last executing test programs:

10.505538385s ago: executing program 2 (id=539):
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x80000)
sched_setaffinity(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x1000000}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sm3\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x80000)
sendmsg$kcm(r3, &(0x7f0000001880)={0x0, 0x0, &(0x7f0000001600)=[{&(0x7f00000000c0)="bcc9b1557de1fad1f955144629ed4dcf3c33679ea22502e3cff8923bf5d43921bc111a262f295a8eb540", 0x2a}, {&(0x7f0000001680)="094fb143daa9baa36aaa2cca06886c533118e056", 0x14}], 0x2}, 0x0)

8.920220946s ago: executing program 2 (id=536):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x1100})
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, 0x0)
getresuid(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ptrace(0x10, 0x0)
ptrace$setsig(0x4203, 0x0, 0x5, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
recvmmsg(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x2, 0x0)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40186f40, &(0x7f0000000440)=0x1f)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
sendmmsg$inet(r3, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000000040)=[{0x0}, {&(0x7f0000000140)="985e44efeabe001cabcf3d8673c3a254a9a2d3187950cb347b70a27cb566ec4e49f5084e2c245023cfd8259e2efaf6dee305ca987ec87c1bc4fc49fc3b8646adbde9ec691b0f01f353ed1274a2dd799a0f20af36628ab32fd0936dde49f973d182ff21a67b38a66f82274c9e8c98592b98b90f88330b", 0x76}], 0x2}}, {{0x0, 0x0, &(0x7f00000002c0)}}, {{&(0x7f00000000c0)={0x2, 0x4e21, @broadcast}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000200)="006c1b4e8b8cd411995156ec", 0xc}, {&(0x7f00000002c0)="a4787e6ef82273503e6e15f7141643f9be80171218ac7b01a7814976d717c3ab2debb41cef63687ed0a5ded076146281b3ae8bf072b7d9c4d51ae40b73ad8766d093d597b281d1a04d0a685c8da29815dae3bd34374b2efe5db3cbdaf13582743c70802e0b1e49264264d8fbef6cd6a8acb9b9df4d4f0448536603771634a231a07ff84775933e97a53e9b10a5a74f586ea97cb8b4ee5b05d86fb42885e16d57f34335b36c1f306553973f8ecd6cbe2f1aff73ab8637e1eaa0ba01b908180eb24b28336091a7fe35c540516009d8605b1a1022014ee1a2f3463d7b4575d9e34c623ca2a85fc6f07880a1eb", 0xeb}, {&(0x7f0000000500)="15dede7824639f04d134bdf9d765a15c25e8425aa3db354fbac5c8454ef79357fb1d240d76f62ce05bfed632ce7d289dc69d667a9d9a05babc61cccb6512ccd4a7f081d4519d0107b97de97337d5201c478447159221e579c254e5f5f2473b88ecbf0108cea6d7e44c98837e2e1861d8f93feecf5eccf294e10892ad09df0c8d8855133a4977bee4ba33d468a6d81111bac5efbd3dc915c58090ad6bade70b75d216130d9b14d98505b9efabc77808", 0xaf}, {&(0x7f00000005c0)="55830bd8c4f3f692399d2a87f3913450f77da306763172356fa25dd5926f8dfcdeef1c9fc4e9721e4b5b4f7f977939cc3ca94a2d2e71d4929d499d8fc2ada0c3748d1fd2c938ecd0ad1bef72540c381cd9cce7331ce9dc3d421d6d917220c433109f8494d210ef764e0d94e7e6a43029d9f2b076bc694aebacb8a498a58b8e566516c4083444d621ed420ca8e0dcc7b14215c44d5c3ec3c2043e098e20edc3de98d8b3fe3dcae1b0a4a20ceffdf5335485b431e1ac714ed4ee364cdee6cb7391378076c7c84a358a079875422fa5d2b8c005e177786e968889db23e1f7cf39b640c7", 0xe2}, {&(0x7f00000006c0)="26628bd9b3391ced73936e737aaeb081ee8a55aa9277219593dca2aae9a44e95ab2652c35707551aa0cad4c613b74223f2f2534604771cbc750670c177abaf24bf58b599479d4c4169183ab697cf69efc832c6854ed365b33aabda4b35f1c0c06c097ad0385a423611050e6df146d4c1253dc53f62447554c1642b5f0f8053524c4e30d581ab3bfe3050df33844a0acbb4fb903150c79d00f4567c520c52421ebb9e0f2bfe18ad7105e6a967881813e9d7371c5f68878282c3292aede5bd24144db64464f0881a3d36cca257bd3c53030ffe9fa97c07ad4c22dd", 0xda}, {&(0x7f00000017c0)="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", 0x1000}, {&(0x7f0000000240)="83016c6f87b66ca2dd506a2d2801e989a4bd14", 0x13}], 0x7, &(0x7f0000000cc0)=[@ip_tos_u8={{0xd, 0x0, 0x1, 0x7}}, @ip_ttl={{0x10, 0x0, 0x2, 0x4}}, @ip_retopts={{0x64, 0x0, 0x7, {[@timestamp_prespec={0x44, 0xc, 0x1a, 0x3, 0x2, [{@empty, 0x1}]}, @timestamp={0x44, 0x18, 0x8, 0x0, 0x2, [0x4, 0x870, 0x3ff, 0xa87, 0x6]}, @timestamp_prespec={0x44, 0x34, 0xc2, 0x3, 0x2, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}, {@local, 0x8}, {@rand_addr=0x64010101, 0x7f}, {@multicast1, 0x9}, {@remote, 0x2}, {@loopback, 0x9}]}]}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @broadcast, @private=0xa010100}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @multicast2, @broadcast}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @remote, @remote}}}, @ip_retopts={{0x40, 0x0, 0x7, {[@ra={0x94, 0x4}, @lsrr={0x83, 0x27, 0xd2, [@loopback, @multicast2, @loopback, @remote, @local, @dev={0xac, 0x14, 0x14, 0x23}, @rand_addr=0x64010100, @local, @remote]}, @rr={0x7, 0x7, 0xe1, [@dev={0xac, 0x14, 0x14, 0x19}]}]}}}], 0x10c}}], 0x3, 0x2090)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0xffffffff, @host}, 0x10)
setsockopt$inet_int(r2, 0x0, 0x18, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/crypto\x00', 0x0, 0x0)

6.896880203s ago: executing program 2 (id=547):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000070020214200000040"], 0x50)
r0 = socket(0x2c, 0x3, 0x1000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, r0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x100000001, 0xfffffe0000000001, 0xfa11, 0x65aa}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
r3 = syz_io_uring_setup(0x3af2, &(0x7f00000000c0)={0x0, 0xa5f5, 0x80, 0x2, 0x131}, &(0x7f0000000140), &(0x7f0000000180))
io_uring_register$IORING_REGISTER_MEM_REGION(r3, 0x22, &(0x7f0000000240)={&(0x7f0000000200)={&(0x7f00000001c0), 0x0, 0x0, 0xc45, 0x1}}, 0x1)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15)
r4 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r6, {0x0, 0xa}, {0xffff, 0xffff}, {0xd, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xa, 0x0, 0x6}}}}]}, 0x44}}, 0x44080)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x55}, 0x4000)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=@newsa={0x144, 0x10, 0x1, 0xbffffffe, 0x100, {{@in=@empty, @in6=@ipv4={'\x00', '\xff\xff', @remote}, 0x1, 0x394, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@remote, {0x0, 0x9, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0x6, 0x0, 0x1f, 0x1ff}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0xa, 0x1, 0xfd, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @mark={0xc, 0x15, {0x35075a, 0x3}}]}, 0x144}, 0x1, 0x0, 0x0, 0x8801}, 0x10)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=@newsa={0x140, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@local, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@remote, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x9, 0xfffffffffffffffe}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0xa, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @XFRMA_IF_ID={0x8, 0x1f, 0x2}]}, 0x140}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r8, &(0x7f0000001240)=""/102400, 0xffffff8c, 0x200000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000007ac0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0x240000d0)
r9 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000400)=ANY=[@ANYBLOB="1201000009b768405e0483020b9901e40201090227000100000000090400fb015cc7aa00090509"], 0x0)
syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x3, 0x42382)
syz_usb_disconnect(r9)

5.103249226s ago: executing program 0 (id=558):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x1100})
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, 0x0)
getresuid(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ptrace(0x10, 0x0)
ptrace$setsig(0x4203, 0x0, 0x5, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
recvmmsg(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x2, 0x0)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40186f40, &(0x7f0000000440)=0x1f)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
sendmmsg$inet(r3, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000000040)=[{0x0}, {&(0x7f0000000140)="985e44efeabe001cabcf3d8673c3a254a9a2d3187950cb347b70a27cb566ec4e49f5084e2c245023cfd8259e2efaf6dee305ca987ec87c1bc4fc49fc3b8646adbde9ec691b0f01f353ed1274a2dd799a0f20af36628ab32fd0936dde49f973d182ff21a67b38a66f82274c9e8c98592b98b90f", 0x73}], 0x2}}, {{0x0, 0x0, &(0x7f00000002c0)}}, {{&(0x7f00000000c0)={0x2, 0x4e21, @broadcast}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000200)="006c1b4e8b8cd411995156ec", 0xc}, {&(0x7f00000002c0)="a4787e6ef82273503e6e15f7141643f9be80171218ac7b01a7814976d717c3ab2debb41cef63687ed0a5ded076146281b3ae8bf072b7d9c4d51ae40b73ad8766d093d597b281d1a04d0a685c8da29815dae3bd34374b2efe5db3cbdaf13582743c70802e0b1e49264264d8fbef6cd6a8acb9b9df4d4f0448536603771634a231a07ff84775933e97a53e9b10a5a74f586ea97cb8b4ee5b05d86fb42885e16d57f34335b36c1f306553973f8ecd6cbe2f1aff73ab8637e1eaa0ba01b908180eb24b28336091a7fe35c540516009d8605b1a1022014ee1a2f3463d7b4575d9e34c623ca2a85fc6f07880a1eb", 0xeb}, {&(0x7f0000000500)="15dede7824639f04d134bdf9d765a15c25e8425aa3db354fbac5c8454ef79357fb1d240d76f62ce05bfed632ce7d289dc69d667a9d9a05babc61cccb6512ccd4a7f081d4519d0107b97de97337d5201c478447159221e579c254e5f5f2473b88ecbf0108cea6d7e44c98837e2e1861d8f93feecf5eccf294e10892ad09df0c8d8855133a4977bee4ba33d468a6d81111bac5efbd3dc915c58090ad6bade70b75d216130d9b14d98505b9efabc77808", 0xaf}, {&(0x7f00000005c0)="55830bd8c4f3f692399d2a87f3913450f77da306763172356fa25dd5926f8dfcdeef1c9fc4e9721e4b5b4f7f977939cc3ca94a2d2e71d4929d499d8fc2ada0c3748d1fd2c938ecd0ad1bef72540c381cd9cce7331ce9dc3d421d6d917220c433109f8494d210ef764e0d94e7e6a43029d9f2b076bc694aebacb8a498a58b8e566516c4083444d621ed420ca8e0dcc7b14215c44d5c3ec3c2043e098e20edc3de98d8b3fe3dcae1b0a4a20ceffdf5335485b431e1ac714ed4ee364cdee6cb7391378076c7c84a358a079875422fa5d2b8c005e177786e968889db23e1f7cf39b640c7", 0xe2}, {&(0x7f00000006c0)="26628bd9b3391ced73936e737aaeb081ee8a55aa9277219593dca2aae9a44e95ab2652c35707551aa0cad4c613b74223f2f2534604771cbc750670c177abaf24bf58b599479d4c4169183ab697cf69efc832c6854ed365b33aabda4b35f1c0c06c097ad0385a423611050e6df146d4c1253dc53f62447554c1642b5f0f8053524c4e30d581ab3bfe3050df33844a0acbb4fb903150c79d00f4567c520c52421ebb9e0f2bfe18ad7105e6a967881813e9d7371c5f68878282c3292aede5bd24144db64464f0881a3d36cca257bd3c53030ffe9fa97c07ad4c22dd", 0xda}, {&(0x7f00000017c0)="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", 0x1000}, {&(0x7f0000000240)="83016c6f87b66ca2dd506a2d2801e989a4bd14", 0x13}], 0x7, &(0x7f0000000cc0)=[@ip_tos_u8={{0xd, 0x0, 0x1, 0x7}}, @ip_ttl={{0x10, 0x0, 0x2, 0x4}}, @ip_retopts={{0x70, 0x0, 0x7, {[@lsrr={0x83, 0xb, 0x47, [@empty, @local]}, @timestamp_prespec={0x44, 0xc, 0x1a, 0x3, 0x2, [{@empty, 0x1}]}, @timestamp={0x44, 0x18, 0x8, 0x0, 0x2, [0x4, 0x870, 0x3ff, 0xa87, 0x6]}, @timestamp_prespec={0x44, 0x34, 0xc2, 0x3, 0x2, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}, {@local, 0x8}, {@rand_addr=0x64010101, 0x7f}, {@multicast1, 0x9}, {@remote, 0x2}, {@loopback, 0x9}]}]}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @broadcast, @private=0xa010100}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @multicast2, @broadcast}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @remote, @remote}}}, @ip_retopts={{0x40, 0x0, 0x7, {[@ra={0x94, 0x4}, @lsrr={0x83, 0x27, 0xd2, [@loopback, @multicast2, @loopback, @remote, @local, @dev={0xac, 0x14, 0x14, 0x23}, @rand_addr=0x64010100, @local, @remote]}, @rr={0x7, 0x7, 0xe1, [@dev={0xac, 0x14, 0x14, 0x19}]}]}}}], 0x118}}], 0x3, 0x2090)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0xffffffff, @host}, 0x10)
setsockopt$inet_int(r2, 0x0, 0x18, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/crypto\x00', 0x0, 0x0)

3.954984753s ago: executing program 0 (id=564):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0xc2200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x8081)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, 0x0, 0x0)
bind$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x4e22, @multicast1}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x45833af92e4b39ff, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x323800)
pipe(0x0)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000005c0)='fd', 0x0, 0xffffffffffffffff)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x2)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0x0, 0x0, 0x16, 0x0, "0af5a212a1bd3bbda613efd9c8b4965dca66db42f66a86e5781cf86717055a7c1d1408407e5a774ef95f2fc1b947e00f000000123f2f1d34b0882e83d41b67cb9ff147c6d33a097d2269351b3ed300"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f00000012c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x34, 0x0, "0c9e089c1b4a04000bde79f04103c458187eb46c2d996aff287154e786455261c425a7519cc275d04e6205abd307a0c4fa3838bf399ad5bd35f21907c7988d1300"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3d}}}, 0x0, 0x0, 0x11, 0x0, "a1c1dd75a68473ba07d945c3b03e10950cd4b347113e55eb4285bf274bca67efbff2fdf98328de9434031348589bf28046d14810000000e3ffffff00"}, 0xd8)
close(0x3)
setsockopt$inet_tcp_int(r3, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r3, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000280)="5338a3", 0x3}], 0x1}}], 0x1, 0x20008000)
recvmsg(r3, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001380)=[{&(0x7f0000000200)=""/112, 0x70}], 0x1}, 0x123)

3.80518229s ago: executing program 2 (id=566):
r0 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x6, 0x8161, 0x6, 0x0, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000280)={0x40, 0x403, 0xc})
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r1, 0xc00464b4, &(0x7f0000000400)={r2})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000040)={0x49, 0x7fff, 0x4}) (fail_nth: 1)

3.585347337s ago: executing program 2 (id=569):
r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40042)
write$binfmt_aout(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="0000000000000000000000800080000014000091ff0f00004500f5ff06ff00010100fc5e15f4c3d3fbd80dad00000a"], 0x125)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x80}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x84, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2f}, @NFTA_SET_EXPRESSIONS={0x40, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x4}}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}, {0x14, 0x1, 0x0, 0x1, @tunnel={{0xb}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x106}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xcc}}, 0x20050800)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r2, 0xffffffffffffffff, 0x2)
r3 = syz_open_dev$evdev(&(0x7f0000000080), 0x2, 0x842)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000180)={&(0x7f0000000040)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f00000001c0)={r5, <r6=>0x0, <r7=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r4, 0xc06864a2, &(0x7f0000000500)={0x0, 0x0, r6, r7, 0x5, 0x8c13, 0x5, 0x5, {0x200082, 0x5, 0x5, 0x4a, 0x2, 0x3, 0x4, 0x9, 0x7, 0xd25, 0xff92, 0x5, 0x870, 0x5, "6fd5aa7203dceeb0be00ac360e3600000300"}})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=@mpls_newroute={0x24, 0x18, 0x601, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_TTL_PROPAGATE={0x4, 0x13}]}, 0x24}}, 0x0)
ioctl$EVIOCGBITSND(r3, 0x40044591, 0x0)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r9, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r9, &(0x7f0000000040)='l', 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r9, 0x84, 0x1b, &(0x7f00000001c0), &(0x7f0000000200)=0x8)
ioctl$AUTOFS_IOC_SETTIMEOUT(r4, 0x80049367, &(0x7f00000000c0))
ioctl$BTRFS_IOC_GET_DEV_STATS(r3, 0xc4089434, 0x0)
syz_usb_connect(0x2, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000050cb5340450c10108e492940a80909021b00090000000009040002010035040009058dff86"], 0x0)
r10 = syz_open_dev$char_usb(0xc, 0xb4, 0x80000000000)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x8, 0x32, 0xffffffffffffffff, 0x6931b000)
write$char_usb(r10, &(0x7f0000000b80)='P', 0x1)

3.0206364s ago: executing program 0 (id=571):
syz_emit_vhci(&(0x7f0000000000)=ANY=[], 0xf)

2.964730954s ago: executing program 1 (id=572):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x1100})
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, 0x0)
getresuid(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ptrace(0x10, 0x0)
ptrace$setsig(0x4203, 0x0, 0x5, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
recvmmsg(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x2, 0x0)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40186f40, &(0x7f0000000440)=0x1f)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
sendmmsg$inet(r3, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000000040)=[{0x0}, {&(0x7f0000000140)="985e44efeabe001cabcf3d8673c3a254a9a2d3187950cb347b70a27cb566ec4e49f5084e2c245023cfd8259e2efaf6dee305ca987ec87c1bc4fc49fc3b8646adbde9ec691b0f01f353ed1274a2dd799a0f20af36628ab32fd0936dde49f973d182ff21a67b38a66f82274c9e8c98592b98b90f", 0x73}], 0x2}}, {{0x0, 0x0, &(0x7f00000002c0)}}, {{&(0x7f00000000c0)={0x2, 0x4e21, @broadcast}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000200)="006c1b4e8b8cd411995156ec", 0xc}, {&(0x7f00000002c0)="a4787e6ef82273503e6e15f7141643f9be80171218ac7b01a7814976d717c3ab2debb41cef63687ed0a5ded076146281b3ae8bf072b7d9c4d51ae40b73ad8766d093d597b281d1a04d0a685c8da29815dae3bd34374b2efe5db3cbdaf13582743c70802e0b1e49264264d8fbef6cd6a8acb9b9df4d4f0448536603771634a231a07ff84775933e97a53e9b10a5a74f586ea97cb8b4ee5b05d86fb42885e16d57f34335b36c1f306553973f8ecd6cbe2f1aff73ab8637e1eaa0ba01b908180eb24b28336091a7fe35c540516009d8605b1a1022014ee1a2f3463d7b4575d9e34c623ca2a85fc6f07880a1eb", 0xeb}, {&(0x7f0000000500)="15dede7824639f04d134bdf9d765a15c25e8425aa3db354fbac5c8454ef79357fb1d240d76f62ce05bfed632ce7d289dc69d667a9d9a05babc61cccb6512ccd4a7f081d4519d0107b97de97337d5201c478447159221e579c254e5f5f2473b88ecbf0108cea6d7e44c98837e2e1861d8f93feecf5eccf294e10892ad09df0c8d8855133a4977bee4ba33d468a6d81111bac5efbd3dc915c58090ad6bade70b75d216130d9b14d98505b9efabc77808", 0xaf}, {&(0x7f00000005c0)="55830bd8c4f3f692399d2a87f3913450f77da306763172356fa25dd5926f8dfcdeef1c9fc4e9721e4b5b4f7f977939cc3ca94a2d2e71d4929d499d8fc2ada0c3748d1fd2c938ecd0ad1bef72540c381cd9cce7331ce9dc3d421d6d917220c433109f8494d210ef764e0d94e7e6a43029d9f2b076bc694aebacb8a498a58b8e566516c4083444d621ed420ca8e0dcc7b14215c44d5c3ec3c2043e098e20edc3de98d8b3fe3dcae1b0a4a20ceffdf5335485b431e1ac714ed4ee364cdee6cb7391378076c7c84a358a079875422fa5d2b8c005e177786e968889db23e1f7cf39b640c7", 0xe2}, {&(0x7f00000006c0)="26628bd9b3391ced73936e737aaeb081ee8a55aa9277219593dca2aae9a44e95ab2652c35707551aa0cad4c613b74223f2f2534604771cbc750670c177abaf24bf58b599479d4c4169183ab697cf69efc832c6854ed365b33aabda4b35f1c0c06c097ad0385a423611050e6df146d4c1253dc53f62447554c1642b5f0f8053524c4e30d581ab3bfe3050df33844a0acbb4fb903150c79d00f4567c520c52421ebb9e0f2bfe18ad7105e6a967881813e9d7371c5f68878282c3292aede5bd24144db64464f0881a3d36cca257bd3c53030ffe9fa97c07ad4c22dd", 0xda}, {&(0x7f00000017c0)="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", 0x1000}, {&(0x7f0000000240)="83016c6f87b66ca2dd506a2d2801e989a4bd14", 0x13}], 0x7, &(0x7f0000000cc0)=[@ip_tos_u8={{0xd, 0x0, 0x1, 0x7}}, @ip_ttl={{0x10, 0x0, 0x2, 0x4}}, @ip_retopts={{0x70, 0x0, 0x7, {[@lsrr={0x83, 0xb, 0x47, [@empty, @local]}, @timestamp_prespec={0x44, 0xc, 0x1a, 0x3, 0x2, [{@empty, 0x1}]}, @timestamp={0x44, 0x18, 0x8, 0x0, 0x2, [0x4, 0x870, 0x3ff, 0xa87, 0x6]}, @timestamp_prespec={0x44, 0x34, 0xc2, 0x3, 0x2, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}, {@local, 0x8}, {@rand_addr=0x64010101, 0x7f}, {@multicast1, 0x9}, {@remote, 0x2}, {@loopback, 0x9}]}]}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @broadcast, @private=0xa010100}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @multicast2, @broadcast}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @remote, @remote}}}, @ip_retopts={{0x40, 0x0, 0x7, {[@ra={0x94, 0x4}, @lsrr={0x83, 0x27, 0xd2, [@loopback, @multicast2, @loopback, @remote, @local, @dev={0xac, 0x14, 0x14, 0x23}, @rand_addr=0x64010100, @local, @remote]}, @rr={0x7, 0x7, 0xe1, [@dev={0xac, 0x14, 0x14, 0x19}]}]}}}], 0x118}}], 0x3, 0x2090)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0xffffffff, @host}, 0x10)
setsockopt$inet_int(r2, 0x0, 0x18, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/crypto\x00', 0x0, 0x0)

