x7, 0x4, 0x5, 0x7ff, 0x70000, 0x1, 0x608, 0x1, 0x100, 0x37e2, 0x0, 0x4, 0x1, 0x4, 0xfffffff6, 0x155, 0xfff, 0x2e, 0x5, 0x0, 0x80000000, 0x10, 0x7, 0xdc, 0xffff8000, 0x2, 0x0, 0x9a, 0x10000, 0x80000001, 0x1, 0x1, 0xe3ac00, 0x2, 0x10, 0xfffffff6, 0x1, 0x6cc, 0x7fff, 0x8, 0x6, 0x0, 0x0, 0xdfc, 0x7fff, 0x200, 0x1, 0x0, 0xffff, 0xfffffff9, 0x4, 0x7, 0x571, 0x7, 0x401, 0x3, 0x4, 0x8, 0xff, 0xba52, 0x7f, 0x80000001, 0x2, 0x50000, 0x3b, 0xffffffff, 0x3, 0x3ff, 0xffa, 0xb59, 0x1000, 0xca, 0x1c, 0x5, 0x401, 0x800, 0x0, 0x4, 0x6, 0x5, 0x7, 0xa, 0x1, 0x70, 0x4, 0xbd8, 0x7e, 0x0, 0x3, 0x3, 0x5f8a, 0x9, 0x8001, 0x7, 0xcf1, 0x850, 0x9, 0x7544, 0x8, 0x3, 0xe00, 0x1000, 0xfa8, 0xffff, 0x0, 0xffffffff, 0x6, 0x4, 0x1, 0x3, 0x400, 0x0, 0x8, 0x3abdf9f1, 0x6, 0x2, 0xd97, 0xffff0000, 0x6, 0x7fff, 0x7, 0xa, 0x7, 0x3, 0x1, 0x800, 0x2, 0x48aea53f, 0x5, 0x4, 0xffffffff, 0x2, 0x2, 0x9, 0x9, 0x9, 0x4, 0xfffff001, 0xb36f, 0x3ff, 0x10, 0xfffffc75, 0x3, 0x0, 0x8, 0xb137, 0x7, 0x8, 0x5, 0x0, 0x90, 0x5, 0x769, 0xfffffffe, 0x4, 0x7, 0x1, 0x3ff, 0x7, 0x1, 0x9, 0x6, 0x3, 0x9, 0xad, 0xbf, 0xffff, 0x100, 0x0, 0x80000000, 0x1, 0x34e4b046, 0x7f, 0x3b68c092, 0x4, 0x6, 0xffff7fff, 0x6, 0x1, 0x4, 0xff, 0x8, 0x1, 0x5, 0x4, 0x0, 0x4, 0x80000000, 0x8, 0xe0a, 0x80000, 0x1ff, 0xad71, 0x4, 0x918, 0x2, 0x8000, 0x40, 0x4, 0xa0, 0x6a5640a3, 0x0, 0x7bc2, 0xd5, 0x9, 0xfff, 0xfffffffe, 0x3, 0x44, 0x10, 0xd3, 0x1, 0x2a, 0x10, 0x0, 0xdb, 0x400, 0x80000000, 0x10001, 0xd, 0x4, 0x1000, 0x35, 0x9, 0x45, 0x1000, 0xfffffffb, 0x3, 0x4e, 0x9, 0x800, 0xdd10, 0x6, 0x0, 0x6, 0xfffffe00, 0x80000001]}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x7}, @TCA_POLICE_RESULT={0x8, 0x5, 0xffff0000}, @TCA_POLICE_TBF={0x3c, 0x1, {0x400, 0xffffffffffffffff, 0xfffff800, 0x3, 0x9ae8, {0xe, 0x1, 0x101, 0x10, 0x11a, 0x10000}, {0x7, 0x2, 0x6, 0x3, 0x8, 0x4}, 0x92a, 0x3ce7, 0x8}}]]}, {0x7a, 0x6, "8128058ad6a510281ba18b1ec2739d8b5abb2966e4a25aeb549df1e0530cd249c601c75b9963a2c20ebde642192f7835c665e1cc69df57fc153692190809aac9dd1de6f743949330058cdd9a38c6f825bdaaa87819ae396dcce23228357aa019aa147de203ec7749a25a7959650ff39174db72747cf3"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x5, 0x2}}}}, @m_csum={0x84, 0x11, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x3, 0x5, 0x5, 0xfffffffd, 0x4}, 0xd}}]}, {0x3c, 0x6, "cd18add4caf4e613118b937b4ae42438809e7da0589d82f08de663a20bc2119ee78e155eca698ffb95abb20cba60c869e82d610c3de9c1aa"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}, @TCA_BASIC_ACT={0x19a8, 0x3, [@m_skbmod={0x1054, 0x0, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24, 0x2, {{0x6, 0x3, 0xffffffffffffffff, 0xc5, 0x4}, 0x9}}]}, {0x1004, 0x6, "c000d69d9324cd97e1f809e8d6180cbb4577503bbb6a1c5be05c62ffb2693a531178e35841f709c89289d7cb2ddc575aff1488024d95f9312e563aa2356f387970bdc26d5eb8e5e81ad85b411f0b34a91f3eb74cb75222a4abd9fd11f4116a1e4efeb1e96ec52eab4ae5d5a3557ec948ca9864b8e14191b45b4d32b5bca9e5217031802a9d19271000ff3efcfbb7a36fedee2e129266b4c7d170964f801e95c283a6c51494416b3e421ee89ad994d776d29d714f6cb115a8c21e98be17825f4f9fd748d002549f1b2cc549610d7e1ddb228cc008ac8ea1a609d3374dd1e6347acf0a05297487cf7708257d56167c1b8c55ce229a57500372389344bf02f655f257e4c425a87b2a80f4750cff60506d325ab1e029a9666d9499a853a24b78db1b782cba6a6b339fe2c1c228ccde0966508aa391eb62ebc1e7e679811a60c00c5de6dcaec1c946bbb7dcd6cf54506fdd045ca3e6f7e7fed190fd97bb5e2d9654d60399971c5babe497801d4e7a05de6be7d14d3e6aeecb2ef20c5854bb9c3f2176a05031bf50ea6b1b2b6c5e5a06240e5ebea2e165293e84db4e5a3fb433481c480fceccfa1ef79ddaed243921a25169c2572372474a12f5a6b8aadaa02d67f86a15bc69e2926da94d75dacc6c890b6873602a6bc41ae778d89bca43e9baab000e6809f063136fa03f8d98e995183a76300f7abd11e4d550395f35868993003ec6c16a990403e3b2932ebef97e55622050adc673351b933e1c2a650343a6fc87cd7fd66f05550f1c24a65fd1f389ccb2ef129e57145ac9d9faf7019acbf9b33340d1c6945c7852fb50a2cfd566473676650349108c60ee7f065cf794c5d72e2b9d0532407a1bb595b388067f91773a529a4d54d553877806c5f3e21d00e43f327c5fb4a67f62f894c07ce3248197f39a208a29537f55491c9972660e94c93e9e7f1c800f3f1e0e279fb3aa9c5ebf67f13c87c61b834d419b48b3eb362d330c6fb7c0080de00d78bd3f8b8e4d301ff6afc30279754b232422059ba89088166f2dd9a5e15509dd42f779d7dac73ea15e1aeefd961b83cac83672af23e869b3adfdfad6d58f51535014935748d05f1e6b76116333ba05b6188b75b2c67d1101b5b2c028f596768abaaf6ae173c711c1c4d7aa5a3fdf1b94f6b525f8deaca2dabd4781fa18c8cb9c2a40e21f7458b148143f890ff461ecac7cc533e3e68fd85d9d29ce49c86fb8078a6f747b68f6f4154461854fe65ceae089492e5bdba8cb095256cac607be4187275ac7871baefc094a8fbc20f09f086b23e07b3afdfd8441a45180fc39ea1cc51000f96f41ba5e03a743fa220378f73df09e24366f08c9f4143ef5d51ee3772e32d81b6601653b0c9ef44005fe73fbac3b6bc998e049e970406d50143439c5368e404d71f90296ac25ceeb7c87477f47621e45d4168efa87bda729bdc9913a7a67a32396e9458aba1d6f551d491dda6348f6cc3d32e8fec617d58bcdcd154c735f6601507e33071d692813eb93b9b15d03924a35245d82bcc2d33fb34aa3f38a343642bee274c5dd50ed57fcb72aaca1ec63a018a6feecb187db01f4a8f864cf5f0ff4f1dd65e53b7dedd694bdfe8b4c45a79ad97fac9df19d12e05cbeebb2f9fcaef08d2dcf3297bc4268681d1c190a602152c922e7a7b03d8b6183b44c175b6674824b106445bbb80955ca0cc54b0b45175df00407928c2e44482d637d94add3a3262ab600800446ae8b49ab716aef35f8ccfe8402497b3e1b53f5ab7dd5f440fce8adbc62e1dd0a60f87967b38f0f5228b2b47f8dcbd54aa4ea6c8bc6658d6e01d2ef70744e6278f92ef0d84ddf7b15b0560ecd1678972ad4305e2b292b522188825a8a6207f576dad80543193971956501a9e00749764a43cef4409c97f4547d6a25fc63ffe0d6b1d0d6cece6dbcc0a6e566a64b2872db4ac42d8c087dfdb57fbae8e8061c5828983f34aeaeae7c5bd4c1ba6fee669aed3d16cb2b338845fbb0890ea0906e62c8476c203bd97fa9ae22a7cf3ad0a9f0df3e3d8031e9b9434a4341c622d42fbcf0c79a55e4a0f99420995769dae8c1e3e487531d3ac5cdd67bb992c5e6f91cd7eeb3932e8a4d5d1ef702ff02d3820ad35a11749307ecf9914afc80e8ac810c940afb3b4494b3e9f9d4bc36e5ab41a4862e8b5c316483799f0f4b98f36fde90721845c7eee58304552c923841f83a6962a06ecf4cd3507c1154311758740923178b6bda2ed127d666beea2063a474d24862c6ee0c3f094fc8b1e3d7fbab77b36e4436bf553bbfe4f9129a5181b4f7eabc87006f9a670948d55fe43dceac300645e230680d4a666cc5f482bdedd1e7cd332db4650d49fb210ee25c243fee760cd0c30128aa85dd908bd846e6ad6b224c313508fab7c32e64b4dff1e0894300adfadd363af4aadd8aa6a6ea5be7c50f86b697f1bb424d487058a3148b35cec0233ed1ba1c101cc511137d1593127283eab9e9ce0f51193d4659cce8902cd1051ac616c37a91b020f759b39cc6a3cf54314a1f6b7fef91ac0e4f6d5607464af0fd5c90835569f6b08fbfb76c3b9cfa016bbfb760732a6b7a31d8f953bcee42793eb0102cb77bbe3d3fb10a202f9b5bbd846232df6085aca71b1762a798ddc58651dda85b4055c0ce18a2f063975788774dfe132fa34b1ca14d52fbe48ac2f6025963b6b5f048e846845e85b6f30ae524c8301a138e943775b98d4d76dc474fd9dc430e05baa926836cb774e406044637ec561391f569471cd2e509436be2116b0323e206dec98530ea255bc55887d46b738944a263c7fd27db402661d344ede267ae4ed7256af1fcc5cb2c64cffa24345a117ce7864843a50b0cc3062333a2e0e6b30155ee4a2b99e6f57c73b7cbfc7af5f9045343ab7a6a64419df463e877fe102111b9c163908a402fe8c5c0e22e0bd4e1e4e3a1902ec4860a784a32229517d859724a8ffd77c89829daf85690704c4c99c284bfbf68b7cf89ae8a08dc1d67528f5d6e23f43895a1efd3988d431e690c7f68058ca5d93a6e28ee8857063519ea6543da1d88cf21f77ae5332683fc6064f9d18502c4986458d88f9c0f6713083c539bf44260bb0ddc78786eda81bc22213f0afd12f9b2754b1d9b4bdfb17cfaa6318dd3e631292b16e4805ac51fd9fb278a2452a146d2cd054a09989404b7dbb055b9adb0ae2d6aedcfc2e34ea42bba169462b4e46f65130aa82850a4bd7130041d12a5910c25d431e452a9b48f56ef111bbbfb0db179904dc6e75cfdfbcbaa75d32f3f48ee8905100a2cf8dc28f8fdb5a813ccfc0eac01e2e44474fb8ea2524aa59c00f3bd553fd7041f0c5ca5a680d1c127829ca83abe2265116b2527968a13625c3c1570e05f118226752dd7304eb171fadc5eb4a147e50f46dadfd7341cc69c03be6e835568f926952a245108a0d9a1c6b604880200f9f0cda22168fc3b1174258900c101d71662f8bf386a25976b6f32fb79ee08d6253e1f104b9f070dffc99a4a53d3c8cb173b8132a26829c9f8ba60301e03d3777e11c90a1dbb22335fde40159a898c572b8b00fca37a297f0bcb694841e824e6f73b469f2b9d7d07fe249a1c5e0af2d2ca7e8c2f55ebf55d8717af080fd828f8ba3a27be8cc5fa5913f4229ac492e264b5a88c40e3d2673e33ba76930646166445366bff3dca0b5fac047f3837ee0a71cd0f48136f20c2fc63c78d23493762604b9b0b4340fe858c33d21716cdc84221b39ed9c93622a28c8317b6a0e790da44a1ae77895ea5d64170c22bbb40ee3ee176ced506bd0de308fdaa80a44e9c47dc727170c84cba69e0fa4bec55b47c519a2ad4e9233292b549d4d3f8e5486879d161c5ed019c55d27726c8dd55f0b284a9c6f8d7ac536a08148c68ce26f02c0d37f406c3d839d782132e3c947db9ed24caf16345f08e191c862c306443d932eee530bb280f64b68366d3a7bfaba9fdf6005f6fa92021e7c09e470821ad1611803ef066c96ce1d1e69c8e15ea953938043fdd3a94edde66c122e43746c3e09760e8afbf4121449bad1894ed67274134b004330819b9a3698521f30eb964a89d01151af55fedd1e051c61a766c1e2f6e0c94449e44c0d396ee97a8efcd24c8465890e89bfbd6c501cc1760b357fe8e7096ea4fcea754b156a38be9838f28caecef21c5ba42d0955f602dad9aab7462a3db1ee0927ecc6df33a3ba222cd88feef3a74ff3b3f0e4bc91dc8ac310f0e5628c88a54873a1bd8cda483e921a53b0a91fa69b90dd3b6838786cfb18f263da94595065d8930e82a42785bb5f5f39906bbee1dbbbf0567588b552dfa52b96404db0a0448297b607a894eeed605a3389ab1d31b3f7e80f5c028f4bf68e1537480dfdc987971996cd50a9ade56ef4509990daf8251a645b1a800992001254ce14d6dee8c74afbbe49b6e1bb9e3fd36a90f651ba73f7aa74557217183468e2b176e9b6fcc93a724b5d8c73dd8dec97e7cf75867c6ce6c5dd186cef0018cca8992b7aaab0d3874dbdfa82c3f00d1d6465d45a5d5db21bacde51ebdb54f9069bcc717d55ebc300eceb1f1575cc3f53abdf4acc40427b9ecd6becbf37f6d0dba389a514010ee13d9057530ed55a1df62d1f79f306d6939cb1199c1af0e154615dde52a487370378e1490c466908479313475d9f1210878cd517ca3932273a7a24ba815585618f1a4e338f90dd42a00f33802cd7dac6cc9362a17b64c0175b7b35b94eb1e5a9a13172ad35fc83d8127370743a18e16d09e3d49d344581ec91bea6dfff7bdd7a1e69697d3cbc587c651656825143b521f479cbf209a1fd5ee60a2a8dfa605657a17e99ac82c17bfb88c683c4228efd960325d130587be63cceec95fb8b4fb97440063593c3747f1d538d38e6a2a17935acc7a95207b5545d3ed39fd8791f5a909e43b74714ea4dea95e49cd656418ea78b290fba092421e763a6259ed63b85848c6feaca954b98b275ddbde00e1a9d0f8890fafca76fc05b55436616068351bbc37e120c3ef643bf899d63ea8d21a6a392b7a5fa9ef24943e1f25a59619b50f029bf69abf6fddcec595752a49974fcd565430b22e0117d5805b10018e2b960800f4045102e45bd0ea975cef6525e58813a7e7cdae5be698ee114e74b1883794745ace267315bdb3d3bf0f8474bbe5da9360ebfdf05e20f282180bca6c001f409b48c3fc39a9e90dabf404db42907a21a5f897de5af121d72799dfdcbc21048753d1cbcae910229db9bb34d3f8c5647ee8eb4515023dd068f2fb85b4dcd719a3070a885e318e960e28d024e30cedac9de9838b80cc92bf2824388a603c00d4e47e1fd745d467d01afd40b8de5145ca7e27b524cf327745ba17f2e76e96ab8db7096c64ee57f7b5fdd68b9b94a6053d113c7705c63f80a5b4cb61569e557d30d79a47fa2c50004be88a79dc19515b1dddc9ef71b465b2ef4bdc7fcd0f7c89a73ee02f59a6e21c56b8b5e32c08a0bf98ff41cc059d13b2f370170075421aae9956bfa2bb779215eb6a111f45c34ea2aa3f0d42ac4bc90738305b750ab799cc12fecc374324f7fd334af375510d98eaad8b0ad172dbb386aa5fc55f5098c761eb1535bc236a3e232ea2fe5ea1227e4b38d526911a9f0e412eebb9a42933cab59d05647e8219e0c7c496ba5763abc9172a38eba4c9a9f95064856fcb79038a125327b4d31e54ace45277b48c74cc882bda3417dc33ddcc93ca9c08c7a070924cdc0e7f8a0e60077a681bf3ea815198ad3fe78483028469ad3c89eb0f8922259cae47f578eb7715e35e4e12142fbb026e"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_police={0x950, 0x16, 0x0, 0x0, {{0xb}, {0x860, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x9, 0x10001, 0x101, 0xfff, 0x0, 0x9, 0x1000, 0x2, 0x2, 0xc, 0x2, 0x7, 0xe, 0x401, 0x3, 0x0, 0x5, 0x24, 0x6, 0x5, 0x9, 0x66, 0x2, 0x2, 0x5, 0x4, 0x7, 0x6, 0x3, 0x2, 0x400, 0x81, 0x34000000, 0x2, 0x200, 0x519b, 0x8, 0x6, 0x7e9d, 0x8000, 0x0, 0xd2, 0x100, 0x2, 0x7, 0xb, 0x200, 0x8, 0xb, 0x8, 0x0, 0x855, 0xd, 0x8, 0x3, 0x80, 0xd, 0x46776a18, 0x6, 0xff6a, 0x8, 0x8, 0x75f0, 0x3, 0x3ef, 0x9, 0x7, 0x8, 0xfffff800, 0xca, 0x6, 0x7, 0xffffffff, 0x61678e5e, 0xfffffffe, 0x2, 0xdaa, 0x9, 0x3d, 0x3, 0x1, 0x4, 0x2, 0xd0, 0xb, 0x80000000, 0x14a6, 0xab, 0x1de16b1a, 0x1000, 0x0, 0xfff, 0x7, 0x2, 0x9, 0x49f, 0x7, 0x3ff, 0x9, 0x1000, 0x1, 0x4, 0x4, 0xba, 0x20000, 0xa, 0x7, 0x7, 0x8, 0x6, 0x7f, 0x18, 0x1, 0x6, 0x80000000, 0x2, 0x6, 0x3000, 0x8, 0x58, 0x2, 0x0, 0x4, 0x9, 0x1, 0x0, 0x9, 0x2, 0x9, 0x0, 0x0, 0x63c5, 0x5, 0x3, 0x3, 0x81, 0x1c8, 0x3, 0x400, 0x5, 0xfc, 0x3, 0xfffffffa, 0x6, 0x140e, 0x4, 0x7c54, 0x8, 0x8, 0x7, 0x5, 0x1, 0x9, 0x9, 0x0, 0x8, 0x2, 0x4, 0x1, 0x0, 0x3, 0x8000000, 0xa, 0x7ff, 0x8, 0x2400, 0xfffffff7, 0xae6, 0x3, 0x10001, 0x1, 0x9, 0x7, 0x9, 0x6, 0x8, 0xe, 0x101, 0x800, 0x7, 0x80, 0x8, 0x9, 0xb1, 0x5, 0x3, 0x5, 0x2, 0x81, 0x0, 0x80000001, 0xfff, 0x8, 0x6, 0xa0, 0x2, 0xf9, 0x7fff, 0x2, 0x1, 0x1c0, 0x0, 0x3, 0xed4, 0x37, 0x792, 0xe, 0x6, 0xc, 0x80000001, 0x3, 0xfffffffa, 0xd, 0x6, 0x2, 0x8, 0x4, 0x40000, 0x3ff, 0x8000, 0x1, 0x7, 0x2, 0x8000, 0x0, 0x4, 0xd8, 0xd5f, 0x196, 0xefda, 0x9, 0x5, 0x2, 0xf, 0x45, 0x2, 0x8, 0x6f9, 0x7fffffff, 0x178, 0xbafa, 0x40, 0x0, 0x9, 0xa5, 0x5, 0x3, 0x6ab, 0x400, 0x3, 0x5, 0xddd3, 0x5, 0x2, 0x2, 0x4fc7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x99, 0x1, 0x2, 0x7fff, 0x40, {0x5, 0x1, 0x5, 0xb078, 0x101, 0x9}, {0x0, 0x0, 0x9, 0x4, 0x8785, 0xc7}, 0x71b, 0x75bd, 0x7}}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x7}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x4}, @TCA_POLICE_RATE={0x404, 0x2, [0xc, 0x4, 0x80000001, 0x7, 0x7, 0x8000, 0x0, 0x6, 0x5ac, 0x4, 0xc, 0x5bc, 0xd, 0x0, 0x0, 0x8, 0x4f, 0x3, 0xfffffffb, 0xa, 0x8000, 0x4, 0x2, 0x5, 0x8, 0x5, 0x1, 0x5, 0x2, 0x0, 0xffffffff, 0x6, 0x3, 0xedbf, 0x7f, 0x6, 0x4, 0x9, 0xf, 0x9, 0x7fffffff, 0x5, 0x3, 0x0, 0x4, 0x1, 0x2, 0x7, 0x5, 0x2, 0x10001, 0xfffffffa, 0xfffffffb, 0x4, 0x400, 0x8ee1, 0x4, 0x7f, 0x1000, 0x7, 0x1ff, 0xb, 0x9a8b, 0x7, 0x101, 0x7, 0x4, 0x5, 0x7, 0x7, 0xa, 0x7fffffff, 0xc, 0xb, 0x2, 0xe368, 0x10001, 0x6, 0x8, 0x4000000, 0x3, 0x1, 0x8, 0x4, 0xffffffff, 0x8, 0x8, 0x4, 0x7, 0xfffffffb, 0x7, 0xe, 0x7, 0x387be1ca, 0x48e, 0x10001, 0x3c9, 0x5, 0x2, 0xff, 0xf, 0x2, 0x445, 0xe, 0x8, 0x8, 0x1685, 0x81, 0x3, 0x8001, 0xfff, 0xfffffff8, 0x9f1, 0x5, 0x0, 0x3, 0x6, 0x6fd, 0x5, 0x92, 0x2, 0x8, 0x100, 0x8, 0xd, 0x0, 0x5, 0x5f0, 0xe, 0x7ff, 0xfffffffe, 0xc, 0x0, 0x6, 0x8, 0x200, 0x2, 0x5, 0x8000, 0xfffffff9, 0x9, 0x2, 0x4, 0x0, 0x5, 0x1, 0xb, 0x15e, 0x0, 0x2, 0x2, 0x2c7e673e, 0x0, 0xc, 0x0, 0x5, 0x7fffffff, 0xa4, 0x1, 0x7, 0xe9f7, 0x8, 0xd, 0xff, 0x200000, 0xfffff800, 0x5, 0x140, 0x3, 0x40, 0x1, 0x6, 0x1ff, 0x3b, 0x1, 0xfde, 0x3ff, 0x1, 0x0, 0xef, 0x4c1, 0x5, 0x8000, 0x4, 0x0, 0xfffffffd, 0x2, 0x6, 0x0, 0xdd2e283, 0x9, 0xa, 0x5, 0x8, 0x82a2, 0x8, 0x80000001, 0x101, 0x6, 0x80000001, 0x7, 0x9, 0xd, 0x9, 0xd7, 0x40, 0x3, 0x4, 0x1, 0x7, 0x2, 0x100000, 0x0, 0x101, 0xfffffff7, 0x6, 0x100, 0x87cb, 0x2, 0x2, 0x4, 0x2, 0x3, 0x101, 0x9, 0x9, 0x85a, 0x1, 0xffff7fff, 0x6, 0xc, 0x3, 0x200, 0x4, 0x0, 0x3, 0x8, 0x200, 0x5fe, 0x400, 0x6, 0xe, 0x1000, 0x3ff, 0x6, 0x4, 0x8, 0x5, 0x6, 0x3, 0x800, 0xe00248f3, 0x8, 0x7fffffff, 0x6, 0xd7d6]}]]}, {0xc6, 0x6, "926a652cdfc2aeb88b982d3c816a47c3b8fe0f65791b6d83f9bc89eeb8c0e71568f1430ef884dd7a3d2d9a749ff94499d2919939369d172331cbe5c6539e1e742b78a030b2d301a9d00d82e79bad204d28413aa4fa67263de700c81261d86ca966f21c6d0141df2964efe897dad7476d3be6ec999d9a16c47e820585dc4b61e483853a898999925cd6d3578ccd17d93e6522b908c0a986519c5da1bcf26c0a89668e9de9c2dc48bf51b830512a3a625957b597b2b72d5cd1dec0823dc37a569c3c0b"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}]}, @TCA_BASIC_CLASSID={0x8, 0x1, {0xffff, 0xe}}]}}]}, 0x41d0}, 0x1, 0x0, 0x0, 0x8858}, 0x20004804)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x100)
mount$9p_virtio(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x2210088, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
link(&(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
socket(0x400000000010, 0x3, 0x0)
r13 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})

1.708051144s ago: executing program 5 (id=6620):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$pokeuser(0x6, r3, 0x358, 0xffff88806a609000)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x44, r1, 0x5, 0x0, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x3, 0x1}}}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_SETUP={0x10, 0x70, [@NL80211_MESH_SETUP_AUTH_PROTOCOL={0x5, 0x8, 0x10}, @NL80211_MESH_SETUP_USERSPACE_MPM={0x4}]}]}, 0x44}}, 0x0)

1.610580888s ago: executing program 5 (id=6621):
socket(0x2, 0x80805, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="12000000050000000400000002"], 0x50)
socket$netlink(0x10, 0x3, 0x8000000004)
socket(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1, 0xfffffffc}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000100000000000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bca2000000000000a6020000f8ffffffb703000018000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, &(0x7f0000000340), &(0x7f0000000380)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r1, 0x2000012, 0xe, 0x25, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e99d86", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)

