last executing test programs:

30.459144285s ago: executing program 1 (id=1008):
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='qnx6\x00', 0x2000802, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000003cc0)=ANY=[@ANYBLOB="3c0000001000030400000000fedbdf2500007400", @ANYRES32=0x0, @ANYBLOB="00080000075005001c0012800b000100627269646765000822ed99cb8204eec1ba2bc2d2535c76500c000280050016000000000099666a6f36610e3b37049a41581aef9397ec8ce702885e0a6e1adb7b7b86a1eb2a4446037721c044d69c49ce4c3eaf5734e7de559807693468c44bbba85a8685bd670494c131eb7859fbfed7351ef940e7483ff40c390a6e9c892005000000f2ff20c724edbbdcf9d44b73cba9bd4a4e5453af8b82eaab22449cd66c1659af03cc0dd75d"], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r1 = accept$unix(0xffffffffffffffff, &(0x7f0000000180), &(0x7f0000000200)=0x6e)
recvmmsg$unix(r1, &(0x7f0000003880)=[{{&(0x7f00000002c0)=@abs, 0x6e, &(0x7f0000000800)=[{&(0x7f00000003c0)=""/129, 0x81}, {&(0x7f0000000480)=""/161, 0xa1}, {&(0x7f0000000540)=""/150, 0x96}, {&(0x7f0000000600)=""/184, 0xb8}, {&(0x7f00000006c0)=""/216, 0xd8}, {&(0x7f00000007c0)=""/55, 0x37}], 0x6, &(0x7f0000000880)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x50}}, {{0x0, 0x0, &(0x7f0000003a80)=[{&(0x7f0000003bc0)=""/198, 0xc6}, {&(0x7f0000000a00)=""/2, 0x2}, {&(0x7f0000000a40)=""/4096, 0x1000}, {&(0x7f0000003b00)=""/167, 0xa7}, {&(0x7f0000001b00)=""/178, 0xb2}, {&(0x7f0000001bc0)=""/104, 0x68}, {&(0x7f0000001c40)=""/76, 0x4c}, {&(0x7f0000001cc0)=""/163, 0xa3}], 0x8, &(0x7f0000001e00)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x108}}, {{&(0x7f0000001f40), 0x6e, &(0x7f0000002180)=[{&(0x7f0000001fc0)=""/225, 0xe1}, {&(0x7f00000020c0)=""/189, 0xbd}], 0x2}}, {{&(0x7f00000021c0), 0x6e, &(0x7f0000002700)=[{&(0x7f0000002240)=""/17, 0x11}, {&(0x7f0000002280)=""/75, 0x4b}, {&(0x7f0000002300)=""/3, 0x3}, {&(0x7f0000002340)=""/67, 0x43}, {&(0x7f00000023c0)=""/55, 0x37}, {&(0x7f0000001a40)=""/138, 0x8a}, {&(0x7f0000002480)=""/158, 0x9e}, {&(0x7f0000002540)=""/87, 0x57}, {&(0x7f00000025c0)=""/207, 0xcf}, {&(0x7f00000026c0)=""/12, 0xc}], 0xa, &(0x7f00000027c0)}}, {{0x0, 0x0, &(0x7f0000002cc0)=[{&(0x7f0000002880)=""/79, 0x4f}, {&(0x7f0000002900)=""/40, 0x28}, {&(0x7f0000002940)=""/249, 0xf9}, {&(0x7f0000002a40)=""/24, 0x18}, {&(0x7f0000002a80)=""/156, 0x9c}, {&(0x7f0000002b40)=""/166, 0xa6}, {&(0x7f0000002c00)=""/30, 0x1e}, {&(0x7f0000002c40)=""/90, 0x5a}], 0x8, &(0x7f0000002d40)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r2=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x150}}, {{&(0x7f0000002ec0)=@abs, 0x6e, &(0x7f00000032c0)=[{&(0x7f0000002f40)=""/66, 0x42}, {&(0x7f0000002fc0)=""/186, 0xba}, {&(0x7f0000003080)=""/76, 0x4c}, {&(0x7f0000003100)=""/33, 0x21}, {&(0x7f0000003140)=""/255, 0xff}, {&(0x7f0000003240)=""/118, 0x76}], 0x6, &(0x7f0000003340)}}, {{&(0x7f0000003380), 0x6e, &(0x7f00000037c0)=[{&(0x7f0000003400)=""/175, 0xaf}, {&(0x7f00000034c0)=""/167, 0xa7}, {&(0x7f0000003580)=""/186, 0xba}, {&(0x7f0000003640)=""/232, 0xe8}, {&(0x7f0000003740)=""/67, 0x43}], 0x5, &(0x7f0000003840)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x30}}], 0x7, 0x0, &(0x7f0000003a40)={0x77359400})
r3 = syz_open_dev$rtc(&(0x7f0000000000), 0x0, 0x8000)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r4, 0xc004743e, 0x110c230002)
ioctl$TUNSETOFFLOAD(r4, 0x8010743f, 0xf0ff1f00000000)
ioctl$RTC_IRQP_SET(r3, 0x4008700c, 0x1c99)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x14, r7, 0x3, 0x0, 0xfffffffc}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x14)
r8 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000001c0), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r8, 0xc0505405, &(0x7f0000000000)={{0x1, 0x0, 0x1}})
sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000002100010000000000000000000a000000000000000000000008001b"], 0x24}}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000940), r2)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="09000000048000000400d605241cc6eecc960000", @ANYRES32=0x1, @ANYBLOB="fcffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f00000027c0)=ANY=[@ANYBLOB="18000000000100000000000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000000600000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bca2000000000000a6020000f8ffffffb703000018000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
close(r11)
sendmsg$NL80211_CMD_DEL_PMK(r9, &(0x7f0000001d80)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000009c0)={&(0x7f0000002400)=ANY=[@ANYBLOB="4d6283f0e511d813f2b394ef12bf1d0600009c48cce3f83ca2", @ANYRES16=r10, @ANYBLOB="040028bd7000fbdbdf257c0000000a00060008021100000000000a000600ffffffffffff0000"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
mount(&(0x7f0000000340)=@md0, &(0x7f00000000c0)='./cgroup\x00', &(0x7f0000000100)='ntfs3\x00', 0x4, 0x0)

30.233397302s ago: executing program 1 (id=1011):
socket$kcm(0x10, 0x2, 0x0) (async)
r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x32, 0xe, &(0x7f0000000880)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x40}, 0x10}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000600)='\x00'/14, 0x0, 0xc69a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (async)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000240)={0x1, 0x0, [{0x40000022, 0x0, 0x4}]}) (async)
ioctl$TCSETS(r2, 0x40045431, &(0x7f00000002c0)={0xffffff86, 0x4, 0x8, 0x20000, 0x1e, "0800000800000000008000"})
r6 = syz_open_pts(r2, 0x141601) (async)
syslog(0x1, &(0x7f0000000300)=""/120, 0x78)
fcntl$setstatus(r6, 0x4, 0x102800) (async)
write(r6, &(0x7f0000000000)="d5", 0xfffffedf)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000080)=0x11) (async)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000fd7000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_NESTED_STATE(r9, 0x4080aebf, &(0x7f0000003680)=@vmx={0x0, 0x0, 0x2080, {0x0, 0x0, {}, 0x1, 0xffffffffffffffff}}) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000fc7000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000680)="66b80500000066b9000001000f01c10f01d966b9900a000066b80020000066ba000000000f30650f01c98fc9c8018800180f2084330f798a000000a100ed66b99a0100000f32660f38810f", 0x4b}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x20008081)
ioctl$DVB_DEMUX_DMX_SET_PES_FILTER(0xffffffffffffffff, 0x40146f2c, 0x0)
ioctl$DVB_DEMUX_DMX_ADD_PID(0xffffffffffffffff, 0x40026f33, 0x0) (async)
ioctl$KVM_RUN(r9, 0xae80, 0x0) (async)
readv(r2, &(0x7f0000001b40)=[{&(0x7f0000001a80)=""/147, 0x93}, {&(0x7f00000016c0)=""/207, 0xcf}, {&(0x7f0000001bc0)=""/241, 0xf1}, {&(0x7f00000017c0)=""/103, 0x67}, {&(0x7f0000001840)=""/161, 0xa1}, {&(0x7f0000001900)=""/166, 0xa6}, {&(0x7f00000019c0)=""/129, 0x81}, {&(0x7f00000007c0)=""/172, 0xac}], 0x8) (async)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000680021050000000000000000d4908cd3f26ead86"], 0x18}}, 0x4020054) (async)
ioctl$KDGKBSENT(r0, 0x4b48, &(0x7f00000003c0)={0x8, "07dbeb7be539fb994e41214cafde4821fa8e94f944babcd8082cee61451f36e4938f3124cc2886670b64b18b5399934527050940541fd913fb7a981e5eb9cb6bfb946adf02b5bed96146a007cacdc015be963d20d75ee263fbf0a0d36d4189eb0e3cbc7360c0e0f8ef31e2cac19f7d30c8c91f12377c61574544c3808b719fb6d809c4d52172501e5bfba8299a46c299bfe0a80b0d9ad64986e0c80b0088e2020ceaceb2c135eae320382f9897acabf8d9b29b4367d40766f3642afdb1b4e08866db2c2ebfa485052335b8f2e9e06f2fcf7acc78beedd5ed79532dd744769dd85a71deeb4e5cbb548a80313c4d4dc47edb4ecd0afa41069db4ba731a7366cb3ac88d23310132101b5a1e2412d56732efa72d28a3cd3e15749d754e99dc4f3daee65865547ca092afd552d3cf5b4df9cfce722f9e0f9c2884f39c8914fb309c728de9f522f4d84b2bc30987747e51d43682cda1403a74d3770b2ea812b47d7985e3bead810225eddf29ab26b9f9034bb770ad19ec09c0b34771c9056f0791c7f791208c22dab72730eedd8420a43ef6f2d0590d340da851d5f20a6013cfd9b537072f42526043e30cb53c0bc82b6fdd1a72815b1ec0b0f11a1d293758b7407830fc5ce9e409c92642b45451750a6d45285096a68e0e3056d0366fe292c509250516cc7aa5d0f868ee4e475216470ab4a0883cc5404bfff05277ab309372140d51"})

30.049955593s ago: executing program 1 (id=1015):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$kcm(0x10, 0x100000000002, 0x4)
sendmsg$kcm(r2, &(0x7f00000039c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="39000000140081ae00002c000500015601618575e285af0100d41f215c0000883795c04a31ba377a1b2cc32b38d3440c6942cb76cab3000000", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_XFRM_IF_ID={0x8, 0x2, 0x3}, @IFLA_XFRM_LINK={0x8, 0x1, 0x1}]}}}, @IFLA_IFNAME={0x14, 0x3, 'xfrm0\x00'}]}, 0x58}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x5f, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYRES16=r1], 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004044)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a80)=ANY=[@ANYBLOB="140000001000010000000000000000000000000540000000060a0b040000000000000000020000001400048010000180090001006d617371000000000900010073797a23ca4605c8c5b834e8a655fc0e54000900020073797a0001000000000000000000f500000a"], 0x68}}, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0x5}, {0xffff, 0xffff}, {0xf, 0xf}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newqdisc={0x38, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r11, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_skbprio={{0xc}, {0x8, 0x2, 0x7}}]}, 0x38}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080)
ppoll(&(0x7f0000000280)=[{r6, 0x16e2}, {r1, 0x4066}, {r0, 0x248}], 0x3, &(0x7f0000000300)={0x0, 0x3938700}, &(0x7f0000000340)={[0x1]}, 0x8)
r12 = socket(0x400000000010, 0x3, 0x0)
r13 = socket$unix(0x1, 0x1, 0x0)
r14 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_SELECTION(r14, 0xc040565e, &(0x7f0000000240)={0xa, 0x0, 0x2, {0x4000046, 0xffffffe6, 0xfffb, 0xf7168000}})
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r15=>0x0})
sendmsg$nl_route_sched(r12, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r15, {0xfff2, 0xa}, {0xffe0, 0x7}, {0x4, 0xf}}, [@TCA_CHAIN={0x8, 0xb, 0xa0df}, @filter_kind_options=@f_flow={{0x9}, {0xc, 0x2, [@TCA_FLOW_MODE={0x8}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x880}, 0xc881)
close(0x3)
syz_emit_ethernet(0x46, &(0x7f0000000080)=ANY=[@ANYBLOB="0380c2000000bbbbbbbbbbbb0800450000140000000000019078ac1e0001ac1414aa030490781200183f2500000000000000000100007f000001ac1414aa95b8c0cfd88f036b"], 0x0)
r16 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r16, 0x29, 0x40, &(0x7f0000000e40)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x300, 0x18c, 0x203, 0x300, 0x19030000, 0x3f0, 0x2e0, 0x2e0, 0x3f0, 0x2e0, 0x7fffffe, 0x0, {[{{@uncond, 0x300, 0x2d8, 0x300, 0x0, {0x1000000}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xe}, {}, {0x0, 0x0, 0x3}, {0x2}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {0x16}, {}, {}, {0x7}, {}, {0x0, 0x0, 0x0, 0x101}, {}, {}, {}, {}, {}, {}, {0xfffe}, {}, {}, {}, {0x0, 0xfd}, {}, {0x7a04}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {0xb84, 0x0, 0x0, 0xf00}, {0x0, 0x1, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}]}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0x4}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xb, 'syz1\x00', {0x6c8}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520)

29.887336463s ago: executing program 1 (id=1019):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0x38, &(0x7f0000000280)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000081003600080045000026000000000011cd4f3815588b27f29078000000000000000000004e200012907800"/64], 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r1, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d75a3d0001011fd000000000000000000000000000000000000012000109078020700018000"/74], 0x4a)
recvfrom(r0, &(0x7f00000000c0)=""/10, 0xa, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0xf0b, 0x3, 0x25dfdbfc, {0x60, 0x0, 0x0, 0x0, {0xfff3, 0xffff}, {0x2, 0xffff}, {0xfff3, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_RAW={0x8}, @TCA_CAKE_TARGET={0x8, 0x8, 0x6}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x44045}, 0xc090)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)
mount$bind(0x0, &(0x7f00000002c0)='./file0/file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x18d883, 0x0)
mount$bind(0x0, &(0x7f0000001740)='./file0\x00', 0x0, 0x200018, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0xfffffffffffffe51, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40008d4}, 0x8000)
sendmsg$NFT_BATCH(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000114000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000240)={0x0, 0x68, &(0x7f0000000000)={&(0x7f0000001940)=ANY=[@ANYBLOB="140000001000010000000000e80000000000000a50000000120a09f50000000000000000020000000900020073797a3100000000080004400000000f0900010073797a3000000000080003400000000a"], 0x64}}, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="0103000000d70c349661b797aafc02000000000000000000000000002c2afc37f418731700000000"], 0x28)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})

28.829239424s ago: executing program 1 (id=1034):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000000600)}}], 0x1, 0x4008040)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x4, 0x3}}, './file0\x00'})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000300)="ad", 0x1)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000a1fa000324bd7002fd"], 0x14}}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000000)=@x86={0x4, 0x5, 0x17, 0x0, 0x3, 0xf9, 0x2, 0x79, 0xff, 0x88, 0x1, 0x1, 0x0, 0x8, 0x1, 0x8, 0x72, 0x7, 0xba, '\x00', 0x3})
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 38)

28.065739678s ago: executing program 1 (id=1045):
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000000)="e22e2a8965aa205e22485664e9ac703eef85f08ec91e2eb36013caf8485d4dd919e7ddcd023ecb6653d079db6fe08d8f84af47ee21a84aa62fbbef7a82b90a9d19cb8209f7cb45c61cfb642734b66feee8172f5024e1df8c3ef7e2117bc480286999373933b368fc4ee386b317e1a7ade49c4ed5077e528569c1e8db2865e2ccb8d3af3d4581a2a0333c502a7aef6fd2ecb4ab2d545087faca842857202024877b1cdf9930320f8a19931f034872eb6e6f06a99280570cca0a8f163b833b0fa2740301d90e67b1f53e2336794ca38bca59222c07b753ddc9fb7ee605c93412fb25af7ef5cf", 0xe5}], 0x1)
r1 = fsopen(&(0x7f0000000180)='ntfs3\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000080)='iocharset', &(0x7f00000000c0)='io#harset', 0x0)
write$binfmt_misc(r0, &(0x7f0000000100), 0xfef0)

27.94487395s ago: executing program 32 (id=1045):
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000000)="e22e2a8965aa205e22485664e9ac703eef85f08ec91e2eb36013caf8485d4dd919e7ddcd023ecb6653d079db6fe08d8f84af47ee21a84aa62fbbef7a82b90a9d19cb8209f7cb45c61cfb642734b66feee8172f5024e1df8c3ef7e2117bc480286999373933b368fc4ee386b317e1a7ade49c4ed5077e528569c1e8db2865e2ccb8d3af3d4581a2a0333c502a7aef6fd2ecb4ab2d545087faca842857202024877b1cdf9930320f8a19931f034872eb6e6f06a99280570cca0a8f163b833b0fa2740301d90e67b1f53e2336794ca38bca59222c07b753ddc9fb7ee605c93412fb25af7ef5cf", 0xe5}], 0x1)
r1 = fsopen(&(0x7f0000000180)='ntfs3\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000080)='iocharset', &(0x7f00000000c0)='io#harset', 0x0)
write$binfmt_misc(r0, &(0x7f0000000100), 0xfef0)

27.669214215s ago: executing program 2 (id=1053):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000006c0)={'bond0\x00', 0x200})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x80000, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000022c0)=@newtfilter={0x94, 0x2c, 0xd27, 0x170bd2b, 0x2, {0x0, 0x0, 0x0, r3, {0x0, 0x10}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_flow={{0x9}, {0x64, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1e3a9}, @TCA_FLOW_ACT={0x50, 0x9, 0x0, 0x1, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x1003d1, 0x3, 0x20000000, 0x6, 0x6}, 0x68}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}}]}, 0x94}, 0x1, 0x0, 0x0, 0xc804}, 0x2)
close(r1)
socket$unix(0x1, 0x2, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1004, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x24c01, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @random="af75355d1696"})
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=r3, @ANYRES32, @ANYBLOB="f7ffffff042629ecf743a73a9900"/28], 0x50)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000001c0095"], &(0x7f00000002c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x29}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r4, <r6=>0xffffffffffffffff}, &(0x7f00000004c0), &(0x7f0000000540)=r5}, 0x20)
r7 = socket$kcm(0x11, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c0)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r6, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYRESHEX=r0, @ANYRESHEX=r8])
mkdir(&(0x7f0000000280)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r9 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='.\x00', 0x0, 0x88)
getdents(r9, 0xfffffffffffffffd, 0x58)
setsockopt$sock_attach_bpf(r7, 0x107, 0xf, &(0x7f0000000600), 0x4)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$kcm(r7, &(0x7f0000000280)={&(0x7f00000001c0)=@xdp={0x2c, 0x0, r11, 0x1c}, 0x80, &(0x7f0000000a80)=[{&(0x7f00000002c0)="27030200dc0f24000e00003c000c00006000ff840000000200000003125ce882cbf490d908f1523f000000032d9c2740e260a09c6911cda856d5ea9a141bffc6e29a5789796eec81944d7dff184d3319ce9dfb5c1fcd66e67b91a916a67ece64299573503cbc7e27133c4e5ed68c7a9b407a275bcff3432a487ebef21275b91d386164b443c1dfdf63831812e0471639a99b97a9923e4659cd5d", 0x9a}, {&(0x7f0000001300)="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", 0xc9c}, {&(0x7f0000000b00)="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", 0x162}, {&(0x7f0000000880)="3ea19d23fdff85b98167afea622d36dd6e11d4df65aece0cffbb361fd19ec08ddad9340531b1c05e106ea2b36a41070b0be2be119aa8c7d8444f4341cccd89faa6253e1ee49e9132f015fd9988ae0b16c886cf6c2f29efe80b9278733906d142aff5d2926a9a0f79bc832754fc4c564bc7c61f70be9565f15584fd519f000000005d433935485cdc2ffa2be958749701504aefae9ac942fd1dfc86b59a3d1caf7923edfc844f870f12b251ce19cedc69367b00003c404d4ac7409ae7f612cd45bc47765d0c3b530a47f46c3a9887c3e6d67734e44835fcd6d23a0d7e00b73ac7", 0xe0}, {&(0x7f0000000500)="1cd2cf486bb5a90a257eaca10edd9b4dcc13b0dbd20235a98d552ebee1ac91839173dfc5f022ad537cc60d1fc4ff85bed2d5", 0x32}, {&(0x7f0000000980)="2a4ae9592dde05637fe851abd378a2061c4aaa35178cd1429038a4020f7c215e54928a5bb10dc587198d3610a58a8c", 0x2f}], 0x6}, 0x8bb3a301eb080b)

2.212996731s ago: executing program 2 (id=1055):
r0 = socket$inet_sctp(0x2, 0x1, 0x84) (async)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r2 = syz_open_dev$dvb_frontend(&(0x7f00000015c0), 0x0, 0x400)
ioctl$FE_GET_PROPERTY(r2, 0x80106f53, &(0x7f0000000000)={0x15, &(0x7f0000000280)=[{0x26, '\x00', @data=0xfff, 0x5}, {0x44, '\x00', @buffer={"80ca30691fc10ccae81c0dda7e6e736872a3768d01f5859969d43a0522aef412", 0x20}, 0xa}]})
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000380)=0x5, 0x4) (async)
r3 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2)
ioctl$FE_SET_PROPERTY(r3, 0x40106f52, &(0x7f0000000000)={0x2e, &(0x7f0000000140)=[{0x3c, '\x00', @st={0x4, [{0x3, @svalue=0xf0}, {0x3, @uvalue=0x9}, {0x1, @uvalue=0xffffffbfffffffff}, {0x2, @svalue=0x7fffffffffffffff}]}, 0x80}]})
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000003c0)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0xfffe, 0x0, 0x0, 0x300, 0x7fffffff}, 0x9c)

2.212260115s ago: executing program 2 (id=1057):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20d42, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
open(&(0x7f00000000c0)='./file0\x00', 0x108843, 0x98)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000500)={'veth1\x00', &(0x7f0000000200)=@ethtool_per_queue_op={0x4b, 0xf, [0xa, 0x1, 0x7fff, 0x1, 0x4, 0x0, 0xd, 0xffb, 0x7, 0xb69, 0xc1, 0x4, 0x1, 0x3, 0x5, 0x101, 0x1000, 0x9, 0x7, 0x3, 0x1, 0xfffffffa, 0x0, 0x6, 0x100009, 0x4, 0x7, 0x5, 0x100000, 0x762, 0x2, 0xd, 0xe, 0x2b12, 0xff, 0x6, 0x7ffffffe, 0xb, 0x7, 0xbed4, 0x8, 0x8, 0x3, 0x0, 0x11000, 0x8, 0x5, 0x79b, 0x2, 0x1, 0x7f, 0x4, 0xa, 0x7, 0xf, 0x0, 0xd7, 0x1fa0860a, 0x7, 0xaa, 0x81, 0x2, 0x180000, 0x4007, 0x8b, 0x5, 0x2af, 0xf7, 0x5, 0x2, 0x4, 0x9, 0x4, 0x7, 0x4009, 0x0, 0x4, 0xfffffffe, 0x400, 0x752, 0x0, 0x1005, 0x3, 0x10001, 0x2, 0xffffffff, 0x6, 0x6, 0x9, 0x9, 0xfdfeffff, 0x2, 0x2, 0x6, 0x100, 0x0, 0x252, 0x2000081, 0xb, 0x5, 0x20006, 0x5, 0x2, 0xb, 0x2, 0xd9a, 0xd, 0x2a2, 0xfffffffd, 0x3, 0x7fffffff, 0x5, 0x8, 0x0, 0x4, 0x2, 0x40, 0xfffffeff, 0x4, 0x3, 0x401, 0x66cd, 0x8, 0x8, 0x1, 0x1fc, 0xc5c, 0xffffffff]}})
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

2.172927922s ago: executing program 4 (id=1061):
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = dup(r1)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f00000000c0)=[@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x22}}], 0x10)
sendmsg$inet6(r1, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000180)=[{&(0x7f00000004c0)="99", 0x1}], 0x1}, 0x4048043)
r3 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000200)=[@in={0x2, 0x4e24, @local}], 0x10)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r4, 0x8910, &(0x7f0000000000)={'vlan0\x00', @ifru_ivalue=0x8})
ioctl$sock_netdev_private(r4, 0x8914, &(0x7f0000000000))
sendto$inet6(r3, &(0x7f0000000040)="01", 0x1, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback, 0xc5f}, 0x1c)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1, 0xfffffffc}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000140)={<r6=>0x0, 0x9, 0xa0f}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000280)={r6, 0x6, 0x6, 0x0, 0x40, 0xa}, &(0x7f00000002c0)=0x14)
write$binfmt_misc(r5, &(0x7f0000000000), 0xd)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@newlink={0x44, 0x10, 0x1, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x3dd88, 0x17200}, [@IFLA_IFNAME={0x14, 0x3, 'bridge_slave_0\x00'}, @IFLA_VFINFO_LIST={0x4}, @IFLA_ADDRESS={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}}]}, 0x44}, 0x1, 0x8100, 0x0, 0x4010}, 0x2800804c)