2.962128037s ago: executing program 0 (id=573):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x1100})
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, 0x0)
getresuid(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ptrace(0x10, 0x0)
ptrace$setsig(0x4203, 0x0, 0x5, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
recvmmsg(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x2, 0x0)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40186f40, &(0x7f0000000440)=0x1f)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
sendmmsg$inet(r3, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000000040)=[{0x0}], 0x1}}, {{0x0, 0x0, &(0x7f00000002c0)}}, {{&(0x7f00000000c0)={0x2, 0x4e21, @broadcast}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000200)="006c1b4e8b8cd411995156ec", 0xc}, {&(0x7f00000002c0)="a4787e6ef82273503e6e15f7141643f9be80171218ac7b01a7814976d717c3ab2debb41cef63687ed0a5ded076146281b3ae8bf072b7d9c4d51ae40b73ad8766d093d597b281d1a04d0a685c8da29815dae3bd34374b2efe5db3cbdaf13582743c70802e0b1e49264264d8fbef6cd6a8acb9b9df4d4f0448536603771634a231a07ff84775933e97a53e9b10a5a74f586ea97cb8b4ee5b05d86fb42885e16d57f34335b36c1f306553973f8ecd6cbe2f1aff73ab8637e1eaa0ba01b908180eb24b28336091a7fe35c540516009d8605b1a1022014ee1a2f3463d7b4575d9e34c623ca2a85fc6f07880a1eb", 0xeb}, {&(0x7f0000000500)="15dede7824639f04d134bdf9d765a15c25e8425aa3db354fbac5c8454ef79357fb1d240d76f62ce05bfed632ce7d289dc69d667a9d9a05babc61cccb6512ccd4a7f081d4519d0107b97de97337d5201c478447159221e579c254e5f5f2473b88ecbf0108cea6d7e44c98837e2e1861d8f93feecf5eccf294e10892ad09df0c8d8855133a4977bee4ba33d468a6d81111bac5efbd3dc915c58090ad6bade70b75d216130d9b14d98505b9efabc77808", 0xaf}, {&(0x7f00000005c0)="55830bd8c4f3f692399d2a87f3913450f77da306763172356fa25dd5926f8dfcdeef1c9fc4e9721e4b5b4f7f977939cc3ca94a2d2e71d4929d499d8fc2ada0c3748d1fd2c938ecd0ad1bef72540c381cd9cce7331ce9dc3d421d6d917220c433109f8494d210ef764e0d94e7e6a43029d9f2b076bc694aebacb8a498a58b8e566516c4083444d621ed420ca8e0dcc7b14215c44d5c3ec3c2043e098e20edc3de98d8b3fe3dcae1b0a4a20ceffdf5335485b431e1ac714ed4ee364cdee6cb7391378076c7c84a358a079875422fa5d2b8c005e177786e968889db23e1f7cf39b640c7", 0xe2}, {&(0x7f00000006c0)="26628bd9b3391ced73936e737aaeb081ee8a55aa9277219593dca2aae9a44e95ab2652c35707551aa0cad4c613b74223f2f2534604771cbc750670c177abaf24bf58b599479d4c4169183ab697cf69efc832c6854ed365b33aabda4b35f1c0c06c097ad0385a423611050e6df146d4c1253dc53f62447554c1642b5f0f8053524c4e30d581ab3bfe3050df33844a0acbb4fb903150c79d00f4567c520c52421ebb9e0f2bfe18ad7105e6a967881813e9d7371c5f68878282c3292aede5bd24144db64464f0881a3d36cca257bd3c53030ffe9fa97c07ad4c22dd", 0xda}, {&(0x7f00000017c0)="8f66316736161a3c2de035e2e8989fae76a3a724490bbdd5159edff54238325e9fe73135d06354eeeef0b69ebfba8b9164583f94a44bff1088593934f8da83069c932944436f4b9dd9b2a98252deab798f7c32e143a9d1f26f692d13e0b8a325dfaad704fa84014fe384aa45ca19aa0aef6a93dff32d1d3f20af5efc2e07f7f360e42f6f59e0313236deda8651bfe7e749cb45c625f82598b062f630f45b9178ca0ac7b7b777626aea370789125ba90315f685c582bed233563dab8b2d2ece4f230ff43ed346ec80cf5f1639c092269c3a81b3f24d3c59c98ddb5a11c85b36875ae14bd6a7e5384fdbdb8ebae002f7d418d90df08af861d281fa3b0269dc41db510f63f3854cac3e64ed527c4cb7685f9f4ccf7b52e3cfbed5d26bc4384dae64b7abe77e46374dc97ef67aa7a6854df7abfb25f5f7d4a25d7d0edd797d58933f90a222214449ee0b00864f6c887d8fb5e84905771831a6977cbf7d1d138a5e224058c7676c4b4247349e0effcba0bd859c58186e8d83602431db54e3fc0be00143ca91f66bcde0575c0d22f16aa282a6a4e1d3b9c50372a854cb71b729fba88c35de766c19e94f2dedca03c005bb6e49baedfdba0afd7bda87a7ad0df9d4d255b339b6de7a1b05707f98a7c3c5e3c59db913d727055895bfe58299c2140cc7175cfbedbd6c1e74b40bc3ed6020364d7d5b1b06899be7487cc4309df3e6401177286b265c20607a0c0e7f2b8be19d608be61dc45e83b79c73db64e2a9f99ec3bba1be086e8a7ee1e76b46d8526d9fd5c777a1821f9ba5a0d54c00baa3d1946a0a1bc048dc395cc42a78ba44a91bd415d09294b120c0eec6f5b94ca82de236a61e1b19b03b8e336ed377b1a165b6b339d5c5e87c1073292158e514935137fefe5d6dce8de9d1e1724e15e77a139e879d455a835e35426add69b195421acceea91e39cd26162910a14b5afe4ec495d474380867c0ba15eadbbf961bdee378a8e04ef392f2f73e0c4d5f5f31ec7826a4dec2bf4619aa0b975a261fde94d6cabdd72682e9823007368bcb9ec009ea82fcf311e2a2c112b592b7241701f4e2bcb1ae178723d2bd00fe5132b3cbb9b04e8f44276ead30a81af393d14ab90b58bab0ec849bda5b97a470376bd2f29ea23c1f3bfe3c55b156aae4476ec3c657a1ada42630a8c2772a05d3f57bb1dbbb9aa6c86982e429b0d3d59b2e4625b3bdae865db067dff587376d6c2c2ae30cc9f5e44a95456bea94021f5df143a6e376dab26517f080ad66c348c0f39f4e60bc3ad685f5aa5993c485bd733ff05df261f76c31c62ee77da4a37f3076deef0102ca985ba391673e453e48cfa81d0bd81b624ff3f6b591d0cf2d055831105ea51baa84362e7da70c00807b9f307e3bb314e88407a6228c513d8477ecefb73442d0ff784c637b0855a3473479dfdf97107832e62b8828f0590fdafc05bfa5ef1ac2f99d2bfb690485ddddbb7cd9d9d961d9b38421e4f761248caac420641369f17cd13b7f4ea698720260f03a2f1dee6cb5b2af033798f929121e751e985232b12677d7fb21824cae4c13114d4fb9ac4ecea1dbb84091ee0b85d1344fa83dc5503e9f4be7e99685a3540bee0ae0088fc5b5c394a806370473591f8100455d8a7f36e379882c8e9103cc0169e8953fa009048dce4090116aa16ffee1829eb7aaa29c7dcc820259c2999e659145262f2b982ee4013e7abfab177ad471b7a320cfad3dd21588c9bc9d0de1425626b01624f2f753a883939c4b34f6d262eeed4566b5c7b370214d01a5ea877fef5556a14c765c9ced226b9d492e6bcc58d5c53adde5d40d065b639190b01325c5d7c556c0cdfe3ba27e79effbf77c1ce908dc380ac6da005863e3a43e7acf97421f4684f1fec7478e12a6d08f1aa309977b05cdddf85637afa2151a3bbb3cc8b02c42af542693e3298512a9a51f6c4c12637f038565ff1d301fe0ae3f1fb39fc4c820f2f6d1a8f94f386b8471e13bf97b2676b2fa2e68f1e2d0a6428db5ca0304c86f0923e120e488a0b8d451092ed1d55e64461b5ba3ab5637c3743a1b75449910c8c36b685022db7deae14f4ad00bd2be700a3cf48e122f9784e6a9401a993263fb4a034587f0372d79496904d129034ac6ff77e02dcdd89e2eec2f0fb9b345a1de4a38c8ad33e5374f347e4a8e06b0653345a24e41f4f891b4d2dc8e6cb49c00f3d012f9482401fd11f4615fdd197df6e723fbdc778372d0fb20fcfc77f8bb1a8717ec1faf5e07ff8670f57bff468432d67bc6c1fd4094f28dae253262d783775b9dde552a3d6237cb05734a9638cd6fd132ca1720310e25ef172e82fc28c9ec3c58655e19843e151641d3cbc977bf29db8ae473a2e3789dde04f673422b33ab43651eafe117f51968a06c9fd33f219d1ba1ba4a59f8dfa92205839d1d3f1e24181195e9fc7f6497c9b27fc0edaa94414d8e14aa079c09c4136f84a355bf16b2c700cff1b822bb35ce885902609b9a78c185c93928017863bc0b4d35053a12998966087b6efb0e68af998e9f0d9b36e45989edd44679b6e79012ce1caf1f4cd7955eded033433372505fea5763de6b3f21c27d50cb5daccab9ae0242a2343f2d0d0c16f22f2006056d4655f2ced9e6a860eeccb3d21f7f55002b5a7cfbee9cdad323f2235eeb62ff8fd7dc91ffbbad48b13883b3633099c6c85bb5876f5b1092c592ffc952c2b08814eb0eab9fe631a524471f3f5e71e822b954bca3630c9706adcd88abba30f61e6d6e1e9a7cd9a63979205d75e790ba0a34a45ca868836b644c6fc84e2e827ef153c824f0ea30a39e289d7695062d9e444608d13360b272b433445fbca356d475488450c09dd1e58c65c12e38e29af262785c3d230664640a81e467ea1db0a131370e147b07db9876e0a4c2ac26c533d2ddeab404e3a7abffa8c4f13df721f7a0c8df5c9e2881debce1d1536ce363dab759fa9f05f19542678a24070440028b261422b2d36ba67e062c84ed43c007bf35f29c560ea6147bc5f399b779e7b757cf8a7e75e883ac54cf2075723318567d16d16b6548469bbca118c332cbd7642eaabb2abb93a0ec51f8b6c16e774cc493aba911e785a35a01b8bd1066ce9d66706e92afd0bbe9e83e6d82738f85ec4f2284cc93a18172ff5002d7577687b349c7850fa7eef3e136f33d961786e9803ca76d08814b2118b31ce0f78dfc90194542b58519d49bab20db4d3e17b801a01cf4b3793ff892ebd07c28f184710f50d8b45b03e4fc116327017fac3c2fc0e2fd5ac436bbab32bb25ffb087758ebe2b8a5dfd845daba1ae77e8f98ebc6ef8da00e50a104d82b25e3e34a5bcb0c20b8f9f99a93fb3fdffa18b0d03ec535e3005b86647316157b80e7d3f086c35ff5c3fcf706ece813b64a9ddf8d44ee06efdf39e9ee7e2589b2508cf83e92efe45a5764bc9cd76bcc2c927b2dbdd639514fe29842ee758be6c5ec7e01a5e04cdb49d9853ca00f2fe03b65f8a0362a789c438ee1dbb7199ed2cccaa85c211907497ed714e4eb25ba925a03c1f48023a5a0ad9b84c1090e1c52e5e4ef1c9b9cf96e0d9ab31c4bc58162dea074a58402716cc5b010168fc0a41bc38a74227881bc7c37332963b622298d9756c920af5494ef959a00ae2e8ff608c6495ce8c4eef748b5d4260eead8d5aab96625fc4284efe0a95eccacfa30656900b53212c1c3eed78124faf762d8f610d208343ca9967ebe9a5a6820111057dd7036405958fe8533e7ce1a7ea9e5546dd5f93a7f41fad2ee1262273a14d5983851f0b55dca199401e651eea3e67c63ef7c3a6e78c64bb826b2909510322c815c1b35e691965026b9a5401b4aa43090b92d80446e647e3f21174a55788bd9c490daacada4ff7fb5e03abf045ed45f00fd6af78fe55e28603a8af44ee651f1ec1f16b3cf9c060c66d26e13ee6f6cbbb9c59ce4ba0e97f7a3e0e2c9e3edd6ecd409cd144090215518ee46ac1726ffbabdafda620e5b0a9fcaa4dafc2551b08f5c3194b75bd94e14dc0d6aca36890f290ee536d9a890b2365765d0c9aeacef72fd87cc4497e3fbbb54a8e24db2f7f55bddbf13c2b2f6e6b34f6ef192e4363ef6d87f3f8f0006cbc1dd9fb397d5bdd04f5018e3a2b658541cc171320793c6c20590178998493577c953bed0db17f7126aa05253497f34e6a5d0839f86604f54fb449f15501db8c48157d8efac8a2fa43d6c515623f6c6d06b9609ca00d67fcdba461c4a056434e537ce24f514316c6563ed8adb787c3af9dd7695bf7498e2ccf9e8b34de7ffbe884e1cca91ffb0ebcdbdce08a191d17d624f6da6b4f666dcd4f8928fa20af65ffee4d2fdca680693fcf6cd1f6fc5b476baa9f15c7d2877de309e8d7a6a72ce2f6411d9497befe100776b11b64566bbdbfcf3b57998ef9b3f971b7be4ca25e6342dbba4550093d5fa7270d5dc2830ea2bf67d182a59025432b89967a13987f53b88932f86922b069a6858746fd608afaf6b50b17329b446044dd6481662408b8b375b65775568168eafa7b0598daf848bca67b9fd1dad78022777c3b107955c4108d58d61b88a8dc3285b0c2697499cc74f434fe23347dc9b300c0adc97968d5fc555af7dd7e48f705522282c058474b62fb825e0971c4e56320d9c4f8b80c636449def6cf7ae288f5f30d954edbc60b60a3064cf6b270fe3185f19d94e983377dd890912e6c0410b0d75a1b01ff6795ade2e15ea382fe0826db197a7bc0d6aa3e6708a3c1b71774c3d318be861fa682c57d44c644dcad64302538a386a0502c1e853c6239d874ef7eb40e118d984348e3bd19c872ee481acd7467aa2e068d11b810f6b6ec6702953fd6649420337e30fcb4347fa82b78cb719b49a192721d1edc4375e1c4d503d552d5cbb8ef00ad14db19eb14641041505f1ad2f7cae158380471f009c4ac0957d5df526e783ca8c42f448348ef49cc0bcb9f0da4bb5a75058892cd2f38a1905bcea8024fe7f4dfed17c86d6e1856bab5185e549a1b45ec9fc8f836706bbaf0350b0e25fef98fac5bcec15217ef357fd8d8aa3dfeeb4fb6525475219447be546b41074b0600d455f03d36392c323bd401ec55391fbb5742b5e92ac530b0e798c55f65b4c6310284864816d1649b0b464443625e4c9d051a8e06a64aede53fea6a3f0c06c2bca4b826511460a8b19f45423e08dc08323dfe423631ecf66ff35787ea3a455da6894ef9bb5726bd8973e5e69e27ae0a3b4d1674711a49cb3da63c7f4122b7aef8fd2fddee179b0f70bd88fc460a94185a4e64f0ef955f3c1ea16fe8776c77957bd98417a0d5f4969ae9f035e06c596506f78f604e613ced6b9fb2729053e60a0446556bbb93a900ca7d01d538332a6873efad9263ce20e3c59abea4af9464ec74138ea8454397084a433b13ad884936774f53bce826976d9f9711b15d886da773841b2b47887444c9c488076c02b4148068a95146972e16aa7a33d9530ed7fa7703a3a5b06b88cfa174ccfbe5382aac7f3e65e8cf270ca0df7e943c3751f7ad2863117a310cf3409f563e1bef31aa9bab3fdc36ffe1a68e15b6b0f51a9923dd0899d3ab25179090786dfb7e6303b5c01e7d348d61c4fbe875a0e8a9bab7e63529e2cfdbf2b5e08da8eb0b6ca57ac53e4f48294d632a79d4e7e4ad07b1541b21b09d9748ad095ed22a66bc3d5ddf17a59c09ea3c28968ce1fe9c7f2f0c44007a9984278c1582e1e418e36a240edaf5787c226531af30756ed5ce5254aa04ec1a69210388ac4fe284f306ea1dbe828c2ecdcd4c921a364c5bb4549a11f2fff6c1", 0x1000}, {&(0x7f0000000240)="83016c6f87b66ca2dd506a2d2801e989a4bd14", 0x13}], 0x7, &(0x7f0000000cc0)=[@ip_tos_u8={{0xd, 0x0, 0x1, 0x7}}, @ip_ttl={{0x10, 0x0, 0x2, 0x4}}, @ip_retopts={{0x70, 0x0, 0x7, {[@lsrr={0x83, 0xb, 0x47, [@empty, @local]}, @timestamp_prespec={0x44, 0xc, 0x1a, 0x3, 0x2, [{@empty, 0x1}]}, @timestamp={0x44, 0x18, 0x8, 0x0, 0x2, [0x4, 0x870, 0x3ff, 0xa87, 0x6]}, @timestamp_prespec={0x44, 0x34, 0xc2, 0x3, 0x2, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}, {@local, 0x8}, {@rand_addr=0x64010101, 0x7f}, {@multicast1, 0x9}, {@remote, 0x2}, {@loopback, 0x9}]}]}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @broadcast, @private=0xa010100}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @multicast2, @broadcast}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @remote, @remote}}}, @ip_retopts={{0x40, 0x0, 0x7, {[@ra={0x94, 0x4}, @lsrr={0x83, 0x27, 0xd2, [@loopback, @multicast2, @loopback, @remote, @local, @dev={0xac, 0x14, 0x14, 0x23}, @rand_addr=0x64010100, @local, @remote]}, @rr={0x7, 0x7, 0xe1, [@dev={0xac, 0x14, 0x14, 0x19}]}]}}}], 0x118}}], 0x3, 0x2090)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0xffffffff, @host}, 0x10)
setsockopt$inet_int(r2, 0x0, 0x18, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/crypto\x00', 0x0, 0x0)

2.627437397s ago: executing program 3 (id=575):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000040)=ANY=[@ANYRES32], &(0x7f0000000300)='GPL\x00', 0x2, 0xb3, &(0x7f0000000140)=""/179, 0x41100, 0x7b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
connect$unix(0xffffffffffffffff, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f0000002dc0)=[{{&(0x7f0000000440)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000000)=[{&(0x7f00000004c0)=""/252, 0xfc}], 0x1}, 0xffff}, {{&(0x7f00000005c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000640)=""/89, 0x59}, {&(0x7f00000006c0)=""/86, 0x56}, {&(0x7f0000000740)=""/63, 0x3f}, {&(0x7f0000000780)=""/86, 0x56}, {&(0x7f0000000900)=""/69, 0x45}], 0x5, &(0x7f0000000980)=""/87, 0x57}, 0x6}, {{&(0x7f0000000a00)=@qipcrtr, 0x80, &(0x7f0000001f80)=[{&(0x7f0000000a80)=""/200, 0xc8}, {&(0x7f0000000b80)=""/5, 0x5}, {&(0x7f0000000bc0)=""/152, 0x98}, {&(0x7f0000000c80)=""/54, 0x36}, {&(0x7f0000000cc0)=""/114, 0x72}, {&(0x7f0000000d40)=""/4096, 0x1000}, {&(0x7f0000001d40)=""/104, 0x68}, {&(0x7f0000001dc0)}, {&(0x7f0000001e00)=""/158, 0x9e}, {&(0x7f0000001ec0)=""/178, 0xb2}], 0xa, &(0x7f0000002000)=""/224, 0xe0}, 0x1}, {{&(0x7f0000002100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private2}}}, 0x80, &(0x7f0000002440)=[{&(0x7f0000002180)=""/199, 0xc7}, {&(0x7f0000002280)=""/203, 0xcb}, {&(0x7f0000002380)=""/186, 0xba}], 0x3, &(0x7f0000002480)=""/59, 0x3b}, 0xe0e}, {{&(0x7f00000024c0)=@hci, 0x80, &(0x7f00000028c0)=[{&(0x7f0000002540)=""/15, 0xf}, {0x0}, {&(0x7f0000002680)=""/182, 0xb6}, {&(0x7f0000002740)=""/236, 0xec}, {&(0x7f0000002840)=""/67, 0x43}], 0x5}}, {{&(0x7f0000002900)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000002d40)=[{&(0x7f0000002980)=""/171, 0xab}, {&(0x7f0000002a40)=""/113, 0x71}, {&(0x7f0000002ac0)=""/105, 0x69}, {&(0x7f0000002b40)=""/195, 0xc3}, {&(0x7f0000002c40)=""/236, 0xec}], 0x5, &(0x7f0000002d80)}, 0x3ff}], 0x6, 0x2, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)
r0 = socket(0x1e, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000004000000000000000100"/24], &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x40, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100", @ANYRES32=0x1, @ANYRESDEC=r0, @ANYRES32=r1, @ANYRES32, @ANYBLOB="0300000004000000000000000000000000000000002e331eaca97949b886c092f028c14dc8e089e03b20a17ced7e68168a6b8e99602658a4e19bfb0e268a278c7a6592ea774c8b41ed74fa2a56b0b6c92611a6bbf2b5934dfc26391fc78a0615f52e8b75bba02ea3c95dc619933b71f8b2b970507a9683705dd2f9c04bf65603262a1979cdee891846f88e1a9a9bca03e7ae0b0f20fc0e298d9c1e75b6110c7839dff820a4b29b3114d3ff9ee40dcc791b9fd271e973d6d8555f29bfe140539341045b2a9f8e43d0fb", @ANYBLOB="c66ab2ede2"], 0x50)
r2 = dup(0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x13, r2, 0x2000)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x22003, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x21)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0x80801, 0x0)
ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r6, 0x80083313, &(0x7f0000000080))
socket$inet_udplite(0x2, 0x2, 0x88)
socket(0x10, 0x80002, 0x0)

2.174331171s ago: executing program 3 (id=576):
socket$packet(0x11, 0x2, 0x300)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000001c0)={0x0, 0x3}, 0x8)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180)='\x00', 0x1, 0x24000010, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000c80)="7cffa9061b2f8b082b6f69ae50430c8a8b6aa3162ba083c4a52e1ab0ac50ed4a19b1a69988000d5bed4433daaa4932dbb1cb3550dee8b23579d76ce37d574b43fca1eed8ebd38d1303240ed0d84517692128dd5aef5c4d60a6659952a1437c6f0ac3ed75806011ccbaa504f41a7e0abcf8823bc4a71ef8c52c2b297b539eaf752c56ebfe9b0542543069257dafcbf76c958d4cbf4eaaa67c5c2bd9e6518be34b56add7613ab83d389724b664e62c154e1a5aac073a53a0e8cadcf51ef495ebbcc77d5e36ff24c3f282289cc077374b714e08fbfecbdc8f14ef3fd409af4caf6fcb7d663beab335f239a1e93b399c93d7c036e1b39a7c477945f82b6dde53b1c21b590a58ba688ac4fb530d2c5b1195a127d2eaec840ab59f090d7047c278611e080cebe7b28588c11a44be99fe6f88c73441bf625b70565669997f4c3cda5afe1d6429908a69a459d35ba8c2f28076d8711f2667de749a783fac94ebd02680f20fb723c35c287a1f45064846385750665ffa74579083fbb1b1d6b7c90168252b1c5313544569203e7adb8e271a94f7413e5cfd6aa3157c4fc29bddba3683fcd032aecb513b2f27530fbefa0000000000000003c058e812d8db87de5e3eceae268b91f7d59daf77646fa4df99877dd5a9540934c7af91b96486eea62897be6acbe1bae8e46b112f1385e7cea9e4daccc6f1b98ce3b4322af8299a45ddcb5be8d3e469fdde9896ca324a2f3c88c616a7dccde331698ce2d39f96220251011b4dfbec953b5c30e94adb5586cec0af234859805bb7df1101ae80318ff127e913178d79cfa918d54585b6184255e872e2dc33a5c7c30a756bbd63c32a3e6a22863781747d185acb64583976c4289394d642b07d18e2932d0a78bd2ccf92b3e94e82f1e9239fa272402f4c9efcf068709a44d6f652a4f23df89f9a15e6bf0c7e65d8f3e32c35e83d30298074d16cb5ff4ded1df81009bbae888fceb9a8109ba319605e1776e52d2069b5cd7de07cf8dc488ba6a9c7559ff49674a490991f323736f302004007d0ccf2e5eaceac6b56f48f2b00592d7a378f118d8b3e5ecd2035c8252374c91bc79cf26ac11ddffe2c09e1aa032da0713732387f950e3f4e301eb1d26e5a2b19318e50d555c832e279894d8c9b03e8940738c0fe391b29907d0d5f9214d6e697a19247f4e8221aca2ac47debd7c45b8344941cbecbaf44af343b24a4f88caf207d72002fb8b7d156997cb7275f535e6a9d6480046246e60bea0cf6f54abc69ff9418b6cb9301eb6890227215b633a886fb13c89698e51e482c42ca99613b20e22e5ce15272f5bda8b18cf53d49130a94135dd8a9692c", 0x34000, 0xbcff, 0x0, 0x0)
r1 = openat$rdma_cm(0xffffff9c, &(0x7f0000000800), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000900)={<r2=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r1, &(0x7f0000000980)={0xb, 0x10, 0xfa00, {&(0x7f0000000840), r2, 0x72}}, 0x18)
r3 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MIF(r3, 0x29, 0xca, &(0x7f0000000000)={0x2, 0x1, 0x0, 0x0, 0x9}, 0xc)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
vmsplice(r5, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
r6 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="440000001000030400000000040000", @ANYRES32=0x0, @ANYBLOB="00000000140000002400128009000100626f6e6400000000140002800500130d0000000008001e"], 0x44}, 0x1, 0x2000000000000000}, 0x0)
ioctl$BTRFS_IOC_FS_INFO(r6, 0x8400941f, &(0x7f00000003c0))
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000040)="02d242", 0x3)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r5, r4, 0x14, 0x0, @void}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000380)={r5, 0x58, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000002c0)={@ifindex=r7, 0x16, 0x0, 0x80000000, &(0x7f00000007c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x0, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_CONFIG(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x1c, r9, 0x1, 0x70bd26, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x8000)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r4, 0xc01864c6, &(0x7f0000000a00)={&(0x7f00000009c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7, 0x40000, 0x0, <r10=>0xffffffffffffffff})
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x6}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x7}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xc, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xc8}}, 0x0)
splice(r4, 0x0, r6, 0x0, 0x10d00, 0xf)

1.933731359s ago: executing program 3 (id=577):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x3e, &(0x7f0000000000)=0x8, 0x4)
sendmsg$inet(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000080)='C', 0x1}], 0x1}, 0x24000040) (fail_nth: 1)

1.921617145s ago: executing program 3 (id=578):
r0 = fsopen(&(0x7f00000001c0)='omfs\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000003c0)='\x02\x00\x1f\xe9>\x04\x17)\x12\x10(\xcc\x913p\x84,\'\x89\x92\x96\xb5\xf4e-\xad\xd1\xe9\xe2\x19\x1ev\xd3,5\xac\xaa\x7f\v\xa2\xd7\x00B\xc0\x8eJ^8`\xdf\r(Z\xcdP\a\xa5\xef)\\\xf5\xff\a\xf2\rA\xb7\x97\xc2\xca\xf0\x96\x0e\x80\xadL\f#\xfd\x10\xc9\x91^\x94\x8c\xb6\tR\xe1`Pok\xa8;\xfa\x99\xf3?\xfe\x06^\xd8$=\xa1#\f\xe8\xdc\xc3\x00\x90=\x83\xbe\xe8\xb9\xaf\x91e\xdf\x1f0\xd0yu\x1a_\xa5\xd8\x8ft\x8e\x8dm\xa7\x80K\xea\xb0\x91\x97\x90\xe7S\xcaWR\xbe\xf7c/\xa7Z\x8ce\x8cp\x82h\xa4\x12\xa7]\x15g', 0x0, 0xffffffffffffffff)