1.459809354s ago: executing program 5 (id=6624):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
bind$ax25(r2, &(0x7f0000000100)={{0x3, @null, 0x1}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]}, 0x48)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10)
ioctl$sock_netdev_private(r3, 0x8914, &(0x7f0000000000))
setsockopt$ax25_SO_BINDTODEVICE(r2, 0x101, 0x19, &(0x7f0000000240)=@bpq0, 0x10)
ioctl$sock_netrom_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bpq0, 0x1, 'syz1\x00', @default, 0x1, 0x0, [@null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default]})
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
r4 = syz_open_procfs(0x0, &(0x7f0000000380)='gid_map\x00')
write$cgroup_int(r4, 0x0, 0x0)
ioctl$sock_netdev_private(r0, 0x8914, &(0x7f0000000000))

1.459592982s ago: executing program 5 (id=6625):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
getsockname(r0, 0x0, &(0x7f00000000c0))
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
r1 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
r2 = syz_open_dev$cec(&(0x7f0000000d00), 0x0, 0xc0b02)
ioctl$CEC_TRANSMIT(r2, 0xc0386105, &(0x7f0000000140)={0x100000000, 0x800, 0xf, 0x80000001, 0xfe1c, 0x6, "72aba977db089b65fdfdc5bd97abc350", 0x74, 0x3, 0xa7, 0x7, 0x8, 0x7, 0x29})
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="0107000000000000000020"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
r3 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$selinux_load(r3, &(0x7f0000000340)={0xf97cff8c, 0x8}, 0x2000)
mknodat$loop(r1, &(0x7f0000000200)='./file1\x00', 0x800, 0x1)
chdir(&(0x7f0000000000)='./bus\x00')
fanotify_init(0x8, 0x1)
linkat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x1000)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r4, r4)
setpgid(0x0, r4)
r5 = getpid()
setpgid(r4, r5)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x10, 0x0)
open(&(0x7f0000000240)='./file1\x00', 0x41, 0x28)

1.377863222s ago: executing program 5 (id=6627):
r0 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$sock(r0, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev={0xfe, 0x80, '\x00', 0x3}, 0x79200000}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x4000000)
r1 = syz_usb_connect(0x2, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f911, 0xd, '\x00', @string=&(0x7f00000000c0)}})
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r2, 0xc0145b0d, &(0x7f0000000040))

1.030484131s ago: executing program 5 (id=6630):
r0 = socket$kcm(0x21, 0x2, 0x2)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0xff, 0x0, 0x7fff0026}]})
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r2, &(0x7f0000002080)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
listen(r2, 0x1ff)
close_range(r1, 0xffffffffffffffff, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)
ioctl$NILFS_IOCTL_SYNC(r0, 0x80086e8a, &(0x7f0000000000))

942.811749ms ago: executing program 45 (id=6630):
r0 = socket$kcm(0x21, 0x2, 0x2)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0xff, 0x0, 0x7fff0026}]})
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r2, &(0x7f0000002080)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
listen(r2, 0x1ff)
close_range(r1, 0xffffffffffffffff, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)
ioctl$NILFS_IOCTL_SYNC(r0, 0x80086e8a, &(0x7f0000000000))

828.812382ms ago: executing program 4 (id=6635):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, 0x0, 0x340a)

709.164802ms ago: executing program 4 (id=6637):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x13, 0x4, 0x0, &(0x7f00000000c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x6a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x130}, 0x94)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000003b40)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000380)="82f294054d05973abfac6a6f31050418457d017c5fd68b034cf51b9f6a6d71daa5c776bca90037bc7c3d88b151fbf856f69ebd05e750f13f02af646b284953b6640a08c827c6f2ff4ad8e84077f9f03f94792aa17c4743cba3f355bb9c5b04b91ed70d253db68e17cdd561fab504479f723388dda974e2a9fb1bcda474c08d6222179b19e902009ea3cb3e42408bab6c1f29cb62d0", 0x95}, {&(0x7f0000000480)="4ce09043b6aa2ae5946f67306c7f73ed469dfcfc5e1f4d8123a4a8a7b9be82f67f89605cd9bbf7254c156b00437f753a248daf68c5ebdc4a6346d336a6502e98eae72777956d1ebeeb855fae46b3ccb9fb3d593651b95ee00afe0816b3c6e7f3cb3b18fb5198643daa6b9cafde584957dd72ba27cef6604f5df59f0bee60bca63d75a9d812eb699c2d665b7179b22027cf748ac63bcc212703d44c", 0x9b}, {&(0x7f0000000780)="8ff2f15bd0017ce4b36b6bc4335634254cffcc40c0312f5ff35991272b79d76712dc0c3cfdc0d70ce8004884e6917bed9ffee1584df7f06c7bccac71daf78bf3c68b8d5e56357654784bdbc700bceb1049c6a47d53c5ac29f83aed3ae9968fe8", 0x60}, {&(0x7f0000000800)="5193f0b40db29d9ce06f429ed3c2c6405967f1e559f08c35f5e63ad64c2746967cca1bbeaf6206a79c42badb4fb453f294c2932cb5552a5f9c1d633207a53c2f54d98c2f9e4323eac6c20c56e7607d212b210a0325f7c289d1a2552d7a3f2176a47e95bc46471fae9167768d58f22ff10ba3cc2050b1ee838ce9e4ac5a1544fec3e291272cfaaa4817539972fb8bb2ede331312f556ecea24236759bf0d51003477ec489820505cea6045a9939974c6f2ee3815378dc0a620982383e84178b017ba52b", 0xc3}, {&(0x7f0000000900)="a9be9b2ff3a19d5a1226e5243d37d1fd2894c1ae880dc2316aa2d5ad08944c7135eb837eff354282dd5863c051eb7b9b17be0e4fdd6560f3f2c2c04af73a6cb75b5d05", 0x43}, {&(0x7f00000000c0)}], 0x6}}, {{&(0x7f0000000a40)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha256\x00'}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000bc0)="61275006ed747229311198ab94c7e6699587b0d033c2f17d1ccbd45cba520b6888fbad95d4d6ae3cc7172b392f90693e992e52408ba7f1874d1767303d6acb170f216f71908f53a3be1833a25eb1fb2ba3913dcc1de30c5c7e914b13514dea44fb2b964aaa280d5a85512fede48830ca6ea5cd18ff95c871d91454240f370e0c8e2629e58605c4b29017a160709ec76547c92a21d0ec5589e228922b105d0b8b29256620c44d2118334025dedd46db5194f2", 0xb2}], 0x1, &(0x7f0000000cc0)=[@mark={{0x14, 0x1, 0x24, 0x9a9}}, @mark={{0x14, 0x1, 0x24, 0x4}}, @timestamping={{0x14, 0x1, 0x25, 0x101}}, @txtime={{0x18, 0x1, 0x3d, 0x80}}, @txtime={{0x18, 0x1, 0x3d, 0x9d}}], 0x78}}], 0x2, 0x20000044)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$WPAN_SECURITY_LEVEL(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000100)=0xfffffffe, 0x4)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

559.299113ms ago: executing program 4 (id=6639):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000010"], 0x0, 0x2a}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
write$binfmt_misc(r6, &(0x7f0000000000), 0xd)
r7 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000340)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r8, {0x4, 0x5}, {}, {0x7, 0x5}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x4, 0xd, 0xfffffffffffffff6, 0x9, 0x3}}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x20048081}, 0xc0)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r9)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000000)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}})
r10 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$kcm(r10, &(0x7f00000000c0)={&(0x7f0000000840)=@xdp={0x2c, 0x7, r11, 0x3e}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1}, 0x4)

558.83721ms ago: executing program 2 (id=6640):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000100), r0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x60, r1, 0x10, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0x2}, @NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r2}}]}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x9}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x7}, @NBD_ATTR_CLIENT_FLAGS={0xc}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x20000080)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x48, r3, 0x1, 0xffffbffe, 0x4, {}, [@NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r4}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r4}}]}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xfb2e77a8993c1937}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfffd}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x2400c0d0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0x8, 0x3, 0x580, 0x0, 0xa, 0x148, 0x290, 0x10, 0x4e8, 0x2a8, 0x2a8, 0x4e8, 0x2a8, 0x3, 0x0, {[{{@ip={@rand_addr, @multicast1, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x220, 0x290, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@inet=@hashlimit3={{0x158}, {'gre0\x00', {0x400, 0x0, 0x44, 0x81, 0x4, 0xff, 0xfffffaf9, 0xe, 0x20, 0x8}, {0x9}}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b90ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc0d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'pimreg1\x00', 'veth0_to_team\x00'}, 0x0, 0x1f0, 0x258, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve0\x00', {0x0, 0xff, 0x0, 0x0, 0x0, 0x7fff, 0x200}}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x5e0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nbd(&(0x7f0000000100), r0) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)) (async)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x60, r1, 0x10, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0x2}, @NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r2}}]}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x9}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x7}, @NBD_ATTR_CLIENT_FLAGS={0xc}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x20000080) (async)
syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)) (async)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x48, r3, 0x1, 0xffffbffe, 0x4, {}, [@NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r4}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r4}}]}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xfb2e77a8993c1937}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfffd}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x2400c0d0) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0x8, 0x3, 0x580, 0x0, 0xa, 0x148, 0x290, 0x10, 0x4e8, 0x2a8, 0x2a8, 0x4e8, 0x2a8, 0x3, 0x0, {[{{@ip={@rand_addr, @multicast1, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x220, 0x290, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@inet=@hashlimit3={{0x158}, {'gre0\x00', {0x400, 0x0, 0x44, 0x81, 0x4, 0xff, 0xfffffaf9, 0xe, 0x20, 0x8}, {0x9}}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b90ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc0d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'pimreg1\x00', 'veth0_to_team\x00'}, 0x0, 0x1f0, 0x258, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve0\x00', {0x0, 0xff, 0x0, 0x0, 0x0, 0x7fff, 0x200}}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x5e0) (async)

340.539361ms ago: executing program 4 (id=6644):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, 0x0, 0x340a)

340.20602ms ago: executing program 6 (id=6645):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, &(0x7f0000000000)=0x8, 0x4) (async)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) (async)
setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000040)={@broadcast, @multicast2, 0x0, "49ca33a4bf2610b79fa6491eb58928b97da413f57dfc01739024ea9669300be5", 0xfb06, 0xdd, 0x10, 0x5}, 0x3c) (async)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000000c0)=@filter={'filter\x00', 0xe, 0x4, 0x290, 0xffffffff, 0xc8, 0x160, 0xc8, 0xffffffff, 0xffffffff, 0x1f8, 0x1f8, 0x1f8, 0xffffffff, 0x4, &(0x7f0000000080), {[{{@uncond, 0x0, 0xa0, 0xc8, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0xffffffff, 0x80000001}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x5}}}, {{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x1}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2f0) (async)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000003c0)={<r3=>0x0, @in={{0x2, 0x4e20, @local}}, 0x2, 0x800, 0x3, 0x8, 0xbf, 0x10001, 0xf9}, &(0x7f0000000480)=0x9c)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f00000004c0)={r3, 0x1ff, 0x1, [0x4]}, 0xa) (async)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, &(0x7f0000000500)=0x3, 0x4)
syz_open_dev$usbfs(&(0x7f0000000540), 0x0, 0x410800)
r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000580), 0x2000, 0x0)
write$P9_RREMOVE(r4, &(0x7f00000005c0)={0x7, 0x7b, 0x1}, 0x7)
setsockopt$XDP_UMEM_FILL_RING(r4, 0x11b, 0x5, &(0x7f0000000600)=0x20000, 0x4)
setsockopt$MRT_INIT(r4, 0x0, 0xc8, &(0x7f0000000640), 0x4) (async)
accept$netrom(r4, 0x0, &(0x7f0000000680))
setsockopt$MRT_FLUSH(r2, 0x0, 0xd4, &(0x7f00000006c0)=0xb, 0x4)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000700)={0x0, 0xec, 0x5}) (async)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r2, 0x84, 0x23, &(0x7f0000000740)={r3, 0x5}, 0x8) (async)
lsetxattr$trusted_overlay_opaque(&(0x7f0000000780)='./file0\x00', &(0x7f00000007c0), &(0x7f0000000800), 0x2, 0x2)
r5 = creat(&(0x7f0000000840)='./file0\x00', 0xe8)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000880)={{0x2, 0x4e20, @loopback}, {0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x41}}, 0x4, {0x2, 0x4e23, @loopback}, 'dvmrp1\x00'})
recvmmsg$unix(r5, &(0x7f0000002440)=[{{&(0x7f0000000900)=@abs, 0x6e, &(0x7f0000000a40)=[{&(0x7f0000000980)=""/158, 0x9e}], 0x1, &(0x7f0000000a80)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc8}}, {{&(0x7f0000000b80), 0x6e, &(0x7f0000001e80)=[{&(0x7f0000000c00)=""/141, 0x8d}, {&(0x7f0000000cc0)=""/217, 0xd9}, {&(0x7f0000000dc0)=""/182, 0xb6}, {&(0x7f0000000e80)=""/4096, 0x1000}], 0x4, &(0x7f0000001ec0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [<r7=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [<r8=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r9=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x148}}, {{&(0x7f0000002040)=@abs, 0x6e, &(0x7f00000023c0)=[{&(0x7f00000020c0)=""/238, 0xee}, {&(0x7f00000021c0)=""/238, 0xee}, {&(0x7f00000022c0)=""/212, 0xd4}], 0x3, &(0x7f0000002400)=[@cred={{0x1c}}], 0x20}}], 0x3, 0x1, &(0x7f0000002500))
ioctl$MEDIA_REQUEST_IOC_REINIT(r6, 0x7c81, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r9, 0xc0189373, &(0x7f0000002540)={{0x1, 0x1, 0x18, r9, {0xd2bc}}, './file0\x00'}) (async)
sendmsg$nl_route(r8, &(0x7f0000002640)={&(0x7f0000002580)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000002600)={&(0x7f00000025c0)=@newneigh={0x24, 0x1c, 0x200, 0x70bd25, 0x25dfdbfb, {0x1c, 0x0, 0x0, 0x0, 0x20, 0x4, 0x8}, [@NDA_FLAGS_EXT={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x1) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000002680), 0x40140, 0x0) (async)
read(r7, &(0x7f00000026c0)=""/71, 0x47)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x4, 0x40010, 0xffffffffffffffff, 0x205d2000)
ioctl$XFS_IOC_GETPARENTS(r1, 0xc028583e, &(0x7f0000002800)={{[0x255, 0xff45, 0x75c, 0x1000]}, 0x0, 0x3, 0x5, 0x0, &(0x7f0000002740)=[{{@align=0x8, {0xf000, 0x3, 0x0, 0x10001}}, 0x2, 0x0, 'REJECT\x00'}, {{@align=0x3, {0x7fff, 0x6, 0xf, 0x2}}, 0xfff, 0x0, '/,^\x00'}, {{@_ha_fsid={[0x6, 0x7]}, {0x5, 0x101, 0x50a4, 0x6}}, 0x3, 0x0, '){!&:(\',@/)&\'\x00'}, {{@_ha_fsid={[0x3, 0xc4]}, {0x0, 0x2, 0x8000000, 0x1}}, 0x7, 0x0, '#\x00'}]})

280.220283ms ago: executing program 6 (id=6646):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newtaction={0x64, 0x30, 0xffff, 0x3, 0x2, {0x0, 0x0, 0x1300}, [{0x50, 0x1, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x9, 0x2, 0x8, 0x4, 0x6}, 0x48}}]}, {0xfffffffffffffe17}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x2404c080}, 0x40000)
r0 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0xfe33) (fail_nth: 6)

279.387293ms ago: executing program 6 (id=6647):
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="34000000000901000000000000000000000000010800054046ac"], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x2000000)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_CE_THRESHOLD={0x8, 0x7, 0xfffffff9}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$sock_buf(r4, 0x1, 0x1c, 0x0, &(0x7f0000000140))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r6, 0x107, 0xf, &(0x7f0000000100)=0x4207, 0x4)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'syzkaller0\x00', <r7=>0x0})
sendto$packet(r6, &(0x7f00000002c0)="05031411d3fc220000004788031c09102c28", 0xfdef, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r7, 0x1, 0x0, 0x6, @multicast}, 0x14)

150.606707ms ago: executing program 2 (id=6648):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e1d, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='nv', 0x2)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @timestamp, @window={0x3, 0x0, 0x401}, @window], 0x6)
pwritev(r0, 0x0, 0x0, 0x0, 0x1ff)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_int(r1, 0x6, 0x1b, 0x0, &(0x7f0000000180))
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)

150.088215ms ago: executing program 4 (id=6649):
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0)={<r1=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000000480)="aa", 0x1}], 0x1, 0x0, 0x18}, 0xc800)
socket$can_bcm(0x1d, 0x2, 0x2)
r2 = syz_init_net_socket$ax25(0x3, 0x3, 0xca)
bind$ax25(r2, &(0x7f0000000280)={{0x3, @default, 0x1}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @null]}, 0x48)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000000)={0x0, 0xf32f, 0xfe000000}, &(0x7f00000000c0)=0x10)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB], 0x60}, 0x1, 0x0, 0x0, 0x800}, 0x20004010)
openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = socket(0x400000000010, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, 0x0)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_QUEUE_SREG_QNUM={0x8, 0x4, 0x1, 0x0, 0xc}]}}}]}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "d1"}]}], {0x14}}, 0x7c}}, 0x0)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x8914, &(0x7f0000000000))
r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r6, 0x890b, &(0x7f00000007c0)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x5, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bpq0, 0x5, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null, @null, @null, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]})
connect$rose(r6, &(0x7f0000000040)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, 0x1, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, 0x1c)
connect$rose(r6, &(0x7f0000000240)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x1, @null}, 0x1c)

149.938945ms ago: executing program 6 (id=6650):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f00000003c0)={'syzkaller0\x00', @broadcast})
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000600), 0x4)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$kcm(r0, &(0x7f0000002180)={&(0x7f00000001c0)=@xdp={0x2c, 0x0, r2, 0x1b}, 0x80, &(0x7f0000000480)=[{0x0}, {&(0x7f0000001300)="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", 0xc92}, {&(0x7f00000027c0)="c91d588b87bd12b736780a766e3ebca34836bf87f46f8027511d29f90700000000000000cef57a6d8db59a972c54efc7ece9c07cb4a0921d4a2320d73ff2d3c54d7af0deecef81ce277562dde92e480b2cf42e52cc039c43fea94e730feb6f5cad427446e7357d255248ab48a0b733cc2c7541488d63b8f6d2c4f0e03ac8faecc74486b2cfb59a28d701271dc07ef9d82e0ce78bca83048caf47fedf4f4df5863a2f000084e2f8141a5fc6ef0b49bf7a6cb6faab2a777dde5ec5aeec4f08c05857a3e40e0dc86a3426f6653076d9363564fbac526825599f05ff7cafbfa0ae50fd967f8c0a3617a7d8358b3b021fa8900d72c4361e5d98668e21990b3adc0a94e6fe7bfdc4d638614beed88362e29940d22f565b5be2e8b6de526a0982670fef930eabb1189d32c4c038f76dc01f460163f90da0ebe427dd03e8fbf5e77920b6d16d55436e4c3e3789344e6ad8cb6bbc2de34fdec4c34351dcb8a1422836a4a4f6c1197e7745696d7d7c12738bc9d4b588f4c369293856d0ca958ec6759a82399e6047a1439cc4c87785d8c03178bc30cc12ca992ab605c487c6ccb00b649ac579daa67f20de7cd0932f762121fa154e336e711b16e4c0558384fbe7532651d65263580cd5820c6790d61fb2f8c846567dc9a934b655877ca31ba9b7c9d5a16f9799155e9c2e8c992c2243f7f220ed05637c426a19832813f61a044c9cb1c9dd542fb403505a4218606a556449ca37b6421bd7425a565f87db05ae0f9783c01d4a132b2b95bcc46c3a429812c2195d87b16ff838e97624d18741d6eb9d0f02d3feb222dc28208290956202d3e4b88d9f887b949b6e26e72a59c8481c728ec0603ee6578701d50c8b450aa55601eaedf916680c3bff521ef6d4d654c456b8f311b8bda98ab7719157608b90b9f257d214b1243c4e966ed2c1570842c8aa3bf23047eef767439118a0be9c6f02570dbcc0d0ffbbfe82adf6b3c6e5f1f265596a54b5667dfcaa760dd216df11ae87055fbae3af951241ef8f0d55b705847263e6d4c6abc4d8289d4f56", 0x2e8}], 0x3}, 0x8bb3a301eb005b)

149.842025ms ago: executing program 2 (id=6651):
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, 0x0, 0x0)
bind$rds(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r1 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r1, 0x107, 0xf, &(0x7f0000000600), 0x4)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$kcm(r1, &(0x7f0000002180)={&(0x7f00000001c0)=@xdp={0x2c, 0x0, r3, 0x1b}, 0x80, &(0x7f0000000480)=[{&(0x7f00000002c0)="27030200dc0f24000e00003c000c00000000ff840000000200000003125ce882cbf490d908f1523f000000032d9c2740e260a09c6911cda856d5ea9a141bffc6e29a5789796eec81944d7dff184d3319ce9dfb5c1fcd66e67b91a916a67ece64299573503cbc7e27133c4e5ed68c7a9b407a275bcff3432a487ebef21275b91d386164b443c1dfdf63831812e0471639a99b97a992", 0x95}, {&(0x7f0000001300)="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", 0x649}, {&(0x7f00000027c0)="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", 0x2e8}], 0x3}, 0x8bb3a301eb005b)

60.61407ms ago: executing program 4 (id=6652):
socket$unix(0x1, 0x5, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000002340), 0x123f82, 0x0)
ioctl$BLKPG(r1, 0x1269, &(0x7f00000001c0)={0x1, 0x0, 0x98, &(0x7f0000000200)={0x0, 0x1000, 0xd}})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x10}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b80)=@newtfilter={0x44, 0x2c, 0xd27, 0x170bd2b, 0x3, {0x0, 0x0, 0x0, r7, {0x0, 0x10}, {}, {0x8, 0x4}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1e3a9}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0xc804}, 0x2)
r8 = socket(0x400000000010, 0x3, 0x0)
r9 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r9, &(0x7f0000000180)='asymmetric\x00', &(0x7f00000000c0)=@secondary)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000380)={'veth1_to_bond\x00', <r10=>0x0})
r11 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x1}, 0x0, 0x0, r9)
keyctl$clear(0x7, r11)
sendmsg$nl_route_sched(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000c40)=@newtfilter={0x3c, 0x2c, 0xd27, 0x30bd2b, 0x2, {0x0, 0x0, 0x0, r10, {0x0, 0x10}, {}, {0x0, 0x4}}, [@filter_kind_options=@f_flow={{0x9}, {0xc, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x7ffffffe}]}}]}, 0x3c}}, 0x2)

60.158978ms ago: executing program 6 (id=6653):
r0 = getpid()
tkill(r0, 0x0)
r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000040)=<r2=>0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x17, 0x400, 0x70bd25, 0x25dfdbfc, {0x7}}, 0x14}, 0x1, 0x0, 0x0, 0x24004004}, 0x24000000)
r3 = inotify_init()
waitid(0x0, r0, &(0x7f0000000180), 0x1, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_ADD_TX_TS(r4, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x44, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x0, 0x5e}}}}, [@NL80211_ATTR_TSID={0x5, 0xd2, 0x5}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x3}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x2}, @NL80211_ATTR_MAC={0xa}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x40002)
ptrace$peeksig(0x4209, r2, &(0x7f0000000340)={0xd59, 0x1, 0x8}, &(0x7f0000000380)=[{}, {}, {}, {}, {}, {}, {}, {}])
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000780)={<r5=>0x0}, &(0x7f00000007c0)=0xc)
tkill(r5, 0x21)
close_range(r3, r1, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), r4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000880)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_MESH_CONFIG(r4, &(0x7f0000000a00)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000009c0)={&(0x7f00000008c0)={0xc8, r6, 0x10, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x7, 0x2d}}, @NL80211_ATTR_MESH_CONFIG={0x24, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_RETRY_TIMEOUT={0x6, 0x1, 0x46}, @NL80211_MESHCONF_GATE_ANNOUNCEMENTS={0x5}, @NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL={0x6, 0x19, 0xe}, @NL80211_MESHCONF_CONNECTED_TO_GATE={0x5}]}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_MESH_CONFIG={0x44, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x76}, @NL80211_MESHCONF_RSSI_THRESHOLD={0x8, 0x14, 0xffffffffffffff1a}, @NL80211_MESHCONF_HWMP_RANN_INTERVAL={0x6, 0x10, 0x5}, @NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL={0x6, 0x12, 0xfff}, @NL80211_MESHCONF_TTL={0x5, 0x6, 0x2}, @NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT={0x8, 0x17, 0xc3}, @NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL={0x6, 0xc, 0x1}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0xc6}]}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_WDEV={0xc, 0x99, {0xd0, 0x6}}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x79}, @NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_RETRY_TIMEOUT={0x6, 0x1, 0x91}]}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0xc8}, 0x1, 0x0, 0x0, 0x4080}, 0x10)
r8 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000a40), 0x80800, 0x0)
sendmsg$kcm(r8, &(0x7f0000000c40)={&(0x7f0000000a80)=@rc={0x1f, @any, 0x71}, 0x80, &(0x7f0000000c00)=[{&(0x7f0000000b00)="7322fbc870e554810c34bf7302bd00a48da8d0b1a6397633856994a0eaeb4b69b6944c14f22dee7ee0b473cbd06a31a48714a0d1810f58ba2f3fe3deb4c2d0cd88eef9d39e8e614a9976263aaa18f28eb3f2bc19ae3c60d8315ed49edea1b7776ed3f933149e1816638e131a", 0x6c}, {&(0x7f0000000b80)="69de7c", 0x3}, {&(0x7f0000000bc0)="9107f4d8c97799db0fa52ac50644a0", 0xf}], 0x3}, 0x4890)
pipe(&(0x7f0000000c80)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r9, &(0x7f0000000d80)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x10020}, 0xc, &(0x7f0000000d40)={&(0x7f0000000d00)={0x2c, r6, 0x2, 0x70bd26, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x9, 0x33}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x17}]}, 0x2c}, 0x1, 0x0, 0x0, 0x14}, 0x4000000)
r11 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r10, &(0x7f0000000f00)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e40)={0x6c, r11, 0x400, 0x70bd26, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x6}]}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x2a20}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x5}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xfffffffb}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x50}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x100}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x49}]}, 0x6c}, 0x1, 0x0, 0x0, 0x890}, 0x240080c1)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), r10)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r10, &(0x7f0000001080)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001040)={&(0x7f0000000fc0)={0x50, r12, 0x400, 0x70bd27, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x3}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x3}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x53}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x29}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x21}]}, 0x50}, 0x1, 0x0, 0x0, 0x24000810}, 0x4000000)
ioctl$SNDCTL_DSP_SYNC(r8, 0x5001, 0x0)
ioctl$TIOCGISO7816(r1, 0x80285442, &(0x7f00000010c0))
ioctl$VT_DISALLOCATE(r10, 0x5608)
recvfrom$llc(r10, &(0x7f0000001100)=""/57, 0x39, 0x1, &(0x7f0000001140)={0x1a, 0x310, 0x7, 0x1, 0x7, 0x9, @broadcast}, 0x10)
r13 = syz_genetlink_get_family_id$devlink(&(0x7f00000011c0), r8)
sendmsg$DEVLINK_CMD_RELOAD(r9, &(0x7f0000001300)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000012c0)={&(0x7f0000001200)={0x84, r13, 0x400, 0x70bd27, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}]}, 0x84}, 0x1, 0x0, 0x0, 0x40}, 0xc4)

