last executing test programs:

2.966343845s ago: executing program 2 (id=243):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_init_net_socket$ax25(0x3, 0x3, 0x8)
setsockopt$ax25_int(r3, 0x101, 0xa, &(0x7f0000000080)=0x23fd, 0x4)
r4 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000080)={0x0, &(0x7f00000001c0)=[@wrmsr={0x65, 0x20, {0x40000000, 0x3}}, @wrmsr={0x65, 0x20, {0x40000001, 0x3f}}], 0x40})
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADD(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002}, 0x0)
sendmsg$NBD_CMD_CONNECT(r5, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, 0x0, 0x2, 0x70bd27, 0x25dfdbff, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000080)
ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000000)={0x1, 0x0, [{0x40000001, 0x4, 0x2, 0x31237648, 0x6, 0x2, 0x80}]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_CAP_HYPERV_ENFORCE_CPUID(r4, 0x4068aea3, &(0x7f00000000c0)={0xc7, 0x0, 0x1})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0xa, 0xffff, 0x8, 0x3, 0x9, 0x4, 0x7, 0x10, 0x4, 0x7ffffffffffffffd, 0x1, 0x0, 0x200003, 0x81, 0x6], 0x0, 0x110900})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

2.788831343s ago: executing program 2 (id=248):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r1 = fcntl$dupfd(r0, 0x406, r0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200047fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmsg$TIPC_NL_NODE_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)=ANY=[], 0x134}}, 0x40008)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000002c0)='bbr', 0x37)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000002c0)=0x15)
write$binfmt_elf64(r1, &(0x7f0000000200)=ANY=[], 0x540)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000240), r1)
sendmsg$TIPC_NL_KEY_FLUSH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000500)=ANY=[], 0xfc}, 0x1, 0x0, 0x0, 0x20000004}, 0x40000)

1.845793491s ago: executing program 2 (id=263):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x67)
ioctl$HIDIOCSUSAGES(0xffffffffffffffff, 0x501c4814, &(0x7f0000000480)={{0x3, 0x200, 0x7ff, 0x7, 0x800000, 0x1}, 0x2fa, [0xc2a, 0x3, 0x8, 0xe19, 0x3, 0x0, 0x2, 0x6, 0x3, 0x3, 0x8, 0x1, 0x6, 0xfff80000, 0x7, 0x85, 0xc, 0x400, 0xb1, 0x8, 0x51ef, 0x40, 0xffffffff, 0x6, 0x200, 0x4, 0x3, 0xffff, 0x6, 0x2, 0xaabc, 0x3, 0x57, 0x2c1, 0x3, 0x4b, 0x4, 0x5, 0xffffffff, 0x7, 0x3, 0x9, 0x8f, 0x80, 0x2, 0x0, 0xfffffff2, 0x1000, 0x6, 0x9, 0x6, 0x80000, 0xa52, 0xc, 0x4, 0x4, 0xec6, 0x5, 0x42, 0x10001, 0x1, 0xc003, 0x9, 0xffffffe6, 0xc0, 0x4, 0x5, 0x81, 0xa58, 0x3ff, 0x3, 0x1, 0x6, 0x4, 0xffffff00, 0x0, 0x214, 0x3ff00000, 0x0, 0x1, 0x0, 0x5, 0x5, 0x7, 0x8, 0x4786, 0x101, 0x4, 0x1, 0x3, 0x9, 0x81, 0x0, 0x0, 0x3, 0x4, 0x10001, 0x80, 0x0, 0x3, 0x2, 0x6, 0x2, 0xff, 0x7, 0x10, 0x1, 0x4, 0x8, 0x6, 0x80, 0x8, 0x0, 0x2, 0x9, 0xfffffff8, 0xff, 0x100, 0xcd0b, 0x7ff, 0x81, 0x7fffffff, 0x9, 0xa, 0x8, 0xffff0000, 0x3, 0x2, 0x73c, 0x9, 0x3, 0x4, 0x80, 0x8, 0x10001, 0xa, 0x9, 0x7ff, 0x1, 0x100, 0x200000, 0x8, 0xfffffffb, 0xe3cf, 0x51, 0x2, 0x8000, 0x2, 0x9, 0x4, 0xd, 0x3, 0xa4, 0x6a3c, 0xfffffffe, 0x3, 0x0, 0x0, 0x7, 0xfffffff7, 0x0, 0x4, 0x7, 0x6, 0x0, 0x3, 0x9, 0x4, 0x3, 0xffff, 0xecdd, 0x5, 0x0, 0x6, 0x5, 0xb9ea, 0xfffffff4, 0x1, 0x3, 0x5, 0x0, 0x40, 0x7, 0x4, 0xb, 0x100, 0x3, 0x1, 0x8, 0x5, 0x9, 0x3, 0x9, 0x80000001, 0x5, 0x3ff, 0x4, 0x1, 0xdcf, 0x4, 0x9, 0x9, 0xfff, 0x28, 0x2, 0xfff, 0x2, 0x176b2977, 0x80000000, 0xbd, 0xfffffc00, 0x0, 0x4, 0x7b0, 0x1000, 0x79, 0x8, 0x3, 0x9, 0x2, 0xff, 0x800, 0x3df1, 0x2, 0x3, 0xffff8000, 0x9, 0x18, 0x6, 0x8c0, 0x6ba, 0x955b, 0x6, 0x3, 0x1, 0x81, 0x9, 0x5, 0x2, 0x84, 0x400, 0x2, 0x80000000, 0xd329, 0xfffffffa, 0x3, 0x6, 0x6, 0x80f, 0x2, 0x4, 0x9, 0x4, 0x3, 0x5, 0x2, 0xd0, 0x4, 0x89, 0x401, 0x2, 0x3, 0x3ff, 0x8, 0x6, 0x8, 0x6, 0x8, 0x100, 0x2, 0x7, 0x7, 0x1, 0x7fffffff, 0x6, 0x7, 0x8, 0x800, 0x7, 0x624, 0xfffffff6, 0x5, 0x8, 0xfff, 0x2, 0x3c3, 0x8, 0x8, 0xffff, 0x6, 0x0, 0x10000, 0x7, 0x4e, 0x1ff, 0xfff, 0x40, 0x76000bc4, 0x1, 0xfff, 0x8, 0xf, 0xf1, 0x2, 0x3a1, 0x3, 0x1, 0x8001, 0x5, 0xea9, 0xa4f6, 0x8, 0x401, 0x8, 0x3, 0x1, 0x5, 0x0, 0x3, 0x0, 0x1, 0x1, 0x3, 0x5, 0x3, 0xd, 0x4, 0x40, 0x3ff, 0x75, 0xfffffffc, 0x7ff, 0xc, 0x8, 0x5, 0x4, 0x7, 0x6, 0x61c0, 0x0, 0x7, 0xd679, 0x6, 0x1, 0x2, 0xf23, 0x6, 0xffffffff, 0x3, 0x2, 0xb, 0xffffffff, 0x0, 0x9, 0x5, 0xfff, 0x2, 0x0, 0x5, 0x3, 0x0, 0x6, 0x6, 0x4, 0x4, 0x8, 0x0, 0x6, 0x2, 0x7f, 0x9, 0x7, 0xfc, 0x400, 0x5, 0xfffffff7, 0x7, 0x2, 0x7, 0x2, 0x6, 0x9, 0x8, 0x10, 0x3ff, 0x401, 0x68, 0x9, 0xd785, 0x7, 0x6, 0x6, 0x4e7c, 0x76e, 0x7, 0x9, 0x0, 0x2, 0x99d, 0x6, 0x35d, 0x4, 0x1000, 0x5, 0x33b, 0x9, 0xc0000000, 0xb, 0xffff, 0x3, 0x8001, 0x3, 0x2, 0x862, 0x1, 0x7f, 0x2, 0x0, 0x4, 0xa499, 0x8, 0x3, 0x6, 0x2, 0x1, 0x3, 0x9, 0x4, 0xd3a, 0x1, 0x5, 0x10001, 0xfffffffa, 0x5, 0x8, 0x10000, 0x6, 0xb33, 0x80000000, 0x2, 0x0, 0x1000, 0x3, 0x8, 0x9, 0xfffffffb, 0x7ff, 0xc, 0x4, 0x5, 0x9, 0x1ff, 0x81, 0x1, 0x80, 0x3, 0x4, 0xdff, 0x2, 0x744, 0x7ff, 0x9, 0x8, 0x4, 0x7fffffff, 0xd580, 0x8, 0x3, 0x3, 0x5, 0x9, 0x9, 0xf3c, 0x47ee, 0x2, 0x8, 0x9, 0x101, 0x8, 0x4, 0x7, 0x4, 0x0, 0x93a, 0x5, 0x9, 0xffffffff, 0x8, 0x9, 0xfffffff8, 0x80000000, 0x8, 0x6, 0x7, 0x9, 0xffff69a1, 0x8001, 0x8a6f, 0x97f7, 0x1, 0x8748, 0x4, 0x10000, 0xd, 0x8, 0x6, 0x68b, 0x13f2, 0x2, 0x5, 0xd, 0x8, 0x9, 0x1a4b, 0x7e766e79, 0x6, 0x4, 0xff, 0x0, 0x7, 0x80000000, 0x6c10320a, 0x1, 0x7d, 0x9, 0x10000, 0x0, 0x3, 0x6, 0xa4, 0x8, 0x882, 0xd, 0x3, 0x1, 0x4, 0xff, 0x9, 0x3ff, 0x3a6e, 0x9, 0xdc3, 0x8, 0x5ec2, 0x401, 0x5, 0x1, 0x6, 0x5, 0xffffffff, 0x8, 0x180, 0xfffffffd, 0xfffffff7, 0x4, 0x1, 0x4, 0x1, 0x9, 0xfffffeff, 0x4, 0xc0a, 0xfffffffc, 0x1, 0x332c, 0x80, 0x80, 0x7fff, 0x2a28, 0x7, 0x9, 0x7f, 0x2, 0x1000, 0xffff0001, 0x2081, 0x6, 0xaee4, 0x3, 0xc2, 0x9, 0xfffffe00, 0x1, 0x3, 0xd3, 0x8, 0x9, 0x7, 0x4, 0x9, 0x5, 0x2, 0x0, 0x10, 0x9, 0x80, 0x1ff, 0x7, 0x8, 0x6d0b, 0xff, 0x6, 0x5, 0x234, 0x6, 0x200, 0x9, 0x0, 0x2, 0x9, 0xa1, 0x0, 0x3, 0x6, 0x1, 0x80000000, 0x5, 0x1, 0x9, 0xc, 0x4, 0x6, 0x5, 0x6, 0x3, 0x5, 0xe, 0xd, 0xff, 0x9, 0xc, 0x4, 0x2, 0x0, 0x3ff, 0x22f, 0xc, 0x4, 0x80000001, 0x7964, 0x10000, 0xac93, 0x7fff, 0x5b83, 0x7, 0x32a, 0xc0000, 0x8, 