1.804741309s ago: executing program 3 (id=579):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x18, 0x6, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80ffffff}, [@jmp={0x5, 0x0, 0x849aee721dcc84be, 0x0, 0x0, 0x2}, @jmp={0x5, 0x0, 0xc, 0x0, 0x0, 0xfffffffffffffffc}, @jmp={0x5, 0x0, 0x8, 0x0, 0x0, 0xfffffffffffffffe, 0xd1}]}, &(0x7f00000000c0)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000240)={0x8, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r2 = syz_open_dev$vcsa(&(0x7f0000000300), 0x1, 0x102)
ioctl$int_in(r2, 0x5452, &(0x7f0000001840)=0x5d4)
write$FUSE_INTERRUPT(r2, &(0x7f00000000c0)={0x10}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r6 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'gretap0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r7, {0x0, 0x7}, {0xfff1, 0xffff}, {0x0, 0xd}}, [@qdisc_kind_options=@q_ingress={0xc}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x1ff}]}, 0x38}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x3e, &(0x7f0000000000)=0x8, 0x4)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@ipv6_newaddrlabel={0x38, 0x48, 0x181, 0x70bd2c, 0x25dfdbfc, {0xa, 0x0, 0x0, 0x0, 0x0, 0x1}, [@IFAL_ADDRESS={0x14, 0x1, @mcast1}, @IFAL_LABEL={0x8, 0x2, 0x7}]}, 0x38}, 0x1, 0x8100, 0x0, 0x40041}, 0x8840)
sendmsg$inet(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000080)='C', 0x1}], 0x1}, 0x24000040)

1.240433226s ago: executing program 0 (id=580):
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="3400000045dc653dff00cc1e5d9e8ac3f4cada452ad6881f06534745e0d2410efdf3fc7d074a8ec7c1edd661600f1781f333e78daa7d5a3d40699f8dc0848a924422211f7a29566cc4c8b90e51bc6522356a439476fb462aadf2c26e4c55548cfc8acfc8837f5ba0e5d582607c8019779ef593837edf7feb2cc9b55f38291b9fb30e8e127e9494a316c0bf52ec73cbd3cf9016b2cf2d28f9f8810087f6efd9510e49d3d4750b82a72c53f7ad8072816c304028a3e79890384c7c3bc57923375a8a4b8946e3d4f3fd692a0c33", @ANYRES16=r2, @ANYBLOB="01000000000000000000100000001800018014000200776c616e31000000000000000000000008000c0002000000"], 0x34}}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="180000002e00010026bdf000fcdbdf1b04000000040010"], 0x18}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000100)={r3, 0x58, &(0x7f0000000040)={0x0, <r4=>0x0}}, 0x10)
r5 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000540)={r4, 0xfffffff8}, 0xc)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x8, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000800000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r6, 0x0, 0xe, 0x0, &(0x7f0000000640)="c1dfb080cd21d308098e01002900", 0x0, 0x6, 0x0, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x9)
sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f00000003c0)=ANY=[], 0x18}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_udplite(0xa, 0x2, 0x88)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100))
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0x2, 0x6000000000000001, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x400000000010, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
syz_io_uring_setup(0x462, &(0x7f0000000280)={0x0, 0x9368, 0x10, 0x2, 0x34f}, &(0x7f00000000c0)=<r7=>0x0, &(0x7f0000000000))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_WRITE_FIXED={0x5, 0x43, 0x0, @fd, 0x11e, 0x5, 0x0, 0x5, 0x0, {0x3}})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r7, 0x0, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x22, 0x4, r8, 0x0, 0x0, 0x0, 0x80000, 0x1})

1.238275148s ago: executing program 1 (id=581):
syz_emit_vhci(&(0x7f0000000000)=ANY=[], 0xf)

1.155064912s ago: executing program 1 (id=582):
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000e40)=[{{&(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000180), 0x0, &(0x7f0000000600)=[@cred={{0x18, 0x1, 0x2, {r0, 0xee00}}}, @rights={{0x1c, 0x1, 0x1, [r2, 0xffffffffffffffff, r1, r1]}}, @cred={{0x18, 0x1, 0x2, {r0}}}, @rights={{0x20, 0x1, 0x1, [r2, r2, r2, r2, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [r2, r1, 0xffffffffffffffff, r1, r1, 0xffffffffffffffff, r2]}}, @rights={{0x1c, 0x1, 0x1, [r1, r1, r2, r2]}}], 0xb0, 0x24040000}}, {{&(0x7f00000006c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000dc0)=[{&(0x7f0000000740)="88ca92e64515793054aa35098b084e4960b698032df4f5794f8a94ec36e7a000ba1a84af9e5fdac3799ee9110e85d11c934793c030eaab04409805c8fed03f6853923fa3f4f460c615f5fcf4197a4a78908c1bea5f6cff54e786b7c9be5112c10cca6aa998de345a4943a2d4350bdf75ebf2fd7d0eea81265a9d3217e35976f4960be9432f6e9e18d2babd6d1087e353c1c86ada6ebd7fc7637242033f9c7c18145f333586e1df9cccdae5fe2063d0b1b9e089c1d4691ddd433be2a2776ac33f7c33", 0xc2}, {&(0x7f0000000840)="c3097c2131daf50f77d9df058e05dccc69b7f6b108ba2d7a1f4758052d8d2f5e931f18f8a2740dcf1f01d274825db6e964d139d9ec9382b357dfa7890b8e021429a69c5d0e2ba89681db4529b19020586374efbba66a2dc82b7b298ce29044058615b4a7dfdd97ead4de5552984bea7cc7d307ad3377e674df0c3cd929939ec76b2f8a9d0d848b22a5e74701f1928077b590fdd236de7566ef16392a50115acf4f6cb38bb901792333374dc134b224c886e3accb0e05b0b1382e1bd9db5f6b7d3f734ed44fe8327e8f82985b341b5664c11d022c7d229ad3cc7958", 0xdb}, {&(0x7f0000000940)="0416d83c3c4fd866b38dc704885731092cb71fb17c0ae0e482563c61a32b7666b6887ef4c2ae294cc588a64a50ccddd10432bab143eef0f70e0e95f8250178f9495a2fb6ed6bc4108c1d4c3d4a20848fb0945021250be61a5a6213ecca7f8e8d69917ea978590cceac4b05fcefae3b4b5c1464f258a2b2795df8", 0x7a}, {&(0x7f00000009c0)="ca238a43825d4e4bb8d6653f51372bbcfa1cda9744bf684315964de0495063ed176db3113c3802cc5744def7c5486583f2cbc8b17638548932acd952870068701293d8d896f0e6e4a807406a7eb53877efc3533e4fc5c9bb3d1fa63761c333f16845e35184a2495c4ab51f14368354c1626c9c8f562943b3e6da17e603bef7d62a9bd7", 0x83}, {&(0x7f0000000a80)="8833f729713c151e4409e53d79d971162c23c207a225059f881153c1dba20aec7afabfadb5198d36b14c9528f475a109a44e5fe141301ffe9ae05cb6210072d0d384fdab5e0796f1e9baee6b536707daf6195fadc74f29996451a954ba159274edee00f1e43abe33c4a6aa094f61d2af5becb43caf46170e4579230980271f1ee0148a7da789d5d159e112d0ff57ad3a54ff537303e05e998f31e9874b392a63d761e689a31c004b23d87074249d750d72dbb9eac7924ea4f0ef8e80cedcdb1dd4b1985e55", 0xc5}, {&(0x7f00000022c0)="469221a2b4303b0adfa18b12350895f9dec559800759c46479709a1bb7900c3f19858ab32f601857aaf78fc19b94f442c02debf50a64fa86b3e1c06b653a8cea06f9c7bd1b4ec5dbc25a6ad69fd82c2c576f5af6974928ddcab8ddc381c5583dec494505e6a328ed994609c55e6751bb518a28f59472b51457789d4814bfbfa297f514780d85c290d30001204631d30f490b496970693f431646f2c66054172d22bc83b380723543f0f8cee4733b771fd7f01d11c0d7dfc6710a16000238ec615f1257f40db3e2d161ce04818cb61ecdf75b5a0b195a866327bfc464ff202c9be3b0b67838e0894c89e34700e30630ec15a366fdddb51b1e86cbe8889712974b949e2adadce340cd75776312bb4de9b0e610b5ace6368e8a569877f051873fc1b6d8e234174c182da88e06e8fc01e1702d30f33ec56b981b23013c6db961dd59c6b2f9b4a7809c4f0fe58e99beed3af55b188c9f95b13fabc06b62aa401d8d65a34732ae35e60ef29908d883fbe2898b2f548f29566a457249e3fc29d994eaa57db4f6c484ea9bf9c73e52b52e177eb778c290ec87584a4ac3ca2a735c5b4f18192f49c342e2806c67d84d95eb66f39f3f767e5e558a5fb03db0a583fe0171296c6d18128662e18415d0ec573122378742bcc879f57f84b6555f7a628822a70888e6c6ad7220347d7d876c8bb428ba91ed8c04718eca55763a89d42b3ba13af493c0acb65fb064770b3a0898ceae21ddc5b7a7ab02fc0221e1fff40b9b901f4392f8e1b4039371e28aa90b7bd0b020cff39f602d6d42afef8e8e17aa05fc4c04489da517dc3b790af7dcec03000705cd485532c891829d7100a844e309915080877cbb41cfd1bc1e4c4b7d98b2d5176b2afdc73a07f94b886234238f140722a211b908be896fc1ef6ad9a598bdcdd7abd369aa01287f704eda88aab8efbb0284b03f7fac3b4d330da52ea0c94b8887a7877325e10c6bc04a24459ccf5b43a3e0e9847c64027d78f8f6467504eb50bdc3b49462ad843c7639fcb2180017f1c4ce7c5634d6feb71057b6577fc1945c32f114d14f3717b1644bc4704dcddfcb56dc4d713f85e3c30d456e096e4766b2c112e5b1d16d8d3f77d682223b0ad1bb1080ef1cacb55ee4ce64f0e68080c1ba5e179eec04fa0f8af798a14e0e0a9bfd4c037fa917980df68e39d2d58ffbb135e961a8af9a82cdf75affd6e064831598529a6c732f0facd25012e864baff31f24237913c28a2785d5b12b7c33bcf1ff297cd430c31df861f27f416691c1f91f6774fd304f7ce2a218ae5f1a6475ef99b279d5dcd1d5181c5ce8034692168a529b05d9d3ddf145e7af8f37807d8e1e6d9ed2beeba225ac81b5d5953fcc998b1e4cfd23578aed3cf47f0c1dbf2704f98d5f53a77ab58e7971f353e774f67471896a83c900d43bc2e4902d422e1cbdb1de3744b205d959119981ecb2411063933d36b9552cccf941042734af5148d6d49d7db2d7ffdc358cf6fc38ca66e7a6c2c0842523cb895a135e29a23c36b4909a368c2e6fd659a761b440775200dd9c233558e3990841ba562626dc9c3a601cb9cec2a7c225465fa33326f653ade79333136751752141e310caef33212dd6f55905036d53072f12c36e940e5bcc33e0c7f40c18a6ca33a9e21360fb5822e13211cdefbc0ec781cd309a32c82c2dda94766fe6870f29096aed41e36cf29784d2afaf6aa38da587eaee51a99453ff69f8bb6fd441828b6f5295413a3bf8e768cdda0d387e08b3e37374291375a9b818b2d1c7081c9a421ac8166086d10c6220857021b1b597c0fba7f096157a702c3aa1764a48afcbf463ea1fddae24211c1e0617dd6b4551ace30d212883b6a916b1878bd069b8fc1e2ab479445a8c03fbf6f925ef1d6bfa9708e94594539517b422cdd65d55ad6b84c9db128808fcbe66edab98e8932dcaad009ff696fa8dcd231ee677d5efe0f2ef4c2f339aa08f18875e94aef42b76434fec97c16da12e418935e300fef67d4c1346d01b62d82e133cacdda09cc444134843c4894b06fe18b1229c556053fa37087fbe9cb63a302622760bedfb899d5e3229f428024311f33e3787e1d3c2e3b7402fbf60c412d51097ac6bf7d4dca882559957c497c07ba29aa961dd318225ae5830c6259cd772800e2df84c9440dde96c2732d463589a279e78aad81b379b8965b2419fa0155cfafdaa491f052cf79b7e1a106bd5a34363eda5a92454da8e9cec8a10019024a165d01bab14eb341123b1ac94266ca84200fa7078828072d67cdec2cbcde5c195b32461e49c1da217a334ddeb749464bb3ddeca80e8df91f84a87a641a41ddba9ef05f9f373f598b7d0df14c9262fc37af6002e216523294f41ccaa0fe5eb0fdd64f619c0199d2d6653a5cab8945bea3a2ef0d8d01309805d4c54f2a9eab027a32888cddc6b1818262f8d6812e1c3bc9dde1db5b92f554d0ebe90253abf1745644fda33908cf53115eae662f31df4c26ea14478745003fd8372c5ff7b7b258328ae83dccb2fbcfd90fd301571505854f3905a929458331b4ff6e2d70474c7d05b21ac61284a42beb5311140a0a33934694c64e655a8f346af830ac0bf51a601ac2accbb7fa66cd2d34270600e491505de598e82fd721cf7ce534e79c304bd4da4a4217fe0aa34360aa77886c361e35031b1edd5e83ee4cd6e0c172efdb912c895d75be4d25e4414f3953d94c77a37c484c0a09d75c3edae94d60b838e1d80abc766fd094400729f23d65aa5ef943980279187c3e02d6f3a88eb2d70dd309d4898910cac61b8b6275b0a5cf4e930e53de4c6477f45b24af90b056bacabad9242d5253cb254bd4adb904eab27e6a8503586fd75bd349f83728d3931c67e55f612e5ab5e222911144800cbb68a78c682239bd9d120222b73b724996cfeb2279a988b160666808fe1c0698210e6ff16c7e9d399592452fc1d26760560c0a174b61e54f0f8c0ee3a85abd9051c5285472221b436c42e88b12892812b7346859b109795dc7786cf81b2fae13a7a714e366d4765431ccc57fbd1cfbf7059ca166377405b2f5c26e4ed5bec58ec26279ad36c562c737cf5193728d2b1d01f5da667aee93a54dc4bb260f7fed246729fb9fac5c2acc1d7658bd483591c02a91673d565df335c037c6ffdcf76edcdc918e571a55886775b8d85315aae71e2b0ae99070c8f2cfab03af34b4b02d9da1a34c2cb711d48d5435e2787d69a1d6cf8ab1dd1a83daa8d0745c6d1bce9c632f3ea5aca302041d6742e352291719455be506528ee254c24a7ad9b4a43a9d6a2018fe085e4387698dbcf95e5dce07f09a75ba6066c2c29adccf9b1483d23115c7853dea64714bf99797d20e228091e9ef487ddbada4ad038038f5e45aec98fb140f4a6ddf01427f07f1bef02ad02e1d4018ef61616c86901a43516aaaa86f0d0b10a6d5fa7e09cb015b1dfe8340b6f53acd58930d50870f93eec9b760a0c2532302d96cb7d7d32c8e7d9bddf58b64210b045a467486a66de41c80fb00a9df084996c885725a7812121ebab54bb2d82f4fcc6d1f83a3b2fd26c2debd9564e33af877818d0db814fcd8835fed0e9efd8d56da8525377387435de976e9a170a606812e84f5751dfdf3250f763261c45d4f3a3d12ae812d8b15e72d5e6eb59fc8be15a97914a66c2eb9393ed6fd6434eaf425ead2d72c8b95db35b207ce0c17d3f1a219df4064be319af6b019934caca6c5312e6a9c4b92cb00dbba28e453a28d4d5197d4e5fde7614a16835bad20cd362fca0031c31767b2a3e66ff9bc0c3169502bb00a5bdffea51c236073123d1209c6191627f137dfce1958103ec65840d008bb6322cab62893f3527b7adc4088b37a878b5b8b7530359ba4fb76b70ca39f0cc920e7c01beadad839aa9c3e18fca0e5a5eafcfff9770d6ed4816c8f7411409a92c879a3e5e66be9cd7755514ac082e52fd2defc7ba05e62c094a96f6cfcc265b7517a31816240a5b9b5a7bf1f3331d098e86bda526952bd2aec0f522acfa039e0c9942d03099401cdbf8174199cbdf3c8fe39eadd993bdabde8728aae92d28c97721789e80119ea10172b8537adeda27c54f7fac43e67020e521d3462e80fd604d7db0e9f4fb03343bf0d51fc6de8e83358ea62c752a9acc5ef37ffe7be385647c80890069fd14060dfce578b142104c6e610701ea19982ecbf75f6e56f27d04b56008c6282d866b02a1e6147e929c050383ecf6e632c142c4760d5c8d884c789d1f93b8cb7af3c8c62eba0883bc0df25b881482ca27bf51b8a1446e78809abf64bc0f67e03430ec9f27fefd02b077b68ea5c87f46cf5fed8962eb6f10c13a5e7093e95d34ecdede05c719ffbd11dce691198eeb727cf24c23ab1a868ff3c7a66606edd34cb7b65dbe4a15a0502fff0064de817d1b607bac3ac7c16d9fdd7b66b4a8b46a3f295145e1dd68129ab2028661c974efd704476d48701cdf5ddb46fd000496d17c1318d1185857ef9bf38491317855c3b2a649761a22dc2f1c42cfd92ac6d91cff60be3eb9bed9b34d1b25e401aa0351b9b7a07f267aeda6f5f06c41ea626752f503b8f320553c1a28b3459ffb6f34b1f2e83b421d80f7203d4377a57251e3cb7d0ad429788f480a3ff084fc8bb9411a23f5b95ac861ff7d1f18cec8f2f136147d2bf9f558e9d5259f04e23c21e3cf7d54d1c9b1f08b8d82fa133c3de8bb413b08760477a53736e3fa4869a314395b3c508ea71e856147e439adee7ef51d2b4d992ff09ce5e78caa508e4e16562606855413a50e74874156c469c91b87ff1cdfd3d9fd43119fdc7d75be20788494606e7015556a8088c427dec11d77ae14d19b13d16fe2c7b47200027ae4c583bdb9cd66a7f5c7920d7af4e9af81812a7458966d02c3257e216475faeb7f5fccb964a2a0ad1c9cb5e269b2d065d4ad157a4893634868b1e1eece6885d01821815a0eab496524ae2503ab5aab1613930dac4929bcf61c7732e290bdfecbc6ad34288e68e607c7332cf87dc3edb555018d04b9bb0747fbb757adeaa0cf3f552d2a09f3202e054ab5ecb8582c180c09a79c2aa9f7aaeb4ccc63d69ffc2596184fb1d5b2276dc9c8c8edb283c47c36c106c2b7e216b754577d3d4f79db90479039f719afe5655871b94e3a55f52aeb4db2c2659df6b985003426638454074c2057c1506e53af33c776b60d0efd4ea01ca10c6df1a55b4ee36b31aa787149bba7be912cf05408162d838de23af1f3ca115adc6190f6752cf5b411a7bddb14e8afe66fbbf163f6e8af0dfd4f9f0443664233f8812393dbf1f2fe6a2df4f474e2fc46669a6a2fa7aab5a131febe2c43cccd2836283b8ace52464cf67ce3374e2fb7550b637ffbd0066c269a1f11bcf0cea4e1640d357dc9a43670e1f6bbcadf13a966ab90566372a7b722224554d0912b713f8f915ce823e7087b1b18c270df6dabf506d0ec9cdfe63d5a4d5b06dd3f9d3b9a91a5912f3241f3414835ccc3b4f1334cb013c2161c60bf1fef2cbc98e45f00933b3d2e1d116f4ddaa3135fe50a1d176f9681d2f2c87346f0cfb3f68e67337a1903028b66d9a3ab7cadfce0f945b85320ea57aa4234026d78cc798ea21f382aaccbbc6a898408a3037b1a8c8b8041d07780e2e6e51a1a2b6a3b530e8244ee0437e57c9bd53df42bc09dd9bd04b273ded6c868ffa3b9215c73772e55d3c5825a9a5b48258e01078d8d55a40eb0a7289240e5efe5a232b429d84a7161dce6cfa0d1c95409ecfe933bea580e850ca8701e71aad8afd62ad630fc535bb99c30b3b0b", 0x1000}, {&(0x7f0000000b80)="3b9bbdb699900f0addaa0b94d02999e4c965d48852d7ec6636d96f2f0b9a14ffaa982fc5d603cee1905a9064a6fb3200e8726f9752039c5f9aa7919f2c05169cec95", 0x42}, {&(0x7f0000000c00)="6cdd9dd8bc8497c3aad2e5d4c225c253a82fb3f77f103b4b39a30898dde153faad76fa01c147f733beec539f930927c892f31c16d3016bf25d8dc7e51a68b8faab846451ee9bf6221b67ba1dfd1f5b1e14dc11fb776ddf4a2dd1ed9a07a2a5e51ddcfa715ce6535c59843d03b09057ae1cdacc6fbb4df24eb44ba1e5af2ac9c8e1", 0x81}, {&(0x7f0000000cc0)="f9f6d40ebc75bac2d942e9b1b6f90a6027ab8737ea276e66acf38683b80084c86b586b6109dcac800c5ad912929f702d872faa416f2de7c8bc81dd49b1a58502e7f2d0a27494b13cb64617c9b97bf2ce1a77dd1832ac5190af8a3957b9a520da18d4e480c1d114bcaafff22e78f5e9b09c44df7be7cf8adc82b6d7a6726e590d8ce1270ae50b7dd4171153a5a6c22aa7ea749890bdbfa1681332ac73043457c1ed59d08bb8476dd69640b6f8d05ee3cefb9501a14d18fe46c3b33d3c4ceebf5765e63636f39aae28ac265ab6ec774df397dfa529d6ed488b33f2fd05504ada619c49e4d8b34b001a213b11b2e05d44e1e49388e48d813baa9e", 0xf9}], 0x9, &(0x7f0000000580), 0x0, 0x400d0}}], 0x2, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0b0000001f0000000200000022bf000001000000", @ANYRES32, @ANYBLOB="08000000dd0000000000000000c8d05300000000", @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r4 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r4, &(0x7f0000000080)={&(0x7f0000000100)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e20, @local}}, 0x80, 0x0, 0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="1000000010010000071885d2931c6761"], 0x10}, 0x40)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, r3, 0x0, 0xa002a0}, 0x38)
openat$sequencer(0xffffff9c, &(0x7f0000001bc0), 0x88302, 0x0)
openat$binfmt(0xffffff9c, 0x0, 0x41, 0x1ff)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14080, 0x50000}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
r6 = fsopen(&(0x7f00000001c0)='omfs\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r6, 0x5, &(0x7f00000003c0)='\x02\x00\x1f\xe9>\x04\x17)\x12\x10(\xcc\x913p\x84,\'\x89\x92\x96\xb5\xf4e-\xad\xd1\xe9\xe2\x19\x1ev\xd3,5\xac\xaa\x7f\v\xa2\xd7\x00B\xc0\x8eJ^8`\xdf\r(Z\xcdP\a\xa5\xef)\\\xf5\xff\a\xf2\rA\xb7\x97\xc2\xca\xf0\x96\x0e\x80\xadL\f#\xfd\x10\xc9\x91^\x94\x8c\xb6\tR\xe1`Pok\xa8;\xfa\x99\xf3?\xfe\x06^\xd8$=\xa1#\f\xe8\xdc\xc3\x00\x90=\x83\xbe\xe8\xb9\xaf\x91e\xdf\x1f0\xd0yu\x1a_\xa5\xd8\x8ft\x8e\x8dm\xa7\x80K\xea\xb0\x91\x97\x90\xe7S\xcaWR\xbe\xf7c/\xa7Z\x8ce\x8cp\x82h\xa4\x12\xa7]\x15g', 0x0, 0xffffffffffffffff)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x5, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0x1}, {0xffff, 0xffff}, {0x3, 0x9}}, [@qdisc_kind_options=@q_choke={{0xa}, {0xc, 0x2, [@TCA_CHOKE_MAX_P={0x8, 0x3, 0x10001}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4810}, 0x20000004)

825.216058ms ago: executing program 0 (id=583):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040), 0x8)
r1 = syz_io_uring_setup(0x1104, 0x0, &(0x7f00000003c0), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_FILES2(r1, 0xd, &(0x7f0000000280)={0x2, 0x0, 0x0, &(0x7f0000000040), &(0x7f0000000080)=[0x1003, 0x80000001]}, 0x20)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c30000"], 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0xc2dc}, 0x94)
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000180)=r4, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r0)
sendmsg$TIPC_NL_LINK_RESET_STATS(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000a80)={0x180, r6, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x800}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA={0x48, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8000}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_NODE={0xf4, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_ID={0xe6, 0x3, "df005b7046fb552bf8910841f2d135a55ef58cb97fefaebf1fffa16e6a49d379377bae23ad6516456fe7181471292eb2f69acb095e91c3e2b4cccc663166a72093fdbd1ace91dc2dd11e256fc34bbef34c20a2cb3fe3447669aa3ec80b9caf605ee04c3aafa7f888494fe01b3622a4a0a51f7a4122c45e78243f96c6ecaf720ccdd5c492e0ffd1b67c56e77cf0cd0b10336cc33677fc4312e16228ea3e07a34c8bc654ff7218d4e79fa5c9dcd268d2e88bb8d798f4270841ccc9a6a44d099b92f1b993f86d5d7613e69b92a473c6453f3f9793a5446afb805ed243cf92d5c9787cd7"}]}]}, 0x180}}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r5, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e086dd200000006006000aac14140ce0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r7 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r7, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x68c81, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r10, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x2)
r13 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$bt_hci(r13, 0x84, 0x84, &(0x7f0000002140)=""/4092, &(0x7f0000001080)=0xffc)

