last executing test programs:

24.068739791s ago: executing program 2 (id=732):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x10, &(0x7f0000000100)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7000000}}, {}, [@jmp={0x5, 0x1, 0x1, 0xa, 0xa, 0xfffffffffffffff5}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x7, 0x0, 0x0, 0x41100, 0xc}, 0x94)

23.979535628s ago: executing program 2 (id=735):
socket$kcm(0x10, 0x2, 0x0)
r0 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
fchdir(r1)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0xd6)
fcntl$notify(r2, 0x402, 0x8000003d)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$lock(r3, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe})
rmdir(&(0x7f0000000000)='./file0\x00')
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000000000000400000000000000000002e00"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ec}, 0x94)
r5 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r4, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x1, 0x353a, 0x1}}, 0x20)
r6 = dup(r5)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x6, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x41100, 0x18, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r7, 0x107, 0xd, &(0x7f00000002c0)=@req3={0x10000, 0x1, 0x100, 0x100, 0xe, 0x0, 0x3}, 0x1c)
sendmmsg(r7, &(0x7f0000000880)=[{{&(0x7f00000003c0)=@qipcrtr={0x2a, 0x3, 0x4000}, 0x80, 0x0}}, {{&(0x7f0000000180)=@hci={0x1f, 0x4, 0x2}, 0x80, 0x0, 0x0, &(0x7f0000000100)}}], 0x2, 0x45)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000000c0)=@generic={&(0x7f0000000040)='./file0\x00', r6}, 0x18)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f000054e000/0x400000)=nil)
r8 = userfaultfd(0x0)
ioctl$UFFDIO_API(r8, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r8, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
syz_clone(0xa5224b80, 0x0, 0xfffffffffffffd37, 0x0, 0x0, 0x0)
ioctl$UFFDIO_COPY(r8, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00003ab000/0x2000)=nil, 0x400000, 0x2, 0x2})
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
ioperm(0x0, 0x7fff, 0x15f9)
syz_clone(0x4d000, 0x0, 0x0, 0x0, 0x0, 0x0)

23.868916594s ago: executing program 2 (id=738):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000040010000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000010006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50af8ffffff0000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) (fail_nth: 75)

23.790509361s ago: executing program 2 (id=740):
r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x8042)
read$FUSE(r0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x120034, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)={0x2c, r2, 0x1, 0x72bd29, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0xc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x5, 0x1, [0x5]}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$NL80211_CMD_SET_CHANNEL(r0, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x30, r2, 0x400, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x1, 0x2}}}}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x100}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1d5}]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x1)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0xb)
ioctl$OCFS2_IOC_UNRESVSP(r0, 0x40305829, &(0x7f0000000100)={0x0, 0x1, 0x1, 0x8bb, 0x0, 0x6})
r4 = syz_open_dev$vbi(&(0x7f00000002c0), 0x1, 0x2)
fcntl$getownex(r4, 0x10, &(0x7f0000000280))
syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
r5 = syz_open_dev$sndpcmp(&(0x7f0000000100), 0x0, 0x101040)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r5, 0xc0884113, &(0x7f0000000140)={0x1, 0x1, 0xfa6, 0x10000, 0x1000, 0x8000000000000001, 0xfffffffffffffffa, 0x7, 0x2, 0x40, 0x1})
write$FUSE_NOTIFY_DELETE(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="294f1300000006000000000000000000000006000000000000000300"/43], 0x29)
r6 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace$poke(0x420e, r6, 0x0, 0xfffffffffffffffe)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xc, 0xe, &(0x7f0000001700)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000001c0), 0xfffffedf, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0xd}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r7, 0x0, 0x10, 0x0, &(0x7f0000002580)="f0b9547ee7affa9daabd309a75d387db", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0xd, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800e4ff0a00640000000000000000809500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8}, 0x94)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000300))
openat$autofs(0xffffffffffffff9c, &(0x7f0000000380), 0x80800, 0x0)

23.660448644s ago: executing program 2 (id=743):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x3a, &(0x7f00000007c0)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x5, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x3}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x14, r2, 0x303, 0x0, 0x0, {0x2a}}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x318, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x318, 0xffffffff, 0xffffffff, 0x318, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x138, 0x160, 0x0, {}, [@common=@srh1={{0x90}, {0x0, 0x3, 0xf, 0x0, 0x9, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @remote}, @dev={0xfe, 0x80, '\x00', 0xd}, [0xff000000, 0x0, 0xffffff00, 0xff000000], [0xff000000, 0xffff00, 0xffffff00, 0xff], [0xffffffff, 0xffffffff, 0xff000000, 0xffffff00], 0x0, 0x25e8}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@dev={0xfe, 0x80, '\x00', 0x17}, @local, [0xff], [], 'lo\x00', 'gre0\x00', {}, {}, 0x0, 0x5}, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x8, 0xfb}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x378)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r3 = add_key$user(&(0x7f0000000380), &(0x7f0000000000), &(0x7f00000003c0)='X', 0x1, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f00000006c0)={r3, r4, r4}, 0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={'wp384-generic\x00'}})
syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), r0)
sendmsg$nl_generic(r0, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="ac00000040000100fcff0700040000000100000004004880100001800c00108004000880040000000000faad38f22d48be052f01383c58842dfd65adf5a7579af8d4f1afd7d43ca03b8922e46531bb027cdb9bece4fff8fd0242cdfba1c1971f4ddb20ec2e435066dee00ec06af32e9437a20ac3caad7a52b7f2849a6a15575928abe185af38382ddf32fb7ab2bd3eb604e1d3670971b24de4641d1d602c0b000000"], 0xac}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
syz_usb_connect(0x3, 0x164, &(0x7f0000000240)={{0x12, 0x1, 0x300, 0x79, 0xcb, 0x7a, 0x20, 0xbaf, 0xf6, 0x1f, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x152, 0x1, 0x0, 0x2, 0x70, 0x80, "", [{{0x9, 0x4, 0x34, 0x8, 0x5, 0xce, 0x19, 0x64, 0x6, [@hid_hid={0x9, 0x21, 0x8, 0x34, 0x1, {0x22, 0x974}}, @hid_hid={0x9, 0x21, 0x3, 0x0, 0x1, {0x22, 0xae3}}], [{{0x9, 0x5, 0x3, 0x1, 0x10, 0xff, 0x10, 0x30, [@generic={0x16, 0xc, "32194aef6a77639a0537a0df8a6c0b1acf2401b1"}, @uac_iso={0x7, 0x25, 0x1, 0x8, 0x5, 0x6}]}}, {{0x9, 0x5, 0x7, 0x0, 0x20, 0x1, 0x2, 0x9}}, {{0x9, 0x5, 0xc, 0x10, 0x200, 0xf6, 0x4, 0xb, [@generic={0x3e, 0x21, "547aad214465190c407bee4b24bccb49105d08e3a9085c075ad5a309c4279a74c967d8257f2099543734ba5cdf3e32ff7c0127b19e9f82211665503d"}, @uac_iso={0x7, 0x25, 0x1, 0x8, 0x6, 0x29b3}]}}, {{0x9, 0x5, 0x4, 0xc, 0x200, 0x4, 0xc9, 0x10}}, {{0x9, 0x5, 0x8d, 0x5, 0x400, 0x57, 0x30, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x24, 0x7f}, @generic={0x98, 0x5, "f3f5f69420c0fa60a33a3ade5e7896f04efad75b6e2f41f91ccdb784b076588e58e0af4907b7a0bf4f142fb5aa4127b3eef285caab23368a2f62fcd5f02175411724a471af17052ffa4653976649018454ee44d820a2f312414a710726ebdaa500d2abd579a7f4ed0c50007a7e5e8dd1ac5efe6c44df1979b6d725c5d06f79c4a4bd6f4867d2f9dd96cc4a7d3b078137cfc1c5b99bb7"}]}}]}}]}}]}}, &(0x7f0000000540)={0xa, &(0x7f0000000440)={0xa, 0x6, 0x310, 0x6f, 0x79, 0x4, 0x0, 0x3}, 0x53, &(0x7f0000000480)={0x5, 0xf, 0x53, 0x5, [@ssp_cap={0x18, 0x10, 0xa, 0xdc, 0x3, 0xffff, 0xff00, 0x6, [0xff07, 0xffbe00, 0x0]}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x8, 0x5, 0x5, 0x5}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x4, 0x0, 0x6, 0x9}, @ssp_cap={0x18, 0x10, 0xa, 0x6, 0x3, 0x1, 0xf000, 0x8, [0x3f0f, 0x3f30, 0x3f3f]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x4, 0x8, 0x8, 0x43a4}]}, 0x1, [{0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0xc01}}]})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x2c, r6, 0x1, 0x0, 0x0, {0x27}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}}, 0x20000040)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r8=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="24000000700039022abd7000fbdbdf2507000000", @ANYRES32=r8, @ANYBLOB="0c0001800800010013"], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000005c0), r5)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_VENDOR(r5, &(0x7f0000000740)={&(0x7f0000000580), 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x24, r9, 0x400, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x3e}, @val={0x8, 0x3, r10}, @void}}}, 0x24}, 0x1, 0x0, 0x0, 0x44}, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x48, r6, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@ETHTOOL_A_STRSET_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4041}, 0x4000)

23.470370998s ago: executing program 2 (id=749):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000040010000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000010006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50af8ffffff0000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) (fail_nth: 76)

23.380936016s ago: executing program 32 (id=749):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000040010000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000010006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50af8ffffff0000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) (fail_nth: 76)

2.497146301s ago: executing program 1 (id=1127):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0xbc, r1, 0x1, 0x70bd27, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x90, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x83, 0x5, "747899f57cd801854a54daf5e297c9c046a59fdfe07f0045073e20f28d051e5e6442c1b078edbc53b33eb5c5036d9d4f2e7153f48e5dab498e50a9a0a66b6fb1aaa3ebaaff154f98b8eea342a4bdf6229adfe2297c0199c0c50ddba03d806df619da37c449c2f53168d9bf6ab80734754f5a25444346d571c27a22647f460f"}, @ETHTOOL_A_BITSET_SIZE={0x8}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0xbc}, 0x1, 0x0, 0x0, 0x4c045}, 0x0)

2.399661442s ago: executing program 1 (id=1128):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000400000000040010000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000010006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50af8ffffff0000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)

2.327766002s ago: executing program 1 (id=1130):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
r1 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000004b40)='./binderfs/binder-control\x00', 0x802, 0x0)
ioctl$BINDER_CTL_ADD(r1, 0xc1086201, &(0x7f0000004b80)={'binder1\x00'})
read$dsp(r0, &(0x7f00000001c0)=""/256, 0xffffffffffffff45)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000001080)={0x30, r4, 0x1, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_BSSID={0xa, 0xf5, @random="a851dcbefddb"}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x1000}]}, 0x30}}, 0x400404c)
r6 = syz_open_dev$loop(&(0x7f0000000000), 0x2, 0x10800)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="09000000000000003ce9"], 0x14}, 0x1, 0x0, 0x0, 0xc004}, 0x6c845)
r7 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
setsockopt(r7, 0xf1178ca7, 0x7, 0x0, 0x0)
bind$rds(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x4e24, @local}, 0x10)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$inet(r8, &(0x7f0000000380)={&(0x7f0000000180)={0x2, 0x4e24, @private=0xa010100}, 0x10, &(0x7f0000000340)}, 0x24004880)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CAP_HYPERV_SYNIC2(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000440))
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r11, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000040)="b99d0100000f320fc76fb4360fc9bb25cc00007666ba6b416000f303c70fae6e2fc0c00f0f2367260f01ca660f38817700c4c2459d78ad", 0x37}], 0x1, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r10, r11, &(0x7f0000fdd000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, 0x0}], 0x1, 0x33, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r11, 0x4080aebf, &(0x7f0000005700)=@vmx={0x0, 0x0, 0x2080, {}, {"000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400"}})
ioctl$KVM_RUN(r11, 0xae80, 0x0)
r12 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r12, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000300)="2e00000011008108090f9becdb4cb9200a4831371400000069bd6efb2502eaf60d000300020400bf050005001201", 0x2e}], 0x1}, 0x0)
r13 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r13, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000023c0)=ANY=[@ANYBLOB="380000005500e502000000000000000007000000", @ANYRES32, @ANYBLOB="20000100", @ANYRES32=0x0, @ANYBLOB="0001"], 0x38}}, 0x80)
ioctl$LOOP_SET_FD(r6, 0x4c00, r0)

1.759921963s ago: executing program 0 (id=1144):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = creat(&(0x7f0000000580)='./bus\x00', 0x0)
r2 = fanotify_init(0xf00, 0x2)
fanotify_mark(r2, 0x105, 0x8971, r1, 0x0)
rename(&(0x7f0000000080)='./bus\x00', &(0x7f00000000c0)='./file1\x00')
readv(r2, &(0x7f00000005c0)=[{&(0x7f0000000000)=""/88, 0xfffffdf1}], 0x1)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB="5800000002060300000034e40000000000000008050005000a000000050001000600000005000400000000000900020073797a310000000011000300686173683a69702c706f7274000000000c00078008000640"], 0x58}, 0x1, 0x0, 0x0, 0x24000801}, 0x0)

1.640504704s ago: executing program 0 (id=1145):
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000004800)=[{{0x0, 0x0, &(0x7f00000046c0)=[{&(0x7f0000000c80)="6fead4df3c124b3c2b55fed650f7804383c4e37a3018bbf00229f22933b04a64b054c1e468e3be56a0bb90a829d770c3af1f9cf41a40978615de9d651477d2e99e27f7c620319c056c423e4f41d6c381bdfb7a488f23e04316ab5a5d882de8155d4535f87782003746164d8509c8ed645319b03c1347ad509816199de1f2e92b9a5861c1f6b8ba02f6b435685d373ddd01452fbaa6541e6fd18ff6dbd54e18429bce1b7eafbd7866a0084c1a78c2d8", 0xaf}, {&(0x7f0000000d40)="6bcbbf5f8629fba7ff5074f33a6d3dedbc20eb50161bad0c1e627fbd2b0f1a9a4048782b7051d20ded92f6f6e9f3318392d4acec69bd49e863ebd528c880d2fe41584951e30af9fbd7cec49276480e005386021e9a27a41758b96acb57d723c717a08f708ca0f40fe9ed454fcf1d3d21329a0cdc1d63e1469d4d9190f4b2df7a820b8df0ffe496165fe9ad75df490005837f0aeec8de02258312ea0f0e21de586cb1764ed860c5b967e0d3d1aa429c92edebe562325c185c8c", 0xb9}, {&(0x7f0000000e00)="ff878ea1a92417767cebbb68e0329515cfcf896156853f8415bca2aaa9e410b1d8a129c5c9fac75820d8b0aa27543710a184b46d4bdbb6e1402812ac7c98899177b4", 0x42}], 0x3}}], 0x1, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000000280), 0xffff, 0x14f600)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x80000000700, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900000000000000000000000000000000000000000d00", [0x0, 0x31]}})

1.578059172s ago: executing program 0 (id=1148):
ioctl$KVM_SET_SREGS2(0xffffffffffffffff, 0x4140aecd, &(0x7f0000000140)={{0xfffeffff, 0x58000, 0xe, 0x9, 0x7f, 0x80, 0xfb, 0x6, 0x0, 0xfa, 0xe, 0x3}, {0xd000, 0x10000, 0x10, 0x3, 0x3, 0x7, 0x6, 0x6, 0x7f, 0x4, 0xfa, 0x5}, {0xf000, 0x8000000, 0x4, 0x4, 0x10, 0x81, 0x9, 0x13, 0x5, 0x4, 0x92, 0x80}, {0x10000, 0xeeef0000, 0xe, 0x9, 0x1, 0x40, 0x2, 0x6, 0xfd, 0x29, 0x9, 0x9}, {0xffff1000, 0x7000, 0xe, 0x9, 0x5, 0x1, 0x3, 0xf1, 0x2, 0x6e, 0x2, 0x8}, {0x3000, 0xffffffff, 0x8, 0x2, 0xad, 0x8, 0x5, 0x5, 0x1, 0xf, 0x6, 0xa}, {0x10000, 0xf000, 0xb, 0x0, 0xcd, 0x5, 0x5, 0x26, 0x0, 0x6, 0xff, 0x6}, {0x9000, 0x6c881088738e8abb, 0xd, 0xe, 0x17, 0x3d, 0x3, 0x0, 0x7f, 0x1, 0x0, 0x8}, {0xeeef0000, 0xc800}, {0x80a0000, 0x4}, 0xe0000025, 0x0, 0x6000, 0x203, 0x5, 0xa800, 0xffff1000, 0x1, [0x6, 0x4, 0x3, 0x3]})
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) (async)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0) (async)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) (async)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4) (async)
sendmmsg$inet(r1, &(0x7f0000000c00)=[{{&(0x7f0000000040)={0x2, 0x4e23, @multicast2}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000100)="1b", 0x1}], 0x1}}], 0x2, 0x2400c0a2) (async)
close(r0) (async)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000300)=0x8)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000040)={r3, 0xd038, 0xd7, 0x5}, &(0x7f00000001c0)=0x10) (async)
r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x63)
write$P9_RLERRORu(r4, &(0x7f0000000180)=ANY=[@ANYBLOB="c5"], 0x10)
r5 = socket$can_j1939(0x1d, 0x2, 0x7) (async)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
setsockopt$sock_int(r5, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
getpeername$packet(r4, &(0x7f0000000280)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000340)=0x14)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r6, r7, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000003c0)=[0x0], 0x0, 0x8000000000000000, 0x1, 0x1}}, 0x40) (async)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10012, r4, 0x0)

1.517205476s ago: executing program 0 (id=1149):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x1004018, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0xc0})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x77359400}}, 0x0)
kexec_load(0xd0ffbf, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0x3e0000, 0x40000000}], 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000003c0)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})

1.320046249s ago: executing program 1 (id=1154):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000004400)=@newtfilter={0x874, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, 0x0, {0x0, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x840, 0x2, [@TCA_MATCHALL_ACT={0x83c, 0x2, [@m_police={0x838, 0x1, 0x0, 0x0, {{0xb}, {0x80c, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1ff, 0x3, 0x10000, 0x81, 0x7f, 0xfffffffb, 0x4, 0x2, 0xffffffc0, 0x5, 0x2234, 0x7f, 0x81b, 0x800, 0x8, 0x0, 0x3, 0x7ed53619, 0x1, 0x2, 0x9644, 0x4, 0x58b, 0x85a, 0x3ff, 0x46, 0x2, 0x1, 0x0, 0x80000000, 0x10001, 0x790, 0x5, 0xab2, 0xfffffff9, 0x1a77, 0x9, 0x3, 0x400, 0x63c, 0x4, 0xffffffff, 0x0, 0x5, 0x1, 0x5b1f, 0x7b0, 0x7, 0x100, 0x6, 0xd, 0xff, 0x3, 0x4, 0x6, 0x6b7, 0x1ff, 0x80, 0x4, 0x7, 0x3, 0xa14, 0x3, 0x2, 0x80000000, 0x81, 0x7, 0x8, 0x5, 0x10001, 0xf7, 0x3, 0xfffffff9, 0x9, 0x4, 0x8, 0xfff, 0x3, 0x1, 0x6, 0x7, 0x8, 0x100, 0xc0000000, 0x6, 0x6, 0x6, 0x8, 0x80000001, 0x8, 0x1d24, 0x2, 0x9, 0x0, 0x7f, 0x7, 0x863c, 0xff, 0x24, 0x5, 0x7, 0x6, 0x7a, 0x8, 0x0, 0x7, 0x470, 0x7f, 0x6, 0x0, 0x1, 0x0, 0x4, 0x9, 0x61, 0x200, 0x4, 0x2, 0x2, 0x800, 0x10001, 0x8, 0x7, 0xf, 0xda56, 0x7ffffffe, 0x80, 0x2f0cb955, 0x7, 0xfed, 0xf, 0x6ae, 0x2, 0x1, 0x9, 0x8001, 0x0, 0xec000, 0x0, 0x1, 0x2, 0xfffffffb, 0x7, 0x8, 0x4, 0x1, 0xffffcf1b, 0x282, 0x5517bc7b, 0x3, 0x7, 0xb6b, 0x5, 0x0, 0xac, 0x9, 0x6, 0x10, 0x9, 0x8, 0x80000001, 0x0, 0x74, 0x2, 0x7fffffff, 0x0, 0xa, 0x6, 0xffffffff, 0x8, 0x2, 0x7, 0x7f, 0x70, 0x7, 0xa, 0x1, 0x0, 0x9, 0x300, 0x5, 0x3, 0x6, 0xffffffff, 0xffb, 0xff, 0x5, 0x8, 0x3, 0x2, 0x5, 0xfca, 0x399d, 0x6, 0x8ab6, 0x18000, 0x2, 0xfffffff9, 0x2, 0x2, 0x528c, 0x5, 0x200, 0xac, 0xf, 0xd05, 0x9a2ce73, 0x4, 0x6, 0xe074, 0x6b10, 0x5, 0x1, 0x6, 0xb, 0xa26, 0xaf6, 0x0, 0xec, 0x8, 0xde16, 0xc418, 0xffffffff, 0xffffffff, 0x9, 0x400, 0x1, 0x9, 0x354d, 0x5, 0x2, 0x1, 0x7, 0x1, 0x177, 0x7, 0x3, 0x80, 0x5, 0x8, 0xfffffffb, 0x9, 0xe7b, 0x0, 0x7, 0x42bf, 0x10000, 0x9, 0x9, 0x6, 0x4b75, 0x80000001, 0x1000, 0x5915, 0x10001, 0x1]}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1000, 0x4, 0xec2, 0x6, 0x8, 0x400, 0x5, 0x1, 0x7, 0x470, 0x487, 0x100, 0xa99, 0xffffff01, 0x5, 0x37f, 0x8, 0x6, 0x3, 0x3, 0x800, 0xd2f5, 0x40, 0x4, 0x4, 0x5, 0x7, 0x12, 0x2, 0x8, 0x101, 0xffffffff, 0x2, 0x10000, 0xa6, 0x3, 0x10000, 0x5, 0x4, 0x0, 0x3, 0x0, 0xd, 0x8000, 0x98, 0x8, 0x6, 0x9, 0x1000, 0xb3000, 0xf, 0x3, 0x9, 0xb4, 0x94d, 0x9, 0x8, 0x6, 0x100, 0xec0, 0xffff, 0x4, 0x2, 0x3ff, 0x3e, 0xb828, 0x0, 0x0, 0x365, 0x8, 0x8, 0xf, 0x1, 0xfffffffe, 0xfffffff6, 0x93, 0x7ff, 0x92, 0x0, 0x7, 0xfffffffc, 0x7ff, 0x9, 0x2, 0xffffffff, 0x2, 0x8, 0x4, 0x3, 0x9, 0xc, 0x0, 0x3, 0x3, 0x400, 0x100000, 0x7f, 0x2, 0x8, 0x4, 0x7, 0x4, 0x7, 0xfffffffa, 0x101, 0xadd9, 0x1, 0x0, 0x7, 0x7fffffff, 0x2, 0x4, 0x0, 0x5, 0x4, 0x3, 0x8, 0x9, 0x6, 0x6, 0xe, 0xb, 0x3, 0x7f, 0xffff, 0x401, 0x1685, 0xa252, 0x2, 0x200, 0x3, 0x1, 0x400, 0xfffffffc, 0xfffffffc, 0x1000, 0x7ff, 0x1, 0x1f6, 0x751, 0x7, 0x40000000, 0x4, 0xffffdbb7, 0x50, 0x0, 0xd, 0xe, 0x3, 0x0, 0x81, 0xfff80000, 0x7a7, 0x1, 0x6, 0x3, 0x8, 0x7, 0x5, 0x2, 0x0, 0x4e8, 0x80, 0x3, 0x8, 0x5, 0x0, 0x5, 0x7ffb, 0x7, 0x8, 0x6a4941c5, 0x2ea567b4, 0x8, 0x80000000, 0x6, 0x40, 0x2, 0xfff, 0x8, 0x3, 0x1, 0x1, 0x0, 0x0, 0xd3bed341, 0x691f, 0x61, 0x2, 0x9, 0x6, 0x0, 0x1ff, 0x3, 0x3, 0x6, 0x5fc8462f, 0x0, 0x7, 0xffff, 0xfffffffc, 0x5, 0x0, 0xb9a6, 0x522, 0x2, 0x2, 0x900, 0x8, 0xbb99, 0xb8000000, 0x8, 0x3, 0xc0a1, 0x8, 0x8, 0x7, 0x59, 0x9, 0x20002, 0x101, 0x5f502dc7, 0x7, 0x0, 0x4, 0x6, 0x80000001, 0x3, 0xffffff97, 0x2, 0xfff, 0x1, 0x40, 0x8, 0x0, 0x710, 0x8, 0x1, 0xfffff339, 0x3, 0x8001, 0x1, 0x8001, 0x6, 0x8, 0xfffffffa, 0x8, 0x9, 0x3, 0xe, 0x10000, 0x9, 0x9, 0x7, 0xfffffff8]}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}}]}, 0x874}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=@gettclass={0x24, 0x2a, 0x20, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x7ff8, 0xe}, {0xd, 0xb}, {0xb, 0x10}}}, 0x24}, 0x1, 0x0, 0x0, 0x810}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003140)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="08001a00", @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYRES32, @ANYBLOB="08001b"], 0x18c0}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.239034725s ago: executing program 1 (id=1155):
r0 = syz_open_dev$dvb_frontend(&(0x7f00000015c0), 0x0, 0x400)
ioctl$FE_GET_EVENT(r0, 0x80286f4e, &(0x7f0000000040)={0x0, {0x0, 0x0, @vsb}}) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0) (async, rerun: 32)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x202, 0x0) (rerun: 32)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f000062c000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f0000000000)="f00fc7484d36f08266060266b9800000c00f326635000400000f308bc1de780066b9aa0200000f3266b9ab0900000f32f2f031b3e759dc2c", 0x38}], 0x1, 0x9f6a364b3fac2a63, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async, rerun: 32)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120000007f00000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{r7}, &(0x7f00000007c0), &(0x7f0000000640)=r6}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r7}, &(0x7f0000000240), &(0x7f0000000280)='%pS    \x00'}, 0x20) (async, rerun: 32)
setsockopt$inet6_int(r2, 0x29, 0x5, &(0x7f00000004c0)=0x5, 0x4) (async, rerun: 32)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r1)
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x60, r8, 0xd55319eec59dfa33, 0xfffffffd, 0x25dfdbfc, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x0, 0x67}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'caif0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "2e7de0d5bc6fc8327178f2594e882102837f22e566187e2c"}]]}, 0x60}, 0x1, 0x0, 0x0, 0xc804}, 0xc2010) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) (async)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="440000000206010300000000000000000000000037077a325ce1a00900020073797a3000000000050005"], 0x44}}, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x2}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x2d}}, @timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x60}}, {{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000bc0)="e7bc2f4799fe560c31cf5a20a1b22fb77ce7f19e605b6a8d2645af02e63f9a9d7ba31907ccc0f4aa71ec0762b3a8e3332fe3603b4624", 0x36}, {0x0}, {&(0x7f0000000d00)}, {&(0x7f0000000fc0)="c6eae69212ba50dd664af774c32d34273a3baad9692140de74d9294c555a8c2e0d53acea79b788b5eb1a12ada1", 0x2d}, {0x0}], 0x5, &(0x7f00000014c0)}}], 0x3, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) (async)
r11 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r11, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r11, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r12 = accept4(r11, 0x0, 0x0, 0x800)
sendmmsg$alg(r12, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) (async)
recvmsg(r12, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})