0x28cf, 0x6, 0x6, 0x8, 0x0, 0x6, 0x1270cf8d, 0x401, 0x1, 0xcf90, 0x8, 0x1, 0x3998, 0x5, 0x1, 0x1, 0x9, 0x6, 0x3, 0x5, 0xfffffffa, 0xe, 0x1, 0x1, 0x6a, 0x9, 0x1, 0x2, 0x5, 0x80000001, 0x3, 0x9, 0xe, 0x6, 0x0, 0x1607, 0x3, 0x5, 0x1, 0x0, 0x3ff, 0x1, 0x200, 0x4, 0x9, 0x9, 0x0, 0x7fffffff, 0x10, 0x2, 0x7, 0xffffffff, 0xf9d, 0xffffff78, 0xfffff001, 0x400, 0x3, 0x7, 0x4, 0x3d2, 0x6080000, 0xf, 0x101, 0x6, 0x3, 0x100, 0x0, 0xd5, 0x0, 0x0, 0x80, 0xfffffffc, 0x1, 0x6, 0x3ff, 0x4, 0x1, 0xffffffff, 0x0, 0x0, 0xfffffc01, 0x6, 0x1, 0xfffffff9, 0x967, 0x1, 0x4c70, 0x97, 0x0, 0x9, 0x6, 0x1, 0x100, 0x6, 0x1, 0xe38e, 0x8001, 0x8, 0x87, 0x8, 0x9, 0x6, 0x6, 0xf71, 0x80000000, 0xa06b, 0x7791, 0x6, 0x28, 0x4, 0x67e, 0x0, 0x180, 0x7175, 0x7, 0x49ad, 0x5, 0x6, 0x7, 0x4, 0x3ff, 0x100, 0x3, 0x7fffffff, 0x7ff, 0x3019, 0xb4d, 0x1a0000, 0x1, 0xa8d, 0x3, 0x73, 0xaf5, 0xfffff4a2, 0xa6, 0x8, 0x2, 0xffffffff, 0x6, 0x7, 0xffffffff, 0x7, 0x7, 0x800, 0x8000, 0xfffff801, 0x8001, 0x4, 0x8, 0x5, 0x88, 0x39, 0xc0c6, 0x0, 0x4, 0x8, 0x0, 0x5, 0x74, 0x3, 0x1a8e, 0xfff, 0x4b89, 0x3, 0x9, 0x5, 0x8, 0x7fffffff, 0x0, 0xe0, 0xffffff80, 0xa, 0x14, 0x7, 0x8001, 0xd, 0x2, 0xfffffffc, 0x5, 0x9, 0x800, 0xff000, 0x0, 0x7, 0x2, 0x5, 0x8000, 0x2, 0x7, 0x3, 0x5, 0x7, 0xfffffffe, 0x3d, 0x3, 0x3, 0x48000000, 0x3, 0x9, 0x0, 0x3, 0x7ff, 0x5f82, 0x2676, 0x5, 0x4, 0x2, 0x7, 0x31bc, 0x1, 0x1, 0x401, 0x4, 0xfffffffa, 0x0, 0xf, 0x35, 0x8000, 0x2f469e8b, 0x5, 0x9, 0x800, 0x3, 0x1000, 0x3, 0x10, 0x2, 0x7, 0x7, 0x2, 0x1b, 0x3d7c, 0x1000, 0xfff, 0x4, 0x800, 0x5b44, 0x9, 0x1, 0x2, 0x2, 0x14db, 0x0, 0x6, 0x6, 0x7, 0x6, 0x10000, 0xd, 0xcde, 0x1000, 0x7, 0x0, 0x1000, 0x9, 0x92c, 0x8, 0x0, 0x3, 0x80000001, 0x9, 0x9, 0x4, 0xd, 0x1, 0x8, 0x0, 0x3191, 0x10, 0x0, 0x7, 0x400, 0x40, 0x3, 0x3, 0xfff, 0x8000, 0xfffffffd, 0x6, 0x9, 0x800, 0x1, 0xfffffffe, 0x4, 0x3, 0x6, 0x9, 0xf, 0x4, 0x9, 0x79, 0x1c1, 0xfffffff7, 0x8000, 0x10, 0x64, 0x0, 0x9, 0x0, 0xf0000000, 0x3, 0x3, 0xcf0, 0x7, 0xffff0001, 0x4, 0x9, 0x3, 0x92, 0x8, 0x5, 0x5, 0x0, 0x0, 0x8, 0x6, 0x40, 0x80, 0x6, 0x6, 0x80000000, 0x0, 0x6, 0xfff, 0xfffffffe, 0x0, 0x0, 0xb, 0x5, 0xfff, 0x8, 0x4, 0x80000001, 0x6, 0x1, 0x5, 0x7, 0xfff, 0x4, 0x8, 0xe5d, 0x5, 0x40000009, 0x7, 0x7, 0x1, 0x10001, 0xf6a, 0x3, 0x1, 0x1, 0x100, 0x8, 0x60b, 0x0, 0x4, 0x7, 0xfff, 0x9, 0x2, 0x9, 0x1afb, 0x2, 0xd2e4, 0xead, 0x6, 0x3, 0xfffffffd, 0x6, 0x1, 0xe, 0xd0, 0x59, 0x1, 0x18a]})
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="7c00000001040500000000000000000000000000060006400000000008000540000000000500010001"], 0x7c}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', <r1=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001680)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001640)={&(0x7f00000015c0)=@gettfilter={0x44, 0x2e, 0x1, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0x5, 0x4}, {0xfff2, 0x8}, {0xffe0, 0xe}}, [{0x8, 0xb, 0x9}, {0x8, 0xb, 0xf463}, {0x8, 0xb, 0x80000001}, {0x8, 0xb, 0xffffffc1}]}, 0x44}, 0x1, 0x0, 0x0, 0xc810}, 0x4000)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="2400000068000100000000000000000002000000040000000400040008000600f2000000be7a7a8f65c6f1e4e1c5c32a1d35a0dbd3b6fb8fb4b81a862c6595824efbaf4b88e3f7c690f41db83c282eaf24827451a9d0a8b717586ee637fe7410cc67e8f72d73c91d9958a26edc9880349b6c17ffd27b1d357e2dc9d2d174f817b27041b5"], 0x24}, 0x1, 0x0, 0x0, 0x4040001}, 0x0)
sendmsg$nl_xfrm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000014c0)=ANY=[@ANYBLOB="f00000001a0001000000000000000000fc010000000000000000000000000000ff01000000000000000000000000000100000000000000000000000032000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0037000000003c0000007f000001000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a72fcefef4e85a7b0000000000000200040060009c1a4aaf27cf588bbc7779709b00"/181], 0xf0}}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x3, 0x0, &(0x7f0000000040)={0x77359400}, &(0x7f0000048000), 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000e00)={@in6={{0xa, 0x0, 0x71, @ipv4={'\x00', '\xff\xff', @empty}, 0x9}}, 0x0, 0x0, 0x28, 0x0, "e541bd3d3aa6a0bf75e9671e8aa4b31c134f3a9db8f52e7300fe6e079f35ac2318dc045b4b9f54061f9f15abd9fd7e5550345bce05c13ed90158fbdeb70322ea3188f81890e3d200"}, 0xd8)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x80000, 0x0)
write$tun(r5, &(0x7f00000016c0)={@void, @val={0x1, 0x4, 0x0, 0xd, 0x1, 0x4}, @x25={0x1, 0xc4, 0xf3, "40d6f0fee573c09bdbfed3b4ded78333979c150f2bd74519bd74bce4ef0764a3405a0a14e66a84badb80632c32b143c7a826b7b9e27340f502e651c5173402461eac67cdd937aa16b79183d5162c74d00abf874fd252bd80fe03a5323c00e4ba7bf8cdbfe92f435c3f5df0ba080cb3cd1df62d4013c719da5491a363941fbfbe5395b46c84dcd3ba3d9fcfe4ddf222a97ea0c5920f0ab850da011f69d985e110e77c9c423c10de76f3c05f8dd70aef620b8e1be2f0cba46f3f5b220589aff0779aeb3c5a5d77"}}, 0xd3)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000021002101000000000000dc000a000000000000000000000008001a"], 0x24}}, 0x0)
listen(r4, 0x7c2)
r7 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r8 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r8, 0x89f0, &(0x7f0000000040)={'bridge0\x00', &(0x7f0000000140)=@ethtool_cmd={0x12, 0x0, 0x8, 0x4, 0x5, 0xd, 0x6, 0x7, 0x3, 0x7, 0xf, 0xfffffff9, 0x222, 0x0, 0xa, 0xb701, [0xcf, 0x59c]}})
sendmsg$DCCPDIAG_GETSOCK(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c00000012000301000000000000000000009db7000000000000010004000000000000000000000000000000000000000000000000000000691d0f76e77044d1eb94e56239e4"], 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x2, 0xb)
sendmsg$nl_generic(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x30, 0x40, 0x107, 0xfffffefe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0x14, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @typed={0x6, 0xb, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x4, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
r10 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006080)=@delchain={0x24, 0x66, 0x221, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff2}, {}, {0xb, 0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004800)
r11 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
sendfile(r11, 0xffffffffffffffff, 0x0, 0x106f)