350.085199ms ago: executing program 3 (id=584):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000040)=ANY=[@ANYRES32], &(0x7f0000000300)='GPL\x00', 0x2, 0xb3, &(0x7f0000000140)=""/179, 0x41100, 0x7b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
connect$unix(0xffffffffffffffff, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f0000002dc0)=[{{&(0x7f0000000440)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000000)=[{&(0x7f00000004c0)=""/252, 0xfc}], 0x1}, 0xffff}, {{&(0x7f00000005c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000640)=""/89, 0x59}, {&(0x7f00000006c0)=""/86, 0x56}, {&(0x7f0000000740)=""/63, 0x3f}, {&(0x7f0000000780)=""/86, 0x56}, {&(0x7f0000000900)=""/69, 0x45}], 0x5, &(0x7f0000000980)=""/87, 0x57}, 0x6}, {{&(0x7f0000000a00)=@qipcrtr, 0x80, &(0x7f0000001f80)=[{&(0x7f0000000a80)=""/200, 0xc8}, {&(0x7f0000000b80)=""/5, 0x5}, {&(0x7f0000000bc0)=""/152, 0x98}, {&(0x7f0000000c80)=""/54, 0x36}, {&(0x7f0000000cc0)=""/114, 0x72}, {&(0x7f0000000d40)=""/4096, 0x1000}, {&(0x7f0000001d40)=""/104, 0x68}, {&(0x7f0000001dc0)}, {&(0x7f0000001e00)=""/158, 0x9e}, {&(0x7f0000001ec0)=""/178, 0xb2}], 0xa, &(0x7f0000002000)=""/224, 0xe0}, 0x1}, {{&(0x7f0000002100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private2}}}, 0x80, &(0x7f0000002440)=[{&(0x7f0000002180)=""/199, 0xc7}, {&(0x7f0000002280)=""/203, 0xcb}, {&(0x7f0000002380)=""/186, 0xba}], 0x3, &(0x7f0000002480)=""/59, 0x3b}, 0xe0e}, {{&(0x7f00000024c0)=@hci, 0x80, &(0x7f00000028c0)=[{&(0x7f0000002580)=""/239, 0xef}, {&(0x7f0000002680)=""/182, 0xb6}, {&(0x7f0000002740)=""/236, 0xec}, {&(0x7f0000002840)=""/67, 0x43}], 0x4}}, {{&(0x7f0000002900)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000002d40)=[{&(0x7f0000002980)=""/171, 0xab}, {&(0x7f0000002a40)=""/113, 0x71}, {&(0x7f0000002ac0)=""/105, 0x69}, {&(0x7f0000002b40)=""/195, 0xc3}, {&(0x7f0000002c40)=""/236, 0xec}], 0x5, &(0x7f0000002d80)}, 0x3ff}], 0x6, 0x2, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)
r0 = socket(0x1e, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000004000000000000000100"/24], &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x40, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100", @ANYRES32=0x1, @ANYRESDEC=r0, @ANYRES32=r1, @ANYRES32, @ANYBLOB="0300000004000000000000000000000000000000002e331eaca97949b886c092f028c14dc8e089e03b20a17ced7e68168a6b8e99602658a4e19bfb0e268a278c7a6592ea774c8b41ed74fa2a56b0b6c92611a6bbf2b5934dfc26391fc78a0615f52e8b75bba02ea3c95dc619933b71f8b2b970507a9683705dd2f9c04bf65603262a1979cdee891846f88e1a9a9bca03e7ae0b0f20fc0e298d9c1e75b6110c7839dff820a4b29b3114d3ff9ee40dcc791b9fd271e973d6d8555f29bfe140539341045b2a9f8e43d0fb", @ANYBLOB="c66ab2ede2"], 0x50)
r2 = dup(0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x13, r2, 0x2000)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x22003, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x21)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0x80801, 0x0)
ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r6, 0x80083313, &(0x7f0000000080))
socket$inet_udplite(0x2, 0x2, 0x88)
socket(0x10, 0x80002, 0x0)

265.016433ms ago: executing program 2 (id=585):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0xc2200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x8081)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, 0x0, 0x0)
bind$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x4e22, @multicast1}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x45833af92e4b39ff, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x323800)
pipe(0x0)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000005c0)='fd', 0x0, 0xffffffffffffffff)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x2)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0x0, 0x0, 0x16, 0x0, "0af5a212a1bd3bbda613efd9c8b4965dca66db42f66a86e5781cf86717055a7c1d1408407e5a774ef95f2fc1b947e00f000000123f2f1d34b0882e83d41b67cb9ff147c6d33a097d2269351b3ed300"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f00000012c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x34, 0x0, "0c9e089c1b4a04000bde79f04103c458187eb46c2d996aff287154e786455261c425a7519cc275d04e6205abd307a0c4fa3838bf399ad5bd35f21907c7988d1300"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3d}}}, 0x0, 0x0, 0x11, 0x0, "a1c1dd75a68473ba07d945c3b03e10950cd4b347113e55eb4285bf274bca67efbff2fdf98328de9434031348589bf28046d14810000000e3ffffff00"}, 0xd8)
close(0x3)
setsockopt$inet_tcp_int(r3, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r3, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000280)="5338a3", 0x3}], 0x1}}], 0x1, 0x20008000)
recvmsg(r3, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001380)=[{&(0x7f0000000200)=""/112, 0x70}], 0x1}, 0x123)

150.13326ms ago: executing program 1 (id=586):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x20a, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x98, 0x0, &(0x7f0000003200)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xf0}, @transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1472, 0x0, 0x0, 0x0, 0xff8, 0x0, &(0x7f00000031c0)={0x30, 0x30, 0x1e}}}], 0x0, 0x0, 0x0}) (fail_nth: 1)

483.747µs ago: executing program 1 (id=587):
r0 = fsopen(&(0x7f00000001c0)='omfs\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000003c0)='\x02\x00\x1f\xe9>\x04\x17)\x12\x10(\xcc\x913p\x84,\'\x89\x92\x96\xb5\xf4e-\xad\xd1\xe9\xe2\x19\x1ev\xd3,5\xac\xaa\x7f\v\xa2\xd7\x00B\xc0\x8eJ^8`\xdf\r(Z\xcdP\a\xa5\xef)\\\xf5\xff\a\xf2\rA\xb7\x97\xc2\xca\xf0\x96\x0e\x80\xadL\f#\xfd\x10\xc9\x91^\x94\x8c\xb6\tR\xe1`Pok\xa8;\xfa\x99\xf3?\xfe\x06^\xd8$=\xa1#\f\xe8\xdc\xc3\x00\x90=\x83\xbe\xe8\xb9\xaf\x91e\xdf\x1f0\xd0yu\x1a_\xa5\xd8\x8ft\x8e\x8dm\xa7\x80K\xea\xb0\x91\x97\x90\xe7S\xcaWR\xbe\xf7c/\xa7Z\x8ce\x8cp\x82h\xa4\x12\xa7]\x15g', 0x0, 0xffffffffffffffff)

0s ago: executing program 1 (id=588):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r2=>0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x8})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r2, 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r3 = signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, r3})
syz_open_dev$dvb_frontend(&(0x7f0000000000), 0x0, 0x40002)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x40101)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r4, 0x0, 0x0, 0x0, {}, 0x1})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$KVM_GET_MP_STATE(0xffffffffffffffff, 0x8004ae98, &(0x7f00000000c0))
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0xf3a, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r7, 0xc040aed5, &(0x7f0000000340)={0x9000, 0x12000})

kernel console output (not intermixed with test programs):