2.172567411s ago: executing program 2 (id=1062):
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r0 = epoll_create(0x9)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x5, [@struct={0x3, 0x0, 0x0, 0x4, 0x1, 0x7}, @func_proto={0x0, 0x3, 0x0, 0xd, 0x0, [{0x0, 0x1}, {0x3, 0x1}, {0x0, 0x1}]}]}, {0x0, [0x61, 0x61, 0x5f]}}, 0x0, 0x4d, 0x0, 0x1}, 0x28)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = epoll_create(0x7)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, 0x0)
set_mempolicy(0x2002, &(0x7f0000000000)=0x9, 0x9)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000003000000040122000b"], 0x48)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x18, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1, r5}, 0x38)
r6 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_MIUX(r6, 0x118, 0x1, 0x0, 0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000140)={0x60000004})
sendmsg$NFQNL_MSG_VERDICT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x4)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r7, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x4})
ioctl$sock_netdev_private(r7, 0x89f1, &(0x7f0000000000))
bind$nfc_llcp(0xffffffffffffffff, &(0x7f00000001c0)={0x27, 0x0, 0x0, 0x2, 0x0, 0x9, "c46e9fd1a84b7fefa0bf2cca6beb9363a680b652a86bcf56a1b9f4e6b54cc6beca5462202c484c10ca5386103a5ccbe47b7b9aa6d8d701a3ba6a6c0ce8b978", 0x1}, 0x60)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, 0x1)
syz_usb_disconnect(0xffffffffffffffff)

2.088125649s ago: executing program 3 (id=1064):
r0 = syz_clone(0x40000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x34, r2, 0x513, 0x70bd26, 0x25dfdbff, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000044}, 0x40004)
ptrace$ARCH_SET_GS(0x1e, r0, 0x0, 0x1001)
r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
recvmmsg(r3, &(0x7f0000002800)=[{{&(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, <r4=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000080)=""/23, 0x17}, {&(0x7f00000000c0)=""/37, 0x25}, {&(0x7f0000000100)=""/83, 0x53}], 0x3, &(0x7f00000001c0)=""/85, 0x55}}, {{&(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @multicast1}}}}, 0x80, &(0x7f00000006c0)=[{&(0x7f00000002c0)=""/251, 0xfb}, {&(0x7f00000003c0)=""/210, 0xd2}, {&(0x7f00000004c0)=""/169, 0xa9}, {&(0x7f0000000580)=""/33, 0x21}, {&(0x7f00000005c0)=""/224, 0xe0}], 0x5}, 0x80000000}, {{&(0x7f0000000740)=@can, 0x80, &(0x7f0000000b00)=[{&(0x7f00000007c0)=""/217, 0xd9}, {&(0x7f00000008c0)=""/145, 0x91}, {&(0x7f0000000980)}, {&(0x7f00000009c0)=""/249, 0xf9}, {&(0x7f0000000ac0)=""/7, 0x7}], 0x5, &(0x7f0000000b80)=""/167, 0xa7}, 0x8}, {{0x0, 0x0, &(0x7f0000000d40)=[{&(0x7f0000000c40)=""/218, 0xda}], 0x1, &(0x7f0000000d80)=""/124, 0x7c}, 0xff}, {{&(0x7f0000000e00)=@hci, 0x80, &(0x7f0000000e80), 0x0, &(0x7f0000000ec0)=""/220, 0xdc}, 0xb255}, {{&(0x7f0000000fc0)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80, &(0x7f00000026c0)=[{&(0x7f0000001040)=""/100, 0x64}, {&(0x7f00000010c0)}, {&(0x7f0000001100)=""/253, 0xfd}, {&(0x7f0000001200)=""/152, 0x98}, {&(0x7f00000012c0)=""/218, 0xda}, {&(0x7f00000013c0)=""/254, 0xfe}, {&(0x7f00000014c0)=""/4096, 0x1000}, {&(0x7f00000024c0)=""/208, 0xd0}, {&(0x7f00000025c0)=""/249, 0xf9}], 0x9, &(0x7f0000002780)=""/95, 0x5f}, 0x101}], 0x6, 0x2041, &(0x7f0000002980)={0x77359400})
getsockopt$inet_sctp_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f0000000980), &(0x7f0000000e80)=0xe)

1.959424207s ago: executing program 3 (id=1066):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x8, 0x3}]})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='status\x00')
preadv(r1, &(0x7f00000001c0)=[{&(0x7f0000001140)=""/4096, 0x1000}], 0x1, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0xc402, 0x80)
write$binfmt_script(r2, &(0x7f0000000400)={'#! ', './file1'}, 0xb)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000003bc0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
ioctl$VHOST_GET_VRING_BASE(r2, 0xc008af12, &(0x7f00000000c0))
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r4, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)=[0x5], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r5 = io_uring_setup(0x299, &(0x7f0000000300)={0x0, 0xf76b, 0x2, 0xfffffffd, 0xfffffffe, 0x0, r0})
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffdfffff9, 0x4031, 0xffffffffffffffff, 0xb7b56000)
io_uring_register$IORING_REGISTER_RING_FDS(r5, 0x14, &(0x7f0000001780), 0x1)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f0000000440)={{0x1, 0x5, 0x76bb, 0x7, 'syz1\x00', 0x4}, 0x0, [0x5, 0x3, 0x63a4, 0x9, 0x8, 0x2, 0x4, 0x7, 0x5, 0x8001, 0x4, 0x37, 0x1000, 0x8, 0xf, 0x36a0, 0x5, 0xb093, 0xaa0, 0x0, 0x2, 0x100, 0x8001, 0x9, 0xad6, 0x3, 0x7, 0xffffffff, 0xfffffffffffff2ee, 0x8, 0xea, 0x0, 0x6, 0x5, 0x4, 0x3, 0x2, 0x5, 0xa, 0x8, 0x7, 0x39, 0x6, 0xffffffffffffffff, 0x7321820c, 0x1000, 0x9, 0x3, 0x2, 0x3ff, 0x29, 0xd2e, 0x0, 0x0, 0x1000, 0x8000000000000001, 0x9, 0x7, 0x8000, 0x9, 0x4, 0x1, 0xffff, 0xc0, 0x5, 0xffffffffffffffff, 0x7fff, 0x7, 0x8ce9, 0x9, 0x9, 0x80000000000, 0xccb, 0xd, 0x9, 0x7fff, 0x400, 0x8000, 0x3, 0xfffffffffffffe01, 0x791bc718, 0x18, 0x4c, 0xffff, 0x6, 0x2, 0x5, 0x2, 0x40, 0x2, 0xc0000000, 0x27b, 0x3, 0x7, 0x6, 0x4, 0x14b38b09, 0x9, 0x196, 0xd, 0x0, 0x7, 0x8, 0x306, 0x401, 0x8, 0x6, 0x4, 0x7, 0x8, 0x3, 0xfffffffffffffff9, 0x5, 0x2, 0x2, 0x84, 0x3, 0xffffffffffffffc2, 0x6, 0x9, 0x1, 0xfffffffffffffffc, 0x7, 0x8, 0xef36, 0x18, 0xe, 0x8]})

1.297792825s ago: executing program 0 (id=1071):
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip_vti0\x00', &(0x7f00000001c0)={'tunl0\x00', <r0=>0x0, 0x10, 0x1, 0x7, 0x8, {{0xf, 0x4, 0x2, 0x31, 0x3c, 0x64, 0x0, 0x5, 0x29, 0x0, @rand_addr=0x64010101, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ssrr={0x89, 0x13, 0xf0, [@multicast2, @rand_addr=0x64010100, @multicast1, @multicast2]}, @noop, @ssrr={0x89, 0x13, 0xab, [@local, @multicast1, @loopback, @remote]}]}}}}})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000640)={0xffffffffffffffff, 0xe0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0xa, 0x8, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xe6, &(0x7f0000000440)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000480), &(0x7f00000004c0), 0x8, 0x800, 0x8, 0x8, &(0x7f0000000500)}}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=@newneigh={0x3c, 0x1c, 0x100, 0x70bd29, 0x25dfdbfd, {0x1c, 0x0, 0x0, r0, 0x8, 0x2, 0x1}, [@NDA_PORT={0x6, 0x6, 0x4e24}, @NDA_SRC_VNI={0x8, 0xb, 0x8000}, @NDA_MASTER={0x8}, @NDA_SRC_VNI={0x8, 0xb, 0x2}]}, 0x3c}}, 0x4890)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e000000180002"], 0x50}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x8000010}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0x6, 0xffff}, {0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x7)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f00000002c0)=r2)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x50}}, 0x4008840)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.197228743s ago: executing program 4 (id=1072):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'wlan0\x00', 0xfffffffe})
ioctl(r2, 0x8b22, &(0x7f0000000040))
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x3, 0x0, 0x2, 0x2000, &(0x7f0000008000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x408d6}, 0x24000010)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'wlan0\x00', 0xfffffffe}) (async)
ioctl(r2, 0x8b22, &(0x7f0000000040)) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x3, 0x0, 0x2, 0x2000, &(0x7f0000008000/0x2000)=nil}) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0) (async)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) (async)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x408d6}, 0x24000010) (async)

1.138448356s ago: executing program 0 (id=1073):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000000), 0xffffffffffffffff)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f000000b000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f00000002c0)="2e64362e3e0f01c4360f001f360f9f02660f3817b8bd0e660fc7b20f000fc7190fc7be7f60baf80c66b8ec34228066efbafc0cec66b80000000066b980bd00c00f326635001000000f30dfcdbaf80c66b8b010348966efbafc0c66b8d700000066ef", 0x62}], 0x1, 0x20, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f00000003c0)={0x14, r1, 0x1, 0x70bd29, 0xfffffffe, {0x1e}}, 0x14}, 0x1, 0x0, 0x0, 0x4000081}, 0x20044405)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000300)={0x2, 0x4e21, @rand_addr=0x64010102}, 0x10)

1.015159877s ago: executing program 3 (id=1074):
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00')
pread64(r0, &(0x7f000001a240)=""/102400, 0x19000, 0x40000ffffffff8)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x60081, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r2, 0x29, 0x43, &(0x7f0000000240)=0x3b, 0x4)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r4, 0x4048aecb, &(0x7f0000000480)={0x7, 0x0, [{0xc0000001, 0xffffffff, 0x5, 0xffffff89, 0x1000000, 0x6, 0x3}, {0x1, 0x4000004, 0x0, 0x8, 0x4aed, 0x1, 0x6}, {0x0, 0x8, 0x6, 0x80000000, 0x7ffffdff, 0x8005, 0x31}, {0x80000019, 0xe5f, 0x6, 0x8, 0xdf3, 0x6, 0x80000001}, {0x80000000, 0x2ab, 0x1, 0xd, 0x3, 0x7ff, 0x400}, {0xc0000000, 0x100, 0x4, 0x7, 0x400003, 0x40000005, 0xe0000}, {0x80000000, 0x2, 0x3f91c194927b8e21, 0xfffffff7, 0xfffffff9, 0x8, 0x6}]})

1.014828613s ago: executing program 4 (id=1075):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xe}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x48, 0x2, {{0x100, 0x3, 0x6361, 0x5, 0xfffffffd, 0xfffffff3}, [@TCA_NETEM_SLOT={0x2c, 0xc, {0x8, 0xffff, 0xe30f, 0xc, 0x100000000, 0x4d}}]}}}]}, 0x78}, 0x1, 0x0, 0x0, 0xc04c001}, 0x20000804)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

630.783329ms ago: executing program 0 (id=1076):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000020a010200000000000000000a0000060900010073797a310000000008000240000000018c000000020a010100000000000000000000000369000600e62807258a6d38caf4cb1d7a776a7a05e57912414e63207c5e61d47bb4016b21bd5593b033b0968722f2f0f4818a1a13fbb43e79d0ae674d071c0164df9d3701cc15211300766b6ebe326ada9e49cca5c2a07460e46e35eabfb48a4cd2cd83790d7e705b010000000900010073797a31000000001c000000090a030000000000000000000a00000208000c40"], 0xf8}, 0x1, 0x0, 0x0, 0x2000c814}, 0x4000) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000004000ffff0900010073797a30000000000900020073797a3100000000140003800800014000000000"], 0x138}, 0x1, 0x0, 0x0, 0x20040855}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d58001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c00028008000140000000001400017b090001006cdbf80789f3f947dd0002800800"], 0xe4}, 0x1, 0x0, 0x0, 0x8001}, 0x20050840) (async)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)
mount$nfs4(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="6673633d8f"]) (async)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x2e}], 0x1}, 0x84)

552.738929ms ago: executing program 0 (id=1077):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x30, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x78}}, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'dummy0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000000)={'team0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c0000001000fbff27bd7002fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="14100400040004001c00128009000100766c616e000000000c000280060001000400000008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6], 0x4c}, 0x1, 0x0, 0x0, 0x28001}, 0x8000002)
r7 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r8=>0x0})
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e"], 0x70}}, 0x0)
sendmmsg(r9, &(0x7f0000000180), 0x3ef, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000022c0)=@newtfilter={0x94, 0x2c, 0xd27, 0x170bd2b, 0x80002, {0x0, 0x0, 0x0, r8, {0x0, 0x10}, {}, {0x1e, 0xffe0}}, [@filter_kind_options=@f_flow={{0x9}, {0x64, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1e3a9}, @TCA_FLOW_ACT={0x50, 0x9, 0x0, 0x1, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x1003d1, 0x3, 0x20000000, 0x6, 0x6}, 0x68}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}]}, 0x94}, 0x1, 0x0, 0x0, 0xc804}, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeed, 0x8031, 0xffffffffffffffff, 0xf6d0d000)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
close(r2)
socket$unix(0x1, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'erspan0\x00', @random="af650a1d00"})
r10 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r10, 0x107, 0xf, &(0x7f0000000600), 0x4)
r11 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})

329.225887ms ago: executing program 2 (id=1078):
r0 = syz_open_dev$dvb_demux(&(0x7f0000000000), 0x8, 0x20000)
ioctl$DVB_DEMUX_DMX_GET_PES_PIDS(r0, 0x800a6f2f, &(0x7f0000000040))
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000080)={<r1=>r0, 0xffff, 0x9, 0x7})
ioctl$PPPIOCSMAXCID(r1, 0x40047451, &(0x7f00000000c0)=0xfffffffb)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000100))
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000340)=0x800, 0x12)

328.521338ms ago: executing program 3 (id=1079):
r0 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x20000011)
sendmsg$kcm(r0, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0xfffe, 0xfffffffd, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x80, 0x0}, 0xe07e872420dfefca) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(r2, 0x28, 0x6, &(0x7f0000000100), 0x10) (async)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="d06167f2b4319f6f3ed7356b953af5bbcb805930e8fbc9523c128f6ab7572620fec684efb509fb6067dca059f4e687d7c6a2e6f56d3aade4dcdee7dd76ae5f7265bb41808747634eca7bb26705c5c4f160e4b67dce80da1597a1eb2a52061154c181afcfbb1310eb03ac6809677907c0ce0ef43d59bd44776226c11c7049fb3aa4f391180f8bce8f072b877730390b", @ANYBLOB="010426bd7007f8dbdf25020000cebe8303aef4b15129d41680b57c126b7013", @ANYRES32], 0x1c}}, 0x4008895)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000003c0)=<r3=>0x0)
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0) (async)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0)=<r7=>0x0)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="010026bd7000fcdbdf250200000008000100", @ANYRES32=<r8=>r7], 0x1c}}, 0x840)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000400)=<r9=>0x0)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYRES32=r5, @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRESOCT=r8, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="57fb0100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r3, @ANYBLOB="08000100", @ANYRES32=r7, @ANYBLOB='\x00\x00\x00\x00', @ANYRES32=r9, @ANYBLOB], 0x5c}}, 0x4000800) (async)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003580)=ANY=[@ANYBLOB="20000000240007012ebd7000fbdbdf25027c00000c0001800808020001000000"], 0x20}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010)
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xfc, 0x7fff0000}]})
r11 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r12 = syz_open_dev$vcsu(&(0x7f0000000080), 0x8, 0x90000)
fsmount(r12, 0x1, 0xf9)
bind$inet6(r11, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c) (async)
listen(r11, 0xfffffffc) (async)
r13 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r13, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) (async)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r14=>0x0}, 0x1000) (async)
r15 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz0\x00', 0x200002, 0x0)
openat$cgroup_subtree(r15, &(0x7f00000001c0), 0x2, 0x0)
setresuid(r14, r14, 0x0) (async)
setreuid(r14, 0x0)
close_range(r10, 0xffffffffffffffff, 0x0)

327.357102ms ago: executing program 4 (id=1080):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x5, &(0x7f00000007c0)=@framed={{0x18, 0x2}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xa}]}, &(0x7f00000005c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="05"], 0x10) (async, rerun: 32)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000440)={r1, &(0x7f0000000440), &(0x7f0000000040)=@udp=r0}, 0x20) (async, rerun: 32)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x21) (async)
syz_emit_ethernet(0xffffffffffffffac, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b142b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c04594282423424d00", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2003}, 0x94) (async)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x9}, 0x94) (async)
r4 = socket$netlink(0x10, 0x3, 0x0)
bind$inet(r0, &(0x7f00000006c0)={0x2, 0x4e21, @private=0xa010100}, 0x10) (async)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newlink={0x3c, 0x10, 0xffffff1f, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x34080}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_TOS={0x5, 0x9, 0xfb}]}}}]}, 0x3c}}, 0x804) (async, rerun: 32)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) (rerun: 32)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r8=>0x0}) (async, rerun: 32)
r9 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
sendmsg$NL80211_CMD_REGISTER_FRAME(r9, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)={0x28, r7, 0x1, 0x70bd2a, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x4}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x200}]}, 0x28}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(r4, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x30, r5, 0x400, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x7e}, @val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x40, 0x6a}}}}, ["", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x4001}, 0x2004c005) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
recvmmsg(r0, &(0x7f0000000400)=[{{0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/247, 0xf7}, {&(0x7f0000001900)=""/4096, 0x1000}], 0x3}, 0x2000b}], 0x1, 0x40000021, 0x0)

327.15817ms ago: executing program 2 (id=1081):
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = dup(r1)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f00000000c0)=[@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x22}}], 0x10)
sendmsg$inet6(r1, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000180)=[{&(0x7f00000004c0)="99", 0x1}], 0x1}, 0x4048043)
r3 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000200)=[@in={0x2, 0x4e24, @local}], 0x10)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r4, 0x8910, &(0x7f0000000000)={'vlan0\x00', @ifru_ivalue=0x8})
ioctl$sock_netdev_private(r4, 0x8914, &(0x7f0000000000))
sendto$inet6(r3, &(0x7f0000000040)="01", 0x1, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback, 0xc5f}, 0x1c)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1, 0xfffffffc}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000140)={<r6=>0x0, 0x9, 0xa0f}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000280)={r6, 0x6, 0x6, 0x0, 0x40, 0xa}, &(0x7f00000002c0)=0x14)
write$binfmt_misc(r5, &(0x7f0000000000), 0xd)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@newlink={0x44, 0x10, 0x1, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x3dd88, 0x17200}, [@IFLA_IFNAME={0x14, 0x3, 'bridge_slave_0\x00'}, @IFLA_VFINFO_LIST={0x4}, @IFLA_ADDRESS={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}}]}, 0x44}, 0x1, 0x8100, 0x0, 0x4010}, 0x2800804c)