1.068617516s ago: executing program 1 (id=1156):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x1, @private}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000280)=[@in={0x2, 0x4e21, @loopback}], 0x10)
sendmsg$inet_sctp(r1, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @loopback}, 0x10, &(0x7f00000002c0)=[{&(0x7f0000000000)="fd", 0x1}], 0x1, 0x0, 0x0, 0x804c044}, 0x881)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x44}, @IFLA_GROUP={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r3 = dup(r1)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
fcntl$setownex(r4, 0xf, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x106, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_DISCONNECT(r3, &(0x7f0000000080)={0xa, 0x4}, 0xc)
syz_usb_connect(0x5, 0x0, 0x0, 0x0)
r5 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r5, &(0x7f0000000100)={&(0x7f0000000000)={0x2, 0x4e1e, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10, &(0x7f0000000400)=[{&(0x7f00000004c0)='\b\x00', 0x2}, {&(0x7f0000000180)="96bc1480bb35", 0x6}, {0x0}, {0x0, 0x50}], 0x4, &(0x7f0000000340)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x1}}], 0x18}, 0x24008004)
recvmmsg(r0, &(0x7f00000003c0)=[{{0x0, 0x0, 0x0}, 0x4}], 0x1, 0x12112, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f00000006c0)=[{0x6, 0x0, 0x0, 0x7fff8000}]})
close_range(r6, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f0000000100)={0x0, 0x7, 0x2})

1.067582737s ago: executing program 4 (id=1157):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0x18, 0x8, 0x40, 0x42, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r0}, 0x38)
prctl$PR_SET_THP_DISABLE(0x50, 0x1)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001600)={r0, &(0x7f0000000580), &(0x7f0000001580)=""/92}, 0x20)
r1 = socket$kcm(0x29, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000940)={&(0x7f0000000000)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x7f}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000100)}, {&(0x7f0000000240)="28f4ac9896c4941c73085e29289ba219311a99bbb5d5e4f988539b87c0f4675492c9e6db40b0c68732081ee84feedd5b2e7fbc0d6d25690b111d577ad8cab639b56f161563ec7d73a6a9338f0eb87d9d30a34a201e9c7dac12d19978e8acc450d0749ca7cba751c9fe155cf37d1597344dcd6b8f8eeb90d03b367bcba4063021c20c0080b2606030f45528c7db862257511781f2c14ee94ab178ea19ff1afe6545fd8e1b0e2721c6992f24396ae947fa3c89829884004eaa1296d5e6ba4bb893ac454b2a3a1f02b4b1765e154754f547eeba9c731e922eb5c68b5c23609a8bc838fa6240a08bb19d745ad6e4c9f1b2fff019272dffc9562ae0035ac9bfaf87", 0xff}, {&(0x7f0000000340)="150d1218704f05dd676e328e93caa4b7adf510af3d4acdfa1517734f7195e0f0986d01f52ceaffb8f281f9978b7b6bd1e4e18a0a0dbae9be", 0x38}], 0x3, &(0x7f00000003c0)=[{0xd0, 0x10b, 0x993c, "6cfe82ce38142de64b8c8d8995642a7ea10d85d675a018a30e44fa77faea8391714a86c5caa0595b7ea4693f155d149d86da1d989991769d5d72834e69ebf1ef64bec63c3f57f83c679e19511e5625bdc1c028e1928f0b8d44f88f8e59d41ab78b12bbfc7b665c8bd37440bdddf0473d7db2c66f5b158e22d9e1ba55440f90ff84fe4124a3d8a9992fcb6cf2ce4edc01099da2a0d0cf0a8f6f165af0f65f19ef5c39704ff616825bc7bf7c30c552e73206b5d7a6f9e1bec223aaa69e694632"}, {0x20, 0x110, 0x800, "3df13a4ecaaddd115bbfab5e"}, {0xa0, 0x112, 0x4, "dd78232f35df2ac3f7cd2930ae1f1aca897854dcd4193a338b85255385764134072cfbfee3f1ff2546f9421f5969200dbb8982f62dc1c67c0f20aafc9dc253a63daf9e088f3ad459e428f3004e860a5166b2da589486359b2f6af1721d7cfcec75b879c6184d840b82db8e5f87426bc82f7500f2af6d0e9f541c8cf8c88ab4cc793ec61135d92cace1763ca02a"}, {0x90, 0x114, 0x10000, "c509bbf24c3bbb934afbbd28801eb0c4728a907a8a5ca48b2f62e7b0d82a4c902b9ce72477a3dd8fbff9f1e751fd50bd00a4a16f4932ee7737d695f4a59d6aefe143c9f577219ceffcd2e38364574724f850b1ff1b180d6ad6cb689d766ec439e1c1ee6899631101d259497947d1fa83625240771e05a52768405b"}, {0xc0, 0x101, 0x2, "0656df3f00e48e4e6237f8ff113db64847fdc1d8539c4f5427addab6d62c4d6b78f7b3dac7f6ae457ef827a7d64e1113f3b9400803e8f22d452a7868c0a63d24da311592775507fa7f7b156cc5a118a0a96146ae6a4afdad151f95b89a2dddb2f122462cc15150b3672ad9e870a659712723bcdfdd25fda1ac264b81a8c1bbdb67d08fd315d82be38c34c6dd903413dc75826aef1b6bc76fb9e0ec40c965e14af30ce1386305705289fd7595f6e04b59"}, {0x90, 0x6, 0x4, "11aaacbe331133f4d3625e57e772a53e3902793d6042ffa0174f8e79a41237a639302cb010ca6aa201b4a1a2285408b6e8547358b159667a3e16775f56de8560df477f6fbe84bd8ab9bb61355a03b81ff1df9b4cf738a9fe5d38a0e579a6c112de1e7aa88396c76eb664f70e00858acbea73a5392d5a3c41b7"}, {0x88, 0x10d, 0x4, "41c112d30a927c3cce015f64acf446cc90aa51724a9aa35006dd717a3ab3bee438fa1382546af4cdf4dbd6e612c7bbd7da4fb475ed6971f05843a1fe32cc999a5abfad2e0d458fff5535335ce6b113b22ef9e3cc7c49ce51f1fbdab8d2606cc37264b8ed321e906cb91e27ee8c95e6f2d9127dc1adb2a2"}, {0xf8, 0x118, 0xfff, "4ec50c1bb741a23ff5d8f4d7b468b0804cee871d5d1c8068905602ab8c0ab8ea9fa42b47b276297c3d833664cd13d4876e4732c0ad938a79525973e8f914c8fb8b55f276ec0d53fc7bef4fc18a496535a5597ab58e45b9be5a0043ea304d4b1250b76833030882f014854cc0df69101cfad97089be41874757844e4cc5e5b14c60e269207f7507147eee3b490e14cc4516b7c6cef481c4fca79da8d7f6d2e68991732e28f2b33ed6718c776a062b36bbecd5f0b948f4a2b58dbd3e152650d1038e3de318b76f516a48d581ddac8d1300b631f638bd4580ae9b1c8dee388d5f0f7644d150c8d1"}, {0x78, 0x10f, 0x0, "587d1b3d81d9b4df89b97398e3fc59aa82ff025633ac614a99c8d0de440f40c62ceb0abd6468edc09e99b0b31c38405462c7b300ea504645208a1588028c22d9ba0ff3b66c5616bd06e818afc020b6c0d24da3133690ff0f483abe4272d0eed0cf00662929ff"}], 0x568}, 0x4)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000100)="b36807f7ada71ab9964eb67871ef347bbffb8d122ce79690fd40d9c2a5773e18c79ff9e07fd6538c745e36bab9cd9989d0d07328044e857d1c997d4423ed0a9088eeabce0e6b59ffe850aa", 0x4b)

970.72281ms ago: executing program 4 (id=1158):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cast5)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r1 = socket$kcm(0x11, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bond0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x58, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x1ba20, 0x40a38}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x4}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x11, 0x13}}]}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_LINKMODE={0x5, 0x11, 0x1}]}, 0x58}}, 0x8000002)
shmdt(0x0)
setsockopt$sock_attach_bpf(r1, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r1, &(0x7f00000000c0)={&(0x7f0000000180)=@qipcrtr={0x2a, 0x4, 0x7ffe}, 0x80, &(0x7f0000000080)=[{&(0x7f00000016c0)="27031c00160014000000002f06afacf706e105400000894f00050003ee0b80558ddbba9b37242d37a518fc9c5be50eaf07c36505968f28a488a8401618bcfc1480ffaa7585283a2c2da93510fcc826b10c3b3ccb2e1a3de2e549fb2fccd96a9f5e4d5573f5fde1945dd4e631ac0cf6742d79135dc7626a127b11cce50b1d626c0add12b8564655ecf4b37c1acb61d171708974e8ef3bde8af180fa182cf54f5605997fb370f05443a27ab9b693a86a90423c7a7297c2ccfd07fdfbc24f42d0a723daa6975f20109e2cf10080f1c72b3bc15b5b8da6700cf210b3750a7eda5145994437ccddc97158806b984865b3c0c801", 0xf1}, {&(0x7f0000000540)="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", 0xe69}], 0x2}, 0x20000004)
r4 = accept4(r0, 0x0, 0x0, 0x800)
r5 = socket$kcm(0xa, 0x2, 0x73)
sendmsg$sock(r5, &(0x7f0000000000)={&(0x7f0000000240)=@nl=@unspec={0x0, 0x0, 0x0, 0xd8ff}, 0x80, 0x0, 0x0, &(0x7f0000000380)=[@timestamping={{0x14, 0x1, 0x4f, 0x3}}], 0x18}, 0x4)
shmdt(0x0)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e7", 0x9b}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
r6 = syz_open_dev$video(&(0x7f0000000300), 0x0, 0x200)
ioctl$VIDIOC_G_FMT(r6, 0xc0d05604, &(0x7f0000001d40)={0xa, @raw_data="752ae0b998dc0a7286617792b8846137fd5e789aaacdf16c2c8775cdb14054e3a03edfb1e65a686f175bc0aa07009dca773bf20ff0b4b8b885a2e6213209aa5f69589d00313ac31fd733f990e24a6b11c0bfad8562e8ff27733629751e457143f05e4b06a6d09713601d7a90991ae9e868c3e7ceefdcbae94b35e94b333a855e26d6621bbc847bd5b83bf9ab82d320e7f6cb6022fc19d94c5b8366d919a5ffeb51fedbdb2fe6a71f1d70d8c08277f6c113f5372fc84c75a9067658b71e17e835e03f3949bd66f1e7"})
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)

910.849831ms ago: executing program 4 (id=1159):
arch_prctl$ARCH_SHSTK_ENABLE(0x5001, 0x1)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000340)=ANY=[@ANYBLOB="240000001d00070f000200000000000007000000", @ANYRES32=r2, @ANYBLOB='\x00\x00g\x00\b\x00\b\x00', @ANYRES8=r2], 0x24}, 0x1, 0x0, 0x0, 0x24008814}, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r3, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000})
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet_tcp_int(r4, 0x11e, 0x1, 0x0, &(0x7f0000000000))
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r3, 0x0, <r5=>0xffffffffffffffff, 0x1})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_int(r6, &(0x7f0000000080)='hugetlb.2MB.failcnt\x00', 0x2, 0x0)
sendfile(r7, r7, 0x0, 0xf)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000100)={0x48, 0x7, r5, 0x0, 0x10000, 0x0, 0x1, 0x2ea473, 0x5})
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000000)=[{0xa, 0xfc, 0x0, 0x7fff7ffc}]})
close_range(r8, 0xffffffffffffffff, 0x0)
arch_prctl$ARCH_SHSTK_ENABLE(0x5001, 0x1) (async)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'bridge_slave_0\x00'}) (async)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000340)=ANY=[@ANYBLOB="240000001d00070f000200000000000007000000", @ANYRES32=r2, @ANYBLOB='\x00\x00g\x00\b\x00\b\x00', @ANYRES8=r2], 0x24}, 0x1, 0x0, 0x0, 0x24008814}, 0x0) (async)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000003c0)={0xc}) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r3, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000}) (async)
socket$inet_smc(0x2b, 0x1, 0x0) (async)
getsockopt$inet_tcp_int(r4, 0x11e, 0x1, 0x0, &(0x7f0000000000)) (async)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r3, 0x0, 0xffffffffffffffff, 0x1}) (async)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup_int(r6, &(0x7f0000000080)='hugetlb.2MB.failcnt\x00', 0x2, 0x0) (async)
sendfile(r7, r7, 0x0, 0xf) (async)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000100)={0x48, 0x7, r5, 0x0, 0x10000, 0x0, 0x1, 0x2ea473, 0x5}) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000000)=[{0xa, 0xfc, 0x0, 0x7fff7ffc}]}) (async)
close_range(r8, 0xffffffffffffffff, 0x0) (async)

850.210208ms ago: executing program 4 (id=1160):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=@newlink={0x44, 0x10, 0x40d, 0x70bd2d, 0x1ffffffc, {0x0, 0x0, 0x0, 0x0, 0x61646, 0x3020}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_MODE={0x5, 0x1, 0x2}, @IFLA_BOND_XMIT_HASH_POLICY={0x5, 0xe, 0x5}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x80, {0x0, 0x0, 0x0, 0x0, 0x0, 0x200e3}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x480)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x60840, 0x8)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$unix(0x1, 0x1, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000ac0), 0x40081, 0x0)
r3 = socket(0xa, 0x1, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f00000001c0)={0x3, {{0xa, 0x4e24, 0x2, @mcast1, 0xff7ffffd}}, {{0xa, 0x4e08, 0x4a3, @local, 0x4f1}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000400)=ANY=[@ANYRES32=r3, @ANYRES64=0x0, @ANYRES16=r2, @ANYRESHEX=r2, @ANYRESHEX=0x0, @ANYRES8=r0], 0x610)
r4 = socket(0xa, 0x1, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2a, &(0x7f00000001c0)={0x3, {{0xa, 0x4e24, 0x2, @mcast1, 0xfffffffe}}, {{0xa, 0x4e08, 0x4a3, @private2, 0x4f0}}}, 0x108)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000480)=ANY=[@ANYBLOB="90004ac0822800111000010000000000000000acffffff00", @ANYRES32=0x0, @ANYBLOB="0000000028120700080004008100000008001b0000000000"], 0x30}}, 0x4004090)
io_setup(0x2e, &(0x7f0000000200)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f0000000440)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0xf, r1, 0x0, 0x0, 0x4000000}])
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000140)={@cgroup=<r7=>0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
eventfd(0x200)
futex(&(0x7f000000cffc)=0x100000000000004, 0x0, 0x4, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x1, 0x4, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
shmget(0x1, 0x1000, 0x20, &(0x7f0000fff000/0x1000)=nil)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)
connect$netrom(r1, &(0x7f00000000c0)={{0x3, @bcast, 0x5}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null]}, 0x48)
socket$unix(0x1, 0x1, 0x0)
r8 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@getqdisc={0x2c, 0x26, 0x200, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xfff7, 0x4}, {0xffe0, 0x1}, {0x3}}, [{0x4}, {0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40001}, 0x10)
sendmsg$can_j1939(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x1d, 0x0, 0x3, {0x1, 0xf0, 0x3}, 0x2}, 0x18, &(0x7f0000000240)={&(0x7f00000001c0)="f666677c6943bc64ae4ff8eabcfdc4b21d085b1aa4ab829a469911247ba550d701cf9c83b0e012b434203be5d98eb0930101", 0x32}}, 0x20000001)

430.906699ms ago: executing program 3 (id=1163):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f00000000c0)="170000000200010000ffbe8c5ee17688a2003c000301000a000002a257fc5ad90200bb6a880000d6c8db000000df018002000000fc0607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dfc060115003901000000000000ea000000000000000062068f5ee50ce5af9b1c568302ffff02ff030000ba000840024f0298e9e90539062a80e605007f71174aa951f3c63e5a1b47b63a6323ded2231454668492f9c681a6a9fc", 0xb8)
r1 = syz_open_dev$dri(&(0x7f0000000040), 0x20, 0x0)
openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r1, 0xc00864bf, &(0x7f0000000080)={<r2=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(r1, 0xc01064c1, &(0x7f0000000100)={r2})

380.507795ms ago: executing program 3 (id=1164):
r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x15, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000791200000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000200)={0x0, @bt={0x400, 0x5, 0x0, 0x1, 0xbdd, 0xd, 0x80, 0x6, 0x9, 0x6, 0x2, 0x5b43, 0x6, 0x298, 0xa, 0x1e, {0x80000000, 0x6}, 0xb, 0x7}})
r1 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x40, &(0x7f00000000c0)=0x3, 0x4)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$sock_int(r2, 0x1, 0x52, &(0x7f0000000040)=0x92c, 0x4)
recvmmsg(r2, &(0x7f0000007f40)=[{{0x0, 0x0, 0x0}, 0x5}], 0x1, 0x10002, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$int_in(r0, 0x5421, &(0x7f0000000380)=0x5)
r5 = socket(0x10, 0x803, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="590000000000dc75"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0xeaddb0ce1851e778, 0x0, r7}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_FLAGS={0x8, 0x8, 0x374}]}, 0x34}}, 0x0)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r7}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = dup(r9)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000006c0)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_DEL_TX_TS(r10, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000700)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002cbd7000ffdbdf256a00000008000300", @ANYRES32=r11, @ANYBLOB="0500d200000000000a000600feffffffffffffff"], 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
bind$inet(r10, &(0x7f00000002c0)={0x2, 0x4e22, @loopback}, 0x10)
ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r0, 0xc0945662, &(0x7f0000000140)={0x1, 0x0, '\x00', {0x0, @reserved}})
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000000)=0x1)

330.39399ms ago: executing program 4 (id=1165):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x13, r1, 0x5000)
r2 = socket(0x40000000015, 0x5, 0x0)
getsockopt(r2, 0x200000000114, 0x271e, &(0x7f0000032580)=""/102390, &(0x7f0000000040)=0x18ff6)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17) (fail_nth: 36)

260.770103ms ago: executing program 3 (id=1166):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = epoll_create1(0x80000)
epoll_pwait2(r1, &(0x7f0000000040)=[{}], 0x1, &(0x7f00000000c0), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x40, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x0)