the performance. Setting the MTU to 1532 would solve the problem.
[   54.518667][ T5938] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.551429][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.553786][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.563503][ T5938] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.587599][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.590787][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.602011][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.621679][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.624254][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.632974][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.715957][ T5944] hsr_slave_0: entered promiscuous mode
[   54.718353][ T5944] hsr_slave_1: entered promiscuous mode
[   54.720526][ T5944] debugfs: 'hsr0' already exists in 'hsr'
[   54.722430][ T5944] Cannot create hsr debugfs directory
[   54.750998][ T5938] hsr_slave_0: entered promiscuous mode
[   54.753332][ T5938] hsr_slave_1: entered promiscuous mode
[   54.755509][ T5938] debugfs: 'hsr0' already exists in 'hsr'
[   54.757415][ T5938] Cannot create hsr debugfs directory
[   54.910722][ T5937] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   54.921873][ T5937] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   54.939267][ T5937] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   54.943949][ T5937] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   54.981852][ T5945] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   54.989410][ T5945] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   54.995758][ T5945] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   55.003437][ T5945] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   55.074835][ T5944] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   55.095978][ T5944] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   55.102255][ T5944] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   55.112212][ T5944] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   55.158809][ T5938] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   55.163987][ T5938] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   55.170613][ T5938] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   55.174750][ T5938] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   55.200278][ T5937] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.220110][ T5937] 8021q: adding VLAN 0 to HW filter on device team0
[   55.239460][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.241932][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.245723][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.248105][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.265518][ T5937] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   55.269372][ T5937] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   55.285932][ T5945] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.306383][ T5945] 8021q: adding VLAN 0 to HW filter on device team0
[   55.322438][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.325080][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.330266][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.342994][  T103] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.345648][  T103] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.374856][ T5944] 8021q: adding VLAN 0 to HW filter on device team0
[   55.383420][ T5938] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.387665][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.390131][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.408627][  T103] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.410978][  T103] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.434103][ T5938] 8021q: adding VLAN 0 to HW filter on device team0
[   55.446894][ T5937] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.450715][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.453209][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.457084][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.459485][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.459597][ T5942] Bluetooth: hci2: command tx timeout
[   55.463415][ T5954] Bluetooth: hci1: command tx timeout
[   55.464492][ T5939] Bluetooth: hci3: command tx timeout
[   55.468334][ T5953] Bluetooth: hci0: command tx timeout
[   55.526613][ T5937] veth0_vlan: entered promiscuous mode
[   55.533018][ T5937] veth1_vlan: entered promiscuous mode
[   55.554557][ T5945] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.563141][ T5937] veth0_macvtap: entered promiscuous mode
[   55.569455][ T5937] veth1_macvtap: entered promiscuous mode
[   55.584516][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.594658][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.611872][ T5945] veth0_vlan: entered promiscuous mode
[   55.615213][   T61] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.622000][   T61] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.628186][   T61] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.632178][   T61] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.645428][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.650642][ T5945] veth1_vlan: entered promiscuous mode
[   55.684889][ T5938] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.706468][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.712239][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.717040][ T5945] veth0_macvtap: entered promiscuous mode
[   55.724743][ T5945] veth1_macvtap: entered promiscuous mode
[   55.752845][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.752892][ T5944] veth0_vlan: entered promiscuous mode
[   55.755435][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.765717][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.774876][ T5938] veth0_vlan: entered promiscuous mode
[   55.777289][ T5944] veth1_vlan: entered promiscuous mode
[   55.780872][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.789334][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.793401][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.800709][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.801919][ T5937] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   55.810948][ T5938] veth1_vlan: entered promiscuous mode
[   55.813269][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.823188][ T5944] veth0_macvtap: entered promiscuous mode
[   55.827081][ T5944] veth1_macvtap: entered promiscuous mode
[   55.883564][ T5938] veth0_macvtap: entered promiscuous mode
[   55.887281][ T5938] veth1_macvtap: entered promiscuous mode
[   55.907935][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.912978][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.916627][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.924099][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.929759][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.941246][   T72] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.944184][   T72] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.947320][   T72] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.958433][   T72] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.967324][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.974719][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.977564][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.020699][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.060256][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.061039][  T768] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.065646][  T768] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.066900][  T103] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.080072][  T768] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.080523][  T103] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.083802][  T768] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.137709][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.140703][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0xca000)
[   56.170507][   T72] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.173747][   T72] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.260000][ T1110] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[   56.262171][ T1110] ata1: failed to read log page 10h (errno=-5)
[   56.264273][ T1110] ata1.00: exception Emask 0x1 SAct 0xc000 SErr 0x0 action 0x0
[   56.266726][ T1110] ata1.00: irq_stat 0x41000000
[   56.275074][ T1110] ata1.00: failed command: READ FPDMA QUEUED
[   56.277080][ T1110] ata1.00: cmd 60/50:70:1e:7b:03/06:00:00:00:00/40 tag 14 ncq dma 827392 in
[   56.277080][ T1110]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   56.282170][ T6033] binder: 6030:6033 ioctl c0306201 0 returned -14
[   56.298612][ T1110] ata1.00: status: { DRDY }
[   56.300123][ T1110] ata1.00: error: { ABRT }
[   56.301582][ T1110] ata1.00: failed command: READ FPDMA QUEUED
[   56.303579][ T1110] ata1.00: cmd 60/58:78:0e:99:03/03:00:00:00:00/40 tag 15 ncq dma 438272 in
[   56.303579][ T1110]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   56.311676][ T1110] ata1.00: status: { DRDY }
[   56.313218][ T1110] ata1.00: error: { ABRT }
[   56.316310][ T1110] ata1.00: configured for UDMA/100
[   56.319162][ T1110] sd 0:0:0:0: [sda] tag#14 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[   56.328526][ T1110] sd 0:0:0:0: [sda] tag#14 Sense Key : Aborted Command [current] 
[   56.331076][ T1110] sd 0:0:0:0: [sda] tag#14 Add. Sense: No additional sense information
[   56.333814][ T1110] sd 0:0:0:0: [sda] tag#14 CDB: Read(10) 28 00 00 03 7b 1e 00 06 50 00
[   56.336659][ T1110] I/O error, dev sda, sector 228126 op 0x0:(READ) flags 0x80700 phys_seg 13 prio class 2
[   56.344067][ T1110] sd 0:0:0:0: [sda] tag#15 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[   56.347277][ T1110] sd 0:0:0:0: [sda] tag#15 Sense Key : Aborted Command [current] 
[   56.353502][ T1110] sd 0:0:0:0: [sda] tag#15 Add. Sense: No additional sense information
[   56.358721][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   56.358737][ T1110] sd 0:0:0:0: [sda] tag#15 CDB: Read(10) 28 00 00 03 99 0e 00 03 58 00
[   56.364118][ T1110] I/O error, dev sda, sector 235790 op 0x0:(READ) flags 0x80700 phys_seg 8 prio class 2
[   56.369683][ T1110] ata1: EH complete
[   56.374451][ T6035] ubi31: attaching mtd0
[   56.384831][ T6035] ubi31: scanning is finished
[   56.386560][ T6035] ubi31: empty MTD device detected
[   56.638862][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   56.641861][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   56.858492][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   56.925929][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   57.368497][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   57.409990][ T6035] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[   57.412526][ T6035] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[   57.418996][ T6035] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[   57.421530][ T6035] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[   57.428761][ T6035] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[   57.431378][ T6035] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[   57.448296][ T6035] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 663418485
[   57.451622][ T6035] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[   57.456317][ T6047] ubi31: background thread "ubi_bgt31d" started, PID 6047
[   57.545369][ T5939] Bluetooth: hci0: command tx timeout
[   57.547566][ T5939] Bluetooth: hci1: command tx timeout
[   57.550206][ T5953] Bluetooth: hci3: command tx timeout
[   57.552237][ T5953] Bluetooth: hci2: command tx timeout
[   58.430382][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.498476][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.597225][ T6058] netlink: 116 bytes leftover after parsing attributes in process `syz.2.8'.
[   58.612436][ T6058] netlink: 'syz.2.8': attribute type 1 has an invalid length.
[   58.625735][ T6058] netlink: 64 bytes leftover after parsing attributes in process `syz.2.8'.
[   58.648514][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.850991][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   59.619099][ T5942] Bluetooth: hci0: command tx timeout
[   59.619121][ T5953] Bluetooth: hci1: command tx timeout
[   59.621108][ T5942] Bluetooth: hci2: command tx timeout
[   59.621123][ T5942] Bluetooth: hci3: command tx timeout
[   59.651400][ T6074] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[   59.717816][ T6072] random: crng reseeded on system resumption
[   59.726172][ T6072] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   61.047467][ T6087] binder: 6086:6087 ioctl c0306201 0 returned -14
[   61.159183][ T6091] ubi: mtd0 is already attached to ubi31
[   61.699103][ T5953] Bluetooth: hci1: command tx timeout
[   61.701565][ T5953] Bluetooth: hci3: command tx timeout
[   61.704889][ T5953] Bluetooth: hci2: command tx timeout
[   61.715734][ T5953] Bluetooth: hci0: command tx timeout
[   62.942668][ T6108] netlink: 116 bytes leftover after parsing attributes in process `syz.2.22'.
[   62.945471][ T6108] netlink: 'syz.2.22': attribute type 1 has an invalid length.
[   62.947798][ T6108] netlink: 64 bytes leftover after parsing attributes in process `syz.2.22'.
[   65.859913][ T6131] netlink: 120 bytes leftover after parsing attributes in process `syz.1.29'.
[   65.863635][ T6131] netlink: 'syz.1.29': attribute type 1 has an invalid length.
[   65.866387][ T6131] netlink: 64 bytes leftover after parsing attributes in process `syz.1.29'.
[   66.000108][ T6135] netlink: 120 bytes leftover after parsing attributes in process `syz.3.30'.
[   66.003169][ T6135] netlink: 'syz.3.30': attribute type 1 has an invalid length.
[   66.005536][ T6135] netlink: 64 bytes leftover after parsing attributes in process `syz.3.30'.
[   67.164458][ T6144] netlink: 120 bytes leftover after parsing attributes in process `syz.1.33'.
[   67.169810][ T6144] netlink: 'syz.1.33': attribute type 1 has an invalid length.
[   67.173093][ T6144] netlink: 64 bytes leftover after parsing attributes in process `syz.1.33'.
[   70.878400][ T6175] binder: 6174:6175 ioctl c0306201 0 returned -14
[   70.938548][ T6176] ubi: mtd0 is already attached to ubi31
[   75.931532][ T6224] netlink: 120 bytes leftover after parsing attributes in process `syz.0.57'.
[   75.935241][ T6224] netlink: 'syz.0.57': attribute type 1 has an invalid length.
[   75.938496][ T6224] netlink: 64 bytes leftover after parsing attributes in process `syz.0.57'.
[   76.034365][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[   76.037129][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[   80.042231][ T6257] binder: 6256:6257 ioctl c0306201 0 returned -14
[   80.208658][ T6258] ubi: mtd0 is already attached to ubi31
[   81.062543][ T6267] netlink: 120 bytes leftover after parsing attributes in process `syz.2.70'.
[   81.066719][ T6267] netlink: 'syz.2.70': attribute type 1 has an invalid length.
[   81.070467][ T6267] netlink: 64 bytes leftover after parsing attributes in process `syz.2.70'.
[   81.270490][ T6269] binder: 6268:6269 ioctl c0306201 0 returned -14
[   81.357823][ T6272] ubi: mtd0 is already attached to ubi31
[   81.427801][ T6276] binder: 6275:6276 ioctl c0306201 0 returned -14
[   81.515450][ T6278] ubi: mtd0 is already attached to ubi31
[   81.577624][ T6281] binder: 6280:6281 ioctl c0306201 0 returned -14
[   81.723778][ T6282] ubi: mtd0 is already attached to ubi31
[   82.353128][ T6286] random: crng reseeded on system resumption
[   82.924468][ T6298] binder: 6297:6298 ioctl c0306201 0 returned -14
[   83.001431][ T6299] ubi: mtd0 is already attached to ubi31
[   83.383148][ T6303] random: crng reseeded on system resumption
[   84.663895][ T6321] random: crng reseeded on system resumption
[   85.949731][ T6330] netlink: 116 bytes leftover after parsing attributes in process `syz.1.88'.
[   85.969521][ T6330] netlink: 'syz.1.88': attribute type 1 has an invalid length.
[   85.973755][ T6330] netlink: 64 bytes leftover after parsing attributes in process `syz.1.88'.
[   86.260584][  T828] cfg80211: failed to load regulatory.db
[   86.397970][ T6339] binder: 6338:6339 ioctl c0306201 0 returned -14
[   86.466400][ T6340] ubi: mtd0 is already attached to ubi31
[   87.346912][ T6345] binder: 6344:6345 ioctl c0306201 0 returned -14
[   87.410285][ T6346] ubi: mtd0 is already attached to ubi31
[   87.710608][ T6350] netlink: 116 bytes leftover after parsing attributes in process `syz.1.96'.
[   87.714470][ T6350] netlink: 'syz.1.96': attribute type 1 has an invalid length.
[   87.717676][ T6350] netlink: 64 bytes leftover after parsing attributes in process `syz.1.96'.
[   89.442888][ T6370] random: crng reseeded on system resumption
[   90.329347][ T6372] netlink: 120 bytes leftover after parsing attributes in process `syz.3.102'.
[   90.332681][ T6372] netlink: 'syz.3.102': attribute type 1 has an invalid length.
[   90.335980][ T6372] netlink: 64 bytes leftover after parsing attributes in process `syz.3.102'.
[   91.545485][ T6388] binder: 6384:6388 ioctl c0306201 0 returned -14
[   91.642851][ T6390] ubi: mtd0 is already attached to ubi31
[   95.028805][ T6417] Zero length message leads to an empty skb
[   95.542576][ T6422] binder: 6421:6422 ioctl c0306201 0 returned -14
[   95.673934][ T6422] ubi: mtd0 is already attached to ubi31
[   96.151526][ T6430] binder: 6429:6430 ioctl c0306201 0 returned -14
[   96.214359][ T6431] ubi: mtd0 is already attached to ubi31
[   96.712729][ T6440] binder: 6439:6440 ioctl c0306201 0 returned -14
[   96.769258][ T6441] ubi: mtd0 is already attached to ubi31
[   97.493227][ T6448] binder: 6447:6448 ioctl c0306201 0 returned -14
[   97.551818][ T6450] ubi: mtd0 is already attached to ubi31
[   97.667842][ T6451] random: crng reseeded on system resumption
[   97.971838][ T6453] random: crng reseeded on system resumption
[  100.969969][ T6484] random: crng reseeded on system resumption
[  101.173717][ T6486] binder: 6485:6486 ioctl c0306201 0 returned -14
[  101.247760][ T6487] ubi: mtd0 is already attached to ubi31
[  101.342850][ T6489] netlink: 120 bytes leftover after parsing attributes in process `syz.2.136'.
[  101.346723][ T6489] netlink: 'syz.2.136': attribute type 1 has an invalid length.
[  101.350260][ T6489] netlink: 64 bytes leftover after parsing attributes in process `syz.2.136'.
[  102.713396][ T6510] netlink: 16 bytes leftover after parsing attributes in process `syz.2.141'.
[  103.396733][ T6520] netlink: 120 bytes leftover after parsing attributes in process `syz.2.145'.
[  103.400010][ T6520] netlink: 'syz.2.145': attribute type 1 has an invalid length.
[  103.402526][ T6520] netlink: 64 bytes leftover after parsing attributes in process `syz.2.145'.
[  103.616725][ T6527] Bluetooth: MGMT ver 1.23
[  103.717903][ T5942] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  104.297786][ T6546] binder: 6545:6546 ioctl c0306201 0 returned -14
[  104.355925][ T6547] ubi: mtd0 is already attached to ubi31
[  106.172253][ T6575] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  106.174467][ T6575] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  106.177796][ T6575] vhci_hcd vhci_hcd.0: Device attached
[  106.448398][ T3245] usb 38-1: SetAddress Request (2) to port 0
[  106.454677][ T6580] netlink: 120 bytes leftover after parsing attributes in process `syz.3.164'.
[  106.457021][ T3245] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[  106.457531][ T6580] netlink: 'syz.3.164': attribute type 1 has an invalid length.
[  106.468378][ T6580] netlink: 64 bytes leftover after parsing attributes in process `syz.3.164'.
[  106.540032][ T6576] vhci_hcd: connection reset by peer
[  106.542816][  T768] vhci_hcd vhci_hcd.0: stop threads
[  106.544679][  T768] vhci_hcd vhci_hcd.0: release socket
[  106.546944][  T768] vhci_hcd vhci_hcd.0: disconnect device
[  106.555187][ T6584] FAULT_INJECTION: forcing a failure.
[  106.555187][ T6584] name failslab, interval 1, probability 0, space 0, times 1
[  106.559305][ T6584] CPU: 0 UID: 0 PID: 6584 Comm: syz.3.166 Not tainted syzkaller #0 PREEMPT(full) 
[  106.559319][ T6584] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  106.559325][ T6584] Call Trace:
[  106.559329][ T6584]  <TASK>
[  106.559333][ T6584]  dump_stack_lvl+0x100/0x190
[  106.559352][ T6584]  should_fail_ex.cold+0x5/0xa
[  106.559365][ T6584]  ? tomoyo_realpath_from_path+0xb6/0x690
[  106.559378][ T6584]  should_failslab+0xc2/0x120
[  106.559390][ T6584]  __kmalloc_noprof+0xe0/0x850
[  106.559408][ T6584]  tomoyo_realpath_from_path+0xb6/0x690
[  106.559424][ T6584]  tomoyo_path_number_perm+0x23c/0x580
[  106.559441][ T6584]  ? tomoyo_path_number_perm+0x22e/0x580
[  106.559459][ T6584]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  106.559491][ T6584]  ? find_held_lock+0x2b/0x80
[  106.559501][ T6584]  ? hook_file_ioctl_common+0x146/0x410
[  106.559518][ T6584]  ? __fget_files+0x215/0x3d0
[  106.559530][ T6584]  ? __fget_files+0x21f/0x3d0
[  106.559542][ T6584]  security_file_ioctl_compat+0xd3/0x230
[  106.559561][ T6584]  __ia32_compat_sys_ioctl+0xc2/0x360
[  106.559579][ T6584]  __do_fast_syscall_32+0xe3/0x8c0
[  106.559596][ T6584]  do_fast_syscall_32+0x32/0x70
[  106.559610][ T6584]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  106.559624][ T6584] RIP: 0023:0xf6ffef6c
[  106.559633][ T6584] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  106.559643][ T6584] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  106.559653][ T6584] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004020ae76
[  106.559660][ T6584] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  106.559666][ T6584] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  106.559672][ T6584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  106.559678][ T6584] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  106.559691][ T6584]  </TASK>
[  106.559695][ T6584] ERROR: Out of memory at tomoyo_realpath_from_path.
[  106.785673][ T6593] random: crng reseeded on system resumption
[  107.556756][ T6610] netlink: 120 bytes leftover after parsing attributes in process `syz.1.175'.
[  107.559899][ T6610] netlink: 'syz.1.175': attribute type 1 has an invalid length.
[  107.562573][ T6610] netlink: 64 bytes leftover after parsing attributes in process `syz.1.175'.
[  107.844567][ T6623] random: crng reseeded on system resumption
[  108.828324][ T6637] netlink: 120 bytes leftover after parsing attributes in process `syz.1.184'.
[  108.831432][ T6637] netlink: 'syz.1.184': attribute type 1 has an invalid length.
[  108.834079][ T6637] netlink: 64 bytes leftover after parsing attributes in process `syz.1.184'.
[  109.693499][ T6642] binder: 6641:6642 ioctl c0306201 0 returned -14
[  109.755419][ T6643] ubi: mtd0 is already attached to ubi31
[  110.105959][ T6650] random: crng reseeded on system resumption
[  110.145109][ T6654] FAULT_INJECTION: forcing a failure.
[  110.145109][ T6654] name failslab, interval 1, probability 0, space 0, times 0
[  110.149373][ T6654] CPU: 2 UID: 0 PID: 6654 Comm: syz.3.190 Not tainted syzkaller #0 PREEMPT(full) 
[  110.149387][ T6654] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  110.149394][ T6654] Call Trace:
[  110.149398][ T6654]  <TASK>
[  110.149402][ T6654]  dump_stack_lvl+0x100/0x190
[  110.149422][ T6654]  should_fail_ex.cold+0x5/0xa
[  110.149436][ T6654]  ? tomoyo_realpath_from_path+0xb6/0x690
[  110.149449][ T6654]  should_failslab+0xc2/0x120
[  110.149460][ T6654]  __kmalloc_noprof+0xe0/0x850
[  110.149483][ T6654]  tomoyo_realpath_from_path+0xb6/0x690
[  110.149499][ T6654]  tomoyo_path_number_perm+0x23c/0x580
[  110.149517][ T6654]  ? tomoyo_path_number_perm+0x22e/0x580
[  110.149549][ T6654]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  110.149581][ T6654]  ? find_held_lock+0x2b/0x80
[  110.149591][ T6654]  ? hook_file_ioctl_common+0x146/0x410
[  110.149609][ T6654]  ? __fget_files+0x215/0x3d0
[  110.149621][ T6654]  ? __fget_files+0x21f/0x3d0
[  110.149633][ T6654]  security_file_ioctl_compat+0xd3/0x230
[  110.149653][ T6654]  __ia32_compat_sys_ioctl+0xc2/0x360
[  110.149670][ T6654]  __do_fast_syscall_32+0xe3/0x8c0
[  110.149687][ T6654]  do_fast_syscall_32+0x32/0x70
[  110.149701][ T6654]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.149716][ T6654] RIP: 0023:0xf6ffef6c
[  110.149725][ T6654] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  110.149735][ T6654] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  110.149746][ T6654] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000000ae80
[  110.149752][ T6654] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  110.149758][ T6654] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.149764][ T6654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  110.149770][ T6654] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.149783][ T6654]  </TASK>
[  110.149815][ T6654] ERROR: Out of memory at tomoyo_realpath_from_path.
[  110.580309][ T6668] binder: 6667:6668 ioctl c0306201 0 returned -14
[  110.657206][ T6673] ubi: mtd0 is already attached to ubi31
[  111.045805][ T6681] FAULT_INJECTION: forcing a failure.
[  111.045805][ T6681] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  111.052995][ T6681] CPU: 3 UID: 0 PID: 6681 Comm: syz.0.198 Not tainted syzkaller #0 PREEMPT(full) 
[  111.053010][ T6681] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  111.053016][ T6681] Call Trace:
[  111.053020][ T6681]  <TASK>
[  111.053025][ T6681]  dump_stack_lvl+0x100/0x190
[  111.053045][ T6681]  should_fail_ex.cold+0x5/0xa
[  111.053058][ T6681]  _copy_from_user+0x2e/0xd0
[  111.053070][ T6681]  get_compat_msghdr+0xb3/0x4b0
[  111.053086][ T6681]  ? __pfx_get_compat_msghdr+0x10/0x10
[  111.053104][ T6681]  ___sys_sendmsg+0x1b6/0x1e0
[  111.053123][ T6681]  ? __pfx____sys_sendmsg+0x10/0x10
[  111.053155][ T6681]  __sys_sendmsg+0x170/0x220
[  111.053169][ T6681]  ? __pfx___sys_sendmsg+0x10/0x10
[  111.053187][ T6681]  ? __pfx_ksys_write+0x10/0x10
[  111.053200][ T6681]  __do_fast_syscall_32+0xe3/0x8c0
[  111.053217][ T6681]  do_fast_syscall_32+0x32/0x70
[  111.053231][ T6681]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  111.053245][ T6681] RIP: 0023:0xf7f84f6c
[  111.053254][ T6681] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  111.053264][ T6681] RSP: 002b:00000000f544650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  111.053274][ T6681] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0
[  111.053281][ T6681] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000000
[  111.053287][ T6681] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  111.053293][ T6681] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  111.053299][ T6681] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  111.053311][ T6681]  </TASK>
[  111.514660][ T6700] FAULT_INJECTION: forcing a failure.
[  111.514660][ T6700] name failslab, interval 1, probability 0, space 0, times 0
[  111.519376][ T6700] CPU: 2 UID: 0 PID: 6700 Comm: syz.2.205 Not tainted syzkaller #0 PREEMPT(full) 
[  111.519390][ T6700] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  111.519396][ T6700] Call Trace:
[  111.519400][ T6700]  <TASK>
[  111.519405][ T6700]  dump_stack_lvl+0x100/0x190
[  111.519425][ T6700]  should_fail_ex.cold+0x5/0xa
[  111.519438][ T6700]  should_failslab+0xc2/0x120
[  111.519456][ T6700]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  111.519473][ T6700]  ? __alloc_skb+0x140/0x710
[  111.519489][ T6700]  __alloc_skb+0x140/0x710
[  111.519501][ T6700]  ? __pfx___alloc_skb+0x10/0x10
[  111.519513][ T6700]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  111.519527][ T6700]  tcp_stream_alloc_skb+0x34/0x660
[  111.519545][ T6700]  tcp_sendmsg_locked+0x1396/0x45e0
[  111.519577][ T6700]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  111.519602][ T6700]  ? do_raw_spin_lock+0x128/0x260
[  111.519628][ T6700]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  111.519659][ T6700]  ? __local_bh_enable_ip+0x9e/0x120
[  111.519680][ T6700]  tcp_sendmsg+0x2e/0x50
[  111.519699][ T6700]  ? __pfx_tcp_sendmsg+0x10/0x10
[  111.519715][ T6700]  inet_sendmsg+0xb9/0x140
[  111.519732][ T6700]  __sys_sendto+0x446/0x4b0
[  111.519743][ T6700]  ? __pfx_inet_sendmsg+0x10/0x10
[  111.519760][ T6700]  ? __pfx___sys_sendto+0x10/0x10
[  111.519777][ T6700]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  111.519797][ T6700]  ? fput+0x79/0x100
[  111.519809][ T6700]  ? ksys_write+0x1ac/0x250
[  111.519820][ T6700]  __ia32_sys_sendto+0xdd/0x1b0
[  111.519832][ T6700]  ? __do_fast_syscall_32+0x94/0x8c0
[  111.519847][ T6700]  ? lockdep_hardirqs_on+0x78/0x100
[  111.519860][ T6700]  __do_fast_syscall_32+0xe3/0x8c0
[  111.519875][ T6700]  do_fast_syscall_32+0x32/0x70
[  111.519890][ T6700]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  111.519904][ T6700] RIP: 0023:0xf6feef6c
[  111.519913][ T6700] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  111.519923][ T6700] RSP: 002b:00000000f53dd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000171
[  111.519934][ T6700] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000580
[  111.519941][ T6700] RDX: 000000000000059a RSI: 0000000010008095 RDI: 0000000000000000
[  111.519949][ T6700] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  111.519955][ T6700] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  111.519961][ T6700] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  111.519974][ T6700]  </TASK>
[  111.628725][ T3245] usb 38-1: device descriptor read/8, error -110
[  111.820294][ T6709] binder: 6708:6709 ioctl c0306201 0 returned -14
[  111.883617][ T6710] ubi: mtd0 is already attached to ubi31
[  112.088813][ T3245] usb usb38-port1: attempt power cycle
[  112.246774][ T6713] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  112.669186][ T3245] usb usb38-port1: unable to enumerate USB device
[  113.130831][ T6730] netlink: 120 bytes leftover after parsing attributes in process `syz.3.215'.
[  113.133820][ T6730] netlink: 'syz.3.215': attribute type 1 has an invalid length.
[  113.136378][ T6730] netlink: 64 bytes leftover after parsing attributes in process `syz.3.215'.
[  113.450770][ T6737] FAULT_INJECTION: forcing a failure.
[  113.450770][ T6737] name failslab, interval 1, probability 0, space 0, times 0