250.10042ms ago: executing program 3 (id=1082):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000022c0)=@newtfilter={0x94, 0x2c, 0xd27, 0x170bd2b, 0x2, {0x0, 0x0, 0x0, r3, {0x0, 0x10}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_flow={{0x9}, {0x64, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1e3a9}, @TCA_FLOW_ACT={0x50, 0x9, 0x0, 0x1, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x1003d1, 0x3, 0x20000000, 0x6, 0x6}, 0x68}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}}]}, 0x94}, 0x1, 0x0, 0x0, 0xc804}, 0x2)
close(r1)
socket$unix(0x1, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @random="af75355d1696"})
r4 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x4)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$kcm(r4, &(0x7f0000000280)={&(0x7f00000001c0)=@xdp={0x2c, 0x0, r6, 0x1c}, 0x80, &(0x7f0000000a80)=[{&(0x7f00000002c0)="27030260dc0f24000e00003c000c00006000ff840000000200000003125ce882cbf490d908f1523f000000032d9c2740e260a09c6911cda856d5ea9a141bffc6e29a5789796eec81944d7dff184d3319ce9dfb5c1fcd66e67b91a916a67ece64299573503cbc7e27133c4e5ed68c7a9b407a275bcff3432a487ebef21275b91d386164b443c1dfdf63831812e0471639a99b97a9923e4659cd5d", 0x9a}, {&(0x7f0000001300)="76e69c0141b4626c18e58316fb1785bc79a094726e33891c6d73f43317b7de3105b7a250790f8a23088b7292aad0049477fd7b736036a2ba810a11b6e5e83b06e0c428d362a29030f3fbb8f93a957f85472c59a37fbc2dc4abf47a23fe1bbab86b3666155606864b97f7615a55989cd2e143f1a9aca24050db9efff1f1639b55a2a771ec9e91f94fb670c3f35f31c40170189010e598500aa376763444ecaf5df2a31e04eda4201194c49c48d817c9d8d50d47c014b329be33b127527fe321b097a15f48ef82a32b10e24a1b56e981b91257aeddd7fee2fe035a1a164b3906ca184ad08f294cde3dfa48743847cac62a87c2d96176a9f6b4278dc95c6c637294986fa9e3e82b504341f82bf314389b0af7c8e07cb6f5ef9bcd83993c880ef2b2aa313a124bee3deb3133338c291d698f04b796be5514c81bad54c22190acda8145b1c14c4b916e2f5c2f10a8702b90d26e0332605edbc351edcd5621cf8c0f1585b1a53879f9ad931c18b15426856dc1c800e4cce36c6c1bf880c0c40a718810ff4793eba9e39d7cd9b351905a845dd3064613cd6f75802a6bc51c1524b412a2a68e6fa4886bd13b48aa9a12a7ace6fa08ccc86cda842d2f4b564a76a9e8adad2249e0dc200a2e647d34ef0dc23dd85674cce8f8e08a6c5ea76db48ac832f2a6e7514c9ab9f7e99fb3a7ec6cbc1ab45e12d151176cd6a044572928dfd2b72e3557d037b12328f7d4388a4ff8a8e890b2cdaa61fd525dfd3d0feda9c066feff70d89e8fbaaa4ac79e0b814c7b0cb9de9b5915ee30c12c55dc302fa36f96a6b4a437e2f7bac25fb284eec70388c1d4ee9fb51483c801007a74c1806141802eb107b80a047315c048db3671e35139544988b51a23136b02151a06114cc80c05b772786a505edc6d8f74a66b126a940f06000d7abbf3224b9e1f86eb693778968b3e982f197570ffa5732524be57aba33a59cf0032ef61b52f7c2fc2cd992d616452316ee21e7361cfc527acb09f0f46bb8ef013f28d7f615b09037d26e0715d927afee6b9878adad923ce6a6114bb8d3463be786232330a028c152adb31596c77a60231d53fbb8ce73509f37100f69c9004429e904b644de72b865fdccedbc99927542df25180f5880d20590900a9e8b711c8867b67b98d48caf8259797b41284f6e52aa5177ca06a4f25a568ea3a5dd13c6711436d63b814da12b72470eb3468860e5ef86bf381babc6cec73757a1c38a8cf9887bb69045b155ed0ae6c5f2c07f3b9f02c6f02a9ee474e3a9d75e67694bb2a0f28a672a5883dc9688ca2166f914bb1cfc70685907bfa4e9693d9620969fa41ca907751335193417b468de3bab8bf0b7438abe80f494c95e017f41e9a232c52153bc58adf7cc845e770ba119756bad683ff9c701cdd34bc540d8164cf3099c011b328fc0a0445e8eb8085c8cd2fdaf22e1dea9d04454b37af3c83dd3f667f73ca9eb0c3e9bc328b536a1ae9a449b24e227bb05692b16560756d9f0cb3200df43c26d3dbed542f7bd4e3d1329c8e9f631520355e9254b1687197c8374111ee1de4c1784d843aa26992280c9ec267965b8d4d6461afcd597ce636316f5c4ac8f1bec9aa16acd974798c10475e53310630a36796ab4bba263ec76008a821ee9b58861e77f1aa341b9a1bcc9e21c9eb0625297604cdf14e77040e46603597f87d00053c7aafd8130813102105463ea538990f880525cd80e12c426eda2f87a4aefe29505de1a924fad50d9b97a37418331a542333585105ca18976435917721e80f3c631f268b8517f00dc9c8da872328a27e296aa7422b290327feda241d7ea0cd81750d044969e4429197ee55e8111193aee3df3bf37961a4323ac640b0fb11b19cb4e28756defd9f2e1ef3adc3b0aeb5102399dde99e5e67ff4d18c6475440612f42274d17ebc0280f73c89e77fd9dd652edb5ea4e7ad7326dd4c69cea26b47d8314ad412f8b96f2a33a6323c1dc4050ffde22b31656c22b8a5597c3c50cbf4efa9c8d2e4200ccab35ad8badc09d8e05a7abc3dfdce491ecd682dde18f2da41bff3c2e293ddc82df8a1ca558a08b7937bd7228ed25522f41bcdfba8c01a7aa93af6e58b3912dace81ffc5f079e8a4e9d45778afa57909a8e9138abbf4ae6bdbc571d8cc0fb68755b644934fc98fdb263098afab3ffed8e80ea4e935852d9577935c0a5b03425e5e1c3327213d0068dea19165602000000076fe3ad291b73f08e5bf3cb50f60510b85f09bec5dd2118230541448370fa2d1b362ce6c2eee65909ef08bbad2e38ef2fa7d6c0bbb2fbf90e1a63b26c8e41f17b35b1e55885ac66f263d0f42a27a7823d664e3ae65909dd411f05371f21e5bbf7424d41b966e2e8891ae13c3fb700987789f79cca95807ab3068549f250caee6ab7f924afec4b6c821f82f3683d42fde5ccbfafba73c720f8481a7e4d2315e2219f4925893268649dddf696586916bb8c02a3697c38016788d4c799cbbc52043d0ebd08d74efb4619a46db86c744928a580f53ae2d5bbbc69342f722ab65b305975ab500ce7335ceb7d0f726c83a2c47eccf416fdb79f8439d2c608019ea2ef94d1fe8a7367013ae57330165228509d62fab87f04b73a76f80049f23d11a3068721414f8e45b18f4c1d56c11da71c949b35e6c5305452057f947520abbaf701c9b7cbfe623adc65a050458cb5948d1c1699b452b3d9fbba6b3bcdb537bbbf95d8267760cd943de819349966dc515babfca73d5ff3551bc56fe0f9dedb6dd5f4463a3aa652dab81a589ca4e4b0f19ee3b4b20c3986df2f72ba990b421c77b00a9b5cca5d850d607d0a46c2f1b1bbf8dc7f0cc6fea3104615a6cd698d89fca37adf4edfe4ba7c41231a9f2a89c55612e9c7031b7d56d2eb88745ba43a63a122d4d6661e83408a807f9b4519c05f01383811e9a2506c0c23618528599152f7a0481d1e576e4eba29c7725f24f649be7e5d7b9678a91e22d559ee77a1ddfe7225afa40085061c492fc4714f90e481cf494ec6d108fe0be6633d4f4785cb1c82f15190333398283ade4cb97f8104a195098a5a1c90227797fa8216d4762b6e78c60030e69f413cccf052df64a3d1bda69f6dbff49a68ef298809390f39a91e3b5b1971dac8554ed9ae24b4789ba60c145c059b1cfbf6594ed3c734bb4e1172f2e31a18659764bf324621d68b8e356ac3faee71ea97b0b78eeaa29c0f7ee1129777ef1ecd4d7f6586f8d0308709a94489951a04d7eba9793af6c929a0e91cda90457ca1c128cb6aa23f6da8f64f0d78a59f07a19515d9f607aa79c7b6c466e474e45ad85b0f2b82d470c03f7bbfb2fa68b32d4ac188d4a64f22b29c3af9f0b39bc2bb6b399e50f71968effe5b2f0d51489aca30993a67dbd80698f9a0c2ba9addffa3c3712215e63f424ebb5ebaf24fbf476f1d85493050c8be181f7f8783a34484005b58a703899ad2dff546eac853be1529fbe865a3f97643e8522956e0e361ac278e014328aea0b8d4268fd157513bd0f64f589ff8aaa0df2eb929984661031626bc661a5d3035b373177a4703a5000ef9b3ccb84b3dbaecb25ca341c5f12959d214e84b6545f47704d635765b336e4374975c2c40d5814b68b02965e517197edb553e7d3d8432544f66ce84990e7873fa2fadfaaeaa9915f907b3396b8529b03b646cf29be65784b5c08aa77521dd5064669f5ab33cc8ea168ea80949af9ee3937b2aa54250bd733c51c7c4be47c5848abf86b6f522e2a2dd4aa39693af731d70314e1d7af25c57a2dd126121bcd316118c66c18e2109a0c87714f00deaef07648e75f498eb7a8f30784376d14121a1ff34d402c5255fd2c0569624e93a796eb92980ee82ed283bb538e20dd8b02db072f897004f0e11de081cab5bedd9438c612982f1c73388ed98ae3b2d3adc6b8e70434c8992f52ab7c9488da5b67c6c003fdf530ef4172e0ccc16ff75fe6c919619c7ae513a8fcdfdb01410df94978f88b44e60b17a1984a600e04bd072fa731e19f75034d78b57f9890ab4dff68bf2928b5fc711bae0f1baeb8596e8a42f7f172125fb1da929d1f921c53f6cba0d98cd6e31b41ebf3935981b9e98524dd344b9e76b66d31f7d47869cdd3ae49e4e8c42264be751219861504ad49ab00e384e7bbf06472714829dd61e58a1784696a02eee6d9c92446392cadf4436c7eb769d1c5226164a9be70d2c2c6b71342a6d03dc0d39d224f9df8e4ed11c86a47531d5449e5364e8ca5af4c03455fa9da8b5b0d174e41bace68e51619967d79eaaac20b2a9e773b3418ff1a10c1835bed07e6109eac8ea4f130bc70aad103356f9749195fc2745f7076b5b165ff56de0596018b8251a0bd700db48a2243fe56831cf6785d70ded595b1bf9b25f2979923176109adb8012ae650c3fcb110352b884f79aeb465817124f75cda3168ec65cdace89522c0a7061629ea0d5d0573b9aa029500d64cb5df4f440859e4944047e6967511f0f25e9a45751d296ed6b61d4f217c28672d34696fcbaad5a57fd0e063537e889df2bf9e20e6c075296a800179a23e605948dc74fcf", 0xc9c}, {&(0x7f0000000b00)="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", 0x162}, {&(0x7f0000000880)="3ea19d23fdff85b98167afea622d36dd6e11d4df65aece0cffbb361fd19ec08ddad9340531b1c05e106ea2b36a41070b0be2be119aa8c7d8444f4341cccd89faa6253e1ee49e9132f015fd9988ae0b16c886cf6c2f29efe80b9278733906d142aff5d2926a9a0f79bc832754fc4c564bc7c61f70be9565f15584fd519f000000005d433935485cdc2ffa2be958749701504aefae9ac942fd1dfc86b59a3d1caf7923edfc844f870f12b251ce19cedc69367b00003c404d4ac7409ae7f612cd45bc47765d0c3b530a47f46c3a9887c3e6d67734e44835fcd6d23a0d7e00b73ac7", 0xe0}, {&(0x7f0000000500)="1cd2cf486bb5a90a257eaca10edd9b4dcc13b0dbd20235a98d552ebee1ac91839173dfc5f022ad537cc60d1fc4ff85bed2d5", 0x32}, {&(0x7f0000000980)="2a4ae9592dde05637fe851abd378a2061c4aaa35178cd1429038a4020f7c215e54928a5bb10dc587198d3610a58a8c", 0x2f}], 0x6}, 0x8bb3a301eb080b)

249.792393ms ago: executing program 4 (id=1083):
r0 = socket$inet6(0xa, 0x2, 0x3a)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e24, 0x3ff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="800034ca269bb73c", 0x8, 0x2004c080, &(0x7f0000000040)={0xa, 0xfffd, 0xc9, @mcast2, 0x5}, 0x1c)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0xf, &(0x7f00000005c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r3, 0xfca804a0, 0xe, 0x0, &(0x7f00000002c0)="b8000005000000005baf2312bbc2", 0x0, 0x12000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000280)={0x0, 0x5, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0), &(0x7f0000000200), 0x0})

128.258542ms ago: executing program 4 (id=1084):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = fsopen(&(0x7f0000000100)='cifs\x00', 0x0)
mount_setattr(0xffffffffffffffff, 0x0, 0x100, &(0x7f0000000000)={0x10001f, 0xfa, 0x20000, {r1}}, 0x20)
timer_create(0x3, 0x0, &(0x7f0000000100)=<r2=>0x0)
exit(0xf)
timer_delete(r2)
memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1)
r3 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="120100000cb768405e0483020b990102030109021b0001000000000904000001012900000905"], 0x0)
r4 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f0000000000)={0x2, 0x4e23, 0x0, @mcast1, 0x4}, 0x1c)
connect$inet6(r4, &(0x7f0000000800)={0xa, 0x4e25, 0xc0, @empty, 0x200c58b}, 0x1c)
syz_open_dev$audion(&(0x7f00000011c0), 0x3, 0x8c4201)
r5 = socket$netlink(0x10, 0x3, 0x4)
writev(r5, &(0x7f0000001340)=[{&(0x7f0000004940)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x48}], 0x1)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="54010000100000010000000000000000fc000000000000000000000000000000ffffffff00000000000000000000000000004000000080040000000000000000", @ANYRES16=r3, @ANYRES32=0x0, @ANYBLOB="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"], 0x154}, 0x1, 0x0, 0x0, 0x24004010}, 0x5)

127.916736ms ago: executing program 0 (id=1085):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x2082)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r1, 0xc04c5349, &(0x7f00000000c0)={0x0, 0x10000, 0x2})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r2, 0x800448f0, 0x0)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'fl512\x00', [0x4fa7, 0x105, 0x2, 0x10000421, 0x2000001, 0xcc7, 0x7ffffffe, 0x5c952398, 0x5, 0x3ff, 0x2, 0x300, 0x1, 0x1, 0x9, 0x0, 0x40400, 0x8, 0x48f3, 0x1ff, 0x80000089, 0xa, 0x1400000, 0x20001e54, 0xffffeadb, 0x3, 0x39, 0x8, 0x4, 0x7ffffff, 0x485b]})
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000007, 0x12, r0, 0xbc7ae000)

48.256233ms ago: executing program 3 (id=1086):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x8, 0x0, 0x27f})
ioctl$KDGKBENT(r0, 0x4b46, &(0x7f0000000000)={0x0, 0x9, 0x9})
ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f0000000080)={0x5, 0x2})

0s ago: executing program 0 (id=1087):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x89b1, &(0x7f0000000900)={'macvlan1\x00'})
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x1, 0x82)
pwritev2(r1, &(0x7f0000000140)=[{&(0x7f0000000000)='_', 0x1}], 0x1, 0x81, 0x0, 0x82)
r2 = socket$caif_seqpacket(0x25, 0x5, 0x1)
r3 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100), 0x200002, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x3, &(0x7f0000000040)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @cb_func={0x18, 0x9, 0x4, 0x0, 0x4}], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, 0x25, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f00000001c0)={0x3, 0x5, 0x9, 0x3}, 0x10, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240), 0x10, 0xb}, 0x94)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0xc8)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=@ipv4_newroute={0x38, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x4}, @RTA_ENCAP={0x14, 0x16, 0x0, 0x1, @LWTUNNEL_IP_OPTS={0x10, 0x8, 0x0, 0x1, @LWTUNNEL_IP_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, @LWTUNNEL_IP_OPT_VXLAN_GBP={0x8}}}}]}, 0x38}}, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
mount(&(0x7f0000000240)=@sg0, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='pvfs2\x00', 0x84041, &(0x7f0000000480)='syzkaller\x00')
r7 = socket$kcm(0x2, 0xa, 0x2)
r8 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r8, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
write$tun(r6, &(0x7f0000000400)={@val={0x0, 0x86dd}, @val={0x0, 0x1, 0x11, 0x4, 0x0, 0xca6}, @mpls={[], @ipv6=@gre_packet={0xe, 0x6, "0200be", 0x44, 0x2f, 0xff, @local, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x88be, 0x0, 0x3}, {0x0, 0x0, 0x1, 0x1}, {0x1, 0x0, 0x1}, {0xa888, 0x88be, 0x2, {{0x6, 0x1, 0x9, 0x2, 0x1, 0x0, 0x3, 0x5}, 0x1, {0x88a8}}}, {0x8, 0x22eb, 0x20000, {{0x0, 0x2, 0x9, 0x0, 0x0, 0x2, 0x7, 0x8}, 0x2, {0x2, 0x4, 0x0, 0x5, 0x1, 0x1, 0x1}}}, {0x8, 0x6558, 0x2}}}}}}, 0x7a)
write$binfmt_aout(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="03040000b500000001008aea0000feff"], 0xc8)
recvmmsg(r2, &(0x7f00000041c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40000000, 0x0)

kernel console output (not intermixed with test programs):