0s ago: executing program 6 (id=6654):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newtaction={0x64, 0x30, 0xffff, 0x3, 0x2, {0x0, 0x0, 0x1300}, [{0x50, 0x1, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x9, 0x2, 0x8, 0x4, 0x6}, 0x48}}]}, {0xfffffffffffffe17}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x2404c080}, 0x40000)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000180))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
r1 = dup(r0)
accept4$unix(r1, 0x0, 0x0, 0x800)
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x15}}, 0x6}, 0x1c)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth0_macvtap\x00', 0x10)
sendmmsg$inet6(r3, &(0x7f0000000940)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000400)="77b1a93f6d469f03996cdd20eeaebe8de75bb1587ad8137d", 0x18}], 0x1}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)="d7b6", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f00000002c0)="c5ae874a36", 0x5}], 0x1}}], 0x3, 0x4001015)
r4 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000080), 0x501041, 0x0)
ioctl$XFS_IOC_FD_TO_HANDLE(0xffffffffffffffff, 0xc038586a, &(0x7f0000000480)={<r5=>0xffffffffffffffff, &(0x7f0000000380)='csum\x00', 0x0, &(0x7f00000003c0)={@align=0x1000, {0x1, 0x0, 0x80, 0x400}}, 0x3, &(0x7f0000000400), &(0x7f0000000440)=0xfffffff8})
r6 = openat$full(0xffffffffffffff9c, &(0x7f00000004c0), 0x400, 0x0)
r7 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000500), 0x442000, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)={0x2c, r10, 0x1, 0x0, 0x4000, {{0x2}, {@val={0x8, 0x3, r9}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x2c}, 0x1, 0x0, 0x0, 0x40080}, 0x80)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000540)=[r2, r4, r5, r6, r7, r8], 0x6)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="040fffff101620"], 0x7)
r11 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r11, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x25dddbfd, {0x0, 0x0, 0x0, r12, {0x0, 0xffff}, {0xffff, 0xffff}, {0x1, 0xd}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r12, {0x0, 0x8}, {}, {0xc}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}]}]}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x220008e8}, 0x804)
getpeername$packet(r7, &(0x7f0000000800)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000840)=0x14)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000002180)={'gretap0\x00', &(0x7f0000002100)={'tunl0\x00', 0x0, 0x1, 0x40, 0xe6, 0xf, {{0xd, 0x4, 0x3, 0x0, 0x34, 0x65, 0x0, 0x0, 0x4, 0x0, @empty, @local, {[@generic={0x0, 0xc, "03b816ec76e9d8955a8b"}, @ra={0x94, 0x4}, @rr={0x7, 0xf, 0x73, [@rand_addr=0x64010100, @local, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}})
getsockopt$inet6_mreq(r6, 0x29, 0x1c, &(0x7f0000002c00)={@empty}, &(0x7f0000002c40)=0x14)
getsockopt$inet6_mreq(r1, 0x29, 0x15, &(0x7f0000003f40)={@dev}, &(0x7f0000003f80)=0x14)

kernel console output (not intermixed with test programs):