[  113.454910][ T6737] CPU: 3 UID: 0 PID: 6737 Comm: syz.2.218 Not tainted syzkaller #0 PREEMPT(full) 
[  113.454925][ T6737] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  113.454931][ T6737] Call Trace:
[  113.454935][ T6737]  <TASK>
[  113.454940][ T6737]  dump_stack_lvl+0x100/0x190
[  113.454960][ T6737]  should_fail_ex.cold+0x5/0xa
[  113.454973][ T6737]  ? tomoyo_realpath_from_path+0xb6/0x690
[  113.454986][ T6737]  should_failslab+0xc2/0x120
[  113.454997][ T6737]  __kmalloc_noprof+0xe0/0x850
[  113.455016][ T6737]  tomoyo_realpath_from_path+0xb6/0x690
[  113.455032][ T6737]  tomoyo_path_number_perm+0x23c/0x580
[  113.455049][ T6737]  ? tomoyo_path_number_perm+0x22e/0x580
[  113.455067][ T6737]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  113.455098][ T6737]  ? find_held_lock+0x2b/0x80
[  113.455108][ T6737]  ? hook_file_ioctl_common+0x146/0x410
[  113.455126][ T6737]  ? __fget_files+0x215/0x3d0
[  113.455138][ T6737]  ? __fget_files+0x21f/0x3d0
[  113.455150][ T6737]  security_file_ioctl_compat+0xd3/0x230
[  113.455169][ T6737]  __ia32_compat_sys_ioctl+0xc2/0x360
[  113.455187][ T6737]  __do_fast_syscall_32+0xe3/0x8c0
[  113.455204][ T6737]  do_fast_syscall_32+0x32/0x70
[  113.455218][ T6737]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  113.455232][ T6737] RIP: 0023:0xf6feef6c
[  113.455241][ T6737] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  113.455251][ T6737] RSP: 002b:00000000f53dd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  113.455262][ T6737] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  113.455268][ T6737] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  113.455274][ T6737] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  113.455280][ T6737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  113.455286][ T6737] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  113.455300][ T6737]  </TASK>
[  113.455304][ T6737] ERROR: Out of memory at tomoyo_realpath_from_path.
[  113.513685][ T6739] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  113.556200][ T6737] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  113.893197][ T6752] binder: 6751:6752 ioctl c0306201 0 returned -14
[  113.930007][ T6754] netlink: 120 bytes leftover after parsing attributes in process `syz.1.224'.
[  113.933893][ T6754] netlink: 'syz.1.224': attribute type 1 has an invalid length.
[  113.936414][ T6754] netlink: 64 bytes leftover after parsing attributes in process `syz.1.224'.
[  113.973732][ T6755] ubi: mtd0 is already attached to ubi31
[  114.248755][ T6763] FAULT_INJECTION: forcing a failure.
[  114.248755][ T6763] name failslab, interval 1, probability 0, space 0, times 0
[  114.252930][ T6763] CPU: 2 UID: 0 PID: 6763 Comm: syz.1.226 Not tainted syzkaller #0 PREEMPT(full) 
[  114.252945][ T6763] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  114.252951][ T6763] Call Trace:
[  114.252955][ T6763]  <TASK>
[  114.252960][ T6763]  dump_stack_lvl+0x100/0x190
[  114.252987][ T6763]  should_fail_ex.cold+0x5/0xa
[  114.253000][ T6763]  ? tomoyo_realpath_from_path+0xb6/0x690
[  114.253017][ T6763]  should_failslab+0xc2/0x120
[  114.253029][ T6763]  __kmalloc_noprof+0xe0/0x850
[  114.253048][ T6763]  tomoyo_realpath_from_path+0xb6/0x690
[  114.253064][ T6763]  tomoyo_path_number_perm+0x23c/0x580
[  114.253082][ T6763]  ? tomoyo_path_number_perm+0x22e/0x580
[  114.253100][ T6763]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  114.253131][ T6763]  ? find_held_lock+0x2b/0x80
[  114.253141][ T6763]  ? hook_file_ioctl_common+0x146/0x410
[  114.253159][ T6763]  ? __fget_files+0x215/0x3d0
[  114.253172][ T6763]  ? __fget_files+0x21f/0x3d0
[  114.253183][ T6763]  security_file_ioctl_compat+0xd3/0x230
[  114.253203][ T6763]  __ia32_compat_sys_ioctl+0xc2/0x360
[  114.253221][ T6763]  __do_fast_syscall_32+0xe3/0x8c0
[  114.253242][ T6763]  do_fast_syscall_32+0x32/0x70
[  114.253256][ T6763]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  114.253271][ T6763] RIP: 0023:0xf708ef6c
[  114.253280][ T6763] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  114.253290][ T6763] RSP: 002b:00000000f545c50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  114.253300][ T6763] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  114.253307][ T6763] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  114.253313][ T6763] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  114.253318][ T6763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  114.253324][ T6763] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  114.253337][ T6763]  </TASK>
[  114.253342][ T6763] ERROR: Out of memory at tomoyo_realpath_from_path.
[  115.060835][   T40] audit: type=1326 audit(1773257844.483:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6774 comm="syz.3.229" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf6ffef6c code=0x0
[  115.171080][ T6779] FAULT_INJECTION: forcing a failure.
[  115.171080][ T6779] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.176793][ T6779] CPU: 3 UID: 0 PID: 6779 Comm: syz.0.231 Not tainted syzkaller #0 PREEMPT(full) 
[  115.176822][ T6779] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  115.176831][ T6779] Call Trace:
[  115.176837][ T6779]  <TASK>
[  115.176843][ T6779]  dump_stack_lvl+0x100/0x190
[  115.176871][ T6779]  should_fail_ex.cold+0x5/0xa
[  115.176890][ T6779]  _copy_to_iter+0x1f3/0x1720
[  115.176918][ T6779]  ? __pfx___skb_try_recv_datagram+0x10/0x10
[  115.176937][ T6779]  ? __pfx__copy_to_iter+0x10/0x10
[  115.176964][ T6779]  ? __skb_recv_datagram+0x1b2/0x220
[  115.176985][ T6779]  simple_copy_to_iter+0x46/0x90
[  115.177010][ T6779]  __skb_datagram_iter+0x129/0x900
[  115.177032][ T6779]  ? __pfx__kstrtoull+0x10/0x10
[  115.177050][ T6779]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  115.177077][ T6779]  ? skb_recv_datagram+0x88/0xc0
[  115.177096][ T6779]  skb_copy_datagram_iter+0xa1/0x270
[  115.177123][ T6779]  raw_recvmsg+0x19f/0x740
[  115.177151][ T6779]  ? __pfx_raw_recvmsg+0x10/0x10
[  115.177180][ T6779]  ? __pfx_raw_recvmsg+0x10/0x10
[  115.177202][ T6779]  inet_recvmsg+0x625/0x6a0
[  115.177228][ T6779]  ? __pfx_inet_recvmsg+0x10/0x10
[  115.177251][ T6779]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  115.177276][ T6779]  ? __pfx_inet_recvmsg+0x10/0x10
[  115.177301][ T6779]  sock_recvmsg+0x187/0x1f0
[  115.177326][ T6779]  __sys_recvfrom+0x200/0x300
[  115.177345][ T6779]  ? __pfx___sys_recvfrom+0x10/0x10
[  115.177370][ T6779]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  115.177400][ T6779]  ? fput+0x79/0x100
[  115.177419][ T6779]  ? ksys_write+0x1ac/0x250
[  115.177436][ T6779]  __ia32_compat_sys_recvfrom+0xe4/0x1c0
[  115.177456][ T6779]  ? __do_fast_syscall_32+0x94/0x8c0
[  115.177476][ T6779]  ? lockdep_hardirqs_on+0x78/0x100
[  115.177495][ T6779]  __do_fast_syscall_32+0xe3/0x8c0
[  115.177517][ T6779]  do_fast_syscall_32+0x32/0x70
[  115.177537][ T6779]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  115.177558][ T6779] RIP: 0023:0xf7f84f6c
[  115.177572][ T6779] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  115.177586][ T6779] RSP: 002b:00000000f544650c EFLAGS: 00000292 ORIG_RAX: 0000000000000173
[  115.177603][ T6779] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000e40
[  115.177613][ T6779] RDX: 0000000000001000 RSI: 0000000040010120 RDI: 0000000000000000
[  115.177623][ T6779] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  115.177632][ T6779] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  115.177640][ T6779] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  115.177662][ T6779]  </TASK>
[  115.337469][ T6782] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  115.339695][ T6782] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  115.344129][ T6782] vhci_hcd vhci_hcd.0: Device attached
[  115.439573][ T6786] netlink: 120 bytes leftover after parsing attributes in process `syz.2.233'.
[  115.442601][ T6786] netlink: 'syz.2.233': attribute type 1 has an invalid length.
[  115.445209][ T6786] netlink: 64 bytes leftover after parsing attributes in process `syz.2.233'.
[  115.498988][ T6783] vhci_hcd: connection closed
[  115.500316][  T768] vhci_hcd vhci_hcd.0: stop threads
[  115.504397][  T768] vhci_hcd vhci_hcd.0: release socket
[  115.510040][  T768] vhci_hcd vhci_hcd.0: disconnect device
[  115.518422][ T3245] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  115.549378][ T5942] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  115.552667][ T5942] Bluetooth: hci3: Injecting HCI hardware error event
[  115.555555][ T5942] Bluetooth: hci3: hardware error 0x00
[  115.872158][ T6806] binder: 6805:6806 ioctl c0306201 0 returned -14
[  115.934868][ T6807] ubi: mtd0 is already attached to ubi31
[  115.947646][ T6809] netlink: 120 bytes leftover after parsing attributes in process `syz.3.242'.
[  115.952523][ T6809] netlink: 'syz.3.242': attribute type 1 has an invalid length.
[  115.955913][ T6809] netlink: 64 bytes leftover after parsing attributes in process `syz.3.242'.
[  116.131796][ T6811] FAULT_INJECTION: forcing a failure.
[  116.131796][ T6811] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.135958][ T6811] CPU: 3 UID: 0 PID: 6811 Comm: syz.0.243 Not tainted syzkaller #0 PREEMPT(full) 
[  116.135974][ T6811] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  116.135981][ T6811] Call Trace:
[  116.135986][ T6811]  <TASK>
[  116.135990][ T6811]  dump_stack_lvl+0x100/0x190
[  116.136010][ T6811]  should_fail_ex.cold+0x5/0xa
[  116.136023][ T6811]  _copy_from_user+0x2e/0xd0
[  116.136034][ T6811]  get_compat_msghdr+0xb3/0x4b0
[  116.136049][ T6811]  ? __pfx_get_compat_msghdr+0x10/0x10
[  116.136067][ T6811]  ___sys_sendmsg+0x1b6/0x1e0
[  116.136085][ T6811]  ? __pfx____sys_sendmsg+0x10/0x10
[  116.136118][ T6811]  __sys_sendmsg+0x170/0x220
[  116.136131][ T6811]  ? __pfx___sys_sendmsg+0x10/0x10
[  116.136149][ T6811]  ? __pfx_ksys_write+0x10/0x10
[  116.136162][ T6811]  __do_fast_syscall_32+0xe3/0x8c0
[  116.136179][ T6811]  do_fast_syscall_32+0x32/0x70
[  116.136193][ T6811]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  116.136207][ T6811] RIP: 0023:0xf7f84f6c
[  116.136216][ T6811] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  116.136226][ T6811] RSP: 002b:00000000f544650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  116.136237][ T6811] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  116.136244][ T6811] RDX: 0000000000044004 RSI: 0000000000000000 RDI: 0000000000000000
[  116.136250][ T6811] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  116.136255][ T6811] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  116.136261][ T6811] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  116.136274][ T6811]  </TASK>
[  116.227420][ T6813] netlink: 8 bytes leftover after parsing attributes in process `syz.0.244'.
[  116.231450][ T6813] tmpfs: Bad value for 'mpol'
[  116.233202][ T6814] tmpfs: Bad value for 'mpol'
[  116.404547][   T40] audit: type=1326 audit(1773257845.833:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6815 comm="syz.0.245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f84f6c code=0x7ffc0000
[  116.416593][   T40] audit: type=1326 audit(1773257845.843:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6815 comm="syz.0.245" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f84f6c code=0x7ffc0000
[  116.432120][   T40] audit: type=1326 audit(1773257845.843:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6815 comm="syz.0.245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f84f6c code=0x7ffc0000
[  116.461460][   T40] audit: type=1326 audit(1773257845.843:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6815 comm="syz.0.245" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7f84f6c code=0x7ffc0000
[  116.470027][   T40] audit: type=1326 audit(1773257845.843:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6815 comm="syz.0.245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f84f6c code=0x7ffc0000
[  116.478236][   T40] audit: type=1326 audit(1773257845.853:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6815 comm="syz.0.245" exe="/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf7f84f6c code=0x7ffc0000
[  116.487630][   T40] audit: type=1326 audit(1773257845.883:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6815 comm="syz.0.245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f84f6c code=0x7ffc0000
[  116.501168][   T40] audit: type=1326 audit(1773257845.893:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6815 comm="syz.0.245" exe="/syz-executor" sig=0 arch=40000003 syscall=288 compat=1 ip=0xf7f84f6c code=0x7ffc0000
[  116.655827][   T40] audit: type=1326 audit(1773257846.083:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6815 comm="syz.0.245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f84f6c code=0x7ffc0000
[  117.632606][ T5942] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  117.841108][ T6837] binder: 6836:6837 ioctl c0306201 0 returned -14
[  117.903298][ T6838] ubi: mtd0 is already attached to ubi31
[  118.327259][ T6844] =======================================================
[  118.327259][ T6844] WARNING: The mand mount option has been deprecated and
[  118.327259][ T6844]          and is ignored by this kernel. Remove the mand
[  118.327259][ T6844]          option from the mount to silence this warning.
[  118.327259][ T6844] =======================================================
[  118.339874][ T6844] 9p: Bad value for 'wfdno'
[  118.375917][ T6849] FAULT_INJECTION: forcing a failure.
[  118.375917][ T6849] name failslab, interval 1, probability 0, space 0, times 0
[  118.380107][ T6849] CPU: 3 UID: 0 PID: 6849 Comm: syz.0.254 Not tainted syzkaller #0 PREEMPT(full) 
[  118.380121][ T6849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  118.380127][ T6849] Call Trace:
[  118.380131][ T6849]  <TASK>
[  118.380136][ T6849]  dump_stack_lvl+0x100/0x190
[  118.380155][ T6849]  should_fail_ex.cold+0x5/0xa
[  118.380169][ T6849]  should_failslab+0xc2/0x120
[  118.380180][ T6849]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  118.380197][ T6849]  ? do_getname+0x35/0x390
[  118.380213][ T6849]  do_getname+0x35/0x390
[  118.380232][ T6849]  __ia32_sys_renameat2+0xc9/0x140
[  118.380247][ T6849]  __do_fast_syscall_32+0xe3/0x8c0
[  118.380264][ T6849]  do_fast_syscall_32+0x32/0x70
[  118.380278][ T6849]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  118.380293][ T6849] RIP: 0023:0xf7f84f6c
[  118.380302][ T6849] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  118.380312][ T6849] RSP: 002b:00000000f544650c EFLAGS: 00000292 ORIG_RAX: 0000000000000161
[  118.380323][ T6849] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000480
[  118.380329][ T6849] RDX: 00000000ffffff9c RSI: 00000000800004c0 RDI: 0000000000000000
[  118.380335][ T6849] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  118.380341][ T6849] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  118.380347][ T6849] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  118.380360][ T6849]  </TASK>
[  118.479726][ T6851] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  118.652897][ T6858] FAULT_INJECTION: forcing a failure.
[  118.652897][ T6858] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.657091][ T6858] CPU: 2 UID: 0 PID: 6858 Comm: syz.0.258 Not tainted syzkaller #0 PREEMPT(full) 
[  118.657105][ T6858] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  118.657112][ T6858] Call Trace:
[  118.657116][ T6858]  <TASK>
[  118.657120][ T6858]  dump_stack_lvl+0x100/0x190
[  118.657140][ T6858]  should_fail_ex.cold+0x5/0xa
[  118.657153][ T6858]  _copy_from_user+0x2e/0xd0
[  118.657165][ T6858]  get_compat_msghdr+0xb3/0x4b0
[  118.657179][ T6858]  ? __pfx_get_compat_msghdr+0x10/0x10
[  118.657197][ T6858]  ___sys_sendmsg+0x1b6/0x1e0
[  118.657215][ T6858]  ? __pfx____sys_sendmsg+0x10/0x10
[  118.657248][ T6858]  __sys_sendmsg+0x170/0x220
[  118.657262][ T6858]  ? __pfx___sys_sendmsg+0x10/0x10
[  118.657279][ T6858]  ? __pfx_ksys_write+0x10/0x10
[  118.657292][ T6858]  __do_fast_syscall_32+0xe3/0x8c0
[  118.657309][ T6858]  do_fast_syscall_32+0x32/0x70
[  118.657323][ T6858]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  118.657338][ T6858] RIP: 0023:0xf7f84f6c
[  118.657347][ T6858] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  118.657357][ T6858] RSP: 002b:00000000f544650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  118.657367][ T6858] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  118.657374][ T6858] RDX: 00000000200080c0 RSI: 0000000000000000 RDI: 0000000000000000
[  118.657380][ T6858] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  118.657386][ T6858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  118.657392][ T6858] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  118.657405][ T6858]  </TASK>
[  118.811947][ T6862] netlink: 120 bytes leftover after parsing attributes in process `syz.0.260'.
[  118.814905][ T6862] netlink: 'syz.0.260': attribute type 1 has an invalid length.
[  118.817400][ T6862] netlink: 64 bytes leftover after parsing attributes in process `syz.0.260'.
[  118.909281][ T6870] FAULT_INJECTION: forcing a failure.
[  118.909281][ T6870] name failslab, interval 1, probability 0, space 0, times 0
[  118.913323][ T6870] CPU: 1 UID: 0 PID: 6870 Comm: syz.3.264 Not tainted syzkaller #0 PREEMPT(full) 
[  118.913341][ T6870] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  118.913348][ T6870] Call Trace:
[  118.913352][ T6870]  <TASK>
[  118.913356][ T6870]  dump_stack_lvl+0x100/0x190
[  118.913376][ T6870]  should_fail_ex.cold+0x5/0xa
[  118.913388][ T6870]  ? tomoyo_realpath_from_path+0xb6/0x690
[  118.913401][ T6870]  should_failslab+0xc2/0x120
[  118.913413][ T6870]  __kmalloc_noprof+0xe0/0x850
[  118.913432][ T6870]  tomoyo_realpath_from_path+0xb6/0x690
[  118.913448][ T6870]  tomoyo_path_number_perm+0x23c/0x580
[  118.913466][ T6870]  ? tomoyo_path_number_perm+0x22e/0x580
[  118.913484][ T6870]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  118.913529][ T6870]  ? find_held_lock+0x2b/0x80
[  118.913539][ T6870]  ? hook_file_ioctl_common+0x146/0x410
[  118.913556][ T6870]  ? __fget_files+0x215/0x3d0
[  118.913569][ T6870]  ? __fget_files+0x21f/0x3d0
[  118.913581][ T6870]  security_file_ioctl_compat+0xd3/0x230
[  118.913600][ T6870]  __ia32_compat_sys_ioctl+0xc2/0x360
[  118.913618][ T6870]  __do_fast_syscall_32+0xe3/0x8c0
[  118.913634][ T6870]  do_fast_syscall_32+0x32/0x70
[  118.913648][ T6870]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  118.913662][ T6870] RIP: 0023:0xf6ffef6c
[  118.913671][ T6870] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  118.913681][ T6870] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  118.913692][ T6870] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c03864bc
[  118.913698][ T6870] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  118.913704][ T6870] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  118.913710][ T6870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  118.913716][ T6870] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  118.913729][ T6870]  </TASK>
[  118.913765][ T6870] ERROR: Out of memory at tomoyo_realpath_from_path.
[  119.041774][ T6873] binder: 6871:6873 ioctl c0306201 0 returned -14
[  119.111552][ T6876] ubi: mtd0 is already attached to ubi31
[  119.232845][ T6880] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  119.431320][ T6883] FAULT_INJECTION: forcing a failure.
[  119.431320][ T6883] name failslab, interval 1, probability 0, space 0, times 0
[  119.436783][ T6883] CPU: 3 UID: 0 PID: 6883 Comm: syz.3.269 Not tainted syzkaller #0 PREEMPT(full) 
[  119.436803][ T6883] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  119.436813][ T6883] Call Trace:
[  119.436819][ T6883]  <TASK>
[  119.436825][ T6883]  dump_stack_lvl+0x100/0x190
[  119.436854][ T6883]  should_fail_ex.cold+0x5/0xa
[  119.436873][ T6883]  ? tomoyo_realpath_from_path+0xb6/0x690
[  119.436892][ T6883]  should_failslab+0xc2/0x120
[  119.436908][ T6883]  __kmalloc_noprof+0xe0/0x850
[  119.436938][ T6883]  tomoyo_realpath_from_path+0xb6/0x690
[  119.436962][ T6883]  tomoyo_path_number_perm+0x23c/0x580
[  119.436987][ T6883]  ? tomoyo_path_number_perm+0x22e/0x580
[  119.437015][ T6883]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  119.437067][ T6883]  ? find_held_lock+0x2b/0x80
[  119.437083][ T6883]  ? hook_file_ioctl_common+0x146/0x410
[  119.437110][ T6883]  ? __fget_files+0x215/0x3d0
[  119.437130][ T6883]  ? __fget_files+0x21f/0x3d0
[  119.437151][ T6883]  security_file_ioctl_compat+0xd3/0x230
[  119.437179][ T6883]  __ia32_compat_sys_ioctl+0xc2/0x360
[  119.437206][ T6883]  __do_fast_syscall_32+0xe3/0x8c0
[  119.437233][ T6883]  do_fast_syscall_32+0x32/0x70
[  119.437255][ T6883]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  119.437277][ T6883] RIP: 0023:0xf6ffef6c
[  119.437291][ T6883] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  119.437306][ T6883] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  119.437322][ T6883] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  119.437332][ T6883] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  119.437342][ T6883] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  119.437351][ T6883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  119.437361][ T6883] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  119.437385][ T6883]  </TASK>
[  119.437392][ T6883] ERROR: Out of memory at tomoyo_realpath_from_path.
[  119.521095][ T6883] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  119.618402][ T6895] binder: 6894:6895 ioctl c0306201 0 returned -14
[  119.647432][ T6897] netlink: 120 bytes leftover after parsing attributes in process `syz.3.272'.
[  119.651113][ T6897] netlink: 'syz.3.272': attribute type 1 has an invalid length.
[  119.653642][ T6897] netlink: 64 bytes leftover after parsing attributes in process `syz.3.272'.
[  119.693415][ T6898] ubi: mtd0 is already attached to ubi31
[  119.785077][ T6902] faux_driver vkms: [drm] Unknown color mode 257; guessing buffer size.
[  119.901613][ T6909] FAULT_INJECTION: forcing a failure.
[  119.901613][ T6909] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  119.905995][ T6909] CPU: 3 UID: 0 PID: 6909 Comm: syz.2.277 Not tainted syzkaller #0 PREEMPT(full) 
[  119.906009][ T6909] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  119.906015][ T6909] Call Trace:
[  119.906032][ T6909]  <TASK>
[  119.906037][ T6909]  dump_stack_lvl+0x100/0x190
[  119.906056][ T6909]  should_fail_ex.cold+0x5/0xa
[  119.906070][ T6909]  _copy_from_user+0x2e/0xd0
[  119.906081][ T6909]  do_tcp_getsockopt+0x366/0x2a30
[  119.906093][ T6909]  ? is_bpf_text_address+0x8a/0x1a0
[  119.906111][ T6909]  ? __pfx_do_tcp_getsockopt+0x10/0x10
[  119.906123][ T6909]  ? is_bpf_text_address+0x94/0x1a0
[  119.906140][ T6909]  ? __kernel_text_address+0xd/0x30
[  119.906157][ T6909]  ? arch_stack_walk+0xa6/0xf0
[  119.906169][ T6909]  ? __lock_acquire+0x4a5/0x2630
[  119.906184][ T6909]  ? _parse_integer_limit+0x17f/0x1d0
[  119.906198][ T6909]  ? aa_label_sk_perm+0x194/0x5f0
[  119.906211][ T6909]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  119.906220][ T6909]  ? __pfx__kstrtoull+0x10/0x10
[  119.906238][ T6909]  ? __lock_acquire+0x4a5/0x2630
[  119.906256][ T6909]  ? __pfx___might_resched+0x10/0x10
[  119.906274][ T6909]  ? aa_sk_perm+0x309/0xaa0
[  119.906286][ T6909]  ? __pfx_aa_sk_perm+0x10/0x10
[  119.906296][ T6909]  ? __lock_acquire+0x4a5/0x2630
[  119.906309][ T6909]  ? find_held_lock+0x2b/0x80
[  119.906321][ T6909]  tcp_getsockopt+0xe4/0x110
[  119.906334][ T6909]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  119.906355][ T6909]  do_sock_getsockopt+0x259/0x3d0
[  119.906372][ T6909]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  119.906394][ T6909]  __sys_getsockopt+0x133/0x1d0
[  119.906408][ T6909]  ? ksys_write+0x1ac/0x250
[  119.906420][ T6909]  ? __ia32_sys_getsockopt+0xbc/0x160
[  119.906432][ T6909]  __ia32_sys_getsockopt+0xbc/0x160
[  119.906444][ T6909]  ? __do_fast_syscall_32+0x94/0x8c0
[  119.906459][ T6909]  ? lockdep_hardirqs_on+0x78/0x100
[  119.906472][ T6909]  __do_fast_syscall_32+0xe3/0x8c0
[  119.906487][ T6909]  do_fast_syscall_32+0x32/0x70
[  119.906501][ T6909]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  119.906517][ T6909] RIP: 0023:0xf6feef6c
[  119.906526][ T6909] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  119.906536][ T6909] RSP: 002b:00000000f53dd50c EFLAGS: 00000292 ORIG_RAX: 000000000000016d
[  119.906546][ T6909] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000006
[  119.906553][ T6909] RDX: 0000000000000023 RSI: 0000000080000080 RDI: 0000000080000180
[  119.906559][ T6909] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  119.906565][ T6909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  119.906571][ T6909] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  119.906584][ T6909]  </TASK>
[  120.282493][ T6920] netlink: 120 bytes leftover after parsing attributes in process `syz.2.281'.
[  120.286407][ T6920] netlink: 'syz.2.281': attribute type 1 has an invalid length.
[  120.289644][ T6920] netlink: 64 bytes leftover after parsing attributes in process `syz.2.281'.
[  120.345422][ T6922] syz.2.283 uses obsolete (PF_INET,SOCK_PACKET)
[  120.410000][ T6924] Cache volume key already in use (9p,syz,)
[  120.434583][ T6924] FAULT_INJECTION: forcing a failure.
[  120.434583][ T6924] name failslab, interval 1, probability 0, space 0, times 0
[  120.439759][ T6924] CPU: 1 UID: 0 PID: 6924 Comm: syz.0.284 Not tainted syzkaller #0 PREEMPT(full) 
[  120.439774][ T6924] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  120.439793][ T6924] Call Trace:
[  120.439799][ T6924]  <TASK>
[  120.439803][ T6924]  dump_stack_lvl+0x100/0x190
[  120.439822][ T6924]  should_fail_ex.cold+0x5/0xa
[  120.439835][ T6924]  should_failslab+0xc2/0x120
[  120.439847][ T6924]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  120.439863][ T6924]  ? do_getname+0x35/0x390
[  120.439879][ T6924]  do_getname+0x35/0x390
[  120.439894][ T6924]  __ia32_sys_rename+0x56/0xb0
[  120.439908][ T6924]  __do_fast_syscall_32+0xe3/0x8c0
[  120.439924][ T6924]  do_fast_syscall_32+0x32/0x70
[  120.439938][ T6924]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  120.439954][ T6924] RIP: 0023:0xf7f84f6c
[  120.439963][ T6924] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  120.439973][ T6924] RSP: 002b:00000000f544650c EFLAGS: 00000292 ORIG_RAX: 0000000000000026
[  120.439984][ T6924] RAX: ffffffffffffffda RBX: 0000000080000180 RCX: 0000000080000440
[  120.439990][ T6924] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  120.439996][ T6924] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  120.440002][ T6924] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  120.440008][ T6924] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  120.440021][ T6924]  </TASK>
[  120.965026][ T6936] overlay: Unknown parameter 'smackfsdef'
[  121.205772][ T6938] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  121.207856][ T6938] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  121.213032][ T6938] vhci_hcd vhci_hcd.0: Device attached
[  121.488394][ T3245] usb 38-1: SetAddress Request (6) to port 0
[  121.490446][ T3245] usb 38-1: new SuperSpeed USB device number 6 using vhci_hcd
[  121.819973][ T6939] vhci_hcd: connection reset by peer
[  121.824137][   T12] vhci_hcd vhci_hcd.0: stop threads
[  121.826445][   T12] vhci_hcd vhci_hcd.0: release socket
[  121.829065][   T12] vhci_hcd vhci_hcd.0: disconnect device
[  123.048873][ T6956] binder: 6955:6956 ioctl c0306201 0 returned -14
[  123.155638][ T6958] ubi: mtd0 is already attached to ubi31
[  123.455359][ T6966] netlink: 'syz.0.294': attribute type 4 has an invalid length.
[  123.924464][ T6974] netlink: 8 bytes leftover after parsing attributes in process `syz.3.298'.
[  123.948365][    T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  124.108334][    T9] usb 5-1: Using ep0 maxpacket: 16
[  124.113786][    T9] usb 5-1: config 0 has no interfaces?
[  124.118028][    T9] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  124.151002][    T9] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  124.154981][    T9] usb 5-1: Manufacturer: syz
[  124.159971][    T9] usb 5-1: config 0 descriptor??
[  124.168368][ T6024] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  124.329681][ T6024] usb 8-1: config 0 has no interfaces?
[  124.333463][ T6024] usb 8-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  124.336973][ T6024] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  124.339647][ T6024] usb 8-1: Product: syz
[  124.341027][ T6024] usb 8-1: Manufacturer: syz
[  124.342562][ T6024] usb 8-1: SerialNumber: syz
[  124.347378][ T6024] usb 8-1: config 0 descriptor??
[  124.684704][ T6024] usb 8-1: USB disconnect, device number 2
[  124.895468][ T6987] netlink: 116 bytes leftover after parsing attributes in process `syz.2.302'.
[  124.901308][ T6987] netlink: 'syz.2.302': attribute type 1 has an invalid length.
[  124.904699][ T6987] netlink: 64 bytes leftover after parsing attributes in process `syz.2.302'.
[  125.283139][ T6992] netlink: 104 bytes leftover after parsing attributes in process `syz.2.304'.
[  125.306228][ T6996] binder: 6995:6996 ioctl c0306201 0 returned -14
[  125.366797][ T6997] ubi: mtd0 is already attached to ubi31
[  126.129875][ T7002] FAULT_INJECTION: forcing a failure.
[  126.129875][ T7002] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.134110][ T7002] CPU: 3 UID: 0 PID: 7002 Comm: syz.2.308 Not tainted syzkaller #0 PREEMPT(full) 
[  126.134125][ T7002] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  126.134131][ T7002] Call Trace:
[  126.134135][ T7002]  <TASK>
[  126.134139][ T7002]  dump_stack_lvl+0x100/0x190
[  126.134159][ T7002]  should_fail_ex.cold+0x5/0xa
[  126.134172][ T7002]  _copy_from_user+0x2e/0xd0
[  126.134183][ T7002]  get_compat_msghdr+0xb3/0x4b0
[  126.134197][ T7002]  ? __pfx_get_compat_msghdr+0x10/0x10
[  126.134215][ T7002]  ___sys_sendmsg+0x1b6/0x1e0
[  126.134233][ T7002]  ? __pfx____sys_sendmsg+0x10/0x10
[  126.134266][ T7002]  __sys_sendmsg+0x170/0x220
[  126.134279][ T7002]  ? __pfx___sys_sendmsg+0x10/0x10
[  126.134297][ T7002]  ? __pfx_ksys_write+0x10/0x10
[  126.134310][ T7002]  __do_fast_syscall_32+0xe3/0x8c0
[  126.134326][ T7002]  do_fast_syscall_32+0x32/0x70