81 - 0
[  142.969619][ T8242] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  142.971134][ T1178] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  143.131045][ T8247] FAULT_INJECTION: forcing a failure.
[  143.131045][ T8247] name failslab, interval 1, probability 0, space 0, times 0
[  143.135736][ T8247] CPU: 0 UID: 0 PID: 8247 Comm: syz.0.661 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  143.135761][ T8247] Tainted: [L]=SOFTLOCKUP
[  143.135765][ T8247] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  143.135796][ T8247] Call Trace:
[  143.135826][ T8247]  <TASK>
[  143.135831][ T8247]  dump_stack_lvl+0x100/0x190
[  143.136004][ T8247]  should_fail_ex.cold+0x5/0xa
[  143.136066][ T8247]  ? lsm_blob_alloc+0x68/0x90
[  143.136216][ T8247]  should_failslab+0xc2/0x120
[  143.136311][ T8247]  __kmalloc_noprof+0xe0/0x850
[  143.136350][ T8247]  ? audit_alloc+0xa2/0x7b0
[  143.136386][ T8247]  lsm_blob_alloc+0x68/0x90
[  143.136404][ T8247]  security_task_alloc+0x2a/0x260
[  143.136421][ T8247]  copy_process+0x2865/0x7fa0
[  143.136468][ T8247]  ? __pfx_copy_process+0x10/0x10
[  143.136488][ T8247]  ? lockdep_init_map_type+0x5c/0x250
[  143.136525][ T8247]  ? lockdep_init_map_type+0x5c/0x250
[  143.136541][ T8247]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  143.136565][ T8247]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  143.136586][ T8247]  vhost_task_create+0x1db/0x370
[  143.136622][ T8247]  ? __pfx_vhost_task_create+0x10/0x10
[  143.136637][ T8247]  ? register_lock_class+0x40/0x560
[  143.136657][ T8247]  ? __pfx_vhost_task_fn+0x10/0x10
[  143.136674][ T8247]  ? __pfx___mutex_lock+0x10/0x10
[  143.136715][ T8247]  ? kasan_quarantine_put+0x104/0x240
[  143.136738][ T8247]  kvm_mmu_post_init_vm+0x1b3/0x370
[  143.136763][ T8247]  kvm_arch_vcpu_ioctl_run+0x66/0x1890
[  143.136789][ T8247]  ? kvm_vcpu_ioctl+0x1546/0x1720
[  143.136813][ T8247]  kvm_vcpu_ioctl+0x730/0x1720
[  143.136827][ T8247]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  143.136840][ T8247]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  143.136856][ T8247]  ? do_vfs_ioctl+0x226/0x13e0
[  143.136888][ T8247]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  143.136900][ T8247]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  143.136921][ T8247]  ? __fget_files+0x215/0x3d0
[  143.136937][ T8247]  ? hook_file_ioctl_common+0x149/0x410
[  143.136976][ T8247]  ? selinux_file_ioctl+0x13b/0x290
[  143.136989][ T8247]  ? selinux_file_ioctl+0xb6/0x290
[  143.137003][ T8247]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  143.137017][ T8247]  __x64_sys_ioctl+0x18e/0x210
[  143.137030][ T8247]  do_syscall_64+0x10b/0xf80
[  143.137065][ T8247]  ? clear_bhb_loop+0x40/0x90
[  143.137081][ T8247]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.137094][ T8247] RIP: 0033:0x7f727bb9c819
[  143.137106][ T8247] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  143.137118][ T8247] RSP: 002b:00007f727c9e2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  143.137148][ T8247] RAX: ffffffffffffffda RBX: 00007f727be15fa0 RCX: 00007f727bb9c819
[  143.137156][ T8247] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  143.137162][ T8247] RBP: 00007f727c9e2090 R08: 0000000000000000 R09: 0000000000000000
[  143.137169][ T8247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.137176][ T8247] R13: 00007f727be16038 R14: 00007f727be15fa0 R15: 00007ffd45d5f7d8
[  143.137191][ T8247]  </TASK>
[  143.520805][    T9] usb 7-1: USB disconnect, device number 9
[  143.814514][ T8268] __nla_validate_parse: 6 callbacks suppressed
[  143.814529][ T8268] netlink: 76 bytes leftover after parsing attributes in process `syz.3.668'.
[  144.052778][ T8278] netlink: 4 bytes leftover after parsing attributes in process `syz.3.669'.
[  144.057482][ T8278] netlink: 12 bytes leftover after parsing attributes in process `syz.3.669'.
[  144.243594][ T8284] netlink: 4 bytes leftover after parsing attributes in process `syz.3.672'.
[  144.323249][ T8289] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.346920][ T8288] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  144.350972][ T8288] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  144.357963][ T8288] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  144.365195][ T8288] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  144.393787][ T8289] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.453934][ T8289] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.541964][ T8289] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.606378][ T8301] netlink: 76 bytes leftover after parsing attributes in process `syz.0.677'.
[  144.867716][ T8311] program syz.2.679 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  144.915471][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  144.915509][   T40] audit: type=1400 audit(1777037284.166:482): avc:  denied  { mount } for  pid=8313 comm="syz.2.682" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  144.926599][   T40] audit: type=1400 audit(1777037284.166:483): avc:  denied  { remount } for  pid=8313 comm="syz.2.682" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  144.973087][ T8317] netlink: 4 bytes leftover after parsing attributes in process `syz.0.683'.
[  145.014050][   T40] audit: type=1400 audit(1777037284.266:484): avc:  denied  { unmount } for  pid=6860 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  145.052367][   T40] audit: type=1400 audit(1777037284.306:485): avc:  denied  { read } for  pid=8318 comm="syz.0.684" name="mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  145.062780][   T40] audit: type=1400 audit(1777037284.306:486): avc:  denied  { open } for  pid=8318 comm="syz.0.684" path="/dev/input/mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  145.116501][   T40] audit: type=1400 audit(1777037284.366:487): avc:  denied  { ioctl } for  pid=8318 comm="syz.0.684" path="socket:[23214]" dev="sockfs" ino=23214 ioctlcmd=0x890d scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  145.130721][ T8326] FAULT_INJECTION: forcing a failure.
[  145.130721][ T8326] name failslab, interval 1, probability 0, space 0, times 0
[  145.135854][ T8326] CPU: 0 UID: 0 PID: 8326 Comm: syz.2.686 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  145.135889][ T8326] Tainted: [L]=SOFTLOCKUP
[  145.135896][ T8326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  145.135909][ T8326] Call Trace:
[  145.135916][ T8326]  <TASK>
[  145.135924][ T8326]  dump_stack_lvl+0x100/0x190
[  145.135953][ T8326]  should_fail_ex.cold+0x5/0xa
[  145.135983][ T8326]  should_failslab+0xc2/0x120
[  145.136005][ T8326]  __kvmalloc_node_noprof+0xfa/0xa00
[  145.136036][ T8326]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  145.136070][ T8326]  __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  145.136096][ T8326]  ? find_held_lock+0x2b/0x80
[  145.136200][ T8326]  mmu_topup_memory_caches+0x25/0x170
[  145.136231][ T8326]  kvm_mmu_load+0xd6/0x23e0
[  145.136263][ T8326]  ? kvm_deliver_exception_payload+0x129/0x210
[  145.136289][ T8326]  ? __pfx_kvm_mmu_load+0x10/0x10
[  145.136311][ T8326]  ? vmx_inject_exception+0x21f/0x470
[  145.136333][ T8326]  ? kvm_check_and_inject_events+0x961/0x1070
[  145.136366][ T8326]  vcpu_run+0x39f4/0x5ca0
[  145.136405][ T8326]  ? __pfx_vcpu_run+0x10/0x10
[  145.136445][ T8326]  ? rcu_is_watching+0x12/0xc0
[  145.136525][ T8326]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  145.136555][ T8326]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  145.136594][ T8326]  kvm_vcpu_ioctl+0x730/0x1720
[  145.136621][ T8326]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  145.136644][ T8326]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  145.136671][ T8326]  ? do_vfs_ioctl+0x226/0x13e0
[  145.136694][ T8326]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  145.136716][ T8326]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  145.136756][ T8326]  ? __fget_files+0x215/0x3d0
[  145.136783][ T8326]  ? hook_file_ioctl_common+0x149/0x410
[  145.136827][ T8326]  ? selinux_file_ioctl+0x13b/0x290
[  145.136852][ T8326]  ? selinux_file_ioctl+0xb6/0x290
[  145.136880][ T8326]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  145.136931][ T8326]  __x64_sys_ioctl+0x18e/0x210
[  145.136958][ T8326]  do_syscall_64+0x10b/0xf80
[  145.136991][ T8326]  ? clear_bhb_loop+0x40/0x90
[  145.137021][ T8326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.137045][ T8326] RIP: 0033:0x7f61f159c819
[  145.137068][ T8326] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  145.137092][ T8326] RSP: 002b:00007f61f251b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  145.137116][ T8326] RAX: ffffffffffffffda RBX: 00007f61f1815fa0 RCX: 00007f61f159c819
[  145.137130][ T8326] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  145.137143][ T8326] RBP: 00007f61f251b090 R08: 0000000000000000 R09: 0000000000000000
[  145.137159][ T8326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  145.137172][ T8326] R13: 00007f61f1816038 R14: 00007f61f1815fa0 R15: 00007fff25a44ea8
[  145.137207][ T8326]  </TASK>
[  145.181699][ T8330] macvlan2: entered promiscuous mode
[  145.243835][   T40] audit: type=1400 audit(1777037284.456:488): avc:  denied  { ioctl } for  pid=8318 comm="syz.0.684" path="/dev/input/mice" dev="devtmpfs" ino=939 ioctlcmd=0xae9a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  145.244590][ T8330] bridge0: entered promiscuous mode
[  145.247846][   T40] audit: type=1400 audit(1777037284.496:489): avc:  denied  { accept } for  pid=8328 comm="syz.1.687" path="socket:[23219]" dev="sockfs" ino=23219 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  145.247909][ T8332] netlink: 156 bytes leftover after parsing attributes in process `syz.1.687'.
[  145.602002][ T8347] netlink: 76 bytes leftover after parsing attributes in process `syz.0.689'.
[  145.636922][   T50] IPVS: starting estimator thread 0...
[  145.682233][ T8342] netlink: 12 bytes leftover after parsing attributes in process `syz.2.691'.
[  145.729098][ T8352] IPVS: using max 26 ests per chain, 62400 per kthread
[  146.015404][ T8361] netlink: 4 bytes leftover after parsing attributes in process `syz.0.692'.
[  146.318677][ T8373] syzkaller0: entered promiscuous mode
[  146.319012][ T8372] l2tp_ppp: sess 2/0: no socket in recv
[  146.445288][ T8377] input: syz0 as /devices/virtual/input/input6
[  146.459026][   T40] audit: type=1400 audit(1777037285.706:490): avc:  denied  { read } for  pid=5339 comm="acpid" name="event4" dev="devtmpfs" ino=2930 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  146.479587][   T40] audit: type=1400 audit(1777037285.706:491): avc:  denied  { open } for  pid=5339 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2930 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  146.688205][ T8394] ipvlan2: entered allmulticast mode
[  146.690447][ T8394] batadv_slave_1: entered allmulticast mode
[  146.694508][ T8394] batman_adv: batadv0: Adding interface: ipvlan2
[  146.696736][ T8394] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  146.705063][ T8394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  146.715400][ T8394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  146.724034][ T8394] batman_adv: batadv0: Interface activated: ipvlan2
[  146.818574][   T59] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  146.854471][  T450] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  146.863948][ T8405] netlink: 'syz.2.704': attribute type 17 has an invalid length.
[  146.868145][  T450] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  146.872575][ T8405] macvtap0: entered allmulticast mode
[  146.874746][ T8405] veth0_macvtap: entered allmulticast mode
[  146.877435][ T8405] A link change request failed with some changes committed already. Interface macvtap0 may have been left with an inconsistent configuration, please check.
[  146.904891][  T450] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.978175][ T8409] l2tp_ppp: sess 2/0: no socket in recv
[  147.169951][ T8423] netlink: 'syz.1.705': attribute type 7 has an invalid length.
[  147.177797][ T8423] netlink: 'syz.1.705': attribute type 8 has an invalid length.
[  147.342780][ T8427] FAULT_INJECTION: forcing a failure.
[  147.342780][ T8427] name failslab, interval 1, probability 0, space 0, times 0
[  147.372822][ T8427] CPU: 0 UID: 0 PID: 8427 Comm: syz.3.709 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  147.372843][ T8427] Tainted: [L]=SOFTLOCKUP
[  147.372847][ T8427] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  147.372883][ T8427] Call Trace:
[  147.372919][ T8427]  <TASK>
[  147.372923][ T8427]  dump_stack_lvl+0x100/0x190
[  147.373161][ T8427]  should_fail_ex.cold+0x5/0xa
[  147.373264][ T8427]  should_failslab+0xc2/0x120
[  147.373336][ T8427]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  147.373366][ T8427]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  147.373409][ T8427]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  147.373425][ T8427]  mmu_topup_memory_caches+0x25/0x170
[  147.373454][ T8427]  kvm_mmu_load+0xd6/0x23e0
[  147.373469][ T8427]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  147.373487][ T8427]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  147.373507][ T8427]  ? __pfx_kvm_mmu_load+0x10/0x10
[  147.373520][ T8427]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  147.373534][ T8427]  ? kvm_check_and_inject_events+0x961/0x1070
[  147.373555][ T8427]  ? record_steal_time+0x3d0/0xbc0
[  147.373568][ T8427]  vcpu_run+0x39f4/0x5ca0
[  147.373588][ T8427]  ? __pfx_vcpu_run+0x10/0x10
[  147.373607][ T8427]  ? rcu_is_watching+0x12/0xc0
[  147.373663][ T8427]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  147.373678][ T8427]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  147.373697][ T8427]  kvm_vcpu_ioctl+0x730/0x1720
[  147.373709][ T8427]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  147.373721][ T8427]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  147.373750][ T8427]  ? do_vfs_ioctl+0x226/0x13e0
[  147.373779][ T8427]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  147.373790][ T8427]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  147.373857][ T8427]  ? __fget_files+0x215/0x3d0
[  147.373894][ T8427]  ? hook_file_ioctl_common+0x149/0x410
[  147.373925][ T8427]  ? selinux_file_ioctl+0x13b/0x290
[  147.373937][ T8427]  ? selinux_file_ioctl+0xb6/0x290
[  147.373950][ T8427]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  147.373962][ T8427]  __x64_sys_ioctl+0x18e/0x210
[  147.373973][ T8427]  do_syscall_64+0x10b/0xf80
[  147.374039][ T8427]  ? clear_bhb_loop+0x40/0x90
[  147.374053][ T8427]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.374064][ T8427] RIP: 0033:0x7fcc1b19c819
[  147.374075][ T8427] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  147.374086][ T8427] RSP: 002b:00007fcc1c03a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  147.374112][ T8427] RAX: ffffffffffffffda RBX: 00007fcc1b415fa0 RCX: 00007fcc1b19c819
[  147.374119][ T8427] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000b
[  147.374126][ T8427] RBP: 00007fcc1c03a090 R08: 0000000000000000 R09: 0000000000000000
[  147.374135][ T8427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  147.374144][ T8427] R13: 00007fcc1b416038 R14: 00007fcc1b415fa0 R15: 00007ffd5b48ca28
[  147.374182][ T8427]  </TASK>
[  147.523256][ T8438] syzkaller0: entered promiscuous mode
[  147.525157][ T8438] syzkaller0: entered allmulticast mode
[  147.758431][ T8449] syzkaller0: entered promiscuous mode
[  147.761253][ T8449] syzkaller0: entered allmulticast mode
[  147.996717][ T5954] Bluetooth: hci3: ISO packet for unknown connection handle 0
[  148.260797][ T8481] FAULT_INJECTION: forcing a failure.
[  148.260797][ T8481] name failslab, interval 1, probability 0, space 0, times 0
[  148.268865][ T8481] CPU: 0 UID: 0 PID: 8481 Comm: syz.2.722 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  148.268884][ T8481] Tainted: [L]=SOFTLOCKUP
[  148.268888][ T8481] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  148.268930][ T8481] Call Trace:
[  148.268963][ T8481]  <TASK>
[  148.268970][ T8481]  dump_stack_lvl+0x100/0x190
[  148.269248][ T8481]  should_fail_ex.cold+0x5/0xa
[  148.269328][ T8481]  should_failslab+0xc2/0x120
[  148.269457][ T8481]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  148.269492][ T8481]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  148.269518][ T8481]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  148.269535][ T8481]  mmu_topup_memory_caches+0x25/0x170
[  148.269563][ T8481]  kvm_mmu_load+0xd6/0x23e0
[  148.269586][ T8481]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  148.269611][ T8481]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  148.269640][ T8481]  ? __pfx_kvm_mmu_load+0x10/0x10
[  148.269661][ T8481]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  148.269679][ T8481]  ? kvm_check_and_inject_events+0x961/0x1070
[  148.269713][ T8481]  ? record_steal_time+0x3d0/0xbc0
[  148.269732][ T8481]  vcpu_run+0x39f4/0x5ca0
[  148.269762][ T8481]  ? __pfx_vcpu_run+0x10/0x10
[  148.269787][ T8481]  ? rcu_is_watching+0x12/0xc0
[  148.269833][ T8481]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  148.269863][ T8481]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  148.269884][ T8481]  kvm_vcpu_ioctl+0x730/0x1720
[  148.269897][ T8481]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  148.269909][ T8481]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  148.269945][ T8481]  ? do_vfs_ioctl+0x226/0x13e0
[  148.269974][ T8481]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  148.269984][ T8481]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  148.270055][ T8481]  ? __fget_files+0x215/0x3d0
[  148.270069][ T8481]  ? hook_file_ioctl_common+0x149/0x410
[  148.270104][ T8481]  ? selinux_file_ioctl+0x13b/0x290
[  148.270122][ T8481]  ? selinux_file_ioctl+0xb6/0x290
[  148.270143][ T8481]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  148.270168][ T8481]  __x64_sys_ioctl+0x18e/0x210
[  148.270186][ T8481]  do_syscall_64+0x10b/0xf80
[  148.270260][ T8481]  ? clear_bhb_loop+0x40/0x90
[  148.270285][ T8481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.270300][ T8481] RIP: 0033:0x7f61f159c819
[  148.270312][ T8481] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  148.270322][ T8481] RSP: 002b:00007f61f251b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  148.270361][ T8481] RAX: ffffffffffffffda RBX: 00007f61f1815fa0 RCX: 00007f61f159c819
[  148.270367][ T8481] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000b
[  148.270373][ T8481] RBP: 00007f61f251b090 R08: 0000000000000000 R09: 0000000000000000
[  148.270379][ T8481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  148.270386][ T8481] R13: 00007f61f1816038 R14: 00007f61f1815fa0 R15: 00007fff25a44ea8
[  148.270399][ T8481]  </TASK>
[  148.307366][ T8489] syzkaller0: entered promiscuous mode
[  148.381356][ T8489] syzkaller0: entered allmulticast mode
[  148.419069][ T8492] xt_time: invalid argument - start or stop time greater than 23:59:59
[  148.559172][ T5954] Bluetooth: hci0: command 0x0c1a tx timeout
[  148.564973][ T6021] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  148.568714][ T6021] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[  148.677689][ T8500] fuse: Unknown parameter 'g]oup_id'
[  148.935475][ T8506] __nla_validate_parse: 8 callbacks suppressed
[  148.935512][ T8506] netlink: 4 bytes leftover after parsing attributes in process `syz.1.730'.
[  148.941988][ T8506] l2tp_ppp: sess 2/0: no socket in recv
[  148.992265][ T8508] xt_hashlimit: size too large, truncated to 1048576
[  149.592717][ T8528] netlink: 12 bytes leftover after parsing attributes in process `syz.1.737'.
[  149.683280][ T8528] FAULT_INJECTION: forcing a failure.
[  149.683280][ T8528] name failslab, interval 1, probability 0, space 0, times 0
[  149.688756][ T8528] CPU: 1 UID: 0 PID: 8528 Comm: syz.1.737 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  149.688789][ T8528] Tainted: [L]=SOFTLOCKUP
[  149.688796][ T8528] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  149.688807][ T8528] Call Trace:
[  149.688814][ T8528]  <TASK>
[  149.688821][ T8528]  dump_stack_lvl+0x100/0x190
[  149.688855][ T8528]  should_fail_ex.cold+0x5/0xa
[  149.688882][ T8528]  should_failslab+0xc2/0x120
[  149.688917][ T8528]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  149.688947][ T8528]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  149.688975][ T8528]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  149.689005][ T8528]  mmu_topup_memory_caches+0x25/0x170
[  149.689035][ T8528]  kvm_mmu_load+0xd6/0x23e0
[  149.689057][ T8528]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  149.689088][ T8528]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  149.689117][ T8528]  ? __pfx_kvm_mmu_load+0x10/0x10
[  149.689141][ T8528]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  149.689161][ T8528]  ? kvm_check_and_inject_events+0x961/0x1070
[  149.689186][ T8528]  ? record_steal_time+0x3d0/0xbc0
[  149.689208][ T8528]  vcpu_run+0x39f4/0x5ca0
[  149.689241][ T8528]  ? __pfx_vcpu_run+0x10/0x10
[  149.689278][ T8528]  ? rcu_is_watching+0x12/0xc0
[  149.689311][ T8528]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  149.689338][ T8528]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  149.689369][ T8528]  kvm_vcpu_ioctl+0x730/0x1720
[  149.689392][ T8528]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  149.689411][ T8528]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  149.689436][ T8528]  ? do_vfs_ioctl+0x226/0x13e0
[  149.689456][ T8528]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  149.689476][ T8528]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  149.689507][ T8528]  ? __fget_files+0x215/0x3d0
[  149.689527][ T8528]  ? hook_file_ioctl_common+0x149/0x410
[  149.689560][ T8528]  ? selinux_file_ioctl+0x13b/0x290
[  149.689580][ T8528]  ? selinux_file_ioctl+0xb6/0x290
[  149.689601][ T8528]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  149.689621][ T8528]  __x64_sys_ioctl+0x18e/0x210
[  149.689643][ T8528]  do_syscall_64+0x10b/0xf80
[  149.689679][ T8528]  ? clear_bhb_loop+0x40/0x90
[  149.689705][ T8528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.689727][ T8528] RIP: 0033:0x7efe5139c819
[  149.689744][ T8528] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  149.689762][ T8528] RSP: 002b:00007efe52297028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  149.689780][ T8528] RAX: ffffffffffffffda RBX: 00007efe51615fa0 RCX: 00007efe5139c819
[  149.689793][ T8528] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000b
[  149.689803][ T8528] RBP: 00007efe52297090 R08: 0000000000000000 R09: 0000000000000000
[  149.689813][ T8528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  149.689823][ T8528] R13: 00007efe51616038 R14: 00007efe51615fa0 R15: 00007ffe8b11f158
[  149.689846][ T8528]  </TASK>
[  149.949919][ T8539] syzkaller0: entered promiscuous mode
[  150.017552][ T8540] netlink: 'syz.0.739': attribute type 64 has an invalid length.
[  150.471457][ T8564] syzkaller0: entered promiscuous mode
[  150.489658][ T8564] 0: reclassify loop, rule prio 0, protocol 800
[  150.639233][ T5954] Bluetooth: hci1: command 0x0c1a tx timeout
[  150.645488][ T6021] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  150.661316][ T6021] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[  150.678283][ T8573] netlink: 12 bytes leftover after parsing attributes in process `syz.0.750'.
[  150.779268][ T8573] FAULT_INJECTION: forcing a failure.
[  150.779268][ T8573] name failslab, interval 1, probability 0, space 0, times 0
[  150.784128][ T8573] CPU: 1 UID: 0 PID: 8573 Comm: syz.0.750 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  150.784167][ T8573] Tainted: [L]=SOFTLOCKUP
[  150.784174][ T8573] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  150.784184][ T8573] Call Trace:
[  150.784193][ T8573]  <TASK>
[  150.784200][ T8573]  dump_stack_lvl+0x100/0x190
[  150.784228][ T8573]  should_fail_ex.cold+0x5/0xa
[  150.784253][ T8573]  should_failslab+0xc2/0x120
[  150.784271][ T8573]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  150.784291][ T8573]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  150.784321][ T8573]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  150.784347][ T8573]  mmu_topup_memory_caches+0x25/0x170
[  150.784367][ T8573]  kvm_mmu_load+0xd6/0x23e0
[  150.784387][ T8573]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  150.784414][ T8573]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  150.784443][ T8573]  ? __pfx_kvm_mmu_load+0x10/0x10
[  150.784462][ T8573]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  150.784481][ T8573]  ? kvm_check_and_inject_events+0x961/0x1070
[  150.784498][ T8573]  ? record_steal_time+0x3d0/0xbc0
[  150.784517][ T8573]  vcpu_run+0x39f4/0x5ca0
[  150.784547][ T8573]  ? __pfx_vcpu_run+0x10/0x10
[  150.784576][ T8573]  ? rcu_is_watching+0x12/0xc0
[  150.784604][ T8573]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  150.784623][ T8573]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  150.784651][ T8573]  kvm_vcpu_ioctl+0x730/0x1720
[  150.784671][ T8573]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  150.784688][ T8573]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  150.784705][ T8573]  ? do_vfs_ioctl+0x226/0x13e0
[  150.784721][ T8573]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  150.784737][ T8573]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  150.784764][ T8573]  ? __fget_files+0x215/0x3d0
[  150.784782][ T8573]  ? hook_file_ioctl_common+0x149/0x410
[  150.784806][ T8573]  ? selinux_file_ioctl+0x13b/0x290
[  150.784822][ T8573]  ? selinux_file_ioctl+0xb6/0x290
[  150.784841][ T8573]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  150.784859][ T8573]  __x64_sys_ioctl+0x18e/0x210
[  150.784875][ T8573]  do_syscall_64+0x10b/0xf80
[  150.784898][ T8573]  ? clear_bhb_loop+0x40/0x90
[  150.784917][ T8573]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.784934][ T8573] RIP: 0033:0x7f727bb9c819
[  150.784951][ T8573] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  150.784966][ T8573] RSP: 002b:00007f727c9e2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  150.785022][ T8573] RAX: ffffffffffffffda RBX: 00007f727be15fa0 RCX: 00007f727bb9c819
[  150.785032][ T8573] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000b
[  150.785041][ T8573] RBP: 00007f727c9e2090 R08: 0000000000000000 R09: 0000000000000000
[  150.785050][ T8573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  150.785059][ T8573] R13: 00007f727be16038 R14: 00007f727be15fa0 R15: 00007ffd45d5f7d8
[  150.785074][ T8573]  </TASK>
[  151.096177][ T8585] ip6t_srh: unknown srh match flags  4000
[  151.124215][ T8576] 8021q: adding VLAN 0 to HW filter on device bond1
[  151.317302][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  151.317344][   T40] audit: type=1400 audit(1777037290.566:497): avc:  denied  { ioctl } for  pid=8591 comm="syz.3.755" path="socket:[29740]" dev="sockfs" ino=29740 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  151.333107][ T8592] netlink: 8 bytes leftover after parsing attributes in process `syz.3.755'.
[  151.344744][ T8592] netlink: 20 bytes leftover after parsing attributes in process `syz.3.755'.
[  151.367865][ T8592] netlink: 8 bytes leftover after parsing attributes in process `syz.3.755'.
[  151.367918][  T137] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  151.376069][  T137] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  151.380292][ T8592] netlink: 20 bytes leftover after parsing attributes in process `syz.3.755'.
[  151.392813][  T137] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  151.397331][  T137] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  151.413610][ T8596] netlink: 'syz.2.756': attribute type 64 has an invalid length.
[  151.416948][ T8596] netlink: 'syz.2.756': attribute type 4 has an invalid length.
[  151.420174][ T8596] netlink: 152 bytes leftover after parsing attributes in process `syz.2.756'.
[  151.486010][ T8598] netlink: 4 bytes leftover after parsing attributes in process `syz.3.757'.
[  151.572979][ T8602] syzkaller0: entered promiscuous mode
[  151.575027][ T8602] syzkaller0: entered allmulticast mode
[  151.767956][ T8609] netlink: 4 bytes leftover after parsing attributes in process `syz.3.762'.
[  151.776253][ T8609] l2tp_ppp: sess 2/0: no socket in recv
[  152.001746][ T8619] fuse: Bad value for 'group_id'
[  152.004046][ T8619] fuse: Bad value for 'group_id'
[  152.174674][ T8625] faux_driver vgem: [drm] Unknown color mode 135165; guessing buffer size.
[  152.637950][ T8631] netlink: 'syz.2.770': attribute type 1 has an invalid length.
[  152.691320][   T40] audit: type=1400 audit(1777037291.946:498): avc:  denied  { unmount } for  pid=5950 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  152.729750][ T5954] Bluetooth: hci3: command 0x0c1a tx timeout
[  152.732950][ T6021] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  152.735649][ T6021] Bluetooth: hci3: Error when powering off device on rfkill (-110)
[  152.987144][ T8642] netlink: 'syz.3.775': attribute type 1 has an invalid length.
[  153.271883][ T8648] l2tp_ppp: sess 2/0: no socket in recv
[  153.350079][   T34] usb 8-1: new full-speed USB device number 10 using dummy_hcd
[  153.502764][   T34] usb 8-1: not running at top speed; connect to a high speed hub
[  153.522913][   T34] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  153.530978][   T34] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  153.535514][   T34] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.539101][   T34] usb 8-1: Product: ѕ
[  153.540968][   T34] usb 8-1: Manufacturer: 뛊杍ⵏ拌ꗫ簞寔黏①鍷諄ܗՍ痁橡広엫ᜌ驗돲篈躓旰类Ӟ䨘덼쐫﬍ᔶ샽쟟餰웗헶쳟砓㚒
[  153.547698][   T34] usb 8-1: SerialNumber: syz
[  153.563349][ T8645] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  153.769963][ T8645] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  153.774868][ T8645] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  153.786994][   T34] cdc_ncm 8-1:1.0: bind() failure
[  153.795879][   T34] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  153.798408][   T34] cdc_ncm 8-1:1.1: bind() failure
[  153.810235][   T34] usb 8-1: USB disconnect, device number 10
[  153.846976][   T40] audit: type=1400 audit(1777037293.096:499): avc:  denied  { connect } for  pid=8659 comm="syz.1.783" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  153.872509][ T5954] Bluetooth: hci2: ISO packet for unknown connection handle 0
[  153.909336][   T40] audit: type=1400 audit(1777037293.166:500): avc:  denied  { getopt } for  pid=8663 comm="syz.1.785" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  153.993681][ T8672] syzkaller0: entered promiscuous mode
[  153.995487][ T8672] syzkaller0: entered allmulticast mode
[  154.064478][ T8674] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[  154.309295][ T8684] __nla_validate_parse: 4 callbacks suppressed
[  154.309309][ T8684] netlink: 762 bytes leftover after parsing attributes in process `syz.1.792'.
[  154.331331][   T40] audit: type=1800 audit(1777037293.576:501): pid=8686 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.3.793" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  154.343134][   T40] audit: type=1400 audit(1777037293.586:502): avc:  denied  { getopt } for  pid=8685 comm="syz.3.793" lport=55970 faddr=::ffff:172.20.255.187 fport=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  154.393245][ T8681] xt_recent: Unsupported userspace flags (000000b2)
[  154.470192][ T8695] netlink: 'syz.0.797': attribute type 27 has an invalid length.
[  154.569736][ T8695] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.575598][ T8695] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.737340][ T8695] hsr1: left promiscuous mode
[  154.772406][ T8696] 8021q: adding VLAN 0 to HW filter on device bond0
[  154.776456][ T8696] 8021q: adding VLAN 0 to HW filter on device team0
[  154.786997][ T8696] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  154.795901][   T12] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  154.803714][   T12] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  154.814833][   T12] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  154.818223][   T12] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  154.969043][ T5954] Bluetooth: hci2: command 0x0c1a tx timeout
[  154.971545][ T6021] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  154.974045][ T6021] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[  155.134977][ T8704] syzkaller0: entered promiscuous mode
[  155.137552][ T8704] syzkaller0: entered allmulticast mode
[  155.337107][ T8710] netlink: 28 bytes leftover after parsing attributes in process `syz.1.802'.
[  155.351237][ T8713] netlink: 12 bytes leftover after parsing attributes in process `syz.3.803'.
[  155.371526][ T8710] trusted_key: syz.1.802 sent an empty control message without MSG_MORE.