1.703591608s ago: executing program 3 (id=267):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
brk(0x6)
setsockopt$inet6_int(r0, 0x29, 0xc9, 0x0, 0x0)

1.625042079s ago: executing program 3 (id=269):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x101c40, 0xb5)
mknodat$null(r0, &(0x7f0000000080)='./file0\x00', 0x800, 0x103)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='comm\x00')
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0xc0406618, &(0x7f0000000100)={@desc={0x1, 0x0, @auto="15803adb5f26d625"}})
write$P9_RREADDIR(r1, &(0x7f0000000140)={0x68, 0x29, 0x2, {0x4, [{{0x9a, 0x1, 0x8}, 0x6, 0x2, 0x7, './file0'}, {{0x0, 0x2, 0x8}, 0x3000000000000, 0x7, 0x7, './file0'}, {{0x8, 0x0, 0x8}, 0x1, 0xa, 0x7, './file0'}]}}, 0x68) (async)
write$P9_RREADDIR(r1, &(0x7f0000000140)={0x68, 0x29, 0x2, {0x4, [{{0x9a, 0x1, 0x8}, 0x6, 0x2, 0x7, './file0'}, {{0x0, 0x2, 0x8}, 0x3000000000000, 0x7, 0x7, './file0'}, {{0x8, 0x0, 0x8}, 0x1, 0xa, 0x7, './file0'}]}}, 0x68)
ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f00000001c0))
mount$cgroup(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x44080, &(0x7f0000000280)={[{@subsystem='perf_event'}, {@release_agent={'release_agent', 0x3d, './file0'}}, {}, {@nofavordynmods}]})
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000300)=@o_path={&(0x7f00000002c0)='./file0\x00', r1, 0x4000, r1}, 0x18)
open$dir(&(0x7f0000000340)='./file0\x00', 0x240000, 0x20)
openat2(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x80102, 0x0, 0x24}, 0x18) (async)
r2 = openat2(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x80102, 0x0, 0x24}, 0x18)
pwritev(r2, &(0x7f0000000780)=[{&(0x7f0000000400)="434cf01b202f6db5e29cd6123cec45e0669b32bc4ca27a4cd3927179fe1f4fb93ad98b4df28e6a1b850b829712ea558235aff46b209639d663e24c9fbdb67d3e45642fd26ad1557382c8934e036929463cd02992f62982f6452becef2020a2ae31d82c2908f931307ec457aa110a12b3be985c17d47936a7ddc768df6a507cecc5", 0x81}, {&(0x7f00000004c0)="42cc27a749656e7814cf548af0bb8d14b1c3c236bc6b4992007e2654f26d5ce0d34f908fb93f54f2d118b8737c4055940b51e603ece311efb12f966643531649f4647abccd170622ab2ea502c358f6fb6001f46f2de3b73428e1067fdb626a2feeb7eefd52f769fc1b71d4c93952de3dfebb6c48d6111d3acf4fc10677ddeebd422dc3392c8fbdb35845e15c1e", 0x8d}, {&(0x7f0000000580)="9af5f0a2e4902ec77761c75029a7a05cbcaa32dbf135fca56474d79483edf9e9858cba4e4efca461cd55ec90da49f6517cd1d5a0b67862867b1ddc5464d4664ebd5300709fa5", 0x46}, {&(0x7f0000000600)="3b585b0d545631febc53a1a8d4d131ce4320bead9e57838941956eaf0f40d7eafb58c1a19fd28e3a31649e599ecc1b1b63aa19ccacea011bca3b3fa5931d8e904d7131c45002edc2b1e41a5ee0ef8c0922069e82c4268bd1aa6b01bab42f", 0x5e}, {&(0x7f0000000680)="00b1016c860844a20de0acf0537cc1862dd02c952262e2683c908926aa90e2b6d39fdd2d5014b8ff3303f013ce1d0b831acfbfd1bd2f96e68062191c8c6214647f0dfeee357124ac68d4167eefd5168818992362833559b81706a43ff784529809a0f4b0d57eb051e348c9f0caf3e48f4a822ee540e5c0378832e710e5e89b7d182592f5dde604f52ab866aa512e4efa222ac27403e5de694079f72fcaf010f79e1fa055ef877e2b08e30c75b7db3ca31cbff64011a2d3780927341a4ecf511dfd5b9738eb4911f35d1b7a31a652c1407d8e70950bf2257307c780a53e8ad198a2ef7efb7e55d3703ebe0739e220f8b993ae01eee3f916", 0xf7}], 0x5, 0x997d, 0x9) (async)
pwritev(r2, &(0x7f0000000780)=[{&(0x7f0000000400)="434cf01b202f6db5e29cd6123cec45e0669b32bc4ca27a4cd3927179fe1f4fb93ad98b4df28e6a1b850b829712ea558235aff46b209639d663e24c9fbdb67d3e45642fd26ad1557382c8934e036929463cd02992f62982f6452becef2020a2ae31d82c2908f931307ec457aa110a12b3be985c17d47936a7ddc768df6a507cecc5", 0x81}, {&(0x7f00000004c0)="42cc27a749656e7814cf548af0bb8d14b1c3c236bc6b4992007e2654f26d5ce0d34f908fb93f54f2d118b8737c4055940b51e603ece311efb12f966643531649f4647abccd170622ab2ea502c358f6fb6001f46f2de3b73428e1067fdb626a2feeb7eefd52f769fc1b71d4c93952de3dfebb6c48d6111d3acf4fc10677ddeebd422dc3392c8fbdb35845e15c1e", 0x8d}, {&(0x7f0000000580)="9af5f0a2e4902ec77761c75029a7a05cbcaa32dbf135fca56474d79483edf9e9858cba4e4efca461cd55ec90da49f6517cd1d5a0b67862867b1ddc5464d4664ebd5300709fa5", 0x46}, {&(0x7f0000000600)="3b585b0d545631febc53a1a8d4d131ce4320bead9e57838941956eaf0f40d7eafb58c1a19fd28e3a31649e599ecc1b1b63aa19ccacea011bca3b3fa5931d8e904d7131c45002edc2b1e41a5ee0ef8c0922069e82c4268bd1aa6b01bab42f", 0x5e}, {&(0x7f0000000680)="00b1016c860844a20de0acf0537cc1862dd02c952262e2683c908926aa90e2b6d39fdd2d5014b8ff3303f013ce1d0b831acfbfd1bd2f96e68062191c8c6214647f0dfeee357124ac68d4167eefd5168818992362833559b81706a43ff784529809a0f4b0d57eb051e348c9f0caf3e48f4a822ee540e5c0378832e710e5e89b7d182592f5dde604f52ab866aa512e4efa222ac27403e5de694079f72fcaf010f79e1fa055ef877e2b08e30c75b7db3ca31cbff64011a2d3780927341a4ecf511dfd5b9738eb4911f35d1b7a31a652c1407d8e70950bf2257307c780a53e8ad198a2ef7efb7e55d3703ebe0739e220f8b993ae01eee3f916", 0xf7}], 0x5, 0x997d, 0x9)
r3 = syz_create_resource$binfmt(&(0x7f0000000800)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r3, 0x41, 0x1ff)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f0000000880)={&(0x7f0000000840)=""/21, 0x15})
io_uring_enter(r2, 0x2073, 0x4b47, 0x20, &(0x7f00000008c0)={[0x3]}, 0x8) (async)
io_uring_enter(r2, 0x2073, 0x4b47, 0x20, &(0x7f00000008c0)={[0x3]}, 0x8)
ioctl$SG_BLKTRACESTART(r2, 0x1274, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000009c0)={{{@in=@multicast2, @in6=@mcast1}}, {{@in6=@ipv4={""/10, ""/2, @multicast1}}, 0x0, @in=@private}}, &(0x7f0000000ac0)=0xe8) (async)
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000009c0)={{{@in=@multicast2, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@ipv4={""/10, ""/2, @multicast1}}, 0x0, @in=@private}}, &(0x7f0000000ac0)=0xe8)
mount$pvfs2(&(0x7f0000000900), &(0x7f0000000940)='./file1\x00', &(0x7f0000000980), 0x10010, &(0x7f0000000b00)={[{'nofavordynmods'}, {'cgroup\x00'}, {'+'}, {'-.'}, {'comm\x00'}, {'cgroup\x00'}, {'*!\\!*){@]'}], [{@obj_type}, {@uid_lt={'uid<', r4}}, {@subj_user={'subj_user', 0x3d, '\\[\x00'}}]})
setsockopt$MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, &(0x7f0000000b80)={{0xa, 0x4e23, 0x0, @loopback, 0x6}, {0xa, 0x4e22, 0x4, @remote, 0x1}, 0x0, {[0xfffffff2, 0x1, 0x101, 0xc, 0xa, 0x601, 0x6, 0x6]}}, 0x5c) (async)
setsockopt$MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, &(0x7f0000000b80)={{0xa, 0x4e23, 0x0, @loopback, 0x6}, {0xa, 0x4e22, 0x4, @remote, 0x1}, 0x0, {[0xfffffff2, 0x1, 0x101, 0xc, 0xa, 0x601, 0x6, 0x6]}}, 0x5c)
ioctl$vim2m_VIDIOC_G_FMT(r1, 0xc0d05604, &(0x7f0000000c00)={0x0, @sdr={0x47425247, 0xd}})
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000d00)={0x0, 0xd}, &(0x7f0000000d40)=0x8) (async)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000d00)={0x0, 0xd}, &(0x7f0000000d40)=0x8)
getxattr(&(0x7f0000000d80)='./file0\x00', &(0x7f0000000dc0)=@known='trusted.overlay.upper\x00', &(0x7f0000000e00)=""/59, 0x3b)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000e40), 0x0, 0x0) (async)
r5 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000e40), 0x0, 0x0)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r5, 0x4008941a, &(0x7f0000000e80)) (async)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r5, 0x4008941a, &(0x7f0000000e80))
setsockopt$inet_MCAST_LEAVE_GROUP(r5, 0x0, 0x2d, &(0x7f0000000ec0)={0x1, {{0x2, 0x4e22, @rand_addr=0x64010101}}}, 0x88) (async)
setsockopt$inet_MCAST_LEAVE_GROUP(r5, 0x0, 0x2d, &(0x7f0000000ec0)={0x1, {{0x2, 0x4e22, @rand_addr=0x64010101}}}, 0x88)
r6 = open$dir(&(0x7f0000000f80)='./file1\x00', 0x424040, 0x12)
utimensat(r6, &(0x7f0000000fc0)='./file0\x00', &(0x7f0000001000)={{0x0, 0x2710}, {0x77359400}}, 0x100)
vmsplice(r0, &(0x7f0000001280)=[{&(0x7f0000001040)="0ced0ad43db146ce8d5bb36cc867b1b7ed521b82c6e479100be115faf25abf911b6a4de6cebb512801b7c218446acd35ebbb9e58ab8aba8d78e1690e123292ad9b49c8fe0284c467d63a1ecd09af6d2850effb347ee99f8169f3f8566f495be5dbdfa06f735bc2db4709be922c8516d3ed434d12", 0x74}, {&(0x7f00000010c0)="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", 0xff}, {&(0x7f00000011c0)="153b350346f6a0cbf32d974eb1904b97e423abb9c45dd14508a102ebeac5d8c5838752a236e0a7756d7cd9936ee39f5f4f3c41009276007377b07bbadf33a7cd5c912b6e30f8bb4483c84968aa6e153c9ff58ad2755093a508211d828f26b5e3a3fb35e454c4701b902d52fd73c7cf06d634806b8c9b4c97deb734a7f3c79ca20e83eaea351d8aa7184239a74b48bcef7396028922def88109863632629894616c298b1d8a0fda1c7efb06e949c34f72f9bd", 0xb2}], 0x3, 0x0)
recvfrom(r5, &(0x7f00000012c0)=""/4096, 0x1000, 0x10006, &(0x7f00000022c0)=@generic={0x0, "32efdf402c8de1d681533ef953b434eb80fe27df284bc127947d9ea77a3e200adf092299bb0534cb6b4b1631d92bfa146ac6f9752e7fa0d17ce25b6a4bd822083f082d00f236dd4c71f91b0e07a486af529c12e3519101105f319671a1fac332ef4c9257a5ab8b5c7852e013e724d67cbb7ab18befbeb08404e6ff92957a"}, 0x80)

1.555684903s ago: executing program 3 (id=270):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x38011, r0, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r2 = dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x13, r2, 0x50f5)

1.555277437s ago: executing program 3 (id=271):
r0 = memfd_create(&(0x7f0000000040)='\x02A\xbb\xcc\x96\x0e\x00\x00\x00\x00\x00\x00', 0x6) (async)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
r1 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0) (rerun: 32)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, &(0x7f0000000780)={0x84, &(0x7f00000004c0)=ANY=[@ANYBLOB="00000100000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
syz_usb_connect$uac1(0x6, 0xd9, &(0x7f0000000100)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xc7, 0x3, 0x1, 0xf6, 0x0, 0x7, "", {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x0, 0x15}, [@selector_unit={0xb, 0x24, 0x5, 0x5, 0xe5, "dbace1e4ef44"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0x11, 0x24, 0x2, 0x2, 0x1ff, 0x3, 0xc6, "e9c07d502efe4d8a"}, @format_type_i_ext={0x9, 0x24, 0x2, 0x1, 0x6, 0x5, 0x6, 0x35, 0x1}, @format_type_ii_discrete={0x12, 0x24, 0x2, 0x2, 0x5, 0xfff, 0x45, "ca0daabc44b431ad65"}, @format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0x70, 0x4, 0x7, 0x4, '6', "dabd9d"}, @format_type_ii_ext={0xa, 0x24, 0x2, 0x2, 0x1, 0x0, 0x4, 0x10}]}, {{0x9, 0x5, 0x1, 0x9, 0x3ff, 0xe2, 0x82, 0x4b, {0x7, 0x25, 0x1, 0x8, 0x8, 0xe}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0x11, 0x24, 0x2, 0x2, 0x2, 0xe, 0x1, "43b71f7f03f9095d"}, @format_type_i_continuous={0x9, 0x24, 0x2, 0x1, 0x2, 0x2, 0x4, 0xf7, "", '['}]}, {{0x9, 0x5, 0x82, 0x9, 0x200, 0x5, 0xf, 0x6, {0x7, 0x25, 0x1, 0xc, 0x6, 0x8}}}}}}}}]}}, &(0x7f0000000380)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x310, 0x3, 0x1, 0x7, 0x10}, 0x31, &(0x7f0000000280)={0x5, 0xf, 0x31, 0x4, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x3, 0x5, 0xf2, 0x4}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "5da6688bae45d867bb403ec4cfc04d10"}, @ext_cap={0x7, 0x10, 0x2, 0x8, 0x9, 0xb, 0xd}, @ext_cap={0x7, 0x10, 0x2, 0x10, 0x3, 0x6, 0xc}]}, 0x1, [{0x2f, &(0x7f0000000340)=@string={0x2f, 0x3, "798c1e043d2d9043a5a2d36303af876000080de33d450270ba9351f63269dec1b03fc65ec102ccde978b7bb63c"}}]})
syz_usb_control_io$uac1(r1, &(0x7f00000002c0)={0x14, &(0x7f0000000200)={0x40, 0x11, 0x2, {0x2, 0x7}}, 0x0}, 0x0) (async, rerun: 32)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f00000002c0)={{0x2, 0x0, @empty}, {0x0, @random="e2fecc0c5bb1"}, 0x8, {0x2, 0x0, @remote}, 'sit0\x00'}) (rerun: 32)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r2, 0x5b02, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3000002, 0x12, r0, 0xffffe000) (async)
r3 = syz_usb_connect$rtl8150(0x1, 0x3f, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xbda, 0x8150, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0)
syz_usb_disconnect(r3)
ftruncate(r0, 0x0)

1.48563339s ago: executing program 1 (id=272):
r0 = epoll_create(0x7)
r1 = getpid()
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x4200, 0x0)
r3 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
kcmp$KCMP_EPOLL_TFD(0x0, r1, 0x7, r0, &(0x7f00000001c0)={r2, r3, 0x1})
r4 = epoll_create1(0x0)
r5 = epoll_create(0x7)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000180))
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f00000000c0))
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e000000020013000200000000000000ff0800ed05000600200000000a0006000000000026b900000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0) (fail_nth: 1)
sendmsg$key(r6, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002eb0e00000000000000000105000600200000000a00000040010000000500e50000070000001f00001a000000030000a95a6e870200010000e9ff070040000200000000050005000000cc580a"], 0x80}}, 0x24000000)
r7 = eventfd(0x9)
read$eventfd(r7, &(0x7f0000000080), 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000280000c37637f9b3580d2000040000000000000e0300000000000000030100000000000800000000000000000000000a00000000000000616100"], 0x0, 0x46}, 0x20)
r8 = epoll_create1(0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x40810)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r7, &(0x7f0000000100))
r9 = epoll_create1(0x0)
ioctl$OCFS2_IOC_RESVSP64(r0, 0x4030582a, &(0x7f0000000200)={0x2, 0x2, 0x7fffffffffffffff, 0x7f, 0xfffffffe, 0x2})
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r8, &(0x7f0000000000))
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000240)=ANY=[@ANYRESHEX=r5, @ANYRESOCT=r8, @ANYBLOB="0000000002000000b70500000800000085000000aa00000095"], &(0x7f0000000300)='GPL\x00', 0x4, 0x1002, &(0x7f00000014c0)=""/4098, 0x0, 0x1}, 0x94)