260.536706ms ago: executing program 3 (id=1167):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
write$tun(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="000086dd0001110004000000a60c6eec00be00442fd3fe8000000000006000000000000000aaff020000000000000000000000000001042022eb"], 0xfdef)

119.433466ms ago: executing program 0 (id=1168):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180800003fffffff0000000040010000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000010006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50af8ffffff0000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)

119.180166ms ago: executing program 3 (id=1169):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RELDISP(r1, 0x5605)
close(r0)
socket$netlink(0x10, 0x3, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = gettid()
kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff)
ioctl$SIOCSIFHWADDR(r0, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010001000700"})
ioctl$NBD_SET_FLAGS(r0, 0xab0a, 0x10001)
r4 = socket$kcm(0x10, 0x2, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000600)=@raw={'raw\x00', 0x8, 0x3, 0x4c0, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f0, 0xffffffff, 0xffffffff, 0x3f0, 0xffffffff, 0xb, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x1c8, 0x230, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@set2={{0x28}, {{0x0, 0x40}}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520)
sendmsg$kcm(r4, &(0x7f0000000040)={0x0, 0x12, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602019900000e000a000f000000028000001294", 0x2e}], 0x1}, 0x10)

59.594922ms ago: executing program 0 (id=1170):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]}) (async, rerun: 64)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (rerun: 64)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4048aecb, &(0x7f0000000480)={0x7, 0x0, [{0x40000000, 0xffffffff, 0x4, 0xffffff89, 0x6, 0xa9, 0x2}, {0x4, 0x4, 0x1, 0xe2, 0xfffffffd, 0x56fecc05, 0x5}, {0x0, 0x7, 0x0, 0x3ff, 0x7ffffdff, 0x8005, 0x9}, {0x80000019, 0xe5f, 0x1, 0x7, 0xdf3, 0x6, 0x80000001}, {0x6, 0x2bb, 0x2, 0xd, 0x3, 0x7ff, 0x400}, {0x40000001, 0x100, 0x4, 0x5, 0x400003, 0x40000002, 0x100003}, {0x80000001, 0x2, 0x3f91c194927b8e21, 0x3, 0xfffffff9, 0x7, 0x6}]})
close_range(r0, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[0x7, 0x9, 0x7f, 0x3ff, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x6, 0x7ff, 0xfff, 0x0, 0x8, 0xffffffff80000001, 0x9, 0x8000000], 0xeeef0000, 0x90840})

59.455019ms ago: executing program 4 (id=1171):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000002c0)='westwood', 0x8)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000840)="89000000120081ae08060cdc030000fe7f03214e000000000001ffca1b1f0000000024c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00150c00014003080c00bdad446b31007a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947e", 0x75}, {&(0x7f0000000140)="11d6cb557c8496a2fe7a81f38210bfa9b70ee09c", 0x14}], 0x2, 0x0, 0x0, 0x300}, 0x4000000)

0s ago: executing program 3 (id=1172):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r0, 0x8008f513, &(0x7f0000000000))
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = inotify_init1(0x800)
read(r2, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f00000003c0)="0f326635004000000f300f00d636808a0d0001ba4300b80b00eb66b88c5000000f23d02a3ff866352000000e0f23f80f01c30f789deb32660f3a21cf220f2bb00058660f1bde", 0x46}], 0x1, 0x0, 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
flock(r3, 0xa)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
r7 = syz_io_uring_setup(0x17b6, &(0x7f0000000080)={0x0, 0x7e7f, 0xecc0b54bfa038e54, 0x0, 0xc6}, &(0x7f0000000100), &(0x7f0000000180), &(0x7f00000001c0))
syz_io_uring_setup(0x1ff5, &(0x7f00000005c0)={0x0, 0xfd7b, 0x20000, 0x9, 0x8000024f, 0x0, r7}, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