[  155.394170][   T40] audit: type=1400 audit(1777037294.646:503): avc:  denied  { ioctl } for  pid=8709 comm="syz.1.802" path="socket:[30148]" dev="sockfs" ino=30148 ioctlcmd=0x6607 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  155.439177][   T50] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  155.591115][   T50] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  155.594431][   T50] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  155.598566][   T50] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  155.603328][   T50] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  155.608593][   T50] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  155.620626][   T50] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  155.624883][   T50] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  155.628094][   T50] usb 7-1: Product: syz
[  155.630244][   T50] usb 7-1: Manufacturer: syz
[  155.668628][   T50] cdc_wdm 7-1:1.0: skipping garbage
[  155.671213][   T50] cdc_wdm 7-1:1.0: skipping garbage
[  155.676423][   T50] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  155.679686][   T50] cdc_wdm 7-1:1.0: Unknown control protocol
[  155.815956][   T40] audit: type=1326 audit(1777037295.066:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8716 comm="syz.3.804" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcc1b19c819 code=0x0
[  155.869912][ T8727] netlink: 76 bytes leftover after parsing attributes in process `syz.0.807'.
[  155.875994][ T8727] syzkaller0: entered promiscuous mode
[  155.878800][ T8727] syzkaller0: entered allmulticast mode
[  155.889760][ T8727] tc action pedit offset must be on 32 bit boundaries
[  156.099956][ T5963] usb 7-1: USB disconnect, device number 10
[  156.182502][   T40] audit: type=1400 audit(1777037295.436:505): avc:  denied  { accept } for  pid=8729 comm="syz.1.808" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  156.212660][ T8736] syzkaller0: entered promiscuous mode
[  156.218684][ T8736] FAULT_INJECTION: forcing a failure.
[  156.218684][ T8736] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  156.224842][ T8736] CPU: 0 UID: 0 PID: 8736 Comm: syz.3.810 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  156.224880][ T8736] Tainted: [L]=SOFTLOCKUP
[  156.224889][ T8736] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  156.224929][ T8736] Call Trace:
[  156.224964][ T8736]  <TASK>
[  156.224974][ T8736]  dump_stack_lvl+0x100/0x190
[  156.225210][ T8736]  should_fail_ex.cold+0x5/0xa
[  156.225307][ T8736]  _copy_from_user+0x2e/0xd0
[  156.225459][ T8736]  copy_msghdr_from_user+0x9f/0x4f0
[  156.225558][ T8736]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  156.225603][ T8736]  ___sys_sendmsg+0x106/0x1e0
[  156.225633][ T8736]  ? __pfx____sys_sendmsg+0x10/0x10
[  156.225699][ T8736]  __sys_sendmsg+0x170/0x220
[  156.225737][ T8736]  ? __pfx___sys_sendmsg+0x10/0x10
[  156.225786][ T8736]  ? rcu_is_watching+0x12/0xc0
[  156.225874][ T8736]  do_syscall_64+0x10b/0xf80
[  156.225955][ T8736]  ? clear_bhb_loop+0x40/0x90
[  156.225986][ T8736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.226009][ T8736] RIP: 0033:0x7fcc1b19c819
[  156.226031][ T8736] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  156.226052][ T8736] RSP: 002b:00007fcc1c03a028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  156.226096][ T8736] RAX: ffffffffffffffda RBX: 00007fcc1b415fa0 RCX: 00007fcc1b19c819
[  156.226110][ T8736] RDX: 008bb3a301eb080b RSI: 0000200000000280 RDI: 0000000000000006
[  156.226125][ T8736] RBP: 00007fcc1c03a090 R08: 0000000000000000 R09: 0000000000000000
[  156.226138][ T8736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  156.226151][ T8736] R13: 00007fcc1b416038 R14: 00007fcc1b415fa0 R15: 00007ffd5b48ca28
[  156.226184][ T8736]  </TASK>
[  156.413989][ T8738] syzkaller0: entered promiscuous mode
[  156.554262][ T8743] syzkaller0: entered promiscuous mode
[  156.675824][   T40] audit: type=1400 audit(1777037295.926:506): avc:  denied  { ioctl } for  pid=8748 comm="syz.1.816" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1294 ioctlcmd=0x9432 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  157.013269][ T8770] binder: BINDER_SET_CONTEXT_MGR already set
[  157.015671][ T8770] binder: 8769:8770 ioctl 4018620d 200000000100 returned -16
[  157.019900][ T8770] binder: BINDER_SET_CONTEXT_MGR already set
[  157.023793][ T8770] binder: 8769:8770 ioctl 4018620d 200000000100 returned -16
[  157.113278][ T8775] binder: 8774:8775 ioctl c0306201 200000000640 returned -22
[  157.212236][ T8782] syzkaller0: entered promiscuous mode
[  157.234022][ T8781] syzkaller0: entered promiscuous mode
[  157.249381][ T8781] 0: reclassify loop, rule prio 0, protocol 800
[  160.257963][ T8804] syzkaller0: entered promiscuous mode
[  160.260659][ T8804] syzkaller0: entered allmulticast mode
[  160.366602][   T40] audit: type=1400 audit(1777037299.616:507): avc:  denied  { mount } for  pid=8811 comm="syz.0.837" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  160.369640][ T8810] syzkaller0: entered promiscuous mode
[  160.381425][ T8810] 0: reclassify loop, rule prio 0, protocol 800
[  160.431799][ T8815] netlink: 156 bytes leftover after parsing attributes in process `syz.0.837'.
[  160.532675][ T8822] dlm: non-version read from control device 0
[  160.625781][ T8820] netlink: 28 bytes leftover after parsing attributes in process `syz.3.839'.
[  160.650933][ T8808] binder: 8807:8808 ioctl c00c620f 2000000003c0 returned -22
[  160.669144][   T40] audit: type=1400 audit(1777037299.896:508): avc:  denied  { setattr } for  pid=8807 comm="syz.2.835" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  160.772487][ T8831] netlink: 76 bytes leftover after parsing attributes in process `syz.2.845'.
[  160.787238][ T8831] syzkaller0: entered promiscuous mode
[  160.789335][ T8831] syzkaller0: entered allmulticast mode
[  160.792829][ T8833] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  160.797789][ T8833] syzkaller0: entered promiscuous mode
[  160.800920][ T8833] syzkaller0: entered allmulticast mode
[  160.805057][ T8831] tc action pedit offset must be on 32 bit boundaries
[  160.805865][ T8835] syzkaller0: entered promiscuous mode
[  160.999309][ T8842] netlink: 4 bytes leftover after parsing attributes in process `syz.2.849'.
[  161.008499][ T8840] syzkaller0: entered promiscuous mode
[  161.073754][ T8844] FAULT_INJECTION: forcing a failure.
[  161.073754][ T8844] name failslab, interval 1, probability 0, space 0, times 0
[  161.079963][ T8844] CPU: 1 UID: 0 PID: 8844 Comm: syz.0.850 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  161.079999][ T8844] Tainted: [L]=SOFTLOCKUP
[  161.080007][ T8844] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  161.080020][ T8844] Call Trace:
[  161.080058][ T8844]  <TASK>
[  161.080070][ T8844]  dump_stack_lvl+0x100/0x190
[  161.080106][ T8844]  should_fail_ex.cold+0x5/0xa
[  161.080141][ T8844]  should_failslab+0xc2/0x120
[  161.080278][ T8844]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  161.080348][ T8844]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  161.080417][ T8844]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  161.080454][ T8844]  mmu_topup_memory_caches+0x25/0x170
[  161.080496][ T8844]  kvm_mmu_load+0xd6/0x23e0
[  161.080529][ T8844]  ? kvm_deliver_exception_payload+0x129/0x210
[  161.080571][ T8844]  ? __pfx_kvm_mmu_load+0x10/0x10
[  161.080594][ T8844]  ? vmx_inject_exception+0x21f/0x470
[  161.080619][ T8844]  ? kvm_check_and_inject_events+0x961/0x1070
[  161.080652][ T8844]  vcpu_run+0x39f4/0x5ca0
[  161.080691][ T8844]  ? __pfx_vcpu_run+0x10/0x10
[  161.080729][ T8844]  ? rcu_is_watching+0x12/0xc0
[  161.080766][ T8844]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  161.080794][ T8844]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  161.080832][ T8844]  kvm_vcpu_ioctl+0x730/0x1720
[  161.080857][ T8844]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  161.080879][ T8844]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  161.080925][ T8844]  ? do_vfs_ioctl+0x226/0x13e0
[  161.080974][ T8844]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  161.080995][ T8844]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  161.081082][ T8844]  ? __fget_files+0x215/0x3d0
[  161.081107][ T8844]  ? hook_file_ioctl_common+0x149/0x410
[  161.081166][ T8844]  ? selinux_file_ioctl+0x13b/0x290
[  161.081187][ T8844]  ? selinux_file_ioctl+0xb6/0x290
[  161.081211][ T8844]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  161.081234][ T8844]  __x64_sys_ioctl+0x18e/0x210
[  161.081257][ T8844]  do_syscall_64+0x10b/0xf80
[  161.081286][ T8844]  ? clear_bhb_loop+0x40/0x90
[  161.081311][ T8844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.081332][ T8844] RIP: 0033:0x7f727bb9c819
[  161.081351][ T8844] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  161.081369][ T8844] RSP: 002b:00007f727c9e2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  161.081396][ T8844] RAX: ffffffffffffffda RBX: 00007f727be15fa0 RCX: 00007f727bb9c819
[  161.081409][ T8844] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  161.081420][ T8844] RBP: 00007f727c9e2090 R08: 0000000000000000 R09: 0000000000000000
[  161.081431][ T8844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  161.081442][ T8844] R13: 00007f727be16038 R14: 00007f727be15fa0 R15: 00007ffd45d5f7d8
[  161.081469][ T8844]  </TASK>
[  161.323917][   T40] audit: type=1400 audit(1777037300.576:509): avc:  denied  { setopt } for  pid=8847 comm="syz.0.852" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  161.327489][ T8849] netlink: 4 bytes leftover after parsing attributes in process `syz.1.851'.
[  161.376236][ T8851] netlink: 32 bytes leftover after parsing attributes in process `syz.0.853'.
[  161.478770][   T40] audit: type=1400 audit(1777037300.726:510): avc:  denied  { setopt } for  pid=8860 comm="syz.0.856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  161.490204][   T40] audit: type=1400 audit(1777037300.746:511): avc:  denied  { write } for  pid=8860 comm="syz.0.856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  161.490491][ T8862] netlink: 40 bytes leftover after parsing attributes in process `syz.0.856'.
[  161.565344][ T8875] netlink: 12 bytes leftover after parsing attributes in process `syz.1.859'.
[  161.575502][ T8874] SELinux: syz.0.861 (8874) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  161.706897][ T8879] netlink: 'syz.2.863': attribute type 10 has an invalid length.
[  161.725949][ T8879] bond0: (slave wlan1): Opening slave failed
[  161.811411][ T8886] FAULT_INJECTION: forcing a failure.
[  161.811411][ T8886] name failslab, interval 1, probability 0, space 0, times 0
[  161.821920][ T8886] CPU: 2 UID: 0 PID: 8886 Comm: syz.1.859 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  161.821954][ T8886] Tainted: [L]=SOFTLOCKUP
[  161.821962][ T8886] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  161.822014][ T8886] Call Trace:
[  161.822056][ T8886]  <TASK>
[  161.822064][ T8886]  dump_stack_lvl+0x100/0x190
[  161.822504][ T8886]  should_fail_ex.cold+0x5/0xa
[  161.822684][ T8886]  should_failslab+0xc2/0x120
[  161.822868][ T8886]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  161.822977][ T8886]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  161.823072][ T8886]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  161.823109][ T8886]  mmu_topup_memory_caches+0x25/0x170
[  161.823176][ T8886]  kvm_mmu_load+0xd6/0x23e0
[  161.823207][ T8886]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  161.823245][ T8886]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  161.823285][ T8886]  ? __pfx_kvm_mmu_load+0x10/0x10
[  161.823315][ T8886]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  161.823342][ T8886]  ? kvm_check_and_inject_events+0x961/0x1070
[  161.823434][ T8886]  ? record_steal_time+0x3d0/0xbc0
[  161.823461][ T8886]  vcpu_run+0x39f4/0x5ca0
[  161.823507][ T8886]  ? __pfx_vcpu_run+0x10/0x10
[  161.823550][ T8886]  ? rcu_is_watching+0x12/0xc0
[  161.823645][ T8886]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  161.823684][ T8886]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  161.823726][ T8886]  kvm_vcpu_ioctl+0x730/0x1720
[  161.823754][ T8886]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  161.823780][ T8886]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  161.823862][ T8886]  ? do_vfs_ioctl+0x226/0x13e0
[  161.823931][ T8886]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  161.823954][ T8886]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  161.824151][ T8886]  ? __fget_files+0x215/0x3d0
[  161.824180][ T8886]  ? hook_file_ioctl_common+0x149/0x410
[  161.824262][ T8886]  ? selinux_file_ioctl+0x13b/0x290
[  161.824289][ T8886]  ? selinux_file_ioctl+0xb6/0x290
[  161.824317][ T8886]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  161.824344][ T8886]  __x64_sys_ioctl+0x18e/0x210
[  161.824371][ T8886]  do_syscall_64+0x10b/0xf80
[  161.824469][ T8886]  ? clear_bhb_loop+0x40/0x90
[  161.824506][ T8886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.824530][ T8886] RIP: 0033:0x7efe5139c819
[  161.824552][ T8886] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  161.824574][ T8886] RSP: 002b:00007efe52255028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  161.824670][ T8886] RAX: ffffffffffffffda RBX: 00007efe51616180 RCX: 00007efe5139c819
[  161.824684][ T8886] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000b
[  161.824697][ T8886] RBP: 00007efe52255090 R08: 0000000000000000 R09: 0000000000000000
[  161.824710][ T8886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  161.824722][ T8886] R13: 00007efe51616218 R14: 00007efe51616180 R15: 00007ffe8b11f158
[  161.824753][ T8886]  </TASK>
[  161.968084][ T8890] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  161.974422][ T8890] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.124162][ T8890] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  162.127755][ T8890] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.247837][ T8890] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  162.251830][ T8890] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.262582][   T40] audit: type=1400 audit(1777037301.516:512): avc:  denied  { write } for  pid=8891 comm="syz.1.866" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  162.357602][ T8890] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  162.362938][ T8890] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.457918][ T8905] syzkaller0: entered promiscuous mode
[  162.577231][   T12] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  162.580619][   T12] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  162.596745][   T12] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  162.603381][   T12] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  162.613466][   T12] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  162.617205][   T12] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  162.625539][ T8909] ata1.00: invalid multi_count 128 ignored
[  162.645657][  T137] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  162.655777][  T137] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  162.710306][   T35] ata1.00: invalid multi_count 128 ignored
[  162.751666][ T8918] syzkaller0: entered promiscuous mode
[  162.762566][ T8914] FAULT_INJECTION: forcing a failure.
[  162.762566][ T8914] name failslab, interval 1, probability 0, space 0, times 0
[  162.763546][ T8918] 0: reclassify loop, rule prio 0, protocol 800
[  162.767253][ T8914] CPU: 1 UID: 0 PID: 8914 Comm: syz.3.873 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  162.767271][ T8914] Tainted: [L]=SOFTLOCKUP
[  162.767275][ T8914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  162.767281][ T8914] Call Trace:
[  162.767287][ T8914]  <TASK>
[  162.767293][ T8914]  dump_stack_lvl+0x100/0x190
[  162.767311][ T8914]  should_fail_ex.cold+0x5/0xa
[  162.767328][ T8914]  should_failslab+0xc2/0x120
[  162.767341][ T8914]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  162.767358][ T8914]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  162.767374][ T8914]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  162.767392][ T8914]  mmu_topup_memory_caches+0x25/0x170
[  162.767409][ T8914]  kvm_mmu_load+0xd6/0x23e0
[  162.767426][ T8914]  ? kvm_deliver_exception_payload+0x129/0x210
[  162.767441][ T8914]  ? __pfx_kvm_mmu_load+0x10/0x10
[  162.767452][ T8914]  ? vmx_inject_exception+0x21f/0x470
[  162.767465][ T8914]  ? kvm_check_and_inject_events+0x961/0x1070
[  162.767484][ T8914]  vcpu_run+0x39f4/0x5ca0
[  162.767503][ T8914]  ? __pfx_vcpu_run+0x10/0x10
[  162.767522][ T8914]  ? rcu_is_watching+0x12/0xc0
[  162.767542][ T8914]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  162.767557][ T8914]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  162.767576][ T8914]  kvm_vcpu_ioctl+0x730/0x1720
[  162.767588][ T8914]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  162.767600][ T8914]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  162.767614][ T8914]  ? do_vfs_ioctl+0x226/0x13e0
[  162.767625][ T8914]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  162.767640][ T8914]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  162.767666][ T8914]  ? __fget_files+0x215/0x3d0
[  162.767684][ T8914]  ? hook_file_ioctl_common+0x149/0x410
[  162.767714][ T8914]  ? selinux_file_ioctl+0x13b/0x290
[  162.767731][ T8914]  ? selinux_file_ioctl+0xb6/0x290
[  162.767749][ T8914]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  162.767767][ T8914]  __x64_sys_ioctl+0x18e/0x210
[  162.767785][ T8914]  do_syscall_64+0x10b/0xf80
[  162.767809][ T8914]  ? clear_bhb_loop+0x40/0x90
[  162.767830][ T8914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.767847][ T8914] RIP: 0033:0x7fcc1b19c819
[  162.767863][ T8914] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  162.767877][ T8914] RSP: 002b:00007fcc1c03a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  162.767894][ T8914] RAX: ffffffffffffffda RBX: 00007fcc1b415fa0 RCX: 00007fcc1b19c819
[  162.767904][ T8914] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  162.767910][ T8914] RBP: 00007fcc1c03a090 R08: 0000000000000000 R09: 0000000000000000
[  162.767917][ T8914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  162.767923][ T8914] R13: 00007fcc1b416038 R14: 00007fcc1b415fa0 R15: 00007ffd5b48ca28
[  162.767936][ T8914]  </TASK>
[  162.981762][ T8922] bridge1: entered promiscuous mode
[  163.367728][ T8936] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  163.400409][ T8938] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  163.404600][ T8938] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.604509][ T8938] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  163.608240][ T8938] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.713131][ T8938] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  163.718031][ T8938] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.773827][ T8938] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  163.777969][ T8938] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.187409][ T8959] fuse: Bad value for 'user_id'
[  164.192673][ T8959] fuse: Bad value for 'user_id'
[  164.232063][ T8961] syzkaller0: entered promiscuous mode
[  164.584844][ T8971] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold
[  164.630651][ T8974] netlink: 12 bytes leftover after parsing attributes in process `syz.1.893'.
[  164.714947][ T8974] FAULT_INJECTION: forcing a failure.
[  164.714947][ T8974] name failslab, interval 1, probability 0, space 0, times 0
[  164.720960][ T8974] CPU: 0 UID: 0 PID: 8974 Comm: syz.1.893 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  164.720990][ T8974] Tainted: [L]=SOFTLOCKUP
[  164.720997][ T8974] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  164.721038][ T8974] Call Trace:
[  164.721102][ T8974]  <TASK>
[  164.721109][ T8974]  dump_stack_lvl+0x100/0x190
[  164.721321][ T8974]  should_fail_ex.cold+0x5/0xa
[  164.721424][ T8974]  should_failslab+0xc2/0x120
[  164.721532][ T8974]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  164.721586][ T8974]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  164.721627][ T8974]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  164.721652][ T8974]  mmu_topup_memory_caches+0x25/0x170
[  164.721691][ T8974]  kvm_mmu_load+0xd6/0x23e0
[  164.721714][ T8974]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  164.721746][ T8974]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  164.721776][ T8974]  ? __pfx_kvm_mmu_load+0x10/0x10
[  164.721798][ T8974]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  164.721819][ T8974]  ? kvm_check_and_inject_events+0x961/0x1070
[  164.721855][ T8974]  ? record_steal_time+0x3d0/0xbc0
[  164.721878][ T8974]  vcpu_run+0x39f4/0x5ca0
[  164.721913][ T8974]  ? __pfx_vcpu_run+0x10/0x10
[  164.721945][ T8974]  ? rcu_is_watching+0x12/0xc0
[  164.722007][ T8974]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  164.722032][ T8974]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  164.722064][ T8974]  kvm_vcpu_ioctl+0x730/0x1720
[  164.722087][ T8974]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  164.722107][ T8974]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  164.722152][ T8974]  ? do_vfs_ioctl+0x226/0x13e0
[  164.722197][ T8974]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  164.722215][ T8974]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  164.722326][ T8974]  ? __fget_files+0x215/0x3d0
[  164.722354][ T8974]  ? hook_file_ioctl_common+0x149/0x410
[  164.722409][ T8974]  ? selinux_file_ioctl+0x13b/0x290
[  164.722429][ T8974]  ? selinux_file_ioctl+0xb6/0x290
[  164.722451][ T8974]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  164.722471][ T8974]  __x64_sys_ioctl+0x18e/0x210
[  164.722492][ T8974]  do_syscall_64+0x10b/0xf80
[  164.722567][ T8974]  ? clear_bhb_loop+0x40/0x90
[  164.722593][ T8974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.722612][ T8974] RIP: 0033:0x7efe5139c819
[  164.722630][ T8974] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  164.722648][ T8974] RSP: 002b:00007efe52297028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  164.722688][ T8974] RAX: ffffffffffffffda RBX: 00007efe51615fa0 RCX: 00007efe5139c819
[  164.722700][ T8974] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000b
[  164.722710][ T8974] RBP: 00007efe52297090 R08: 0000000000000000 R09: 0000000000000000
[  164.722719][ T8974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  164.722730][ T8974] R13: 00007efe51616038 R14: 00007efe51615fa0 R15: 00007ffe8b11f158
[  164.722753][ T8974]  </TASK>
[  165.171363][ T8979] netlink: 'syz.1.895': attribute type 1 has an invalid length.
[  165.204094][ T8979] 8021q: adding VLAN 0 to HW filter on device bond5
[  165.231723][ T8979] 8021q: adding VLAN 0 to HW filter on device bond5
[  165.234289][ T8979] bond5: (slave vxcan3): The slave device specified does not support setting the MAC address
[  165.238473][ T8979] bond5: (slave vxcan3): Error -95 calling set_mac_address
[  165.298833][ T8980] gretap3: entered promiscuous mode
[  165.305089][ T8980] bond5: (slave gretap3): making interface the new active one
[  165.308737][ T8980] bond5: (slave gretap3): Enslaving as an active interface with an up link
[  165.507882][ T8995] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  165.513249][ T8995] syzkaller0: entered promiscuous mode
[  165.515884][ T8995] syzkaller0: entered allmulticast mode
[  165.967636][   T40] audit: type=1400 audit(1777037305.216:513): avc:  denied  { getopt } for  pid=9007 comm="syz.2.904" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  166.004195][ T9010] syzkaller0: entered promiscuous mode
[  166.014002][ T9010] 0: reclassify loop, rule prio 0, protocol 800
[  166.349335][ T1874] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  166.381436][   T40] audit: type=1400 audit(1777037305.636:514): avc:  denied  { remount } for  pid=9014 comm="syz.1.907" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  166.388816][ T9016] devtmpfs: Cannot change global quota limit on remount
[  166.391790][ T9016] netlink: 'syz.1.907': attribute type 10 has an invalid length.
[  166.400479][ T9016] team0: Device ipvlan1 failed to register rx_handler
[  166.529305][ T1874] usb 7-1: Using ep0 maxpacket: 8
[  166.533435][ T1874] usb 7-1: config index 0 descriptor too short (expected 5924, got 36)
[  166.537091][ T1874] usb 7-1: config 250 has an invalid interface number: 228 but max is -1
[  166.541164][ T1874] usb 7-1: config 250 has 1 interface, different from the descriptor's value: 0
[  166.545341][ T1874] usb 7-1: config 250 has no interface number 0
[  166.548048][ T1874] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  166.553399][ T1874] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  166.558547][ T1874] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  166.563148][ T1874] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  166.567978][ T1874] usb 7-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  166.574526][ T1874] usb 7-1: config 250 interface 228 has no altsetting 0
[  166.579486][ T1874] usb 7-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  166.583452][ T1874] usb 7-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  166.587159][ T1874] usb 7-1: Product: syz
[  166.591457][ T1874] usb 7-1: SerialNumber: syz
[  166.602256][ T1874] hub 7-1:250.228: bad descriptor, ignoring hub
[  166.604745][ T1874] hub 7-1:250.228: probe with driver hub failed with error -5
[  166.722090][   T40] audit: type=1400 audit(1777037305.946:515): avc:  denied  { getopt } for  pid=9023 comm="syz.1.910" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  166.808233][ T1874] usblp 7-1:250.228: usblp0: USB Bidirectional printer dev 11 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  166.823861][ T9029] netlink: 64138 bytes leftover after parsing attributes in process `syz.1.913'.
[  166.828459][ T9030] netlink: 64138 bytes leftover after parsing attributes in process `syz.1.913'.
[  166.849586][ T1874] usb 7-1: USB disconnect, device number 11
[  166.857899][ T1874] usblp0: removed
[  167.090137][  T137] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  167.093231][  T137] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  167.108781][ T1205] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  167.112506][ T1205] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  167.127322][ T1205] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  167.131591][ T1205] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  167.152210][ T1205] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  167.159035][ T1205] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  167.198429][ T9051] netlink: 12 bytes leftover after parsing attributes in process `syz.1.921'.
[  167.258457][ T9051] FAULT_INJECTION: forcing a failure.
[  167.258457][ T9051] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  167.270373][ T9051] CPU: 0 UID: 0 PID: 9051 Comm: syz.1.921 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  167.270394][ T9051] Tainted: [L]=SOFTLOCKUP
[  167.270398][ T9051] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  167.270428][ T9051] Call Trace:
[  167.270458][ T9051]  <TASK>
[  167.270463][ T9051]  dump_stack_lvl+0x100/0x190
[  167.270622][ T9051]  should_fail_ex.cold+0x5/0xa
[  167.270692][ T9051]  ? prepare_alloc_pages+0x16d/0x5f0
[  167.270778][ T9051]  should_fail_alloc_page+0xeb/0x140
[  167.270808][ T9051]  prepare_alloc_pages+0x1f0/0x5f0
[  167.270823][ T9051]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  167.270841][ T9051]  ? stack_depot_save_flags+0x27/0x9d0
[  167.270919][ T9051]  ? stack_depot_save_flags+0x27/0x9d0
[  167.270936][ T9051]  ? kasan_save_stack+0x3f/0x50
[  167.270953][ T9051]  ? kasan_save_stack+0x30/0x50
[  167.270968][ T9051]  ? kasan_save_track+0x14/0x30
[  167.270983][ T9051]  ? __kasan_kmalloc+0xaa/0xb0
[  167.270998][ T9051]  ? __kvmalloc_node_noprof+0x360/0xa00
[  167.271014][ T9051]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  167.271038][ T9051]  ? mmu_topup_memory_caches+0xbc/0x170
[  167.271060][ T9051]  ? kvm_mmu_load+0xd6/0x23e0
[  167.271072][ T9051]  ? vcpu_run+0x39f4/0x5ca0
[  167.271094][ T9051]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  167.271109][ T9051]  ? kvm_vcpu_ioctl+0x730/0x1720
[  167.271119][ T9051]  ? __x64_sys_ioctl+0x18e/0x210
[  167.271148][ T9051]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  167.271174][ T9051]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  167.271204][ T9051]  ? policy_nodemask+0xed/0x4f0
[  167.271217][ T9051]  alloc_pages_mpol+0x1fb/0x540
[  167.271229][ T9051]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  167.271241][ T9051]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  167.271257][ T9051]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  167.271271][ T9051]  alloc_pages_noprof+0x1a/0x160
[  167.271284][ T9051]  get_free_pages_noprof+0x10/0xb0
[  167.271295][ T9051]  __kvm_mmu_topup_memory_cache+0x278/0x5f0
[  167.271311][ T9051]  mmu_topup_memory_caches+0xbc/0x170
[  167.271327][ T9051]  kvm_mmu_load+0xd6/0x23e0
[  167.271341][ T9051]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  167.271361][ T9051]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  167.271384][ T9051]  ? __pfx_kvm_mmu_load+0x10/0x10
[  167.271396][ T9051]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  167.271409][ T9051]  ? kvm_check_and_inject_events+0x961/0x1070
[  167.271424][ T9051]  ? record_steal_time+0x3d0/0xbc0
[  167.271438][ T9051]  vcpu_run+0x39f4/0x5ca0
[  167.271458][ T9051]  ? __pfx_vcpu_run+0x10/0x10
[  167.271477][ T9051]  ? rcu_is_watching+0x12/0xc0
[  167.271508][ T9051]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  167.271523][ T9051]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  167.271542][ T9051]  kvm_vcpu_ioctl+0x730/0x1720
[  167.271555][ T9051]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  167.271566][ T9051]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  167.271580][ T9051]  ? do_vfs_ioctl+0x226/0x13e0
[  167.271590][ T9051]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  167.271601][ T9051]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  167.271654][ T9051]  ? __fget_files+0x215/0x3d0
[  167.271668][ T9051]  ? hook_file_ioctl_common+0x149/0x410
[  167.271703][ T9051]  ? selinux_file_ioctl+0x13b/0x290
[  167.271715][ T9051]  ? selinux_file_ioctl+0xb6/0x290
[  167.271728][ T9051]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  167.271739][ T9051]  __x64_sys_ioctl+0x18e/0x210
[  167.271751][ T9051]  do_syscall_64+0x10b/0xf80
[  167.271801][ T9051]  ? clear_bhb_loop+0x40/0x90
[  167.271815][ T9051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.271827][ T9051] RIP: 0033:0x7efe5139c819
[  167.271837][ T9051] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  167.271848][ T9051] RSP: 002b:00007efe52297028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  167.271878][ T9051] RAX: ffffffffffffffda RBX: 00007efe51615fa0 RCX: 00007efe5139c819
[  167.271884][ T9051] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000b
[  167.271890][ T9051] RBP: 00007efe52297090 R08: 0000000000000000 R09: 0000000000000000
[  167.271896][ T9051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  167.271902][ T9051] R13: 00007efe51616038 R14: 00007efe51615fa0 R15: 00007ffe8b11f158
[  167.271915][ T9051]  </TASK>
[  167.319818][ T1874] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  167.561056][ T1874] usb 7-1: Using ep0 maxpacket: 8
[  167.569064][ T1874] usb 7-1: config index 0 descriptor too short (expected 5924, got 36)
[  167.572956][ T1874] usb 7-1: config 250 has an invalid interface number: 228 but max is -1
[  167.579328][ T1874] usb 7-1: config 250 has 1 interface, different from the descriptor's value: 0
[  167.587616][ T1874] usb 7-1: config 250 has no interface number 0
[  167.596610][ T1874] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  167.610221][ T1874] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  167.618091][ T1874] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  167.624974][ T1874] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  167.631722][ T1874] usb 7-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  167.640797][ T1874] usb 7-1: config 250 interface 228 has no altsetting 0
[  167.647936][ T1874] usb 7-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  167.654273][ T1874] usb 7-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  167.658314][ T1874] usb 7-1: Product: syz
[  167.660891][ T1874] usb 7-1: SerialNumber: syz
[  167.710129][ T1874] hub 7-1:250.228: bad descriptor, ignoring hub
[  167.722815][ T1874] hub 7-1:250.228: probe with driver hub failed with error -5
[  167.918052][ T1874] usblp 7-1:250.228: usblp0: USB Bidirectional printer dev 12 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  167.959836][ T1874] usb 7-1: USB disconnect, device number 12
[  167.970128][ T1874] usblp0: removed
[  167.992851][ T9063] netlink: 188 bytes leftover after parsing attributes in process `syz.3.924'.
[  168.015842][ T9012] ufs: You didn't specify the type of your ufs filesystem
[  168.015842][ T9012] 
[  168.015842][ T9012] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  168.015842][ T9012] 
[  168.015842][ T9012] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  168.015922][ T9012] ufs: failed to set blocksize
[  168.233882][ T9073] netlink: 4 bytes leftover after parsing attributes in process `syz.1.927'.
[  168.234145][ T9074] netlink: 'syz.1.927': attribute type 3 has an invalid length.
[  168.244199][ T9073] netlink: 12 bytes leftover after parsing attributes in process `syz.1.927'.