1.404300824s ago: executing program 1 (id=273):
r0 = epoll_create(0x7)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000180)={0x200000, 0x200000, 0x0, 0x0, 0xd33, 0x7})
chroot(&(0x7f00000001c0)='./file0\x00')
r1 = getpid()
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x4200, 0x0)
r3 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
kcmp$KCMP_EPOLL_TFD(0x0, r1, 0x7, r0, &(0x7f00000001c0)={r2, r3, 0x1})
r4 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0x5)
ioctl$TCSETA(r4, 0x8925, &(0x7f0000000100)={0x2, 0x0, 0x1, 0x0, 0x13, "31f40000f7ece2f4"})
r5 = epoll_create1(0x0)
r6 = epoll_create(0x7)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f0000000180))
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f00000000c0))
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e000000020013000200000000000000ff0800ed05000600200000000a0006000000000026b900000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmsg$key(r7, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002eb0e00000000000000000105000600200000000a00000040010000000500e50000070000001f00001a000000030000a95a6e870200010000e9ff070040000200000000050005000000cc580a"], 0x80}}, 0x24000000)
r8 = eventfd(0x9)
read$eventfd(r8, &(0x7f0000000080), 0x8)
r9 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000280000c37637f9b3580d2000040000000000000e0300000000000000030100000000000800000000000000000000000a00000000000000616100"], 0x0, 0x46}, 0x20)
r10 = epoll_create1(0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x40810)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r9, &(0x7f0000000240)={0x10002004})
r11 = epoll_create1(0x0)
ioctl$OCFS2_IOC_RESVSP64(r0, 0x4030582a, &(0x7f0000000200)={0x2, 0x2, 0x7fffffffffffffff, 0x7f, 0xfffffffe, 0x2})
epoll_ctl$EPOLL_CTL_ADD(r11, 0x1, r10, &(0x7f0000000000))
fcntl$setown(r3, 0x8, r1)
ioctl$NILFS_IOCTL_GET_BDESCS(r6, 0xc0186e87, &(0x7f0000000680)={&(0x7f00000004c0)=[{0x3a00000000000000, 0x3, 0x100000000, 0x3, 0x7}, {0x8000, 0xff, 0x40, 0xa34e, 0x7}, {0x80, 0x7, 0xa08, 0x100, 0x80000000}, {0x8, 0xfffffffffffffcb4, 0x0, 0xfffffffffffffff8, 0x8}, {0xb961, 0x100000000, 0x3, 0x0, 0x1}, {0x5, 0x8, 0x33ed, 0xffffffff, 0x1000}, {0x44f, 0xe6f, 0x2, 0x2, 0x7}, {0x10000, 0x1cb, 0x8, 0xa5, 0x8}, {0x3, 0x10000, 0x1, 0x1, 0x58d}, {0x4802, 0xfffffffffffffffc, 0x100000001, 0x100000000, 0x7}], 0xa, 0x28, 0x7, 0xf})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[], 0x48)

1.403990663s ago: executing program 1 (id=274):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x1c, &(0x7f0000000100)=[@in6={0xa, 0x4e24, 0xfa2, @private2={0xfc, 0x2, '\x00', 0xfd}, 0x2}]}, &(0x7f0000000080)=0x10)
r1 = socket$netlink(0x10, 0x3, 0x4)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f00000000c0)={0xb, 0x8, 0x0, 0xc0, 0x5, 0x6, 0x1, 0x6, 0xc0, 0x2, 0x7f, 0xc, 0xf, 0x8}, 0xe)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x1010408, &(0x7f00000002c0)={[{@huge_within_size}]})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010026bd7000fbdbdf2505000000280001800d0001007564703a73797a3200000000140002800800030081577a6cd800040078080000a2799c7e25f579106e56c45f4ef1fd08102092cd544dfc1c8bd6ab36d8b355da9c90e945b0224e5a78215bd1a6c9f6d3abb282a084e73dda817024564b0071faea8787a71fbe4554a1d20747c04b45e37189bed3e5c76b337056db3d7d84f1fcf6405ca96dd699"], 0x3c}, 0x1, 0x0, 0x0, 0x48c05}, 0x4040140)
sendmsg$nl_route(r2, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@can_newroute={0x2c, 0x18, 0x1, 0x70bd26, 0x0, {}, [@CGW_MOD_AND={0x15, 0x1, {{{0x3, 0x1, 0x0, 0x1}, 0x0, 0x2, 0x0, 0x0, "32ba630f60057a49"}, 0x7}}]}, 0x2c}}, 0x0)

843.688736ms ago: executing program 2 (id=278):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="2c0000000206010300000000000000000000000005000100060000000d000300686173a4dbdcd62f7b1724d1"], 0x2c}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c"], 0x0, 0x37}, 0x28)
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
sendmmsg$sock(r0, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000005c0)="f2", 0x1}], 0x1}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{0x0}, {&(0x7f0000000780)="92bdcafd7ac9e21583ea71b9eb5feeb69b7eeb919260393d59069611e6d460fd38481da64e5ad543477ed7b768b1a06c0a5d60edf6c5610c123e3572a7c3bd74b7bd876c6f1c54709ef06cb9187fa5ddecc04cdc8fd3e74782c0aa0579531662e6d5fcdddc53becdd0b8a59c3a97fe428e75e7707525647bd822", 0x7a}, {&(0x7f0000000580)}], 0x3, &(0x7f0000000880)=[@timestamping={{0x14, 0x1, 0x25, 0x2d}}, @timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}, @txtime={{0x18, 0x1, 0x3d, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xffff}}, @timestamping={{0x14, 0x1, 0x25, 0x9}}, @mark={{0x14, 0x1, 0x24, 0x9}}, @timestamping={{0x14, 0x1, 0x25, 0xfffffffb}}], 0xd8}}], 0x2, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NODE_GET(r2, &(0x7f00000006c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x58, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7fffffff}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xe}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x6}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x3}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x10000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xffffffff}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x200088d5)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000009000/0x18000)=nil, &(0x7f0000000800)=[@text32={0x20, &(0x7f0000000700)="67660fc776ba260f009a0000008066b826010f00d0f32e0f01bb73f2211466ba4300b009ee2636660f6d580966ba200066ed0f20e16464660f72f70066baa000b875ef3598ef", 0x46}], 0x1, 0x1c, &(0x7f0000000980), 0x0)
close(r6)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40)
sendmsg$NFT_BATCH(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000001000000500000a400000000c0a010400000000000000000a00000609000200737900000014000380100000800c00018006000100d65b0000140000001100010000000000000000000700000a"], 0x68}, 0x1, 0x0, 0x0, 0x24000840}, 0x40)
sendmsg$NFT_BATCH(r6, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[], 0x70}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r8 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/wireless\x00')
pread64(r9, &(0x7f0000000040)=""/30, 0x1e, 0x8001)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

732.302497ms ago: executing program 0 (id=279):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f00000000c0)=0x800, 0x4) (async)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x770, 0x0, 0xbabd}, 0x1c)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
r3 = socket(0x10, 0x803, 0x0) (rerun: 64)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x61}, 0x1, 0x0, 0x0, 0x4000}, 0x14) (async)
getsockname$packet(r3, &(0x7f00000000c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @remote}, 0x14) (async)
sendto$inet6(r1, &(0x7f0000000800)="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", 0xfc13, 0x880, 0x0, 0xfffffffffffffef0) (async)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=@updpolicy={0xb8, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@mcast1, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc0}, {0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, 0x0, 0x0, 0x1, 0x0, 0x2}}, 0xb8}}, 0x0)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r5, 0x8982, &(0x7f0000000180))
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x20, &(0x7f0000000000)={@mcast1, 0x8001, 0x1, 0x2, 0xc, 0x6b, 0x8}, 0x20) (async)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000040)=ANY=[@ANYRES64, @ANYBLOB="9a99789095d4c4f29ec17d3b38012edb79b3be191cb6f60d24fdf3a932ba1678e355e39c8ab4cd1cfd57b50b8e31ce7cfaca87deac1b785b18080d3e54ee012268ee3c6772354421264f02fc827558b0f86048b1153652589b8acb5859adcb73600d426e3451b5e2fe19cee76448696c9107ad11453bf80b7d51b4663626d0a79a9b1c61bce79869a5800fa2734b235b1f80ee31a1a445945a971ff6e7ab7bdd0f679c183e4080ccccf2522383c99a5fe92ef0112f4a75ec1dc78bc6e985ae7a66451eb4e3aede163ac4bfc93beb388cb89ee32cf676356c0c51597a82dbf7bb23c320", @ANYBLOB="03000000000020002000128008000100677265001408028008000600a7"], 0x48}, 0x1, 0x0, 0x0, 0x24040000}, 0x2000880)
r8 = openat$ndctl0(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r8, 0xc008640a, 0x0) (async)
sendmmsg(r7, &(0x7f0000000000), 0x4000000000001f2, 0x0)

731.718259ms ago: executing program 3 (id=280):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0300000004000000ffffffff0a00000000000000b774b4b9da283e0bf931c398c113f431cb28f3c6ca4339be465020ffe72269155ade4ebbd750d58c9afc1b1ac3b1d8c6b4d2f3dc59ce400fb47155ae8cdd5008d222dd51e6d7370bca03", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newlink={0x80, 0x10, 0x437, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x40c89}, [@IFLA_LINKINFO={0x60, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x50, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_LOCAL={0x14, 0x6, @private1}, @IFLA_GRE_REMOTE={0x14, 0x7, @private0}, @IFLA_GRE_ENCAP_FLAGS={0x6, 0xf, 0x8}, @IFLA_GRE_TTL={0x5, 0x8, 0x3}, @IFLA_GRE_TTL={0x5, 0x8, 0x6}, @IFLA_GRE_FLOWINFO={0x8, 0xc, 0x5}]}}}]}, 0x80}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000)
r3 = creat(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x80)
setsockopt$inet_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f00000003c0)=@gcm_256={{0x304}, "24a09020d3692bf5", "b5bd66d7cd79bf014e9cbdc1ebff688d8d48abed60999a2a6a77bf454c504a76", "ef8b9cbe", "5ec4700f871d0653"}, 0x38)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000600)={'tunl0\x00', &(0x7f00000004c0)={'syztnl0\x00', <r4=>0x0, 0x7, 0x10, 0xb6d, 0x10, {{0x43, 0x4, 0x2, 0x1, 0x10c, 0x65, 0x0, 0x12, 0x2f, 0x0, @empty, @loopback, {[@timestamp_prespec={0x44, 0x34, 0xce, 0x3, 0x4, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x40}, {@dev={0xac, 0x14, 0x14, 0xc}, 0x7fff}, {@broadcast, 0xb}, {@multicast2, 0x10001}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x3}, {@multicast2, 0x8}]}, @timestamp_addr={0x44, 0x1c, 0x57, 0x1, 0x4, [{@dev={0xac, 0x14, 0x14, 0x2d}, 0x9}, {@dev={0xac, 0x14, 0x14, 0xf0}, 0x8}, {@private=0xa010101, 0x4}]}, @timestamp={0x44, 0x10, 0xd5, 0x0, 0x4, [0x66b, 0x2, 0x7]}, @end, @timestamp={0x44, 0x8, 0x7a, 0x0, 0x3, [0xffffff0f]}, @timestamp_prespec={0x44, 0x2c, 0x8c, 0x3, 0x9, [{@local, 0x2}, {@loopback, 0xff}, {@dev={0xac, 0x14, 0x14, 0x16}, 0x2}, {@remote, 0xd10}, {@empty, 0x1}]}, @timestamp_addr={0x44, 0x4c, 0x11, 0x1, 0x8, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x3}, {@rand_addr=0x64010102, 0x4}, {@remote, 0x6}, {@rand_addr=0x64010100}, {@private=0xa010100, 0xb}, {@remote, 0x40}, {@multicast2}, {@loopback, 0x3}, {@loopback, 0x748d}]}, @end, @timestamp={0x44, 0x14, 0x99, 0x0, 0x9, [0x7, 0x88, 0x8000, 0x4cfe]}]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xe, 0x3, &(0x7f0000000000)=@framed={{0x18, 0x6}}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, @fallback=0x22, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$netrom(r1, &(0x7f0000000300)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r6 = fcntl$dupfd(r5, 0x0, r5)
write$sndseq(r6, &(0x7f0000000040)=[{0x4, 0x7, 0x0, 0x5, @tick=0xf64b, {0x0, 0xb8}, {0x4, 0x6}, @control={0x2, 0x7f, 0x2}}, {0x0, 0x3, 0x0, 0x4, @tick=0x8, {0x2, 0x4}, {0x0, 0x2}, @control={0x8, 0x4, 0x4ca}}], 0x38)
connect$netrom(r1, &(0x7f00000000c0)={{0x3, @bcast, 0xad}, [@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]}, 0x48)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bond0\x00', <r7=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="d40000001000ffff28bd7000fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="60a901003d040100ac00128009000100766c616e000000009c0002800600010004000000580004805000010000800000020000000c000100fcffffff0e0000000c000100fc010000020000000c00010001000080a97500000c00010003000000080000000c00010010000000000000000c000100030000000600000006000100010000000600050088a800000c000200000000000900000006000100030000000600050088a800000c000200000000001a00000008000500", @ANYRES32=r7, @ANYBLOB="085d15974537233efffffe0010a768af206109d7ddf3a40117308be1a81b742bdcf5a5af038045fcbe986e6a55be8bece1381ea98e0a1748d2d190ce"], 0xd4}}, 0x8008006)