iver are:
[  722.584200][T27229]  pcl711
[  722.585492][T27229]  pcl711b
[  722.586849][T27229]  acl8112hg
[  722.588267][T27229]  acl8112dg
[  722.589671][T27229] comedi: valid board names for amplc_pc263 driver are:
[  722.594453][T27229]  pc263
[  722.595698][T27229] comedi: valid board names for amplc_pc236 driver are:
[  722.598533][T27229]  pc36at
[  722.599846][T27229] comedi: valid board names for amplc_dio200 driver are:
[  722.607874][T27229]  pc212e
[  722.608906][T27229]  pc214e
[  722.609830][T27229]  pc215e
[  722.611972][T27229]  pc218e
[  722.613064][T27229]  pc272e
[  722.614656][T27229] comedi: valid board names for comedi_parport driver are:
[  722.617210][T27229]  comedi_parport
[  722.618374][T27229] comedi: valid board names for comedi_test driver are:
[  722.620595][T27229]  comedi_test
[  722.621689][T27229] comedi: valid board names for comedi_bond driver are:
[  722.624164][T27229]  comedi_bond
[  722.701610][T27274] overlay: filesystem on ./file1 not supported
[  722.704015][   T40] audit: type=1400 audit(1775987416.808:1407): avc:  denied  { mounton } for  pid=27273 comm="syz.6.6433" path="/bus" dev="autofs" ino=128466 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=dir permissive=1
[  722.759909][T27277] overlay: ./file0 is not a directory
[  722.869101][T27285] FAULT_INJECTION: forcing a failure.
[  722.869101][T27285] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  722.882596][T18137] usb 9-1: new high-speed USB device number 51 using dummy_hcd
[  722.883107][T27285] CPU: 0 UID: 0 PID: 27285 Comm: syz.6.6436 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  722.883134][T27285] Tainted: [L]=SOFTLOCKUP
[  722.883141][T27285] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  722.883152][T27285] Call Trace:
[  722.883158][T27285]  <TASK>
[  722.883165][T27285]  dump_stack_lvl+0x100/0x190
[  722.883200][T27285]  should_fail_ex.cold+0x5/0xa
[  722.883222][T27285]  _copy_from_user+0x2e/0xd0
[  722.883244][T27285]  memdup_user+0x6b/0xe0
[  722.883260][T27285]  msr_io+0xea/0x480
[  722.883280][T27285]  ? __pfx_do_set_msr+0x10/0x10
[  722.883303][T27285]  ? __pfx_msr_io+0x10/0x10
[  722.883323][T27285]  ? __kernel_text_address+0xd/0x30
[  722.883347][T27285]  kvm_arch_vcpu_ioctl+0xd32/0x5740
[  722.883367][T27285]  ? kvm_arch_vcpu_ioctl+0xd14/0x5740
[  722.883394][T27285]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  722.883414][T27285]  ? __pfx_stack_trace_save+0x10/0x10
[  722.883466][T27285]  ? stack_depot_save_flags+0x27/0x9d0
[  722.883487][T27285]  ? __lock_acquire+0x4a5/0x2630
[  722.883506][T27285]  ? tomoyo_path_number_perm+0x46d/0x580
[  722.883531][T27285]  ? __lock_acquire+0x4a5/0x2630
[  722.883547][T27285]  ? do_syscall_64+0x106/0xf80
[  722.883563][T27285]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.883589][T27285]  ? lock_acquire+0x1cf/0x380
[  722.883609][T27285]  ? rcu_is_watching+0x12/0xc0
[  722.883649][T27285]  ? trace_contention_end+0x140/0x180
[  722.883669][T27285]  ? __mutex_lock+0x26a/0x1b90
[  722.883687][T27285]  ? kvm_vcpu_ioctl+0x322/0x1730
[  722.883715][T27285]  ? __pfx___mutex_lock+0x10/0x10
[  722.883730][T27285]  ? kasan_quarantine_put+0x104/0x240
[  722.883754][T27285]  ? lockdep_hardirqs_on+0x78/0x100
[  722.883773][T27285]  ? tomoyo_path_number_perm+0x28f/0x580
[  722.883799][T27285]  ? tomoyo_path_number_perm+0x188/0x580
[  722.883825][T27285]  ? kvm_vcpu_ioctl+0x8a0/0x1730
[  722.883849][T27285]  kvm_vcpu_ioctl+0x8a0/0x1730
[  722.883875][T27285]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  722.883900][T27285]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  722.883941][T27285]  ? do_vfs_ioctl+0x226/0x13e0
[  722.883969][T27285]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  722.883994][T27285]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  722.884027][T27285]  ? __fget_files+0x215/0x3d0
[  722.884049][T27285]  ? hook_file_ioctl_common+0x146/0x410
[  722.884075][T27285]  ? selinux_file_ioctl+0x139/0x290
[  722.884098][T27285]  ? selinux_file_ioctl+0xb4/0x290
[  722.884124][T27285]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  722.884149][T27285]  __x64_sys_ioctl+0x18e/0x210
[  722.884176][T27285]  do_syscall_64+0x106/0xf80
[  722.884192][T27285]  ? clear_bhb_loop+0x40/0x90
[  722.884212][T27285]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.884229][T27285] RIP: 0033:0x7f781559c819
[  722.884246][T27285] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  722.884263][T27285] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  722.884280][T27285] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  722.884291][T27285] RDX: 0000200000000080 RSI: 000000004008ae89 RDI: 0000000000000005
[  722.884301][T27285] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  722.884312][T27285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  722.884322][T27285] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  722.884346][T27285]  </TASK>
[  723.192651][T18137] usb 9-1: Using ep0 maxpacket: 32
[  723.202313][T18137] usb 9-1: config 0 has an invalid interface number: 1 but max is 0
[  723.206061][T18137] usb 9-1: config 0 has no interface number 0
[  723.210640][T18137] usb 9-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  723.214611][T18137] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  723.217999][T18137] usb 9-1: Product: syz
[  723.219803][T18137] usb 9-1: Manufacturer: syz
[  723.221759][T18137] usb 9-1: SerialNumber: syz
[  723.226315][T18137] usb 9-1: config 0 descriptor??
[  723.232670][T18137] usb 9-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  723.236517][T18137] usb 9-1: selecting invalid altsetting 1
[  723.239002][T18137] usb 9-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  723.246125][T18137] usb 9-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  723.250863][T18137] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  723.254742][T18137] usb 9-1: media controller created
[  723.266015][T18137] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  723.294776][T27293] input: syz0 as /devices/virtual/input/input64
[  723.450119][T27300] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=27300 comm=syz.2.6441
[  723.451294][T27299] FAULT_INJECTION: forcing a failure.
[  723.451294][T27299] name failslab, interval 1, probability 0, space 0, times 0
[  723.461445][T27299] CPU: 1 UID: 0 PID: 27299 Comm: syz.6.6440 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  723.461478][T27299] Tainted: [L]=SOFTLOCKUP
[  723.461485][T27299] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  723.461497][T27299] Call Trace:
[  723.461504][T27299]  <TASK>
[  723.461512][T27299]  dump_stack_lvl+0x100/0x190
[  723.461548][T27299]  should_fail_ex.cold+0x5/0xa
[  723.461573][T27299]  should_failslab+0xc2/0x120
[  723.461594][T27299]  __kmalloc_cache_noprof+0x7a/0x6f0
[  723.461617][T27299]  ? tc_new_tfilter+0xe17/0x24a0
[  723.461719][T27299]  ? tcf_chain_tp_find+0x2b5/0x470
[  723.461747][T27299]  tc_new_tfilter+0xe17/0x24a0
[  723.461775][T27299]  ? avc_has_perm_noaudit+0xe0/0x3b0
[  723.461802][T27299]  ? avc_has_perm_noaudit+0x11e/0x3b0
[  723.461825][T27299]  ? __pfx_tc_new_tfilter+0x10/0x10
[  723.461850][T27299]  ? __lock_acquire+0x4a5/0x2630
[  723.461880][T27299]  ? find_held_lock+0x2b/0x80
[  723.461905][T27299]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  723.462019][T27299]  ? __pfx_tc_new_tfilter+0x10/0x10
[  723.462039][T27299]  rtnetlink_rcv_msg+0x95e/0xe90
[  723.462068][T27299]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  723.462103][T27299]  ? ref_tracker_free+0x37e/0x6c0
[  723.462129][T27299]  netlink_rcv_skb+0x159/0x420
[  723.462148][T27299]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  723.462177][T27299]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  723.462204][T27299]  ? netlink_deliver_tap+0x1ae/0xcc0
[  723.462238][T27299]  netlink_unicast+0x5aa/0x870
[  723.462261][T27299]  ? __pfx_netlink_unicast+0x10/0x10
[  723.462289][T27299]  netlink_sendmsg+0x8b0/0xda0
[  723.462312][T27299]  ? __pfx_netlink_sendmsg+0x10/0x10
[  723.462329][T27299]  ? __might_fault+0x30/0x140
[  723.462364][T27299]  ____sys_sendmsg+0x9e1/0xb70
[  723.462384][T27299]  ? __pfx_netlink_sendmsg+0x10/0x10
[  723.462404][T27299]  ? __pfx_____sys_sendmsg+0x10/0x10
[  723.462455][T27299]  ___sys_sendmsg+0x190/0x1e0
[  723.462479][T27299]  ? __pfx____sys_sendmsg+0x10/0x10
[  723.462531][T27299]  __sys_sendmsg+0x170/0x220
[  723.462560][T27299]  ? __pfx___sys_sendmsg+0x10/0x10
[  723.462600][T27299]  do_syscall_64+0x106/0xf80
[  723.462617][T27299]  ? clear_bhb_loop+0x40/0x90
[  723.462636][T27299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  723.462653][T27299] RIP: 0033:0x7f781559c819
[  723.462668][T27299] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  723.462684][T27299] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  723.462702][T27299] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  723.462713][T27299] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000008
[  723.462724][T27299] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  723.462734][T27299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  723.462743][T27299] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  723.462768][T27299]  </TASK>
[  723.522859][T27300] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6441'.
[  723.526602][T27302] team0: No ports can be present during mode change
[  723.598358][T27300] team0 (unregistering): Port device team_slave_0 removed
[  723.604576][T27300] team0 (unregistering): Port device team_slave_1 removed
[  723.775057][T27307] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6443'.
[  724.332935][T18137] usb 9-1: dvb_usb_ce6230: usb_control_msg() failed=-110
[  724.336845][T18137] zl10353_read_register: readreg error (reg=127, ret==-110)
[  724.352840][T27271] usb 9-1: dvb_usb_ce6230: usb_control_msg() failed=-32
[  724.369380][T18137] usb 9-1: USB disconnect, device number 51
[  724.688959][T27314] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  724.816065][T27319] Cannot find add_set index 65532 as target
[  724.822138][   T40] audit: type=1400 audit(1775987418.928:1408): avc:  denied  { mount } for  pid=27317 comm="syz.2.6446" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  724.839840][   T40] audit: type=1400 audit(1775987418.948:1409): avc:  denied  { unmount } for  pid=25113 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  724.916881][   T40] audit: type=1400 audit(1775987419.028:1410): avc:  denied  { map } for  pid=27324 comm="syz.4.6449" path="/dev/loop7" dev="devtmpfs" ino=665 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  724.925889][   T40] audit: type=1400 audit(1775987419.028:1411): avc:  denied  { execute } for  pid=27324 comm="syz.4.6449" path="/dev/loop7" dev="devtmpfs" ino=665 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  725.019876][T27330] FAULT_INJECTION: forcing a failure.
[  725.019876][T27330] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  725.026907][T27330] CPU: 3 UID: 0 PID: 27330 Comm: syz.2.6451 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  725.026930][T27330] Tainted: [L]=SOFTLOCKUP
[  725.026934][T27330] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  725.026942][T27330] Call Trace:
[  725.026947][T27330]  <TASK>
[  725.026952][T27330]  dump_stack_lvl+0x100/0x190
[  725.026976][T27330]  should_fail_ex.cold+0x5/0xa
[  725.026992][T27330]  _copy_from_user+0x2e/0xd0
[  725.027006][T27330]  kstrtouint_from_user+0xd6/0x1d0
[  725.027022][T27330]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  725.027037][T27330]  ? __lock_acquire+0x4a5/0x2630
[  725.027050][T27330]  ? lock_acquire+0x1cf/0x380
[  725.027063][T27330]  proc_fail_nth_write+0x83/0x220
[  725.027085][T27330]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  725.027105][T27330]  vfs_write+0x2aa/0x1070
[  725.027117][T27330]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  725.027134][T27330]  ? __pfx_vfs_write+0x10/0x10
[  725.027144][T27330]  ? __fget_files+0x215/0x3d0
[  725.027161][T27330]  ? __fget_files+0x21f/0x3d0
[  725.027177][T27330]  ksys_write+0x12a/0x250
[  725.027187][T27330]  ? __pfx_ksys_write+0x10/0x10
[  725.027202][T27330]  do_syscall_64+0x106/0xf80
[  725.027214][T27330]  ? clear_bhb_loop+0x40/0x90
[  725.027227][T27330]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  725.027239][T27330] RIP: 0033:0x7f98ba75d04e
[  725.027249][T27330] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  725.027260][T27330] RSP: 002b:00007f98bb5dafe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  725.027272][T27330] RAX: ffffffffffffffda RBX: 00007f98bb5db6c0 RCX: 00007f98ba75d04e
[  725.027279][T27330] RDX: 0000000000000001 RSI: 00007f98bb5db0a0 RDI: 0000000000000005
[  725.027285][T27330] RBP: 00007f98bb5db090 R08: 0000000000000000 R09: 0000000000000000
[  725.027291][T27330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  725.027298][T27330] R13: 00007f98baa16038 R14: 00007f98baa15fa0 R15: 00007fffc36998b8
[  725.027312][T27330]  </TASK>
[  725.177710][   T40] audit: type=1400 audit(1775987419.288:1412): avc:  denied  { mounton } for  pid=27336 comm="syz.4.6453" path="/syzcgroup/unified/syz4" dev="cgroup2" ino=228 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  725.178966][T27337] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  725.191731][T27337] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  725.195918][T27337] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  725.199179][T27337] UDF-fs: Scanning with blocksize 512 failed
[  725.202942][T27337] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  725.207901][T27337] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  725.211779][T27337] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  725.217459][T27337] UDF-fs: Scanning with blocksize 1024 failed
[  725.220627][T27337] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  725.225474][T27337] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  725.229470][T27337] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  725.233445][T27337] UDF-fs: Scanning with blocksize 2048 failed
[  725.236751][T27337] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  725.240806][T27337] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  725.245931][T27337] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  725.249311][T27337] UDF-fs: Scanning with blocksize 4096 failed
[  725.251898][T27337] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1)
[  725.338866][T27340] FAULT_INJECTION: forcing a failure.
[  725.338866][T27340] name failslab, interval 1, probability 0, space 0, times 0
[  725.343128][T27340] CPU: 2 UID: 0 PID: 27340 Comm: syz.2.6454 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  725.343146][T27340] Tainted: [L]=SOFTLOCKUP
[  725.343150][T27340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  725.343158][T27340] Call Trace:
[  725.343162][T27340]  <TASK>
[  725.343167][T27340]  dump_stack_lvl+0x100/0x190
[  725.343190][T27340]  should_fail_ex.cold+0x5/0xa
[  725.343205][T27340]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  725.343220][T27340]  should_failslab+0xc2/0x120
[  725.343232][T27340]  __kmalloc_noprof+0xe0/0x850
[  725.343252][T27340]  genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  725.343268][T27340]  genl_family_rcv_msg_doit+0xc7/0x300
[  725.343282][T27340]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  725.343300][T27340]  ? bpf_lsm_capable+0x9/0x10
[  725.343311][T27340]  ? security_capable+0x80/0x260
[  725.343329][T27340]  genl_rcv_msg+0x560/0x800
[  725.343343][T27340]  ? __pfx_genl_rcv_msg+0x10/0x10
[  725.343356][T27340]  ? __pfx_ieee802154_llsec_add_seclevel+0x10/0x10
[  725.343442][T27340]  ? __lock_acquire+0x4a5/0x2630
[  725.343462][T27340]  netlink_rcv_skb+0x159/0x420
[  725.343474][T27340]  ? __pfx_genl_rcv_msg+0x10/0x10
[  725.343488][T27340]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  725.343504][T27340]  ? netlink_deliver_tap+0x1ae/0xcc0
[  725.343523][T27340]  genl_rcv+0x28/0x40
[  725.343534][T27340]  netlink_unicast+0x5aa/0x870
[  725.343547][T27340]  ? __pfx_netlink_unicast+0x10/0x10
[  725.343563][T27340]  netlink_sendmsg+0x8b0/0xda0
[  725.343577][T27340]  ? __pfx_netlink_sendmsg+0x10/0x10
[  725.343586][T27340]  ? __might_fault+0x30/0x140
[  725.343615][T27340]  ____sys_sendmsg+0x9e1/0xb70
[  725.343627][T27340]  ? __pfx_netlink_sendmsg+0x10/0x10
[  725.343639][T27340]  ? __pfx_____sys_sendmsg+0x10/0x10
[  725.343657][T27340]  ___sys_sendmsg+0x190/0x1e0
[  725.343671][T27340]  ? __pfx____sys_sendmsg+0x10/0x10
[  725.343701][T27340]  __sys_sendmsg+0x170/0x220
[  725.343717][T27340]  ? __pfx___sys_sendmsg+0x10/0x10
[  725.343742][T27340]  do_syscall_64+0x106/0xf80
[  725.343754][T27340]  ? clear_bhb_loop+0x40/0x90
[  725.343767][T27340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  725.343780][T27340] RIP: 0033:0x7f98ba79c819
[  725.343794][T27340] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  725.343805][T27340] RSP: 002b:00007f98bb5db028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  725.343816][T27340] RAX: ffffffffffffffda RBX: 00007f98baa15fa0 RCX: 00007f98ba79c819
[  725.343823][T27340] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000006
[  725.343829][T27340] RBP: 00007f98bb5db090 R08: 0000000000000000 R09: 0000000000000000
[  725.343836][T27340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  725.343842][T27340] R13: 00007f98baa16038 R14: 00007f98baa15fa0 R15: 00007fffc36998b8
[  725.343857][T27340]  </TASK>
[  725.388920][   T40] audit: type=1400 audit(1775987419.468:1413): avc:  denied  { node_bind } for  pid=27341 comm="syz.2.6455" src=32768 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  725.536229][   T40] audit: type=1400 audit(1775987419.648:1414): avc:  denied  { ioctl } for  pid=27347 comm="syz.2.6458" path="socket:[129425]" dev="sockfs" ino=129425 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  725.779821][T27353] FAULT_INJECTION: forcing a failure.
[  725.779821][T27353] name failslab, interval 1, probability 0, space 0, times 0
[  725.784443][T27353] CPU: 2 UID: 0 PID: 27353 Comm: syz.5.6460 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  725.784462][T27353] Tainted: [L]=SOFTLOCKUP
[  725.784467][T27353] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  725.784474][T27353] Call Trace:
[  725.784479][T27353]  <TASK>
[  725.784486][T27353]  dump_stack_lvl+0x100/0x190
[  725.784520][T27353]  should_fail_ex.cold+0x5/0xa
[  725.784541][T27353]  should_failslab+0xc2/0x120
[  725.784561][T27353]  __kvmalloc_node_noprof+0xfa/0xa00
[  725.784587][T27353]  ? bpf_test_run_xdp_live+0x13a/0x760
[  725.784612][T27353]  ? find_held_lock+0x2b/0x80
[  725.784637][T27353]  ? synchronize_rcu_expedited+0x3c3/0x450
[  725.784655][T27353]  ? synchronize_rcu_expedited+0x3c3/0x450
[  725.784677][T27353]  bpf_test_run_xdp_live+0x13a/0x760
[  725.784695][T27353]  ? __mutex_unlock_slowpath+0x15c/0x790
[  725.784709][T27353]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  725.784725][T27353]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  725.784737][T27353]  ? __pfx___schedule+0x10/0x10
[  725.784753][T27353]  ? find_held_lock+0x2b/0x80
[  725.784771][T27353]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  725.784799][T27353]  ? 0xffffffffa0206480
[  725.784809][T27353]  ? 0xffffffffa0206480
[  725.784816][T27353]  ? bpf_dispatcher_change_prog+0x2dc/0xa60
[  725.784834][T27353]  bpf_prog_test_run_xdp+0xd7d/0x1670
[  725.784856][T27353]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  725.784877][T27353]  ? fput+0x79/0x100
[  725.784890][T27353]  ? __bpf_prog_get+0x97/0x2a0
[  725.784906][T27353]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  725.784923][T27353]  __sys_bpf+0x1725/0x4b90
[  725.784938][T27353]  ? __pfx___sys_bpf+0x10/0x10
[  725.784949][T27353]  ? proc_fail_nth_write+0x9f/0x220
[  725.784966][T27353]  ? find_held_lock+0x2b/0x80
[  725.784982][T27353]  ? find_held_lock+0x2b/0x80
[  725.785010][T27353]  ? ksys_write+0x190/0x250
[  725.785025][T27353]  ? __mutex_unlock_slowpath+0x15c/0x790
[  725.785036][T27353]  ? __fget_files+0x215/0x3d0
[  725.785059][T27353]  ? fput+0x79/0x100
[  725.785072][T27353]  ? ksys_write+0x1ac/0x250
[  725.785082][T27353]  ? __pfx_ksys_write+0x10/0x10
[  725.785095][T27353]  __x64_sys_bpf+0x7b/0xc0
[  725.785107][T27353]  ? lockdep_hardirqs_on+0x78/0x100
[  725.785118][T27353]  do_syscall_64+0x106/0xf80
[  725.785128][T27353]  ? clear_bhb_loop+0x40/0x90
[  725.785142][T27353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  725.785153][T27353] RIP: 0033:0x7feb3759c819
[  725.785164][T27353] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  725.785175][T27353] RSP: 002b:00007feb383a7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  725.785186][T27353] RAX: ffffffffffffffda RBX: 00007feb37815fa0 RCX: 00007feb3759c819
[  725.785193][T27353] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  725.785200][T27353] RBP: 00007feb383a7090 R08: 0000000000000000 R09: 0000000000000000
[  725.785206][T27353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  725.785213][T27353] R13: 00007feb37816038 R14: 00007feb37815fa0 R15: 00007fff07491c38
[  725.785227][T27353]  </TASK>
[  725.801184][T27355] bridge3: entered promiscuous mode
[  725.837773][T27359] netlink: 48 bytes leftover after parsing attributes in process `syz.5.6463'.
[  725.838407][T27355] bridge3: entered allmulticast mode
[  725.927839][T27355] team0: Port device bridge3 added
[  726.044322][T27372] FAULT_INJECTION: forcing a failure.
[  726.044322][T27372] name failslab, interval 1, probability 0, space 0, times 0
[  726.050004][T27372] CPU: 2 UID: 0 PID: 27372 Comm: syz.5.6466 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  726.050033][T27372] Tainted: [L]=SOFTLOCKUP
[  726.050040][T27372] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  726.050050][T27372] Call Trace:
[  726.050056][T27372]  <TASK>
[  726.050064][T27372]  dump_stack_lvl+0x100/0x190
[  726.050099][T27372]  should_fail_ex.cold+0x5/0xa
[  726.050121][T27372]  should_failslab+0xc2/0x120
[  726.050144][T27372]  __kmalloc_cache_noprof+0x7a/0x6f0
[  726.050165][T27372]  ? tcf_chain_create+0x98/0x370
[  726.050192][T27372]  tcf_chain_create+0x98/0x370
[  726.050219][T27372]  __tcf_chain_get+0x153/0x1b0
[  726.050245][T27372]  tc_new_tfilter+0x640/0x24a0
[  726.050269][T27372]  ? avc_has_perm_noaudit+0x11e/0x3b0
[  726.050289][T27372]  ? avc_has_perm_noaudit+0x11e/0x3b0
[  726.050311][T27372]  ? __pfx_tc_new_tfilter+0x10/0x10
[  726.050337][T27372]  ? __lock_acquire+0x4a5/0x2630
[  726.050368][T27372]  ? find_held_lock+0x2b/0x80
[  726.050390][T27372]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  726.050418][T27372]  ? __pfx_tc_new_tfilter+0x10/0x10
[  726.050437][T27372]  rtnetlink_rcv_msg+0x95e/0xe90
[  726.050466][T27372]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  726.050497][T27372]  ? __lock_acquire+0x4a5/0x2630
[  726.050518][T27372]  netlink_rcv_skb+0x159/0x420
[  726.050533][T27372]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  726.050554][T27372]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  726.050577][T27372]  ? netlink_deliver_tap+0x1ae/0xcc0
[  726.050608][T27372]  netlink_unicast+0x5aa/0x870
[  726.050629][T27372]  ? __pfx_netlink_unicast+0x10/0x10
[  726.050656][T27372]  netlink_sendmsg+0x8b0/0xda0
[  726.050678][T27372]  ? __pfx_netlink_sendmsg+0x10/0x10
[  726.050695][T27372]  ? __might_fault+0x30/0x140
[  726.050727][T27372]  ____sys_sendmsg+0x9e1/0xb70
[  726.050746][T27372]  ? __pfx_netlink_sendmsg+0x10/0x10
[  726.050764][T27372]  ? __pfx_____sys_sendmsg+0x10/0x10
[  726.050796][T27372]  ___sys_sendmsg+0x190/0x1e0
[  726.050818][T27372]  ? __pfx____sys_sendmsg+0x10/0x10
[  726.050865][T27372]  __sys_sendmsg+0x170/0x220
[  726.050891][T27372]  ? __pfx___sys_sendmsg+0x10/0x10
[  726.050930][T27372]  do_syscall_64+0x106/0xf80
[  726.050948][T27372]  ? clear_bhb_loop+0x40/0x90
[  726.050970][T27372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  726.050989][T27372] RIP: 0033:0x7feb3759c819
[  726.051010][T27372] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  726.051027][T27372] RSP: 002b:00007feb383a7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  726.051046][T27372] RAX: ffffffffffffffda RBX: 00007feb37815fa0 RCX: 00007feb3759c819
[  726.051058][T27372] RDX: 0000000020004804 RSI: 0000200000000000 RDI: 0000000000000004
[  726.051069][T27372] RBP: 00007feb383a7090 R08: 0000000000000000 R09: 0000000000000000
[  726.051080][T27372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  726.051090][T27372] R13: 00007feb37816038 R14: 00007feb37815fa0 R15: 00007fff07491c38
[  726.051117][T27372]  </TASK>
[  726.238439][T27381] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6471'.
[  726.339643][T27383] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  726.409971][T27383] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6472'.
[  726.415111][T27383] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=27383 comm=syz.2.6472
[  726.442841][T17880] usb 10-1: new low-speed USB device number 35 using dummy_hcd
[  726.519765][T27386] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6473'.
[  726.595621][T17880] usb 10-1: device descriptor read/64, error -71
[  726.643486][T27397] syzkaller0: entered promiscuous mode
[  726.645820][T27397] syzkaller0: entered allmulticast mode
[  726.659447][T27399] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6476'.
[  726.842657][T17880] usb 10-1: new low-speed USB device number 36 using dummy_hcd
[  726.986256][T17880] usb 10-1: device descriptor read/64, error -71
[  727.068605][T27411] FAULT_INJECTION: forcing a failure.
[  727.068605][T27411] name failslab, interval 1, probability 0, space 0, times 0
[  727.073629][T27411] CPU: 1 UID: 0 PID: 27411 Comm: syz.2.6481 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  727.073658][T27411] Tainted: [L]=SOFTLOCKUP
[  727.073665][T27411] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  727.073675][T27411] Call Trace:
[  727.073682][T27411]  <TASK>
[  727.073689][T27411]  dump_stack_lvl+0x100/0x190
[  727.073723][T27411]  should_fail_ex.cold+0x5/0xa
[  727.073745][T27411]  should_failslab+0xc2/0x120
[  727.073764][T27411]  __kmalloc_cache_noprof+0x7a/0x6f0
[  727.073785][T27411]  ? flow_change+0x3ae/0x1a50
[  727.073816][T27411]  ? __nla_parse+0x40/0x60
[  727.073843][T27411]  flow_change+0x3ae/0x1a50
[  727.073869][T27411]  ? tc_new_tfilter+0x6cf/0x24a0
[  727.073889][T27411]  ? __pfx_flow_change+0x10/0x10
[  727.073914][T27411]  ? __mutex_unlock_slowpath+0x15c/0x790
[  727.073946][T27411]  ? __pfx_flow_change+0x10/0x10
[  727.073965][T27411]  tc_new_tfilter+0x9df/0x24a0
[  727.073983][T27411]  ? avc_has_perm_noaudit+0x11e/0x3b0
[  727.073997][T27411]  ? __pfx_tc_new_tfilter+0x10/0x10
[  727.074013][T27411]  ? __lock_acquire+0x4a5/0x2630
[  727.074031][T27411]  ? find_held_lock+0x2b/0x80
[  727.074047][T27411]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  727.074066][T27411]  ? __pfx_tc_new_tfilter+0x10/0x10
[  727.074077][T27411]  rtnetlink_rcv_msg+0x95e/0xe90
[  727.074095][T27411]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  727.074115][T27411]  ? ref_tracker_free+0x37e/0x6c0
[  727.074135][T27411]  netlink_rcv_skb+0x159/0x420
[  727.074147][T27411]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  727.074168][T27411]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  727.074184][T27411]  ? netlink_deliver_tap+0x1ae/0xcc0
[  727.074204][T27411]  netlink_unicast+0x5aa/0x870
[  727.074217][T27411]  ? __pfx_netlink_unicast+0x10/0x10
[  727.074233][T27411]  netlink_sendmsg+0x8b0/0xda0
[  727.074245][T27411]  ? __pfx_netlink_sendmsg+0x10/0x10
[  727.074255][T27411]  ? __might_fault+0x30/0x140
[  727.074276][T27411]  ____sys_sendmsg+0x9e1/0xb70
[  727.074288][T27411]  ? __pfx_netlink_sendmsg+0x10/0x10
[  727.074300][T27411]  ? __pfx_____sys_sendmsg+0x10/0x10
[  727.074317][T27411]  ___sys_sendmsg+0x190/0x1e0
[  727.074331][T27411]  ? __pfx____sys_sendmsg+0x10/0x10
[  727.074360][T27411]  __sys_sendmsg+0x170/0x220
[  727.074377][T27411]  ? __pfx___sys_sendmsg+0x10/0x10
[  727.074401][T27411]  do_syscall_64+0x106/0xf80