0x10/0x10
[  160.379009][ T7689]  ? avc_has_perm_noaudit+0x145/0x3b0
[  160.379025][ T7689]  ? avc_has_perm+0x135/0x1e0
[  160.379044][ T7689]  ? selinux_bpf+0xfb/0x150
[  160.379061][ T7689]  __sys_bpf+0x223a/0x4b90
[  160.379079][ T7689]  ? __pfx___sys_bpf+0x10/0x10
[  160.379094][ T7689]  ? proc_fail_nth_write+0x9f/0x220
[  160.379127][ T7689]  ? find_held_lock+0x2b/0x80
[  160.379148][ T7689]  ? find_held_lock+0x2b/0x80
[  160.379164][ T7689]  ? ksys_write+0x190/0x250
[  160.379180][ T7689]  ? ksys_write+0x190/0x250
[  160.379198][ T7689]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  160.379215][ T7689]  ? vfs_write+0x3/0x1070
[  160.379230][ T7689]  ? __fget_files+0x215/0x3d0
[  160.379256][ T7689]  ? fput+0x79/0x100
[  160.379270][ T7689]  ? ksys_write+0x1ac/0x250
[  160.379286][ T7689]  ? __pfx_ksys_write+0x10/0x10
[  160.379305][ T7689]  __x64_sys_bpf+0x7b/0xc0
[  160.379322][ T7689]  ? lockdep_hardirqs_on+0x78/0x100
[  160.379336][ T7689]  do_syscall_64+0x10b/0xf80
[  160.379350][ T7689]  ? clear_bhb_loop+0x40/0x90
[  160.379365][ T7689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.379377][ T7689] RIP: 0033:0x7f8869d9c819
[  160.379379][ T7685] netlink: 4 bytes leftover after parsing attributes in process `syz.3.577'.
[  160.379389][ T7689] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  160.379401][ T7689] RSP: 002b:00007f886ac0f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  160.379413][ T7689] RAX: ffffffffffffffda RBX: 00007f886a015fa0 RCX: 00007f8869d9c819
[  160.379421][ T7689] RDX: 0000000000000094 RSI: 0000200000000440 RDI: 0000000000000005
[  160.379428][ T7689] RBP: 00007f886ac0f090 R08: 0000000000000000 R09: 0000000000000000
[  160.379434][ T7689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  160.379441][ T7689] R13: 00007f886a016038 R14: 00007f886a015fa0 R15: 00007ffc263287e8
[  160.379456][ T7689]  </TASK>
[  160.720107][ T7703] FAULT_INJECTION: forcing a failure.
[  160.720107][ T7703] name failslab, interval 1, probability 0, space 0, times 0
[  160.725425][ T7703] CPU: 1 UID: 0 PID: 7703 Comm: syz.2.583 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  160.725445][ T7703] Tainted: [L]=SOFTLOCKUP
[  160.725449][ T7703] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  160.725456][ T7703] Call Trace:
[  160.725461][ T7703]  <TASK>
[  160.725466][ T7703]  dump_stack_lvl+0x100/0x190
[  160.725485][ T7703]  should_fail_ex.cold+0x5/0xa
[  160.725503][ T7703]  should_failslab+0xc2/0x120
[  160.725520][ T7703]  __kmalloc_cache_noprof+0x7a/0x6f0
[  160.725533][ T7703]  ? bpf_copy_verifier_state+0xb8f/0xfa0
[  160.725547][ T7703]  ? __asan_memcpy+0x3c/0x60
[  160.725561][ T7703]  bpf_copy_verifier_state+0xb8f/0xfa0
[  160.725578][ T7703]  bpf_is_state_visited+0x2012/0x36d0
[  160.725596][ T7703]  ? bpf_free_verifier_state+0x1c2/0x270
[  160.725611][ T7703]  ? pop_stack+0x230/0x310
[  160.725625][ T7703]  do_check_common+0x2cda/0xd2e0
[  160.725654][ T7703]  ? __pfx_do_check_common+0x10/0x10
[  160.725672][ T7703]  ? __pfx_verbose+0x10/0x10
[  160.725687][ T7703]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  160.725701][ T7703]  ? __pfx_bpf_compute_live_registers+0x10/0x10
[  160.725719][ T7703]  bpf_check+0xa1c1/0xb4a0
[  160.725739][ T7703]  ? __pfx_bpf_check+0x10/0x10
[  160.725748][ T7703]  ? eventfs_root_lookup+0x9d2/0xa50
[  160.725767][ T7703]  ? avc_has_perm+0x135/0x1e0
[  160.725781][ T7703]  ? __pfx_avc_has_perm+0x10/0x10
[  160.725799][ T7703]  ? bpf_prog_load+0x1c86/0x2c30
[  160.725813][ T7703]  bpf_prog_load+0x1c86/0x2c30
[  160.725830][ T7703]  ? __pfx_bpf_prog_load+0x10/0x10
[  160.725845][ T7703]  ? avc_has_perm_noaudit+0x145/0x3b0
[  160.725860][ T7703]  ? avc_has_perm+0x135/0x1e0
[  160.725877][ T7703]  ? selinux_bpf+0xfb/0x150
[  160.725893][ T7703]  __sys_bpf+0x223a/0x4b90
[  160.725909][ T7703]  ? __pfx___sys_bpf+0x10/0x10
[  160.725923][ T7703]  ? proc_fail_nth_write+0x9f/0x220
[  160.725939][ T7703]  ? find_held_lock+0x2b/0x80
[  160.725957][ T7703]  ? find_held_lock+0x2b/0x80
[  160.725972][ T7703]  ? ksys_write+0x190/0x250
[  160.725987][ T7703]  ? ksys_write+0x190/0x250
[  160.726003][ T7703]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  160.726018][ T7703]  ? vfs_write+0x3/0x1070
[  160.726112][ T7703]  ? __fget_files+0x215/0x3d0
[  160.726154][ T7703]  ? fput+0x79/0x100
[  160.726164][ T7703]  ? ksys_write+0x1ac/0x250
[  160.726179][ T7703]  ? __pfx_ksys_write+0x10/0x10
[  160.726196][ T7703]  __x64_sys_bpf+0x7b/0xc0
[  160.726212][ T7703]  ? lockdep_hardirqs_on+0x78/0x100
[  160.726226][ T7703]  do_syscall_64+0x10b/0xf80
[  160.726240][ T7703]  ? clear_bhb_loop+0x40/0x90
[  160.726253][ T7703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.726264][ T7703] RIP: 0033:0x7f289239c819
[  160.726275][ T7703] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  160.726286][ T7703] RSP: 002b:00007f2893220028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  160.726298][ T7703] RAX: ffffffffffffffda RBX: 00007f2892615fa0 RCX: 00007f289239c819
[  160.726304][ T7703] RDX: 0000000000000094 RSI: 00002000000001c0 RDI: 0000000000000005
[  160.726311][ T7703] RBP: 00007f2893220090 R08: 0000000000000000 R09: 0000000000000000
[  160.726317][ T7703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  160.726323][ T7703] R13: 00007f2892616038 R14: 00007f2892615fa0 R15: 00007ffc0a758898
[  160.726337][ T7703]  </TASK>
[  160.823433][   T24] usb 6-1: new low-speed USB device number 4 using dummy_hcd
[  160.900556][   T40] audit: type=1400 audit(1776280292.329:985): avc:  denied  { shutdown } for  pid=7714 comm="syz.3.586" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  161.005813][   T24] usb 6-1: Invalid ep0 maxpacket: 32
[  161.120435][ T7749] rdma_rxe: rxe_newlink: failed to add bond0
[  161.153471][   T24] usb 6-1: new low-speed USB device number 5 using dummy_hcd
[  161.156317][ T7753] FAULT_INJECTION: forcing a failure.
[  161.156317][ T7753] name failslab, interval 1, probability 0, space 0, times 0
[  161.160513][ T7754] FAULT_INJECTION: forcing a failure.
[  161.160513][ T7754] name failslab, interval 1, probability 0, space 0, times 0
[  161.161336][ T7753] CPU: 1 UID: 0 PID: 7753 Comm: syz.0.595 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  161.161354][ T7753] Tainted: [L]=SOFTLOCKUP
[  161.161358][ T7753] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  161.161365][ T7753] Call Trace:
[  161.161369][ T7753]  <TASK>
[  161.161373][ T7753]  dump_stack_lvl+0x100/0x190
[  161.161391][ T7753]  should_fail_ex.cold+0x5/0xa
[  161.161408][ T7753]  should_failslab+0xc2/0x120
[  161.161426][ T7753]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  161.161441][ T7753]  ? bpf_push_jmp_history+0x243/0x750
[  161.161457][ T7753]  krealloc_node_align_noprof+0x30a/0x3e0
[  161.161472][ T7753]  ? bpf_free_verifier_state+0x1c2/0x270
[  161.161487][ T7753]  bpf_push_jmp_history+0x243/0x750
[  161.161502][ T7753]  do_check_common+0xf65/0xd2e0
[  161.161622][ T7753]  ? __pfx_do_check_common+0x10/0x10
[  161.161642][ T7753]  ? __pfx_verbose+0x10/0x10
[  161.161658][ T7753]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  161.161672][ T7753]  ? __pfx_bpf_compute_live_registers+0x10/0x10
[  161.161690][ T7753]  bpf_check+0xa1c1/0xb4a0
[  161.161711][ T7753]  ? __pfx_bpf_check+0x10/0x10
[  161.161720][ T7753]  ? eventfs_root_lookup+0x9d2/0xa50
[  161.161739][ T7753]  ? avc_has_perm+0x135/0x1e0
[  161.161753][ T7753]  ? __pfx_avc_has_perm+0x10/0x10
[  161.161771][ T7753]  ? bpf_prog_load+0x1c86/0x2c30
[  161.161785][ T7753]  bpf_prog_load+0x1c86/0x2c30
[  161.161802][ T7753]  ? __pfx_bpf_prog_load+0x10/0x10
[  161.161817][ T7753]  ? avc_has_perm_noaudit+0x145/0x3b0
[  161.161832][ T7753]  ? avc_has_perm+0x135/0x1e0
[  161.161849][ T7753]  ? selinux_bpf+0xfb/0x150
[  161.161865][ T7753]  __sys_bpf+0x223a/0x4b90
[  161.161881][ T7753]  ? __pfx___sys_bpf+0x10/0x10
[  161.161895][ T7753]  ? proc_fail_nth_write+0x9f/0x220
[  161.161911][ T7753]  ? find_held_lock+0x2b/0x80
[  161.161929][ T7753]  ? find_held_lock+0x2b/0x80
[  161.161945][ T7753]  ? ksys_write+0x190/0x250
[  161.161959][ T7753]  ? ksys_write+0x190/0x250
[  161.161976][ T7753]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  161.161991][ T7753]  ? vfs_write+0x3/0x1070
[  161.162005][ T7753]  ? __fget_files+0x215/0x3d0
[  161.162030][ T7753]  ? fput+0x79/0x100
[  161.162045][ T7753]  ? ksys_write+0x1ac/0x250
[  161.162060][ T7753]  ? __pfx_ksys_write+0x10/0x10
[  161.162077][ T7753]  __x64_sys_bpf+0x7b/0xc0
[  161.162092][ T7753]  ? lockdep_hardirqs_on+0x78/0x100
[  161.162105][ T7753]  do_syscall_64+0x10b/0xf80
[  161.162117][ T7753]  ? clear_bhb_loop+0x40/0x90
[  161.162131][ T7753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.162142][ T7753] RIP: 0033:0x7f3b6379c819
[  161.162152][ T7753] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  161.162163][ T7753] RSP: 002b:00007f3b645c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  161.162175][ T7753] RAX: ffffffffffffffda RBX: 00007f3b63a15fa0 RCX: 00007f3b6379c819
[  161.162182][ T7753] RDX: 0000000000000094 RSI: 00002000000001c0 RDI: 0000000000000005
[  161.162188][ T7753] RBP: 00007f3b645c6090 R08: 0000000000000000 R09: 0000000000000000
[  161.162194][ T7753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  161.162201][ T7753] R13: 00007f3b63a16038 R14: 00007f3b63a15fa0 R15: 00007ffd6025e9d8
[  161.162214][ T7753]  </TASK>
[  161.173453][ T7749] bond0: entered promiscuous mode
[  161.177155][ T7754] CPU: 3 UID: 0 PID: 7754 Comm: syz.2.594 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  161.177174][ T7754] Tainted: [L]=SOFTLOCKUP
[  161.177179][ T7754] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  161.177252][ T7754] Call Trace:
[  161.177257][ T7754]  <TASK>
[  161.177261][ T7754]  dump_stack_lvl+0x100/0x190
[  161.177279][ T7754]  should_fail_ex.cold+0x5/0xa
[  161.177355][ T7754]  should_failslab+0xc2/0x120
[  161.177373][ T7754]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  161.177388][ T7754]  ? copy_array.constprop.0+0x93/0x110
[  161.177403][ T7754]  krealloc_node_align_noprof+0x30a/0x3e0
[  161.177420][ T7754]  copy_array.constprop.0+0x93/0x110
[  161.177431][ T7754]  bpf_copy_verifier_state+0xa7/0xfa0
[  161.177446][ T7754]  ? kasan_save_track+0x14/0x30
[  161.177462][ T7754]  push_stack+0x1ca/0x380
[  161.177476][ T7754]  do_check_common+0x39b0/0xd2e0
[  161.177505][ T7754]  ? __pfx_do_check_common+0x10/0x10
[  161.177523][ T7754]  ? __pfx_verbose+0x10/0x10
[  161.177538][ T7754]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  161.177552][ T7754]  ? __pfx_bpf_compute_live_registers+0x10/0x10
[  161.177569][ T7754]  bpf_check+0xa1c1/0xb4a0
[  161.177589][ T7754]  ? __pfx_bpf_check+0x10/0x10
[  161.177599][ T7754]  ? eventfs_root_lookup+0x8d2/0xa50
[  161.177618][ T7754]  ? avc_has_perm+0x135/0x1e0
[  161.177631][ T7754]  ? __pfx_avc_has_perm+0x10/0x10
[  161.177650][ T7754]  ? bpf_prog_load+0x1c86/0x2c30
[  161.177663][ T7754]  bpf_prog_load+0x1c86/0x2c30
[  161.177680][ T7754]  ? __pfx_bpf_prog_load+0x10/0x10
[  161.177695][ T7754]  ? avc_has_perm_noaudit+0x145/0x3b0
[  161.177709][ T7754]  ? avc_has_perm+0x135/0x1e0
[  161.177727][ T7754]  ? selinux_bpf+0xfb/0x150
[  161.177742][ T7754]  __sys_bpf+0x223a/0x4b90
[  161.177759][ T7754]  ? __pfx___sys_bpf+0x10/0x10
[  161.177773][ T7754]  ? proc_fail_nth_write+0x9f/0x220
[  161.177788][ T7754]  ? find_held_lock+0x2b/0x80
[  161.177806][ T7754]  ? find_held_lock+0x2b/0x80
[  161.177821][ T7754]  ? ksys_write+0x190/0x250
[  161.177835][ T7754]  ? ksys_write+0x190/0x250
[  161.177852][ T7754]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  161.177867][ T7754]  ? vfs_write+0x3/0x1070
[  161.177880][ T7754]  ? __fget_files+0x215/0x3d0
[  161.177904][ T7754]  ? fput+0x79/0x100
[  161.177914][ T7754]  ? ksys_write+0x1ac/0x250
[  161.177934][ T7754]  ? __pfx_ksys_write+0x10/0x10
[  161.177951][ T7754]  __x64_sys_bpf+0x7b/0xc0
[  161.177965][ T7754]  ? lockdep_hardirqs_on+0x78/0x100
[  161.177979][ T7754]  do_syscall_64+0x10b/0xf80
[  161.177992][ T7754]  ? clear_bhb_loop+0x40/0x90
[  161.178004][ T7754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.178016][ T7754] RIP: 0033:0x7f289239c819
[  161.178025][ T7754] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  161.178036][ T7754] RSP: 002b:00007f2893220028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  161.178047][ T7754] RAX: ffffffffffffffda RBX: 00007f2892615fa0 RCX: 00007f289239c819
[  161.178053][ T7754] RDX: 0000000000000094 RSI: 0000200000000440 RDI: 0000000000000005
[  161.178060][ T7754] RBP: 00007f2893220090 R08: 0000000000000000 R09: 0000000000000000
[  161.178066][ T7754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  161.178072][ T7754] R13: 00007f2892616038 R14: 00007f2892615fa0 R15: 00007ffc0a758898
[  161.178085][ T7754]  </TASK>
[  161.303339][   T24] usb 6-1: Invalid ep0 maxpacket: 32
[  161.304025][ T7749] bond_slave_0: entered promiscuous mode
[  161.308062][   T24] usb usb6-port1: attempt power cycle
[  161.310207][ T7749] bond_slave_1: entered promiscuous mode
[  161.429854][ T7749] batadv0: entered promiscuous mode
[  161.433331][ T7749] debugfs: 'hsr1' already exists in 'hsr'
[  161.435971][ T7749] Cannot create hsr debugfs directory
[  161.439003][ T7749] 8021q: adding VLAN 0 to HW filter on device hsr1
[  161.444511][ T7749] bond0: left promiscuous mode
[  161.446433][ T7749] bond_slave_0: left promiscuous mode
[  161.448643][ T7749] bond_slave_1: left promiscuous mode
[  161.452640][ T7749] batadv0: left promiscuous mode
[  161.559474][   T40] audit: type=1400 audit(1776280292.989:986): avc:  denied  { getopt } for  pid=7772 comm="syz.2.601" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  161.565182][ T7773] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20000
[  161.663373][   T24] usb 6-1: new low-speed USB device number 6 using dummy_hcd
[  161.683900][   T24] usb 6-1: Invalid ep0 maxpacket: 32
[  161.814380][ T7779] netlink: 'syz.3.603': attribute type 3 has an invalid length.
[  161.817237][   T24] usb 6-1: new low-speed USB device number 7 using dummy_hcd
[  161.836170][   T24] usb 6-1: Invalid ep0 maxpacket: 32
[  161.843076][   T24] usb usb6-port1: unable to enumerate USB device
[  162.078752][ T7783] FAULT_INJECTION: forcing a failure.
[  162.078752][ T7783] name failslab, interval 1, probability 0, space 0, times 0
[  162.082938][ T7783] CPU: 3 UID: 0 PID: 7783 Comm: syz.0.605 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  162.082958][ T7783] Tainted: [L]=SOFTLOCKUP
[  162.082962][ T7783] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  162.082970][ T7783] Call Trace:
[  162.082974][ T7783]  <TASK>
[  162.082980][ T7783]  dump_stack_lvl+0x100/0x190
[  162.082999][ T7783]  should_fail_ex.cold+0x5/0xa
[  162.083017][ T7783]  should_failslab+0xc2/0x120
[  162.083035][ T7783]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  162.083052][ T7783]  ? bpf_push_jmp_history+0x243/0x750
[  162.083070][ T7783]  krealloc_node_align_noprof+0x30a/0x3e0
[  162.083085][ T7783]  ? bpf_free_verifier_state+0x1c2/0x270
[  162.083102][ T7783]  bpf_push_jmp_history+0x243/0x750
[  162.083118][ T7783]  do_check_common+0xf65/0xd2e0
[  162.083149][ T7783]  ? __pfx_do_check_common+0x10/0x10
[  162.083168][ T7783]  ? __pfx_verbose+0x10/0x10
[  162.083186][ T7783]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  162.083202][ T7783]  ? __pfx_bpf_compute_live_registers+0x10/0x10
[  162.083235][ T7783]  bpf_check+0xa1c1/0xb4a0
[  162.083258][ T7783]  ? __pfx_bpf_check+0x10/0x10
[  162.083268][ T7783]  ? eventfs_root_lookup+0x9d2/0xa50
[  162.083288][ T7783]  ? avc_has_perm+0x135/0x1e0
[  162.083302][ T7783]  ? __pfx_avc_has_perm+0x10/0x10
[  162.083322][ T7783]  ? bpf_prog_load+0x1c86/0x2c30
[  162.083336][ T7783]  bpf_prog_load+0x1c86/0x2c30
[  162.083355][ T7783]  ? __pfx_bpf_prog_load+0x10/0x10
[  162.083372][ T7783]  ? avc_has_perm_noaudit+0x145/0x3b0
[  162.083387][ T7783]  ? avc_has_perm+0x135/0x1e0
[  162.083406][ T7783]  ? selinux_bpf+0xfb/0x150
[  162.083423][ T7783]  __sys_bpf+0x223a/0x4b90
[  162.083440][ T7783]  ? __pfx___sys_bpf+0x10/0x10
[  162.083455][ T7783]  ? proc_fail_nth_write+0x9f/0x220
[  162.083472][ T7783]  ? find_held_lock+0x2b/0x80
[  162.083491][ T7783]  ? find_held_lock+0x2b/0x80
[  162.083508][ T7783]  ? ksys_write+0x190/0x250
[  162.083523][ T7783]  ? ksys_write+0x190/0x250
[  162.083541][ T7783]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  162.083560][ T7783]  ? vfs_write+0x3/0x1070
[  162.083574][ T7783]  ? __fget_files+0x215/0x3d0
[  162.083600][ T7783]  ? fput+0x79/0x100
[  162.083636][ T7783]  ? ksys_write+0x1ac/0x250
[  162.083654][ T7783]  ? __pfx_ksys_write+0x10/0x10
[  162.083672][ T7783]  __x64_sys_bpf+0x7b/0xc0
[  162.083688][ T7783]  ? lockdep_hardirqs_on+0x78/0x100
[  162.083702][ T7783]  do_syscall_64+0x10b/0xf80
[  162.083716][ T7783]  ? clear_bhb_loop+0x40/0x90
[  162.083730][ T7783]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.083743][ T7783] RIP: 0033:0x7f3b6379c819
[  162.083753][ T7783] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  162.083765][ T7783] RSP: 002b:00007f3b645c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  162.083777][ T7783] RAX: ffffffffffffffda RBX: 00007f3b63a15fa0 RCX: 00007f3b6379c819
[  162.083785][ T7783] RDX: 0000000000000094 RSI: 00002000000001c0 RDI: 0000000000000005
[  162.083792][ T7783] RBP: 00007f3b645c6090 R08: 0000000000000000 R09: 0000000000000000
[  162.083799][ T7783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  162.083806][ T7783] R13: 00007f3b63a16038 R14: 00007f3b63a15fa0 R15: 00007ffd6025e9d8
[  162.083820][ T7783]  </TASK>
[  162.103370][   T24] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  162.138395][   T40] audit: type=1400 audit(1776280293.569:987): avc:  denied  { sqpoll } for  pid=7784 comm="syz.0.606" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  162.219318][   T40] audit: type=1400 audit(1776280293.629:988): avc:  denied  { ioctl } for  pid=7784 comm="syz.0.606" path="user:[4026531837]" dev="nsfs" ino=4026531837 ioctlcmd=0x941b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  162.285408][   T24] usb 8-1: Using ep0 maxpacket: 16
[  162.288892][   T24] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  162.292454][   T24] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  162.296739][   T24] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0
[  162.300102][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  162.304165][   T24] usb 8-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  162.307284][   T24] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  162.310462][   T24] usb 8-1: Product: syz
[  162.312089][   T24] usb 8-1: Manufacturer: syz
[  162.314682][   T24] usb 8-1: SerialNumber: syz
[  162.325439][   T24] usb 8-1: config 0 descriptor??
[  162.538137][   T24] input: syz syz as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input8
[  162.543403][ T5325] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  162.551459][ T5325] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  162.551810][ T7801] macvtap1: entered promiscuous mode
[  162.560850][ T5325] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  162.562780][ T7801] macvtap1: entered allmulticast mode
[  162.570315][ T7801] veth1_vlan: entered allmulticast mode
[  162.581374][ T5325] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  162.586993][ T6188] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  162.596906][ T5325] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  162.602724][ T5325] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  162.612294][ T5325] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  162.620662][ T5325] synaptics_usb 8-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  162.623803][   T40] audit: type=1400 audit(1776280294.049:989): avc:  denied  { bind } for  pid=7802 comm="syz.2.614" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  162.635411][ T7805] FAULT_INJECTION: forcing a failure.
[  162.635411][ T7805] name failslab, interval 1, probability 0, space 0, times 0
[  162.640276][ T7805] CPU: 2 UID: 0 PID: 7805 Comm: syz.0.615 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  162.640307][ T7805] Tainted: [L]=SOFTLOCKUP
[  162.640314][ T7805] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  162.640325][ T7805] Call Trace:
[  162.640332][ T7805]  <TASK>
[  162.640341][ T7805]  dump_stack_lvl+0x100/0x190
[  162.640370][ T7805]  should_fail_ex.cold+0x5/0xa
[  162.640397][ T7805]  should_failslab+0xc2/0x120
[  162.640427][ T7805]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  162.640453][ T7805]  ? copy_array.constprop.0+0x93/0x110
[  162.640478][ T7805]  krealloc_node_align_noprof+0x30a/0x3e0
[  162.640506][ T7805]  copy_array.constprop.0+0x93/0x110
[  162.640527][ T7805]  bpf_copy_verifier_state+0xa7/0xfa0
[  162.640557][ T7805]  bpf_is_state_visited+0x2012/0x36d0
[  162.640598][ T7805]  do_check_common+0x2cda/0xd2e0
[  162.640648][ T7805]  ? __pfx_do_check_common+0x10/0x10
[  162.640680][ T7805]  ? __pfx_verbose+0x10/0x10
[  162.640705][ T7805]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  162.640730][ T7805]  ? __pfx_bpf_compute_live_registers+0x10/0x10
[  162.640762][ T7805]  bpf_check+0xa1c1/0xb4a0
[  162.640802][ T7805]  ? __pfx_bpf_check+0x10/0x10
[  162.640818][ T7805]  ? eventfs_root_lookup+0x9d2/0xa50
[  162.640847][ T7805]  ? avc_has_perm+0x135/0x1e0
[  162.640869][ T7805]  ? __pfx_avc_has_perm+0x10/0x10
[  162.640898][ T7805]  ? bpf_prog_load+0x1c86/0x2c30
[  162.640919][ T7805]  bpf_prog_load+0x1c86/0x2c30
[  162.640954][ T7805]  ? __pfx_bpf_prog_load+0x10/0x10
[  162.640977][ T7805]  ? avc_has_perm_noaudit+0x145/0x3b0
[  162.640997][ T7805]  ? avc_has_perm+0x135/0x1e0
[  162.641027][ T7805]  ? selinux_bpf+0xfb/0x150
[  162.641053][ T7805]  __sys_bpf+0x223a/0x4b90
[  162.641078][ T7805]  ? __pfx___sys_bpf+0x10/0x10
[  162.641097][ T7805]  ? proc_fail_nth_write+0x9f/0x220
[  162.641121][ T7805]  ? find_held_lock+0x2b/0x80
[  162.641152][ T7805]  ? find_held_lock+0x2b/0x80
[  162.641175][ T7805]  ? ksys_write+0x190/0x250
[  162.641198][ T7805]  ? ksys_write+0x190/0x250
[  162.641226][ T7805]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  162.641250][ T7805]  ? vfs_write+0x3/0x1070
[  162.641273][ T7805]  ? __fget_files+0x215/0x3d0
[  162.641314][ T7805]  ? fput+0x79/0x100
[  162.641332][ T7805]  ? ksys_write+0x1ac/0x250
[  162.641354][ T7805]  ? __pfx_ksys_write+0x10/0x10
[  162.641383][ T7805]  __x64_sys_bpf+0x7b/0xc0
[  162.641406][ T7805]  ? lockdep_hardirqs_on+0x78/0x100
[  162.641427][ T7805]  do_syscall_64+0x10b/0xf80
[  162.641446][ T7805]  ? clear_bhb_loop+0x40/0x90
[  162.641467][ T7805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.641484][ T7805] RIP: 0033:0x7f3b6379c819
[  162.641500][ T7805] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  162.641516][ T7805] RSP: 002b:00007f3b645c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  162.641533][ T7805] RAX: ffffffffffffffda RBX: 00007f3b63a15fa0 RCX: 00007f3b6379c819
[  162.641543][ T7805] RDX: 0000000000000094 RSI: 00002000000001c0 RDI: 0000000000000005
[  162.641553][ T7805] RBP: 00007f3b645c6090 R08: 0000000000000000 R09: 0000000000000000
[  162.641563][ T7805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  162.641572][ T7805] R13: 00007f3b63a16038 R14: 00007f3b63a15fa0 R15: 00007ffd6025e9d8
[  162.641592][ T7805]  </TASK>
[  162.783997][ T7807] loop5: detected capacity change from 0 to 7
[  162.791683][ T7807]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  162.795332][ T7807] loop5: partition table partially beyond EOD, truncated
[  162.798719][ T7807] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  162.803805][ T7807] loop5: p2 start 832840281 is beyond EOD, truncated
[  162.845918][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  162.861900][   T40] audit: type=1400 audit(1776280294.289:990): avc:  denied  { nlmsg_read } for  pid=7810 comm="syz.0.618" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  163.107341][ T7823] netlink: 12 bytes leftover after parsing attributes in process `syz.2.622'.
[  163.181477][ T7830] FAULT_INJECTION: forcing a failure.
[  163.181477][ T7830] name failslab, interval 1, probability 0, space 0, times 0
[  163.185645][ T7830] CPU: 1 UID: 0 PID: 7830 Comm: syz.2.625 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  163.185666][ T7830] Tainted: [L]=SOFTLOCKUP
[  163.185670][ T7830] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  163.185678][ T7830] Call Trace:
[  163.185682][ T7830]  <TASK>
[  163.185686][ T7830]  dump_stack_lvl+0x100/0x190
[  163.185705][ T7830]  should_fail_ex.cold+0x5/0xa
[  163.185724][ T7830]  should_failslab+0xc2/0x120
[  163.185742][ T7830]  __kmalloc_cache_noprof+0x7a/0x6f0
[  163.185755][ T7830]  ? bpf_copy_verifier_state+0xb8f/0xfa0
[  163.185771][ T7830]  ? __asan_memcpy+0x3c/0x60
[  163.185787][ T7830]  bpf_copy_verifier_state+0xb8f/0xfa0
[  163.185805][ T7830]  bpf_is_state_visited+0x2012/0x36d0
[  163.185829][ T7830]  do_check_common+0x2cda/0xd2e0
[  163.185861][ T7830]  ? __pfx_do_check_common+0x10/0x10