446.195437ms ago: executing program 0 (id=281):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000000)={0x28, r1, 0x1, 0x70bd76, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_GATE_ANNOUNCEMENTS={0x5, 0x11, 0x1}]}]}, 0x28}}, 0x2400e850)

443.793595ms ago: executing program 1 (id=282):
r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/fscreate\x00', 0x2, 0x0)
readv(r0, &(0x7f0000000080)=[{&(0x7f0000000040)=""/13, 0xd}], 0x1)
r1 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x47b, 0x2)
readv(r1, &(0x7f0000000140)=[{&(0x7f00000001c0)=""/179, 0xb3}], 0x1)
ioctl$vim2m_VIDIOC_QBUF(r1, 0xc058560f, &(0x7f0000000300)=@multiplanar_mmap={0x7, 0x1, 0x4, 0x100, 0x10000, {0x0, 0xea60}, {0x1, 0x1, 0xa, 0xb2, 0x0, 0x3, "62aa962a"}, 0x2, 0x1, {0x0}, 0x3})

365.800797ms ago: executing program 2 (id=283):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x10040)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f00000001c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x16}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x67, 0x0, 0x2, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x6000, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0xfffe, 0x0, 0x95, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x6, 0x4, 0xca, 0x0, 0x1000, {[@sack_perm={0x4, 0x2}]}}}}}}}, 0x0)

365.535921ms ago: executing program 0 (id=284):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
syz_emit_ethernet(0x42, &(0x7f00000010c0)={@local, @random='\x00 \x00\x00\x00\b', @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x2b}, {[@lsrr={0x83, 0x7, 0xf1, [@multicast2]}, @ssrr={0x89, 0x3, 0x4d}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3}}}}}}, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4)

365.215197ms ago: executing program 1 (id=285):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
r1 = eventfd2(0x1, 0x1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x0, r1})
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x200000)

316.230183ms ago: executing program 2 (id=286):
socket$inet(0x2, 0x4000000000000001, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0xa00, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000680), 0x901800, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x3, 0x2, 0x3000, 0x1000, &(0x7f0000feb000/0x1000)=nil})
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0xa, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="7b87f20f89", @ANYRESHEX, @ANYRES32=r3], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 9)

315.537747ms ago: executing program 0 (id=287):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x901800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008200000018070000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a6000000850000005000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x4, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="7b87f20f"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r3 = creat(&(0x7f0000000240)='./bus\x00', 0xc2)
io_setup(0x5, &(0x7f0000000100)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f00000002c0)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x0, r3, 0x0}])
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
ioctl$TIOCEXCL(r5, 0x540c)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

315.324042ms ago: executing program 1 (id=288):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f0000000040), 0x10000, &(0x7f00000001c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})
syz_fuse_handle_req(r0, &(0x7f000000bb40)="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", 0x2000, &(0x7f0000000680)={&(0x7f0000006400)={0x50, 0x0, 0x8000000001ff, {0x7, 0x29, 0x2000f4, 0x4135ed2f1bdbbd72, 0xdcf, 0x6, 0xb, 0x800, 0x0, 0x0, 0x10, 0xfffd}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x5000000)

76.18222ms ago: executing program 3 (id=289):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f00000003c0)="0f326635004000000f300f00d636808a0d0001ba4300b80b00eb66b88c5000000f23d02a3ff866352000000e0f23f80f01c30f789deb32660f3a21cf220f2bb00058660f1bde", 0x46}], 0x1, 0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
syz_io_uring_setup(0xa9d, &(0x7f00000005c0)={0x0, 0xfd7b, 0x8, 0x1, 0x24f}, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYRESHEX=r0], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TYPE(r7, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000900)=ANY=[@ANYBLOB="340000000d0601020000000000000000050000040e0003006269746d61703a6970000066ea87afa2cc4e043cd58e1c0005000100"], 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x800)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="38000000ba1caaf57f2bc00dfcdbdf257a000000", @ANYRES32=0x0, @ANYBLOB="01900400000000001800128008000100736974000c0002800500040009000000"], 0x38}, 0x1, 0x0, 0x0, 0x4040850}, 0x0)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="2c00000002f900030000000000080600000000000000686173683a6d616300000000"], 0x2c}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c"], 0x0, 0x37, 0x0, 0x0, 0xffff00}, 0x28)
sendmmsg$sock(r6, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000005c0)="f2", 0x1}], 0x1}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{0x0}, {&(0x7f0000000780)="92bdcafd7ac9e21583ea71b9eb5feeb69b7eeb919260393d59069611e6d460fd38481da64e5ad543477ed7b768b1a06c0a5d60edf6c5610c123e3572a7c3bd74b7bd876c6f1c54709ef06cb9187fa5ddecc04cdc8fd3e74782c0aa0579531662e6d5fcdddc53becdd0b8a59c3a97fe428e75e7707525647bd822", 0x7a}, {&(0x7f0000000580)}], 0x3, &(0x7f0000000500)=[@timestamping={{0x14, 0x1, 0x25, 0x2d}}, @mark={{0x14, 0x1, 0x24, 0x570c}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x60}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000014c0)}}], 0x3, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r10, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r10, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r11 = accept4(r10, 0x0, 0x0, 0x800)
sendmmsg$alg(r11, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r11, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x2)

75.698236ms ago: executing program 0 (id=290):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000b80), 0xffffffffffffffff)
sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000340)={0x0, 0xf00, &(0x7f00000000c0)={&(0x7f0000000000)={0x14, r1, 0x1, 0x70bd27, 0x25dfdc01}, 0x14}, 0x1, 0x0, 0x0, 0x20000004}, 0x0)

0s ago: executing program 0 (id=291):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r2 = dup(r1)
ioctl$KVM_GET_API_VERSION(r2, 0xae00, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x13, r2, 0x5000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x11)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x32, 0x0, 0x0)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f0000000240)={&(0x7f0000000180)=""/147, 0x93})

kernel console output (not intermixed with test programs):