[  168.284361][ T9074] netlink: 12 bytes leftover after parsing attributes in process `syz.1.927'.
[  168.300436][   T40] audit: type=1400 audit(1777037307.546:516): avc:  denied  { listen } for  pid=9072 comm="syz.1.927" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  168.387328][ T9082] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  168.392061][ T9082] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.417386][ T9079] 0x000000000000-0x000000020003 : ""
[  168.419982][ T9079] mtd: partition "" extends beyond the end of device "mtdram test device" -- size truncated to 0x20000
[  168.443524][ T9079] ftl_cs: FTL header not found.
[  168.449074][ T1874] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  168.481971][ T9082] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  168.486700][ T9082] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.500959][ T9079] netlink: 'syz.0.928': attribute type 13 has an invalid length.
[  168.599650][ T1874] usb 8-1: Using ep0 maxpacket: 32
[  168.604516][ T1874] usb 8-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  168.609862][ T9082] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  168.615145][ T1874] usb 8-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  168.622338][ T9082] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.626591][ T1874] usb 8-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  168.632659][ T1874] usb 8-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  168.641292][ T1874] usb 8-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  168.647088][ T1874] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.651047][ T1874] usb 8-1: Product: syz
[  168.652945][ T1874] usb 8-1: Manufacturer: syz
[  168.655216][ T1874] usb 8-1: SerialNumber: syz
[  168.757231][    C1] imon 8-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  168.776273][ T1874] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:155.0/input/input9
[  168.833583][ T9082] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  168.837777][ T9082] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.900834][ T9094] netlink: 8 bytes leftover after parsing attributes in process `syz.2.932'.
[  168.951125][ T9096] netlink: 12 bytes leftover after parsing attributes in process `syz.0.933'.
[  168.988989][ T1874] imon 8-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  168.993356][ T1874]  (id 0x00)
[  169.027246][ T1205] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  169.030862][ T1205] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  169.050761][ T1874] rc_core: IR keymap rc-imon-pad not found
[  169.052447][ T1205] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  169.053236][ T1874] Registered IR keymap rc-empty
[  169.061849][ T1874] imon 8-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  169.063084][ T1205] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  169.066916][ T1874] imon 8-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  169.080931][ T1205] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  169.089143][ T1205] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  169.096974][ T9096] FAULT_INJECTION: forcing a failure.
[  169.096974][ T9096] name failslab, interval 1, probability 0, space 0, times 0
[  169.105434][ T9096] CPU: 0 UID: 0 PID: 9096 Comm: syz.0.933 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  169.105470][ T9096] Tainted: [L]=SOFTLOCKUP
[  169.105478][ T9096] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  169.105518][ T9096] Call Trace:
[  169.105580][ T9096]  <TASK>
[  169.105596][ T9096]  dump_stack_lvl+0x100/0x190
[  169.105872][ T9096]  should_fail_ex.cold+0x5/0xa
[  169.105978][ T9096]  should_failslab+0xc2/0x120
[  169.106117][ T9096]  __kvmalloc_node_noprof+0xfa/0xa00
[  169.106208][ T9096]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  169.106254][ T9096]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  169.106295][ T9096]  __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  169.106330][ T9096]  mmu_topup_memory_caches+0xbc/0x170
[  169.106378][ T9096]  kvm_mmu_load+0xd6/0x23e0
[  169.106408][ T9096]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  169.106445][ T9096]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  169.106486][ T9096]  ? __pfx_kvm_mmu_load+0x10/0x10
[  169.106517][ T9096]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  169.106543][ T9096]  ? kvm_check_and_inject_events+0x961/0x1070
[  169.106594][ T9096]  ? record_steal_time+0x3d0/0xbc0
[  169.106618][ T9096]  vcpu_run+0x39f4/0x5ca0
[  169.106658][ T9096]  ? __pfx_vcpu_run+0x10/0x10
[  169.106700][ T9096]  ? rcu_is_watching+0x12/0xc0
[  169.106782][ T9096]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  169.106814][ T9096]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  169.106852][ T9096]  kvm_vcpu_ioctl+0x730/0x1720
[  169.106876][ T9096]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  169.106899][ T9096]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  169.106950][ T9096]  ? do_vfs_ioctl+0x226/0x13e0
[  169.107001][ T9096]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  169.107025][ T9096]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  169.107146][ T9096]  ? __fget_files+0x215/0x3d0
[  169.107174][ T9096]  ? hook_file_ioctl_common+0x149/0x410
[  169.107237][ T9096]  ? selinux_file_ioctl+0x13b/0x290
[  169.107263][ T9096]  ? selinux_file_ioctl+0xb6/0x290
[  169.107291][ T9096]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  169.107317][ T9096]  __x64_sys_ioctl+0x18e/0x210
[  169.107339][ T9096]  do_syscall_64+0x10b/0xf80
[  169.107450][ T9096]  ? clear_bhb_loop+0x40/0x90
[  169.107479][ T9096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.107501][ T9096] RIP: 0033:0x7f727bb9c819
[  169.107520][ T9096] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  169.107539][ T9096] RSP: 002b:00007f727c9e2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  169.107584][ T9096] RAX: ffffffffffffffda RBX: 00007f727be15fa0 RCX: 00007f727bb9c819
[  169.107603][ T9096] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000b
[  169.107615][ T9096] RBP: 00007f727c9e2090 R08: 0000000000000000 R09: 0000000000000000
[  169.107627][ T9096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  169.107639][ T9096] R13: 00007f727be16038 R14: 00007f727be15fa0 R15: 00007ffd45d5f7d8
[  169.107666][ T9096]  </TASK>
[  169.259192][  T450] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  169.263275][  T450] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  169.345568][ T1874] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:155.0/rc/rc0
[  169.356734][ T1874] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:155.0/rc/rc0/input10
[  169.388256][ T1874] imon 8-1:155.0: iMON device (15c2:ffdc, intf0) on usb<8:11> initialized
[  169.484740][ T9071] imon:send_packet: task interrupted
[  169.491281][ T9071] imon:send_packet: packet tx failed (-512)
[  169.494715][ T9071] imon:vfd_write: send packet #0 failed
[  169.501517][ T9071] imon:send_packet: packet tx failed (-32)
[  169.503895][ T9071] imon:vfd_write: send packet #0 failed
[  169.684955][   T40] audit: type=1400 audit(1777037308.936:517): avc:  denied  { accept } for  pid=9121 comm="syz.0.937" lport=250 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  169.711793][ T1040] usb 8-1: USB disconnect, device number 11
[  169.773291][ T9126] bridge: RTM_NEWNEIGH with invalid state 0x4
[  169.777300][ T9124] netlink: 76 bytes leftover after parsing attributes in process `syz.2.938'.
[  169.830542][ T9124] syzkaller0: entered promiscuous mode
[  169.833537][ T9124] syzkaller0: entered allmulticast mode
[  169.843200][ T9124] tc action pedit offset must be on 32 bit boundaries
[  169.903558][ T9126] program syz.0.939 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  169.998096][ T9126] misc userio: Begin command sent, but we're already running
[  170.298322][ T9138] syzkaller0: entered promiscuous mode
[  170.300491][ T9138] syzkaller0: entered allmulticast mode
[  170.344617][ T9143] FAULT_INJECTION: forcing a failure.
[  170.344617][ T9143] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  170.354917][ T9143] CPU: 3 UID: 0 PID: 9143 Comm: syz.3.944 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  170.354950][ T9143] Tainted: [L]=SOFTLOCKUP
[  170.354957][ T9143] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  170.354968][ T9143] Call Trace:
[  170.354976][ T9143]  <TASK>
[  170.354983][ T9143]  dump_stack_lvl+0x100/0x190
[  170.355013][ T9143]  should_fail_ex.cold+0x5/0xa
[  170.355038][ T9143]  ? prepare_alloc_pages+0x16d/0x5f0
[  170.355064][ T9143]  should_fail_alloc_page+0xeb/0x140
[  170.355086][ T9143]  prepare_alloc_pages+0x1f0/0x5f0
[  170.355113][ T9143]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  170.355143][ T9143]  ? stack_depot_save_flags+0x27/0x9d0
[  170.355245][ T9143]  ? kasan_save_stack+0x3f/0x50
[  170.355271][ T9143]  ? kasan_save_stack+0x30/0x50
[  170.355296][ T9143]  ? kasan_save_track+0x14/0x30
[  170.355319][ T9143]  ? __kasan_kmalloc+0xaa/0xb0
[  170.355341][ T9143]  ? __kvmalloc_node_noprof+0x360/0xa00
[  170.355368][ T9143]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  170.355389][ T9143]  ? mmu_topup_memory_caches+0xbc/0x170
[  170.355413][ T9143]  ? kvm_mmu_load+0xd6/0x23e0
[  170.355432][ T9143]  ? vcpu_run+0x39f4/0x5ca0
[  170.355455][ T9143]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  170.355477][ T9143]  ? kvm_vcpu_ioctl+0x730/0x1720
[  170.355493][ T9143]  ? __x64_sys_ioctl+0x18e/0x210
[  170.355512][ T9143]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  170.355549][ T9143]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  170.355568][ T9143]  ? policy_nodemask+0xed/0x4f0
[  170.355591][ T9143]  alloc_pages_mpol+0x1fb/0x540
[  170.355608][ T9143]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  170.355625][ T9143]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  170.355646][ T9143]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  170.355667][ T9143]  alloc_pages_noprof+0x1a/0x160
[  170.355686][ T9143]  get_free_pages_noprof+0x10/0xb0
[  170.355701][ T9143]  __kvm_mmu_topup_memory_cache+0x278/0x5f0
[  170.355726][ T9143]  mmu_topup_memory_caches+0xbc/0x170
[  170.355749][ T9143]  kvm_mmu_load+0xd6/0x23e0
[  170.355770][ T9143]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  170.355798][ T9143]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  170.355829][ T9143]  ? __pfx_kvm_mmu_load+0x10/0x10
[  170.355852][ T9143]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  170.355874][ T9143]  ? kvm_check_and_inject_events+0x961/0x1070
[  170.355898][ T9143]  ? record_steal_time+0x3d0/0xbc0
[  170.355919][ T9143]  vcpu_run+0x39f4/0x5ca0
[  170.355954][ T9143]  ? __pfx_vcpu_run+0x10/0x10
[  170.356018][ T9143]  ? rcu_is_watching+0x12/0xc0
[  170.356050][ T9143]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  170.356075][ T9143]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  170.356106][ T9143]  kvm_vcpu_ioctl+0x730/0x1720
[  170.356144][ T9143]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  170.356181][ T9143]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  170.356203][ T9143]  ? do_vfs_ioctl+0x226/0x13e0
[  170.356221][ T9143]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  170.356238][ T9143]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  170.356267][ T9143]  ? __fget_files+0x215/0x3d0
[  170.356286][ T9143]  ? hook_file_ioctl_common+0x149/0x410
[  170.356317][ T9143]  ? selinux_file_ioctl+0x13b/0x290
[  170.356337][ T9143]  ? selinux_file_ioctl+0xb6/0x290
[  170.356357][ T9143]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  170.356377][ T9143]  __x64_sys_ioctl+0x18e/0x210
[  170.356397][ T9143]  do_syscall_64+0x10b/0xf80
[  170.356422][ T9143]  ? clear_bhb_loop+0x40/0x90
[  170.356445][ T9143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.356464][ T9143] RIP: 0033:0x7fcc1b19c819
[  170.356482][ T9143] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  170.356501][ T9143] RSP: 002b:00007fcc1c03a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  170.356519][ T9143] RAX: ffffffffffffffda RBX: 00007fcc1b415fa0 RCX: 00007fcc1b19c819
[  170.356531][ T9143] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000b
[  170.356541][ T9143] RBP: 00007fcc1c03a090 R08: 0000000000000000 R09: 0000000000000000
[  170.356553][ T9143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  170.356563][ T9143] R13: 00007fcc1b416038 R14: 00007fcc1b415fa0 R15: 00007ffd5b48ca28
[  170.356596][ T9143]  </TASK>
[  170.590635][ T9149] l2tp_ppp: sess 2/0: no socket in recv
[  170.697756][ T9158] QAT: Invalid ioctl -2144835806
[  170.735763][ T9161] syzkaller0: entered promiscuous mode
[  170.742881][ T9161] 0: reclassify loop, rule prio 0, protocol 800
[  170.770423][ T5963] IPVS: starting estimator thread 0...
[  170.870159][ T9167] IPVS: using max 23 ests per chain, 55200 per kthread
[  170.944339][ T9180] syzkaller0: entered promiscuous mode
[  170.946353][ T9180] syzkaller0: entered allmulticast mode
[  171.135095][ T9189] netlink: 'syz.1.957': attribute type 30 has an invalid length.
[  171.163589][ T9189] bond6: option arp_missed_max: invalid value (0)
[  171.165838][ T9189] bond6: option arp_missed_max: allowed values 1 - 255
[  171.186637][ T9189] bond6 (unregistering): Released all slaves
[  171.195334][ T9185] FAULT_INJECTION: forcing a failure.
[  171.195334][ T9185] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  171.202026][ T9185] CPU: 3 UID: 0 PID: 9185 Comm: syz.0.959 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  171.202054][ T9185] Tainted: [L]=SOFTLOCKUP
[  171.202060][ T9185] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  171.202071][ T9185] Call Trace:
[  171.202077][ T9185]  <TASK>
[  171.202085][ T9185]  dump_stack_lvl+0x100/0x190
[  171.202115][ T9185]  should_fail_ex.cold+0x5/0xa
[  171.202141][ T9185]  ? prepare_alloc_pages+0x16d/0x5f0
[  171.202167][ T9185]  should_fail_alloc_page+0xeb/0x140
[  171.202191][ T9185]  prepare_alloc_pages+0x1f0/0x5f0
[  171.202218][ T9185]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  171.202249][ T9185]  ? stack_depot_save_flags+0x27/0x9d0
[  171.202283][ T9185]  ? kasan_save_stack+0x3f/0x50
[  171.202310][ T9185]  ? kasan_save_stack+0x30/0x50
[  171.202337][ T9185]  ? kasan_save_track+0x14/0x30
[  171.202362][ T9185]  ? __kasan_kmalloc+0xaa/0xb0
[  171.202386][ T9185]  ? __kvmalloc_node_noprof+0x360/0xa00
[  171.202415][ T9185]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  171.202435][ T9185]  ? mmu_topup_memory_caches+0xbc/0x170
[  171.202459][ T9185]  ? kvm_mmu_load+0xd6/0x23e0
[  171.202480][ T9185]  ? vcpu_run+0x39f4/0x5ca0
[  171.202504][ T9185]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  171.202528][ T9185]  ? kvm_vcpu_ioctl+0x730/0x1720
[  171.202544][ T9185]  ? __x64_sys_ioctl+0x18e/0x210
[  171.202570][ T9185]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  171.202614][ T9185]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  171.202639][ T9185]  ? policy_nodemask+0xed/0x4f0
[  171.202659][ T9185]  alloc_pages_mpol+0x1fb/0x540
[  171.202680][ T9185]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  171.202702][ T9185]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  171.202727][ T9185]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  171.202753][ T9185]  alloc_pages_noprof+0x1a/0x160
[  171.202777][ T9185]  get_free_pages_noprof+0x10/0xb0
[  171.202796][ T9185]  __kvm_mmu_topup_memory_cache+0x278/0x5f0
[  171.202825][ T9185]  mmu_topup_memory_caches+0xbc/0x170
[  171.202853][ T9185]  kvm_mmu_load+0xd6/0x23e0
[  171.202876][ T9185]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  171.202907][ T9185]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  171.202940][ T9185]  ? __pfx_kvm_mmu_load+0x10/0x10
[  171.202962][ T9185]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  171.202985][ T9185]  ? kvm_check_and_inject_events+0x961/0x1070
[  171.203012][ T9185]  ? record_steal_time+0x3d0/0xbc0
[  171.203059][ T9185]  vcpu_run+0x39f4/0x5ca0
[  171.203099][ T9185]  ? __pfx_vcpu_run+0x10/0x10
[  171.203135][ T9185]  ? rcu_is_watching+0x12/0xc0
[  171.203171][ T9185]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  171.203198][ T9185]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  171.203234][ T9185]  kvm_vcpu_ioctl+0x730/0x1720
[  171.203258][ T9185]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  171.203281][ T9185]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  171.203305][ T9185]  ? do_vfs_ioctl+0x226/0x13e0
[  171.203324][ T9185]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  171.203344][ T9185]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  171.203378][ T9185]  ? __fget_files+0x215/0x3d0
[  171.203401][ T9185]  ? hook_file_ioctl_common+0x149/0x410
[  171.203437][ T9185]  ? selinux_file_ioctl+0x13b/0x290
[  171.203458][ T9185]  ? selinux_file_ioctl+0xb6/0x290
[  171.203517][ T9185]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  171.203539][ T9185]  __x64_sys_ioctl+0x18e/0x210
[  171.203566][ T9185]  do_syscall_64+0x10b/0xf80
[  171.203594][ T9185]  ? clear_bhb_loop+0x40/0x90
[  171.203620][ T9185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.203640][ T9185] RIP: 0033:0x7f727bb9c819
[  171.203659][ T9185] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  171.203677][ T9185] RSP: 002b:00007f727c9e2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  171.203698][ T9185] RAX: ffffffffffffffda RBX: 00007f727be15fa0 RCX: 00007f727bb9c819
[  171.203710][ T9185] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000b
[  171.203721][ T9185] RBP: 00007f727c9e2090 R08: 0000000000000000 R09: 0000000000000000
[  171.203731][ T9185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  171.203741][ T9185] R13: 00007f727be16038 R14: 00007f727be15fa0 R15: 00007ffd45d5f7d8
[  171.203766][ T9185]  </TASK>
[  171.852390][ T9206] syzkaller0: entered promiscuous mode
[  172.013950][   T40] audit: type=1400 audit(1777037311.266:518): avc:  denied  { append } for  pid=9213 comm="syz.3.967" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  172.213449][ T9222] FAULT_INJECTION: forcing a failure.
[  172.213449][ T9222] name failslab, interval 1, probability 0, space 0, times 0
[  172.221569][ T9222] CPU: 0 UID: 0 PID: 9222 Comm: syz.3.970 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  172.221589][ T9222] Tainted: [L]=SOFTLOCKUP
[  172.221594][ T9222] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  172.221601][ T9222] Call Trace:
[  172.221606][ T9222]  <TASK>
[  172.221611][ T9222]  dump_stack_lvl+0x100/0x190
[  172.221631][ T9222]  should_fail_ex.cold+0x5/0xa
[  172.221663][ T9222]  ? tomoyo_realpath_from_path+0xb6/0x690
[  172.221680][ T9222]  should_failslab+0xc2/0x120
[  172.221693][ T9222]  __kmalloc_noprof+0xe0/0x850
[  172.221710][ T9222]  ? kfree+0x1dd/0x6c0
[  172.221726][ T9222]  tomoyo_realpath_from_path+0xb6/0x690
[  172.221744][ T9222]  tomoyo_path_number_perm+0x23c/0x580
[  172.221755][ T9222]  ? tomoyo_path_number_perm+0x22e/0x580
[  172.221767][ T9222]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  172.221793][ T9222]  ? find_held_lock+0x2b/0x80
[  172.221831][ T9222]  ? __fget_files+0x215/0x3d0
[  172.221846][ T9222]  ? hook_file_ioctl_common+0x149/0x410
[  172.221862][ T9222]  ? __fget_files+0x215/0x3d0
[  172.221877][ T9222]  ? __fget_files+0x21f/0x3d0
[  172.221893][ T9222]  security_file_ioctl+0xd3/0x230
[  172.221952][ T9222]  __x64_sys_ioctl+0xb7/0x210
[  172.221965][ T9222]  do_syscall_64+0x10b/0xf80
[  172.221983][ T9222]  ? clear_bhb_loop+0x40/0x90
[  172.221997][ T9222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.222010][ T9222] RIP: 0033:0x7fcc1b19c819
[  172.222020][ T9222] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  172.222030][ T9222] RSP: 002b:00007fcc1c03a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  172.222043][ T9222] RAX: ffffffffffffffda RBX: 00007fcc1b415fa0 RCX: 00007fcc1b19c819
[  172.222050][ T9222] RDX: 0000200000000480 RSI: 000000004048aecb RDI: 0000000000000005
[  172.222057][ T9222] RBP: 00007fcc1c03a090 R08: 0000000000000000 R09: 0000000000000000
[  172.222063][ T9222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.222070][ T9222] R13: 00007fcc1b416038 R14: 00007fcc1b415fa0 R15: 00007ffd5b48ca28
[  172.222084][ T9222]  </TASK>
[  172.222155][ T9222] ERROR: Out of memory at tomoyo_realpath_from_path.
[  174.673818][ T9215] syzkaller0: entered promiscuous mode
[  174.910312][ T9256] __nla_validate_parse: 5 callbacks suppressed
[  174.910334][ T9256] netlink: 64 bytes leftover after parsing attributes in process `syz.1.973'.
[  175.416899][   T40] audit: type=1400 audit(1777037314.666:519): avc:  denied  { read } for  pid=9267 comm="syz.2.977" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  175.427077][   T40] audit: type=1400 audit(1777037314.666:520): avc:  denied  { open } for  pid=9267 comm="syz.2.977" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  177.154577][ T9271] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  177.218518][ T9275] syzkaller0: entered promiscuous mode
[  177.232837][ T9277] syzkaller0: entered promiscuous mode
[  177.234837][ T9277] syzkaller0: entered allmulticast mode
[  177.269291][ T9281] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=54 sclass=netlink_route_socket pid=9281 comm=syz.2.983
[  177.407724][   T40] audit: type=1400 audit(1777037316.646:521): avc:  denied  { append } for  pid=9283 comm="syz.2.984" name="pfkey" dev="proc" ino=4026533905 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  177.475411][   T40] audit: type=1400 audit(1777037316.726:522): avc:  denied  { bpf } for  pid=9288 comm="syz.0.986" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  177.483777][   T40] audit: type=1400 audit(1777037316.726:523): avc:  denied  { perfmon } for  pid=9288 comm="syz.0.986" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  177.492790][   T40] audit: type=1400 audit(1777037316.726:524): avc:  denied  { map } for  pid=9283 comm="syz.2.984" path="/proc/529/net/pfkey" dev="proc" ino=4026533905 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  177.533941][ T9289] Illegal XDP return value 386 on prog  (id 62) dev N/A, expect packet loss!
[  178.429455][ T9295] netlink: 8 bytes leftover after parsing attributes in process `syz.0.987'.
[  178.632845][ T9305] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9305 comm=syz.0.990
[  178.643459][ T9306] netlink: 'syz.0.990': attribute type 1 has an invalid length.
[  179.974507][ T9306] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  180.047921][   T40] audit: type=1400 audit(1777037319.296:525): avc:  denied  { ioctl } for  pid=9310 comm="syz.0.992" path="/dev/usbmon7" dev="devtmpfs" ino=759 ioctlcmd=0x920a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  180.106776][   T40] audit: type=1804 audit(1777037319.356:526): pid=9312 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.992" name="file1" dev="ramfs" ino=34449 res=1 errno=0
[  180.114830][   T40] audit: type=1400 audit(1777037319.366:527): avc:  denied  { execute } for  pid=9310 comm="syz.0.992" path="/file1" dev="ramfs" ino=34449 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  180.217994][ T9321] FAULT_INJECTION: forcing a failure.
[  180.217994][ T9321] name failslab, interval 1, probability 0, space 0, times 0
[  180.231797][ T9321] CPU: 0 UID: 0 PID: 9321 Comm: syz.0.996 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  180.231831][ T9321] Tainted: [L]=SOFTLOCKUP
[  180.231839][ T9321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  180.231851][ T9321] Call Trace:
[  180.231858][ T9321]  <TASK>
[  180.231865][ T9321]  dump_stack_lvl+0x100/0x190
[  180.231897][ T9321]  should_fail_ex.cold+0x5/0xa
[  180.231928][ T9321]  should_failslab+0xc2/0x120
[  180.231978][ T9321]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  180.232007][ T9321]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  180.232037][ T9321]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  180.232069][ T9321]  mmu_topup_memory_caches+0x25/0x170
[  180.232098][ T9321]  kvm_mmu_load+0xd6/0x23e0
[  180.232130][ T9321]  ? kvm_deliver_exception_payload+0x129/0x210
[  180.232156][ T9321]  ? __pfx_kvm_mmu_load+0x10/0x10
[  180.232178][ T9321]  ? vmx_inject_exception+0x21f/0x470
[  180.232201][ T9321]  ? kvm_check_and_inject_events+0x961/0x1070
[  180.232235][ T9321]  vcpu_run+0x39f4/0x5ca0
[  180.232280][ T9321]  ? __pfx_vcpu_run+0x10/0x10
[  180.232316][ T9321]  ? rcu_is_watching+0x12/0xc0
[  180.232352][ T9321]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  180.232379][ T9321]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  180.232414][ T9321]  kvm_vcpu_ioctl+0x730/0x1720
[  180.232439][ T9321]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  180.232460][ T9321]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  180.232487][ T9321]  ? do_vfs_ioctl+0x226/0x13e0
[  180.232508][ T9321]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  180.232528][ T9321]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  180.232564][ T9321]  ? __fget_files+0x215/0x3d0
[  180.232586][ T9321]  ? hook_file_ioctl_common+0x149/0x410
[  180.232621][ T9321]  ? selinux_file_ioctl+0x13b/0x290
[  180.232643][ T9321]  ? selinux_file_ioctl+0xb6/0x290
[  180.232666][ T9321]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  180.232688][ T9321]  __x64_sys_ioctl+0x18e/0x210
[  180.232711][ T9321]  do_syscall_64+0x10b/0xf80
[  180.232739][ T9321]  ? clear_bhb_loop+0x40/0x90
[  180.232764][ T9321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.232802][ T9321] RIP: 0033:0x7f727bb9c819
[  180.232821][ T9321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  180.232839][ T9321] RSP: 002b:00007f727c9e2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  180.232860][ T9321] RAX: ffffffffffffffda RBX: 00007f727be15fa0 RCX: 00007f727bb9c819
[  180.232873][ T9321] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  180.232884][ T9321] RBP: 00007f727c9e2090 R08: 0000000000000000 R09: 0000000000000000
[  180.232896][ T9321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  180.232907][ T9321] R13: 00007f727be16038 R14: 00007f727be15fa0 R15: 00007ffd45d5f7d8
[  180.232934][ T9321]  </TASK>
[  180.553539][ T9337] syzkaller0: entered promiscuous mode
[  180.555925][ T9337] syzkaller0: entered allmulticast mode
[  180.703509][ T9343] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1004'.
[  180.780361][ T9343] FAULT_INJECTION: forcing a failure.
[  180.780361][ T9343] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  180.786143][ T9343] CPU: 1 UID: 0 PID: 9343 Comm: syz.2.1004 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  180.786167][ T9343] Tainted: [L]=SOFTLOCKUP
[  180.786173][ T9343] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  180.786181][ T9343] Call Trace:
[  180.786188][ T9343]  <TASK>
[  180.786194][ T9343]  dump_stack_lvl+0x100/0x190
[  180.786217][ T9343]  should_fail_ex.cold+0x5/0xa
[  180.786236][ T9343]  ? prepare_alloc_pages+0x16d/0x5f0
[  180.786255][ T9343]  should_fail_alloc_page+0xeb/0x140
[  180.786272][ T9343]  prepare_alloc_pages+0x1f0/0x5f0
[  180.786292][ T9343]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  180.786314][ T9343]  ? stack_depot_save_flags+0x27/0x9d0
[  180.786335][ T9343]  ? stack_depot_save_flags+0x27/0x9d0
[  180.786356][ T9343]  ? kasan_save_stack+0x3f/0x50
[  180.786376][ T9343]  ? kasan_save_stack+0x30/0x50
[  180.786395][ T9343]  ? kasan_save_track+0x14/0x30
[  180.786413][ T9343]  ? __kasan_kmalloc+0xaa/0xb0
[  180.786432][ T9343]  ? __kvmalloc_node_noprof+0x360/0xa00
[  180.786453][ T9343]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  180.786470][ T9343]  ? mmu_topup_memory_caches+0xbc/0x170
[  180.786489][ T9343]  ? kvm_mmu_load+0xd6/0x23e0
[  180.786505][ T9343]  ? vcpu_run+0x39f4/0x5ca0
[  180.786528][ T9343]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  180.786547][ T9343]  ? kvm_vcpu_ioctl+0x730/0x1720
[  180.786559][ T9343]  ? __x64_sys_ioctl+0x18e/0x210
[  180.786574][ T9343]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  180.786608][ T9343]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  180.786626][ T9343]  ? policy_nodemask+0xed/0x4f0
[  180.786643][ T9343]  alloc_pages_mpol+0x1fb/0x540
[  180.786658][ T9343]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  180.786674][ T9343]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  180.786693][ T9343]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  180.786711][ T9343]  alloc_pages_noprof+0x1a/0x160
[  180.786728][ T9343]  get_free_pages_noprof+0x10/0xb0
[  180.786742][ T9343]  __kvm_mmu_topup_memory_cache+0x278/0x5f0
[  180.786763][ T9343]  mmu_topup_memory_caches+0xbc/0x170
[  180.786782][ T9343]  kvm_mmu_load+0xd6/0x23e0
[  180.786799][ T9343]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  180.786821][ T9343]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  180.786845][ T9343]  ? __pfx_kvm_mmu_load+0x10/0x10
[  180.786862][ T9343]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  180.786878][ T9343]  ? kvm_check_and_inject_events+0x961/0x1070
[  180.786896][ T9343]  ? record_steal_time+0x3d0/0xbc0
[  180.786913][ T9343]  vcpu_run+0x39f4/0x5ca0
[  180.786940][ T9343]  ? __pfx_vcpu_run+0x10/0x10
[  180.786964][ T9343]  ? rcu_is_watching+0x12/0xc0
[  180.786990][ T9343]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  180.787009][ T9343]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  180.787033][ T9343]  kvm_vcpu_ioctl+0x730/0x1720
[  180.787050][ T9343]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  180.787065][ T9343]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  180.787081][ T9343]  ? do_vfs_ioctl+0x226/0x13e0
[  180.787095][ T9343]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  180.787109][ T9343]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  180.787133][ T9343]  ? __fget_files+0x215/0x3d0
[  180.787149][ T9343]  ? hook_file_ioctl_common+0x149/0x410
[  180.787174][ T9343]  ? selinux_file_ioctl+0x13b/0x290
[  180.787189][ T9343]  ? selinux_file_ioctl+0xb6/0x290
[  180.787205][ T9343]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  180.787241][ T9343]  __x64_sys_ioctl+0x18e/0x210
[  180.787258][ T9343]  do_syscall_64+0x10b/0xf80
[  180.787278][ T9343]  ? clear_bhb_loop+0x40/0x90
[  180.787297][ T9343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.787311][ T9343] RIP: 0033:0x7f61f159c819
[  180.787324][ T9343] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  180.787338][ T9343] RSP: 002b:00007f61f251b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  180.787352][ T9343] RAX: ffffffffffffffda RBX: 00007f61f1815fa0 RCX: 00007f61f159c819
[  180.787361][ T9343] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000b
[  180.787368][ T9343] RBP: 00007f61f251b090 R08: 0000000000000000 R09: 0000000000000000
[  180.787376][ T9343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  180.787384][ T9343] R13: 00007f61f1816038 R14: 00007f61f1815fa0 R15: 00007fff25a44ea8
[  180.787402][ T9343]  </TASK>
[  181.027207][ T9358] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  181.032511][ T9358] qnx6: wrong signature (magic) in superblock #1.
[  181.037635][ T9358] qnx6: unable to read the first superblock
[  181.044907][ T9358] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1008'.
[  181.338393][ T9370] syzkaller0: entered promiscuous mode
[  181.417587][ T9370] 0: reclassify loop, rule prio 0, protocol 800
[  181.447409][ T9379] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1015'.
[  181.533288][ T9384] FAULT_INJECTION: forcing a failure.
[  181.533288][ T9384] name failslab, interval 1, probability 0, space 0, times 0
[  181.545750][ T9384] CPU: 3 UID: 0 PID: 9384 Comm: syz.3.1017 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  181.545769][ T9384] Tainted: [L]=SOFTLOCKUP
[  181.545774][ T9384] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  181.545804][ T9384] Call Trace:
[  181.545831][ T9384]  <TASK>
[  181.545836][ T9384]  dump_stack_lvl+0x100/0x190
[  181.545992][ T9384]  should_fail_ex.cold+0x5/0xa
[  181.546080][ T9384]  should_failslab+0xc2/0x120
[  181.546156][ T9384]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  181.546190][ T9384]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  181.546216][ T9384]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  181.546232][ T9384]  mmu_topup_memory_caches+0x25/0x170
[  181.546257][ T9384]  kvm_mmu_load+0xd6/0x23e0
[  181.546274][ T9384]  ? kvm_deliver_exception_payload+0x129/0x210
[  181.546315][ T9384]  ? __pfx_kvm_mmu_load+0x10/0x10
[  181.546327][ T9384]  ? vmx_inject_exception+0x21f/0x470
[  181.546340][ T9384]  ? kvm_check_and_inject_events+0x961/0x1070
[  181.546358][ T9384]  vcpu_run+0x39f4/0x5ca0
[  181.546379][ T9384]  ? __pfx_vcpu_run+0x10/0x10
[  181.546398][ T9384]  ? rcu_is_watching+0x12/0xc0
[  181.546443][ T9384]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  181.546458][ T9384]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  181.546478][ T9384]  kvm_vcpu_ioctl+0x730/0x1720
[  181.546491][ T9384]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  181.546502][ T9384]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  181.546533][ T9384]  ? do_vfs_ioctl+0x226/0x13e0
[  181.546563][ T9384]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  181.546575][ T9384]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  181.546661][ T9384]  ? __fget_files+0x215/0x3d0