[  163.185881][ T7830]  ? __pfx_verbose+0x10/0x10
[  163.185897][ T7830]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  163.185913][ T7830]  ? __pfx_bpf_compute_live_registers+0x10/0x10
[  163.185933][ T7830]  bpf_check+0xa1c1/0xb4a0
[  163.185959][ T7830]  ? __pfx_bpf_check+0x10/0x10
[  163.185970][ T7830]  ? eventfs_root_lookup+0x9d2/0xa50
[  163.185991][ T7830]  ? avc_has_perm+0x135/0x1e0
[  163.186005][ T7830]  ? __pfx_avc_has_perm+0x10/0x10
[  163.186025][ T7830]  ? bpf_prog_load+0x1c86/0x2c30
[  163.186040][ T7830]  bpf_prog_load+0x1c86/0x2c30
[  163.186058][ T7830]  ? __pfx_bpf_prog_load+0x10/0x10
[  163.186090][ T7830]  ? avc_has_perm_noaudit+0x145/0x3b0
[  163.186106][ T7830]  ? avc_has_perm+0x135/0x1e0
[  163.186126][ T7830]  ? selinux_bpf+0xfb/0x150
[  163.186143][ T7830]  __sys_bpf+0x223a/0x4b90
[  163.186161][ T7830]  ? __pfx___sys_bpf+0x10/0x10
[  163.186176][ T7830]  ? proc_fail_nth_write+0x9f/0x220
[  163.186193][ T7830]  ? find_held_lock+0x2b/0x80
[  163.186213][ T7830]  ? find_held_lock+0x2b/0x80
[  163.186230][ T7830]  ? ksys_write+0x190/0x250
[  163.186246][ T7830]  ? ksys_write+0x190/0x250
[  163.186264][ T7830]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  163.186280][ T7830]  ? vfs_write+0x3/0x1070
[  163.186296][ T7830]  ? __fget_files+0x215/0x3d0
[  163.186322][ T7830]  ? fput+0x79/0x100
[  163.186333][ T7830]  ? ksys_write+0x1ac/0x250
[  163.186348][ T7830]  ? __pfx_ksys_write+0x10/0x10
[  163.186367][ T7830]  __x64_sys_bpf+0x7b/0xc0
[  163.186383][ T7830]  ? lockdep_hardirqs_on+0x78/0x100
[  163.186397][ T7830]  do_syscall_64+0x10b/0xf80
[  163.186411][ T7830]  ? clear_bhb_loop+0x40/0x90
[  163.186426][ T7830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.186438][ T7830] RIP: 0033:0x7f289239c819
[  163.186449][ T7830] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  163.186461][ T7830] RSP: 002b:00007f2893220028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  163.186472][ T7830] RAX: ffffffffffffffda RBX: 00007f2892615fa0 RCX: 00007f289239c819
[  163.186480][ T7830] RDX: 0000000000000094 RSI: 00002000000001c0 RDI: 0000000000000005
[  163.186487][ T7830] RBP: 00007f2893220090 R08: 0000000000000000 R09: 0000000000000000
[  163.186493][ T7830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  163.186500][ T7830] R13: 00007f2892616038 R14: 00007f2892615fa0 R15: 00007ffc0a758898
[  163.186515][ T7830]  </TASK>
[  163.188268][ T7831] loop5: detected capacity change from 0 to 7
[  163.269043][ T5986] usb 8-1: USB disconnect, device number 5
[  163.273376][ T7831]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  163.310797][ T7831] loop5: partition table partially beyond EOD, truncated
[  163.315172][ T7831] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  163.321491][ T7831] loop5: p2 start 832840281 is beyond EOD, truncated
[  163.353609][ T7834] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  163.629034][ T7844] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  163.648277][ T7846] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  163.650558][ T7846] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  163.657289][ T7846] vhci_hcd vhci_hcd.0: Device attached
[  163.667136][ T7847] vhci_hcd: connection closed
[  163.671255][ T1147] vhci_hcd vhci_hcd.0: stop threads
[  163.677275][ T1147] vhci_hcd vhci_hcd.0: release socket
[  163.680032][ T1147] vhci_hcd vhci_hcd.0: disconnect device
[  164.201322][ T7881] Mount JFS Failure: -5
[  164.204618][ T7881] jfs_mount failed w/return code = -5
[  164.226581][ T7885] FAULT_INJECTION: forcing a failure.
[  164.226581][ T7885] name failslab, interval 1, probability 0, space 0, times 0
[  164.230703][ T7885] CPU: 2 UID: 0 PID: 7885 Comm: syz.1.652 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  164.230721][ T7885] Tainted: [L]=SOFTLOCKUP
[  164.230725][ T7885] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  164.230732][ T7885] Call Trace:
[  164.230737][ T7885]  <TASK>
[  164.230741][ T7885]  dump_stack_lvl+0x100/0x190
[  164.230760][ T7885]  should_fail_ex.cold+0x5/0xa
[  164.230777][ T7885]  should_failslab+0xc2/0x120
[  164.230795][ T7885]  __kmalloc_cache_noprof+0x7a/0x6f0
[  164.230807][ T7885]  ? bpf_copy_verifier_state+0xb8f/0xfa0
[  164.230825][ T7885]  bpf_copy_verifier_state+0xb8f/0xfa0
[  164.230841][ T7885]  bpf_is_state_visited+0x2012/0x36d0
[  164.230864][ T7885]  do_check_common+0x2cda/0xd2e0
[  164.230893][ T7885]  ? __pfx_do_check_common+0x10/0x10
[  164.230911][ T7885]  ? __pfx_verbose+0x10/0x10
[  164.230927][ T7885]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  164.230941][ T7885]  ? __pfx_bpf_compute_live_registers+0x10/0x10
[  164.230958][ T7885]  bpf_check+0xa1c1/0xb4a0
[  164.230978][ T7885]  ? __pfx_bpf_check+0x10/0x10
[  164.230988][ T7885]  ? eventfs_root_lookup+0x8d2/0xa50
[  164.231006][ T7885]  ? avc_has_perm+0x135/0x1e0
[  164.231020][ T7885]  ? __pfx_avc_has_perm+0x10/0x10
[  164.231038][ T7885]  ? bpf_prog_load+0x1c86/0x2c30
[  164.231053][ T7885]  bpf_prog_load+0x1c86/0x2c30
[  164.231070][ T7885]  ? __pfx_bpf_prog_load+0x10/0x10
[  164.231085][ T7885]  ? avc_has_perm_noaudit+0x145/0x3b0
[  164.231099][ T7885]  ? avc_has_perm+0x135/0x1e0
[  164.231117][ T7885]  ? selinux_bpf+0xfb/0x150
[  164.231133][ T7885]  __sys_bpf+0x223a/0x4b90
[  164.231149][ T7885]  ? __pfx___sys_bpf+0x10/0x10
[  164.231167][ T7885]  ? proc_fail_nth_write+0x9f/0x220
[  164.231182][ T7885]  ? find_held_lock+0x2b/0x80
[  164.231201][ T7885]  ? find_held_lock+0x2b/0x80
[  164.231216][ T7885]  ? ksys_write+0x190/0x250
[  164.231231][ T7885]  ? ksys_write+0x190/0x250
[  164.231247][ T7885]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  164.231262][ T7885]  ? vfs_write+0x3/0x1070
[  164.231276][ T7885]  ? __fget_files+0x215/0x3d0
[  164.231299][ T7885]  ? fput+0x79/0x100
[  164.231310][ T7885]  ? ksys_write+0x1ac/0x250
[  164.231325][ T7885]  ? __pfx_ksys_write+0x10/0x10
[  164.231341][ T7885]  __x64_sys_bpf+0x7b/0xc0
[  164.231356][ T7885]  ? lockdep_hardirqs_on+0x78/0x100
[  164.231369][ T7885]  do_syscall_64+0x10b/0xf80
[  164.231382][ T7885]  ? clear_bhb_loop+0x40/0x90
[  164.231396][ T7885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.231407][ T7885] RIP: 0033:0x7f8869d9c819
[  164.231417][ T7885] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  164.231428][ T7885] RSP: 002b:00007f886ac0f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  164.231439][ T7885] RAX: ffffffffffffffda RBX: 00007f886a015fa0 RCX: 00007f8869d9c819
[  164.231445][ T7885] RDX: 0000000000000094 RSI: 0000200000000440 RDI: 0000000000000005
[  164.231452][ T7885] RBP: 00007f886ac0f090 R08: 0000000000000000 R09: 0000000000000000
[  164.231458][ T7885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  164.231464][ T7885] R13: 00007f886a016038 R14: 00007f886a015fa0 R15: 00007ffc263287e8
[  164.231478][ T7885]  </TASK>
[  164.251385][ T5953] Bluetooth: hci3: unknown advertising packet type: 0x82
[  164.365893][ T5953] Bluetooth: hci3: Dropping invalid advertising data
[  164.365912][ T5953] Bluetooth: hci3: Malformed LE Event: 0x02
[  164.394378][ T7900] FAULT_INJECTION: forcing a failure.
[  164.394378][ T7900] name failslab, interval 1, probability 0, space 0, times 0
[  164.398968][ T7900] CPU: 0 UID: 0 PID: 7900 Comm: syz.0.658 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  164.398987][ T7900] Tainted: [L]=SOFTLOCKUP
[  164.398990][ T7900] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  164.398997][ T7900] Call Trace:
[  164.399001][ T7900]  <TASK>
[  164.399005][ T7900]  dump_stack_lvl+0x100/0x190
[  164.399024][ T7900]  should_fail_ex.cold+0x5/0xa
[  164.399041][ T7900]  should_failslab+0xc2/0x120
[  164.399058][ T7900]  __kvmalloc_node_noprof+0xfa/0xa00
[  164.399073][ T7900]  ? bpf_check+0x4249/0xb4a0
[  164.399083][ T7900]  ? bpf_check+0xa377/0xb4a0
[  164.399092][ T7900]  ? bpf_remove_fastcall_spills_fills+0x44e/0x570
[  164.399107][ T7900]  bpf_check+0x4249/0xb4a0
[  164.399127][ T7900]  ? __pfx_bpf_check+0x10/0x10
[  164.399136][ T7900]  ? eventfs_root_lookup+0x9d2/0xa50
[  164.399154][ T7900]  ? avc_has_perm+0x135/0x1e0
[  164.399167][ T7900]  ? __pfx_avc_has_perm+0x10/0x10
[  164.399185][ T7900]  ? bpf_prog_load+0x1c86/0x2c30
[  164.399199][ T7900]  bpf_prog_load+0x1c86/0x2c30
[  164.399216][ T7900]  ? __pfx_bpf_prog_load+0x10/0x10
[  164.399231][ T7900]  ? avc_has_perm_noaudit+0x145/0x3b0
[  164.399245][ T7900]  ? avc_has_perm+0x135/0x1e0
[  164.399263][ T7900]  ? selinux_bpf+0xfb/0x150
[  164.399278][ T7900]  __sys_bpf+0x223a/0x4b90
[  164.399295][ T7900]  ? __pfx___sys_bpf+0x10/0x10
[  164.399308][ T7900]  ? proc_fail_nth_write+0x9f/0x220
[  164.399328][ T7900]  ? find_held_lock+0x2b/0x80
[  164.399347][ T7900]  ? find_held_lock+0x2b/0x80
[  164.399362][ T7900]  ? ksys_write+0x190/0x250
[  164.399377][ T7900]  ? ksys_write+0x190/0x250
[  164.399393][ T7900]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  164.399408][ T7900]  ? vfs_write+0x3/0x1070
[  164.399444][ T7900]  ? __fget_files+0x215/0x3d0
[  164.399472][ T7900]  ? fput+0x79/0x100
[  164.399482][ T7900]  ? ksys_write+0x1ac/0x250
[  164.399497][ T7900]  ? __pfx_ksys_write+0x10/0x10
[  164.399517][ T7900]  __x64_sys_bpf+0x7b/0xc0
[  164.399532][ T7900]  ? lockdep_hardirqs_on+0x78/0x100
[  164.399545][ T7900]  do_syscall_64+0x10b/0xf80
[  164.399558][ T7900]  ? clear_bhb_loop+0x40/0x90
[  164.399572][ T7900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.399583][ T7900] RIP: 0033:0x7f3b6379c819
[  164.399592][ T7900] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  164.399626][ T7900] RSP: 002b:00007f3b645c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  164.399638][ T7900] RAX: ffffffffffffffda RBX: 00007f3b63a15fa0 RCX: 00007f3b6379c819
[  164.399647][ T7900] RDX: 0000000000000094 RSI: 00002000000001c0 RDI: 0000000000000005
[  164.399654][ T7900] RBP: 00007f3b645c6090 R08: 0000000000000000 R09: 0000000000000000
[  164.399660][ T7900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  164.399666][ T7900] R13: 00007f3b63a16038 R14: 00007f3b63a15fa0 R15: 00007ffd6025e9d8
[  164.399680][ T7900]  </TASK>
[  164.614422][ T7917] FAULT_INJECTION: forcing a failure.
[  164.614422][ T7917] name failslab, interval 1, probability 0, space 0, times 0
[  164.619035][ T7917] CPU: 1 UID: 0 PID: 7917 Comm: syz.0.664 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  164.619058][ T7917] Tainted: [L]=SOFTLOCKUP
[  164.619062][ T7917] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  164.619070][ T7917] Call Trace:
[  164.619076][ T7917]  <TASK>
[  164.619081][ T7917]  dump_stack_lvl+0x100/0x190
[  164.619102][ T7917]  should_fail_ex.cold+0x5/0xa
[  164.619123][ T7917]  should_failslab+0xc2/0x120
[  164.619144][ T7917]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  164.619163][ T7917]  ? copy_array.constprop.0+0x93/0x110
[  164.619181][ T7917]  krealloc_node_align_noprof+0x30a/0x3e0
[  164.619201][ T7917]  copy_array.constprop.0+0x93/0x110
[  164.619215][ T7917]  bpf_copy_verifier_state+0xa7d/0xfa0
[  164.619235][ T7917]  bpf_is_state_visited+0x2012/0x36d0
[  164.619261][ T7917]  do_check_common+0x2cda/0xd2e0
[  164.619296][ T7917]  ? __pfx_do_check_common+0x10/0x10
[  164.619319][ T7917]  ? __pfx_verbose+0x10/0x10
[  164.619337][ T7917]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  164.619354][ T7917]  ? __pfx_bpf_compute_live_registers+0x10/0x10
[  164.619375][ T7917]  bpf_check+0xa1c1/0xb4a0
[  164.619400][ T7917]  ? __pfx_bpf_check+0x10/0x10
[  164.619411][ T7917]  ? eventfs_root_lookup+0x8d2/0xa50
[  164.619433][ T7917]  ? avc_has_perm+0x135/0x1e0
[  164.619450][ T7917]  ? __pfx_avc_has_perm+0x10/0x10
[  164.619472][ T7917]  ? bpf_prog_load+0x1c86/0x2c30
[  164.619488][ T7917]  bpf_prog_load+0x1c86/0x2c30
[  164.619508][ T7917]  ? __pfx_bpf_prog_load+0x10/0x10
[  164.619527][ T7917]  ? avc_has_perm_noaudit+0x145/0x3b0
[  164.619544][ T7917]  ? avc_has_perm+0x135/0x1e0
[  164.619566][ T7917]  ? selinux_bpf+0xfb/0x150
[  164.619584][ T7917]  __sys_bpf+0x223a/0x4b90
[  164.619628][ T7917]  ? __pfx___sys_bpf+0x10/0x10
[  164.619646][ T7917]  ? proc_fail_nth_write+0x9f/0x220
[  164.619665][ T7917]  ? find_held_lock+0x2b/0x80
[  164.619687][ T7917]  ? find_held_lock+0x2b/0x80
[  164.619706][ T7917]  ? ksys_write+0x190/0x250
[  164.619723][ T7917]  ? ksys_write+0x190/0x250
[  164.619743][ T7917]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  164.619761][ T7917]  ? vfs_write+0x3/0x1070
[  164.619778][ T7917]  ? __fget_files+0x215/0x3d0
[  164.619807][ T7917]  ? fput+0x79/0x100
[  164.619820][ T7917]  ? ksys_write+0x1ac/0x250
[  164.619837][ T7917]  ? __pfx_ksys_write+0x10/0x10
[  164.619858][ T7917]  __x64_sys_bpf+0x7b/0xc0
[  164.619876][ T7917]  ? lockdep_hardirqs_on+0x78/0x100
[  164.619892][ T7917]  do_syscall_64+0x10b/0xf80
[  164.619907][ T7917]  ? clear_bhb_loop+0x40/0x90
[  164.619923][ T7917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.619937][ T7917] RIP: 0033:0x7f3b6379c819
[  164.619949][ T7917] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  164.619961][ T7917] RSP: 002b:00007f3b645c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  164.619975][ T7917] RAX: ffffffffffffffda RBX: 00007f3b63a15fa0 RCX: 00007f3b6379c819
[  164.619983][ T7917] RDX: 0000000000000094 RSI: 0000200000000440 RDI: 0000000000000005
[  164.619995][ T7917] RBP: 00007f3b645c6090 R08: 0000000000000000 R09: 0000000000000000
[  164.620002][ T7917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  164.620010][ T7917] R13: 00007f3b63a16038 R14: 00007f3b63a15fa0 R15: 00007ffd6025e9d8
[  164.620026][ T7917]  </TASK>
[  164.761505][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  164.761523][   T40] audit: type=1400 audit(1776280296.189:1000): avc:  denied  { nlmsg_write } for  pid=7922 comm="syz.3.667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  164.772448][ T7927] kernel read not supported for file /policy (pid: 7927 comm: syz.0.668)
[  164.773951][   T40] audit: type=1400 audit(1776280296.189:1001): avc:  denied  { audit_write } for  pid=7922 comm="syz.3.667" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  164.783366][   T40] audit: type=1400 audit(1776280296.199:1002): avc:  denied  { module_load } for  pid=7923 comm="syz.0.668" path="/selinux/policy" dev="selinuxfs" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=system permissive=1
[  164.811445][ T7931] FAULT_INJECTION: forcing a failure.
[  164.811445][ T7931] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.817052][ T7931] CPU: 0 UID: 0 PID: 7931 Comm: syz.0.670 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  164.817072][ T7931] Tainted: [L]=SOFTLOCKUP
[  164.817076][ T7931] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  164.817083][ T7931] Call Trace:
[  164.817087][ T7931]  <TASK>
[  164.817092][ T7931]  dump_stack_lvl+0x100/0x190
[  164.817110][ T7931]  should_fail_ex.cold+0x5/0xa
[  164.817128][ T7931]  _copy_to_user+0x32/0xd0
[  164.817143][ T7931]  bpf_check+0x3e57/0xb4a0
[  164.817166][ T7931]  ? __pfx_bpf_check+0x10/0x10
[  164.817175][ T7931]  ? eventfs_root_lookup+0x9d2/0xa50
[  164.817193][ T7931]  ? avc_has_perm+0x135/0x1e0
[  164.817207][ T7931]  ? __pfx_avc_has_perm+0x10/0x10
[  164.817225][ T7931]  ? bpf_prog_load+0x1c86/0x2c30
[  164.817243][ T7931]  bpf_prog_load+0x1c86/0x2c30
[  164.817260][ T7931]  ? __pfx_bpf_prog_load+0x10/0x10
[  164.817275][ T7931]  ? avc_has_perm_noaudit+0x145/0x3b0
[  164.817290][ T7931]  ? avc_has_perm+0x135/0x1e0
[  164.817308][ T7931]  ? selinux_bpf+0xfb/0x150
[  164.817323][ T7931]  __sys_bpf+0x223a/0x4b90
[  164.817340][ T7931]  ? __pfx___sys_bpf+0x10/0x10
[  164.817353][ T7931]  ? proc_fail_nth_write+0x9f/0x220
[  164.817368][ T7931]  ? find_held_lock+0x2b/0x80
[  164.817388][ T7931]  ? find_held_lock+0x2b/0x80
[  164.817403][ T7931]  ? ksys_write+0x190/0x250
[  164.817418][ T7931]  ? ksys_write+0x190/0x250
[  164.817434][ T7931]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  164.817449][ T7931]  ? vfs_write+0x3/0x1070
[  164.817463][ T7931]  ? __fget_files+0x215/0x3d0
[  164.817487][ T7931]  ? fput+0x79/0x100
[  164.817497][ T7931]  ? ksys_write+0x1ac/0x250
[  164.817511][ T7931]  ? __pfx_ksys_write+0x10/0x10
[  164.817528][ T7931]  __x64_sys_bpf+0x7b/0xc0
[  164.817543][ T7931]  ? lockdep_hardirqs_on+0x78/0x100
[  164.817556][ T7931]  do_syscall_64+0x10b/0xf80
[  164.817568][ T7931]  ? clear_bhb_loop+0x40/0x90
[  164.817582][ T7931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.817593][ T7931] RIP: 0033:0x7f3b6379c819
[  164.817604][ T7931] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  164.817614][ T7931] RSP: 002b:00007f3b645c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  164.817626][ T7931] RAX: ffffffffffffffda RBX: 00007f3b63a15fa0 RCX: 00007f3b6379c819
[  164.817633][ T7931] RDX: 0000000000000094 RSI: 00002000000001c0 RDI: 0000000000000005
[  164.817639][ T7931] RBP: 00007f3b645c6090 R08: 0000000000000000 R09: 0000000000000000
[  164.817645][ T7931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  164.817651][ T7931] R13: 00007f3b63a16038 R14: 00007f3b63a15fa0 R15: 00007ffd6025e9d8
[  164.817664][ T7931]  </TASK>
[  164.979199][ T7941] netlink: 9 bytes leftover after parsing attributes in process `syz.0.672'.
[  164.986442][ T7941] gretap0: entered promiscuous mode
[  164.996776][ T7938] netlink: 5 bytes leftover after parsing attributes in process `syz.0.672'.
[  165.001223][ T7938] 0ªî{X¹¦: renamed from gretap0
[  165.004996][ T7938] 0ªî{X¹¦: left promiscuous mode
[  165.006905][ T7938] 0ªî{X¹¦: entered allmulticast mode
[  165.010640][ T7938] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  165.131189][   T40] audit: type=1400 audit(1776280296.559:1003): avc:  denied  { read } for  pid=7952 comm="syz.3.676" name="usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  165.142729][   T40] audit: type=1400 audit(1776280296.559:1004): avc:  denied  { open } for  pid=7952 comm="syz.3.676" path="/dev/usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  165.165171][   T40] audit: type=1400 audit(1776280296.589:1005): avc:  denied  { connect } for  pid=7952 comm="syz.3.676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  165.179144][ T7955] Can't find ip_set type hash:net,n
[  165.270111][ T7963] netlink: 'syz.1.679': attribute type 1 has an invalid length.
[  165.297116][ T7975] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  165.309870][   T40] audit: type=1400 audit(1776280296.739:1006): avc:  denied  { append } for  pid=7974 comm="syz.3.682" name="001" dev="devtmpfs" ino=767 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  165.325266][ T7963] bond1: entered promiscuous mode
[  165.328345][ T7963] 8021q: adding VLAN 0 to HW filter on device bond1
[  165.332405][ T7971] netlink: 'syz.2.681': attribute type 29 has an invalid length.
[  165.638088][ T8004] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8004 comm=syz.3.692
[  165.650398][ T7999] geneve2: entered promiscuous mode
[  165.652710][ T8008] Invalid logical block size (-4)
[  165.653355][ T7999] geneve2: entered allmulticast mode
[  165.961984][   T40] audit: type=1326 audit(1776280297.389:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8027 comm="syz.2.700" exe="/syz-executor" sig=31 arch=c000003e syscall=39 compat=0 ip=0x7f2892396597 code=0x0
[  166.008280][ T8033] netlink: 48 bytes leftover after parsing attributes in process `syz.0.702'.
[  166.029650][ T8033] netlink: 'syz.0.702': attribute type 6 has an invalid length.
[  166.040772][ T8033] netlink: 'syz.0.702': attribute type 4 has an invalid length.
[  166.048293][ T8033] netlink: 17 bytes leftover after parsing attributes in process `syz.0.702'.
[  166.057440][   T40] audit: type=1400 audit(1776280297.489:1008): avc:  denied  { create } for  pid=8032 comm="syz.0.702" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  166.069274][   T40] audit: type=1400 audit(1776280297.489:1009): avc:  denied  { write } for  pid=8032 comm="syz.0.702" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  166.106860][ T8036] FAULT_INJECTION: forcing a failure.
[  166.106860][ T8036] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  166.111449][ T8036] CPU: 1 UID: 0 PID: 8036 Comm: syz.3.703 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  166.111467][ T8036] Tainted: [L]=SOFTLOCKUP
[  166.111472][ T8036] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  166.111479][ T8036] Call Trace:
[  166.111483][ T8036]  <TASK>
[  166.111488][ T8036]  dump_stack_lvl+0x100/0x190
[  166.111506][ T8036]  should_fail_ex.cold+0x5/0xa
[  166.111522][ T8036]  _copy_to_user+0x32/0xd0
[  166.111537][ T8036]  bpf_check+0x3e57/0xb4a0
[  166.111559][ T8036]  ? __pfx_bpf_check+0x10/0x10
[  166.111569][ T8036]  ? eventfs_root_lookup+0x9d2/0xa50
[  166.111587][ T8036]  ? avc_has_perm+0x135/0x1e0
[  166.111626][ T8036]  ? __pfx_avc_has_perm+0x10/0x10
[  166.111649][ T8036]  ? bpf_prog_load+0x1c86/0x2c30
[  166.111663][ T8036]  bpf_prog_load+0x1c86/0x2c30
[  166.111680][ T8036]  ? __pfx_bpf_prog_load+0x10/0x10
[  166.111695][ T8036]  ? avc_has_perm_noaudit+0x145/0x3b0
[  166.111709][ T8036]  ? avc_has_perm+0x135/0x1e0
[  166.111728][ T8036]  ? selinux_bpf+0xfb/0x150
[  166.111743][ T8036]  __sys_bpf+0x223a/0x4b90
[  166.111759][ T8036]  ? __pfx___sys_bpf+0x10/0x10
[  166.111786][ T8036]  ? proc_fail_nth_write+0x9f/0x220
[  166.111802][ T8036]  ? find_held_lock+0x2b/0x80
[  166.111821][ T8036]  ? find_held_lock+0x2b/0x80
[  166.111836][ T8036]  ? ksys_write+0x190/0x250
[  166.111850][ T8036]  ? ksys_write+0x190/0x250
[  166.111867][ T8036]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  166.111881][ T8036]  ? vfs_write+0x3/0x1070
[  166.111895][ T8036]  ? __fget_files+0x215/0x3d0
[  166.111919][ T8036]  ? fput+0x79/0x100
[  166.111929][ T8036]  ? ksys_write+0x1ac/0x250
[  166.111944][ T8036]  ? __pfx_ksys_write+0x10/0x10
[  166.111960][ T8036]  __x64_sys_bpf+0x7b/0xc0
[  166.111975][ T8036]  ? lockdep_hardirqs_on+0x78/0x100
[  166.111988][ T8036]  do_syscall_64+0x10b/0xf80
[  166.112000][ T8036]  ? clear_bhb_loop+0x40/0x90
[  166.112013][ T8036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.112024][ T8036] RIP: 0033:0x7f016bf9c819
[  166.112035][ T8036] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  166.112045][ T8036] RSP: 002b:00007f016ced2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  166.112137][ T8036] RAX: ffffffffffffffda RBX: 00007f016c215fa0 RCX: 00007f016bf9c819
[  166.112144][ T8036] RDX: 0000000000000094 RSI: 00002000000001c0 RDI: 0000000000000005
[  166.112151][ T8036] RBP: 00007f016ced2090 R08: 0000000000000000 R09: 0000000000000000
[  166.112157][ T8036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  166.112167][ T8036] R13: 00007f016c216038 R14: 00007f016c215fa0 R15: 00007fff44ad1488
[  166.112180][ T8036]  </TASK>
[  166.285165][ T8047] netlink: 12 bytes leftover after parsing attributes in process `syz.3.706'.
[  166.288861][ T8047] netlink: 4 bytes leftover after parsing attributes in process `syz.3.706'.
[  166.306699][ T8047] netlink: 12 bytes leftover after parsing attributes in process `syz.3.706'.
[  166.306924][  T320] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  166.310469][ T8047] netlink: 4 bytes leftover after parsing attributes in process `syz.3.706'.
[  166.314070][  T320] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  166.321146][  T320] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  166.324336][  T320] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  166.330079][ T8047] netlink: 4 bytes leftover after parsing attributes in process `syz.3.706'.
[  166.353778][  T830] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  166.515237][  T830] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  166.520764][  T830] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  166.525432][  T830] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  166.529927][  T830] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  166.536316][  T830] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  166.538398][ T8070] fuse: Bad value for 'fd'
[  166.542659][  T830] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  166.548061][  T830] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  166.551312][  T830] usb 7-1: Product: syz
[  166.553027][  T830] usb 7-1: Manufacturer: syz
[  166.554792][ T8072] process 'syz.3.715' launched './file1' with NULL argv: empty string added
[  166.567649][  T830] cdc_wdm 7-1:1.0: skipping garbage
[  166.570074][  T830] cdc_wdm 7-1:1.0: skipping garbage
[  166.574661][  T830] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  166.577184][  T830] cdc_wdm 7-1:1.0: Unknown control protocol
[  166.653466][ T8074] netlink: 12 bytes leftover after parsing attributes in process `syz.1.713'.
[  166.830373][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  166.830763][  T841] usb 7-1: USB disconnect, device number 3
[  166.832729][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  166.837340][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  167.036777][ T8034] loop5: detected capacity change from 0 to 7
[  167.040678][ T8034] Dev loop5: unable to read RDB block 7