[  126.134341][ T7002]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  126.134355][ T7002] RIP: 0023:0xf6feef6c
[  126.134364][ T7002] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  126.134373][ T7002] RSP: 002b:00000000f53dd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  126.134384][ T7002] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[  126.134390][ T7002] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  126.134396][ T7002] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  126.134406][ T7002] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  126.134412][ T7002] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  126.134425][ T7002]  </TASK>
[  126.386660][   T58] usb 5-1: USB disconnect, device number 2
[  126.579323][ T3245] usb 38-1: device descriptor read/8, error -110
[  126.984276][ T3245] usb usb38-port1: attempt power cycle
[  127.200131][ T7018] netlink: 116 bytes leftover after parsing attributes in process `syz.2.313'.
[  127.203873][ T7018] netlink: 'syz.2.313': attribute type 1 has an invalid length.
[  127.207186][ T7018] netlink: 64 bytes leftover after parsing attributes in process `syz.2.313'.
[  127.567865][ T3245] usb usb38-port1: unable to enumerate USB device
[  128.549543][ T7031] binder: 7030:7031 ioctl c0306201 0 returned -14
[  128.611323][ T7034] ubi: mtd0 is already attached to ubi31
[  128.613341][ T7033] 9pnet_virtio: no channels available for device syz
[  128.617922][ T7033] FAULT_INJECTION: forcing a failure.
[  128.617922][ T7033] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  128.622177][ T7033] CPU: 2 UID: 0 PID: 7033 Comm: syz.2.318 Not tainted syzkaller #0 PREEMPT(full) 
[  128.622191][ T7033] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  128.622198][ T7033] Call Trace:
[  128.622202][ T7033]  <TASK>
[  128.622206][ T7033]  dump_stack_lvl+0x100/0x190
[  128.622226][ T7033]  should_fail_ex.cold+0x5/0xa
[  128.622240][ T7033]  strncpy_from_user+0x3b/0x2d0
[  128.622259][ T7033]  path_setxattrat+0x127/0x3b0
[  128.622276][ T7033]  ? __pfx_path_setxattrat+0x10/0x10
[  128.622289][ T7033]  ? ksys_write+0x190/0x250
[  128.622299][ T7033]  ? ksys_write+0x190/0x250
[  128.622318][ T7033]  ? fput+0x79/0x100
[  128.622330][ T7033]  ? ksys_write+0x1ac/0x250
[  128.622341][ T7033]  __ia32_sys_setxattr+0xc4/0x140
[  128.622352][ T7033]  ? __do_fast_syscall_32+0x94/0x8c0
[  128.622367][ T7033]  ? lockdep_hardirqs_on+0x78/0x100
[  128.622380][ T7033]  __do_fast_syscall_32+0xe3/0x8c0
[  128.622396][ T7033]  do_fast_syscall_32+0x32/0x70
[  128.622410][ T7033]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  128.622424][ T7033] RIP: 0023:0xf6feef6c
[  128.622433][ T7033] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  128.622443][ T7033] RSP: 002b:00000000f53dd50c EFLAGS: 00000292 ORIG_RAX: 00000000000000e2
[  128.622454][ T7033] RAX: ffffffffffffffda RBX: 0000000080000080 RCX: 00000000800000c0
[  128.622460][ T7033] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  128.622466][ T7033] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  128.622472][ T7033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  128.622478][ T7033] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  128.622491][ T7033]  </TASK>
[  128.701171][ T7036] 9pnet_virtio: no channels available for device syz
[  130.973230][ T7078] netlink: 116 bytes leftover after parsing attributes in process `syz.0.333'.
[  130.976166][ T7078] netlink: 'syz.0.333': attribute type 1 has an invalid length.
[  130.978842][ T7078] netlink: 64 bytes leftover after parsing attributes in process `syz.0.333'.
[  131.191183][ T7084] binder: 7082:7084 ioctl c0306201 0 returned -14
[  131.246256][ T7086] netlink: 'syz.3.337': attribute type 1 has an invalid length.
[  131.479600][ T7092] random: crng reseeded on system resumption
[  132.602505][ T7108] FAULT_INJECTION: forcing a failure.
[  132.602505][ T7108] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.608572][ T7108] CPU: 0 UID: 0 PID: 7108 Comm: syz.0.343 Not tainted syzkaller #0 PREEMPT(full) 
[  132.608600][ T7108] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  132.608607][ T7108] Call Trace:
[  132.608611][ T7108]  <TASK>
[  132.608616][ T7108]  dump_stack_lvl+0x100/0x190
[  132.608636][ T7108]  should_fail_ex.cold+0x5/0xa
[  132.608649][ T7108]  _copy_to_iter+0x1f3/0x1720
[  132.608667][ T7108]  ? __lock_acquire+0x4a5/0x2630
[  132.608682][ T7108]  ? __pfx___ldsem_down_read_nested+0x10/0x10
[  132.608700][ T7108]  ? __pfx__copy_to_iter+0x10/0x10
[  132.608719][ T7108]  ? __pfx_woken_wake_function+0x10/0x10
[  132.608741][ T7108]  tty_read+0x242/0x550
[  132.608757][ T7108]  ? __pfx_tty_read+0x10/0x10
[  132.608776][ T7108]  do_iter_readv_writev+0x60d/0x920
[  132.608794][ T7108]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  132.608813][ T7108]  ? bpf_lsm_file_permission+0x9/0x10
[  132.608830][ T7108]  ? security_file_permission+0x76/0x210
[  132.608847][ T7108]  ? rw_verify_area+0xce/0x6d0
[  132.608864][ T7108]  vfs_readv+0x4d3/0x8d0
[  132.608884][ T7108]  ? __pfx_vfs_readv+0x10/0x10
[  132.608910][ T7108]  ? __fget_files+0x21f/0x3d0
[  132.608923][ T7108]  ? do_readv+0x13e/0x340
[  132.608939][ T7108]  do_readv+0x13e/0x340
[  132.608955][ T7108]  ? __pfx_do_readv+0x10/0x10
[  132.608971][ T7108]  ? __pfx_ksys_write+0x10/0x10
[  132.608984][ T7108]  __do_fast_syscall_32+0xe3/0x8c0
[  132.609000][ T7108]  do_fast_syscall_32+0x32/0x70
[  132.609014][ T7108]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  132.609029][ T7108] RIP: 0023:0xf7f84f6c
[  132.609038][ T7108] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  132.609048][ T7108] RSP: 002b:00000000f544650c EFLAGS: 00000292 ORIG_RAX: 0000000000000091
[  132.609059][ T7108] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  132.609066][ T7108] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  132.609072][ T7108] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  132.609078][ T7108] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  132.609084][ T7108] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  132.609097][ T7108]  </TASK>
[  132.683764][ T7115] netlink: 116 bytes leftover after parsing attributes in process `syz.0.345'.
[  132.701059][ T7115] netlink: 'syz.0.345': attribute type 1 has an invalid length.
[  132.704418][ T7115] netlink: 64 bytes leftover after parsing attributes in process `syz.0.345'.
[  132.810123][ T7123] FAULT_INJECTION: forcing a failure.
[  132.810123][ T7123] name failslab, interval 1, probability 0, space 0, times 0
[  132.814315][ T7123] CPU: 3 UID: 0 PID: 7123 Comm: syz.0.349 Not tainted syzkaller #0 PREEMPT(full) 
[  132.814330][ T7123] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  132.814336][ T7123] Call Trace:
[  132.814340][ T7123]  <TASK>
[  132.814344][ T7123]  dump_stack_lvl+0x100/0x190
[  132.814368][ T7123]  should_fail_ex.cold+0x5/0xa
[  132.814381][ T7123]  should_failslab+0xc2/0x120
[  132.814393][ T7123]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  132.814410][ T7123]  ? do_getname+0x35/0x390
[  132.814426][ T7123]  do_getname+0x35/0x390
[  132.814441][ T7123]  __ia32_sys_link+0x56/0xb0
[  132.814454][ T7123]  __do_fast_syscall_32+0xe3/0x8c0
[  132.814470][ T7123]  do_fast_syscall_32+0x32/0x70
[  132.814484][ T7123]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  132.814499][ T7123] RIP: 0023:0xf7f84f6c
[  132.814507][ T7123] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  132.814517][ T7123] RSP: 002b:00000000f544650c EFLAGS: 00000292 ORIG_RAX: 0000000000000009
[  132.814528][ T7123] RAX: ffffffffffffffda RBX: 0000000080000200 RCX: 0000000080000280
[  132.814535][ T7123] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  132.814541][ T7123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  132.814546][ T7123] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  132.814552][ T7123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  132.814565][ T7123]  </TASK>
[  132.931167][ T7130] random: crng reseeded on system resumption
[  133.011611][ T7133] FAULT_INJECTION: forcing a failure.
[  133.011611][ T7133] name failslab, interval 1, probability 0, space 0, times 0
[  133.016153][ T7133] CPU: 2 UID: 0 PID: 7133 Comm: syz.2.353 Not tainted syzkaller #0 PREEMPT(full) 
[  133.016173][ T7133] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  133.016182][ T7133] Call Trace:
[  133.016187][ T7133]  <TASK>
[  133.016194][ T7133]  dump_stack_lvl+0x100/0x190
[  133.016222][ T7133]  should_fail_ex.cold+0x5/0xa
[  133.016240][ T7133]  ? tomoyo_realpath_from_path+0xb6/0x690
[  133.016258][ T7133]  should_failslab+0xc2/0x120
[  133.016275][ T7133]  __kmalloc_noprof+0xe0/0x850
[  133.016303][ T7133]  tomoyo_realpath_from_path+0xb6/0x690
[  133.016327][ T7133]  tomoyo_path_number_perm+0x23c/0x580
[  133.016351][ T7133]  ? tomoyo_path_number_perm+0x22e/0x580
[  133.016382][ T7133]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  133.016430][ T7133]  ? find_held_lock+0x2b/0x80
[  133.016445][ T7133]  ? hook_file_ioctl_common+0x146/0x410
[  133.016470][ T7133]  ? __fget_files+0x215/0x3d0
[  133.016489][ T7133]  ? __fget_files+0x21f/0x3d0
[  133.016508][ T7133]  security_file_ioctl_compat+0xd3/0x230
[  133.016538][ T7133]  __ia32_compat_sys_ioctl+0xc2/0x360
[  133.016564][ T7133]  __do_fast_syscall_32+0xe3/0x8c0
[  133.016586][ T7133]  do_fast_syscall_32+0x32/0x70
[  133.016600][ T7133]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  133.016615][ T7133] RIP: 0023:0xf6feef6c
[  133.016624][ T7133] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  133.016634][ T7133] RSP: 002b:00000000f53dd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  133.016645][ T7133] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  133.016651][ T7133] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  133.016657][ T7133] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  133.016663][ T7133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  133.016669][ T7133] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  133.016683][ T7133]  </TASK>
[  133.016687][ T7133] ERROR: Out of memory at tomoyo_realpath_from_path.
[  133.578550][ T7145] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(12)
[  133.580801][ T7145] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  133.583541][ T7145] vhci_hcd vhci_hcd.0: Device attached
[  133.590528][ T7145] loop2: detected capacity change from 0 to 14
[  133.595127][ T7145] Dev loop2: unable to read RDB block 14
[  133.597129][ T7145]  loop2: unable to read partition table
[  133.599204][ T7145] loop2: partition table beyond EOD, truncated
[  133.601289][ T7145] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  133.715056][ T7151] ip6gretap0: entered promiscuous mode
[  133.719581][ T7151] netlink: 8 bytes leftover after parsing attributes in process `syz.1.356'.
[  133.723528][ T7151] ip6gretap0: left promiscuous mode
[  133.869015][ T3245] usb 42-1: SetAddress Request (2) to port 0
[  133.871479][ T3245] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[  134.011339][ T7153] netlink: 116 bytes leftover after parsing attributes in process `syz.3.358'.
[  134.014897][ T7153] netlink: 'syz.3.358': attribute type 1 has an invalid length.
[  134.018161][ T7153] netlink: 64 bytes leftover after parsing attributes in process `syz.3.358'.
[  134.056857][ T7148] vhci_hcd: connection reset by peer
[  134.062853][   T13] vhci_hcd vhci_hcd.2: stop threads
[  134.064856][   T13] vhci_hcd vhci_hcd.2: release socket
[  134.067320][   T13] vhci_hcd vhci_hcd.2: disconnect device
[  134.188285][ T7157] FAULT_INJECTION: forcing a failure.
[  134.188285][ T7157] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.192458][ T7157] CPU: 0 UID: 0 PID: 7157 Comm: syz.1.360 Not tainted syzkaller #0 PREEMPT(full) 
[  134.192472][ T7157] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  134.192479][ T7157] Call Trace:
[  134.192482][ T7157]  <TASK>
[  134.192487][ T7157]  dump_stack_lvl+0x100/0x190
[  134.192506][ T7157]  should_fail_ex.cold+0x5/0xa
[  134.192519][ T7157]  _copy_from_user+0x2e/0xd0
[  134.192531][ T7157]  __sys_bpf+0x243/0x4b90
[  134.192546][ T7157]  ? __pfx___sys_bpf+0x10/0x10
[  134.192558][ T7157]  ? proc_fail_nth_write+0x9f/0x220
[  134.192571][ T7157]  ? find_held_lock+0x2b/0x80
[  134.192584][ T7157]  ? find_held_lock+0x2b/0x80
[  134.192594][ T7157]  ? ksys_write+0x190/0x250
[  134.192607][ T7157]  ? __mutex_unlock_slowpath+0x15c/0x790
[  134.192631][ T7157]  ? fput+0x79/0x100
[  134.192643][ T7157]  ? ksys_write+0x1ac/0x250
[  134.192655][ T7157]  __ia32_sys_bpf+0x79/0xf0
[  134.192667][ T7157]  ? lockdep_hardirqs_on+0x78/0x100
[  134.192680][ T7157]  __do_fast_syscall_32+0xe3/0x8c0
[  134.192696][ T7157]  do_fast_syscall_32+0x32/0x70
[  134.192711][ T7157]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  134.192725][ T7157] RIP: 0023:0xf708ef6c
[  134.192734][ T7157] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  134.192743][ T7157] RSP: 002b:00000000f547d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  134.192754][ T7157] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  134.192760][ T7157] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  134.192766][ T7157] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  134.192772][ T7157] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  134.192778][ T7157] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  134.192792][ T7157]  </TASK>
[  134.326339][ T7161] capability: warning: `syz.1.362' uses deprecated v2 capabilities in a way that may be insecure
[  134.506462][ T7165] random: crng reseeded on system resumption
[  135.260545][ T7180] netlink: 116 bytes leftover after parsing attributes in process `syz.3.367'.
[  135.263595][ T7180] netlink: 'syz.3.367': attribute type 1 has an invalid length.
[  135.266210][ T7180] netlink: 64 bytes leftover after parsing attributes in process `syz.3.367'.
[  136.672893][   T24] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  136.776408][ T7202] random: crng reseeded on system resumption
[  136.820997][   T24] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  136.824721][   T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  136.830343][   T24] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  136.834277][   T24] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  136.837582][   T24] usb 6-1: Manufacturer: syz
[  136.841108][   T24] usb 6-1: config 0 descriptor??
[  136.888345][   T24] rc_core: IR keymap rc-hauppauge not found
[  136.890668][   T24] Registered IR keymap rc-empty
[  136.894571][   T24] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  136.899385][   T24] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input6
[  137.052483][   T34] usb 6-1: USB disconnect, device number 2
[  137.461141][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  137.463643][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  137.568368][   T10] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  137.739671][   T10] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  137.742595][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  137.746629][   T10] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  137.749920][   T10] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  137.752549][   T10] usb 5-1: Manufacturer: syz
[  137.756324][   T10] usb 5-1: config 0 descriptor??
[  137.818348][   T10] rc_core: IR keymap rc-hauppauge not found
[  137.820406][   T10] Registered IR keymap rc-empty
[  137.823545][   T10] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  137.829075][   T10] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input7
[  137.966630][   T10] usb 5-1: USB disconnect, device number 3
[  138.492329][ T7226] netlink: 12 bytes leftover after parsing attributes in process `syz.1.380'.
[  138.503902][ T7226] FAULT_INJECTION: forcing a failure.
[  138.503902][ T7226] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  138.507732][ T7226] CPU: 1 UID: 0 PID: 7226 Comm: syz.1.380 Not tainted syzkaller #0 PREEMPT(full) 
[  138.507758][ T7226] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  138.507765][ T7226] Call Trace:
[  138.507769][ T7226]  <TASK>
[  138.507774][ T7226]  dump_stack_lvl+0x100/0x190
[  138.507793][ T7226]  should_fail_ex.cold+0x5/0xa
[  138.507806][ T7226]  _copy_from_user+0x2e/0xd0
[  138.507817][ T7226]  get_compat_msghdr+0xb3/0x4b0
[  138.507831][ T7226]  ? __pfx_get_compat_msghdr+0x10/0x10
[  138.507849][ T7226]  ___sys_sendmsg+0x1b6/0x1e0
[  138.507868][ T7226]  ? __pfx____sys_sendmsg+0x10/0x10
[  138.507917][ T7226]  __sys_sendmsg+0x170/0x220
[  138.507932][ T7226]  ? __pfx___sys_sendmsg+0x10/0x10
[  138.507950][ T7226]  ? __pfx_ksys_write+0x10/0x10
[  138.507964][ T7226]  __do_fast_syscall_32+0xe3/0x8c0
[  138.507980][ T7226]  do_fast_syscall_32+0x32/0x70
[  138.507994][ T7226]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  138.508008][ T7226] RIP: 0023:0xf708ef6c
[  138.508017][ T7226] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  138.508027][ T7226] RSP: 002b:00000000f547d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  138.508037][ T7226] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000280
[  138.508044][ T7226] RDX: 0000000004000000 RSI: 0000000000000000 RDI: 0000000000000000
[  138.508050][ T7226] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  138.508056][ T7226] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  138.508061][ T7226] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  138.508075][ T7226]  </TASK>
[  138.908452][ T3245] usb 42-1: device descriptor read/8, error -110
[  139.027479][ T7239] random: crng reseeded on system resumption
[  139.180464][ T7242] netlink: 116 bytes leftover after parsing attributes in process `syz.1.386'.
[  139.184042][ T7242] netlink: 'syz.1.386': attribute type 1 has an invalid length.
[  139.187697][ T7242] netlink: 64 bytes leftover after parsing attributes in process `syz.1.386'.
[  139.705091][ T3245] usb usb42-port1: attempt power cycle
[  139.957154][ T7252] [U] 
[  139.958577][ T7252] [U] 
[  139.959788][ T7252] [U] 
[  139.960963][ T7252] [U] 
[  139.962493][ T7252] [U] 
[  139.963676][ T7252] [U] 
[  139.964610][ T7252] [U] 
[  139.965758][ T7252] [U] 
[  139.967018][ T7252] [U] 
[  139.968181][ T7252] [U] 
[  139.969345][ T7252] [U] 
[  139.970504][ T7252] [U] 
[  139.972966][ T7252] [U] 
[  139.974155][ T7252] [U] 
[  139.975308][ T7252] [U] 
[  139.976455][ T7252] [U] 
[  139.996750][ T7251] [U] 
[  140.329328][ T3245] usb usb42-port1: unable to enumerate USB device
[  140.383533][ T7261] FAULT_INJECTION: forcing a failure.
[  140.383533][ T7261] name failslab, interval 1, probability 0, space 0, times 0
[  140.388970][ T7261] CPU: 0 UID: 0 PID: 7261 Comm: syz.3.392 Not tainted syzkaller #0 PREEMPT(full) 
[  140.388992][ T7261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  140.389002][ T7261] Call Trace:
[  140.389009][ T7261]  <TASK>
[  140.389015][ T7261]  dump_stack_lvl+0x100/0x190
[  140.389045][ T7261]  should_fail_ex.cold+0x5/0xa
[  140.389067][ T7261]  ? tomoyo_realpath_from_path+0xb6/0x690
[  140.389088][ T7261]  should_failslab+0xc2/0x120
[  140.389108][ T7261]  __kmalloc_noprof+0xe0/0x850
[  140.389138][ T7261]  tomoyo_realpath_from_path+0xb6/0x690
[  140.389164][ T7261]  tomoyo_path_number_perm+0x23c/0x580
[  140.389190][ T7261]  ? tomoyo_path_number_perm+0x22e/0x580
[  140.389217][ T7261]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  140.389268][ T7261]  ? find_held_lock+0x2b/0x80
[  140.389286][ T7261]  ? hook_file_ioctl_common+0x146/0x410
[  140.389313][ T7261]  ? __fget_files+0x215/0x3d0
[  140.389338][ T7261]  ? __fget_files+0x21f/0x3d0
[  140.389359][ T7261]  security_file_ioctl_compat+0xd3/0x230
[  140.389390][ T7261]  __ia32_compat_sys_ioctl+0xc2/0x360
[  140.389419][ T7261]  __do_fast_syscall_32+0xe3/0x8c0
[  140.389445][ T7261]  do_fast_syscall_32+0x32/0x70
[  140.389469][ T7261]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  140.389492][ T7261] RIP: 0023:0xf6ffef6c
[  140.389506][ T7261] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  140.389522][ T7261] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  140.389538][ T7261] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c0306201
[  140.389550][ T7261] RDX: 0000000080000240 RSI: 0000000000000000 RDI: 0000000000000000
[  140.389558][ T7261] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  140.389567][ T7261] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  140.389576][ T7261] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  140.389600][ T7261]  </TASK>
[  140.389608][ T7261] ERROR: Out of memory at tomoyo_realpath_from_path.
[  140.555943][ T7266] binder: BINDER_SET_CONTEXT_MGR already set
[  140.558066][ T7266] binder: 7264:7266 ioctl 4018620d 80004a80 returned -16
[  140.566209][ T7267] netlink: 116 bytes leftover after parsing attributes in process `syz.2.395'.
[  140.569320][ T7267] netlink: 'syz.2.395': attribute type 1 has an invalid length.
[  140.572141][ T7267] netlink: 64 bytes leftover after parsing attributes in process `syz.2.395'.
[  140.692398][ T7276] random: crng reseeded on system resumption
[  140.839300][ T7284] binder: 7282:7284 ioctl c0306201 0 returned -14
[  140.875370][ T7286] binder: 7285:7286 ioctl c0306201 0 returned -14
[  141.752037][ T7288] ubi: mtd0 is already attached to ubi31
[  141.829710][ T7287] ubi: mtd0 is already attached to ubi31
[  142.380880][ T7297] netlink: 8 bytes leftover after parsing attributes in process `syz.0.404'.
[  142.826968][ T7306] netlink: 116 bytes leftover after parsing attributes in process `syz.2.406'.
[  142.830452][ T7306] netlink: 'syz.2.406': attribute type 1 has an invalid length.
[  142.833522][ T7306] netlink: 64 bytes leftover after parsing attributes in process `syz.2.406'.
[  142.956370][ T7314] random: crng reseeded on system resumption
[  143.358812][ T7326] binder: 7325:7326 ioctl c0306201 0 returned -14
[  143.429499][ T7329] ubi: mtd0 is already attached to ubi31
[  149.377815][ T7375] netlink: 116 bytes leftover after parsing attributes in process `syz.1.427'.
[  149.409045][ T7375] netlink: 'syz.1.427': attribute type 1 has an invalid length.
[  149.422516][ T7375] netlink: 64 bytes leftover after parsing attributes in process `syz.1.427'.
[  149.543004][ T7382] binder: 7380:7382 ioctl c0306201 0 returned -14
[  149.612032][ T7387] ubi: mtd0 is already attached to ubi31
[  150.101275][ T7389] netlink: 220 bytes leftover after parsing attributes in process `syz.2.432'.
[  150.104847][ T7389] netlink: 8 bytes leftover after parsing attributes in process `syz.2.432'.
[  150.423447][ T7400] netlink: 68 bytes leftover after parsing attributes in process `syz.2.437'.
[  150.426543][ T7400] netlink: 16 bytes leftover after parsing attributes in process `syz.2.437'.
[  150.563419][ T7406] FAULT_INJECTION: forcing a failure.
[  150.563419][ T7406] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.569266][ T7406] CPU: 2 UID: 0 PID: 7406 Comm: syz.2.439 Not tainted syzkaller #0 PREEMPT(full) 
[  150.569281][ T7406] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  150.569287][ T7406] Call Trace:
[  150.569292][ T7406]  <TASK>
[  150.569296][ T7406]  dump_stack_lvl+0x100/0x190
[  150.569317][ T7406]  should_fail_ex.cold+0x5/0xa
[  150.569331][ T7406]  _copy_to_user+0x32/0xd0
[  150.569343][ T7406]  simple_read_from_buffer+0xcb/0x170
[  150.569362][ T7406]  proc_fail_nth_read+0x1af/0x230
[  150.569375][ T7406]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  150.569390][ T7406]  ? rw_verify_area+0xce/0x6d0
[  150.569405][ T7406]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  150.569418][ T7406]  vfs_read+0x1e4/0xb30
[  150.569437][ T7406]  ? __pfx_vfs_read+0x10/0x10
[  150.569453][ T7406]  ? find_held_lock+0x2b/0x80
[  150.569464][ T7406]  ? __fget_files+0x215/0x3d0
[  150.569477][ T7406]  ? __fget_files+0x21f/0x3d0
[  150.569490][ T7406]  ksys_read+0x12a/0x250
[  150.569507][ T7406]  ? __pfx_ksys_read+0x10/0x10
[  150.569529][ T7406]  do_int80_emulation+0x141/0x6b0
[  150.569546][ T7406]  asm_int80_emulation+0x1a/0x20
[  150.569558][ T7406] RIP: 0023:0xf7125cab
[  150.569567][ T7406] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  150.569577][ T7406] RSP: 002b:00000000f53bc4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  150.569587][ T7406] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f53bc5d0
[  150.569594][ T7406] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  150.569600][ T7406] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  150.569606][ T7406] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  150.569611][ T7406] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  150.569625][ T7406]  </TASK>
[  151.235345][ T7416] netlink: 'syz.2.442': attribute type 34 has an invalid length.
[  151.488333][   T24] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  151.638359][   T24] usb 6-1: Using ep0 maxpacket: 32
[  151.668425][ T3245] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  151.818385][ T3245] usb 5-1: Using ep0 maxpacket: 32
[  151.846868][ T3245] usb 5-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  151.853325][   T24] usb 6-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  151.857864][   T24] usb 6-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  151.865444][ T3245] usb 5-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  151.870820][ T3245] usb 5-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  151.875900][   T24] usb 6-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  151.880821][ T3245] usb 5-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  151.892670][   T24] usb 6-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  151.927689][ T3245] usb 5-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  151.933296][ T3245] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.940201][   T24] usb 6-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  151.943496][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.946946][   T24] usb 6-1: Product: syz
[  151.949313][ T3245] usb 5-1: Product: syz
[  151.951172][ T3245] usb 5-1: Manufacturer: syz
[  151.953333][ T3245] usb 5-1: SerialNumber: syz
[  151.960248][   T24] usb 6-1: Manufacturer: syz
[  151.962350][   T24] usb 6-1: SerialNumber: syz
[  151.967875][    C2] imon 5-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  151.976150][    C2] imon 6-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  151.997619][ T7431] FAULT_INJECTION: forcing a failure.
[  151.997619][ T7431] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.999857][   T24] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/input/input8
[  152.003452][ T7431] CPU: 1 UID: 0 PID: 7431 Comm: syz.3.447 Not tainted syzkaller #0 PREEMPT(full) 
[  152.003473][ T7431] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  152.003483][ T7431] Call Trace:
[  152.003489][ T7431]  <TASK>
[  152.003496][ T7431]  dump_stack_lvl+0x100/0x190
[  152.003525][ T7431]  should_fail_ex.cold+0x5/0xa
[  152.003546][ T7431]  _copy_from_user+0x2e/0xd0
[  152.003564][ T7431]  get_compat_msghdr+0xb3/0x4b0
[  152.003586][ T7431]  ? __pfx_get_compat_msghdr+0x10/0x10
[  152.003615][ T7431]  ___sys_sendmsg+0x1b6/0x1e0
[  152.003651][ T7431]  ? __pfx____sys_sendmsg+0x10/0x10
[  152.003707][ T7431]  __sys_sendmsg+0x170/0x220
[  152.003728][ T7431]  ? __pfx___sys_sendmsg+0x10/0x10
[  152.003758][ T7431]  ? __pfx_ksys_write+0x10/0x10
[  152.003780][ T7431]  __do_fast_syscall_32+0xe3/0x8c0
[  152.003806][ T7431]  do_fast_syscall_32+0x32/0x70
[  152.003829][ T7431]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  152.003850][ T7431] RIP: 0023:0xf6ffef6c
[  152.003864][ T7431] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  152.003879][ T7431] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  152.003896][ T7431] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000200
[  152.003906][ T7431] RDX: 0000000000044080 RSI: 0000000000000000 RDI: 0000000000000000
[  152.003916][ T7431] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  152.003925][ T7431] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  152.003935][ T7431] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  152.003957][ T7431]  </TASK>
[  152.079133][ T3245] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:155.0/input/input9
[  152.188301][   T24] imon 6-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  152.191382][   T24]  (id 0x00)
[  152.208433][ T3245] imon 5-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  152.211199][ T3245]  (id 0x00)
[  152.298381][ T3245] rc_core: IR keymap rc-imon-pad not found
[  152.300408][ T3245] Registered IR keymap rc-empty
[  152.302071][ T3245] imon 5-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  152.309628][   T24] rc_core: IR keymap rc-imon-pad not found
[  152.311991][   T24] Registered IR keymap rc-empty
[  152.313802][   T24] imon 6-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  152.317144][   T24] imon 6-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  152.322717][ T3245] imon 5-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  152.394415][   T24] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/rc/rc0
[  152.399656][   T24] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/rc/rc0/input11
[  152.408832][ T3245] rc rc1: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:155.0/rc/rc1
[  152.413821][ T3245] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:155.0/rc/rc1/input10
[  152.422467][   T24] imon 6-1:155.0: iMON device (15c2:ffdc, intf0) on usb<6:3> initialized
[  152.436432][ T7448] FAULT_INJECTION: forcing a failure.
[  152.436432][ T7448] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.441322][ T3245] imon 5-1:155.0: iMON device (15c2:ffdc, intf0) on usb<5:4> initialized
[  152.445050][ T7448] CPU: 0 UID: 0 PID: 7448 Comm: syz.3.451 Not tainted syzkaller #0 PREEMPT(full) 
[  152.445064][ T7448] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  152.445072][ T7448] Call Trace:
[  152.445076][ T7448]  <TASK>
[  152.445080][ T7448]  dump_stack_lvl+0x100/0x190
[  152.445100][ T7448]  should_fail_ex.cold+0x5/0xa
[  152.445113][ T7448]  _copy_from_user+0x2e/0xd0
[  152.445125][ T7448]  get_compat_msghdr+0xb3/0x4b0
[  152.445139][ T7448]  ? __pfx_get_compat_msghdr+0x10/0x10
[  152.445157][ T7448]  ___sys_sendmsg+0x1b6/0x1e0
[  152.445177][ T7448]  ? __pfx____sys_sendmsg+0x10/0x10
[  152.445222][ T7448]  __sys_sendmsg+0x170/0x220