[   73.244519][   T40] audit: type=1400 audit(1776296769.645:59): avc:  denied  { write } for  pid=5831 comm="sh" path="pipe:[3402]" dev="pipefs" ino=3402 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   73.255456][   T40] audit: type=1400 audit(1776296769.645:60): avc:  denied  { rlimitinh } for  pid=5831 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   73.264276][   T40] audit: type=1400 audit(1776296769.645:61): avc:  denied  { siginh } for  pid=5831 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '[localhost]:47110' (ED25519) to the list of known hosts.
[   75.556436][   T40] audit: type=1400 audit(1776296771.965:62): avc:  denied  { name_bind } for  pid=5863 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   75.607375][   T40] audit: type=1400 audit(1776296772.015:63): avc:  denied  { execute } for  pid=5866 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   75.617795][   T40] audit: type=1400 audit(1776296772.025:64): avc:  denied  { execute_no_trans } for  pid=5866 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   78.357552][   T40] audit: type=1400 audit(1776296774.765:65): avc:  denied  { mounton } for  pid=5866 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   78.368870][   T40] audit: type=1400 audit(1776296774.775:66): avc:  denied  { mount } for  pid=5866 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   78.370859][ T5866] cgroup: Unknown subsys name 'net'
[   78.382681][   T40] audit: type=1400 audit(1776296774.795:67): avc:  denied  { unmount } for  pid=5866 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   78.542892][ T5866] cgroup: Unknown subsys name 'cpuset'
[   78.548855][ T5866] cgroup: Unknown subsys name 'rlimit'
[   78.731173][   T40] audit: type=1400 audit(1776296775.145:68): avc:  denied  { setattr } for  pid=5866 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   78.740638][   T40] audit: type=1400 audit(1776296775.145:69): avc:  denied  { create } for  pid=5866 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   78.748023][   T40] audit: type=1400 audit(1776296775.145:70): avc:  denied  { write } for  pid=5866 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   78.758159][   T40] audit: type=1400 audit(1776296775.145:71): avc:  denied  { read } for  pid=5866 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   78.766947][   T40] audit: type=1400 audit(1776296775.165:72): avc:  denied  { mounton } for  pid=5866 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   78.778438][   T40] audit: type=1400 audit(1776296775.165:73): avc:  denied  { mount } for  pid=5866 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   78.788507][   T40] audit: type=1400 audit(1776296775.175:74): avc:  denied  { read } for  pid=5638 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[   78.804634][ T5913] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   79.749097][ T5866] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   83.616539][   T40] kauditd_printk_skb: 7 callbacks suppressed
[   83.616553][   T40] audit: type=1400 audit(1776296780.025:82): avc:  denied  { execmem } for  pid=5925 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   83.825382][   T40] audit: type=1400 audit(1776296780.235:83): avc:  denied  { create } for  pid=5929 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   83.837271][   T40] audit: type=1400 audit(1776296780.235:84): avc:  denied  { create } for  pid=5930 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   83.845448][   T40] audit: type=1400 audit(1776296780.235:85): avc:  denied  { read write } for  pid=5929 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   83.853071][   T40] audit: type=1400 audit(1776296780.235:87): avc:  denied  { open } for  pid=5929 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   83.861223][   T40] audit: type=1400 audit(1776296780.235:86): avc:  denied  { read write } for  pid=5930 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   83.868685][   T40] audit: type=1400 audit(1776296780.245:88): avc:  denied  { ioctl } for  pid=5929 comm="syz-executor" path="socket:[7532]" dev="sockfs" ino=7532 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   83.870823][ T5933] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   83.883840][ T5933] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   83.887002][ T5933] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   83.890791][ T5933] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   83.893823][ T5933] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   83.897744][ T5933] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   83.901543][ T5933] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   83.904437][ T5933] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   83.907029][ T5933] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   83.912024][ T5287] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   83.912922][ T5943] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   83.915736][ T5287] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   83.917958][ T5943] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   83.920954][ T5945] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   83.921123][   T40] audit: type=1400 audit(1776296780.335:89): avc:  denied  { read } for  pid=5929 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   83.921151][   T40] audit: type=1400 audit(1776296780.335:90): avc:  denied  { open } for  pid=5929 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   83.921616][   T40] audit: type=1400 audit(1776296780.335:91): avc:  denied  { mounton } for  pid=5929 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   83.923495][ T5943] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   83.948914][ T5933] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   83.951953][ T5943] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   83.958084][ T5933] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   83.958107][ T5943] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   83.963643][ T5943] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   84.199026][ T5929] chnl_net:caif_netlink_parms(): no params data found
[   84.361995][ T5929] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.365234][ T5929] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.367773][ T5929] bridge_slave_0: entered allmulticast mode
[   84.371114][ T5929] bridge_slave_0: entered promiscuous mode
[   84.376958][ T5929] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.379467][ T5929] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.382162][ T5929] bridge_slave_1: entered allmulticast mode
[   84.385185][ T5929] bridge_slave_1: entered promiscuous mode
[   84.462649][ T5929] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.467211][ T5929] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.471037][ T5930] chnl_net:caif_netlink_parms(): no params data found
[   84.478295][ T5941] chnl_net:caif_netlink_parms(): no params data found
[   84.511352][ T5929] team0: Port device team_slave_0 added
[   84.518657][ T5931] chnl_net:caif_netlink_parms(): no params data found
[   84.542959][ T5929] team0: Port device team_slave_1 added
[   84.642541][ T5929] batman_adv: batadv0: Adding interface: batadv_slave_0
[   84.645770][ T5929] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   84.654944][ T5929] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   84.682253][ T5929] batman_adv: batadv0: Adding interface: batadv_slave_1
[   84.685311][ T5929] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   84.696301][ T5929] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   84.727206][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.730711][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.733885][ T5941] bridge_slave_0: entered allmulticast mode
[   84.737849][ T5941] bridge_slave_0: entered promiscuous mode
[   84.758986][ T5930] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.761520][ T5930] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.763881][ T5930] bridge_slave_0: entered allmulticast mode
[   84.766682][ T5930] bridge_slave_0: entered promiscuous mode
[   84.770386][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.772880][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.775284][ T5941] bridge_slave_1: entered allmulticast mode
[   84.778105][ T5941] bridge_slave_1: entered promiscuous mode
[   84.807463][ T5930] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.810200][ T5930] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.812580][ T5930] bridge_slave_1: entered allmulticast mode
[   84.815315][ T5930] bridge_slave_1: entered promiscuous mode
[   84.844867][ T5929] hsr_slave_0: entered promiscuous mode
[   84.847836][ T5929] hsr_slave_1: entered promiscuous mode
[   84.859957][ T5930] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.865130][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.868072][ T5931] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.870706][ T5931] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.873293][ T5931] bridge_slave_0: entered allmulticast mode
[   84.876471][ T5931] bridge_slave_0: entered promiscuous mode
[   84.880015][ T5931] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.882354][ T5931] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.884684][ T5931] bridge_slave_1: entered allmulticast mode
[   84.887457][ T5931] bridge_slave_1: entered promiscuous mode
[   84.891489][ T5930] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.902766][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.936636][ T5930] team0: Port device team_slave_0 added
[   84.956399][ T5931] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.961853][ T5930] team0: Port device team_slave_1 added
[   84.964973][ T5941] team0: Port device team_slave_0 added
[   84.968456][ T5941] team0: Port device team_slave_1 added
[   84.983371][ T5931] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.036997][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.039600][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   85.048102][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.053306][ T5930] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.055517][ T5930] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   85.063664][ T5930] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.071145][ T5931] team0: Port device team_slave_0 added
[   85.078035][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.080466][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   85.089769][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.094695][ T5930] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.097280][ T5930] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   85.105368][ T5930] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.114043][ T5931] team0: Port device team_slave_1 added
[   85.180295][ T5931] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.183202][ T5931] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   85.192813][ T5931] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.213196][ T5941] hsr_slave_0: entered promiscuous mode
[   85.215521][ T5941] hsr_slave_1: entered promiscuous mode
[   85.217728][ T5941] debugfs: 'hsr0' already exists in 'hsr'
[   85.219884][ T5941] Cannot create hsr debugfs directory
[   85.225833][ T5930] hsr_slave_0: entered promiscuous mode
[   85.228284][ T5930] hsr_slave_1: entered promiscuous mode
[   85.230930][ T5930] debugfs: 'hsr0' already exists in 'hsr'
[   85.233506][ T5930] Cannot create hsr debugfs directory
[   85.237718][ T5931] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.242296][ T5931] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   85.251615][ T5931] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.360031][ T5931] hsr_slave_0: entered promiscuous mode
[   85.362417][ T5931] hsr_slave_1: entered promiscuous mode
[   85.364597][ T5931] debugfs: 'hsr0' already exists in 'hsr'
[   85.366454][ T5931] Cannot create hsr debugfs directory
[   85.479473][ T5929] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   85.487886][ T5929] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   85.494623][ T5929] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   85.500575][ T5929] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   85.507534][ T5929] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   85.514245][ T5929] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   85.516957][ T5929] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   85.521156][ T5929] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   85.618660][ T5941] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   85.623828][ T5941] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   85.627077][ T5941] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   85.632302][ T5941] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   85.635161][ T5941] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   85.639935][ T5941] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   85.645873][ T5941] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   85.654240][ T5941] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   85.710534][ T5930] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   85.715517][ T5930] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   85.720299][ T5930] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   85.724411][ T5930] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   85.727159][ T5930] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   85.732568][ T5930] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   85.735435][ T5930] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   85.741574][ T5930] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   85.817036][ T5931] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   85.822832][ T5931] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   85.826001][ T5931] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   85.832208][ T5931] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   85.841367][ T5931] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   85.845431][ T5931] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   85.848711][ T5931] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   85.852758][ T5931] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   85.874607][ T5929] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.896770][ T5929] 8021q: adding VLAN 0 to HW filter on device team0
[   85.917112][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.919989][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.938052][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.940620][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   85.960297][ T5935] Bluetooth: hci3: command tx timeout
[   85.960302][ T5933] Bluetooth: hci0: command tx timeout
[   85.973325][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.008999][ T5930] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.012277][ T5941] 8021q: adding VLAN 0 to HW filter on device team0
[   86.023589][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.025938][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.040410][ T5935] Bluetooth: hci1: command tx timeout
[   86.040490][ T5933] Bluetooth: hci2: command tx timeout
[   86.042699][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.047391][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.057161][ T5930] 8021q: adding VLAN 0 to HW filter on device team0
[   86.086253][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.089330][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.112927][ T5931] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.122843][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.126000][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.187676][ T5931] 8021q: adding VLAN 0 to HW filter on device team0
[   86.206361][ T1152] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.209144][ T1152] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.220060][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.222586][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.241801][ T5929] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.333081][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.341449][ T5929] veth0_vlan: entered promiscuous mode
[   86.366408][ T5929] veth1_vlan: entered promiscuous mode
[   86.376043][ T5930] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.402421][ T5941] veth0_vlan: entered promiscuous mode