[  167.043031][ T8034]  loop5: unable to read partition table
[  167.046101][ T8034] loop5: partition table beyond EOD, truncated
[  167.048726][ T8034] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[  168.323191][ T8087] netlink: 92 bytes leftover after parsing attributes in process `syz.3.719'.
[  168.603341][ T5953] Bluetooth: hci0: command 0x0c1a tx timeout
[  168.607511][ T8063] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  168.690115][ T8108] FAULT_INJECTION: forcing a failure.
[  168.690115][ T8108] name failslab, interval 1, probability 0, space 0, times 0
[  168.694361][ T8108] CPU: 3 UID: 0 PID: 8108 Comm: syz.3.725 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  168.694380][ T8108] Tainted: [L]=SOFTLOCKUP
[  168.694384][ T8108] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  168.694390][ T8108] Call Trace:
[  168.694394][ T8108]  <TASK>
[  168.694399][ T8108]  dump_stack_lvl+0x100/0x190
[  168.694418][ T8108]  should_fail_ex.cold+0x5/0xa
[  168.694435][ T8108]  should_failslab+0xc2/0x120
[  168.694453][ T8108]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  168.694469][ T8108]  ? bpf_push_jmp_history+0x243/0x750
[  168.694481][ T8108]  ? __pfx_verbose+0x10/0x10
[  168.694499][ T8108]  krealloc_node_align_noprof+0x30a/0x3e0
[  168.694516][ T8108]  bpf_push_jmp_history+0x243/0x750
[  168.694530][ T8108]  ? tnum_const+0x11/0x20
[  168.694546][ T8108]  do_check_common+0xbbfe/0xd2e0
[  168.694575][ T8108]  ? __pfx_do_check_common+0x10/0x10
[  168.694593][ T8108]  ? __pfx_verbose+0x10/0x10
[  168.694607][ T8108]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  168.694621][ T8108]  ? __pfx_bpf_compute_live_registers+0x10/0x10
[  168.694638][ T8108]  bpf_check+0xa1c1/0xb4a0
[  168.694658][ T8108]  ? __pfx_bpf_check+0x10/0x10
[  168.694668][ T8108]  ? eventfs_root_lookup+0x8d2/0xa50
[  168.694687][ T8108]  ? avc_has_perm+0x135/0x1e0
[  168.694700][ T8108]  ? __pfx_avc_has_perm+0x10/0x10
[  168.694718][ T8108]  ? bpf_prog_load+0x1c86/0x2c30
[  168.694732][ T8108]  bpf_prog_load+0x1c86/0x2c30
[  168.694865][ T8108]  ? __pfx_bpf_prog_load+0x10/0x10
[  168.694886][ T8108]  ? avc_has_perm_noaudit+0x145/0x3b0
[  168.694904][ T8108]  ? avc_has_perm+0x135/0x1e0
[  168.694934][ T8108]  ? selinux_bpf+0xfb/0x150
[  168.694956][ T8108]  __sys_bpf+0x223a/0x4b90
[  168.694972][ T8108]  ? __pfx___sys_bpf+0x10/0x10
[  168.694986][ T8108]  ? proc_fail_nth_write+0x9f/0x220
[  168.695002][ T8108]  ? find_held_lock+0x2b/0x80
[  168.695020][ T8108]  ? find_held_lock+0x2b/0x80
[  168.695035][ T8108]  ? ksys_write+0x190/0x250
[  168.695051][ T8108]  ? ksys_write+0x190/0x250
[  168.695068][ T8108]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  168.695083][ T8108]  ? vfs_write+0x3/0x1070
[  168.695097][ T8108]  ? __fget_files+0x215/0x3d0
[  168.695121][ T8108]  ? fput+0x79/0x100
[  168.695131][ T8108]  ? ksys_write+0x1ac/0x250
[  168.695145][ T8108]  ? __pfx_ksys_write+0x10/0x10
[  168.695163][ T8108]  __x64_sys_bpf+0x7b/0xc0
[  168.695177][ T8108]  ? lockdep_hardirqs_on+0x78/0x100
[  168.695190][ T8108]  do_syscall_64+0x10b/0xf80
[  168.695204][ T8108]  ? clear_bhb_loop+0x40/0x90
[  168.695217][ T8108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.695229][ T8108] RIP: 0033:0x7f016bf9c819
[  168.695240][ T8108] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  168.695250][ T8108] RSP: 002b:00007f016ced2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  168.695261][ T8108] RAX: ffffffffffffffda RBX: 00007f016c215fa0 RCX: 00007f016bf9c819
[  168.695268][ T8108] RDX: 0000000000000094 RSI: 0000200000000440 RDI: 0000000000000005
[  168.695274][ T8108] RBP: 00007f016ced2090 R08: 0000000000000000 R09: 0000000000000000
[  168.695280][ T8108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  168.695287][ T8108] R13: 00007f016c216038 R14: 00007f016c215fa0 R15: 00007fff44ad1488
[  168.695300][ T8108]  </TASK>
[  168.999292][ T8113] bond2: entered allmulticast mode
[  169.015852][ T8113] macvlan2: entered promiscuous mode
[  169.018476][ T8113] macvlan2: entered allmulticast mode
[  169.021795][ T8113] bond2: entered promiscuous mode
[  169.024875][ T8113] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  169.031847][ T8113] bond2: left promiscuous mode
[  169.455219][ T8063] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  169.466987][ T8063] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  169.474269][ T8063] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  169.476322][ T8063] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  169.480976][ T8063] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  169.488614][ T8063] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  169.490546][ T8063] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  169.493383][ T8063] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  169.495435][ T8063] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  169.499277][ T8063] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  169.696893][    T9] IPVS: starting estimator thread 0...
[  169.746885][ T8143] netlink: 28 bytes leftover after parsing attributes in process `syz.1.737'.
[  169.762031][ T8145] FAULT_INJECTION: forcing a failure.
[  169.762031][ T8145] name failslab, interval 1, probability 0, space 0, times 0
[  169.769987][ T8145] CPU: 1 UID: 0 PID: 8145 Comm: syz.2.738 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  169.770006][ T8145] Tainted: [L]=SOFTLOCKUP
[  169.770010][ T8145] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  169.770017][ T8145] Call Trace:
[  169.770021][ T8145]  <TASK>
[  169.770026][ T8145]  dump_stack_lvl+0x100/0x190
[  169.770044][ T8145]  should_fail_ex.cold+0x5/0xa
[  169.770061][ T8145]  should_failslab+0xc2/0x120
[  169.770078][ T8145]  __kmalloc_cache_noprof+0x7a/0x6f0
[  169.770090][ T8145]  ? bpf_copy_verifier_state+0xb8f/0xfa0
[  169.770107][ T8145]  bpf_copy_verifier_state+0xb8f/0xfa0
[  169.770122][ T8145]  ? kasan_save_track+0x14/0x30
[  169.770137][ T8145]  push_stack+0x1ca/0x380
[  169.770156][ T8145]  do_check_common+0x39b0/0xd2e0
[  169.770185][ T8145]  ? __pfx_do_check_common+0x10/0x10
[  169.770203][ T8145]  ? __pfx_verbose+0x10/0x10
[  169.770219][ T8145]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  169.770235][ T8145]  ? bpf_check+0x9b6f/0xb4a0
[  169.770247][ T8145]  bpf_check+0xa1c1/0xb4a0
[  169.770280][ T8145]  ? __pfx_bpf_check+0x10/0x10
[  169.770291][ T8145]  ? eventfs_root_lookup+0x8d2/0xa50
[  169.770310][ T8145]  ? avc_has_perm+0x135/0x1e0
[  169.770323][ T8145]  ? __pfx_avc_has_perm+0x10/0x10
[  169.770342][ T8145]  ? bpf_prog_load+0x1c86/0x2c30
[  169.770355][ T8145]  bpf_prog_load+0x1c86/0x2c30
[  169.770372][ T8145]  ? __pfx_bpf_prog_load+0x10/0x10
[  169.770388][ T8145]  ? avc_has_perm_noaudit+0x145/0x3b0
[  169.770402][ T8145]  ? avc_has_perm+0x135/0x1e0
[  169.770420][ T8145]  ? selinux_bpf+0xfb/0x150
[  169.770435][ T8145]  __sys_bpf+0x223a/0x4b90
[  169.770452][ T8145]  ? __pfx___sys_bpf+0x10/0x10
[  169.770465][ T8145]  ? proc_fail_nth_write+0x9f/0x220
[  169.770481][ T8145]  ? find_held_lock+0x2b/0x80
[  169.770500][ T8145]  ? find_held_lock+0x2b/0x80
[  169.770518][ T8145]  ? ksys_write+0x190/0x250
[  169.770534][ T8145]  ? ksys_write+0x190/0x250
[  169.770552][ T8145]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  169.770568][ T8145]  ? vfs_write+0x3/0x1070
[  169.770583][ T8145]  ? __fget_files+0x215/0x3d0
[  169.770608][ T8145]  ? fput+0x79/0x100
[  169.770619][ T8145]  ? ksys_write+0x1ac/0x250
[  169.770635][ T8145]  ? __pfx_ksys_write+0x10/0x10
[  169.770653][ T8145]  __x64_sys_bpf+0x7b/0xc0
[  169.770669][ T8145]  ? lockdep_hardirqs_on+0x78/0x100
[  169.770683][ T8145]  do_syscall_64+0x10b/0xf80
[  169.770696][ T8145]  ? clear_bhb_loop+0x40/0x90
[  169.770724][ T8145]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.770736][ T8145] RIP: 0033:0x7f289239c819
[  169.770747][ T8145] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  169.770759][ T8145] RSP: 002b:00007f2893220028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  169.770771][ T8145] RAX: ffffffffffffffda RBX: 00007f2892615fa0 RCX: 00007f289239c819
[  169.770778][ T8145] RDX: 0000000000000094 RSI: 0000200000000440 RDI: 0000000000000005
[  169.770785][ T8145] RBP: 00007f2893220090 R08: 0000000000000000 R09: 0000000000000000
[  169.770792][ T8145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  169.770798][ T8145] R13: 00007f2892616038 R14: 00007f2892615fa0 R15: 00007ffc0a758898
[  169.770813][ T8145]  </TASK>
[  169.803743][ T8139] IPVS: using max 43 ests per chain, 103200 per kthread
[  169.916277][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  169.916293][   T40] audit: type=1400 audit(1776280301.349:1024): avc:  denied  { block_suspend } for  pid=8151 comm="syz.3.741" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  169.931377][   T40] audit: type=1400 audit(1776280301.359:1025): avc:  denied  { ioctl } for  pid=8149 comm="syz.2.740" path="/dev/input/mouse0" dev="devtmpfs" ino=946 ioctlcmd=0x5829 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  170.087865][ T8155] bond0: (slave syz_tun): Releasing backup interface
[  170.238970][   T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.277734][   T40] audit: type=1400 audit(1776280301.709:1026): avc:  denied  { execute } for  pid=8172 comm="syz-executor" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  170.285481][   T40] audit: type=1400 audit(1776280301.709:1027): avc:  denied  { execute_no_trans } for  pid=8172 comm="syz-executor" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  170.326723][   T40] audit: type=1400 audit(1776280301.759:1028): avc:  denied  { bind } for  pid=8175 comm="syz.3.752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  170.372028][ T5953] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  170.379871][ T5953] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  170.398658][ T5953] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  170.400129][   T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.407558][ T5953] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  170.411053][ T5953] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  170.565288][   T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.646772][   T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.673398][ T5940] Bluetooth: hci0: command 0x0c1a tx timeout
[  170.723122][ T8177] chnl_net:caif_netlink_parms(): no params data found
[  170.735302][ T8198] loop5: detected capacity change from 0 to 7
[  170.745045][ T8198]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  170.753383][ T8198] loop5: partition table partially beyond EOD, truncated
[  170.758580][ T8198] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  170.764227][ T8198] loop5: p2 start 832840281 is beyond EOD, truncated
[  170.800614][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  170.810661][ T8201] netlink: 'syz.1.758': attribute type 27 has an invalid length.
[  170.915225][ T8201] bridge0: port 2(bridge_slave_1) entered disabled state
[  170.919706][ T8201] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.931340][ T8201] bond0: left allmulticast mode
[  170.933092][ T8201] bond_slave_0: left allmulticast mode
[  170.935022][ T8201] bond_slave_1: left allmulticast mode
[  170.936845][ T8201] mac80211_hwsim hwsim7 wlan1: left allmulticast mode
[  170.939385][ T8201] batadv0: left allmulticast mode
[  170.979033][   T40] audit: type=1400 audit(1776280302.409:1029): avc:  denied  { getopt } for  pid=8200 comm="syz.1.758" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  171.064999][ T8201] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  171.075066][ T8201] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  171.176162][ T8201] netdevsim netdevsim1 netdevsim0: left promiscuous mode
[  171.178900][ T8201] netdevsim netdevsim1 netdevsim0: left allmulticast mode
[  171.249607][ T8201] mac80211_hwsim hwsim7 syzkaller0: left promiscuous mode
[  171.252519][ T8201] mac80211_hwsim hwsim7 syzkaller0: left allmulticast mode
[  171.287498][ T8201] bond1: left promiscuous mode
[  171.329377][ T8177] bridge0: port 1(bridge_slave_0) entered blocking state
[  171.332511][ T8177] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.337559][ T8177] bridge_slave_0: entered allmulticast mode
[  171.341716][ T8177] bridge_slave_0: entered promiscuous mode
[  171.346857][ T8177] bridge0: port 2(bridge_slave_1) entered blocking state
[  171.349958][ T8177] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.354815][ T8177] bridge_slave_1: entered allmulticast mode
[  171.359940][ T8177] bridge_slave_1: entered promiscuous mode
[  171.398759][ T8206] 8021q: adding VLAN 0 to HW filter on device bond0
[  171.401752][ T8206] 8021q: adding VLAN 0 to HW filter on device team0
[  171.408516][ T8206] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  171.413842][  T320] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  171.417957][  T320] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  171.424096][  T320] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  171.431943][  T320] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  171.456508][ T8177] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  171.493780][ T8177] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  171.522535][ T8177] team0: Port device team_slave_0 added
[  171.536938][   T13] bridge_slave_1: left allmulticast mode
[  171.540577][   T13] bridge_slave_1: left promiscuous mode
[  171.544830][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.553399][ T5940] Bluetooth: hci2: command 0x0c1a tx timeout
[  171.555806][ T5953] Bluetooth: hci1: command 0x0c1a tx timeout
[  171.562303][   T13] bridge_slave_0: left allmulticast mode
[  171.566209][   T13] bridge_slave_0: left promiscuous mode
[  171.571613][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.587370][ T5953] Bluetooth: hci1: unexpected event 0x2f length: 509 > 260
[  171.602607][ T8222] binder: Bad value for 'stats'
[  171.744954][   T13] erspan0 (unregistering): left promiscuous mode
[  171.763134][   T13] gretap0 (unregistering): left promiscuous mode
[  171.890950][  T320] smc: removing ib device sy‡1
[  171.895540][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  171.906063][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  171.910623][   T13] bond0 (unregistering): Released all slaves
[  171.917604][   T13] bond1 (unregistering): Released all slaves
[  171.934315][   T13] bond2 (unregistering): Released all slaves
[  171.950100][ T8177] team0: Port device team_slave_1 added
[  171.976999][ T8177] batman_adv: batadv0: Adding interface: batadv_slave_0
[  171.979259][ T8177] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  171.988296][ T8177] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  172.006182][ T8230] loop5: detected capacity change from 0 to 7
[  172.022944][ T8230]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  172.028677][ T8230] loop5: partition table partially beyond EOD, truncated
[  172.034504][ T8230] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  172.041007][ T8230] loop5: p2 start 832840281 is beyond EOD, truncated
[  172.041302][ T8177] batman_adv: batadv0: Adding interface: batadv_slave_1
[  172.050669][ T8177] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  172.064075][ T8177] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  172.107173][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  172.108885][ T8234] Cannot find del_set index 4 as target
[  172.117087][   T40] audit: type=1400 audit(1776280303.549:1030): avc:  denied  { map } for  pid=8233 comm="syz.1.768" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  172.262012][ T8177] hsr_slave_0: entered promiscuous mode
[  172.287534][ T8177] hsr_slave_1: entered promiscuous mode
[  172.292547][ T8177] debugfs: 'hsr0' already exists in 'hsr'
[  172.297363][ T8177] Cannot create hsr debugfs directory
[  172.409527][ T8257] EXT4-fs (nbd0): unable to read superblock
[  172.443412][ T5953] Bluetooth: hci3: command tx timeout
[  172.476362][ T8264] loop5: detected capacity change from 0 to 7
[  172.478848][ T8264]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  172.481385][ T8264] loop5: partition table partially beyond EOD, truncated
[  172.484425][ T8264] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  172.486335][ T5644] 8021q: adding VLAN 0 to HW filter on device eth2
[  172.510520][ T8264] loop5: p2 start 832840281 is beyond EOD, truncated
[  172.540960][   T40] audit: type=1400 audit(1776280303.969:1031): avc:  denied  { write } for  pid=8265 comm="syz.0.776" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  172.548856][   T40] audit: type=1400 audit(1776280303.979:1032): avc:  denied  { write } for  pid=8265 comm="syz.0.776" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  172.610752][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  172.743988][ T8274] netlink: 8 bytes leftover after parsing attributes in process `syz.3.777'.
[  172.747826][ T8274] netlink: 12 bytes leftover after parsing attributes in process `syz.3.777'.
[  172.756471][ T5953] Bluetooth: hci0: command 0x0c1a tx timeout
[  172.934754][ T5644] 8021q: adding VLAN 0 to HW filter on device eth3
[  172.976759][ T8177] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  172.987523][ T8177] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  172.990786][ T8177] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  172.998721][ T8177] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  173.001547][ T8177] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  173.008140][ T8289] overlay: Unknown parameter 'dont_appraise'
[  173.020368][ T8177] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  173.043350][ T8177] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  173.047606][ T8177] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  173.151522][ T8177] 8021q: adding VLAN 0 to HW filter on device bond0
[  173.189862][ T8177] 8021q: adding VLAN 0 to HW filter on device team0
[  173.195170][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.197537][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  173.214515][  T804] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.217544][  T804] bridge0: port 2(bridge_slave_1) entered forwarding state
[  173.262757][ T5644] 8021q: adding VLAN 0 to HW filter on device eth4
[  173.277659][ T8177] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  173.326219][   T13] IPVS: stopping master sync thread 6693 ...
[  173.475355][ T8177] 8021q: adding VLAN 0 to HW filter on device batadv0
[  173.633412][ T5953] Bluetooth: hci2: command 0x0c1a tx timeout
[  173.635361][ T5940] Bluetooth: hci1: command 0x0c1a tx timeout
[  173.667078][   T13] hsr_slave_0: left promiscuous mode
[  173.684781][   T13] hsr_slave_1: left promiscuous mode
[  173.689174][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  173.691624][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  173.701041][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  173.706681][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  173.726244][   T13] veth1_vlan: left allmulticast mode
[  173.731916][   T13] veth1_macvtap: left promiscuous mode
[  173.740380][   T13] veth0_macvtap: left promiscuous mode
[  173.743925][   T13] veth1_vlan: left promiscuous mode
[  173.745875][   T13] veth0_vlan: left promiscuous mode
[  173.754620][ T8338] trusted_key: encrypted_key: insufficient parameters specified
[  173.754824][   T40] audit: type=1400 audit(1776280305.189:1033): avc:  denied  { write } for  pid=8335 comm="syz.0.788" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  173.754840][ T8336] random: crng reseeded on system resumption
[  173.775281][ T8336] Hibernate inconsistent memory map detected!
[  173.777844][ T8336] PM: hibernation: Image mismatch: architecture specific data
[  174.006615][   T13] team0 (unregistering): Port device team_slave_1 removed
[  174.015866][ T8350] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  174.025033][   T13] team0 (unregistering): Port device team_slave_0 removed
[  174.036730][ T8350] tmpfs: Unknown parameter 'ÿÿÿÿ'
[  174.148639][ T5644] 8021q: adding VLAN 0 to HW filter on device eth5
[  174.257079][ T8177] veth0_vlan: entered promiscuous mode
[  174.270568][ T8177] veth1_vlan: entered promiscuous mode
[  174.285926][ T8177] veth0_macvtap: entered promiscuous mode
[  174.294685][ T8177] veth1_macvtap: entered promiscuous mode
[  174.304023][ T8177] batman_adv: batadv0: Interface activated: batadv_slave_0
[  174.309541][ T8177] batman_adv: batadv0: Interface activated: batadv_slave_1
[  174.318406][ T1147] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  174.338786][ T1147] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  174.357084][ T1147] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  174.363181][ T1147] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  174.448402][ T8367] loop5: detected capacity change from 0 to 7
[  174.454052][ T8367]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  174.456658][ T8367] loop5: partition table partially beyond EOD, truncated
[  174.459498][ T8367] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  174.466295][ T8367] loop5: p2 start 832840281 is beyond EOD, truncated
[  174.468301][  T320] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  174.479267][  T320] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  174.515942][ T5940] Bluetooth: hci3: command tx timeout
[  174.529410][  T320] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  174.534049][  T320] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  174.536146][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  174.560282][ T8369] openvswitch: netlink: Invalid MD length 0 for MD type 0
[  174.565219][ T8369] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  174.799261][ T8389] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  174.887904][ T8398] loop5: detected capacity change from 0 to 7
[  174.895747][ T8398]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  174.901878][ T8398] loop5: partition table partially beyond EOD, truncated
[  174.905155][ T8398] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  174.911868][ T8398] loop5: p2 start 832840281 is beyond EOD, truncated
[  174.929455][ T8401] No such timeout policy "syz1"
[  174.963062][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  175.072651][ T8411] netlink: 'syz.0.810': attribute type 4 has an invalid length.
[  175.115294][ T8420] netlink: 212368 bytes leftover after parsing attributes in process `syz.1.816'.
[  175.120819][ T8420] netlink: 'syz.1.816': attribute type 7 has an invalid length.
[  175.206854][ T8428] netlink: 36 bytes leftover after parsing attributes in process `syz.0.817'.
[  175.271719][ T8433] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.820'.
[  175.293781][   T40] kauditd_printk_skb: 18 callbacks suppressed
[  175.293796][   T40] audit: type=1400 audit(1776280306.729:1052): avc:  denied  { accept } for  pid=8432 comm="syz.1.820" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  175.713470][ T5940] Bluetooth: hci1: command 0x0c1a tx timeout
[  175.775862][ T8454] veth1_to_batadv: entered promiscuous mode
[  175.817844][ T8458] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  175.827205][ T8458] CIFS mount error: No usable UNC path provided in device string!
[  175.827205][ T8458] 
[  175.830641][ T8458] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  175.836088][   T40] audit: type=1400 audit(1776280307.269:1053): avc:  denied  { getopt } for  pid=8457 comm="syz.0.830" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  175.920066][ T8468] netlink: 16 bytes leftover after parsing attributes in process `syz.0.835'.
[  175.926210][ T8468] netlink: 12 bytes leftover after parsing attributes in process `syz.0.835'.
[  175.929322][ T8468] netlink: 12 bytes leftover after parsing attributes in process `syz.0.835'.
[  175.947637][   T40] audit: type=1400 audit(1776280307.379:1054): avc:  denied  { create } for  pid=8466 comm="syz.0.835" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  175.952308][ T8473] SELinux:  policydb magic number 0xf97cffa1 does not match expected magic number 0xf97cff8c
[  175.959255][   T40] audit: type=1400 audit(1776280307.379:1055): avc:  denied  { load_policy } for  pid=8472 comm="syz.1.837" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  175.968947][ T8473] SELinux: failed to load policy
[  175.994710][   T40] audit: type=1400 audit(1776280307.429:1056): avc:  denied  { append } for  pid=8474 comm="syz.4.838" name="rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  176.173903][   T40] audit: type=1400 audit(1776280307.609:1057): avc:  denied  { write } for  pid=8481 comm="syz.4.840" name="ptp0" dev="devtmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  176.179603][ T8483] netlink: 8 bytes leftover after parsing attributes in process `syz.4.840'.
[  176.182777][   T40] audit: type=1400 audit(1776280307.609:1058): avc:  denied  { getopt } for  pid=8481 comm="syz.4.840" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  176.228119][ T8485] loop5: detected capacity change from 0 to 7