[  727.074412][T27411]  ? clear_bhb_loop+0x40/0x90
[  727.074425][T27411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.074438][T27411] RIP: 0033:0x7f98ba79c819
[  727.074448][T27411] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  727.074459][T27411] RSP: 002b:00007f98bb5db028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  727.074470][T27411] RAX: ffffffffffffffda RBX: 00007f98baa15fa0 RCX: 00007f98ba79c819
[  727.074477][T27411] RDX: 0000000000000002 RSI: 0000200000000140 RDI: 0000000000000009
[  727.074484][T27411] RBP: 00007f98bb5db090 R08: 0000000000000000 R09: 0000000000000000
[  727.074490][T27411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  727.074497][T27411] R13: 00007f98baa16038 R14: 00007f98baa15fa0 R15: 00007fffc36998b8
[  727.074511][T27411]  </TASK>
[  727.094937][T27413] FAULT_INJECTION: forcing a failure.
[  727.094937][T27413] name failslab, interval 1, probability 0, space 0, times 0
[  727.095334][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  727.095349][   T40] audit: type=1800 audit(1775987421.198:1417): pid=27413 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.6482" name="bus" dev="overlay" ino=655 res=0 errno=0
[  727.097101][T27413] CPU: 3 UID: 0 PID: 27413 Comm: syz.4.6482 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  727.097121][T27413] Tainted: [L]=SOFTLOCKUP
[  727.097125][T27413] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  727.097132][T27413] Call Trace:
[  727.097137][T27413]  <TASK>
[  727.097142][T27413]  dump_stack_lvl+0x100/0x190
[  727.097165][T27413]  should_fail_ex.cold+0x5/0xa
[  727.097180][T27413]  ? copy_splice_read+0x1a3/0xb90
[  727.097192][T27413]  should_failslab+0xc2/0x120
[  727.097204][T27413]  __kmalloc_noprof+0xe0/0x850
[  727.097223][T27413]  copy_splice_read+0x1a3/0xb90
[  727.097239][T27413]  ? __pfx_copy_splice_read+0x10/0x10
[  727.097252][T27413]  ? look_up_lock_class+0x55/0x120
[  727.097266][T27413]  ? lockdep_init_map_type+0x5c/0x250
[  727.097279][T27413]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  727.097291][T27413]  ? __pfx_ovl_splice_read+0x10/0x10
[  727.097303][T27413]  do_splice_read+0x2bd/0x370
[  727.097317][T27413]  splice_direct_to_actor+0x2a1/0xa30
[  727.097331][T27413]  ? __pfx_direct_splice_actor+0x10/0x10
[  727.097346][T27413]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  727.097363][T27413]  do_splice_direct+0x174/0x240
[  727.097376][T27413]  ? __pfx_do_splice_direct+0x10/0x10
[  727.097388][T27413]  ? avc_policy_seqno+0x9/0x20
[  727.097402][T27413]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  727.097416][T27413]  ? rw_verify_area+0xce/0x6d0
[  727.097433][T27413]  do_sendfile+0xadc/0xe20
[  727.097453][T27413]  ? __pfx_do_sendfile+0x10/0x10
[  727.097470][T27413]  ? __fget_files+0x21f/0x3d0
[  727.097486][T27413]  __x64_sys_sendfile64+0x1d8/0x220
[  727.097499][T27413]  ? ksys_write+0x1ac/0x250
[  727.097509][T27413]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  727.097526][T27413]  do_syscall_64+0x106/0xf80
[  727.097536][T27413]  ? clear_bhb_loop+0x40/0x90
[  727.097550][T27413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.097561][T27413] RIP: 0033:0x7ffa4eb9c819
[  727.097571][T27413] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  727.097582][T27413] RSP: 002b:00007ffa4fab7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  727.097593][T27413] RAX: ffffffffffffffda RBX: 00007ffa4ee15fa0 RCX: 00007ffa4eb9c819
[  727.097600][T27413] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[  727.097606][T27413] RBP: 00007ffa4fab7090 R08: 0000000000000000 R09: 0000000000000000
[  727.097612][T27413] R10: 0000000000007f03 R11: 0000000000000246 R12: 0000000000000001
[  727.097618][T27413] R13: 00007ffa4ee16038 R14: 00007ffa4ee15fa0 R15: 00007ffd75a3fb48
[  727.097632][T27413]  </TASK>
[  727.296759][T17880] usb usb10-port1: attempt power cycle
[  727.404886][T27424] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6485'.
[  727.421354][T27424] bond0 (unregistering): Released all slaves
[  727.451354][T27427] syzkaller0: entered promiscuous mode
[  727.453369][T27427] syzkaller0: entered allmulticast mode
[  727.529766][T27431] netlink: 'syz.6.6488': attribute type 1 has an invalid length.
[  727.543783][T27431] 8021q: adding VLAN 0 to HW filter on device bond0
[  727.572854][T27436] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6490'.
[  727.576737][T27431] bond0: (slave veth3): Enslaving as an active interface with a down link
[  727.590330][T27431] 8021q: adding VLAN 0 to HW filter on device batadv1
[  727.592829][T27431] bond0: (slave batadv1): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open
[  727.625790][ T5937] block nbd4: Receive control failed (result -107)
[  727.644699][T17880] usb 10-1: new low-speed USB device number 37 using dummy_hcd
[  727.675618][T17880] usb 10-1: device descriptor read/8, error -71
[  727.760797][   T40] audit: type=1400 audit(1775987421.868:1418): avc:  denied  { module_load } for  pid=27443 comm="syz.4.6493" path="/sys/kernel/notes" dev="sysfs" ino=858 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  727.912729][T17880] usb 10-1: new low-speed USB device number 38 using dummy_hcd
[  727.943708][T17880] usb 10-1: device descriptor read/8, error -71
[  728.046969][T27453] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6495'.
[  728.053311][T17880] usb usb10-port1: unable to enumerate USB device
[  729.276953][T27457] FAULT_INJECTION: forcing a failure.
[  729.276953][T27457] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  729.282698][T27457] CPU: 0 UID: 0 PID: 27457 Comm: syz.5.6496 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  729.282730][T27457] Tainted: [L]=SOFTLOCKUP
[  729.282743][T27457] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  729.282755][T27457] Call Trace:
[  729.282763][T27457]  <TASK>
[  729.282772][T27457]  dump_stack_lvl+0x100/0x190
[  729.282808][T27457]  should_fail_ex.cold+0x5/0xa
[  729.282835][T27457]  _copy_from_user+0x2e/0xd0
[  729.282858][T27457]  memdup_user+0x6b/0xe0
[  729.282878][T27457]  msr_io+0xea/0x480
[  729.282900][T27457]  ? __pfx_do_set_msr+0x10/0x10
[  729.282928][T27457]  ? __pfx_msr_io+0x10/0x10
[  729.282951][T27457]  ? __kernel_text_address+0xd/0x30
[  729.282979][T27457]  kvm_arch_vcpu_ioctl+0xd32/0x5740
[  729.283001][T27457]  ? kvm_arch_vcpu_ioctl+0xd14/0x5740
[  729.283032][T27457]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  729.283055][T27457]  ? __pfx_stack_trace_save+0x10/0x10
[  729.283081][T27457]  ? stack_depot_save_flags+0x27/0x9d0
[  729.283105][T27457]  ? __lock_acquire+0x4a5/0x2630
[  729.283126][T27457]  ? tomoyo_path_number_perm+0x46d/0x580
[  729.283154][T27457]  ? __lock_acquire+0x4a5/0x2630
[  729.283173][T27457]  ? do_syscall_64+0x106/0xf80
[  729.283190][T27457]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  729.283219][T27457]  ? lock_acquire+0x1cf/0x380
[  729.283243][T27457]  ? rcu_is_watching+0x12/0xc0
[  729.283266][T27457]  ? trace_contention_end+0x140/0x180
[  729.283287][T27457]  ? __mutex_lock+0x26a/0x1b90
[  729.283309][T27457]  ? kvm_vcpu_ioctl+0x322/0x1730
[  729.283341][T27457]  ? __pfx___mutex_lock+0x10/0x10
[  729.283360][T27457]  ? kasan_quarantine_put+0x104/0x240
[  729.283386][T27457]  ? lockdep_hardirqs_on+0x78/0x100
[  729.283428][T27457]  ? tomoyo_path_number_perm+0x28f/0x580
[  729.283460][T27457]  ? tomoyo_path_number_perm+0x188/0x580
[  729.283488][T27457]  ? kvm_vcpu_ioctl+0x8a0/0x1730
[  729.283514][T27457]  kvm_vcpu_ioctl+0x8a0/0x1730
[  729.283544][T27457]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  729.283572][T27457]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  729.283611][T27457]  ? do_vfs_ioctl+0x226/0x13e0
[  729.283640][T27457]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  729.283668][T27457]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  729.283705][T27457]  ? __fget_files+0x215/0x3d0
[  729.283724][T27457]  ? hook_file_ioctl_common+0x146/0x410
[  729.283757][T27457]  ? selinux_file_ioctl+0x139/0x290
[  729.283784][T27457]  ? selinux_file_ioctl+0xb4/0x290
[  729.283813][T27457]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  729.283842][T27457]  __x64_sys_ioctl+0x18e/0x210
[  729.283872][T27457]  do_syscall_64+0x106/0xf80
[  729.283889][T27457]  ? clear_bhb_loop+0x40/0x90
[  729.283913][T27457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  729.283932][T27457] RIP: 0033:0x7feb3759c819
[  729.283949][T27457] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  729.283966][T27457] RSP: 002b:00007feb383a7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  729.283986][T27457] RAX: ffffffffffffffda RBX: 00007feb37815fa0 RCX: 00007feb3759c819
[  729.283997][T27457] RDX: 0000200000000080 RSI: 000000004008ae89 RDI: 0000000000000005
[  729.284008][T27457] RBP: 00007feb383a7090 R08: 0000000000000000 R09: 0000000000000000
[  729.284019][T27457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  729.284029][T27457] R13: 00007feb37816038 R14: 00007feb37815fa0 R15: 00007fff07491c38
[  729.284056][T27457]  </TASK>
[  729.496674][T27455] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  729.648180][T27473] FAULT_INJECTION: forcing a failure.
[  729.648180][T27473] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  729.656277][T27473] CPU: 3 UID: 0 PID: 27473 Comm: syz.5.6503 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  729.656307][T27473] Tainted: [L]=SOFTLOCKUP
[  729.656314][T27473] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  729.656325][T27473] Call Trace:
[  729.656332][T27473]  <TASK>
[  729.656340][T27473]  dump_stack_lvl+0x100/0x190
[  729.656375][T27473]  should_fail_ex.cold+0x5/0xa
[  729.656399][T27473]  _copy_from_user+0x2e/0xd0
[  729.656421][T27473]  move_addr_to_kernel+0x65/0x170
[  729.656445][T27473]  copy_msghdr_from_user+0x417/0x4f0
[  729.656467][T27473]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  729.656500][T27473]  ___sys_sendmsg+0x106/0x1e0
[  729.656523][T27473]  ? __pfx____sys_sendmsg+0x10/0x10
[  729.656573][T27473]  __sys_sendmsg+0x170/0x220
[  729.656600][T27473]  ? __pfx___sys_sendmsg+0x10/0x10
[  729.656642][T27473]  do_syscall_64+0x106/0xf80
[  729.656710][T27473]  ? clear_bhb_loop+0x40/0x90
[  729.656739][T27473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  729.656758][T27473] RIP: 0033:0x7feb3759c819
[  729.656774][T27473] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  729.656791][T27473] RSP: 002b:00007feb383a7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  729.656809][T27473] RAX: ffffffffffffffda RBX: 00007feb37815fa0 RCX: 00007feb3759c819
[  729.656820][T27473] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000004
[  729.656831][T27473] RBP: 00007feb383a7090 R08: 0000000000000000 R09: 0000000000000000
[  729.656842][T27473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  729.656853][T27473] R13: 00007feb37816038 R14: 00007feb37815fa0 R15: 00007fff07491c38
[  729.656878][T27473]  </TASK>
[  729.719971][   T40] audit: type=1400 audit(1775987423.828:1419): avc:  denied  { getopt } for  pid=27470 comm="syz.2.6502" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  729.786808][T27486] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6504'.
[  729.922796][T27496] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6509'.
[  729.980164][T27506] overlayfs: failed lookup in lower (newroot/134, name='file0', err=-40): overlapping layers
[  729.999814][   T78] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  730.041154][T27510] FAULT_INJECTION: forcing a failure.
[  730.041154][T27510] name failslab, interval 1, probability 0, space 0, times 0
[  730.046738][T27510] CPU: 2 UID: 0 PID: 27510 Comm: syz.4.6513 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  730.046775][T27510] Tainted: [L]=SOFTLOCKUP
[  730.046782][T27510] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  730.046793][T27510] Call Trace:
[  730.046800][T27510]  <TASK>
[  730.046808][T27510]  dump_stack_lvl+0x100/0x190
[  730.046843][T27510]  should_fail_ex.cold+0x5/0xa
[  730.046867][T27510]  should_failslab+0xc2/0x120
[  730.046887][T27510]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  730.046916][T27510]  ? __alloc_skb+0x140/0x710
[  730.046947][T27510]  __alloc_skb+0x140/0x710
[  730.046970][T27510]  ? __alloc_skb+0x5b7/0x710
[  730.046993][T27510]  ? __pfx___alloc_skb+0x10/0x10
[  730.047018][T27510]  ? if_nlmsg_size+0x5f6/0xd20
[  730.047049][T27510]  rtmsg_ifinfo_build_skb+0x81/0x260
[  730.047072][T27510]  rtmsg_ifinfo+0xa4/0x1b0
[  730.047094][T27510]  __dev_notify_flags+0x24c/0x2e0
[  730.047120][T27510]  ? __pfx___dev_notify_flags+0x10/0x10
[  730.047143][T27510]  ? __dev_change_flags+0x505/0x6f0
[  730.047170][T27510]  ? __pfx___dev_change_flags+0x10/0x10
[  730.047203][T27510]  netif_change_flags+0x108/0x160
[  730.047232][T27510]  dev_change_flags+0xba/0x250
[  730.047252][T27510]  dev_ifsioc+0x1682/0x1f20
[  730.047280][T27510]  ? __pfx_dev_ifsioc+0x10/0x10
[  730.047302][T27510]  ? __pfx___mutex_lock+0x10/0x10
[  730.047331][T27510]  ? dev_load+0x8e/0x240
[  730.047352][T27510]  ? dev_load+0x8e/0x240
[  730.047381][T27510]  dev_ioctl+0x342/0x10e0
[  730.047431][T27510]  sock_do_ioctl+0x1a0/0x280
[  730.047453][T27510]  ? __pfx_sock_do_ioctl+0x10/0x10
[  730.047479][T27510]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  730.047508][T27510]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  730.047543][T27510]  sock_ioctl+0x599/0x6b0
[  730.047565][T27510]  ? __pfx_sock_ioctl+0x10/0x10
[  730.047584][T27510]  ? hook_file_ioctl_common+0x146/0x410
[  730.047612][T27510]  ? selinux_file_ioctl+0x139/0x290
[  730.047638][T27510]  ? selinux_file_ioctl+0xb4/0x290
[  730.047666][T27510]  ? __pfx_sock_ioctl+0x10/0x10
[  730.047689][T27510]  __x64_sys_ioctl+0x18e/0x210
[  730.047719][T27510]  do_syscall_64+0x106/0xf80
[  730.047737][T27510]  ? clear_bhb_loop+0x40/0x90
[  730.047765][T27510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  730.047784][T27510] RIP: 0033:0x7ffa4eb9c819
[  730.047801][T27510] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  730.047819][T27510] RSP: 002b:00007ffa4fab7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  730.047837][T27510] RAX: ffffffffffffffda RBX: 00007ffa4ee15fa0 RCX: 00007ffa4eb9c819
[  730.047849][T27510] RDX: 0000200000000000 RSI: 0000000000008914 RDI: 0000000000000005
[  730.047861][T27510] RBP: 00007ffa4fab7090 R08: 0000000000000000 R09: 0000000000000000
[  730.047871][T27510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  730.047882][T27510] R13: 00007ffa4ee16038 R14: 00007ffa4ee15fa0 R15: 00007ffd75a3fb48
[  730.047907][T27510]  </TASK>
[  731.075911][T27520] comedi comedi0: Minor 47 could not be opened
[  731.085186][T27518] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3659427032 (29275416256 ns) > initial count (9353363104 ns). Using initial count to start timer.
[  731.096484][T27518] FAULT_INJECTION: forcing a failure.
[  731.096484][T27518] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  731.101826][T27518] CPU: 0 UID: 0 PID: 27518 Comm: syz.6.6516 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  731.101855][T27518] Tainted: [L]=SOFTLOCKUP
[  731.101862][T27518] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  731.101872][T27518] Call Trace:
[  731.101879][T27518]  <TASK>
[  731.101888][T27518]  dump_stack_lvl+0x100/0x190
[  731.101921][T27518]  should_fail_ex.cold+0x5/0xa
[  731.101945][T27518]  _copy_from_user+0x2e/0xd0
[  731.101967][T27518]  memdup_user+0x6b/0xe0
[  731.102004][T27518]  msr_io+0xea/0x480
[  731.102024][T27518]  ? __pfx_do_set_msr+0x10/0x10
[  731.102049][T27518]  ? __pfx_msr_io+0x10/0x10
[  731.102070][T27518]  ? __kernel_text_address+0xd/0x30
[  731.102096][T27518]  kvm_arch_vcpu_ioctl+0xd32/0x5740
[  731.102116][T27518]  ? kvm_arch_vcpu_ioctl+0xd14/0x5740
[  731.102146][T27518]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  731.102166][T27518]  ? __pfx_stack_trace_save+0x10/0x10
[  731.102190][T27518]  ? stack_depot_save_flags+0x27/0x9d0
[  731.102212][T27518]  ? __lock_acquire+0x4a5/0x2630
[  731.102230][T27518]  ? tomoyo_path_number_perm+0x46d/0x580
[  731.102257][T27518]  ? __lock_acquire+0x4a5/0x2630
[  731.102275][T27518]  ? do_syscall_64+0x106/0xf80
[  731.102291][T27518]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.102317][T27518]  ? lock_acquire+0x1cf/0x380
[  731.102339][T27518]  ? rcu_is_watching+0x12/0xc0
[  731.102359][T27518]  ? trace_contention_end+0x140/0x180
[  731.102381][T27518]  ? __mutex_lock+0x26a/0x1b90
[  731.102400][T27518]  ? kvm_vcpu_ioctl+0x322/0x1730
[  731.102428][T27518]  ? __pfx___mutex_lock+0x10/0x10
[  731.102445][T27518]  ? kasan_quarantine_put+0x104/0x240
[  731.102482][T27518]  ? lockdep_hardirqs_on+0x78/0x100
[  731.102504][T27518]  ? tomoyo_path_number_perm+0x28f/0x580
[  731.102532][T27518]  ? tomoyo_path_number_perm+0x188/0x580
[  731.102557][T27518]  ? kvm_vcpu_ioctl+0x8a0/0x1730
[  731.102580][T27518]  kvm_vcpu_ioctl+0x8a0/0x1730
[  731.102620][T27518]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  731.102646][T27518]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  731.102672][T27518]  ? do_vfs_ioctl+0x226/0x13e0
[  731.102697][T27518]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  731.102723][T27518]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  731.102758][T27518]  ? __fget_files+0x215/0x3d0
[  731.102775][T27518]  ? hook_file_ioctl_common+0x146/0x410
[  731.102801][T27518]  ? selinux_file_ioctl+0x139/0x290
[  731.102825][T27518]  ? selinux_file_ioctl+0xb4/0x290
[  731.102851][T27518]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  731.102874][T27518]  __x64_sys_ioctl+0x18e/0x210
[  731.102902][T27518]  do_syscall_64+0x106/0xf80
[  731.102918][T27518]  ? clear_bhb_loop+0x40/0x90
[  731.102938][T27518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.102957][T27518] RIP: 0033:0x7f781559c819
[  731.102976][T27518] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  731.102993][T27518] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  731.103009][T27518] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  731.103021][T27518] RDX: 00002000000004c0 RSI: 000000004008ae89 RDI: 0000000000000005
[  731.103031][T27518] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  731.103040][T27518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  731.103052][T27518] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  731.103075][T27518]  </TASK>
[  731.356712][T27528] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  731.362571][T27528] overlayfs: failed to set xattr on upper
[  731.365919][T27528] overlayfs: ...falling back to redirect_dir=nofollow.
[  731.368732][T27528] overlayfs: ...falling back to index=off.
[  731.371264][T27528] overlayfs: ...falling back to uuid=null.
[  731.374339][T27528] overlayfs: ...falling back to xino=off.
[  731.376752][T27528] overlayfs: conflicting lowerdir path
[  732.930418][T27498] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  733.017671][T27548] netlink: 'syz.6.6524': attribute type 7 has an invalid length.
[  733.031338][T27550] net_ratelimit: 12 callbacks suppressed
[  733.031357][T27550] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  733.072600][T27554] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6523'.
[  733.076579][T27554] usb usb7: usbfs: process 27554 (syz.5.6523) did not claim interface 0 before use
[  733.080215][T27554] tmpfs: Bad value for 'mode'
[  733.326275][T27582] netlink: 96 bytes leftover after parsing attributes in process `syz.2.6528'.
[  733.333620][T27581] FAULT_INJECTION: forcing a failure.
[  733.333620][T27581] name failslab, interval 1, probability 0, space 0, times 0
[  733.338410][T27581] CPU: 0 UID: 0 PID: 27581 Comm: syz.4.6532 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  733.338436][T27581] Tainted: [L]=SOFTLOCKUP
[  733.338444][T27581] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  733.338454][T27581] Call Trace:
[  733.338461][T27581]  <TASK>
[  733.338468][T27581]  dump_stack_lvl+0x100/0x190
[  733.338503][T27581]  should_fail_ex.cold+0x5/0xa
[  733.338526][T27581]  ? lsm_blob_alloc+0x68/0x90
[  733.338544][T27581]  should_failslab+0xc2/0x120
[  733.338561][T27581]  __kmalloc_noprof+0xe0/0x850
[  733.338578][T27581]  ? audit_alloc+0xa2/0x7b0
[  733.338598][T27581]  lsm_blob_alloc+0x68/0x90
[  733.338610][T27581]  security_task_alloc+0x2a/0x260
[  733.338622][T27581]  copy_process+0x258f/0x7a40
[  733.338645][T27581]  ? __pfx_copy_process+0x10/0x10
[  733.338662][T27581]  ? lockdep_init_map_type+0x5c/0x250
[  733.338675][T27581]  ? lockdep_init_map_type+0x5c/0x250
[  733.338687][T27581]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  733.338706][T27581]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  733.338722][T27581]  vhost_task_create+0x1db/0x370
[  733.338736][T27581]  ? __pfx_vhost_task_create+0x10/0x10
[  733.338748][T27581]  ? trace_contention_end+0x140/0x180
[  733.338764][T27581]  ? __pfx_vhost_task_fn+0x10/0x10
[  733.338778][T27581]  ? __pfx___mutex_lock+0x10/0x10
[  733.338794][T27581]  ? kasan_quarantine_put+0x104/0x240
[  733.338811][T27581]  ? lockdep_hardirqs_on+0x78/0x100
[  733.338824][T27581]  kvm_mmu_post_init_vm+0x1b3/0x370
[  733.338838][T27581]  kvm_arch_vcpu_ioctl_run+0x66/0x1830
[  733.338852][T27581]  ? kvm_vcpu_ioctl+0x155c/0x1730
[  733.338872][T27581]  kvm_vcpu_ioctl+0x730/0x1730
[  733.338890][T27581]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  733.338906][T27581]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  733.338923][T27581]  ? do_vfs_ioctl+0x226/0x13e0
[  733.338940][T27581]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  733.338957][T27581]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  733.338979][T27581]  ? __fget_files+0x215/0x3d0
[  733.338991][T27581]  ? hook_file_ioctl_common+0x146/0x410
[  733.339006][T27581]  ? selinux_file_ioctl+0x139/0x290
[  733.339022][T27581]  ? selinux_file_ioctl+0xb4/0x290
[  733.339040][T27581]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  733.339057][T27581]  __x64_sys_ioctl+0x18e/0x210
[  733.339076][T27581]  do_syscall_64+0x106/0xf80
[  733.339086][T27581]  ? clear_bhb_loop+0x40/0x90
[  733.339100][T27581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  733.339112][T27581] RIP: 0033:0x7ffa4eb9c819
[  733.339122][T27581] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  733.339133][T27581] RSP: 002b:00007ffa4fab7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  733.339144][T27581] RAX: ffffffffffffffda RBX: 00007ffa4ee15fa0 RCX: 00007ffa4eb9c819
[  733.339151][T27581] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  733.339158][T27581] RBP: 00007ffa4fab7090 R08: 0000000000000000 R09: 0000000000000000
[  733.339164][T27581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  733.339170][T27581] R13: 00007ffa4ee16038 R14: 00007ffa4ee15fa0 R15: 00007ffd75a3fb48
[  733.339184][T27581]  </TASK>
[  733.379550][T27571] FAULT_INJECTION: forcing a failure.
[  733.379550][T27571] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  733.455235][T27571] CPU: 2 UID: 0 PID: 27571 Comm: syz.6.6530 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  733.455256][T27571] Tainted: [L]=SOFTLOCKUP
[  733.455260][T27571] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  733.455268][T27571] Call Trace:
[  733.455273][T27571]  <TASK>
[  733.455279][T27571]  dump_stack_lvl+0x100/0x190
[  733.455302][T27571]  should_fail_ex.cold+0x5/0xa
[  733.455315][T27571]  ? prepare_alloc_pages+0x16d/0x5f0
[  733.455329][T27571]  should_fail_alloc_page+0xeb/0x140
[  733.455342][T27571]  prepare_alloc_pages+0x1f0/0x5f0
[  733.455357][T27571]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  733.455403][T27571]  ? do_sys_poll+0x273/0xeb0
[  733.455417][T27571]  ? stack_trace_save+0x8e/0xc0
[  733.455432][T27571]  ? __pfx_stack_trace_save+0x10/0x10
[  733.455447][T27571]  ? stack_depot_save_flags+0x27/0x9d0
[  733.455461][T27571]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  733.455477][T27571]  ? __pfx___might_resched+0x10/0x10
[  733.455492][T27571]  ? do_sys_poll+0x273/0xeb0
[  733.455502][T27571]  ? kasan_save_stack+0x3f/0x50
[  733.455518][T27571]  ? kasan_save_stack+0x30/0x50
[  733.455534][T27571]  ? kasan_save_track+0x14/0x30
[  733.455549][T27571]  ? __kasan_kmalloc+0xaa/0xb0
[  733.455565][T27571]  ? __kmalloc_noprof+0x301/0x850
[  733.455580][T27571]  ? do_sys_poll+0x273/0xeb0
[  733.455590][T27571]  ? __x64_sys_ppoll+0x2b5/0x350
[  733.455601][T27571]  ? do_syscall_64+0x106/0xf80
[  733.455614][T27571]  ? __lock_acquire+0x4a5/0x2630
[  733.455627][T27571]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  733.455644][T27571]  ? policy_nodemask+0xed/0x4f0
[  733.455657][T27571]  alloc_pages_mpol+0x1fb/0x550
[  733.455669][T27571]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  733.455684][T27571]  alloc_pages_noprof+0x136/0x390
[  733.455696][T27571]  get_free_pages_noprof+0x10/0xb0
[  733.455714][T27571]  __pollwait+0x29a/0x470
[  733.455726][T27571]  ? __pfx___pollwait+0x10/0x10
[  733.455737][T27571]  pipe_poll+0x17c/0x6b0
[  733.455749][T27571]  ? __pfx_pipe_poll+0x10/0x10
[  733.455761][T27571]  do_sys_poll+0x6e5/0xeb0
[  733.455777][T27571]  ? __pfx_do_sys_poll+0x10/0x10
[  733.455788][T27571]  ? arch_stack_walk+0xa6/0xf0
[  733.455814][T27571]  ? __pfx___pollwait+0x10/0x10
[  733.455826][T27571]  ? __pfx_pollwake+0x10/0x10
[  733.455838][T27571]  ? __pfx_pollwake+0x10/0x10
[  733.455849][T27571]  ? __pfx_pollwake+0x10/0x10
[  733.455861][T27571]  ? __pfx_pollwake+0x10/0x10
[  733.455872][T27571]  ? __pfx_pollwake+0x10/0x10
[  733.455884][T27571]  ? __pfx_pollwake+0x10/0x10
[  733.455896][T27571]  ? __pfx_pollwake+0x10/0x10
[  733.455907][T27571]  ? __pfx_pollwake+0x10/0x10
[  733.455919][T27571]  ? __pfx_pollwake+0x10/0x10
[  733.455930][T27571]  ? __mutex_unlock_slowpath+0x15c/0x790
[  733.455943][T27571]  ? __fget_files+0x215/0x3d0
[  733.455954][T27571]  ? set_user_sigmask+0x1e1/0x270
[  733.455969][T27571]  ? __pfx_set_user_sigmask+0x10/0x10
[  733.455985][T27571]  __x64_sys_ppoll+0x2b5/0x350
[  733.455999][T27571]  ? __pfx___x64_sys_ppoll+0x10/0x10
[  733.456016][T27571]  ? ksys_write+0x1ac/0x250
[  733.456032][T27571]  ? __pfx_ksys_write+0x10/0x10
[  733.456056][T27571]  do_syscall_64+0x106/0xf80
[  733.456073][T27571]  ? clear_bhb_loop+0x40/0x90
[  733.456097][T27571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  733.456118][T27571] RIP: 0033:0x7f781559c819
[  733.456133][T27571] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  733.456146][T27571] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  733.456157][T27571] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  733.456164][T27571] RDX: 0000000000000000 RSI: 20000000000000dc RDI: 00002000000000c0
[  733.456171][T27571] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  733.456177][T27571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  733.456183][T27571] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  733.456197][T27571]  </TASK>
[  733.726933][T27590] FAULT_INJECTION: forcing a failure.
[  733.726933][T27590] name failslab, interval 1, probability 0, space 0, times 0
[  733.732207][T27590] CPU: 3 UID: 0 PID: 27590 Comm: syz.4.6535 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  733.732235][T27590] Tainted: [L]=SOFTLOCKUP
[  733.732243][T27590] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  733.732253][T27590] Call Trace:
[  733.732260][T27590]  <TASK>
[  733.732268][T27590]  dump_stack_lvl+0x100/0x190
[  733.732304][T27590]  should_fail_ex.cold+0x5/0xa
[  733.732329][T27590]  ? tomoyo_encode2+0xfb/0x3c0
[  733.732356][T27590]  should_failslab+0xc2/0x120
[  733.732376][T27590]  __kmalloc_noprof+0xe0/0x850
[  733.732401][T27590]  ? d_absolute_path+0x136/0x1b0
[  733.732434][T27590]  tomoyo_encode2+0xfb/0x3c0
[  733.732463][T27590]  tomoyo_encode+0x29/0x50
[  733.732504][T27590]  tomoyo_realpath_from_path+0x18c/0x690
[  733.732535][T27590]  tomoyo_check_open_permission+0x2af/0x3c0
[  733.732561][T27590]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  733.732585][T27590]  ? ovl_path_open+0x182/0x1d0
[  733.732609][T27590]  ? wrap_directory_iterator+0xa2/0xe0
[  733.732632][T27590]  ? iterate_dir+0x296/0xae0
[  733.732669][T27590]  ? do_raw_spin_lock+0x128/0x260