[   86.415322][ T5929] veth0_macvtap: entered promiscuous mode
[   86.419940][ T5941] veth1_vlan: entered promiscuous mode
[   86.434250][ T5929] veth1_macvtap: entered promiscuous mode
[   86.454724][ T5930] veth0_vlan: entered promiscuous mode
[   86.467768][ T5929] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.472507][ T5930] veth1_vlan: entered promiscuous mode
[   86.486426][ T5929] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.504834][ T1147] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.511879][ T5931] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.519445][ T1147] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.523014][ T1147] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.529074][ T5941] veth0_macvtap: entered promiscuous mode
[   86.534889][ T1147] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.541537][ T5941] veth1_macvtap: entered promiscuous mode
[   86.582034][ T5930] veth0_macvtap: entered promiscuous mode
[   86.594006][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.597776][ T5930] veth1_macvtap: entered promiscuous mode
[   86.608589][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.636774][ T1147] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.649412][ T1147] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.649751][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.656192][ T1147] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.657565][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.663028][ T5930] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.666260][ T5931] veth0_vlan: entered promiscuous mode
[   86.672422][ T1147] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.699784][ T5930] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.716078][ T1147] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.720017][ T1147] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.726070][ T1144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.729413][ T1144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.731628][ T1147] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.738322][ T1147] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.745492][ T5931] veth1_vlan: entered promiscuous mode
[   86.800164][ T1152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.803271][ T1152] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.817618][ T5929] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   86.833607][ T5931] veth0_macvtap: entered promiscuous mode
[   86.852663][ T1152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.852746][ T5931] veth1_macvtap: entered promiscuous mode
[   86.857788][ T1152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.896287][ T1152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.901751][ T1152] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.903497][ T5931] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.932308][ T5931] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.945064][ T1152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.949861][   T46] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.950438][ T1152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.953386][   T46] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.963180][   T46] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.975093][   T46] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.028522][ T6021] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   87.038663][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.046986][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.064239][ T1144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.067412][ T1144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.093754][ T6025] random: crng reseeded on system resumption
[   87.112116][ T6025] x_tables: ip6_tables: CT target: only valid in raw table, not syz1
[   87.117313][ T6025] warning: `syz.0.1' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   87.174668][ T6031] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   87.178112][ T6031] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   87.212058][ T6028] FAULT_INJECTION: forcing a failure.
[   87.212058][ T6028] name failslab, interval 1, probability 0, space 0, times 1
[   87.216801][ T6028] CPU: 1 UID: 0 PID: 6028 Comm: syz.1.6 Not tainted syzkaller #0 PREEMPT(full) 
[   87.216817][ T6028] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   87.216825][ T6028] Call Trace:
[   87.216886][ T6028]  <TASK>
[   87.216895][ T6028]  dump_stack_lvl+0x100/0x190
[   87.216914][ T6028]  should_fail_ex.cold+0x5/0xa
[   87.216930][ T6028]  should_failslab+0xc2/0x120
[   87.216947][ T6028]  __kvmalloc_node_noprof+0xfa/0xa00
[   87.216962][ T6028]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[   87.216979][ T6028]  __kvm_mmu_topup_memory_cache+0x455/0x5f0
[   87.216993][ T6028]  ? find_held_lock+0x2b/0x80
[   87.217012][ T6028]  mmu_topup_memory_caches+0x25/0x170
[   87.217028][ T6028]  kvm_mmu_load+0xd6/0x23e0
[   87.217043][ T6028]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[   87.217061][ T6028]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   87.217081][ T6028]  ? __pfx_kvm_mmu_load+0x10/0x10
[   87.217095][ T6028]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   87.217108][ T6028]  ? kvm_check_and_inject_events+0x961/0x10c0
[   87.217124][ T6028]  ? record_steal_time+0x380/0xbc0
[   87.217144][ T6028]  vcpu_run+0x39f4/0x5ca0
[   87.217165][ T6028]  ? __pfx_vcpu_run+0x10/0x10
[   87.217185][ T6028]  ? rcu_is_watching+0x12/0xc0
[   87.217203][ T6028]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[   87.217218][ T6028]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[   87.217238][ T6028]  kvm_vcpu_ioctl+0x730/0x1720
[   87.217251][ T6028]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   87.217263][ T6028]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   87.217276][ T6028]  ? do_vfs_ioctl+0x226/0x13e0
[   87.217291][ T6028]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   87.217306][ T6028]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   87.217328][ T6028]  ? __fget_files+0x215/0x3d0
[   87.217346][ T6028]  ? hook_file_ioctl_common+0x149/0x410
[   87.217361][ T6028]  ? selinux_file_ioctl+0x13b/0x290
[   87.217377][ T6028]  ? selinux_file_ioctl+0xb6/0x290
[   87.217395][ T6028]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   87.217407][ T6028]  __x64_sys_ioctl+0x18e/0x210
[   87.217423][ T6028]  do_syscall_64+0x10b/0xf80
[   87.217436][ T6028]  ? clear_bhb_loop+0x40/0x90
[   87.217450][ T6028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.217462][ T6028] RIP: 0033:0x7fef42f9c819
[   87.217472][ T6028] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   87.217483][ T6028] RSP: 002b:00007fef43f28028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   87.217495][ T6028] RAX: ffffffffffffffda RBX: 00007fef43215fa0 RCX: 00007fef42f9c819
[   87.217502][ T6028] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000d
[   87.217508][ T6028] RBP: 00007fef43f28090 R08: 0000000000000000 R09: 0000000000000000
[   87.217514][ T6028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.217521][ T6028] R13: 00007fef43216038 R14: 00007fef43215fa0 R15: 00007ffed167a038
[   87.217534][ T6028]  </TASK>
[   87.344506][ T5933] Bluetooth: hci1: Received unexpected HCI Event 0x00
[   87.381220][ T1124] sr 2:0:0:0: [sr0] tag#14 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[   87.381314][ T1124] sr 2:0:0:0: [sr0] tag#14 Sense Key : Illegal Request [current] 
[   87.381350][ T1124] sr 2:0:0:0: [sr0] tag#14 Add. Sense: Invalid command operation code
[   87.381383][ T1124] sr 2:0:0:0: [sr0] tag#14 CDB: Write(10) 2a 00 00 00 00 00 00 00 02 00
[   87.381469][ T1124] critical target error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2
[   87.381556][ T1124] Buffer I/O error on dev sr0, logical block 0, lost async page write
[   87.526462][ T6057] netlink: 'syz.3.15': attribute type 1 has an invalid length.
[   87.564406][   T58] cfg80211: failed to load regulatory.db
[   87.584420][ T6056] syz_tun: entered allmulticast mode
[   87.598016][ T6054] syz_tun: left allmulticast mode
[   87.671513][ T6063] netlink: 666 bytes leftover after parsing attributes in process `syz.1.17'.
[   87.671517][ T6065] netlink: 666 bytes leftover after parsing attributes in process `syz.1.17'.
[   87.809949][ T5933] Bluetooth: hci0: ISO packet for unknown connection handle 0
[   87.861656][ T6073] �����5g�Q[�: renamed from lo (while UP)
[   88.039410][ T5933] Bluetooth: hci0: command tx timeout
[   88.051749][ T5933] Bluetooth: hci3: command tx timeout
[   88.119149][ T5933] Bluetooth: hci1: command tx timeout
[   88.121534][ T5933] Bluetooth: hci2: command tx timeout
[   88.164327][ T6086] netlink: 8 bytes leftover after parsing attributes in process `syz.2.24'.
[   88.174220][ T6086] ip6gretap0: entered promiscuous mode
[   88.305899][ T5935] Bluetooth: hci3: ISO packet for unknown connection handle 0
[   88.476352][ T6097] kvm: pic: non byte write
[   88.664124][   T40] kauditd_printk_skb: 107 callbacks suppressed
[   88.664143][   T40] audit: type=1400 audit(1776297553.078:199): avc:  denied  { read } for  pid=6110 comm="syz.2.33" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   88.680316][   T40] audit: type=1400 audit(1776297553.088:200): avc:  denied  { open } for  pid=6110 comm="syz.2.33" path="/dev/dri/card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   88.698351][   T40] audit: type=1400 audit(1776297553.088:201): avc:  denied  { ioctl } for  pid=6110 comm="syz.2.33" path="/dev/dri/card1" dev="devtmpfs" ino=636 ioctlcmd=0x64a0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   88.708964][   T40] audit: type=1400 audit(1776297553.108:202): avc:  denied  { append } for  pid=6110 comm="syz.2.33" name="cec2" dev="devtmpfs" ino=986 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   88.709797][ T6111] netlink: 24 bytes leftover after parsing attributes in process `syz.2.33'.
[   88.729448][ T6111] �����: renamed from lo (while UP)
[   88.746874][   T40] audit: type=1400 audit(1776297553.158:203): avc:  denied  { name_bind } for  pid=6112 comm="syz.1.34" src=3618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   88.795237][   T40] audit: type=1400 audit(1776297553.208:204): avc:  denied  { create } for  pid=6114 comm="syz.1.35" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[   88.799732][ T6115] netlink: 'syz.1.35': attribute type 1 has an invalid length.
[   88.804714][   T40] audit: type=1400 audit(1776297553.208:205): avc:  denied  { write } for  pid=6114 comm="syz.1.35" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[   88.859398][ T6118] netlink: 28 bytes leftover after parsing attributes in process `syz.1.35'.
[   88.863296][ T6118] FAULT_INJECTION: forcing a failure.
[   88.863296][ T6118] name failslab, interval 1, probability 0, space 0, times 0
[   88.863956][   T40] audit: type=1400 audit(1776297553.278:206): avc:  denied  { create } for  pid=6116 comm="syz.2.36" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   88.867745][ T6118] CPU: 1 UID: 0 PID: 6118 Comm: syz.1.35 Not tainted syzkaller #0 PREEMPT(full) 
[   88.867762][ T6118] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   88.867770][ T6118] Call Trace:
[   88.867774][ T6118]  <TASK>
[   88.867779][ T6118]  dump_stack_lvl+0x100/0x190
[   88.867804][ T6118]  should_fail_ex.cold+0x5/0xa
[   88.867827][ T6118]  should_failslab+0xc2/0x120
[   88.867851][ T6118]  kmem_cache_alloc_noprof+0x7b/0x6e0
[   88.867866][ T6118]  ? skb_clone+0x190/0x400
[   88.867886][ T6118]  skb_clone+0x190/0x400
[   88.867901][ T6118]  netlink_deliver_tap+0xaed/0xcc0
[   88.867923][ T6118]  netlink_unicast+0x62b/0x850
[   88.867944][ T6118]  ? __pfx_netlink_unicast+0x10/0x10
[   88.867972][ T6118]  netlink_sendmsg+0x8b0/0xda0
[   88.867993][ T6118]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.868011][ T6118]  ? __might_fault+0x20/0x140
[   88.868030][ T6118]  ____sys_sendmsg+0x9e1/0xb70
[   88.868049][ T6118]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.868069][ T6118]  ? __pfx_____sys_sendmsg+0x10/0x10
[   88.868094][ T6118]  ___sys_sendmsg+0x190/0x1e0
[   88.868115][ T6118]  ? __pfx____sys_sendmsg+0x10/0x10
[   88.868150][ T6118]  __sys_sendmsg+0x170/0x220
[   88.868166][ T6118]  ? __pfx___sys_sendmsg+0x10/0x10
[   88.868185][ T6118]  ? fput+0x79/0x100
[   88.868197][ T6118]  ? rcu_is_watching+0x12/0xc0
[   88.868218][ T6118]  do_syscall_64+0x10b/0xf80
[   88.868232][ T6118]  ? clear_bhb_loop+0x40/0x90
[   88.868246][ T6118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.868259][ T6118] RIP: 0033:0x7fef42f9c819
[   88.868270][ T6118] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   88.868281][ T6118] RSP: 002b:00007fef43f07028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   88.868293][ T6118] RAX: ffffffffffffffda RBX: 00007fef43216090 RCX: 00007fef42f9c819
[   88.868300][ T6118] RDX: 0000000000000040 RSI: 00002000000000c0 RDI: 0000000000000003
[   88.868307][ T6118] RBP: 00007fef43f07090 R08: 0000000000000000 R09: 0000000000000000
[   88.868313][ T6118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.868320][ T6118] R13: 00007fef43216128 R14: 00007fef43216090 R15: 00007ffed167a038
[   88.868334][ T6118]  </TASK>
[   88.954932][   T40] audit: type=1400 audit(1776297553.278:207): avc:  denied  { bind } for  pid=6116 comm="syz.2.36" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   88.961031][   T40] audit: type=1400 audit(1776297553.278:208): avc:  denied  { setopt } for  pid=6116 comm="syz.2.36" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   89.070191][ T6120] netlink: 8 bytes leftover after parsing attributes in process `syz.2.37'.
[   89.152575][ T5935] Bluetooth: hci0: ISO packet for unknown connection handle 0
[   89.407011][ T6142] netlink: 'syz.3.45': attribute type 2 has an invalid length.
[   89.415228][ T6143] netlink: 'syz.3.45': attribute type 2 has an invalid length.
[   89.580126][ T6153] netlink: 8 bytes leftover after parsing attributes in process `syz.0.49'.
[   89.587358][ T6153] ip6gretap0: entered promiscuous mode
[   89.699048][ T5997] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   89.848848][ T5997] usb 8-1: Using ep0 maxpacket: 32
[   89.855065][ T5997] usb 8-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[   89.858943][ T5997] usb 8-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[   89.862958][ T5997] usb 8-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   89.867175][ T5997] usb 8-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[   89.874252][ T5997] usb 8-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[   89.877221][ T5997] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   89.880453][ T5997] usb 8-1: Product: syz
[   89.881881][ T5997] usb 8-1: Manufacturer: syz
[   89.883525][ T5997] usb 8-1: SerialNumber: syz
[   89.895343][    C3] imon 8-1:155.0: imon usb_rx_callback_intf0: status(-71)
[   89.903716][ T5997] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:155.0/input/input5
[   89.949060][ T6015] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   90.079391][ T6015] usb 5-1: device descriptor read/64, error -71
[   90.108881][ T5997] imon 8-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[   90.112205][ T5997]  (id 0x00)
[   90.120225][ T5935] Bluetooth: hci3: command tx timeout
[   90.120258][ T5933] Bluetooth: hci0: command tx timeout
[   90.158965][ T5997] rc_core: IR keymap rc-imon-pad not found
[   90.160958][ T5997] Registered IR keymap rc-empty
[   90.163021][ T5997] imon 8-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[   90.166341][ T5997] imon 8-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[   90.199185][ T5933] Bluetooth: hci2: command tx timeout
[   90.199227][ T5935] Bluetooth: hci1: command tx timeout
[   90.310041][ T5997] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:155.0/rc/rc0
[   90.314547][ T5997] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:155.0/rc/rc0/input6
[   90.319723][ T6015] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   90.326258][ T5997] imon 8-1:155.0: iMON device (15c2:ffdc, intf0) on usb<8:2> initialized
[   90.458985][ T6015] usb 5-1: device descriptor read/64, error -71
[   90.499385][ T6146] imon:vfd_write: invalid payload size
[   90.503832][ T5997] usb 8-1: USB disconnect, device number 2
[   90.570227][ T6015] usb usb5-port1: attempt power cycle
[   90.908877][ T6015] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   90.929974][ T6015] usb 5-1: device descriptor read/8, error -71