[  152.445246][ T7448]  ? __pfx___sys_sendmsg+0x10/0x10
[  152.445273][ T7448]  ? __pfx_ksys_write+0x10/0x10
[  152.445297][ T7448]  __do_fast_syscall_32+0xe3/0x8c0
[  152.445316][ T7448]  do_fast_syscall_32+0x32/0x70
[  152.445333][ T7448]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  152.445371][ T7448] RIP: 0023:0xf6ffef6c
[  152.445385][ T7448] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  152.445400][ T7448] RSP: 002b:00000000f53cc50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  152.445418][ T7448] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  152.445428][ T7448] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  152.445437][ T7448] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  152.445447][ T7448] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  152.445455][ T7448] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  152.445469][ T7448]  </TASK>
[  152.576143][ T2301] usb 6-1: USB disconnect, device number 3
[  152.620061][ T7454] binder: 7453:7454 ioctl c0306201 0 returned -14
[  152.620928][ T7452] bridge_slave_0: left allmulticast mode
[  152.625472][ T7452] bridge_slave_0: left promiscuous mode
[  152.635162][ T3245] usb 5-1: USB disconnect, device number 4
[  152.636258][ T7452] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.652850][ T7456] binder: 7455:7456 ioctl c0306201 0 returned -14
[  152.688451][ T7452] bridge_slave_1: left allmulticast mode
[  152.690974][ T7452] bridge_slave_1: left promiscuous mode
[  152.694045][ T7452] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.694188][ T7457] ubi: mtd0 is already attached to ubi31
[  152.711622][ T7458] ubi: mtd0 is already attached to ubi31
[  152.745119][ T7452] bond0: (slave bond_slave_0): Releasing backup interface
[  152.786802][ T7452] bond0: (slave bond_slave_1): Releasing backup interface
[  152.834849][ T7452] team0: Port device team_slave_0 removed
[  152.855457][ T7452] team0: Port device team_slave_1 removed
[  152.859558][ T7452] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  152.862513][ T7452] batman_adv: batadv0: Removing interface: batadv_slave_0
[  152.875296][ T7452] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  152.878832][ T7452] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.893243][ T7452] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  153.833999][ T7471] random: crng reseeded on system resumption
[  155.325042][ T7479] binder: 7478:7479 ioctl c0306201 0 returned -14
[  155.385794][ T7480] ubi: mtd0 is already attached to ubi31
[  155.569254][ T7486] netlink: 120 bytes leftover after parsing attributes in process `syz.0.462'.
[  155.573484][ T7486] netlink: 'syz.0.462': attribute type 1 has an invalid length.
[  155.577110][ T7486] netlink: 64 bytes leftover after parsing attributes in process `syz.0.462'.
[  155.719541][ T7489] binder: 7488:7489 ioctl c0306201 0 returned -14
[  155.836490][ T7491] ubi: mtd0 is already attached to ubi31
[  156.837078][ T7501] binder: 7500:7501 ioctl c0306201 0 returned -14
[  156.874124][ T7501] ubi: mtd0 is already attached to ubi31
[  157.195762][ T7503] netlink: 4 bytes leftover after parsing attributes in process `syz.0.467'.
[  157.199222][ T7503] netlink: 152 bytes leftover after parsing attributes in process `syz.0.467'.
[  157.351651][ T7510] x_tables: duplicate underflow at hook 1
[  157.442651][ T7514] random: crng reseeded on system resumption
[  157.486943][ T7516] syzkaller0: entered promiscuous mode
[  157.493932][ T7516] syzkaller0: entered allmulticast mode
[  157.513250][ T7516] FAULT_INJECTION: forcing a failure.
[  157.513250][ T7516] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  157.517666][ T7516] CPU: 0 UID: 0 PID: 7516 Comm: syz.3.472 Not tainted syzkaller #0 PREEMPT(full) 
[  157.517681][ T7516] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  157.517688][ T7516] Call Trace:
[  157.517692][ T7516]  <TASK>
[  157.517697][ T7516]  dump_stack_lvl+0x100/0x190
[  157.517718][ T7516]  should_fail_ex.cold+0x5/0xa
[  157.517770][ T7516]  _copy_from_user+0x2e/0xd0
[  157.517787][ T7516]  get_compat_msghdr+0xb3/0x4b0
[  157.517808][ T7516]  ? __pfx_get_compat_msghdr+0x10/0x10
[  157.517839][ T7516]  ___sys_sendmsg+0x1b6/0x1e0
[  157.517870][ T7516]  ? __pfx____sys_sendmsg+0x10/0x10
[  157.517910][ T7516]  __sys_sendmsg+0x170/0x220
[  157.517924][ T7516]  ? __pfx___sys_sendmsg+0x10/0x10
[  157.517943][ T7516]  ? __pfx_ksys_write+0x10/0x10
[  157.517956][ T7516]  __do_fast_syscall_32+0xe3/0x8c0
[  157.517972][ T7516]  do_fast_syscall_32+0x32/0x70
[  157.517987][ T7516]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  157.518001][ T7516] RIP: 0023:0xf6ffef6c
[  157.518010][ T7516] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  157.518021][ T7516] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  157.518031][ T7516] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000800000c0
[  157.518038][ T7516] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[  157.518044][ T7516] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  157.518056][ T7516] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  157.518062][ T7516] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  157.518076][ T7516]  </TASK>
[  157.561021][ T7520] binder: 7519:7520 ioctl c0306201 0 returned -14
[  157.659932][ T7522] binder: 7521:7522 ioctl c0306201 0 returned -14
[  157.663545][ T7523] ubi: mtd0 is already attached to ubi31
[  157.684799][ T7522] ubi: mtd0 is already attached to ubi31
[  157.781133][ T7528] syzkaller0: entered promiscuous mode
[  157.783088][ T7528] syzkaller0: entered allmulticast mode
[  157.792683][ T7528] tc action pedit 'at' offset -2147483647 out of bounds
[  157.795574][ T7528] tc action pedit 'at' offset -2147483647 out of bounds
[  157.797840][ T7528] tc action pedit 'at' offset -2147483647 out of bounds
[  157.800882][ T7528] tc action pedit 'at' offset -2147483647 out of bounds
[  157.803406][ T7528] tc action pedit 'at' offset -2147483647 out of bounds
[  157.806105][ T7528] tc action pedit 'at' offset -2147483647 out of bounds
[  157.808819][ T7528] tc action pedit 'at' offset -2147483647 out of bounds
[  157.811464][ T7528] tc action pedit 'at' offset -2147483647 out of bounds
[  157.813896][ T7528] tc action pedit 'at' offset -2147483647 out of bounds
[  157.816698][ T7528] tc action pedit 'at' offset -2147483647 out of bounds
[  157.819078][ T7528] 0: reclassify loop, rule prio 0, protocol 800
[  157.938124][ T7532] syzkaller0: entered promiscuous mode
[  157.940657][ T7532] syzkaller0: entered allmulticast mode
[  157.967414][ T7532] 0: reclassify loop, rule prio 0, protocol 800
[  158.091592][ T7537] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.482'.
[  158.094473][ T7537] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  158.229671][ T7545] FAULT_INJECTION: forcing a failure.
[  158.229671][ T7545] name failslab, interval 1, probability 0, space 0, times 0
[  158.234988][ T7545] CPU: 2 UID: 0 PID: 7545 Comm: syz.2.481 Not tainted syzkaller #0 PREEMPT(full) 
[  158.235011][ T7545] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  158.235021][ T7545] Call Trace:
[  158.235027][ T7545]  <TASK>
[  158.235033][ T7545]  dump_stack_lvl+0x100/0x190
[  158.235063][ T7545]  should_fail_ex.cold+0x5/0xa
[  158.235086][ T7545]  should_failslab+0xc2/0x120
[  158.235102][ T7545]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  158.235128][ T7545]  ? do_getname+0x35/0x390
[  158.235150][ T7545]  do_getname+0x35/0x390
[  158.235170][ T7545]  __ia32_sys_rename+0x56/0xb0
[  158.235193][ T7545]  __do_fast_syscall_32+0xe3/0x8c0
[  158.235220][ T7545]  do_fast_syscall_32+0x32/0x70
[  158.235243][ T7545]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  158.235264][ T7545] RIP: 0023:0xf6feef6c
[  158.235280][ T7545] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  158.235298][ T7545] RSP: 002b:00000000f539b50c EFLAGS: 00000292 ORIG_RAX: 0000000000000026
[  158.235315][ T7545] RAX: ffffffffffffffda RBX: 0000000080000100 RCX: 0000000080000140
[  158.235327][ T7545] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  158.235337][ T7545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  158.235347][ T7545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  158.235358][ T7545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  158.235381][ T7545]  </TASK>
[  158.910593][ T7557] random: crng reseeded on system resumption
[  159.246159][ T7567] netlink: 260 bytes leftover after parsing attributes in process `syz.2.489'.
[  164.750006][ T7612] binder: 7611:7612 ioctl c0306201 0 returned -14
[  164.823076][ T7613] ubi: mtd0 is already attached to ubi31
[  166.964765][ T7625] netlink: 116 bytes leftover after parsing attributes in process `syz.1.508'.
[  166.968982][ T7625] netlink: 'syz.1.508': attribute type 1 has an invalid length.
[  166.972341][ T7625] netlink: 64 bytes leftover after parsing attributes in process `syz.1.508'.
[  167.322105][ T7636] netlink: 20 bytes leftover after parsing attributes in process `syz.0.512'.
[  167.934603][ T7648] FAULT_INJECTION: forcing a failure.
[  167.934603][ T7648] name failslab, interval 1, probability 0, space 0, times 0
[  167.940422][ T7648] CPU: 1 UID: 0 PID: 7648 Comm: syz.2.516 Not tainted syzkaller #0 PREEMPT(full) 
[  167.940445][ T7648] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  167.940456][ T7648] Call Trace:
[  167.940463][ T7648]  <TASK>
[  167.940485][ T7648]  dump_stack_lvl+0x100/0x190
[  167.940518][ T7648]  should_fail_ex.cold+0x5/0xa
[  167.940541][ T7648]  should_failslab+0xc2/0x120
[  167.940561][ T7648]  __kvmalloc_node_noprof+0xfa/0xa00
[  167.940587][ T7648]  ? seq_read_iter+0x819/0x1270
[  167.940621][ T7648]  seq_read_iter+0x819/0x1270
[  167.940660][ T7648]  kernfs_fop_read_iter+0x46c/0x610
[  167.940681][ T7648]  ? rw_verify_area+0xce/0x6d0
[  167.940706][ T7648]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[  167.940725][ T7648]  vfs_read+0x825/0xb30
[  167.940756][ T7648]  ? __pfx_vfs_read+0x10/0x10
[  167.940800][ T7648]  ksys_read+0x12a/0x250
[  167.940827][ T7648]  ? __pfx_ksys_read+0x10/0x10
[  167.940853][ T7648]  ? __pfx_ksys_write+0x10/0x10
[  167.940876][ T7648]  __do_fast_syscall_32+0xe3/0x8c0
[  167.940903][ T7648]  do_fast_syscall_32+0x32/0x70
[  167.940926][ T7648]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.940949][ T7648] RIP: 0023:0xf6feef6c
[  167.940963][ T7648] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  167.940980][ T7648] RSP: 002b:00000000f53dd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000003
[  167.940997][ T7648] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800042c0
[  167.941008][ T7648] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000
[  167.941018][ T7648] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  167.941028][ T7648] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  167.941038][ T7648] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.941064][ T7648]  </TASK>
[  168.273160][ T7655] random: crng reseeded on system resumption
[  169.367429][ T7665] binder: 7664:7665 ioctl c0306201 0 returned -14
[  169.421648][ T7666] ubi: mtd0 is already attached to ubi31
[  169.470036][ T7663] netlink: 116 bytes leftover after parsing attributes in process `syz.2.521'.
[  169.473046][ T7663] netlink: 'syz.2.521': attribute type 1 has an invalid length.
[  169.475753][ T7663] netlink: 64 bytes leftover after parsing attributes in process `syz.2.521'.
[  169.919410][ T7685] random: crng reseeded on system resumption
[  170.331912][ T7690] binder: 7689:7690 ioctl c0306201 0 returned -14
[  170.396809][ T7691] ubi: mtd0 is already attached to ubi31
[  170.867744][ T7703] netlink: 120 bytes leftover after parsing attributes in process `syz.0.533'.
[  170.874726][ T7703] netlink: 'syz.0.533': attribute type 1 has an invalid length.
[  170.877934][ T7703] netlink: 64 bytes leftover after parsing attributes in process `syz.0.533'.
[  172.153175][ T7709] binder: 7707:7709 ioctl c0306201 0 returned -14
[  172.215694][ T7711] ubi: mtd0 is already attached to ubi31
[  172.613326][ T7714] netlink: 116 bytes leftover after parsing attributes in process `syz.3.537'.
[  172.617709][ T7714] netlink: 'syz.3.537': attribute type 1 has an invalid length.
[  172.621242][ T7714] netlink: 64 bytes leftover after parsing attributes in process `syz.3.537'.
[  174.248610][ T7744] netlink: 116 bytes leftover after parsing attributes in process `syz.0.548'.
[  174.252618][ T7744] netlink: 'syz.0.548': attribute type 1 has an invalid length.
[  174.256020][ T7744] netlink: 64 bytes leftover after parsing attributes in process `syz.0.548'.
[  174.290447][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  174.290521][   T40] audit: type=1326 audit(1773257903.723:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7739 comm="syz.2.547" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  174.291967][ T7746] process 'syz.2.547' launched './file2' with NULL argv: empty string added
[  174.305988][   T40] audit: type=1326 audit(1773257903.723:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7739 comm="syz.2.547" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  174.319665][   T40] audit: type=1326 audit(1773257903.723:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7739 comm="syz.2.547" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  174.328686][   T40] audit: type=1326 audit(1773257903.723:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7739 comm="syz.2.547" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  174.337530][   T40] audit: type=1326 audit(1773257903.723:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7739 comm="syz.2.547" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  174.349575][   T40] audit: type=1326 audit(1773257903.723:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7739 comm="syz.2.547" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  174.363218][   T40] audit: type=1326 audit(1773257903.733:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7739 comm="syz.2.547" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  174.374643][   T40] audit: type=1326 audit(1773257903.743:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7739 comm="syz.2.547" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  174.378978][ T7746] netlink: 4 bytes leftover after parsing attributes in process `syz.2.547'.
[  174.389460][   T40] audit: type=1326 audit(1773257903.743:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7739 comm="syz.2.547" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  174.400802][   T40] audit: type=1326 audit(1773257903.753:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7739 comm="syz.2.547" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  174.528906][ T7751] netlink: 12 bytes leftover after parsing attributes in process `syz.0.549'.
[  174.544422][ T7751] bond1: entered promiscuous mode
[  174.546313][ T7751] 8021q: adding VLAN 0 to HW filter on device bond1
[  174.660871][ T7751] 8021q: adding VLAN 0 to HW filter on device bond1
[  174.675795][ T7751] bond1: (slave sit1): The slave device specified does not support setting the MAC address
[  174.701317][ T7751] bond1: (slave sit1): Error -95 calling set_mac_address
[  175.496149][ T7766] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4294967295 (34359738360 ns) > initial count (16672 ns). Using initial count to start timer.
[  175.910305][ T7777] netlink: 116 bytes leftover after parsing attributes in process `syz.0.557'.
[  175.915941][ T7777] netlink: 'syz.0.557': attribute type 1 has an invalid length.
[  175.918756][ T7777] netlink: 64 bytes leftover after parsing attributes in process `syz.0.557'.
[  175.978495][ T7780] binder: 7778:7780 ioctl c0306201 0 returned -14
[  176.045674][ T7781] ubi: mtd0 is already attached to ubi31
[  176.601768][ T7783] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4294967295 (34359738360 ns) > initial count (16672 ns). Using initial count to start timer.
[  176.609797][ T7783] FAULT_INJECTION: forcing a failure.
[  176.609797][ T7783] name failslab, interval 1, probability 0, space 0, times 0
[  176.615230][ T7783] CPU: 2 UID: 0 PID: 7783 Comm: syz.3.559 Not tainted syzkaller #0 PREEMPT(full) 
[  176.615251][ T7783] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  176.615260][ T7783] Call Trace:
[  176.615267][ T7783]  <TASK>
[  176.615273][ T7783]  dump_stack_lvl+0x100/0x190
[  176.615303][ T7783]  should_fail_ex.cold+0x5/0xa
[  176.615323][ T7783]  ? tomoyo_realpath_from_path+0xb6/0x690
[  176.615343][ T7783]  should_failslab+0xc2/0x120
[  176.615360][ T7783]  __kmalloc_noprof+0xe0/0x850
[  176.615389][ T7783]  tomoyo_realpath_from_path+0xb6/0x690
[  176.615414][ T7783]  tomoyo_path_number_perm+0x23c/0x580
[  176.615439][ T7783]  ? tomoyo_path_number_perm+0x22e/0x580
[  176.615472][ T7783]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  176.615521][ T7783]  ? find_held_lock+0x2b/0x80
[  176.615538][ T7783]  ? hook_file_ioctl_common+0x146/0x410
[  176.615563][ T7783]  ? __fget_files+0x215/0x3d0
[  176.615583][ T7783]  ? __fget_files+0x21f/0x3d0
[  176.615601][ T7783]  security_file_ioctl_compat+0xd3/0x230
[  176.615630][ T7783]  __ia32_compat_sys_ioctl+0xc2/0x360
[  176.615658][ T7783]  __do_fast_syscall_32+0xe3/0x8c0
[  176.615683][ T7783]  do_fast_syscall_32+0x32/0x70
[  176.615703][ T7783]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  176.615724][ T7783] RIP: 0023:0xf6ffef6c
[  176.615738][ T7783] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  176.615755][ T7783] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  176.615771][ T7783] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  176.615782][ T7783] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  176.615791][ T7783] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  176.615801][ T7783] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  176.615810][ T7783] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  176.615831][ T7783]  </TASK>
[  176.615838][ T7783] ERROR: Out of memory at tomoyo_realpath_from_path.
[  177.096891][ T7794] random: crng reseeded on system resumption
[  177.208301][ T7799] FAULT_INJECTION: forcing a failure.
[  177.208301][ T7799] name failslab, interval 1, probability 0, space 0, times 0
[  177.212376][ T7799] CPU: 1 UID: 0 PID: 7799 Comm: syz.2.566 Not tainted syzkaller #0 PREEMPT(full) 
[  177.212391][ T7799] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  177.212397][ T7799] Call Trace:
[  177.212402][ T7799]  <TASK>
[  177.212406][ T7799]  dump_stack_lvl+0x100/0x190
[  177.212426][ T7799]  should_fail_ex.cold+0x5/0xa
[  177.212439][ T7799]  ? tomoyo_realpath_from_path+0xb6/0x690
[  177.212452][ T7799]  should_failslab+0xc2/0x120
[  177.212464][ T7799]  __kmalloc_noprof+0xe0/0x850
[  177.212485][ T7799]  tomoyo_realpath_from_path+0xb6/0x690
[  177.212500][ T7799]  tomoyo_path_number_perm+0x23c/0x580
[  177.212518][ T7799]  ? tomoyo_path_number_perm+0x22e/0x580
[  177.212537][ T7799]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  177.212569][ T7799]  ? find_held_lock+0x2b/0x80
[  177.212580][ T7799]  ? hook_file_ioctl_common+0x146/0x410
[  177.212597][ T7799]  ? __fget_files+0x215/0x3d0
[  177.212610][ T7799]  ? __fget_files+0x21f/0x3d0
[  177.212622][ T7799]  security_file_ioctl_compat+0xd3/0x230
[  177.212642][ T7799]  __ia32_compat_sys_ioctl+0xc2/0x360
[  177.212660][ T7799]  __do_fast_syscall_32+0xe3/0x8c0
[  177.212677][ T7799]  do_fast_syscall_32+0x32/0x70
[  177.212692][ T7799]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  177.212707][ T7799] RIP: 0023:0xf6feef6c
[  177.212716][ T7799] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  177.212726][ T7799] RSP: 002b:00000000f53dd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  177.212737][ T7799] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c02064b2
[  177.212744][ T7799] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  177.212750][ T7799] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  177.212756][ T7799] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  177.212762][ T7799] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  177.212776][ T7799]  </TASK>
[  177.212781][ T7799] ERROR: Out of memory at tomoyo_realpath_from_path.
[  177.595331][ T7811] netlink: 4 bytes leftover after parsing attributes in process `syz.2.569'.
[  178.072086][ T7818] binder: 7817:7818 ioctl c0306201 0 returned -14
[  178.110200][ T7820] binder: 7819:7820 ioctl c0306201 0 returned -14
[  178.144262][ T7821] ubi: mtd0 is already attached to ubi31
[  178.166643][ T7822] ubi: mtd0 is already attached to ubi31
[  178.615724][ T7828] random: crng reseeded on system resumption
[  178.969107][ T7830] pim6reg: entered allmulticast mode
[  179.045114][ T7833] FAULT_INJECTION: forcing a failure.
[  179.045114][ T7833] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  179.050341][ T7833] CPU: 3 UID: 0 PID: 7833 Comm: syz.3.577 Not tainted syzkaller #0 PREEMPT(full) 
[  179.050361][ T7833] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  179.050369][ T7833] Call Trace:
[  179.050374][ T7833]  <TASK>
[  179.050380][ T7833]  dump_stack_lvl+0x100/0x190
[  179.050406][ T7833]  should_fail_ex.cold+0x5/0xa
[  179.050431][ T7833]  _copy_from_user+0x2e/0xd0
[  179.050460][ T7833]  get_compat_msghdr+0xb3/0x4b0
[  179.050480][ T7833]  ? __pfx_get_compat_msghdr+0x10/0x10
[  179.050504][ T7833]  ___sys_sendmsg+0x1b6/0x1e0
[  179.050528][ T7833]  ? __pfx____sys_sendmsg+0x10/0x10
[  179.050574][ T7833]  __sys_sendmsg+0x170/0x220
[  179.050592][ T7833]  ? __pfx___sys_sendmsg+0x10/0x10
[  179.050617][ T7833]  ? __pfx_ksys_write+0x10/0x10
[  179.050635][ T7833]  __do_fast_syscall_32+0xe3/0x8c0
[  179.050658][ T7833]  do_fast_syscall_32+0x32/0x70
[  179.050677][ T7833]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  179.050696][ T7833] RIP: 0023:0xf6ffef6c
[  179.050708][ T7833] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  179.050723][ T7833] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  179.050739][ T7833] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000340
[  179.050749][ T7833] RDX: 0000000024000040 RSI: 0000000000000000 RDI: 0000000000000000
[  179.050758][ T7833] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  179.050766][ T7833] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  179.050775][ T7833] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  179.050795][ T7833]  </TASK>
[  179.493904][ T7839] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[  179.496401][ T7839] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  179.515718][ T7839] vhci_hcd vhci_hcd.0: Device attached
[  179.817160][ T6585] usb 44-1: SetAddress Request (2) to port 0
[  179.821372][ T6585] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[  179.895798][ T7845] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  180.078203][ T7840] vhci_hcd: connection reset by peer
[  180.080322][  T768] vhci_hcd vhci_hcd.3: stop threads
[  180.082062][  T768] vhci_hcd vhci_hcd.3: release socket
[  180.084529][  T768] vhci_hcd vhci_hcd.3: disconnect device
[  180.498731][ T5939] Bluetooth: hci1: command 0x0406 tx timeout
[  180.498884][ T5300] Bluetooth: hci2: command 0x0406 tx timeout
[  180.503897][   T63] Bluetooth: hci0: command 0x0406 tx timeout
[  180.881963][ T7861] random: crng reseeded on system resumption
[  180.886796][ T7860] binder: BINDER_SET_CONTEXT_MGR already set
[  180.890124][ T7860] binder: 7859:7860 ioctl 4018620d 80000200 returned -16
[  180.893786][ T7860] FAULT_INJECTION: forcing a failure.
[  180.893786][ T7860] name failslab, interval 1, probability 0, space 0, times 0
[  180.899033][ T7860] CPU: 1 UID: 0 PID: 7860 Comm: syz.1.586 Not tainted syzkaller #0 PREEMPT(full) 
[  180.899054][ T7860] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  180.899064][ T7860] Call Trace:
[  180.899070][ T7860]  <TASK>
[  180.899076][ T7860]  dump_stack_lvl+0x100/0x190
[  180.899104][ T7860]  should_fail_ex.cold+0x5/0xa
[  180.899123][ T7860]  ? tomoyo_realpath_from_path+0xb6/0x690
[  180.899143][ T7860]  should_failslab+0xc2/0x120
[  180.899160][ T7860]  __kmalloc_noprof+0xe0/0x850
[  180.899189][ T7860]  tomoyo_realpath_from_path+0xb6/0x690
[  180.899213][ T7860]  tomoyo_path_number_perm+0x23c/0x580
[  180.899238][ T7860]  ? tomoyo_path_number_perm+0x22e/0x580
[  180.899265][ T7860]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  180.899314][ T7860]  ? find_held_lock+0x2b/0x80
[  180.899329][ T7860]  ? hook_file_ioctl_common+0x146/0x410
[  180.899356][ T7860]  ? __fget_files+0x215/0x3d0
[  180.899374][ T7860]  ? __fget_files+0x21f/0x3d0
[  180.899393][ T7860]  security_file_ioctl_compat+0xd3/0x230
[  180.899421][ T7860]  __ia32_compat_sys_ioctl+0xc2/0x360
[  180.899448][ T7860]  __do_fast_syscall_32+0xe3/0x8c0
[  180.899472][ T7860]  do_fast_syscall_32+0x32/0x70
[  180.899493][ T7860]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  180.899513][ T7860] RIP: 0023:0xf708ef6c
[  180.899526][ T7860] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  180.899541][ T7860] RSP: 002b:00000000f547d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  180.899557][ T7860] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0306201
[  180.899567][ T7860] RDX: 00000000800001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  180.899577][ T7860] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  180.899586][ T7860] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  180.899595][ T7860] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  180.899617][ T7860]  </TASK>
[  180.899624][ T7860] ERROR: Out of memory at tomoyo_realpath_from_path.
[  181.096578][ T7865] Oops: general protection fault, probably for non-canonical address 0xe000080fe29e76ee: 0000 [#1] SMP KASAN NOPTI
[  181.101167][ T7865] KASAN: maybe wild-memory-access in range [0x0000607f14f3b770-0x0000607f14f3b777]
[  181.104409][ T7865] CPU: 1 UID: 0 PID: 7865 Comm: syz.1.588 Not tainted syzkaller #0 PREEMPT(full) 
[  181.107592][ T7865] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  181.110847][ T7865] RIP: 0010:try_module_get+0x23/0xd0
[  181.112558][ T7865] Code: 90 90 90 90 90 90 90 f3 0f 1e fa 48 85 ff 0f 84 9b 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 55 48 c1 ea 03 53 48 89 fb <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 89 00 00 00 83 3b 02 74 67 48
[  181.119377][ T7865] RSP: 0000:ffffc900231bf8b8 EFLAGS: 00010206
[  181.121884][ T7865] RAX: dffffc0000000000 RBX: 0000607f14f3b770 RCX: ffffc9000c803000
[  181.125121][ T7865] RDX: 00000c0fe29e76ee RSI: ffffffff87e9b070 RDI: 0000607f14f3b770
[  181.128387][ T7865] RBP: ffff888000a49e00 R08: 0000000000000001 R09: fffffbfff1fda10d
[  181.131628][ T7865] R10: ffffffff8fed086f R11: 0000000000000000 R12: ffff88802434c8c0
[  181.134357][ T7865] R13: ffff88804cde0880 R14: ffff88802a894f20 R15: ffff88802434c908
[  181.136899][ T7865] FS:  0000000000000000(0000) GS:ffff88809724d000(0063) knlGS:00000000f547db40
[  181.139808][ T7865] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  181.141938][ T7865] CR2: 0000000000000040 CR3: 0000000050153000 CR4: 0000000000352ef0
[  181.144491][ T7865] Call Trace:
[  181.145628][ T7865]  <TASK>
[  181.146627][ T7865]  dvb_device_open+0x124/0x3b0
[  181.148224][ T7865]  ? __pfx_dvb_device_open+0x10/0x10
[  181.149941][ T7865]  chrdev_open+0x234/0x6a0
[  181.151399][ T7865]  ? __pfx_apparmor_file_open+0x10/0x10
[  181.153188][ T7865]  ? __pfx_chrdev_open+0x10/0x10
[  181.154797][ T7865]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  181.156831][ T7865]  do_dentry_open+0x6d8/0x1660
[  181.158401][ T7865]  ? __pfx_chrdev_open+0x10/0x10
[  181.160003][ T7865]  vfs_open+0x82/0x3f0
[  181.161343][ T7865]  path_openat+0x208c/0x31a0
[  181.162854][ T7865]  ? asm_int80_emulation+0x1a/0x20
[  181.164510][ T7865]  ? __pfx_path_openat+0x10/0x10
[  181.166361][ T7865]  do_file_open+0x20e/0x430
[  181.167864][ T7865]  ? __pfx_do_file_open+0x10/0x10
[  181.169500][ T7865]  ? _raw_spin_unlock+0x28/0x50
[  181.171095][ T7865]  ? alloc_fd+0x476/0x790
[  181.172524][ T7865]  do_sys_openat2+0x10d/0x1e0
[  181.174169][ T7865]  ? __pfx_do_sys_openat2+0x10/0x10
[  181.175856][ T7865]  ? __ia32_sys_futex_time32+0x2f4/0x470
[  181.177693][ T7865]  __ia32_compat_sys_openat+0x12d/0x210
[  181.179594][ T7865]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  181.181560][ T7865]  do_int80_emulation+0x141/0x6b0
[  181.183241][ T7865]  asm_int80_emulation+0x1a/0x20
[  181.184993][ T7865] RIP: 0023:0xf71c5cab
[  181.186343][ T7865] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  181.192605][ T7865] RSP: 002b:00000000f547d03c EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  181.195301][ T7865] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f547d100
[  181.197994][ T7865] RDX: 0000000000040002 RSI: 0000000000000000 RDI: 0000000000000000
[  181.200545][ T7865] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  181.203219][ T7865] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  181.205769][ T7865] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  181.208457][ T7865]  </TASK>
[  181.209481][ T7865] Modules linked in:
[  181.211001][ T7865] ---[ end trace 0000000000000000 ]---
[  181.216212][ T7865] RIP: 0010:try_module_get+0x23/0xd0
[  181.217993][ T7865] Code: 90 90 90 90 90 90 90 f3 0f 1e fa 48 85 ff 0f 84 9b 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 55 48 c1 ea 03 53 48 89 fb <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 89 00 00 00 83 3b 02 74 67 48
[  181.232016][ T7865] RSP: 0000:ffffc900231bf8b8 EFLAGS: 00010206
[  181.234043][ T7865] RAX: dffffc0000000000 RBX: 0000607f14f3b770 RCX: ffffc9000c803000
[  181.236945][ T7865] RDX: 00000c0fe29e76ee RSI: ffffffff87e9b070 RDI: 0000607f14f3b770
[  181.239866][ T7865] RBP: ffff888000a49e00 R08: 0000000000000001 R09: fffffbfff1fda10d
[  181.242818][ T7865] R10: ffffffff8fed086f R11: 0000000000000000 R12: ffff88802434c8c0
[  181.245459][ T7865] R13: ffff88804cde0880 R14: ffff88802a894f20 R15: ffff88802434c908
[  181.248044][ T7865] FS:  0000000000000000(0000) GS:ffff88809724d000(0063) knlGS:00000000f547db40
[  181.251453][ T7865] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  181.253904][ T7865] CR2: 0000000000000040 CR3: 0000000050153000 CR4: 0000000000352ef0
[  181.256760][ T7865] Kernel panic - not syncing: Fatal exception
[  181.259544][ T7865] Kernel Offset: disabled
[  181.260988][ T7865] Rebooting in 86400 seconds..