[  733.732691][T27590]  ? path_get+0x61/0x80
[  733.732716][T27590]  tomoyo_file_open+0x6b/0x90
[  733.732737][T27590]  security_file_open+0xb5/0x1e0
[  733.732755][T27590]  do_dentry_open+0x5aa/0x1660
[  733.732774][T27590]  ? lockdep_init_map_type+0x5c/0x250
[  733.732798][T27590]  vfs_open+0x82/0x3f0
[  733.732821][T27590]  dentry_open+0x71/0xd0
[  733.732838][T27590]  ovl_path_open+0x182/0x1d0
[  733.732863][T27590]  ovl_dir_read_merged+0x2e8/0x790
[  733.732886][T27590]  ? __pfx_ovl_dir_read_merged+0x10/0x10
[  733.732914][T27590]  ? __pfx_ovl_fill_merge+0x10/0x10
[  733.732948][T27590]  ovl_iterate+0xb7b/0x11e0
[  733.732969][T27590]  ? __pfx_down_read_killable+0x10/0x10
[  733.732995][T27590]  ? __pfx_ovl_iterate+0x10/0x10
[  733.733018][T27590]  wrap_directory_iterator+0xa2/0xe0
[  733.733041][T27590]  iterate_dir+0x296/0xae0
[  733.733059][T27590]  __x64_sys_getdents64+0x13b/0x2c0
[  733.733080][T27590]  ? __pfx___x64_sys_getdents64+0x10/0x10
[  733.733094][T27590]  ? fput+0x79/0x100
[  733.733116][T27590]  ? __pfx_filldir64+0x10/0x10
[  733.733150][T27590]  do_syscall_64+0x106/0xf80
[  733.733167][T27590]  ? clear_bhb_loop+0x40/0x90
[  733.733189][T27590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  733.733206][T27590] RIP: 0033:0x7ffa4eb9c819
[  733.733221][T27590] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  733.733239][T27590] RSP: 002b:00007ffa4fab7028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  733.733256][T27590] RAX: ffffffffffffffda RBX: 00007ffa4ee15fa0 RCX: 00007ffa4eb9c819
[  733.733266][T27590] RDX: 0000000000001000 RSI: 0000200000000400 RDI: 0000000000000003
[  733.733278][T27590] RBP: 00007ffa4fab7090 R08: 0000000000000000 R09: 0000000000000000
[  733.733290][T27590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  733.733299][T27590] R13: 00007ffa4ee16038 R14: 00007ffa4ee15fa0 R15: 00007ffd75a3fb48
[  733.733321][T27590]  </TASK>
[  733.850763][T27590] ERROR: Out of memory at tomoyo_realpath_from_path.
[  734.305061][T27618] FAULT_INJECTION: forcing a failure.
[  734.305061][T27618] name failslab, interval 1, probability 0, space 0, times 0
[  734.309455][T27618] CPU: 2 UID: 0 PID: 27618 Comm: syz.6.6544 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  734.309474][T27618] Tainted: [L]=SOFTLOCKUP
[  734.309479][T27618] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  734.309485][T27618] Call Trace:
[  734.309490][T27618]  <TASK>
[  734.309495][T27618]  dump_stack_lvl+0x100/0x190
[  734.309519][T27618]  should_fail_ex.cold+0x5/0xa
[  734.309534][T27618]  should_failslab+0xc2/0x120
[  734.309546][T27618]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  734.309563][T27618]  ? skb_clone+0x190/0x400
[  734.309583][T27618]  skb_clone+0x190/0x400
[  734.309599][T27618]  netlink_deliver_tap+0xaed/0xcc0
[  734.309621][T27618]  netlink_unicast+0x650/0x870
[  734.309634][T27618]  ? __pfx_netlink_unicast+0x10/0x10
[  734.309650][T27618]  netlink_sendmsg+0x8b0/0xda0
[  734.309663][T27618]  ? __pfx_netlink_sendmsg+0x10/0x10
[  734.309674][T27618]  ? __might_fault+0x30/0x140
[  734.309694][T27618]  ____sys_sendmsg+0x9e1/0xb70
[  734.309706][T27618]  ? __pfx_netlink_sendmsg+0x10/0x10
[  734.309718][T27618]  ? __pfx_____sys_sendmsg+0x10/0x10
[  734.309736][T27618]  ___sys_sendmsg+0x190/0x1e0
[  734.309750][T27618]  ? __pfx____sys_sendmsg+0x10/0x10
[  734.309782][T27618]  __sys_sendmsg+0x170/0x220
[  734.309799][T27618]  ? __pfx___sys_sendmsg+0x10/0x10
[  734.309824][T27618]  do_syscall_64+0x106/0xf80
[  734.309835][T27618]  ? clear_bhb_loop+0x40/0x90
[  734.309848][T27618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.309860][T27618] RIP: 0033:0x7f781559c819
[  734.309870][T27618] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  734.309880][T27618] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  734.309891][T27618] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  734.309898][T27618] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000003
[  734.309904][T27618] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  734.309910][T27618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  734.309916][T27618] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  734.309931][T27618]  </TASK>
[  734.428237][T27621] FAULT_INJECTION: forcing a failure.
[  734.428237][T27621] name failslab, interval 1, probability 0, space 0, times 0
[  734.435014][T27621] CPU: 2 UID: 0 PID: 27621 Comm: syz.6.6545 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  734.435046][T27621] Tainted: [L]=SOFTLOCKUP
[  734.435052][T27621] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  734.435063][T27621] Call Trace:
[  734.435070][T27621]  <TASK>
[  734.435077][T27621]  dump_stack_lvl+0x100/0x190
[  734.435111][T27621]  should_fail_ex.cold+0x5/0xa
[  734.435136][T27621]  should_failslab+0xc2/0x120
[  734.435158][T27621]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  734.435186][T27621]  ? skb_clone+0x190/0x400
[  734.435217][T27621]  skb_clone+0x190/0x400
[  734.435240][T27621]  netlink_deliver_tap+0xaed/0xcc0
[  734.435335][T27621]  netlink_unicast+0x650/0x870
[  734.435357][T27621]  ? __pfx_netlink_unicast+0x10/0x10
[  734.435405][T27621]  netlink_sendmsg+0x8b0/0xda0
[  734.435426][T27621]  ? __pfx_netlink_sendmsg+0x10/0x10
[  734.435441][T27621]  ? __might_fault+0x30/0x140
[  734.435472][T27621]  ____sys_sendmsg+0x9e1/0xb70
[  734.435493][T27621]  ? __pfx_netlink_sendmsg+0x10/0x10
[  734.435514][T27621]  ? __pfx_____sys_sendmsg+0x10/0x10
[  734.435541][T27621]  ___sys_sendmsg+0x190/0x1e0
[  734.435561][T27621]  ? __pfx____sys_sendmsg+0x10/0x10
[  734.435607][T27621]  __sys_sendmsg+0x170/0x220
[  734.435633][T27621]  ? __pfx___sys_sendmsg+0x10/0x10
[  734.435675][T27621]  do_syscall_64+0x106/0xf80
[  734.435691][T27621]  ? clear_bhb_loop+0x40/0x90
[  734.435717][T27621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.435734][T27621] RIP: 0033:0x7f781559c819
[  734.435749][T27621] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  734.435765][T27621] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  734.435785][T27621] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  734.435798][T27621] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[  734.435810][T27621] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  734.435820][T27621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  734.435829][T27621] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  734.435852][T27621]  </TASK>
[  734.686736][T27629] lo: entered allmulticast mode
[  734.690407][T27629] FAULT_INJECTION: forcing a failure.
[  734.690407][T27629] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  734.696293][T27629] CPU: 0 UID: 0 PID: 27629 Comm: syz.5.6548 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  734.696319][T27629] Tainted: [L]=SOFTLOCKUP
[  734.696324][T27629] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  734.696334][T27629] Call Trace:
[  734.696339][T27629]  <TASK>
[  734.696345][T27629]  dump_stack_lvl+0x100/0x190
[  734.696374][T27629]  should_fail_ex.cold+0x5/0xa
[  734.696394][T27629]  _copy_from_user+0x2e/0xd0
[  734.696412][T27629]  kstrtouint_from_user+0xd6/0x1d0
[  734.696433][T27629]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  734.696452][T27629]  ? __lock_acquire+0x4a5/0x2630
[  734.696469][T27629]  ? lock_acquire+0x1cf/0x380
[  734.696488][T27629]  proc_fail_nth_write+0x83/0x220
[  734.696510][T27629]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  734.696537][T27629]  vfs_write+0x2aa/0x1070
[  734.696553][T27629]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  734.696575][T27629]  ? __pfx_vfs_write+0x10/0x10
[  734.696586][T27629]  ? __fget_files+0x215/0x3d0
[  734.696607][T27629]  ? __fget_files+0x21f/0x3d0
[  734.696629][T27629]  ksys_write+0x12a/0x250
[  734.696643][T27629]  ? __pfx_ksys_write+0x10/0x10
[  734.696665][T27629]  do_syscall_64+0x106/0xf80
[  734.696680][T27629]  ? clear_bhb_loop+0x40/0x90
[  734.696700][T27629]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.696716][T27629] RIP: 0033:0x7feb3755d04e
[  734.696729][T27629] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  734.696743][T27629] RSP: 002b:00007feb383a6fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  734.696767][T27629] RAX: ffffffffffffffda RBX: 00007feb383a76c0 RCX: 00007feb3755d04e
[  734.696776][T27629] RDX: 0000000000000001 RSI: 00007feb383a70a0 RDI: 0000000000000006
[  734.696784][T27629] RBP: 00007feb383a7090 R08: 0000000000000000 R09: 0000000000000000
[  734.696793][T27629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  734.696801][T27629] R13: 00007feb37816038 R14: 00007feb37815fa0 R15: 00007fff07491c38
[  734.696822][T27629]  </TASK>
[  734.799921][T27634] netlink: 104 bytes leftover after parsing attributes in process `syz.5.6551'.
[  734.864369][   T40] audit: type=1400 audit(1775987428.978:1420): avc:  denied  { mount } for  pid=27638 comm="syz.5.6552" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  735.082646][   T50] usb 7-1: new high-speed USB device number 77 using dummy_hcd
[  735.150908][T27647] XFS (nullb0): Invalid superblock magic number
[  735.242598][   T50] usb 7-1: Using ep0 maxpacket: 32
[  735.246600][   T50] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  735.249430][   T50] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  735.252056][   T50] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  735.255838][   T50] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  735.259364][   T50] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  735.262379][   T50] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  735.265675][   T50] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  735.268714][   T50] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  735.272927][   T50] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  735.277345][   T50] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  735.285489][   T50] usb 7-1: config 0 descriptor??
[  735.473406][T27667] FAULT_INJECTION: forcing a failure.
[  735.473406][T27667] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  735.484205][T27667] CPU: 3 UID: 0 PID: 27667 Comm: syz.4.6560 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  735.484308][T27667] Tainted: [L]=SOFTLOCKUP
[  735.484316][T27667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  735.484327][T27667] Call Trace:
[  735.484333][T27667]  <TASK>
[  735.484343][T27667]  dump_stack_lvl+0x100/0x190
[  735.484378][T27667]  should_fail_ex.cold+0x5/0xa
[  735.484403][T27667]  _copy_from_user+0x2e/0xd0
[  735.484427][T27667]  move_addr_to_kernel+0x65/0x170
[  735.484452][T27667]  copy_msghdr_from_user+0x417/0x4f0
[  735.484473][T27667]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  735.484505][T27667]  ___sys_sendmsg+0x106/0x1e0
[  735.484529][T27667]  ? __pfx____sys_sendmsg+0x10/0x10
[  735.484577][T27667]  __sys_sendmsg+0x170/0x220
[  735.484604][T27667]  ? __pfx___sys_sendmsg+0x10/0x10
[  735.484644][T27667]  do_syscall_64+0x106/0xf80
[  735.484662][T27667]  ? clear_bhb_loop+0x40/0x90
[  735.484685][T27667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  735.484703][T27667] RIP: 0033:0x7ffa4eb9c819
[  735.484720][T27667] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  735.484737][T27667] RSP: 002b:00007ffa4fab7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  735.484756][T27667] RAX: ffffffffffffffda RBX: 00007ffa4ee15fa0 RCX: 00007ffa4eb9c819
[  735.484768][T27667] RDX: 0000000000000004 RSI: 00002000000000c0 RDI: 0000000000000007
[  735.484779][T27667] RBP: 00007ffa4fab7090 R08: 0000000000000000 R09: 0000000000000000
[  735.484789][T27667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  735.484800][T27667] R13: 00007ffa4ee16038 R14: 00007ffa4ee15fa0 R15: 00007ffd75a3fb48
[  735.484824][T27667]  </TASK>
[  735.494768][   T50] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 77 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  735.524645][T18137] hid-generic 0005:0B57:0006.002D: item fetching failed at offset 0/1
[  735.573462][T18137] hid-generic 0005:0B57:0006.002D: probe with driver hid-generic failed with error -22
[  735.575236][T27674] genirq: Flags mismatch irq 31. 00200000 (comedi_parport) vs. 00200000 (virtio0-cursor)
[  735.587281][T27674] netlink: 'syz.5.6562': attribute type 2 has an invalid length.
[  735.589912][T27674] netlink: 68 bytes leftover after parsing attributes in process `syz.5.6562'.
[  735.649056][T27676] MTD: Attempt to mount non-MTD device "/dev/loop6"
[  735.655543][T27676] cramfs: wrong magic
[  735.660732][   T40] audit: type=1400 audit(1775987429.768:1421): avc:  denied  { accept } for  pid=27675 comm="syz.6.6563" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  735.729941][T27684] netlink: 92 bytes leftover after parsing attributes in process `syz.5.6565'.
[  735.796154][T27635] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  735.796232][T27690] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6568'.
[  735.827664][T27690] netlink: 'syz.6.6568': attribute type 1 has an invalid length.
[  735.846711][T27690] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=27690 comm=syz.6.6568
[  735.854731][T27694] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  735.899765][T27696] FAULT_INJECTION: forcing a failure.
[  735.899765][T27696] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  735.907662][T27696] CPU: 2 UID: 0 PID: 27696 Comm: syz.6.6570 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  735.907700][T27696] Tainted: [L]=SOFTLOCKUP
[  735.907707][T27696] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  735.907716][T27696] Call Trace:
[  735.907726][T27696]  <TASK>
[  735.907734][T27696]  dump_stack_lvl+0x100/0x190
[  735.907768][T27696]  should_fail_ex.cold+0x5/0xa
[  735.907792][T27696]  _copy_from_iter+0x1f4/0x1690
[  735.907817][T27696]  ? __asan_memset+0x23/0x50
[  735.907843][T27696]  ? __pfx__copy_from_iter+0x10/0x10
[  735.907864][T27696]  ? __pfx___alloc_skb+0x10/0x10
[  735.907900][T27696]  netlink_sendmsg+0x808/0xda0
[  735.907924][T27696]  ? __pfx_netlink_sendmsg+0x10/0x10
[  735.907939][T27696]  ? __might_fault+0x30/0x140
[  735.907973][T27696]  ____sys_sendmsg+0x9e1/0xb70
[  735.907993][T27696]  ? __pfx_netlink_sendmsg+0x10/0x10
[  735.908018][T27696]  ? __pfx_____sys_sendmsg+0x10/0x10
[  735.908042][T27696]  ? __pfx__kstrtoull+0x10/0x10
[  735.908079][T27696]  ___sys_sendmsg+0x190/0x1e0
[  735.908103][T27696]  ? __pfx____sys_sendmsg+0x10/0x10
[  735.908135][T27696]  ? find_held_lock+0x2b/0x80
[  735.908173][T27696]  __sys_sendmmsg+0x205/0x430
[  735.908201][T27696]  ? __pfx___sys_sendmmsg+0x10/0x10
[  735.908235][T27696]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  735.908264][T27696]  ? fput+0x79/0x100
[  735.908285][T27696]  ? ksys_write+0x1ac/0x250
[  735.908301][T27696]  ? __pfx_ksys_write+0x10/0x10
[  735.908317][T27696]  ? fput+0x79/0x100
[  735.908341][T27696]  __x64_sys_sendmmsg+0x9c/0x100
[  735.908367][T27696]  ? lockdep_hardirqs_on+0x78/0x100
[  735.908384][T27696]  do_syscall_64+0x106/0xf80
[  735.908400][T27696]  ? clear_bhb_loop+0x40/0x90
[  735.908426][T27696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  735.908450][T27696] RIP: 0033:0x7f781559c819
[  735.908465][T27696] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  735.908483][T27696] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  735.908502][T27696] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  735.908513][T27696] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000007
[  735.908524][T27696] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  735.908535][T27696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  735.908545][T27696] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  735.908570][T27696]  </TASK>
[  735.912446][T27635] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  735.996151][T27702] xt_time: unknown flags 0xf4
[  736.019796][ T5978] usb 7-1: USB disconnect, device number 77
[  736.027968][ T5978] usblp0: removed
[  736.052659][T17880] usb 10-1: new high-speed USB device number 39 using dummy_hcd
[  736.070541][T27707] syz_tun: entered allmulticast mode
[  736.204767][T17880] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  736.209359][T17880] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  736.213770][T17880] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  736.217512][T17880] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  736.225319][T27692] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  736.231069][T17880] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  736.421473][T27716] FAULT_INJECTION: forcing a failure.
[  736.421473][T27716] name failslab, interval 1, probability 0, space 0, times 0
[  736.425755][T27716] CPU: 1 UID: 0 PID: 27716 Comm: syz.6.6577 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  736.425773][T27716] Tainted: [L]=SOFTLOCKUP
[  736.425777][T27716] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  736.425785][T27716] Call Trace:
[  736.425790][T27716]  <TASK>
[  736.425796][T27716]  dump_stack_lvl+0x100/0x190
[  736.425819][T27716]  should_fail_ex.cold+0x5/0xa
[  736.425834][T27716]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  736.425849][T27716]  should_failslab+0xc2/0x120
[  736.425861][T27716]  __kmalloc_noprof+0xe0/0x850
[  736.425880][T27716]  genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  736.425895][T27716]  ? cred_has_capability.isra.0+0x186/0x300
[  736.425915][T27716]  genl_family_rcv_msg_doit+0xc7/0x300
[  736.425929][T27716]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  736.425947][T27716]  ? bpf_lsm_capable+0x9/0x10
[  736.425958][T27716]  ? security_capable+0x80/0x260
[  736.425973][T27716]  ? ns_capable+0xd2/0xf0
[  736.425989][T27716]  genl_rcv_msg+0x560/0x800
[  736.426008][T27716]  ? __pfx_genl_rcv_msg+0x10/0x10
[  736.426022][T27716]  ? __pfx_ovs_flow_cmd_set+0x10/0x10
[  736.426204][T27716]  netlink_rcv_skb+0x159/0x420
[  736.426215][T27716]  ? __pfx_genl_rcv_msg+0x10/0x10
[  736.426228][T27716]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  736.426245][T27716]  ? netlink_deliver_tap+0x1ae/0xcc0
[  736.426264][T27716]  genl_rcv+0x28/0x40
[  736.426275][T27716]  netlink_unicast+0x5aa/0x870
[  736.426288][T27716]  ? __pfx_netlink_unicast+0x10/0x10
[  736.426303][T27716]  netlink_sendmsg+0x8b0/0xda0
[  736.426316][T27716]  ? __pfx_netlink_sendmsg+0x10/0x10
[  736.426326][T27716]  ? __might_fault+0x30/0x140
[  736.426346][T27716]  ____sys_sendmsg+0x9e1/0xb70
[  736.426358][T27716]  ? __pfx_netlink_sendmsg+0x10/0x10
[  736.426370][T27716]  ? __pfx_____sys_sendmsg+0x10/0x10
[  736.426388][T27716]  ___sys_sendmsg+0x190/0x1e0
[  736.426402][T27716]  ? __pfx____sys_sendmsg+0x10/0x10
[  736.426450][T27716]  __sys_sendmsg+0x170/0x220
[  736.426483][T27716]  ? __pfx___sys_sendmsg+0x10/0x10
[  736.426508][T27716]  do_syscall_64+0x106/0xf80
[  736.426519][T27716]  ? clear_bhb_loop+0x40/0x90
[  736.426532][T27716]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  736.426544][T27716] RIP: 0033:0x7f781559c819
[  736.426555][T27716] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  736.426566][T27716] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  736.426577][T27716] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  736.426584][T27716] RDX: 000000000000c020 RSI: 0000200000000000 RDI: 0000000000000003
[  736.426590][T27716] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  736.426596][T27716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  736.426603][T27716] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  736.426617][T27716]  </TASK>
[  736.625437][T27725] FAULT_INJECTION: forcing a failure.
[  736.625437][T27725] name failslab, interval 1, probability 0, space 0, times 0
[  736.630684][T27725] CPU: 3 UID: 0 PID: 27725 Comm: syz.6.6581 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  736.630712][T27725] Tainted: [L]=SOFTLOCKUP
[  736.630719][T27725] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  736.630730][T27725] Call Trace:
[  736.630738][T27725]  <TASK>
[  736.630745][T27725]  dump_stack_lvl+0x100/0x190
[  736.630780][T27725]  should_fail_ex.cold+0x5/0xa
[  736.630805][T27725]  should_failslab+0xc2/0x120
[  736.630824][T27725]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  736.630851][T27725]  ? skb_clone+0x190/0x400
[  736.630883][T27725]  skb_clone+0x190/0x400
[  736.630910][T27725]  netlink_deliver_tap+0xaed/0xcc0
[  736.630944][T27725]  netlink_unicast+0x650/0x870
[  736.630966][T27725]  ? __pfx_netlink_unicast+0x10/0x10
[  736.630999][T27725]  netlink_sendmsg+0x8b0/0xda0
[  736.631021][T27725]  ? __pfx_netlink_sendmsg+0x10/0x10
[  736.631038][T27725]  ? __might_fault+0x30/0x140
[  736.631073][T27725]  ____sys_sendmsg+0x9e1/0xb70
[  736.631092][T27725]  ? __pfx_netlink_sendmsg+0x10/0x10
[  736.631112][T27725]  ? __pfx_____sys_sendmsg+0x10/0x10
[  736.631144][T27725]  ___sys_sendmsg+0x190/0x1e0
[  736.631167][T27725]  ? __pfx____sys_sendmsg+0x10/0x10
[  736.631220][T27725]  __sys_sendmsg+0x170/0x220
[  736.631246][T27725]  ? __pfx___sys_sendmsg+0x10/0x10
[  736.631290][T27725]  do_syscall_64+0x106/0xf80
[  736.631307][T27725]  ? clear_bhb_loop+0x40/0x90
[  736.631331][T27725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  736.631350][T27725] RIP: 0033:0x7f781559c819
[  736.631388][T27725] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  736.631406][T27725] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  736.631425][T27725] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  736.631438][T27725] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  736.631449][T27725] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  736.631460][T27725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  736.631471][T27725] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  736.631497][T27725]  </TASK>
[  736.631540][T27725] netlink: 92 bytes leftover after parsing attributes in process `syz.6.6581'.
[  736.754269][T27734] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  736.855026][T27745] FAULT_INJECTION: forcing a failure.
[  736.855026][T27745] name failslab, interval 1, probability 0, space 0, times 0
[  736.860167][T27745] CPU: 1 UID: 0 PID: 27745 Comm: syz.4.6588 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  736.860200][T27745] Tainted: [L]=SOFTLOCKUP
[  736.860206][T27745] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  736.860218][T27745] Call Trace:
[  736.860225][T27745]  <TASK>
[  736.860233][T27745]  dump_stack_lvl+0x100/0x190
[  736.860266][T27745]  should_fail_ex.cold+0x5/0xa
[  736.860292][T27745]  should_failslab+0xc2/0x120
[  736.860310][T27745]  __kmalloc_cache_noprof+0x7a/0x6f0
[  736.860333][T27745]  ? kvm_hv_vcpu_init+0xa4/0x7a0
[  736.860357][T27745]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  736.860386][T27745]  kvm_hv_vcpu_init+0xa4/0x7a0
[  736.860412][T27745]  kvm_hv_set_msr_common+0x102/0x38c0
[  736.860440][T27745]  ? __pfx_kvm_hv_set_msr_common+0x10/0x10
[  736.860467][T27745]  ? stack_trace_save+0x8e/0xc0
[  736.860491][T27745]  ? __pfx_stack_trace_save+0x10/0x10
[  736.860515][T27745]  ? stack_depot_save_flags+0x27/0x9d0
[  736.860542][T27745]  kvm_set_msr_common+0x1389/0x3fe0
[  736.860567][T27745]  ? __pfx_kvm_set_msr_common+0x10/0x10
[  736.860586][T27745]  ? kvm_vcpu_ioctl+0x8a0/0x1730
[  736.860612][T27745]  ? do_syscall_64+0x106/0xf80
[  736.860629][T27745]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  736.860653][T27745]  vmx_set_msr+0x220d/0x3800
[  736.860674][T27745]  ? __pfx_vmx_set_msr+0x10/0x10
[  736.860699][T27745]  __kvm_set_msr+0x14f/0x880
[  736.860725][T27745]  ? __pfx___kvm_set_msr+0x10/0x10
[  736.860756][T27745]  kvm_set_msr_ignored_check+0x2f/0x350
[  736.860782][T27745]  ? __might_fault+0xc5/0x140
[  736.860809][T27745]  do_set_msr+0x19e/0x2d0
[  736.860833][T27745]  ? __pfx_do_set_msr+0x10/0x10
[  736.860857][T27745]  ? _copy_from_user+0x59/0xd0
[  736.860880][T27745]  msr_io+0x1c0/0x480
[  736.860900][T27745]  ? __pfx_do_set_msr+0x10/0x10
[  736.860926][T27745]  ? __pfx_msr_io+0x10/0x10
[  736.860948][T27745]  ? __kernel_text_address+0xd/0x30
[  736.860975][T27745]  kvm_arch_vcpu_ioctl+0xd32/0x5740
[  736.860996][T27745]  ? kvm_arch_vcpu_ioctl+0xd14/0x5740
[  736.861025][T27745]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  736.861047][T27745]  ? __pfx_stack_trace_save+0x10/0x10
[  736.861072][T27745]  ? stack_depot_save_flags+0x27/0x9d0
[  736.861094][T27745]  ? __lock_acquire+0x4a5/0x2630
[  736.861114][T27745]  ? tomoyo_path_number_perm+0x46d/0x580
[  736.861142][T27745]  ? __lock_acquire+0x4a5/0x2630
[  736.861159][T27745]  ? do_syscall_64+0x106/0xf80
[  736.861174][T27745]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  736.861201][T27745]  ? lock_acquire+0x1cf/0x380
[  736.861223][T27745]  ? rcu_is_watching+0x12/0xc0
[  736.861246][T27745]  ? trace_contention_end+0x140/0x180
[  736.861267][T27745]  ? __mutex_lock+0x26a/0x1b90
[  736.861287][T27745]  ? kvm_vcpu_ioctl+0x322/0x1730
[  736.861315][T27745]  ? __pfx___mutex_lock+0x10/0x10
[  736.861332][T27745]  ? kasan_quarantine_put+0x104/0x240
[  736.861356][T27745]  ? lockdep_hardirqs_on+0x78/0x100
[  736.861377][T27745]  ? tomoyo_path_number_perm+0x28f/0x580
[  736.861406][T27745]  ? tomoyo_path_number_perm+0x188/0x580
[  736.861434][T27745]  ? kvm_vcpu_ioctl+0x8a0/0x1730
[  736.861457][T27745]  kvm_vcpu_ioctl+0x8a0/0x1730
[  736.861486][T27745]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  736.861513][T27745]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  736.861541][T27745]  ? do_vfs_ioctl+0x226/0x13e0
[  736.861568][T27745]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  736.861597][T27745]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  736.861632][T27745]  ? __fget_files+0x215/0x3d0
[  736.861650][T27745]  ? hook_file_ioctl_common+0x146/0x410
[  736.861676][T27745]  ? selinux_file_ioctl+0x139/0x290
[  736.861701][T27745]  ? selinux_file_ioctl+0xb4/0x290
[  736.861729][T27745]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  736.861754][T27745]  __x64_sys_ioctl+0x18e/0x210
[  736.861789][T27745]  do_syscall_64+0x106/0xf80
[  736.861804][T27745]  ? clear_bhb_loop+0x40/0x90
[  736.861826][T27745]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  736.861844][T27745] RIP: 0033:0x7ffa4eb9c819
[  736.861860][T27745] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  736.861878][T27745] RSP: 002b:00007ffa4fab7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  736.861897][T27745] RAX: ffffffffffffffda RBX: 00007ffa4ee15fa0 RCX: 00007ffa4eb9c819
[  736.861909][T27745] RDX: 0000200000000080 RSI: 000000004008ae89 RDI: 0000000000000005
[  736.861919][T27745] RBP: 00007ffa4fab7090 R08: 0000000000000000 R09: 0000000000000000
[  736.861930][T27745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  736.861941][T27745] R13: 00007ffa4ee16038 R14: 00007ffa4ee15fa0 R15: 00007ffd75a3fb48
[  736.861966][T27745]  </TASK>
[  736.872749][T27747] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6589'.
[  736.883696][T18589] usb 10-1: USB disconnect, device number 39
[  737.162041][T18137] usb 11-1: new high-speed USB device number 34 using dummy_hcd
[  737.336326][T18137] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  737.340574][T27753] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6591'.
[  737.340674][T18137] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  737.350639][T18137] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  737.354858][T18137] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  737.371998][T27749] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  737.376838][T18137] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  737.427912][T27762] FAULT_INJECTION: forcing a failure.
[  737.427912][T27762] name failslab, interval 1, probability 0, space 0, times 0
[  737.432228][T27762] CPU: 0 UID: 0 PID: 27762 Comm: syz.4.6594 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  737.432247][T27762] Tainted: [L]=SOFTLOCKUP
[  737.432251][T27762] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  737.432258][T27762] Call Trace:
[  737.432264][T27762]  <TASK>
[  737.432269][T27762]  dump_stack_lvl+0x100/0x190
[  737.432292][T27762]  should_fail_ex.cold+0x5/0xa