[  181.546675][ T9384]  ? hook_file_ioctl_common+0x149/0x410
[  181.546735][ T9384]  ? selinux_file_ioctl+0x13b/0x290
[  181.546747][ T9384]  ? selinux_file_ioctl+0xb6/0x290
[  181.546760][ T9384]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  181.546776][ T9384]  __x64_sys_ioctl+0x18e/0x210
[  181.546788][ T9384]  do_syscall_64+0x10b/0xf80
[  181.546848][ T9384]  ? clear_bhb_loop+0x40/0x90
[  181.546867][ T9384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.546879][ T9384] RIP: 0033:0x7fcc1b19c819
[  181.546891][ T9384] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  181.546902][ T9384] RSP: 002b:00007fcc1c03a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  181.546973][ T9384] RAX: ffffffffffffffda RBX: 00007fcc1b415fa0 RCX: 00007fcc1b19c819
[  181.546981][ T9384] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  181.546988][ T9384] RBP: 00007fcc1c03a090 R08: 0000000000000000 R09: 0000000000000000
[  181.546994][ T9384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  181.547001][ T9384] R13: 00007fcc1b416038 R14: 00007fcc1b415fa0 R15: 00007ffd5b48ca28
[  181.547015][ T9384]  </TASK>
[  181.704292][ T9389] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1019'.
[  181.708166][ T9389] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1019'.
[  181.712334][ T9389] netlink: 'syz.1.1019': attribute type 12 has an invalid length.
[  181.715440][   T40] audit: type=1400 audit(1777037320.966:528): avc:  denied  { ioctl } for  pid=9390 comm="syz.2.1018" path="socket:[35154]" dev="sockfs" ino=35154 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  181.729548][   T40] audit: type=1400 audit(1777037320.966:529): avc:  denied  { module_request } for  pid=9390 comm="syz.2.1018" kmod="netdev-netpci0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  181.778185][ T9394] netlink: get zone limit has 4 unknown bytes
[  181.785689][ T9397] befs: (nullb0): No write support. Marking filesystem read-only
[  181.790593][ T9397] befs: (nullb0): invalid magic header
[  181.799643][ T9389] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1019'.
[  181.804288][ T9389] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1019'.
[  181.808039][ T9389] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1019'.
[  182.029556][ T9403] syzkaller0: entered promiscuous mode
[  182.039641][ T9403] 0: reclassify loop, rule prio 0, protocol 800
[  182.164596][ T9406] tmpfs: Unknown parameter ' '
[  182.167565][ T9406] tmpfs: Unknown parameter ' '
[  182.171813][ T9406] tmpfs: Unknown parameter ' '
[  182.174427][ T9406] tmpfs: Unknown parameter ' '
[  182.176897][ T9406] tmpfs: Unknown parameter ' '
[  182.181665][ T9406] tmpfs: Unknown parameter ' '
[  182.184701][ T9406] tmpfs: Unknown parameter ' '
[  182.186909][ T9406] tmpfs: Unknown parameter ' '
[  182.189982][ T9406] tmpfs: Unknown parameter ' '
[  182.192433][ T9406] tmpfs: Unknown parameter ' '
[  182.194539][ T9406] tmpfs: Unknown parameter ' '
[  182.196830][ T9406] tmpfs: Unknown parameter ' '
[  182.199491][ T9406] tmpfs: Unknown parameter ' '
[  182.201771][ T9406] tmpfs: Unknown parameter ' '
[  182.203523][ T9406] tmpfs: Unknown parameter ' '
[  182.205487][ T9406] tmpfs: Unknown parameter ' '
[  182.207399][ T9406] tmpfs: Unknown parameter ' '
[  182.209793][ T9406] tmpfs: Unknown parameter ' '
[  182.211877][ T9406] tmpfs: Unknown parameter ' '
[  182.213771][ T9406] tmpfs: Unknown parameter ' '
[  182.215638][ T9406] tmpfs: Unknown parameter ' '
[  182.217272][ T9406] tmpfs: Unknown parameter ' '
[  182.219395][ T9406] tmpfs: Unknown parameter ' '
[  182.221500][ T9406] tmpfs: Unknown parameter ' '
[  182.223301][ T9406] tmpfs: Unknown parameter ' '
[  182.225233][ T9406] tmpfs: Unknown parameter ' '
[  182.229999][ T9406] tmpfs: Unknown parameter ' '
[  182.231660][ T9406] tmpfs: Unknown parameter ' '
[  182.233944][ T9406] tmpfs: Unknown parameter ' '
[  182.235288][ T9409] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1025'.
[  182.235700][ T9406] tmpfs: Unknown parameter ' '
[  182.238669][ T9409] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1025'.
[  182.249473][ T9406] tmpfs: Unknown parameter ' '
[  182.254037][ T9406] tmpfs: Unknown parameter ' '
[  182.256828][ T9406] tmpfs: Unknown parameter ' '
[  182.621452][   T29] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  182.666980][ T9433] syzkaller0: entered promiscuous mode
[  182.677270][ T9433] 0: reclassify loop, rule prio 0, protocol 800
[  182.735238][ T6021] usb 6-1: USB disconnect, device number 2
[  182.791639][   T29] usb 8-1: config 0 interface 0 altsetting 251 has an endpoint descriptor with address 0x2C, changing to 0xC
[  182.796612][   T29] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0xC has an invalid bInterval 0, changing to 7
[  182.802490][   T29] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0xC has invalid maxpacket 58119, setting to 1024
[  182.807305][   T29] usb 8-1: config 0 interface 0 has no altsetting 0
[  182.815198][   T29] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  182.819327][   T29] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  182.822861][   T29] usb 8-1: Product: syz
[  182.824778][   T29] usb 8-1: Manufacturer: syz
[  182.826969][   T29] usb 8-1: SerialNumber: syz
[  182.845478][   T29] usb 8-1: config 0 descriptor??
[  182.858308][   T29] usb 8-1: selecting invalid altsetting 0
[  182.883731][ T9441] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=53 sclass=netlink_route_socket pid=9441 comm=syz.0.1036
[  183.064935][   T29] usb 8-1: USB disconnect, device number 12
[  183.142323][ T9452] 8021q: adding VLAN 0 to HW filter on device bond2
[  183.173712][ T9453] macvlan0: entered promiscuous mode
[  183.175565][ T9453] macvlan0: entered allmulticast mode
[  183.179866][ T9453] bond2: entered promiscuous mode
[  183.182464][ T9453] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  183.194991][ T9453] bond2: left promiscuous mode
[  183.502046][ T9464] syzkaller0: entered promiscuous mode
[  183.514159][ T9464] 0: reclassify loop, rule prio 0, protocol 800
[  183.549818][   T59] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  183.557843][   T59] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.584743][   T40] audit: type=1400 audit(1777037322.836:530): avc:  denied  { execute } for  pid=9470 comm="syz.2.1048" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=35282 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  183.693914][ T5966] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  183.705248][ T5966] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  183.714533][ T5966] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  183.733387][ T5966] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  183.739185][ T5966] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  183.766027][ T5954] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  183.771379][ T5954] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  183.782492][ T5954] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  183.784257][   T59] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  183.793126][ T5954] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  183.796477][ T5954] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  183.797679][   T59] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.874724][ T9486] syzkaller0: entered promiscuous mode
[  183.881779][ T9486] syzkaller0: entered allmulticast mode
[  184.011824][   T59] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  184.015327][   T59] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.091091][ T9496] fuse: Bad value for 'fd'
[  184.094042][ T9496] overlay: ./file0 is not a directory
[  184.309675][ T9478] chnl_net:caif_netlink_parms(): no params data found
[  184.318363][   T40] audit: type=1400 audit(1777037323.566:531): avc:  denied  { append } for  pid=9504 comm="syz.2.1055" name="frontend0" dev="devtmpfs" ino=951 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  184.340278][ T9505] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  184.355195][   T59] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  184.358491][   T59] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.572514][ T9478] bridge0: port 1(bridge_slave_0) entered blocking state
[  184.576530][ T9478] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.580521][ T9478] bridge_slave_0: entered allmulticast mode
[  184.583467][ T9478] bridge_slave_0: entered promiscuous mode
[  184.587060][ T9478] bridge0: port 2(bridge_slave_1) entered blocking state
[  184.589668][ T9478] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.592061][ T9478] bridge_slave_1: entered allmulticast mode
[  184.594846][ T9478] bridge_slave_1: entered promiscuous mode
[  184.613716][ T9478] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  184.618675][ T9478] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  184.642572][ T9478] team0: Port device team_slave_0 added
[  184.646436][ T9478] team0: Port device team_slave_1 added
[  184.773106][ T9478] batman_adv: batadv0: Adding interface: batadv_slave_0
[  184.776220][ T9478] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  184.786410][ T9478] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  184.799893][ T9532] syzkaller0: entered promiscuous mode
[  184.840728][ T9478] batman_adv: batadv0: Adding interface: batadv_slave_1
[  184.843814][ T9478] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  184.854677][ T9478] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  184.952728][ T9478] hsr_slave_0: entered promiscuous mode
[  184.955257][ T9478] hsr_slave_1: entered promiscuous mode
[  184.958780][ T9478] debugfs: 'hsr0' already exists in 'hsr'
[  184.962886][ T9478] Cannot create hsr debugfs directory
[  185.021188][   T59] bridge_slave_1: left allmulticast mode
[  185.023783][   T59] bridge_slave_1: left promiscuous mode
[  185.029448][   T59] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.051390][   T59] bridge_slave_0: left allmulticast mode
[  185.053442][   T59] bridge_slave_0: left promiscuous mode
[  185.055497][   T59] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.080301][   T59] batman_adv: batadv0: Interface deactivated: gretap2
[  185.234605][   T59] bond3 (unregistering): (slave ip6gretap1): Releasing active interface
[  185.238526][   T59] ip6gretap1 (unregistering): left allmulticast mode
[  185.310313][   T59] bond1 (unregistering): (slave erspan1): Releasing active interface
[  185.313001][   T59] erspan1 (unregistering): left promiscuous mode
[  185.333378][   T59] batman_adv: batadv0: Removing interface: gretap1
[  185.349278][   T59] batman_adv: batadv0: Removing interface: gretap2
[  185.365796][   T59] bond5 (unregistering): (slave gretap3): Releasing active interface
[  185.629624][   T59] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  185.651161][   T59] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  185.657940][   T59] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  185.662884][   T59] bond0 (unregistering): Released all slaves
[  185.674819][   T59] bond1 (unregistering): Released all slaves
[  185.688269][   T59] bond2 (unregistering): Released all slaves
[  185.701592][   T59] bond3 (unregistering): Released all slaves
[  185.714362][   T59] bond4 (unregistering): Released all slaves
[  185.724122][   T59] bond5 (unregistering): Released all slaves
[  185.839763][ T5954] Bluetooth: hci3: command tx timeout
[  185.978743][ T9478] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  185.987658][ T9478] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  185.991512][ T9478] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  185.998947][ T9478] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  186.002882][ T9478] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  186.008109][ T9478] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  186.011892][ T9478] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  186.020755][ T9478] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  186.027216][ T5657] 8021q: adding VLAN 0 to HW filter on device eth2
[  186.132453][ T9478] 8021q: adding VLAN 0 to HW filter on device bond0
[  186.142470][ T9478] 8021q: adding VLAN 0 to HW filter on device team0
[  186.148373][  T194] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.150834][  T194] bridge0: port 1(bridge_slave_0) entered forwarding state
[  186.158582][  T137] bridge0: port 2(bridge_slave_1) entered blocking state
[  186.160831][  T137] bridge0: port 2(bridge_slave_1) entered forwarding state
[  186.187821][ T9478] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  186.192215][ T9478] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  186.296270][ T5657] 8021q: adding VLAN 0 to HW filter on device eth3
[  186.358385][ T9478] 8021q: adding VLAN 0 to HW filter on device batadv0
[  186.602787][ T9478] veth0_vlan: entered promiscuous mode
[  186.655705][ T5657] 8021q: adding VLAN 0 to HW filter on device eth4
[  186.662067][ T9478] veth1_vlan: entered promiscuous mode
[  186.746499][ T9478] veth0_macvtap: entered promiscuous mode
[  186.761964][   T59] hsr_slave_0: left promiscuous mode
[  186.766122][   T59] hsr_slave_1: left promiscuous mode
[  186.768566][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  186.771234][   T59] batman_adv: batadv0: Removing interface: batadv_slave_0
[  186.780672][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  186.783291][   T59] batman_adv: batadv0: Removing interface: batadv_slave_1
[  186.787160][   T59] batman_adv: batadv0: Interface deactivated: ipvlan2
[  186.790999][   T59] batman_adv: batadv0: Removing interface: ipvlan2
[  186.811687][   T59] veth1_macvtap: left promiscuous mode
[  186.816387][   T59] veth0_macvtap: left promiscuous mode
[  186.818550][   T59] veth1_vlan: left promiscuous mode
[  186.820953][   T59] veth0_vlan: left promiscuous mode
[  187.066100][   T59] team0 (unregistering): Port device team_slave_1 removed
[  187.088564][   T59] team0 (unregistering): Port device team_slave_0 removed
[  187.194927][ T9478] veth1_macvtap: entered promiscuous mode
[  187.218698][ T9478] batman_adv: batadv0: Interface activated: batadv_slave_0
[  187.226122][ T9478] batman_adv: batadv0: Interface activated: batadv_slave_1
[  187.252339][  T194] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  187.255530][  T194] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  187.270444][  T194] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  187.277949][  T194] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  187.312353][  T194] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  187.324240][  T194] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  187.374280][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  187.376939][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  187.416856][ T5657] 8021q: adding VLAN 0 to HW filter on device eth5
[  187.567036][   T40] audit: type=1400 audit(1777037326.806:532): avc:  denied  { mounton } for  pid=9478 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2840 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  187.581292][   T40] audit: type=1400 audit(1777037326.816:533): avc:  denied  { mounton } for  pid=9478 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  187.921141][ T5954] Bluetooth: hci3: command tx timeout
[  188.381540][   T59] IPVS: stop unused estimator thread 0...
[  189.999087][ T5954] Bluetooth: hci3: command tx timeout
[  192.079087][ T5954] Bluetooth: hci3: command tx timeout
[  199.716245][ T1433] ieee802154 phy0 wpan0: encryption failed: -22
[  199.718786][ T1433] ieee802154 phy1 wpan1: encryption failed: -22
[  209.343782][ T9614] loop2: detected capacity change from 0 to 7
[  209.352810][ T9614]  loop2:
[  209.354200][ T9614] loop2: partition table partially beyond EOD, truncated
[  209.466139][   T40] audit: type=1400 audit(1777037348.716:534): avc:  denied  { read } for  pid=9620 comm="syz.3.1064" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  209.466671][ T9625] syzkaller0: entered promiscuous mode
[  209.476442][ T9625] syzkaller0: entered allmulticast mode
[  209.522555][   T40] audit: type=1326 audit(1777037348.776:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9630 comm="syz.3.1066" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcc1b19c819 code=0x0
[  209.605334][ T9622] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  209.715546][   T40] audit: type=1400 audit(1777037348.966:536): avc:  denied  { read } for  pid=9619 comm="syz.4.1061" dev="nsfs" ino=4026533100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  209.729782][   T40] audit: type=1400 audit(1777037348.966:537): avc:  denied  { open } for  pid=9619 comm="syz.4.1061" path="net:[4026533100]" dev="nsfs" ino=4026533100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  209.755896][ T9622] bridge0: adding interface bridge_slave_0 with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  209.842153][ T9647] bond3: Unable to set up delay as MII monitoring is disabled
[  209.864168][ T9647] bond3 (unregistering): Released all slaves
[  209.907062][ T9650] syzkaller0: entered promiscuous mode
[  209.921487][ T9650] 0: reclassify loop, rule prio 0, protocol 800
[  210.132097][ T9661] mac80211_hwsim hwsim6 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  210.236026][ T9670] __nla_validate_parse: 1 callbacks suppressed
[  210.236070][ T9670] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1071'.
[  210.244223][ T9670] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1071'.
[  210.260395][ T9670] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1071'.
[  210.264197][ T9670] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1071'.
[  210.363699][   T40] audit: type=1400 audit(1777037349.616:538): avc:  denied  { setopt } for  pid=9616 comm="syz.2.1062" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  210.402814][   T40] audit: type=1400 audit(1777037349.656:539): avc:  denied  { block_suspend } for  pid=9616 comm="syz.2.1062" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  210.584372][ T9686] syzkaller0: entered promiscuous mode
[  210.586499][ T9686] syzkaller0: entered allmulticast mode
[  210.946756][ T9704] team0: Port device vlan2 added
[  211.141858][ T9713] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1079'.
[  211.150338][ T9713] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1079'.
[  211.172342][ T9712] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[  211.244421][   T40] audit: type=1400 audit(1777037350.496:540): avc:  denied  { connect } for  pid=9726 comm="syz.4.1083" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  211.270275][ T9725] syzkaller0: entered promiscuous mode
[  211.333170][ T9728] bridge0: adding interface bridge_slave_0 with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  211.431253][   T40] audit: type=1400 audit(1777037350.686:541): avc:  denied  { map } for  pid=9729 comm="syz.0.1085" path="/dev/comedi3" dev="devtmpfs" ino=1305 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  211.453018][   T40] audit: type=1400 audit(1777037350.686:542): avc:  denied  { execute } for  pid=9729 comm="syz.0.1085" path="/dev/comedi3" dev="devtmpfs" ino=1305 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  211.526860][    C0] ==================================================================
[  211.530405][    C0] BUG: KASAN: use-after-free in qdisc_pkt_len_segs_init+0xa51/0xb30
[  211.533696][    C0] Read of size 2 at addr ffff88812ae91734 by task syz.0.1087/9735
[  211.538401][    C0] 
[  211.540480][    C0] CPU: 0 UID: 0 PID: 9735 Comm: syz.0.1087 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  211.540510][    C0] Tainted: [L]=SOFTLOCKUP
[  211.540516][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  211.540563][    C0] Call Trace:
[  211.540609][    C0]  <IRQ>
[  211.540617][    C0]  dump_stack_lvl+0x100/0x190
[  211.540802][    C0]  print_report+0x13d/0x4b0
[  211.540911][    C0]  ? __virt_addr_valid+0x239/0x430
[  211.540997][    C0]  ? qdisc_pkt_len_segs_init+0xa51/0xb30
[  211.541016][    C0]  kasan_report+0xdf/0x1d0
[  211.541176][    C0]  ? qdisc_pkt_len_segs_init+0xa51/0xb30
[  211.541202][    C0]  qdisc_pkt_len_segs_init+0xa51/0xb30
[  211.541222][    C0]  __dev_queue_xmit+0x270/0x4950
[  211.541244][    C0]  ? kmem_cache_alloc_node_noprof+0x2a9/0x6f0
[  211.541298][    C0]  ? kmalloc_reserve+0x148/0x350
[  211.541345][    C0]  ? __kasan_kfree_large+0x30/0x80
[  211.541364][    C0]  ? __pfx___dev_queue_xmit+0x10/0x10
[  211.541386][    C0]  ? __asan_memset+0x23/0x50
[  211.541410][    C0]  ? __alloc_skb+0x4e9/0x710
[  211.541433][    C0]  ? __alloc_skb+0x5b7/0x710
[  211.541462][    C0]  ? __asan_memcpy+0x3c/0x60
[  211.541486][    C0]  ? __asan_memcpy+0x3c/0x60
[  211.541509][    C0]  ? skb_copy_header+0x20/0x2b0
[  211.541532][    C0]  ? __pskb_copy_fclone+0x498/0xdb0
[  211.541549][    C0]  ? __pfx_netif_rx_internal+0x10/0x10
[  211.541577][    C0]  ? __asan_memmove+0x3c/0x60
[  211.541602][    C0]  ? hsr_create_tagged_frame+0x795/0xf00
[  211.541654][    C0]  hsr_forward_skb+0xdcf/0x28a0
[  211.541675][    C0]  ? __pfx_hsr_drop_frame+0x10/0x10
[  211.541696][    C0]  ? __pfx_hsr_forward_skb+0x10/0x10
[  211.541721][    C0]  hsr_handle_frame+0x82f/0xac0
[  211.541741][    C0]  ? __pfx_hsr_handle_frame+0x10/0x10
[  211.541761][    C0]  __netif_receive_skb_core.constprop.0+0x6c5/0x3530
[  211.541791][    C0]  ? find_held_lock+0x2b/0x80
[  211.541830][    C0]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[  211.541854][    C0]  ? is_bpf_text_address+0x8a/0x1a0
[  211.541901][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  211.541943][    C0]  ? is_bpf_text_address+0x94/0x1a0
[  211.541964][    C0]  ? kernel_text_address+0x8d/0x100
[  211.542009][    C0]  ? __kernel_text_address+0xd/0x30
[  211.542036][    C0]  __netif_receive_skb_list_core+0x353/0x940
[  211.542061][    C0]  ? kfree_skbmem+0x15d/0x210
[  211.542079][    C0]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  211.542102][    C0]  ? lock_acquire+0x1b1/0x370
[  211.542125][    C0]  ? tun_get_user+0x1e31/0x3c20
[  211.542240][    C0]  ? tun_chr_write_iter+0xdc/0x200
[  211.542258][    C0]  ? vfs_write+0x6ac/0x1070
[  211.542287][    C0]  ? ksys_write+0x12a/0x250
[  211.542305][    C0]  netif_receive_skb_list_internal+0x722/0xd40
[  211.542329][    C0]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  211.542353][    C0]  ? __lock_acquire+0x4a5/0x2630
[  211.542375][    C0]  ? dev_gro_receive+0x238/0x3060
[  211.542419][    C0]  napi_complete_done+0x221/0x940
[  211.542445][    C0]  ? __pfx_napi_complete_done+0x10/0x10
[  211.542466][    C0]  ? find_held_lock+0x2b/0x80
[  211.542481][    C0]  ? gro_cell_poll+0x441/0x690
[  211.542503][    C0]  ? gro_cell_poll+0x441/0x690
[  211.542526][    C0]  gro_cell_poll+0x46e/0x690
[  211.542552][    C0]  __napi_poll.constprop.0+0xaf/0x450
[  211.542575][    C0]  net_rx_action+0xa40/0xf20
[  211.542599][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  211.542621][    C0]  ? hrtimer_bases_first+0x1a0/0x210
[  211.542645][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  211.542693][    C0]  ? sched_clock+0x38/0x60
[  211.542735][    C0]  ? sched_clock_cpu+0x6c/0x570
[  211.542760][    C0]  ? sched_clock+0x38/0x60
[  211.542776][    C0]  ? rcu_is_watching+0x12/0xc0
[  211.542826][    C0]  handle_softirqs+0x1ea/0xa00
[  211.542875][    C0]  ? __sysvec_apic_timer_interrupt+0x10b/0x460
[  211.542902][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  211.542926][    C0]  ? irqtime_account_irq+0x176/0x2d0
[  211.542947][    C0]  ? tun_rx_batched.isra.0+0x402/0x750
[  211.542964][    C0]  do_softirq+0xac/0xe0
[  211.542987][    C0]  </IRQ>
[  211.542992][    C0]  <TASK>
[  211.542998][    C0]  __local_bh_enable_ip+0xf8/0x120
[  211.543022][    C0]  tun_rx_batched.isra.0+0x407/0x750
[  211.543040][    C0]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[  211.543059][    C0]  ? rcu_is_watching+0x12/0xc0
[  211.543082][    C0]  ? tun_get_user+0x1cc8/0x3c20
[  211.543101][    C0]  tun_get_user+0x1e31/0x3c20
[  211.543123][    C0]  ? __pfx_tun_get_user+0x10/0x10
[  211.543142][    C0]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  211.543235][    C0]  ? find_held_lock+0x2b/0x80
[  211.543252][    C0]  ? tun_get+0x191/0x370
[  211.543268][    C0]  ? tun_get+0x191/0x370
[  211.543288][    C0]  tun_chr_write_iter+0xdc/0x200
[  211.543308][    C0]  vfs_write+0x6ac/0x1070
[  211.543327][    C0]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  211.543348][    C0]  ? __pfx_vfs_write+0x10/0x10
[  211.543364][    C0]  ? find_held_lock+0x2b/0x80
[  211.543386][    C0]  ksys_write+0x12a/0x250
[  211.543404][    C0]  ? __pfx_ksys_write+0x10/0x10
[  211.543423][    C0]  ? rcu_is_watching+0x12/0xc0
[  211.543453][    C0]  do_syscall_64+0x10b/0xf80
[  211.543497][    C0]  ? clear_bhb_loop+0x40/0x90
[  211.543517][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.543535][    C0] RIP: 0033:0x7f727bb9c819
[  211.543552][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  211.543569][    C0] RSP: 002b:00007f727c9e2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  211.543606][    C0] RAX: ffffffffffffffda RBX: 00007f727be15fa0 RCX: 00007f727bb9c819
[  211.543618][    C0] RDX: 000000000000007a RSI: 0000200000000400 RDI: 000000000000000b
[  211.543629][    C0] RBP: 00007f727bc32c91 R08: 0000000000000000 R09: 0000000000000000
[  211.543639][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  211.543649][    C0] R13: 00007f727be16038 R14: 00007f727be15fa0 R15: 00007ffd45d5f7d8
[  211.543666][    C0]  </TASK>
[  211.543673][    C0] 
[  211.789555][    C0] The buggy address belongs to the physical page:
[  211.792259][    C0] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x12ae91
[  211.796291][    C0] flags: 0x57ff00000000000(node=1|zone=2|lastcpupid=0x7ff)
[  211.799268][    C0] raw: 057ff00000000000 ffffea0004aba448 ffffea0004aba448 0000000000000000
[  211.802912][    C0] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  211.806333][    C0] page dumped because: kasan: bad access detected
[  211.809047][    C0] page_owner info is not present (never set?)
[  211.812116][    C0] 
[  211.813301][    C0] Memory state around the buggy address:
[  211.815907][    C0]  ffff88812ae91600: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  211.819137][    C0]  ffff88812ae91680: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  211.822398][    C0] >ffff88812ae91700: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  211.826022][    C0]                                      ^
[  211.828386][    C0]  ffff88812ae91780: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  211.831541][    C0]  ffff88812ae91800: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  211.834678][    C0] ==================================================================
[  211.838131][    C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  211.840990][    C0] CPU: 0 UID: 0 PID: 9735 Comm: syz.0.1087 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  211.845463][    C0] Tainted: [L]=SOFTLOCKUP
[  211.847419][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  211.851968][    C0] Call Trace:
[  211.853429][    C0]  <IRQ>
[  211.854874][    C0]  dump_stack_lvl+0x100/0x190
[  211.856984][    C0]  vpanic+0x552/0x970
[  211.858816][    C0]  ? __pfx_vpanic+0x10/0x10
[  211.860977][    C0]  ? mark_held_locks+0x40/0x70
[  211.863132][    C0]  ? qdisc_pkt_len_segs_init+0xa51/0xb30
[  211.865526][    C0]  panic+0xd1/0xe0
[  211.867101][    C0]  ? __pfx_panic+0x10/0x10
[  211.869106][    C0]  ? check_panic_on_warn+0x1f/0x90
[  211.871475][    C0]  check_panic_on_warn.cold+0x19/0x34
[  211.874088][    C0]  end_report.part.0+0x3a/0x90
[  211.876271][    C0]  kasan_report.cold+0xe/0x18
[  211.878370][    C0]  ? qdisc_pkt_len_segs_init+0xa51/0xb30
[  211.880765][    C0]  qdisc_pkt_len_segs_init+0xa51/0xb30
[  211.883218][    C0]  __dev_queue_xmit+0x270/0x4950
[  211.885612][    C0]  ? kmem_cache_alloc_node_noprof+0x2a9/0x6f0
[  211.888461][    C0]  ? kmalloc_reserve+0x148/0x350
[  211.890639][    C0]  ? __kasan_kfree_large+0x30/0x80
[  211.892806][    C0]  ? __pfx___dev_queue_xmit+0x10/0x10
[  211.895172][    C0]  ? __asan_memset+0x23/0x50
[  211.897284][    C0]  ? __alloc_skb+0x4e9/0x710
[  211.899273][    C0]  ? __alloc_skb+0x5b7/0x710
[  211.901466][    C0]  ? __asan_memcpy+0x3c/0x60
[  211.903935][    C0]  ? __asan_memcpy+0x3c/0x60
[  211.906262][    C0]  ? skb_copy_header+0x20/0x2b0
[  211.908385][    C0]  ? __pskb_copy_fclone+0x498/0xdb0
[  211.910620][    C0]  ? __pfx_netif_rx_internal+0x10/0x10
[  211.913093][    C0]  ? __asan_memmove+0x3c/0x60
[  211.915089][    C0]  ? hsr_create_tagged_frame+0x795/0xf00
[  211.917339][    C0]  hsr_forward_skb+0xdcf/0x28a0
[  211.919499][    C0]  ? __pfx_hsr_drop_frame+0x10/0x10
[  211.922072][    C0]  ? __pfx_hsr_forward_skb+0x10/0x10
[  211.924598][    C0]  hsr_handle_frame+0x82f/0xac0
[  211.926870][    C0]  ? __pfx_hsr_handle_frame+0x10/0x10
[  211.929168][    C0]  __netif_receive_skb_core.constprop.0+0x6c5/0x3530
[  211.931888][    C0]  ? find_held_lock+0x2b/0x80
[  211.933980][    C0]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[  211.936924][    C0]  ? is_bpf_text_address+0x8a/0x1a0
[  211.939277][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  211.942538][    C0]  ? is_bpf_text_address+0x94/0x1a0
[  211.945414][    C0]  ? kernel_text_address+0x8d/0x100
[  211.947722][    C0]  ? __kernel_text_address+0xd/0x30
[  211.949984][    C0]  __netif_receive_skb_list_core+0x353/0x940
[  211.952581][    C0]  ? kfree_skbmem+0x15d/0x210
[  211.954690][    C0]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  211.957429][    C0]  ? lock_acquire+0x1b1/0x370
[  211.959428][    C0]  ? tun_get_user+0x1e31/0x3c20
[  211.961513][    C0]  ? tun_chr_write_iter+0xdc/0x200
[  211.963943][    C0]  ? vfs_write+0x6ac/0x1070
[  211.966312][    C0]  ? ksys_write+0x12a/0x250
[  211.968493][    C0]  netif_receive_skb_list_internal+0x722/0xd40
[  211.971044][    C0]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  211.973772][    C0]  ? __lock_acquire+0x4a5/0x2630
[  211.975884][    C0]  ? dev_gro_receive+0x238/0x3060
[  211.978057][    C0]  napi_complete_done+0x221/0x940
[  211.980441][    C0]  ? __pfx_napi_complete_done+0x10/0x10
[  211.983118][    C0]  ? find_held_lock+0x2b/0x80
[  211.985438][    C0]  ? gro_cell_poll+0x441/0x690
[  211.987618][    C0]  ? gro_cell_poll+0x441/0x690
[  211.989672][    C0]  gro_cell_poll+0x46e/0x690
[  211.991616][    C0]  __napi_poll.constprop.0+0xaf/0x450
[  211.993904][    C0]  net_rx_action+0xa40/0xf20
[  211.995882][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  211.998133][    C0]  ? hrtimer_bases_first+0x1a0/0x210
[  212.000937][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  212.003645][    C0]  ? sched_clock+0x38/0x60
[  212.005607][    C0]  ? sched_clock_cpu+0x6c/0x570
[  212.007633][    C0]  ? sched_clock+0x38/0x60
[  212.009534][    C0]  ? rcu_is_watching+0x12/0xc0
[  212.011601][    C0]  handle_softirqs+0x1ea/0xa00
[  212.013585][    C0]  ? __sysvec_apic_timer_interrupt+0x10b/0x460
[  212.016119][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  212.018650][    C0]  ? irqtime_account_irq+0x176/0x2d0
[  212.021348][    C0]  ? tun_rx_batched.isra.0+0x402/0x750
[  212.024110][    C0]  do_softirq+0xac/0xe0
[  212.025996][    C0]  </IRQ>
[  212.027180][    C0]  <TASK>
[  212.028414][    C0]  __local_bh_enable_ip+0xf8/0x120
[  212.030493][    C0]  tun_rx_batched.isra.0+0x407/0x750
[  212.032749][    C0]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[  212.035302][    C0]  ? rcu_is_watching+0x12/0xc0
[  212.037315][    C0]  ? tun_get_user+0x1cc8/0x3c20
[  212.039435][    C0]  tun_get_user+0x1e31/0x3c20
[  212.041457][    C0]  ? __pfx_tun_get_user+0x10/0x10
[  212.043837][    C0]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  212.046501][    C0]  ? find_held_lock+0x2b/0x80
[  212.048761][    C0]  ? tun_get+0x191/0x370
[  212.050552][    C0]  ? tun_get+0x191/0x370
[  212.052228][    C0]  tun_chr_write_iter+0xdc/0x200
[  212.054433][    C0]  vfs_write+0x6ac/0x1070
[  212.056256][    C0]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  212.058655][    C0]  ? __pfx_vfs_write+0x10/0x10
[  212.060787][    C0]  ? find_held_lock+0x2b/0x80
[  212.062878][    C0]  ksys_write+0x12a/0x250
[  212.065120][    C0]  ? __pfx_ksys_write+0x10/0x10
[  212.067912][    C0]  ? rcu_is_watching+0x12/0xc0
[  212.070201][    C0]  do_syscall_64+0x10b/0xf80
[  212.072092][    C0]  ? clear_bhb_loop+0x40/0x90
[  212.074138][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.076672][    C0] RIP: 0033:0x7f727bb9c819
[  212.078549][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  212.087616][    C0] RSP: 002b:00007f727c9e2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  212.091083][    C0] RAX: ffffffffffffffda RBX: 00007f727be15fa0 RCX: 00007f727bb9c819
[  212.094643][    C0] RDX: 000000000000007a RSI: 0000200000000400 RDI: 000000000000000b
[  212.098113][    C0] RBP: 00007f727bc32c91 R08: 0000000000000000 R09: 0000000000000000
[  212.102004][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  212.105697][    C0] R13: 00007f727be16038 R14: 00007f727be15fa0 R15: 00007ffd45d5f7d8
[  212.109097][    C0]  </TASK>
[  212.111592][    C0] Kernel Offset: disabled
[  212.113592][    C0] Rebooting in 86400 seconds..