[  176.231933][ T8485]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  176.234730][ T8485] loop5: partition table partially beyond EOD, truncated
[  176.237713][ T8485] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  176.243134][ T8485] loop5: p2 start 832840281 is beyond EOD, truncated
[  176.300222][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  176.313018][ T8487] netlink: 8 bytes leftover after parsing attributes in process `syz.4.842'.
[  176.332582][ T8487] ipip0: entered promiscuous mode
[  176.334594][ T8487] ipip0: entered allmulticast mode
[  176.605680][ T5940] Bluetooth: hci3: command tx timeout
[  176.917299][   T40] audit: type=1400 audit(1776280308.349:1059): avc:  denied  { read } for  pid=8521 comm="syz.0.853" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  176.974733][   T40] audit: type=1400 audit(1776280308.409:1060): avc:  denied  { connect } for  pid=8521 comm="syz.0.853" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  177.069506][ T8530] loop5: detected capacity change from 0 to 7
[  177.075095][ T8530]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  177.078373][ T8530] loop5: partition table partially beyond EOD, truncated
[  177.082046][ T8530] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  177.090259][ T8530] loop5: p2 start 832840281 is beyond EOD, truncated
[  177.128839][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  177.308947][ T8538] netlink: 'syz.4.860': attribute type 1 has an invalid length.
[  177.311610][ T8538] netlink: 'syz.4.860': attribute type 2 has an invalid length.
[  177.319756][   T40] audit: type=1326 audit(1776280308.749:1061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8537 comm="syz.4.860" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f74ea39c819 code=0x0
[  177.406426][ T8549] loop5: detected capacity change from 0 to 7
[  177.410368][ T8549]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  177.413040][ T8549] loop5: partition table partially beyond EOD, truncated
[  177.417001][ T8549] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  177.422266][ T8549] loop5: p2 start 832840281 is beyond EOD, truncated
[  177.462068][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  177.551421][ T8561] 9p: Bad value for 'rfdno'
[  177.560567][ T8561] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=259 sclass=netlink_route_socket pid=8561 comm=syz.1.868
[  177.707180][ T8572] macsec1: entered promiscuous mode
[  177.710057][ T8572] macsec1: entered allmulticast mode
[  177.800627][ T8576] loop5: detected capacity change from 0 to 7
[  177.820267][ T8576]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  177.824522][ T8576] loop5: partition table partially beyond EOD, truncated
[  177.827772][ T8576] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  177.831473][ T8576] loop5: p2 start 832840281 is beyond EOD, truncated
[  177.869636][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  177.902278][ T8583] __nla_validate_parse: 1 callbacks suppressed
[  177.902325][ T8583] netlink: 64 bytes leftover after parsing attributes in process `syz.0.878'.
[  177.936516][ T8590] futex_wake_op: syz.1.879 tries to shift op by -1; fix this program
[  177.958493][ T8590] fuseblk: Unknown parameter 'ý_Ú¨Ö¬Ûè00000000000000000000'
[  177.962150][ T8590] befs: (nullb0): No write support. Marking filesystem read-only
[  177.967750][ T8590] befs: (nullb0): invalid magic header
[  178.032325][ T8594] binder: 8593:8594 ioctl c0306201 0 returned -14
[  178.256909][ T8617] ieee802154 phy0 wpan0: encryption failed: -22
[  178.382616][ T8627] netlink: 16 bytes leftover after parsing attributes in process `syz.1.891'.
[  178.477518][ T8631] loop5: detected capacity change from 0 to 7
[  178.481164][ T8631]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  178.483905][ T8631] loop5: partition table partially beyond EOD, truncated
[  178.486681][ T8631] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  178.490291][ T8631] loop5: p2 start 832840281 is beyond EOD, truncated
[  178.557926][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  178.675388][ T5940] Bluetooth: hci3: command tx timeout
[  178.807780][ T8645] IPv6: addrconf: prefix option has invalid lifetime
[  178.812563][ T8645] netlink: 52 bytes leftover after parsing attributes in process `syz.3.900'.
[  178.937144][ T8652] FAULT_INJECTION: forcing a failure.
[  178.937144][ T8652] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  178.943177][ T8652] CPU: 0 UID: 0 PID: 8652 Comm: syz.3.902 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  178.943206][ T8652] Tainted: [L]=SOFTLOCKUP
[  178.943227][ T8652] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  178.943236][ T8652] Call Trace:
[  178.943242][ T8652]  <TASK>
[  178.943247][ T8652]  dump_stack_lvl+0x100/0x190
[  178.943632][ T8652]  should_fail_ex.cold+0x5/0xa
[  178.943752][ T8652]  ? prepare_alloc_pages+0x16d/0x5f0
[  178.943982][ T8652]  should_fail_alloc_page+0xeb/0x140
[  178.944000][ T8652]  prepare_alloc_pages+0x1f0/0x5f0
[  178.944020][ T8652]  __alloc_frozen_pages_noprof+0x19a/0x2bd0
[  178.944036][ T8652]  ? __lock_acquire+0x4a5/0x2630
[  178.944084][ T8652]  ? stack_trace_save+0x8e/0xc0
[  178.944102][ T8652]  ? __pfx_stack_trace_save+0x10/0x10
[  178.944125][ T8652]  ? __lock_acquire+0x4a5/0x2630
[  178.944138][ T8652]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  178.944156][ T8652]  ? lock_acquire+0x1b1/0x370
[  178.944169][ T8652]  ? lock_acquire+0x1b1/0x370
[  178.944181][ T8652]  ? find_held_lock+0x2b/0x80
[  178.944197][ T8652]  ? page_table_check_set+0x49a/0xa10
[  178.944214][ T8652]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  178.944227][ T8652]  ? policy_nodemask+0xed/0x4f0
[  178.944244][ T8652]  alloc_pages_mpol+0x1fb/0x550
[  178.944261][ T8652]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  178.944280][ T8652]  folio_alloc_mpol_noprof+0x36/0x340
[  178.944293][ T8652]  vma_alloc_folio_noprof+0xed/0x1d0
[  178.944304][ T8652]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  178.944319][ T8652]  do_anonymous_page+0xb3a/0x1fb0
[  178.944337][ T8652]  __handle_mm_fault+0x1d48/0x2b60
[  178.944353][ T8652]  ? __pfx___handle_mm_fault+0x10/0x10
[  178.944366][ T8652]  ? pte_offset_map_lock+0x174/0x320
[  178.944382][ T8652]  ? find_held_lock+0x2b/0x80
[  178.944402][ T8652]  ? follow_page_pte+0x5b3/0x1400
[  178.944422][ T8652]  handle_mm_fault+0x36d/0xa20
[  178.944437][ T8652]  __get_user_pages+0xf9c/0x34d0
[  178.944457][ T8652]  ? down_read_killable+0x307/0x4b0
[  178.944762][ T8652]  ? __pfx___get_user_pages+0x10/0x10
[  178.944783][ T8652]  faultin_page_range+0x1f1/0x9e0
[  178.944797][ T8652]  madvise_do_behavior+0x354/0x510
[  178.944817][ T8652]  ? __pfx_madvise_do_behavior+0x10/0x10
[  178.944843][ T8652]  do_madvise+0x195/0x240
[  178.944853][ T8652]  ? __pfx_do_madvise+0x10/0x10
[  178.944862][ T8652]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  178.944876][ T8652]  ? vfs_write+0x3/0x1070
[  178.944899][ T8652]  ? ksys_write+0x1ac/0x250
[  178.944914][ T8652]  ? __pfx_ksys_write+0x10/0x10
[  178.944931][ T8652]  __x64_sys_madvise+0xa9/0x110
[  178.944941][ T8652]  ? lockdep_hardirqs_on+0x78/0x100
[  178.944954][ T8652]  do_syscall_64+0x10b/0xf80
[  178.944967][ T8652]  ? clear_bhb_loop+0x40/0x90
[  178.944981][ T8652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.944993][ T8652] RIP: 0033:0x7f016bf9c819
[  178.945004][ T8652] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  178.945016][ T8652] RSP: 002b:00007f016ced2028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  178.945029][ T8652] RAX: ffffffffffffffda RBX: 00007f016c215fa0 RCX: 00007f016bf9c819
[  178.945038][ T8652] RDX: 0000000000000017 RSI: 0000000000c00000 RDI: 0000200000000000
[  178.945047][ T8652] RBP: 00007f016ced2090 R08: 0000000000000000 R09: 0000000000000000
[  178.945057][ T8652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  178.945066][ T8652] R13: 00007f016c216038 R14: 00007f016c215fa0 R15: 00007fff44ad1488
[  178.945088][ T8652]  </TASK>
[  179.169658][ T8658] loop5: detected capacity change from 0 to 7
[  179.177434][ T8658]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  179.180547][ T8658] loop5: partition table partially beyond EOD, truncated
[  179.184195][ T8658] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  179.193133][ T8658] loop5: p2 start 832840281 is beyond EOD, truncated
[  179.220911][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  179.389192][ T8676] FAULT_INJECTION: forcing a failure.
[  179.389192][ T8676] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  179.394809][ T8676] CPU: 2 UID: 0 PID: 8676 Comm: syz.3.911 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  179.394829][ T8676] Tainted: [L]=SOFTLOCKUP
[  179.394833][ T8676] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  179.394840][ T8676] Call Trace:
[  179.394844][ T8676]  <TASK>
[  179.394848][ T8676]  dump_stack_lvl+0x100/0x190
[  179.394866][ T8676]  should_fail_ex.cold+0x5/0xa
[  179.394883][ T8676]  ? prepare_alloc_pages+0x16d/0x5f0
[  179.394902][ T8676]  should_fail_alloc_page+0xeb/0x140
[  179.394920][ T8676]  prepare_alloc_pages+0x1f0/0x5f0
[  179.394939][ T8676]  __alloc_frozen_pages_noprof+0x19a/0x2bd0
[  179.394954][ T8676]  ? __lock_acquire+0x4a5/0x2630
[  179.394967][ T8676]  ? stack_trace_save+0x8e/0xc0
[  179.394984][ T8676]  ? __pfx_stack_trace_save+0x10/0x10
[  179.395003][ T8676]  ? __lock_acquire+0x4a5/0x2630
[  179.395016][ T8676]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  179.395034][ T8676]  ? lock_acquire+0x1b1/0x370
[  179.395048][ T8676]  ? lock_acquire+0x1b1/0x370
[  179.395059][ T8676]  ? find_held_lock+0x2b/0x80
[  179.395075][ T8676]  ? page_table_check_set+0x49a/0xa10
[  179.395091][ T8676]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  179.395104][ T8676]  ? policy_nodemask+0xed/0x4f0
[  179.395128][ T8676]  alloc_pages_mpol+0x1fb/0x550
[  179.395145][ T8676]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  179.395165][ T8676]  folio_alloc_mpol_noprof+0x36/0x340
[  179.395178][ T8676]  vma_alloc_folio_noprof+0xed/0x1d0
[  179.395188][ T8676]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  179.395203][ T8676]  do_anonymous_page+0xb3a/0x1fb0
[  179.395221][ T8676]  __handle_mm_fault+0x1d48/0x2b60
[  179.395238][ T8676]  ? __pfx___handle_mm_fault+0x10/0x10
[  179.395250][ T8676]  ? pte_offset_map_lock+0x174/0x320
[  179.395266][ T8676]  ? find_held_lock+0x2b/0x80
[  179.395286][ T8676]  ? follow_page_pte+0x5b3/0x1400
[  179.395306][ T8676]  handle_mm_fault+0x36d/0xa20
[  179.395321][ T8676]  __get_user_pages+0xf9c/0x34d0
[  179.395341][ T8676]  ? down_read_killable+0x307/0x4b0
[  179.395359][ T8676]  ? __pfx___get_user_pages+0x10/0x10
[  179.395380][ T8676]  faultin_page_range+0x1f1/0x9e0
[  179.395393][ T8676]  madvise_do_behavior+0x354/0x510
[  179.395413][ T8676]  ? __pfx_madvise_do_behavior+0x10/0x10
[  179.395458][ T8676]  do_madvise+0x195/0x240
[  179.395468][ T8676]  ? __pfx_do_madvise+0x10/0x10
[  179.395477][ T8676]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  179.395490][ T8676]  ? vfs_write+0x3/0x1070
[  179.395514][ T8676]  ? ksys_write+0x1ac/0x250
[  179.395552][ T8676]  ? __pfx_ksys_write+0x10/0x10
[  179.395577][ T8676]  __x64_sys_madvise+0xa9/0x110
[  179.395589][ T8676]  ? lockdep_hardirqs_on+0x78/0x100
[  179.395603][ T8676]  do_syscall_64+0x10b/0xf80
[  179.395615][ T8676]  ? clear_bhb_loop+0x40/0x90
[  179.395629][ T8676]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.395640][ T8676] RIP: 0033:0x7f016bf9c819
[  179.395650][ T8676] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  179.395661][ T8676] RSP: 002b:00007f016ced2028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  179.395673][ T8676] RAX: ffffffffffffffda RBX: 00007f016c215fa0 RCX: 00007f016bf9c819
[  179.395679][ T8676] RDX: 0000000000000017 RSI: 0000000000c00000 RDI: 0000200000000000
[  179.395686][ T8676] RBP: 00007f016ced2090 R08: 0000000000000000 R09: 0000000000000000
[  179.395692][ T8676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  179.395698][ T8676] R13: 00007f016c216038 R14: 00007f016c215fa0 R15: 00007fff44ad1488
[  179.395713][ T8676]  </TASK>
[  179.783840][  T841] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  179.796797][ T5940] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  179.933326][  T841] usb 5-1: Using ep0 maxpacket: 8
[  179.938644][  T841] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  179.943772][  T841] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  179.953577][  T841] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  179.956997][  T841] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  179.960954][  T841] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  179.963775][  T841] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.987785][ T8692] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2048 sclass=netlink_route_socket pid=8692 comm=syz.3.917
[  180.158463][ T8709] netlink: zone id is out of range
[  180.160347][ T8709] netlink: zone id is out of range
[  180.174509][  T841] usb 5-1: GET_CAPABILITIES returned 0
[  180.176595][  T841] usbtmc 5-1:16.0: can't read capabilities
[  180.187193][ T8709] netlink: set zone limit has 4 unknown bytes
[  180.389163][ T8720] tmpfs: Cannot disable swap on remount
[  180.395986][ T8720] netlink: 24 bytes leftover after parsing attributes in process `syz.3.926'.
[  180.438907][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  180.438935][   T40] audit: type=1400 audit(1776280311.869:1068): avc:  denied  { getopt } for  pid=8719 comm="syz.3.926" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  180.544910][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.550821][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.555691][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.558514][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.561449][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.564407][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.567270][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.570534][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.577050][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.579999][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.583098][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.586011][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.588782][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.592157][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.595289][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.598236][    C2] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  180.607411][ T8678] xt_hashlimit: size too large, truncated to 1048576
[  180.654920][ T8733] loop5: detected capacity change from 0 to 7
[  180.658161][ T8733]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  180.660818][ T8733] loop5: partition table partially beyond EOD, truncated
[  180.672151][ T8733] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  180.676439][ T8733] loop5: p2 start 832840281 is beyond EOD, truncated
[  180.710364][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  180.850756][    C2] sd 0:0:0:0: [sda] tag#16 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  180.854040][    C2] sd 0:0:0:0: [sda] tag#16 CDB: Test Unit Ready 
[  180.856457][ T8745] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  180.978060][ T8760] loop5: detected capacity change from 0 to 7
[  180.980966][ T8760]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  180.984279][ T8760] loop5: partition table partially beyond EOD, truncated
[  180.987590][ T8760] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  180.992575][ T8760] loop5: p2 start 832840281 is beyond EOD, truncated
[  181.053548][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  181.169335][ T8770] xt_hashlimit: size too large, truncated to 1048576
[  182.174431][   T40] audit: type=1400 audit(1776280313.609:1069): avc:  denied  { write } for  pid=8787 comm="syz.4.949" path="socket:[23547]" dev="sockfs" ino=23547 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  182.186548][ T8793] tmpfs: Bad value for 'mpol'
[  182.327401][ T8796] /dev/sr0: Can't open blockdev
[  182.561399][ T5986] usb 5-1: USB disconnect, device number 4
[  182.611556][ T8810] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  182.638691][ T5940] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  182.691760][ T8816] loop5: detected capacity change from 0 to 7
[  182.696558][ T8816]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  182.699173][ T8816] loop5: partition table partially beyond EOD, truncated
[  182.707670][ T8816] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  182.717316][ T8816] loop5: p2 start 832840281 is beyond EOD, truncated
[  182.789017][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  182.924059][ T8801] fuse: Bad value for 'group_id'
[  182.925896][ T8801] fuse: Bad value for 'group_id'
[  183.031939][ T8823] vivid-002: disconnect
[  183.034196][ T8823] netlink: 52 bytes leftover after parsing attributes in process `syz.1.961'.
[  183.042639][ T8822] vivid-002: reconnect
[  183.618113][ T8832] netlink: 8 bytes leftover after parsing attributes in process `syz.1.964'.
[  183.621856][ T8832] netlink: 8 bytes leftover after parsing attributes in process `syz.1.964'.
[  183.698684][ T8836] netlink: 8 bytes leftover after parsing attributes in process `syz.1.966'.
[  183.701596][ T8836] netlink: 'syz.1.966': attribute type 7 has an invalid length.
[  183.704919][ T8836] netlink: 4 bytes leftover after parsing attributes in process `syz.1.966'.
[  183.708530][ T8836] netlink: 8 bytes leftover after parsing attributes in process `syz.1.966'.
[  183.711372][ T8836] netlink: 'syz.1.966': attribute type 7 has an invalid length.
[  183.715547][ T8836] netlink: 4 bytes leftover after parsing attributes in process `syz.1.966'.
[  184.104124][ T8766] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  184.158511][ T8856] loop5: detected capacity change from 0 to 7
[  184.161527][ T8856]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  184.168167][ T8856] loop5: partition table partially beyond EOD, truncated
[  184.172445][ T8856] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  184.177477][ T8856] loop5: p2 start 832840281 is beyond EOD, truncated
[  184.243055][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  184.367432][   T40] audit: type=1400 audit(1776280315.799:1070): avc:  denied  { connect } for  pid=8872 comm="syz.0.975" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  184.410748][   T40] audit: type=1400 audit(1776280315.839:1071): avc:  denied  { read } for  pid=8874 comm="syz.3.976" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  184.453327][   T10] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  184.462572][   T40] audit: type=1400 audit(1776280315.889:1072): avc:  denied  { setopt } for  pid=8874 comm="syz.3.976" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  184.579317][ T8888] netlink: 32 bytes leftover after parsing attributes in process `syz.0.978'.
[  184.588520][ T8883] Cannot find del_set index 4 as target
[  184.607688][   T10] usb 9-1: config 0 has no interfaces?
[  184.615577][   T10] usb 9-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[  184.623305][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  184.629069][   T10] usb 9-1: Product: syz
[  184.630845][   T10] usb 9-1: Manufacturer: syz
[  184.643384][   T10] usb 9-1: SerialNumber: syz
[  184.651618][   T10] usb 9-1: config 0 descriptor??
[  184.653116][ T8890] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  184.660020][   T40] audit: type=1400 audit(1776280316.089:1073): avc:  denied  { read write } for  pid=8889 comm="syz.0.980" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  184.681880][   T40] audit: type=1400 audit(1776280316.089:1074): avc:  denied  { open } for  pid=8889 comm="syz.0.980" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  184.689497][ T8892] loop5: detected capacity change from 0 to 7
[  184.695645][ T8892]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  184.698175][ T8892] loop5: partition table partially beyond EOD, truncated
[  184.700578][ T8892] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  184.704409][ T8892] loop5: p2 start 832840281 is beyond EOD, truncated
[  184.731181][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  184.779927][ T8896] netlink: 4 bytes leftover after parsing attributes in process `syz.0.983'.
[  184.842477][   T40] audit: type=1400 audit(1776280316.269:1075): avc:  denied  { shutdown } for  pid=8897 comm="syz.0.984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  184.896703][    T9] usb 9-1: USB disconnect, device number 2
[  185.030365][ T8917] befs: (nullb0): No write support. Marking filesystem read-only
[  185.035653][ T8917] befs: (nullb0): invalid magic header
[  185.041214][ T8919] befs: (nullb0): No write support. Marking filesystem read-only
[  185.044692][ T8919] befs: (nullb0): invalid magic header
[  185.088437][   T40] audit: type=1400 audit(1776280316.519:1076): avc:  denied  { ioctl } for  pid=8918 comm="syz.0.990" path="/261/file0/file0" dev="fuse" ino=67 ioctlcmd=0x5437 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  185.263746][   T40] audit: type=1400 audit(1776280316.699:1077): avc:  denied  { bpf } for  pid=8935 comm="syz.0.994" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  185.446285][ T8941] IPv6: Can't replace route, no match found
[  185.450853][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  185.450878][   T40] audit: type=1400 audit(1776280316.879:1079): avc:  denied  { append } for  pid=8940 comm="syz.4.996" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  185.499149][   T40] audit: type=1400 audit(1776280316.929:1080): avc:  denied  { module_request } for  pid=8943 comm="syz.3.998" kmod="netdev-wpan4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  185.578471][ T8951] program syz.4.1000 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  185.582303][ T8951] ata1.00: invalid command format 0
[  185.589006][ T8951] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1000'.
[  185.591797][ T8952] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  185.628839][ T8952] cramfs: wrong magic
[  185.691894][   T40] audit: type=1400 audit(1776280317.119:1081): avc:  denied  { mounton } for  pid=8950 comm="syz.0.999" path="/263/file0" dev="tmpfs" ino=1377 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  185.721497][ T8967] loop5: detected capacity change from 0 to 7
[  185.728393][ T8967]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  185.731498][ T8967] loop5: partition table partially beyond EOD, truncated
[  185.734809][ T8967] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  185.742162][ T8967] loop5: p2 start 832840281 is beyond EOD, truncated
[  185.770947][ T8969] x_tables: ip6_tables: sctp match: only valid for protocol 132
[  185.803355][   T40] audit: type=1400 audit(1776280317.229:1082): avc:  denied  { perfmon } for  pid=8972 comm="syz.1.1007" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  185.807341][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  185.830592][ T8975] overlayfs: failed to resolve './file1': -2
[  185.840691][ T8975] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  185.845880][   T40] audit: type=1400 audit(1776280317.279:1083): avc:  denied  { checkpoint_restore } for  pid=8974 comm="syz.4.1008" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  185.989737][ T9003] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  186.007607][ T9003] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  186.032024][ T8994] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  186.150105][   T40] audit: type=1400 audit(1776280317.579:1084): avc:  denied  { search } for  pid=9014 comm="getty" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:getty_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  186.158445][   T40] audit: type=1400 audit(1776280317.579:1085): avc:  denied  { read write } for  pid=9014 comm="getty" name="utmp" dev="tmpfs" ino=2 scontext=system_u:system_r:getty_t tcontext=system_u:object_r:init_tmpfs_t tclass=file permissive=1
[  186.167141][   T40] audit: type=1400 audit(1776280317.579:1086): avc:  denied  { open } for  pid=9014 comm="getty" path="/run/utmp" dev="tmpfs" ino=2 scontext=system_u:system_r:getty_t tcontext=system_u:object_r:init_tmpfs_t tclass=file permissive=1
[  186.174479][   T40] audit: type=1400 audit(1776280317.579:1087): avc:  denied  { lock } for  pid=9014 comm="getty" path="/run/utmp" dev="tmpfs" ino=2 scontext=system_u:system_r:getty_t tcontext=system_u:object_r:init_tmpfs_t tclass=file permissive=1
[  186.182026][   T40] audit: type=1400 audit(1776280317.579:1088): avc:  denied  { read } for  pid=9014 comm="getty" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:getty_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1