[  737.432307][T27762]  should_failslab+0xc2/0x120
[  737.432319][T27762]  __kmalloc_cache_noprof+0x7a/0x6f0
[  737.432334][T27762]  ? tc_new_tfilter+0xe17/0x24a0
[  737.432345][T27762]  ? tcf_chain_tp_find+0x2b5/0x470
[  737.432363][T27762]  tc_new_tfilter+0xe17/0x24a0
[  737.432379][T27762]  ? avc_has_perm_noaudit+0xe0/0x3b0
[  737.432392][T27762]  ? avc_has_perm_noaudit+0x11e/0x3b0
[  737.432405][T27762]  ? __pfx_tc_new_tfilter+0x10/0x10
[  737.432421][T27762]  ? __lock_acquire+0x4a5/0x2630
[  737.432440][T27762]  ? find_held_lock+0x2b/0x80
[  737.432526][T27762]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  737.432545][T27762]  ? __pfx_tc_new_tfilter+0x10/0x10
[  737.432556][T27762]  rtnetlink_rcv_msg+0x95e/0xe90
[  737.432574][T27762]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  737.432594][T27762]  ? ref_tracker_free+0x37e/0x6c0
[  737.432610][T27762]  netlink_rcv_skb+0x159/0x420
[  737.432622][T27762]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  737.432639][T27762]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  737.432655][T27762]  ? netlink_deliver_tap+0x1ae/0xcc0
[  737.432675][T27762]  netlink_unicast+0x5aa/0x870
[  737.432688][T27762]  ? __pfx_netlink_unicast+0x10/0x10
[  737.432704][T27762]  netlink_sendmsg+0x8b0/0xda0
[  737.432717][T27762]  ? __pfx_netlink_sendmsg+0x10/0x10
[  737.432727][T27762]  ? __might_fault+0x30/0x140
[  737.432748][T27762]  ____sys_sendmsg+0x9e1/0xb70
[  737.432763][T27762]  ? __pfx_netlink_sendmsg+0x10/0x10
[  737.432775][T27762]  ? __pfx_____sys_sendmsg+0x10/0x10
[  737.432793][T27762]  ___sys_sendmsg+0x190/0x1e0
[  737.432807][T27762]  ? __pfx____sys_sendmsg+0x10/0x10
[  737.432837][T27762]  __sys_sendmsg+0x170/0x220
[  737.432853][T27762]  ? __pfx___sys_sendmsg+0x10/0x10
[  737.432878][T27762]  do_syscall_64+0x106/0xf80
[  737.432889][T27762]  ? clear_bhb_loop+0x40/0x90
[  737.432903][T27762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  737.432915][T27762] RIP: 0033:0x7ffa4eb9c819
[  737.432925][T27762] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  737.432936][T27762] RSP: 002b:00007ffa4fab7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  737.432947][T27762] RAX: ffffffffffffffda RBX: 00007ffa4ee15fa0 RCX: 00007ffa4eb9c819
[  737.432954][T27762] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000008
[  737.432961][T27762] RBP: 00007ffa4fab7090 R08: 0000000000000000 R09: 0000000000000000
[  737.432967][T27762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  737.432973][T27762] R13: 00007ffa4ee16038 R14: 00007ffa4ee15fa0 R15: 00007ffd75a3fb48
[  737.432987][T27762]  </TASK>
[  737.578414][T27749] FAULT_INJECTION: forcing a failure.
[  737.578414][T27749] name failslab, interval 1, probability 0, space 0, times 0
[  737.582881][T27749] CPU: 2 UID: 0 PID: 27749 Comm: syz.6.6590 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  737.582900][T27749] Tainted: [L]=SOFTLOCKUP
[  737.582904][T27749] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  737.582911][T27749] Call Trace:
[  737.582916][T27749]  <TASK>
[  737.582922][T27749]  dump_stack_lvl+0x100/0x190
[  737.582946][T27749]  should_fail_ex.cold+0x5/0xa
[  737.582975][T27749]  should_failslab+0xc2/0x120
[  737.582988][T27749]  __kmalloc_cache_noprof+0x7a/0x6f0
[  737.583002][T27749]  ? snd_seq_port_connect+0x61/0x560
[  737.583079][T27749]  ? snd_seq_port_use_ptr+0x14d/0x1b0
[  737.583090][T27749]  ? snd_seq_port_use_ptr+0x14d/0x1b0
[  737.583102][T27749]  snd_seq_port_connect+0x61/0x560
[  737.583114][T27749]  ? _raw_read_unlock+0x28/0x50
[  737.583131][T27749]  ? check_subscription_permission.isra.0+0x146/0x240
[  737.583146][T27749]  snd_seq_ioctl_subscribe_port+0x219/0x490
[  737.583160][T27749]  ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10
[  737.583174][T27749]  ? do_raw_spin_lock+0x128/0x260
[  737.583199][T27749]  call_seq_client_ctl+0xa3/0x130
[  737.583216][T27749]  snd_seq_kernel_client_ctl+0x77/0xd0
[  737.583239][T27749]  snd_seq_oss_midi_open+0x5ad/0x6b0
[  737.583263][T27749]  ? __pfx_snd_seq_oss_midi_open+0x10/0x10
[  737.583286][T27749]  ? snd_seq_oss_midi_reset+0x11a/0x4c0
[  737.583311][T27749]  ? __mutex_lock+0x26a/0x1b90
[  737.583329][T27749]  ? get_pid_task+0x106/0x250
[  737.583346][T27749]  snd_seq_oss_synth_reset+0x439/0x8e0
[  737.583398][T27749]  ? __pfx___mutex_lock+0x10/0x10
[  737.583416][T27749]  ? __pfx_snd_seq_oss_synth_reset+0x10/0x10
[  737.583434][T27749]  ? __pfx___fsnotify_parent+0x10/0x10
[  737.583451][T27749]  snd_seq_oss_reset+0x73/0x290
[  737.583463][T27749]  ? __pfx_odev_release+0x10/0x10
[  737.583475][T27749]  snd_seq_oss_release+0x7c/0x180
[  737.583487][T27749]  ? __pfx_odev_release+0x10/0x10
[  737.583497][T27749]  odev_release+0x56/0xa0
[  737.583508][T27749]  __fput+0x3ff/0xb40
[  737.583525][T27749]  fput_close_sync+0x118/0x250
[  737.583541][T27749]  ? __pfx_fput_close_sync+0x10/0x10
[  737.583572][T27749]  __x64_sys_close+0x8b/0x120
[  737.583587][T27749]  do_syscall_64+0x106/0xf80
[  737.583598][T27749]  ? clear_bhb_loop+0x40/0x90
[  737.583612][T27749]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  737.583624][T27749] RIP: 0033:0x7f781559c819
[  737.583635][T27749] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  737.583647][T27749] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  737.583658][T27749] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  737.583665][T27749] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  737.583671][T27749] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  737.583677][T27749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  737.583683][T27749] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  737.583698][T27749]  </TASK>
[  737.704531][T18589] usb 11-1: USB disconnect, device number 34
[  737.782671][T17880] usb 10-1: new high-speed USB device number 40 using dummy_hcd
[  737.789757][T27772] FAULT_INJECTION: forcing a failure.
[  737.789757][T27772] name failslab, interval 1, probability 0, space 0, times 0
[  737.794133][T27772] CPU: 1 UID: 0 PID: 27772 Comm: syz.4.6598 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  737.794151][T27772] Tainted: [L]=SOFTLOCKUP
[  737.794156][T27772] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  737.794163][T27772] Call Trace:
[  737.794168][T27772]  <TASK>
[  737.794173][T27772]  dump_stack_lvl+0x100/0x190
[  737.794196][T27772]  should_fail_ex.cold+0x5/0xa
[  737.794212][T27772]  should_failslab+0xc2/0x120
[  737.794225][T27772]  __kmalloc_cache_noprof+0x7a/0x6f0
[  737.794240][T27772]  ? do_proc_control+0x334/0xe50
[  737.794252][T27772]  ? __asan_memset+0x23/0x50
[  737.794270][T27772]  do_proc_control+0x334/0xe50
[  737.794287][T27772]  ? __pfx_do_proc_control+0x10/0x10
[  737.794304][T27772]  usbdev_ioctl+0x1a28/0x3aa0
[  737.794319][T27772]  ? __pfx_usbdev_ioctl+0x10/0x10
[  737.794335][T27772]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  737.794352][T27772]  ? do_vfs_ioctl+0x226/0x13e0
[  737.794372][T27772]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  737.794393][T27772]  ? __fget_files+0x215/0x3d0
[  737.794405][T27772]  ? hook_file_ioctl_common+0x146/0x410
[  737.794421][T27772]  ? selinux_file_ioctl+0x139/0x290
[  737.794436][T27772]  ? selinux_file_ioctl+0xb4/0x290
[  737.794454][T27772]  ? __pfx_usbdev_ioctl+0x10/0x10
[  737.794467][T27772]  __x64_sys_ioctl+0x18e/0x210
[  737.794485][T27772]  do_syscall_64+0x106/0xf80
[  737.794496][T27772]  ? clear_bhb_loop+0x40/0x90
[  737.794510][T27772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  737.794521][T27772] RIP: 0033:0x7ffa4eb9c819
[  737.794531][T27772] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  737.794541][T27772] RSP: 002b:00007ffa4fab7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  737.794552][T27772] RAX: ffffffffffffffda RBX: 00007ffa4ee15fa0 RCX: 00007ffa4eb9c819
[  737.794559][T27772] RDX: 0000200000000400 RSI: 00000000c0185500 RDI: 0000000000000003
[  737.794566][T27772] RBP: 00007ffa4fab7090 R08: 0000000000000000 R09: 0000000000000000
[  737.794572][T27772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  737.794579][T27772] R13: 00007ffa4ee16038 R14: 00007ffa4ee15fa0 R15: 00007ffd75a3fb48
[  737.794593][T27772]  </TASK>
[  737.932869][T17880] usb 10-1: Using ep0 maxpacket: 32
[  737.943295][T17880] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  737.948453][T17880] usb 10-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  737.951531][T17880] usb 10-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  737.955486][T17880] usb 10-1: Product: syz
[  737.956955][T17880] usb 10-1: Manufacturer: syz
[  737.958424][T17880] usb 10-1: SerialNumber: syz
[  737.961796][T17880] usb 10-1: config 0 descriptor??
[  737.965304][T27767] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  737.970143][T17880] hub 10-1:0.0: bad descriptor, ignoring hub
[  737.971077][T27776] FAULT_INJECTION: forcing a failure.
[  737.971077][T27776] name failslab, interval 1, probability 0, space 0, times 0
[  737.973481][T17880] hub 10-1:0.0: probe with driver hub failed with error -5
[  737.982114][T27776] CPU: 2 UID: 0 PID: 27776 Comm: syz.2.6600 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  737.982142][T27776] Tainted: [L]=SOFTLOCKUP
[  737.982147][T27776] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  737.982156][T27776] Call Trace:
[  737.982162][T27776]  <TASK>
[  737.982169][T27776]  dump_stack_lvl+0x100/0x190
[  737.982199][T27776]  should_fail_ex.cold+0x5/0xa
[  737.982220][T27776]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  737.982239][T27776]  should_failslab+0xc2/0x120
[  737.982257][T27776]  __kmalloc_noprof+0xe0/0x850
[  737.982284][T27776]  genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  737.982305][T27776]  ? cred_has_capability.isra.0+0x186/0x300
[  737.982335][T27776]  genl_family_rcv_msg_doit+0xc7/0x300
[  737.982358][T27776]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  737.982384][T27776]  ? bpf_lsm_capable+0x9/0x10
[  737.982420][T27776]  ? security_capable+0x80/0x260
[  737.982444][T27776]  ? ns_capable+0xd2/0xf0
[  737.982467][T27776]  genl_rcv_msg+0x560/0x800
[  737.982490][T27776]  ? __pfx_genl_rcv_msg+0x10/0x10
[  737.982507][T27776]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  737.982597][T27776]  ? __pfx_nl80211_join_mesh+0x10/0x10
[  737.982618][T27776]  ? __pfx_nl80211_post_doit+0x10/0x10
[  737.982655][T27776]  netlink_rcv_skb+0x159/0x420
[  737.982673][T27776]  ? __pfx_genl_rcv_msg+0x10/0x10
[  737.982691][T27776]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  737.982717][T27776]  ? netlink_deliver_tap+0x1ae/0xcc0
[  737.982747][T27776]  genl_rcv+0x28/0x40
[  737.982764][T27776]  netlink_unicast+0x5aa/0x870
[  737.982786][T27776]  ? __pfx_netlink_unicast+0x10/0x10
[  737.982815][T27776]  netlink_sendmsg+0x8b0/0xda0
[  737.982838][T27776]  ? __pfx_netlink_sendmsg+0x10/0x10
[  737.982855][T27776]  ? __might_fault+0x30/0x140
[  737.982890][T27776]  ____sys_sendmsg+0x9e1/0xb70
[  737.982910][T27776]  ? __pfx_netlink_sendmsg+0x10/0x10
[  737.982931][T27776]  ? __pfx_____sys_sendmsg+0x10/0x10
[  737.982961][T27776]  ___sys_sendmsg+0x190/0x1e0
[  737.982990][T27776]  ? __pfx____sys_sendmsg+0x10/0x10
[  737.983044][T27776]  __sys_sendmsg+0x170/0x220
[  737.983073][T27776]  ? __pfx___sys_sendmsg+0x10/0x10
[  737.983115][T27776]  do_syscall_64+0x106/0xf80
[  737.983133][T27776]  ? clear_bhb_loop+0x40/0x90
[  737.983155][T27776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  737.983174][T27776] RIP: 0033:0x7f98ba79c819
[  737.983192][T27776] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  737.983209][T27776] RSP: 002b:00007f98bb5db028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  737.983227][T27776] RAX: ffffffffffffffda RBX: 00007f98baa15fa0 RCX: 00007f98ba79c819
[  737.983239][T27776] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[  737.983249][T27776] RBP: 00007f98bb5db090 R08: 0000000000000000 R09: 0000000000000000
[  737.983260][T27776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  737.983271][T27776] R13: 00007f98baa16038 R14: 00007f98baa15fa0 R15: 00007fffc36998b8
[  737.983297][T27776]  </TASK>
[  738.153999][T27789] FAULT_INJECTION: forcing a failure.
[  738.153999][T27789] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  738.162639][T27789] CPU: 2 UID: 0 PID: 27789 Comm: syz.2.6604 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  738.162671][T27789] Tainted: [L]=SOFTLOCKUP
[  738.162677][T27789] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  738.162685][T27789] Call Trace:
[  738.162690][T27789]  <TASK>
[  738.162695][T27789]  dump_stack_lvl+0x100/0x190
[  738.162719][T27789]  should_fail_ex.cold+0x5/0xa
[  738.162736][T27789]  _copy_from_iter+0x1f4/0x1690
[  738.162754][T27789]  ? __pfx__copy_from_iter+0x10/0x10
[  738.162766][T27789]  ? _parse_integer_limit+0x17f/0x1d0
[  738.162783][T27789]  ? _kstrtoull+0x13c/0x1f0
[  738.162797][T27789]  ? __pfx__kstrtoull+0x10/0x10
[  738.162814][T27789]  tun_get_user+0x265/0x3e10
[  738.162829][T27789]  ? __lock_acquire+0x4a5/0x2630
[  738.162843][T27789]  ? __pfx_tun_get_user+0x10/0x10
[  738.162856][T27789]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  738.162874][T27789]  ? find_held_lock+0x2b/0x80
[  738.162888][T27789]  ? tun_get+0x191/0x370
[  738.162897][T27789]  ? tun_get+0x191/0x370
[  738.162910][T27789]  tun_chr_write_iter+0xdc/0x200
[  738.162923][T27789]  vfs_write+0x6ac/0x1070
[  738.162935][T27789]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  738.162948][T27789]  ? __pfx_vfs_write+0x10/0x10
[  738.162957][T27789]  ? find_held_lock+0x2b/0x80
[  738.162995][T27789]  ksys_write+0x12a/0x250
[  738.163010][T27789]  ? __pfx_ksys_write+0x10/0x10
[  738.163032][T27789]  do_syscall_64+0x106/0xf80
[  738.163049][T27789]  ? clear_bhb_loop+0x40/0x90
[  738.163070][T27789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  738.163089][T27789] RIP: 0033:0x7f98ba79c819
[  738.163105][T27789] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  738.163122][T27789] RSP: 002b:00007f98bb5db028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  738.163140][T27789] RAX: ffffffffffffffda RBX: 00007f98baa15fa0 RCX: 00007f98ba79c819
[  738.163151][T27789] RDX: 000000000000340a RSI: 0000200000000300 RDI: 0000000000000004
[  738.163158][T27789] RBP: 00007f98bb5db090 R08: 0000000000000000 R09: 0000000000000000
[  738.163164][T27789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  738.163171][T27789] R13: 00007f98baa16038 R14: 00007f98baa15fa0 R15: 00007fffc36998b8
[  738.163185][T27789]  </TASK>
[  738.276755][T18155] usb 10-1: USB disconnect, device number 40
[  738.279073][T27794] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  738.418045][T27805] FAULT_INJECTION: forcing a failure.
[  738.418045][T27805] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  738.422295][T27805] CPU: 0 UID: 0 PID: 27805 Comm: syz.6.6609 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  738.422313][T27805] Tainted: [L]=SOFTLOCKUP
[  738.422318][T27805] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  738.422324][T27805] Call Trace:
[  738.422330][T27805]  <TASK>
[  738.422335][T27805]  dump_stack_lvl+0x100/0x190
[  738.422357][T27805]  should_fail_ex.cold+0x5/0xa
[  738.422373][T27805]  _copy_from_user+0x2e/0xd0
[  738.422387][T27805]  memdup_user+0x6b/0xe0
[  738.422398][T27805]  msr_io+0xea/0x480
[  738.422411][T27805]  ? __pfx_do_set_msr+0x10/0x10
[  738.422427][T27805]  ? __pfx_msr_io+0x10/0x10
[  738.422441][T27805]  ? __kernel_text_address+0xd/0x30
[  738.422457][T27805]  kvm_arch_vcpu_ioctl+0xd32/0x5740
[  738.422488][T27805]  ? kvm_arch_vcpu_ioctl+0xd14/0x5740
[  738.422516][T27805]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  738.422537][T27805]  ? __pfx_stack_trace_save+0x10/0x10
[  738.422559][T27805]  ? stack_depot_save_flags+0x27/0x9d0
[  738.422581][T27805]  ? __lock_acquire+0x4a5/0x2630
[  738.422599][T27805]  ? tomoyo_path_number_perm+0x46d/0x580
[  738.422625][T27805]  ? __lock_acquire+0x4a5/0x2630
[  738.422641][T27805]  ? do_syscall_64+0x106/0xf80
[  738.422658][T27805]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  738.422690][T27805]  ? lock_acquire+0x1cf/0x380
[  738.422712][T27805]  ? rcu_is_watching+0x12/0xc0
[  738.422735][T27805]  ? trace_contention_end+0x140/0x180
[  738.422756][T27805]  ? __mutex_lock+0x26a/0x1b90
[  738.422777][T27805]  ? kvm_vcpu_ioctl+0x322/0x1730
[  738.422809][T27805]  ? __pfx___mutex_lock+0x10/0x10
[  738.422825][T27805]  ? kasan_quarantine_put+0x104/0x240
[  738.422853][T27805]  ? lockdep_hardirqs_on+0x78/0x100
[  738.422872][T27805]  ? tomoyo_path_number_perm+0x28f/0x580
[  738.422901][T27805]  ? tomoyo_path_number_perm+0x188/0x580
[  738.422926][T27805]  ? kvm_vcpu_ioctl+0x8a0/0x1730
[  738.422950][T27805]  kvm_vcpu_ioctl+0x8a0/0x1730
[  738.422979][T27805]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  738.423005][T27805]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  738.423032][T27805]  ? do_vfs_ioctl+0x226/0x13e0
[  738.423060][T27805]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  738.423087][T27805]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  738.423128][T27805]  ? __fget_files+0x215/0x3d0
[  738.423147][T27805]  ? hook_file_ioctl_common+0x146/0x410
[  738.423177][T27805]  ? selinux_file_ioctl+0x139/0x290
[  738.423202][T27805]  ? selinux_file_ioctl+0xb4/0x290
[  738.423229][T27805]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  738.423257][T27805]  __x64_sys_ioctl+0x18e/0x210
[  738.423286][T27805]  do_syscall_64+0x106/0xf80
[  738.423303][T27805]  ? clear_bhb_loop+0x40/0x90
[  738.423327][T27805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  738.423346][T27805] RIP: 0033:0x7f781559c819
[  738.423387][T27805] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  738.423405][T27805] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  738.423424][T27805] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  738.423436][T27805] RDX: 0000200000000080 RSI: 000000004008ae89 RDI: 0000000000000005
[  738.423447][T27805] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  738.423458][T27805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  738.423469][T27805] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  738.423494][T27805]  </TASK>
[  738.452966][T27803] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  738.505350][   T40] audit: type=1400 audit(1775987432.618:1422): avc:  denied  { mounton } for  pid=27802 comm="syz.2.6610" path="/233/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1
[  738.813204][T18155] usb 10-1: new high-speed USB device number 41 using dummy_hcd
[  738.852790][T18589] usb 11-1: new high-speed USB device number 35 using dummy_hcd
[  738.972552][T18155] usb 10-1: Using ep0 maxpacket: 16
[  738.976555][T18155] usb 10-1: config 0 has an invalid interface number: 14 but max is 0
[  738.979179][T18155] usb 10-1: config 0 has no interface number 0
[  738.981301][T18155] usb 10-1: config 0 interface 14 has no altsetting 0
[  738.986379][T18155] usb 10-1: New USB device found, idVendor=0f11, idProduct=1033, bcdDevice=6f.5b
[  738.989311][T18155] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  738.991949][T18155] usb 10-1: Product: syz
[  738.993860][T18155] usb 10-1: Manufacturer: syz
[  738.995401][T18155] usb 10-1: SerialNumber: syz
[  738.998556][T18155] usb 10-1: config 0 descriptor??
[  739.002607][T18589] usb 11-1: Using ep0 maxpacket: 16
[  739.006104][T18589] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  739.012321][T18589] usb 11-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  739.016281][T18589] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  739.019551][T18589] usb 11-1: Product: syz
[  739.021299][T18589] usb 11-1: Manufacturer: syz
[  739.023620][T18589] usb 11-1: SerialNumber: syz
[  739.028090][T18589] usb 11-1: config 0 descriptor??
[  739.034390][T18589] em28xx 11-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  739.038280][T18589] em28xx 11-1:0.0: DVB interface 0 found: bulk
[  739.225353][T18155] ldusb 10-1:0.14: Interrupt in endpoint not found
[  739.230080][T18155] usb 10-1: USB disconnect, device number 41
[  739.292616][ T5946] Bluetooth: hci0: command 0x0406 tx timeout
[  739.640820][T18589] em28xx 11-1:0.0: unknown em28xx chip ID (0)
qemu-system-x86_64: warning: 9p: degraded performance: a reasonable high msize should be chosen on client/guest side (chosen msize is <= 8192). See https://wiki.qemu.org/Documentation/9psetup#msize for details.
[  740.050998][T18589] em28xx 11-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  740.054528][T18589] em28xx 11-1:0.0: board has no eeprom
[  740.122583][T18589] em28xx 11-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  740.125829][T18589] em28xx 11-1:0.0: dvb set to bulk mode.
[  740.130210][ T1472] em28xx 11-1:0.0: Binding DVB extension
[  740.138917][T18589] usb 11-1: USB disconnect, device number 35
[  740.144892][T18589] em28xx 11-1:0.0: Disconnecting em28xx
[  740.163981][ T1472] em28xx 11-1:0.0: Registering input extension
[  740.168410][T18589] em28xx 11-1:0.0: Closing input extension
[  740.178638][T18589] em28xx 11-1:0.0: Freeing device
[  740.219333][T27823] FAULT_INJECTION: forcing a failure.
[  740.219333][T27823] name failslab, interval 1, probability 0, space 0, times 0
[  740.223510][T27823] CPU: 2 UID: 0 PID: 27823 Comm: syz.4.6617 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  740.223530][T27823] Tainted: [L]=SOFTLOCKUP
[  740.223544][T27823] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  740.223551][T27823] Call Trace:
[  740.223556][T27823]  <TASK>
[  740.223561][T27823]  dump_stack_lvl+0x100/0x190
[  740.223584][T27823]  should_fail_ex.cold+0x5/0xa
[  740.223599][T27823]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  740.223614][T27823]  should_failslab+0xc2/0x120
[  740.223627][T27823]  __kmalloc_noprof+0xe0/0x850
[  740.223646][T27823]  genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  740.223660][T27823]  ? cred_has_capability.isra.0+0x186/0x300
[  740.223680][T27823]  genl_family_rcv_msg_doit+0xc7/0x300
[  740.223694][T27823]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  740.223711][T27823]  ? bpf_lsm_capable+0x9/0x10
[  740.223722][T27823]  ? security_capable+0x80/0x260
[  740.223740][T27823]  ? ns_capable+0xd2/0xf0
[  740.223755][T27823]  genl_rcv_msg+0x560/0x800
[  740.223769][T27823]  ? __pfx_genl_rcv_msg+0x10/0x10
[  740.223782][T27823]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  740.223799][T27823]  ? __pfx_nl80211_join_ibss+0x10/0x10
[  740.223809][T27823]  ? __pfx_nl80211_post_doit+0x10/0x10
[  740.223830][T27823]  netlink_rcv_skb+0x159/0x420
[  740.223841][T27823]  ? __pfx_genl_rcv_msg+0x10/0x10
[  740.223854][T27823]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  740.223871][T27823]  ? netlink_deliver_tap+0x1ae/0xcc0
[  740.223890][T27823]  genl_rcv+0x28/0x40
[  740.223900][T27823]  netlink_unicast+0x5aa/0x870
[  740.223913][T27823]  ? __pfx_netlink_unicast+0x10/0x10
[  740.223929][T27823]  netlink_sendmsg+0x8b0/0xda0
[  740.223943][T27823]  ? __pfx_netlink_sendmsg+0x10/0x10
[  740.223953][T27823]  ? __might_fault+0x30/0x140
[  740.223973][T27823]  ____sys_sendmsg+0x9e1/0xb70
[  740.223985][T27823]  ? __pfx_netlink_sendmsg+0x10/0x10
[  740.223996][T27823]  ? __pfx_____sys_sendmsg+0x10/0x10
[  740.224016][T27823]  ___sys_sendmsg+0x190/0x1e0
[  740.224029][T27823]  ? __pfx____sys_sendmsg+0x10/0x10
[  740.224059][T27823]  __sys_sendmsg+0x170/0x220
[  740.224075][T27823]  ? __pfx___sys_sendmsg+0x10/0x10
[  740.224100][T27823]  do_syscall_64+0x106/0xf80
[  740.224110][T27823]  ? clear_bhb_loop+0x40/0x90
[  740.224124][T27823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  740.224136][T27823] RIP: 0033:0x7ffa4eb9c819
[  740.224146][T27823] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  740.224157][T27823] RSP: 002b:00007ffa4fab7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  740.224168][T27823] RAX: ffffffffffffffda RBX: 00007ffa4ee15fa0 RCX: 00007ffa4eb9c819
[  740.224175][T27823] RDX: 0000000020004800 RSI: 0000200000000300 RDI: 0000000000000003
[  740.224236][T27823] RBP: 00007ffa4fab7090 R08: 0000000000000000 R09: 0000000000000000
[  740.224243][T27823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  740.224249][T27823] R13: 00007ffa4ee16038 R14: 00007ffa4ee15fa0 R15: 00007ffd75a3fb48
[  740.224263][T27823]  </TASK>
[  740.354565][T27825] af_packet: tpacket_rcv: packet too big, clamped from 39 to 4294967272. macoff=96
[  740.470498][T27829] netlink: 'syz.4.6619': attribute type 1 has an invalid length.
[  740.735882][T27843] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  740.739478][T27843] SELinux: failed to load policy
[  740.782260][T27846] FAULT_INJECTION: forcing a failure.
[  740.782260][T27846] name failslab, interval 1, probability 0, space 0, times 0
[  740.788471][T27846] CPU: 1 UID: 0 PID: 27846 Comm: syz.6.6626 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  740.788501][T27846] Tainted: [L]=SOFTLOCKUP
[  740.788508][T27846] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  740.788519][T27846] Call Trace:
[  740.788525][T27846]  <TASK>
[  740.788533][T27846]  dump_stack_lvl+0x100/0x190
[  740.788569][T27846]  should_fail_ex.cold+0x5/0xa
[  740.788593][T27846]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  740.788615][T27846]  should_failslab+0xc2/0x120
[  740.788633][T27846]  __kmalloc_noprof+0xe0/0x850
[  740.788663][T27846]  genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  740.788685][T27846]  ? cred_has_capability.isra.0+0x186/0x300
[  740.788721][T27846]  genl_family_rcv_msg_doit+0xc7/0x300
[  740.788742][T27846]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  740.788769][T27846]  ? bpf_lsm_capable+0x9/0x10
[  740.788785][T27846]  ? security_capable+0x80/0x260
[  740.788805][T27846]  ? ns_capable+0xd2/0xf0
[  740.788827][T27846]  genl_rcv_msg+0x560/0x800
[  740.788847][T27846]  ? __pfx_genl_rcv_msg+0x10/0x10
[  740.788865][T27846]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  740.788888][T27846]  ? __pfx_nl80211_tx_mgmt+0x10/0x10
[  740.788906][T27846]  ? __pfx_nl80211_post_doit+0x10/0x10
[  740.788939][T27846]  netlink_rcv_skb+0x159/0x420
[  740.788957][T27846]  ? __pfx_genl_rcv_msg+0x10/0x10
[  740.788979][T27846]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  740.789007][T27846]  ? netlink_deliver_tap+0x1ae/0xcc0
[  740.789040][T27846]  genl_rcv+0x28/0x40
[  740.789057][T27846]  netlink_unicast+0x5aa/0x870
[  740.789079][T27846]  ? __pfx_netlink_unicast+0x10/0x10
[  740.789106][T27846]  netlink_sendmsg+0x8b0/0xda0
[  740.789128][T27846]  ? __pfx_netlink_sendmsg+0x10/0x10
[  740.789144][T27846]  ? __might_fault+0x30/0x140
[  740.789177][T27846]  ____sys_sendmsg+0x9e1/0xb70
[  740.789196][T27846]  ? __pfx_netlink_sendmsg+0x10/0x10
[  740.789216][T27846]  ? __pfx_____sys_sendmsg+0x10/0x10
[  740.789248][T27846]  ___sys_sendmsg+0x190/0x1e0
[  740.789271][T27846]  ? __pfx____sys_sendmsg+0x10/0x10
[  740.789323][T27846]  __sys_sendmsg+0x170/0x220
[  740.789349][T27846]  ? __pfx___sys_sendmsg+0x10/0x10
[  740.789391][T27846]  do_syscall_64+0x106/0xf80
[  740.789409][T27846]  ? clear_bhb_loop+0x40/0x90
[  740.789431][T27846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  740.789449][T27846] RIP: 0033:0x7f781559c819
[  740.789465][T27846] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  740.789482][T27846] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  740.789501][T27846] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  740.789513][T27846] RDX: 0000000004040010 RSI: 0000200000000940 RDI: 0000000000000003
[  740.789524][T27846] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  740.789535][T27846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  740.789545][T27846] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  740.789571][T27846]  </TASK>
[  740.798437][   T40] audit: type=1400 audit(1775987434.908:1423): avc:  denied  { link } for  pid=20775 comm="syz-executor" name="#53" dev="tmpfs" ino=3044 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  740.928441][   T40] audit: type=1400 audit(1775987434.918:1424): avc:  denied  { rename } for  pid=20775 comm="syz-executor" name="#54" dev="tmpfs" ino=3044 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  741.008095][T27851] FAULT_INJECTION: forcing a failure.