VM DIAGNOSIS:
13:29:10  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000006b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff857eb745 RDI=ffffffff9b50cf40 RBP=ffffffff9b50cf00 RSP=ffffc90000006d50
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552
R12=0000000000000000 R13=000000000000006b R14=0000000000000010 R15=ffffffff857eb6e0
RIP=ffffffff857eb76f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f727c9e26c0 ffffffff 00c00000
GS =0000 ffff8880d62da000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000001000 CR3=000000005a194000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000010001 Opmask01=0000000000000000 Opmask02=00000000ff02fefc Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 203a6b6361747320 6461657268747020
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd45d5fcc6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd45d5fcc6 00007ffd45d5fccc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f727bc33274
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f727bc332b4
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f727bc33418
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f727bc332a6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 657a6973203c2065 7a69736565726600 632e6b6361747365 7461636f6c6c6100
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 405f4c5605190540 5f4c564040574300 460b4e4644515640 5144464a49494400
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f727bdec5f8 00007f727bdec5c8 00007f727bdec600 00007f727bdec5e0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000017b427 RBX=ffff88801e6ea500 RCX=ffffffff8b9b0045 RDX=0000000000000000
RSI=ffffffff8df5a6ec RDI=ffffffff8c1c1d80 RBP=0000000000000000 RSP=ffffc90000177df0
R8 =0000000000000001 R9 =ffffed100d4a67b5 R10=ffff88806a533dab R11=0000000000000000
R12=0000000000000001 R13=ffffed1003cdd4a0 R14=0000000000000001 R15=ffffffff90dc2450
RIP=ffffffff8b9ae87f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d63da000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c2e21de CR3=000000003f991000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8176b993 ffffffff8176b993
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000305f6576616c ffffffff8176b993
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff25a45396
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff25a45396 00007fff25a4539c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f61f1633274
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f61f16332b4
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f61f1633418
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f61f16332a6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff81aeb44a ffffffff81aeb41c ffffffff81aeb410 ffffffff81aeb3cc
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000040008 0000000f0010000c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff81aeb44a ffffffff81aeb41c ffffffff81aeb410 ffffffff81aeb3cc
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000046 RBX=0000000000000000 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8df351ca RDI=ffffffff8c1c1d80 RBP=ffff888057cc8170 RSP=ffffc90000648e40
R8 =000000005651c067 R9 =0000000000000e41 R10=0000000000000200 R11=0000000000000000
R12=0000000000000000 R13=0000000000000001 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81e55e1e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fb00d82b300 ffffffff 00c00000
GS =0000 ffff8880d64da000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055556446c4e8 CR3=000000002bde2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000feffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000001000
Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=2d70373942ae9119 1488e055daf34ab1 2d70373942ae9119 1488e055daf34ab1 2d70373942ae9119 1488e055daf34ab1 2d70373942ae9119 1488e055daf34ab1
ZMM18=a12fa642a1dfea86 efe98430f7e63265 a12fa642a1dfea86 efe98430f7e63265 a12fa642a1dfea86 efe98430f7e63265 a12fa642a1dfea86 efe98430f7e63265
ZMM19=bb09000000000000 0000000000000007 bb09000000000000 0000000000000006 bb09000000000000 0000000000000005 bb09000000000000 0000000000000004
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0300000000000008 ffffffee00000000 0300000000000008 ffffffde00000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0300000000000008 ffffffce000003e6 0000000800040000 0008000800000014
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000280000003c 0000005c00000004 0000000000000000 0000000000000102
ZMM24=fe70a523fe70a523 fe70a523fe70a523 fe70a523fe70a523 fe70a523fe70a523 fe70a523fe70a523 fe70a523fe70a523 fe70a523fe70a523 fe70a523fe70a523
ZMM25=5c1bff245c1bff24 5c1bff245c1bff24 5c1bff245c1bff24 5c1bff245c1bff24 5c1bff245c1bff24 5c1bff245c1bff24 5c1bff245c1bff24 5c1bff245c1bff24
ZMM26=8c8ff9e38c8ff9e3 8c8ff9e38c8ff9e3 8c8ff9e38c8ff9e3 8c8ff9e38c8ff9e3 8c8ff9e38c8ff9e3 8c8ff9e38c8ff9e3 8c8ff9e38c8ff9e3 8c8ff9e38c8ff9e3
ZMM27=b75b9704b75b9704 b75b9704b75b9704 b75b9704b75b9704 b75b9704b75b9704 b75b9704b75b9704 b75b9704b75b9704 b75b9704b75b9704 b75b9704b75b9704
ZMM28=000000300000002f 0000002e0000002d 0000002c0000002b 0000002a00000029 0000002800000027 0000002600000025 0000002400000023 0000002200000021
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=cf050000cf050000 cf050000cf050000 cf050000cf050000 cf050000cf050000 cf050000cf050000 cf050000cf050000 cf050000cf050000 cf050000cf050000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffff88803e60ba00 RCX=0000000000000007 RDX=ffff88802d504a00
RSI=dffffc0000000000 RDI=ffff88802d504a00 RBP=0000000000000001 RSP=ffffc9000327f7a0
R8 =0000000000000006 R9 =00007fcc1affefff R10=ffffffffffffffff R11=0000000000000000
R12=00007fcc1affefff R13=0000000000000006 R14=ffffffffffffffff R15=ffffc9000327f9d8
RIP=ffffffff8b938a38 RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055556446c500 ffffffff 00c00000
GS =0000 ffff8880d65da000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fcc1bf456b8 CR3=00000000511c4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000f8000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73657479625f6e69 5f65676173752e42
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd5b48cf16
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd5b48cf16 00007ffd5b48cf1c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc1b233274
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc1b2332b4
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc1b233418
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc1b2332a6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6379656b00657461 69746e6174736e69 246c746379656b00 7974697275636573
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000050
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000