syzkaller
syzkaller login: [  186.279669][ T9024] loop5: detected capacity change from 0 to 7
[  186.299885][ T9024]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  186.302993][ T9024] loop5: partition table partially beyond EOD, truncated
[  186.315629][ T9024] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  186.324802][ T9024] loop5: p2 start 832840281 is beyond EOD, truncated
[  186.378549][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  186.474934][   T10] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  186.551346][ T9045] netdevsim netdevsim3 netdevsim0: left allmulticast mode
[  186.561053][ T9045] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  186.613115][ T9054] tmpfs: Cannot change global quota limit on remount
[  186.624915][   T10] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  186.631466][   T10] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  186.641632][   T10] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  186.645528][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.650616][ T9008] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  186.662118][   T10] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  186.734692][ T9062] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  186.857517][ T9075] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  186.906231][ T9084] netlink: 'syz.1.1029': attribute type 83 has an invalid length.
[  186.915311][   T50] usb 5-1: USB disconnect, device number 5
[  187.054179][ T9101] FAULT_INJECTION: forcing a failure.
[  187.054179][ T9101] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  187.058519][ T9101] CPU: 3 UID: 0 PID: 9101 Comm: syz.4.1032 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  187.058538][ T9101] Tainted: [L]=SOFTLOCKUP
[  187.058542][ T9101] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  187.058549][ T9101] Call Trace:
[  187.058554][ T9101]  <TASK>
[  187.058559][ T9101]  dump_stack_lvl+0x100/0x190
[  187.058915][ T9101]  should_fail_ex.cold+0x5/0xa
[  187.059019][ T9101]  ? prepare_alloc_pages+0x16d/0x5f0
[  187.059162][ T9101]  should_fail_alloc_page+0xeb/0x140
[  187.059181][ T9101]  prepare_alloc_pages+0x1f0/0x5f0
[  187.059202][ T9101]  __alloc_frozen_pages_noprof+0x19a/0x2bd0
[  187.059217][ T9101]  ? __lock_acquire+0x4a5/0x2630
[  187.059288][ T9101]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  187.059311][ T9101]  ? lock_acquire+0x1b1/0x370
[  187.059323][ T9101]  ? find_held_lock+0x2b/0x80
[  187.059339][ T9101]  ? page_table_check_set+0x49a/0xa10
[  187.059355][ T9101]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  187.059369][ T9101]  ? policy_nodemask+0xed/0x4f0
[  187.059386][ T9101]  alloc_pages_mpol+0x1fb/0x550
[  187.059404][ T9101]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  187.059424][ T9101]  folio_alloc_mpol_noprof+0x36/0x340
[  187.059435][ T9101]  vma_alloc_folio_noprof+0xed/0x1d0
[  187.059447][ T9101]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  187.059462][ T9101]  do_anonymous_page+0xb3a/0x1fb0
[  187.059481][ T9101]  __handle_mm_fault+0x1d48/0x2b60
[  187.059519][ T9101]  ? __pfx___handle_mm_fault+0x10/0x10
[  187.059538][ T9101]  ? pte_offset_map_lock+0x174/0x320
[  187.059555][ T9101]  ? find_held_lock+0x2b/0x80
[  187.059575][ T9101]  ? follow_page_pte+0x5b3/0x1400
[  187.059595][ T9101]  handle_mm_fault+0x36d/0xa20
[  187.059610][ T9101]  __get_user_pages+0xf9c/0x34d0
[  187.059631][ T9101]  ? down_read_killable+0x307/0x4b0
[  187.059857][ T9101]  ? __pfx___get_user_pages+0x10/0x10
[  187.059878][ T9101]  faultin_page_range+0x1f1/0x9e0
[  187.059891][ T9101]  madvise_do_behavior+0x354/0x510
[  187.059912][ T9101]  ? __pfx_madvise_do_behavior+0x10/0x10
[  187.059938][ T9101]  do_madvise+0x195/0x240
[  187.059947][ T9101]  ? __pfx_do_madvise+0x10/0x10
[  187.059957][ T9101]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  187.059971][ T9101]  ? vfs_write+0x3/0x1070
[  187.059995][ T9101]  ? ksys_write+0x1ac/0x250
[  187.060009][ T9101]  ? __pfx_ksys_write+0x10/0x10
[  187.060027][ T9101]  __x64_sys_madvise+0xa9/0x110
[  187.060037][ T9101]  ? lockdep_hardirqs_on+0x78/0x100
[  187.060050][ T9101]  do_syscall_64+0x10b/0xf80
[  187.060063][ T9101]  ? clear_bhb_loop+0x40/0x90
[  187.060082][ T9101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.060093][ T9101] RIP: 0033:0x7f74ea39c819
[  187.060103][ T9101] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  187.060115][ T9101] RSP: 002b:00007f74eb2c9028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  187.060126][ T9101] RAX: ffffffffffffffda RBX: 00007f74ea615fa0 RCX: 00007f74ea39c819
[  187.060134][ T9101] RDX: 0000000000000017 RSI: 0000000000c00000 RDI: 0000200000000000
[  187.060140][ T9101] RBP: 00007f74eb2c9090 R08: 0000000000000000 R09: 0000000000000000
[  187.060147][ T9101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  187.060153][ T9101] R13: 00007f74ea616038 R14: 00007f74ea615fa0 R15: 00007ffd0b8d1958
[  187.060168][ T9101]  </TASK>
[  187.156967][ T9113] loop5: detected capacity change from 0 to 7
[  187.198279][ T9113]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  187.201576][ T9113] loop5: partition table partially beyond EOD, truncated
[  187.201766][ T9113] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  187.207806][ T9113] loop5: p2 start 832840281 is beyond EOD, truncated
[  187.277871][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  187.662651][ T9150] loop5: detected capacity change from 0 to 7
[  187.665779][ T9150]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  187.668883][ T9150] loop5: partition table partially beyond EOD, truncated
[  187.671829][ T9150] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  187.676184][ T9150] loop5: p2 start 832840281 is beyond EOD, truncated
[  187.684563][ T6010] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  187.741853][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  187.865232][ T6010] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  187.868224][ T9168] Bluetooth: MGMT ver 1.23
[  187.870012][ T6010] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  187.877130][ T6010] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  187.881178][ T6010] usb 9-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  187.889027][ T6010] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  187.893776][ T6010] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  187.897751][ T6010] usb 9-1: Product: syz
[  187.899561][ T6010] usb 9-1: Manufacturer: syz
[  187.909275][ T6010] cdc_wdm 9-1:1.0: probe with driver cdc_wdm failed with error -22
[  187.949221][ T9168] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow
[  188.129537][ T9171] __nla_validate_parse: 7 callbacks suppressed
[  188.129558][ T9171] netlink: 7064 bytes leftover after parsing attributes in process `syz.0.1056'.
[  188.135389][ T9171] openvswitch: netlink: Missing key (keys=40, expected=100)
[  188.142106][ T9171] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1056'.
[  188.203640][  T841] usb 9-1: USB disconnect, device number 3
[  188.381832][ T9188] loop5: detected capacity change from 0 to 7
[  188.385933][ T9188]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  188.388373][ T9188] loop5: partition table partially beyond EOD, truncated
[  188.390984][ T9188] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  188.394622][ T9188] loop5: p2 start 832840281 is beyond EOD, truncated
[  188.438199][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  188.453631][ T6010] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  188.613344][ T6010] usb 5-1: Using ep0 maxpacket: 8
[  188.617211][ T6010] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  188.620969][ T6010] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  188.628154][ T6010] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  188.632457][ T6010] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  188.637449][ T6010] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  188.643313][ T6010] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  188.647293][ T6010] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.863376][ T6010] usb 5-1: GET_CAPABILITIES returned 0
[  188.865222][ T6010] usbtmc 5-1:16.0: can't read capabilities
[  188.893992][ T6010] usb 5-1: USB disconnect, device number 6
[  188.920759][ T9212] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1072'.
[  188.965627][ T9212] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  188.969750][ T9213] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1072'.
[  188.988518][ T1203] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  188.993190][ T1203] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  189.004308][ T9213] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1072'.
[  189.007348][ T1203] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  189.010241][ T1203] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  189.108283][ T9224] geneve2: entered promiscuous mode
[  189.110859][ T9224] geneve2: entered allmulticast mode
[  189.179676][ T9228] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[  189.259529][ T9235] delete_channel: no stack
[  189.344188][ T9245] overlay: filesystem on ./file0 not supported as upperdir
[  189.462330][ T9251] sd 0:0:0:0: PR command failed: 1026
[  189.466601][ T9251] sd 0:0:0:0: Sense Key : Illegal Request [current] 
[  189.469407][ T9251] sd 0:0:0:0: Add. Sense: Invalid command operation code
[  189.662665][ T9271] loop5: detected capacity change from 0 to 7
[  189.667153][ T9271]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  189.670566][ T9271] loop5: partition table partially beyond EOD, truncated
[  189.674054][ T9271] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  189.677596][ T9271] loop5: p2 start 832840281 is beyond EOD, truncated
[  189.711340][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  190.290646][ T9295] loop5: detected capacity change from 0 to 7
[  190.295441][ T9295]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  190.300041][ T9295] loop5: partition table partially beyond EOD, truncated
[  190.307616][ T9295] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  190.329551][ T9295] loop5: p2 start 832840281 is beyond EOD, truncated
[  190.413868][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  190.426938][ T9305] SELinux:  policydb magic number 0x7665642f does not match expected magic number 0xf97cff8c
[  190.431680][ T9305] SELinux: failed to load policy
[  190.470504][ T9310] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1109'.
[  190.474495][ T9310] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1109'.
[  190.595636][   T40] kauditd_printk_skb: 38 callbacks suppressed
[  190.595651][   T40] audit: type=1400 audit(1776280322.029:1127): avc:  denied  { create } for  pid=9322 comm="syz.1.1112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[  190.701330][ T9334] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1115'.
[  190.705908][ T9336] loop5: detected capacity change from 0 to 7
[  190.714210][ T9336]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  190.720941][ T9336] loop5: partition table partially beyond EOD, truncated
[  190.725011][ T9336] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  190.742938][ T9336] loop5: p2 start 832840281 is beyond EOD, truncated
[  190.773055][   T40] audit: type=1400 audit(1776280322.199:1128): avc:  denied  { ioctl } for  pid=9338 comm="syz.4.1117" path="socket:[27100]" dev="sockfs" ino=27100 ioctlcmd=0x5865 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  190.778520][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  190.889093][ T9351] QAT: Invalid ioctl -1069524929
[  190.961192][ T9354] xt_policy: output policy not valid in PREROUTING and INPUT
[  191.131948][ T9372] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  191.337618][ T9384] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1132'.
[  191.453716][ T9390] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.467270][ T9390] batman_adv: batadv0: Removing interface: batadv_slave_1
[  191.499269][ T9393] loop5: detected capacity change from 0 to 7
[  191.502896][ T9390] bond0: (slave batadv0): Releasing backup interface
[  191.507810][ T9393]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  191.511875][ T9393] loop5: partition table partially beyond EOD, truncated
[  191.516781][ T9393] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  191.521167][ T9393] loop5: p2 start 832840281 is beyond EOD, truncated
[  191.642566][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  191.689269][   T40] audit: type=1400 audit(1776280323.119:1129): avc:  denied  { module_load } for  pid=9403 comm="syz.0.1139" path="/sys/kernel/hardlockup_count" dev="sysfs" ino=71060 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  191.700460][ T9404] XFS (nbd0): no-recovery mounts must be read-only.
[  191.926870][   T40] audit: type=1400 audit(1776280323.359:1130): avc:  denied  { watch } for  pid=9413 comm="syz.0.1144" path="/301/bus" dev="tmpfs" ino=1573 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  191.937542][   T40] audit: type=1400 audit(1776280323.359:1131): avc:  denied  { watch_sb watch_reads } for  pid=9413 comm="syz.0.1144" path="/301/bus" dev="tmpfs" ino=1573 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  191.976691][ T9416] loop5: detected capacity change from 0 to 7
[  191.979389][ T9416]  loop5: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  191.981871][ T9416] loop5: partition table partially beyond EOD, truncated
[  191.984598][ T9416] loop5: p1 size 1673702192 extends beyond EOD, truncated
[  191.992008][ T9416] loop5: p2 start 832840281 is beyond EOD, truncated
[  192.046765][ T5955] udevd[5955]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  192.158289][   T40] audit: type=1400 audit(1776280323.589:1132): avc:  denied  { map } for  pid=9426 comm="syz.3.1150" path="/dev/video8" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  192.203582][ T5940] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  192.304277][ T9435] fuse: Bad value for 'rootmode'
[  192.336988][ T9439] netlink: 348 bytes leftover after parsing attributes in process `syz.1.1154'.
[  192.436326][ T9442] kvm: emulating exchange as write
[  192.571680][   T40] audit: type=1400 audit(1776280323.999:1133): avc:  denied  { create } for  pid=9446 comm="syz.1.1156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  192.587257][   T40] audit: type=1400 audit(1776280323.999:1134): avc:  denied  { write } for  pid=9446 comm="syz.1.1156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  192.622758][ T9447] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  192.628487][   T40] audit: type=1400 audit(1776280324.059:1135): avc:  denied  { write } for  pid=9446 comm="syz.1.1156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  192.635177][   T40] audit: type=1400 audit(1776280324.059:1136): avc:  denied  { read } for  pid=9446 comm="syz.1.1156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  192.671551][ T9452] vlan2: entered allmulticast mode
[  192.673517][ T9452] bond0: entered allmulticast mode
[  192.675114][ T9452] bond_slave_0: entered allmulticast mode
[  192.676997][ T9452] bond_slave_1: entered allmulticast mode
[  192.893753][ T9460] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.897211][ T9460] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.991615][ T9460] bridge_slave_0: left allmulticast mode
[  192.993867][ T9460] bridge_slave_0: left promiscuous mode
[  192.996002][ T9460] bridge0: port 1(bridge_slave_0) entered disabled state
[  193.006999][ T9460] bridge_slave_1: left allmulticast mode
[  193.009488][ T9460] bridge_slave_1: left promiscuous mode
[  193.011699][ T9460] bridge0: port 2(bridge_slave_1) entered disabled state
[  193.023912][ T9460] bond0: (slave bond_slave_0): Releasing backup interface
[  193.026878][ T9460] bond_slave_0: left allmulticast mode
[  193.037497][ T9460] bond0: (slave bond_slave_1): Releasing backup interface
[  193.041758][ T9460] bond_slave_1: left allmulticast mode
[  193.052185][ T9460] team0: Port device team_slave_0 removed
[  193.060926][ T9460] team0: Port device team_slave_1 removed
[  193.066468][ T9460] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  193.075212][ T9460] batman_adv: batadv0: Removing interface: batadv_slave_0
[  193.088106][ T9460] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  193.095448][ T9460] batman_adv: batadv0: Removing interface: batadv_slave_1
[  193.111399][ T9460] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  193.463832][ T9428] kexec: Could not allocate control_code_buffer
[  193.568109][ T9485] set match dimension is over the limit!
[  193.570402][ T9485] netlink: 'syz.3.1169': attribute type 10 has an invalid length.
[  193.581282][ T9485] bond0: (slave wlan1): Opening slave failed
[  193.737198][ T9493] ------------[ cut here ]------------
[  193.739007][ T9493] enable_ept && !allow_smaller_maxphyaddr
[  193.739016][ T9493] WARNING: arch/x86/kvm/vmx/vmx.c:5444 at handle_exception_nmi+0xa6e/0x1bb0, CPU#1: syz.3.1172/9493
[  193.745006][ T9493] Modules linked in:
[  193.747185][ T9493] CPU: 1 UID: 0 PID: 9493 Comm: syz.3.1172 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  193.751224][ T9493] Tainted: [L]=SOFTLOCKUP
[  193.752938][ T9493] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  193.757747][ T9493] RIP: 0010:handle_exception_nmi+0xa6e/0x1bb0
[  193.760072][ T9493] Code: 08 84 d2 0f 85 fd 10 00 00 44 0f b6 2d 36 d8 3a 0f 31 ff 44 89 ee e8 81 4b 69 00 45 84 ed 0f 85 b5 0e 00 00 e8 23 51 69 00 90 <0f> 0b 90 31 ff 44 89 e6 e8 c5 4b 69 00 45 85 e4 0f 85 7f 0b 00 00
[  193.766634][ T9493] RSP: 0018:ffffc9000e6779d8 EFLAGS: 00010283
[  193.768818][ T9493] RAX: 00000000000159c1 RBX: ffff88806115a980 RCX: ffffc900071c2000
[  193.771485][ T9493] RDX: 0000000000080000 RSI: ffffffff819fa85d RDI: ffff88802eb7ca00
[  193.774404][ T9493] RBP: 000000000f6632eb R08: 0000000000000001 R09: 0000000000000000
[  193.777483][ T9493] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  193.780183][ T9493] R13: 0000000000000000 R14: ffff8880290f1000 R15: ffff88806115aa50
[  193.782842][ T9493] FS:  00007f016ced26c0(0000) GS:ffff8880d640d000(0000) knlGS:0000000000000000
[  193.786144][ T9493] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  193.788616][ T9493] CR2: 000000000f6632eb CR3: 0000000022f3f000 CR4: 0000000000352ef0
[  193.791381][ T9493] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000036
[  193.794326][ T9493] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  193.797009][ T9493] Call Trace:
[  193.798127][ T9493]  <TASK>
[  193.799180][ T9493]  ? __pfx_handle_exception_nmi+0x10/0x10
[  193.801180][ T9493]  vmx_handle_exit+0x84d/0x1f40
[  193.802904][ T9493]  vcpu_run+0x34cf/0x5ca0
[  193.804517][ T9493]  ? __pfx_vcpu_run+0x10/0x10
[  193.806166][ T9493]  ? rcu_is_watching+0x12/0xc0
[  193.808057][ T9493]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  193.810065][ T9493]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  193.812018][ T9493]  kvm_vcpu_ioctl+0x730/0x1720
[  193.813750][ T9493]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  193.815516][ T9493]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  193.817554][ T9493]  ? do_vfs_ioctl+0x226/0x13e0
[  193.819280][ T9493]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  193.821183][ T9493]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  193.824087][ T9493]  ? __fget_files+0x215/0x3d0
[  193.825842][ T9493]  ? hook_file_ioctl_common+0x149/0x410
[  193.827794][ T9493]  ? selinux_file_ioctl+0x13b/0x290
[  193.829614][ T9493]  ? selinux_file_ioctl+0xb6/0x290
[  193.831419][ T9493]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  193.833359][ T9493]  __x64_sys_ioctl+0x18e/0x210
[  193.835140][ T9493]  do_syscall_64+0x10b/0xf80
[  193.837107][ T9493]  ? clear_bhb_loop+0x40/0x90
[  193.839017][ T9493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.841325][ T9493] RIP: 0033:0x7f016bf9c819
[  193.843070][ T9493] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  193.849851][ T9493] RSP: 002b:00007f016ced2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  193.853551][ T9493] RAX: ffffffffffffffda RBX: 00007f016c215fa0 RCX: 00007f016bf9c819
[  193.856996][ T9493] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009
[  193.860516][ T9493] RBP: 00007f016c032c91 R08: 0000000000000000 R09: 0000000000000000
[  193.863888][ T9493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  193.866588][ T9493] R13: 00007f016c216038 R14: 00007f016c215fa0 R15: 00007fff44ad1488
[  193.869295][ T9493]  </TASK>
[  193.870371][ T9493] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  193.872861][ T9493] CPU: 1 UID: 0 PID: 9493 Comm: syz.3.1172 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  193.877058][ T9493] Tainted: [L]=SOFTLOCKUP
[  193.878824][ T9493] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  193.882489][ T9493] Call Trace:
[  193.883681][ T9493]  <TASK>
[  193.884720][ T9493]  dump_stack_lvl+0x100/0x190
[  193.886399][ T9493]  vpanic+0x552/0x970
[  193.887836][ T9493]  ? __pfx_vpanic+0x10/0x10
[  193.889425][ T9493]  panic+0xd1/0xe0
[  193.890741][ T9493]  ? __pfx_panic+0x10/0x10
[  193.892350][ T9493]  check_panic_on_warn.cold+0x19/0x34
[  193.894250][ T9493]  ? handle_exception_nmi+0xa6e/0x1bb0
[  193.896206][ T9493]  __warn.cold+0x191/0x328
[  193.897873][ T9493]  __report_bug+0x296/0x3d0
[  193.899675][ T9493]  ? handle_exception_nmi+0xa6e/0x1bb0
[  193.901882][ T9493]  ? __pfx___report_bug+0x10/0x10
[  193.903650][ T9493]  ? __pfx_skip_emulated_instruction+0x10/0x10
[  193.905824][ T9493]  ? kvm_pmu_trigger_event.isra.0+0x789/0xc00
[  193.907942][ T9493]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  193.910028][ T9493]  ? handle_exception_nmi+0xa6e/0x1bb0
[  193.911948][ T9493]  report_bug+0xb2/0x220
[  193.913476][ T9493]  ? handle_exception_nmi+0xa6e/0x1bb0
[  193.915434][ T9493]  handle_bug+0x16a/0x2a0
[  193.917029][ T9493]  exc_invalid_op+0x17/0x50
[  193.918693][ T9493]  asm_exc_invalid_op+0x1a/0x20
[  193.920462][ T9493] RIP: 0010:handle_exception_nmi+0xa6e/0x1bb0
[  193.922630][ T9493] Code: 08 84 d2 0f 85 fd 10 00 00 44 0f b6 2d 36 d8 3a 0f 31 ff 44 89 ee e8 81 4b 69 00 45 84 ed 0f 85 b5 0e 00 00 e8 23 51 69 00 90 <0f> 0b 90 31 ff 44 89 e6 e8 c5 4b 69 00 45 85 e4 0f 85 7f 0b 00 00
[  193.929280][ T9493] RSP: 0018:ffffc9000e6779d8 EFLAGS: 00010283
[  193.931406][ T9493] RAX: 00000000000159c1 RBX: ffff88806115a980 RCX: ffffc900071c2000
[  193.934308][ T9493] RDX: 0000000000080000 RSI: ffffffff819fa85d RDI: ffff88802eb7ca00
[  193.937209][ T9493] RBP: 000000000f6632eb R08: 0000000000000001 R09: 0000000000000000
[  193.939925][ T9493] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  193.942665][ T9493] R13: 0000000000000000 R14: ffff8880290f1000 R15: ffff88806115aa50
[  193.945420][ T9493]  ? handle_exception_nmi+0xa6d/0x1bb0
[  193.947306][ T9493]  ? handle_exception_nmi+0xa6d/0x1bb0
[  193.949208][ T9493]  ? __pfx_handle_exception_nmi+0x10/0x10
[  193.951161][ T9493]  vmx_handle_exit+0x84d/0x1f40
[  193.952912][ T9493]  vcpu_run+0x34cf/0x5ca0
[  193.954451][ T9493]  ? __pfx_vcpu_run+0x10/0x10
[  193.956128][ T9493]  ? rcu_is_watching+0x12/0xc0
[  193.957958][ T9493]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  193.960148][ T9493]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  193.962307][ T9493]  kvm_vcpu_ioctl+0x730/0x1720
[  193.964175][ T9493]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  193.965999][ T9493]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  193.968295][ T9493]  ? do_vfs_ioctl+0x226/0x13e0
[  193.969973][ T9493]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  193.971734][ T9493]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  193.974093][ T9493]  ? __fget_files+0x215/0x3d0
[  193.975770][ T9493]  ? hook_file_ioctl_common+0x149/0x410
[  193.977710][ T9493]  ? selinux_file_ioctl+0x13b/0x290
[  193.979480][ T9493]  ? selinux_file_ioctl+0xb6/0x290
[  193.981249][ T9493]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  193.983165][ T9493]  __x64_sys_ioctl+0x18e/0x210
[  193.985054][ T9493]  do_syscall_64+0x10b/0xf80
[  193.986961][ T9493]  ? clear_bhb_loop+0x40/0x90
[  193.988855][ T9493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.991018][ T9493] RIP: 0033:0x7f016bf9c819
[  193.992605][ T9493] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  193.999274][ T9493] RSP: 002b:00007f016ced2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  194.002132][ T9493] RAX: ffffffffffffffda RBX: 00007f016c215fa0 RCX: 00007f016bf9c819
[  194.004975][ T9493] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009
[  194.007969][ T9493] RBP: 00007f016c032c91 R08: 0000000000000000 R09: 0000000000000000
[  194.010900][ T9493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  194.013746][ T9493] R13: 00007f016c216038 R14: 00007f016c215fa0 R15: 00007fff44ad1488
[  194.016562][ T9493]  </TASK>
[  194.018334][ T9493] Kernel Offset: disabled
[  194.019840][ T9493] Rebooting in 86400 seconds..