[  741.008095][T27851] name failslab, interval 1, probability 0, space 0, times 0
[  741.015194][T27851] CPU: 3 UID: 0 PID: 27851 Comm: syz.6.6629 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  741.015223][T27851] Tainted: [L]=SOFTLOCKUP
[  741.015230][T27851] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  741.015240][T27851] Call Trace:
[  741.015248][T27851]  <TASK>
[  741.015255][T27851]  dump_stack_lvl+0x100/0x190
[  741.015291][T27851]  should_fail_ex.cold+0x5/0xa
[  741.015313][T27851]  should_failslab+0xc2/0x120
[  741.015329][T27851]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  741.015383][T27851]  ? skb_clone+0x190/0x400
[  741.015414][T27851]  skb_clone+0x190/0x400
[  741.015439][T27851]  netlink_deliver_tap+0xaed/0xcc0
[  741.015471][T27851]  netlink_unicast+0x650/0x870
[  741.015492][T27851]  ? __pfx_netlink_unicast+0x10/0x10
[  741.015519][T27851]  netlink_sendmsg+0x8b0/0xda0
[  741.015542][T27851]  ? __pfx_netlink_sendmsg+0x10/0x10
[  741.015559][T27851]  ? __might_fault+0x30/0x140
[  741.015595][T27851]  ____sys_sendmsg+0x9e1/0xb70
[  741.015614][T27851]  ? __pfx_netlink_sendmsg+0x10/0x10
[  741.015635][T27851]  ? __pfx_____sys_sendmsg+0x10/0x10
[  741.015668][T27851]  ___sys_sendmsg+0x190/0x1e0
[  741.015692][T27851]  ? __pfx____sys_sendmsg+0x10/0x10
[  741.015752][T27851]  __sys_sendmsg+0x170/0x220
[  741.015780][T27851]  ? __pfx___sys_sendmsg+0x10/0x10
[  741.015824][T27851]  do_syscall_64+0x106/0xf80
[  741.015843][T27851]  ? clear_bhb_loop+0x40/0x90
[  741.015866][T27851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.015886][T27851] RIP: 0033:0x7f781559c819
[  741.015903][T27851] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  741.015920][T27851] RSP: 002b:00007f78163ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  741.015939][T27851] RAX: ffffffffffffffda RBX: 00007f7815815fa0 RCX: 00007f781559c819
[  741.015951][T27851] RDX: 0000000000000840 RSI: 00002000000002c0 RDI: 0000000000000003
[  741.015961][T27851] RBP: 00007f78163ef090 R08: 0000000000000000 R09: 0000000000000000
[  741.015972][T27851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  741.015983][T27851] R13: 00007f7815816038 R14: 00007f7815815fa0 R15: 00007ffeafe73ad8
[  741.016009][T27851]  </TASK>
[  741.016035][T27851] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6629'.
[  741.336865][ T5946] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  741.343180][ T5946] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  741.349460][ T5946] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  741.357750][ T5946] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  741.360990][ T5946] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  741.542254][T27861] chnl_net:caif_netlink_parms(): no params data found
[  741.589715][T27874] netlink: 'syz.6.6638': attribute type 3 has an invalid length.
[  741.642430][T27881] Bluetooth: MGMT ver 1.23
[  741.658319][T27861] bridge0: port 1(bridge_slave_0) entered blocking state
[  741.673790][T27861] bridge0: port 1(bridge_slave_0) entered disabled state
[  741.676332][T27861] bridge_slave_0: entered allmulticast mode
[  741.679212][T27861] bridge_slave_0: entered promiscuous mode
[  741.715741][T27861] bridge0: port 2(bridge_slave_1) entered blocking state
[  741.718812][T27861] bridge0: port 2(bridge_slave_1) entered disabled state
[  741.721966][T27861] bridge_slave_1: entered allmulticast mode
[  741.724244][T27890] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  741.730549][T27861] bridge_slave_1: entered promiscuous mode
[  741.758018][T27861] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  741.787175][T27861] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  741.811449][T27861] team0: Port device team_slave_0 added
[  741.814799][T27861] team0: Port device team_slave_1 added
[  741.832706][T27861] batman_adv: batadv0: Adding interface: batadv_slave_0
[  741.834617][T27899] x_tables: duplicate underflow at hook 2
[  741.834924][T27861] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  741.846308][T27861] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  741.850043][T27898] syz_tun: left allmulticast mode
[  741.856303][T27861] batman_adv: batadv0: Adding interface: batadv_slave_1
[  741.858509][T27861] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  741.867165][T27861] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  741.955798][T27886] nbd5: detected capacity change from 0 to 127
[  741.956507][T27861] hsr_slave_0: entered promiscuous mode
[  741.961070][T27861] hsr_slave_1: entered promiscuous mode
[  741.964122][T27861] debugfs: 'hsr0' already exists in 'hsr'
[  741.966557][T27861] Cannot create hsr debugfs directory
[  741.974326][ T5946] block nbd5: Receive control failed (result -32)
[  741.974326][ T5937] block nbd5: Receive control failed (result -32)
[  741.974879][T13340] block nbd5: Send control failed (result -32)
[  741.990093][T13340] block nbd5: Request send failed, requeueing
[  742.011539][ T5352] block nbd5: Dead connection, failed to find a fallback
[  742.015995][ T5352] block nbd5: shutting down sockets
[  742.018843][ T5352] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  742.023399][ T5352] buffer_io_error: 27 callbacks suppressed
[  742.023414][ T5352] Buffer I/O error on dev nbd5, logical block 0, async page read
[  742.024232][T13340] I/O error, dev nbd5, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  742.032388][T13340] Buffer I/O error on dev nbd5, logical block 1, async page read
[  742.036690][T13340] I/O error, dev nbd5, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  742.039663][T13340] Buffer I/O error on dev nbd5, logical block 2, async page read
[  742.044501][T13340] I/O error, dev nbd5, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  742.047483][T13340] Buffer I/O error on dev nbd5, logical block 3, async page read
[  742.050002][T13340] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  742.053410][T13340] Buffer I/O error on dev nbd5, logical block 0, async page read
[  742.055989][T13340] I/O error, dev nbd5, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  742.058948][T13340] Buffer I/O error on dev nbd5, logical block 1, async page read
[  742.061529][T13340] I/O error, dev nbd5, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  742.077865][T13340] Buffer I/O error on dev nbd5, logical block 2, async page read
[  742.080603][T13340] I/O error, dev nbd5, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  742.084775][T13340] Buffer I/O error on dev nbd5, logical block 3, async page read
[  742.087252][T13340] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  742.090439][T13340] Buffer I/O error on dev nbd5, logical block 0, async page read
[  742.093520][T13340] I/O error, dev nbd5, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  742.096505][T13340] Buffer I/O error on dev nbd5, logical block 1, async page read
[  742.099297][T13340] ldm_validate_partition_table(): Disk read failed.
[  742.102050][T13340] Dev nbd5: unable to read RDB block 0
[  742.104568][T13340]  nbd5: unable to read partition table
[  742.112162][T13340] ldm_validate_partition_table(): Disk read failed.
[  742.115404][T13340] Dev nbd5: unable to read RDB block 0
[  742.117485][T13340]  nbd5: unable to read partition table
[  742.187963][T27861] 
[  742.188815][T27861] ======================================================
[  742.191082][T27861] WARNING: possible circular locking dependency detected
[  742.193288][T27861] syzkaller #0 Tainted: G             L     
[  742.195258][T27861] ------------------------------------------------------
[  742.197449][T27861] syz-executor/27861 is trying to acquire lock:
[  742.199442][T27861] ffff88801caf6a20 (&root->kernfs_iattr_rwsem){++++}-{4:4}, at: kernfs_unlink_sibling+0xa3/0x320
[  742.202732][T27861] 
[  742.202732][T27861] but task is already holding lock:
[  742.205135][T27861] ffff88801caf6988 (&root->kernfs_rwsem){++++}-{4:4}, at: kernfs_remove_by_name_ns+0x3d/0xf0
[  742.208314][T27861] 
[  742.208314][T27861] which lock already depends on the new lock.
[  742.208314][T27861] 
[  742.211492][T27861] 
[  742.211492][T27861] the existing dependency chain (in reverse order) is:
[  742.214266][T27861] 
[  742.214266][T27861] -> #10 (&root->kernfs_rwsem){++++}-{4:4}:
[  742.215686][T27925] netlink: 'syz.2.6655': attribute type 10 has an invalid length.
[  742.216798][T27861]        down_write+0x8b/0x1f0
[  742.219830][T27925] netlink: 232 bytes leftover after parsing attributes in process `syz.2.6655'.
[  742.221094][T27861]        kernfs_add_one+0x38/0x850
[  742.225657][T27861]        kernfs_create_dir_ns+0xfc/0x1a0
[  742.227369][T27861]        internal_create_group+0x36f/0xf40
[  742.229238][T27861]        cpuhp_invoke_callback+0x3ab/0x9a0
[  742.231068][T27861]        cpuhp_issue_call+0x1b8/0x970
[  742.232770][T27861]        __cpuhp_setup_state_cpuslocked+0x431/0x880
[  742.234892][T27861]        __cpuhp_setup_state+0xf4/0x300
[  742.236724][T27861]        do_one_initcall+0x11d/0x760
[  742.238306][T27861]        kernel_init_freeable+0x6e5/0x7a0
[  742.240408][T27861]        kernel_init+0x1f/0x1e0
[  742.241940][T27861]        ret_from_fork+0x754/0xd80
[  742.243581][T27861]        ret_from_fork_asm+0x1a/0x30
[  742.245252][T27861] 
[  742.245252][T27861] -> #9 (cpuhp_state_mutex){+.+.}-{4:4}:
[  742.247628][T27861] 
[  742.247628][T27861] -> #8 (cpu_hotplug_lock){++++}-{0:0}:
[  742.250010][T27861]        cpus_read_lock+0x42/0x170
[  742.251652][T27861]        static_key_slow_inc+0x12/0x30
[  742.253368][T27861]        setup_udp_tunnel_sock+0x542/0x680
[  742.255278][T27861]        l2tp_tunnel_register+0xa01/0xc00
[  742.257149][T27861]        pppol2tp_tunnel_get.constprop.0+0x3f0/0x540
[  742.259270][T27861]        pppol2tp_connect+0xaf0/0x1c20
[  742.261012][T27861]        __sys_connect_file+0x141/0x1a0
[  742.262783][T27861]        __sys_connect+0x141/0x170
[  742.264420][T27861]        __x64_sys_connect+0x72/0xb0
[  742.266170][T27861]        do_syscall_64+0x106/0xf80
[  742.267821][T27861]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.269823][T27861] 
[  742.269823][T27861] -> #7 (sk_lock-AF_INET6){+.+.}-{0:0}:
[  742.272967][T27861]        lock_sock_nested+0x41/0xf0
[  742.274694][T27861]        inet_shutdown+0x67/0x410
[  742.276274][T27861]        nbd_mark_nsock_dead+0xae/0x5c0
[  742.277988][T27861]        recv_work+0x5fb/0x8c0
[  742.279493][T27861]        process_one_work+0xa23/0x19a0
[  742.281201][T27861]        worker_thread+0x5ef/0xe50
[  742.283452][T27861]        kthread+0x370/0x450
[  742.285534][T27861]        ret_from_fork+0x754/0xd80
[  742.287759][T27861]        ret_from_fork_asm+0x1a/0x30
[  742.290015][T27861] 
[  742.290015][T27861] -> #6 (&nsock->tx_lock){+.+.}-{4:4}:
[  742.293176][T27861]        __mutex_lock+0x1a2/0x1b90
[  742.295429][T27861]        nbd_queue_rq+0x428/0x1080
[  742.297639][T27861]        blk_mq_dispatch_rq_list+0x422/0x1e70
[  742.300302][T27861]        __blk_mq_sched_dispatch_requests+0xcea/0x1620
[  742.303222][T27861]        blk_mq_sched_dispatch_requests+0xd7/0x1c0
[  742.306003][T27861]        blk_mq_run_hw_queue+0x23c/0x670
[  742.308471][T27861]        blk_mq_dispatch_list+0x51d/0x1360
[  742.310987][T27861]        blk_mq_flush_plug_list+0x130/0x600
[  742.313552][T27861]        __blk_flush_plug+0x2c4/0x4b0
[  742.315892][T27861]        __submit_bio+0x584/0x6c0
[  742.318086][T27861]        submit_bio_noacct_nocheck+0x562/0xc10
[  742.320581][T27861]        submit_bio_noacct+0xd17/0x2010
[  742.322625][T27861]        submit_bh_wbc+0x59c/0x770
[  742.324572][T27861]        block_read_full_folio+0x264/0x8e0
[  742.326557][T27861]        filemap_read_folio+0xfc/0x3b0
[  742.328309][T27861]        do_read_cache_folio+0x2d7/0x6b0
[  742.330102][T27861]        read_part_sector+0xd1/0x370
[  742.331771][T27861]        adfspart_check_ICS+0x93/0x910
[  742.333443][T27861]        bdev_disk_changed+0x7f8/0xc80
[  742.335114][T27861]        blkdev_get_whole+0x187/0x290
[  742.337009][T27861]        bdev_open+0x2c7/0xe40
[  742.338621][T27861]        blkdev_open+0x34e/0x4f0
[  742.340240][T27861]        do_dentry_open+0x6d8/0x1660
[  742.341910][T27861]        vfs_open+0x82/0x3f0
[  742.343399][T27861]        path_openat+0x208c/0x31a0
[  742.345087][T27861]        do_file_open+0x20e/0x430
[  742.346643][T27861]        do_sys_openat2+0x10d/0x1e0
[  742.348260][T27861]        __x64_sys_openat+0x12d/0x210
[  742.349944][T27861]        do_syscall_64+0x106/0xf80
[  742.351553][T27861]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.353587][T27861] 
[  742.353587][T27861] -> #5 (&cmd->lock){+.+.}-{4:4}:
[  742.355897][T27861]        __mutex_lock+0x1a2/0x1b90
[  742.357773][T27861]        nbd_queue_rq+0xba/0x1080
[  742.359681][T27861]        blk_mq_dispatch_rq_list+0x422/0x1e70
[  742.361603][T27861]        __blk_mq_sched_dispatch_requests+0xcea/0x1620
[  742.363762][T27861]        blk_mq_sched_dispatch_requests+0xd7/0x1c0
[  742.365755][T27861]        blk_mq_run_hw_queue+0x23c/0x670
[  742.367502][T27861]        blk_mq_dispatch_list+0x51d/0x1360
[  742.369357][T27861]        blk_mq_flush_plug_list+0x130/0x600
[  742.371199][T27861]        __blk_flush_plug+0x2c4/0x4b0
[  742.372844][T27861]        __submit_bio+0x584/0x6c0
[  742.374444][T27861]        submit_bio_noacct_nocheck+0x562/0xc10
[  742.376359][T27861]        submit_bio_noacct+0xd17/0x2010
[  742.378064][T27861]        submit_bh_wbc+0x59c/0x770
[  742.379668][T27861]        block_read_full_folio+0x264/0x8e0
[  742.381466][T27861]        filemap_read_folio+0xfc/0x3b0
[  742.383147][T27861]        do_read_cache_folio+0x2d7/0x6b0
[  742.384950][T27861]        read_part_sector+0xd1/0x370
[  742.386595][T27861]        adfspart_check_ICS+0x93/0x910
[  742.388274][T27861]        bdev_disk_changed+0x7f8/0xc80
[  742.389954][T27861]        blkdev_get_whole+0x187/0x290
[  742.391632][T27861]        bdev_open+0x2c7/0xe40
[  742.393152][T27861]        blkdev_open+0x34e/0x4f0
[  742.394839][T27861]        do_dentry_open+0x6d8/0x1660
[  742.396492][T27861]        vfs_open+0x82/0x3f0
[  742.397927][T27861]        path_openat+0x208c/0x31a0
[  742.399505][T27861]        do_file_open+0x20e/0x430
[  742.401078][T27861]        do_sys_openat2+0x10d/0x1e0
[  742.402749][T27861]        __x64_sys_openat+0x12d/0x210
[  742.404489][T27861]        do_syscall_64+0x106/0xf80
[  742.406070][T27861]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.408049][T27861] 
[  742.408049][T27861] -> #4 (set->srcu){.+.+}-{0:0}:
[  742.410208][T27861]        __synchronize_srcu+0xa2/0x300
[  742.411873][T27861]        blk_mq_quiesce_queue+0x149/0x1c0
[  742.413633][T27861]        elevator_switch+0x17b/0x7e0
[  742.415278][T27861]        elevator_change+0x352/0x530
[  742.416937][T27861]        elevator_set_default+0x29e/0x360
[  742.418665][T27861]        blk_register_queue+0x412/0x590
[  742.420455][T27861]        __add_disk+0x73f/0xe40
[  742.421962][T27861]        add_disk_fwnode+0x118/0x5c0
[  742.423638][T27861]        nbd_dev_add+0x77a/0xb10
[  742.425418][T27861]        nbd_init+0x291/0x2b0
[  742.427088][T27861]        do_one_initcall+0x11d/0x760
[  742.428748][T27861]        kernel_init_freeable+0x6e5/0x7a0
[  742.430497][T27861]        kernel_init+0x1f/0x1e0
[  742.432020][T27861]        ret_from_fork+0x754/0xd80
[  742.433635][T27861]        ret_from_fork_asm+0x1a/0x30
[  742.435213][T27861] 
[  742.435213][T27861] -> #3 (&q->elevator_lock){+.+.}-{4:4}:
[  742.437826][T27861]        __mutex_lock+0x1a2/0x1b90
[  742.439861][T27861]        elevator_change+0x1bc/0x530
[  742.441546][T27861]        elevator_set_none+0x92/0xf0
[  742.443212][T27861]        blk_mq_update_nr_hw_queues+0x4c1/0x15f0
[  742.445234][T27861]        nbd_start_device+0x1a6/0xbd0
[  742.446932][T27861]        nbd_genl_connect+0xff2/0x1a40
[  742.448664][T27861]        genl_family_rcv_msg_doit+0x214/0x300
[  742.450617][T27861]        genl_rcv_msg+0x560/0x800
[  742.452228][T27861]        netlink_rcv_skb+0x159/0x420
[  742.453981][T27861]        genl_rcv+0x28/0x40
[  742.455446][T27861]        netlink_unicast+0x5aa/0x870
[  742.457107][T27861]        netlink_sendmsg+0x8b0/0xda0
[  742.458810][T27861]        ____sys_sendmsg+0x9e1/0xb70
[  742.460523][T27861]        ___sys_sendmsg+0x190/0x1e0
[  742.462167][T27861]        __sys_sendmsg+0x170/0x220
[  742.463897][T27861]        do_syscall_64+0x106/0xf80
[  742.465576][T27861]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.467674][T27861] 
[  742.467674][T27861] -> #2 (&q->q_usage_counter(io)#54){++++}-{0:0}:
[  742.470467][T27861]        blk_alloc_queue+0x610/0x790
[  742.472209][T27861]        blk_mq_alloc_queue+0x174/0x290
[  742.474053][T27861]        __blk_mq_alloc_disk+0x29/0x120
[  742.475912][T27861]        nbd_dev_add+0x492/0xb10
[  742.477806][T27861]        nbd_init+0x291/0x2b0
[  742.479391][T27861]        do_one_initcall+0x11d/0x760
[  742.481077][T27861]        kernel_init_freeable+0x6e5/0x7a0
[  742.483246][T27861]        kernel_init+0x1f/0x1e0
[  742.485302][T27861]        ret_from_fork+0x754/0xd80
[  742.487425][T27861]        ret_from_fork_asm+0x1a/0x30
[  742.489479][T27861] 
[  742.489479][T27861] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  742.492169][T27861]        fs_reclaim_acquire+0xc4/0x100
[  742.494487][T27861]        kmem_cache_alloc_noprof+0x4c/0x6e0
[  742.496967][T27861]        __kernfs_iattrs+0x126/0x400
[  742.499197][T27861]        __kernfs_setattr+0x4d/0x3c0
[  742.501382][T27861]        kernfs_iop_setattr+0xda/0x130
[  742.503624][T27861]        notify_change+0xb25/0x1330
[  742.505812][T27861]        do_truncate+0x1df/0x240
[  742.507926][T27861]        path_openat+0x2a55/0x31a0
[  742.510025][T27861]        do_file_open+0x20e/0x430
[  742.512182][T27861]        do_sys_openat2+0x10d/0x1e0
[  742.514414][T27861]        __x64_sys_openat+0x12d/0x210
[  742.516722][T27861]        do_syscall_64+0x106/0xf80
[  742.518912][T27861]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.521634][T27861] 
[  742.521634][T27861] -> #0 (&root->kernfs_iattr_rwsem){++++}-{4:4}:
[  742.525256][T27861]        __lock_acquire+0x14b8/0x2630
[  742.527562][T27861]        lock_acquire+0x1cf/0x380
[  742.529743][T27861]        down_write+0x8b/0x1f0
[  742.531800][T27861]        kernfs_unlink_sibling+0xa3/0x320
[  742.534102][T27861]        __kernfs_remove+0x308/0x910
[  742.536142][T27861]        kernfs_remove_by_name_ns+0x68/0xf0
[  742.538612][T27861]        remove_files+0x96/0x1c0
[  742.540764][T27861]        sysfs_remove_group+0x8b/0x1b0
[  742.542876][T27861]        sysfs_remove_groups+0x60/0xb0
[  742.545100][T27861]        net_rx_queue_update_kobjects+0x53c/0x760
[  742.547704][T27861]        netdev_unregister_kobject+0x154/0x540
[  742.550253][T27861]        unregister_netdevice_many_notify+0x1817/0x2580
[  742.553185][T27861]        unregister_netdevice_queue+0x30b/0x3c0
[  742.555858][T27861]        nsim_destroy+0x1a0/0x830
[  742.558010][T27861]        __nsim_dev_port_del+0x189/0x240
[  742.559900][T27861]        nsim_dev_reload_destroy+0x10a/0x4a0
[  742.562350][T27861]        nsim_drv_remove+0x52/0x1e0
[  742.564571][T27861]        device_remove+0xcb/0x180
[  742.566178][T27861]        device_release_driver_internal+0x44e/0x620
[  742.568534][T27861]        bus_remove_device+0x2bc/0x560
[  742.570850][T27861]        device_del+0x376/0x9b0
[  742.572932][T27861]        device_unregister+0x1d/0xe0
[  742.575018][T27861]        del_device_store+0x346/0x480
[  742.576800][T27861]        bus_attr_store+0x74/0xb0
[  742.578942][T27861]        sysfs_kf_write+0xf2/0x150
[  742.581128][T27861]        kernfs_fop_write_iter+0x3e0/0x5f0
[  742.583615][T27861]        vfs_write+0x6ac/0x1070
[  742.585663][T27861]        ksys_write+0x12a/0x250
[  742.587679][T27861]        do_syscall_64+0x106/0xf80
[  742.589813][T27861]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.592390][T27861] 
[  742.592390][T27861] other info that might help us debug this:
[  742.592390][T27861] 
[  742.596248][T27861] Chain exists of:
[  742.596248][T27861]   &root->kernfs_iattr_rwsem --> cpuhp_state_mutex --> &root->kernfs_rwsem
[  742.596248][T27861] 
[  742.601940][T27861]  Possible unsafe locking scenario:
[  742.601940][T27861] 
[  742.604993][T27861]        CPU0                    CPU1
[  742.607304][T27861]        ----                    ----
[  742.609488][T27861]   lock(&root->kernfs_rwsem);
[  742.611158][T27861]                                lock(cpuhp_state_mutex);
[  742.614110][T27861]                                lock(&root->kernfs_rwsem);
[  742.617126][T27861]   lock(&root->kernfs_iattr_rwsem);
[  742.619351][T27861] 
[  742.619351][T27861]  *** DEADLOCK ***
[  742.619351][T27861] 
[  742.622667][T27861] 8 locks held by syz-executor/27861:
[  742.624943][T27861]  #0: ffff88802ea0e420 (sb_writers#8){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  742.628683][T27861]  #1: ffff88805dd6c088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  742.632691][T27861]  #2: ffff88802c39d1e8 (kn->active#57){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  742.636755][T27861]  #3: ffffffff8fb6c508 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  742.640900][T27861]  #4: ffff88805aa31130 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xb2/0x620
[  742.644711][T27861]  #5: ffff88805aa37250 (&devlink->lock_key#13){+.+.}-{4:4}, at: nsim_drv_remove+0x4a/0x1e0
[  742.649047][T27861]  #6: ffffffff90614728 (rtnl_mutex){+.+.}-{4:4}, at: nsim_destroy+0x108/0x830
[  742.652749][T27861]  #7: ffff88801caf6988 (&root->kernfs_rwsem){++++}-{4:4}, at: kernfs_remove_by_name_ns+0x3d/0xf0
[  742.656463][T27861] 
[  742.656463][T27861] stack backtrace:
[  742.659023][T27861] CPU: 1 UID: 0 PID: 27861 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  742.659051][T27861] Tainted: [L]=SOFTLOCKUP
[  742.659058][T27861] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  742.659071][T27861] Call Trace:
[  742.659082][T27861]  <TASK>
[  742.659091][T27861]  dump_stack_lvl+0x100/0x190
[  742.659120][T27861]  print_circular_bug.cold+0x178/0x1c7
[  742.659150][T27861]  check_noncircular+0x146/0x160
[  742.659182][T27861]  __lock_acquire+0x14b8/0x2630
[  742.659201][T27861]  ? __lock_acquire+0x4a5/0x2630
[  742.659220][T27861]  lock_acquire+0x1cf/0x380
[  742.659236][T27861]  ? kernfs_unlink_sibling+0xa3/0x320
[  742.659256][T27861]  ? __pfx___might_resched+0x10/0x10
[  742.659278][T27861]  down_write+0x8b/0x1f0
[  742.659299][T27861]  ? kernfs_unlink_sibling+0xa3/0x320
[  742.659316][T27861]  ? __pfx_down_write+0x10/0x10
[  742.659357][T27861]  kernfs_unlink_sibling+0xa3/0x320
[  742.659376][T27861]  __kernfs_remove+0x308/0x910
[  742.659397][T27861]  kernfs_remove_by_name_ns+0x68/0xf0
[  742.659420][T27861]  remove_files+0x96/0x1c0
[  742.659438][T27861]  sysfs_remove_group+0x8b/0x1b0
[  742.659456][T27861]  sysfs_remove_groups+0x60/0xb0
[  742.659475][T27861]  net_rx_queue_update_kobjects+0x53c/0x760
[  742.659499][T27861]  netdev_unregister_kobject+0x154/0x540
[  742.659516][T27861]  ? rtmsg_ifinfo_send+0xcc/0x110
[  742.659534][T27861]  unregister_netdevice_many_notify+0x1817/0x2580
[  742.659567][T27861]  ? find_held_lock+0x2b/0x80
[  742.659590][T27861]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  742.659616][T27861]  ? __kfree_rcu_sheaf+0x195/0x720
[  742.659635][T27861]  ? __kfree_rcu_sheaf+0x19a/0x720
[  742.659660][T27861]  unregister_netdevice_queue+0x30b/0x3c0
[  742.659688][T27861]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  742.659718][T27861]  nsim_destroy+0x1a0/0x830
[  742.659742][T27861]  __nsim_dev_port_del+0x189/0x240
[  742.659765][T27861]  nsim_dev_reload_destroy+0x10a/0x4a0
[  742.659791][T27861]  nsim_drv_remove+0x52/0x1e0
[  742.659814][T27861]  ? __pfx_nsim_bus_remove+0x10/0x10
[  742.659831][T27861]  device_remove+0xcb/0x180
[  742.659858][T27861]  device_release_driver_internal+0x44e/0x620
[  742.659880][T27861]  bus_remove_device+0x2bc/0x560
[  742.659905][T27861]  ? __pfx_bus_remove_device+0x10/0x10
[  742.659930][T27861]  ? __pfx_device_remove_attrs+0x10/0x10
[  742.659956][T27861]  ? up_write+0x290/0x4f0
[  742.659977][T27861]  device_del+0x376/0x9b0
[  742.659995][T27861]  ? __pfx_device_del+0x10/0x10
[  742.660012][T27861]  ? __lock_acquire+0x4a5/0x2630
[  742.660030][T27861]  device_unregister+0x1d/0xe0
[  742.660047][T27861]  del_device_store+0x346/0x480
[  742.660064][T27861]  ? __pfx_del_device_store+0x10/0x10
[  742.660083][T27861]  ? find_held_lock+0x2b/0x80
[  742.660105][T27861]  ? sysfs_file_kobj+0xe4/0x290
[  742.660128][T27861]  ? sysfs_file_kobj+0xe4/0x290
[  742.660152][T27861]  ? __pfx_del_device_store+0x10/0x10
[  742.660171][T27861]  bus_attr_store+0x74/0xb0
[  742.660192][T27861]  ? __pfx_bus_attr_store+0x10/0x10
[  742.660213][T27861]  sysfs_kf_write+0xf2/0x150
[  742.660238][T27861]  kernfs_fop_write_iter+0x3e0/0x5f0
[  742.660260][T27861]  ? __pfx_sysfs_kf_write+0x10/0x10
[  742.660285][T27861]  vfs_write+0x6ac/0x1070
[  742.660303][T27861]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  742.660326][T27861]  ? __pfx_vfs_write+0x10/0x10
[  742.660343][T27861]  ? __pfx_do_sys_openat2+0x10/0x10
[  742.660371][T27861]  ksys_write+0x12a/0x250
[  742.660387][T27861]  ? __pfx_ksys_write+0x10/0x10
[  742.660408][T27861]  do_syscall_64+0x106/0xf80
[  742.660426][T27861]  ? clear_bhb_loop+0x40/0x90
[  742.660445][T27861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.660465][T27861] RIP: 0033:0x7fe21055d04e
[  742.660481][T27861] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  742.660498][T27861] RSP: 002b:00007ffe06a084c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  742.660516][T27861] RAX: ffffffffffffffda RBX: 000055555ad28500 RCX: 00007fe21055d04e
[  742.660529][T27861] RDX: 0000000000000001 RSI: 00007ffe06a08550 RDI: 0000000000000005
[  742.660539][T27861] RBP: 00007fe210633514 R08: 0000000000000000 R09: 0000000000000000
[  742.660550][T27861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  742.660560][T27861] R13: 00007ffe06a08550 R14: 00007fe211344620 R15: 0000000000000003
[  742.660578][T27861]  </TASK>
[  742.823834][   T40] audit: type=1400 audit(1775987436.938:1425): avc:  denied  { write } for  pid=5907 comm="syz-executor" path="pipe:[7365]" dev="pipefs" ino=7365 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  743.034818][T27927] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  743.039866][T27927] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  743.044957][T27927] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  743.049417][T27927] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  743.052127][T27927] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  743.056028][T27927] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  743.059354][T27927] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  743.066264][T27927] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  743.068831][T27927] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  743.071924][T27927] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  743.263154][T27925] syz_tun (unregistering): left allmulticast mode
[  743.654747][  T132] bridge_slave_1: left allmulticast mode
[  743.656594][  T132] bridge_slave_1: left promiscuous mode
[  743.659026][  T132] bridge0: port 2(bridge_slave_1) entered disabled state
[  743.663629][  T132] bridge_slave_0: left allmulticast mode
[  743.666081][  T132] bridge_slave_0: left promiscuous mode
[  743.668575][  T132] bridge0: port 1(bridge_slave_0) entered disabled state
[  743.745088][  T132] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  743.748752][  T132] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  743.752189][  T132] bond0 (unregistering): Released all slaves
[  743.876754][  T132] hsr_slave_0: left promiscuous mode
[  743.879461][  T132] hsr_slave_1: left promiscuous mode
[  743.882049][  T132] batman_adv: batadv0: Removing interface: batadv_slave_0
[  743.885684][  T132] batman_adv: batadv0: Removing interface: batadv_slave_1
[  743.934351][  T132] team0 (unregistering): Port device team_slave_1 removed
[  743.941705][  T132] team0 (unregistering): Port device team_slave_0 removed