[   91.046811][ T6166] FAULT_INJECTION: forcing a failure.
[   91.046811][ T6166] name failslab, interval 1, probability 0, space 0, times 0
[   91.053208][ T6166] CPU: 1 UID: 0 PID: 6166 Comm: syz.3.54 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   91.053238][ T6166] Tainted: [L]=SOFTLOCKUP
[   91.053243][ T6166] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   91.053253][ T6166] Call Trace:
[   91.053260][ T6166]  <TASK>
[   91.053267][ T6166]  dump_stack_lvl+0x100/0x190
[   91.053295][ T6166]  should_fail_ex.cold+0x5/0xa
[   91.053317][ T6166]  should_failslab+0xc2/0x120
[   91.053340][ T6166]  kmem_cache_alloc_noprof+0x7b/0x6e0
[   91.053359][ T6166]  ? dst_alloc+0x99/0x1a0
[   91.053382][ T6166]  dst_alloc+0x99/0x1a0
[   91.053400][ T6166]  rt_dst_alloc+0x35/0x3a0
[   91.053426][ T6166]  ip_route_input_slow+0x15b8/0x3fa0
[   91.053449][ T6166]  ? __pfx_ip_route_input_slow+0x10/0x10
[   91.053470][ T6166]  ? __lock_acquire+0x4a5/0x2630
[   91.053511][ T6166]  ip_route_input_noref+0x122/0x2e0
[   91.053532][ T6166]  ? __pfx_ip_route_input_noref+0x10/0x10
[   91.053555][ T6166]  ? __pfx_ip_rcv_finish+0x10/0x10
[   91.053577][ T6166]  ? __pfx_nf_hook.constprop.0+0x10/0x10
[   91.053602][ T6166]  ip_rcv_finish_core+0x459/0x2c30
[   91.053630][ T6166]  ip_rcv+0x1c0/0x3c0
[   91.053648][ T6166]  ? __pfx_ip_rcv+0x10/0x10
[   91.053666][ T6166]  __netif_receive_skb_one_core+0x197/0x1e0
[   91.053684][ T6166]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   91.053703][ T6166]  ? lock_acquire+0x1b1/0x370
[   91.053727][ T6166]  __netif_receive_skb+0x1f/0x120
[   91.053746][ T6166]  netif_receive_skb+0x13b/0x7f0
[   91.053762][ T6166]  ? tun_build_skb.constprop.0+0x9b5/0x18f0
[   91.053787][ T6166]  ? __pfx_netif_receive_skb+0x10/0x10
[   91.053813][ T6166]  tun_rx_batched.isra.0+0x3f6/0x750
[   91.053837][ T6166]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   91.053865][ T6166]  ? rcu_is_watching+0x12/0xc0
[   91.053886][ T6166]  ? tun_get_user+0x1cc8/0x3c20
[   91.053910][ T6166]  tun_get_user+0x1e31/0x3c20
[   91.053943][ T6166]  ? __pfx_tun_get_user+0x10/0x10
[   91.053967][ T6166]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   91.053997][ T6166]  ? find_held_lock+0x2b/0x80
[   91.054021][ T6166]  ? tun_get+0x191/0x370
[   91.054040][ T6166]  ? tun_get+0x191/0x370
[   91.054065][ T6166]  tun_chr_write_iter+0xdc/0x200
[   91.054089][ T6166]  vfs_write+0x6ac/0x1070
[   91.054112][ T6166]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   91.054141][ T6166]  ? __pfx_vfs_write+0x10/0x10
[   91.054160][ T6166]  ? find_held_lock+0x2b/0x80
[   91.054195][ T6166]  ksys_write+0x12a/0x250
[   91.054216][ T6166]  ? __pfx_ksys_write+0x10/0x10
[   91.054239][ T6166]  ? rcu_is_watching+0x12/0xc0
[   91.054262][ T6166]  do_syscall_64+0x10b/0xf80
[   91.054280][ T6166]  ? clear_bhb_loop+0x40/0x90
[   91.054300][ T6166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.054315][ T6166] RIP: 0033:0x7f6ec135d04e
[   91.054332][ T6166] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   91.054347][ T6166] RSP: 002b:00007f6ec233cfb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   91.054364][ T6166] RAX: ffffffffffffffda RBX: 00007f6ec233d6c0 RCX: 00007f6ec135d04e
[   91.054374][ T6166] RDX: 00000000000000bf RSI: 0000200000000380 RDI: 00000000000000c8
[   91.054383][ T6166] RBP: 00007f6ec233d090 R08: 0000000000000000 R09: 0000000000000000
[   91.054392][ T6166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.054401][ T6166] R13: 00007f6ec1616038 R14: 00007f6ec1615fa0 R15: 00007fffb28840c8
[   91.054423][ T6166]  </TASK>
[   91.229144][ T6015] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   91.249281][ T6015] usb 5-1: device descriptor read/8, error -71
[   91.251989][ T6168] syzkaller0: entered promiscuous mode
[   91.254322][ T6168] syzkaller0: entered allmulticast mode
[   91.359569][ T6015] usb usb5-port1: unable to enumerate USB device
[   91.562625][ T6181] netlink: 9 bytes leftover after parsing attributes in process `syz.3.59'.
[   91.566094][ T6181] 0�: renamed from hsr0 (while UP)
[   91.569955][ T6181] 0�: entered allmulticast mode
[   91.572110][ T6181] hsr_slave_0: entered allmulticast mode
[   91.574215][ T6181] hsr_slave_1: entered allmulticast mode
[   91.577174][ T6181] A link change request failed with some changes committed already. Interface 
70� may have been left with an inconsistent configuration, please check.
[   91.930760][ T5935] Bluetooth: hci2: Received unexpected HCI Event 0x00
[   91.956080][ T6195] netlink: 32 bytes leftover after parsing attributes in process `syz.3.65'.
[   92.037403][ T6198] syz.3.66 uses obsolete (PF_INET,SOCK_PACKET)
[   92.093608][ T6198] netlink: 8 bytes leftover after parsing attributes in process `syz.3.66'.
[   92.159744][ T6203] netlink: ct family unspecified
[   92.199386][ T5935] Bluetooth: hci0: command tx timeout
[   92.209896][ T5935] Bluetooth: hci3: command tx timeout
[   92.279254][ T5933] Bluetooth: hci2: command tx timeout
[   92.280506][ T5935] Bluetooth: hci1: command tx timeout
[   92.826131][ T6221] FAULT_INJECTION: forcing a failure.
[   92.826131][ T6221] name failslab, interval 1, probability 0, space 0, times 0
[   92.843391][ T6221] CPU: 0 UID: 0 PID: 6221 Comm: syz.0.74 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   92.843421][ T6221] Tainted: [L]=SOFTLOCKUP
[   92.843427][ T6221] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   92.843436][ T6221] Call Trace:
[   92.843489][ T6221]  <TASK>
[   92.843496][ T6221]  dump_stack_lvl+0x100/0x190
[   92.843823][ T6221]  should_fail_ex.cold+0x5/0xa
[   92.843840][ T6221]  ? lsm_blob_alloc+0x68/0x90
[   92.843899][ T6221]  should_failslab+0xc2/0x120
[   92.843956][ T6221]  __kmalloc_noprof+0xe0/0x850
[   92.844007][ T6221]  ? audit_alloc+0xa2/0x7b0
[   92.844023][ T6221]  lsm_blob_alloc+0x68/0x90
[   92.844034][ T6221]  security_task_alloc+0x2a/0x260
[   92.844052][ T6221]  copy_process+0x2865/0x7f50
[   92.844128][ T6221]  ? __pfx_copy_process+0x10/0x10
[   92.844147][ T6221]  ? lockdep_init_map_type+0x5c/0x250
[   92.844162][ T6221]  ? lockdep_init_map_type+0x5c/0x250
[   92.844179][ T6221]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   92.844198][ T6221]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   92.844227][ T6221]  vhost_task_create+0x1db/0x370
[   92.844250][ T6221]  ? __pfx_vhost_task_create+0x10/0x10
[   92.844264][ T6221]  ? register_lock_class+0x40/0x560
[   92.844280][ T6221]  ? __pfx_vhost_task_fn+0x10/0x10
[   92.844296][ T6221]  ? __pfx___mutex_lock+0x10/0x10
[   92.844460][ T6221]  ? kasan_quarantine_put+0x104/0x240
[   92.844477][ T6221]  kvm_mmu_post_init_vm+0x1b3/0x370
[   92.844494][ T6221]  kvm_arch_vcpu_ioctl_run+0x66/0x1830
[   92.844510][ T6221]  ? kvm_vcpu_ioctl+0x1546/0x1720
[   92.844549][ T6221]  kvm_vcpu_ioctl+0x730/0x1720
[   92.844561][ T6221]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   92.844573][ T6221]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   92.844585][ T6221]  ? do_vfs_ioctl+0x226/0x13e0
[   92.844601][ T6221]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   92.844615][ T6221]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   92.844638][ T6221]  ? __fget_files+0x215/0x3d0
[   92.844654][ T6221]  ? hook_file_ioctl_common+0x149/0x410
[   92.844669][ T6221]  ? selinux_file_ioctl+0x13b/0x290
[   92.844685][ T6221]  ? selinux_file_ioctl+0xb6/0x290
[   92.844720][ T6221]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   92.844732][ T6221]  __x64_sys_ioctl+0x18e/0x210
[   92.844747][ T6221]  do_syscall_64+0x10b/0xf80
[   92.844759][ T6221]  ? clear_bhb_loop+0x40/0x90
[   92.844773][ T6221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.844784][ T6221] RIP: 0033:0x7f432ad9c819
[   92.844795][ T6221] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   92.844805][ T6221] RSP: 002b:00007f432bcd4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   92.844833][ T6221] RAX: ffffffffffffffda RBX: 00007f432b016090 RCX: 00007f432ad9c819
[   92.844840][ T6221] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   92.844859][ T6221] RBP: 00007f432bcd4090 R08: 0000000000000000 R09: 0000000000000000
[   92.844866][ T6221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.844872][ T6221] R13: 00007f432b016128 R14: 00007f432b016090 R15: 00007ffdee62c138
[   92.844886][ T6221]  </TASK>
[   93.058667][ T6227] qnx4: unable to read the superblock
[   93.218659][ T6232] Zero length message leads to an empty skb
[   93.669546][   T40] kauditd_printk_skb: 9322 callbacks suppressed
[   93.669560][   T40] audit: type=1326 audit(1776297558.088:9531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6209 comm="syz.3.70" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ec139c819 code=0x50000
[   93.670382][ T6264] __nla_validate_parse: 3 callbacks suppressed
[   93.670392][ T6264] netlink: 8 bytes leftover after parsing attributes in process `syz.1.90'.
[   93.671780][   T40] audit: type=1326 audit(1776297558.088:9532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6209 comm="syz.3.70" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ec139c819 code=0x50000
[   93.684265][ T6264] ip6gretap0: entered promiscuous mode
[   93.695950][   T40] audit: type=1326 audit(1776297558.088:9533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6209 comm="syz.3.70" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ec139c819 code=0x50000
[   93.703937][   T40] audit: type=1326 audit(1776297558.088:9534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6209 comm="syz.3.70" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ec139c819 code=0x50000
[   93.711968][   T40] audit: type=1326 audit(1776297558.088:9535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6209 comm="syz.3.70" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ec139c819 code=0x50000
[   93.720656][   T40] audit: type=1326 audit(1776297558.088:9536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6209 comm="syz.3.70" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ec139c819 code=0x50000
[   93.728203][   T40] audit: type=1326 audit(1776297558.088:9537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6209 comm="syz.3.70" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ec139c819 code=0x50000
[   93.735410][   T40] audit: type=1326 audit(1776297558.088:9538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6209 comm="syz.3.70" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ec139c819 code=0x50000
[   93.743127][   T40] audit: type=1326 audit(1776297558.088:9539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6209 comm="syz.3.70" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ec139c819 code=0x50000
[   93.753085][   T40] audit: type=1326 audit(1776297558.088:9540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6209 comm="syz.3.70" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ec139c819 code=0x50000
[   93.782850][ T6266] netlink: 'syz.2.91': attribute type 2 has an invalid length.
[   93.786393][ T6266] netlink: 'syz.2.91': attribute type 1 has an invalid length.
[   93.868358][ T6274] random: crng reseeded on system resumption
[   93.933962][ T6281] FAULT_INJECTION: forcing a failure.
[   93.933962][ T6281] name failslab, interval 1, probability 0, space 0, times 0
[   93.939721][ T6281] CPU: 0 UID: 0 PID: 6281 Comm: syz.0.94 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   93.939741][ T6281] Tainted: [L]=SOFTLOCKUP
[   93.939745][ T6281] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   93.939752][ T6281] Call Trace:
[   93.939756][ T6281]  <TASK>
[   93.939760][ T6281]  dump_stack_lvl+0x100/0x190
[   93.940248][ T6281]  should_fail_ex.cold+0x5/0xa
[   93.940266][ T6281]  should_failslab+0xc2/0x120
[   93.940375][ T6281]  kmem_cache_alloc_noprof+0x7b/0x6e0
[   93.940480][ T6281]  ? fuse_request_alloc+0x22/0x200
[   93.940624][ T6281]  ? do_file_open+0x20e/0x430
[   93.940647][ T6281]  ? do_sys_openat2+0x10d/0x1e0
[   93.940663][ T6281]  ? __x64_sys_openat+0x12d/0x210
[   93.940681][ T6281]  fuse_request_alloc+0x22/0x200
[   93.940702][ T6281]  fuse_get_req+0x74a/0xfe0
[   93.940728][ T6281]  ? __pfx_fuse_get_req+0x10/0x10
[   93.940760][ T6281]  __fuse_simple_request+0xb5/0xe70
[   93.940780][ T6281]  ? __asan_memset+0x23/0x50
[   93.940801][ T6281]  fuse_lookup_name+0x2ad/0x760
[   93.940822][ T6281]  ? __pfx_fuse_lookup_name+0x10/0x10
[   93.940845][ T6281]  ? check_noncircular+0x97/0x160
[   93.940980][ T6281]  fuse_lookup+0x209/0x550
[   93.941000][ T6281]  ? __pfx_fuse_lookup+0x10/0x10
[   93.941013][ T6281]  ? d_alloc_parallel+0xb4e/0x14e0
[   93.941034][ T6281]  ? d_alloc_parallel+0xb4e/0x14e0
[   93.941082][ T6281]  ? find_held_lock+0x2b/0x80
[   93.941102][ T6281]  ? __d_lookup+0x25c/0x4a0
[   93.941125][ T6281]  fuse_atomic_open+0x2f8/0x450
[   93.941147][ T6281]  atomic_open+0x179/0x430
[   93.941162][ T6281]  ? __pfx_fuse_atomic_open+0x10/0x10
[   93.941181][ T6281]  lookup_open.isra.0+0x46b/0x11b0
[   93.941205][ T6281]  ? __pfx_lookup_open.isra.0+0x10/0x10
[   93.941238][ T6281]  ? mnt_get_write_access+0x1e9/0x2f0
[   93.941261][ T6281]  path_openat+0xa98/0x31a0
[   93.941290][ T6281]  ? __pfx_path_openat+0x10/0x10
[   93.941322][ T6281]  do_file_open+0x20e/0x430
[   93.941346][ T6281]  ? __pfx_do_file_open+0x10/0x10
[   93.941384][ T6281]  ? alloc_fd+0x476/0x790
[   93.941410][ T6281]  ? do_getname+0x191/0x390
[   93.941429][ T6281]  do_sys_openat2+0x10d/0x1e0
[   93.941443][ T6281]  ? __pfx_do_sys_openat2+0x10/0x10
[   93.941460][ T6281]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   93.941683][ T6281]  ? __fget_files+0x21f/0x3d0
[   93.941710][ T6281]  __x64_sys_openat+0x12d/0x210
[   93.941729][ T6281]  ? __pfx___x64_sys_openat+0x10/0x10
[   93.941745][ T6281]  ? ksys_write+0x1ac/0x250
[   93.941768][ T6281]  ? rcu_is_watching+0x12/0xc0
[   93.941794][ T6281]  do_syscall_64+0x10b/0xf80
[   93.941811][ T6281]  ? clear_bhb_loop+0x40/0x90
[   93.941837][ T6281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.941853][ T6281] RIP: 0033:0x7f432ad9c819
[   93.941866][ T6281] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   93.941881][ T6281] RSP: 002b:00007f432bcd4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   93.941899][ T6281] RAX: ffffffffffffffda RBX: 00007f432b016090 RCX: 00007f432ad9c819
[   93.941910][ T6281] RDX: 000000000300000d RSI: 0000200000000a80 RDI: ffffffffffffff9c
[   93.941920][ T6281] RBP: 00007f432bcd4090 R08: 0000000000000000 R09: 0000000000000000
[   93.941929][ T6281] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   93.941937][ T6281] R13: 00007f432b016128 R14: 00007f432b016090 R15: 00007ffdee62c138
[   93.941958][ T6281]  </TASK>
[   94.144664][ T5935] Bluetooth: Frame is too long (len 16, expected len 4)
[   94.145350][ T6286] netlink: 8 bytes leftover after parsing attributes in process `syz.2.96'.
[   94.171204][ T5935] Bluetooth: hci3: SCO packet for unknown connection handle 454
[   94.846658][ T6301] block device autoloading is deprecated and will be removed.
[   95.283790][ T6320] SELinux: syz.1.110 (6320) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   95.484884][ T6332] netlink: 8 bytes leftover after parsing attributes in process `syz.3.113'.
[   95.554101][ T6338] SELinux:  Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped).
[   95.626213][ T6347] netlink: 'syz.0.116': attribute type 10 has an invalid length.
[   95.657162][ T6347] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   95.723902][ T6354] mac80211_hwsim hwsim7 syzkaller0: entered promiscuous mode
[   95.730523][ T6354] mac80211_hwsim hwsim7 syzkaller0: entered allmulticast mode
[   95.784325][ T6359] netlink: 'syz.0.120': attribute type 6 has an invalid length.
[   95.796860][ T6359] netlink: 'syz.0.120': attribute type 4 has an invalid length.
[   95.799827][ T6359] netlink: 17 bytes leftover after parsing attributes in process `syz.0.120'.
[   95.805067][ T6359] netlink: 'syz.0.120': attribute type 1 has an invalid length.
[   95.856687][ T6361] FAULT_INJECTION: forcing a failure.
[   95.856687][ T6361] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   95.859425][ T6365] netlink: 28 bytes leftover after parsing attributes in process `syz.0.120'.
[   95.862250][ T6361] CPU: 3 UID: 0 PID: 6361 Comm: syz.3.121 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   95.862278][ T6361] Tainted: [L]=SOFTLOCKUP
[   95.862283][ T6361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   95.862293][ T6361] Call Trace:
[   95.862299][ T6361]  <TASK>
[   95.862305][ T6361]  dump_stack_lvl+0x100/0x190
[   95.862628][ T6361]  should_fail_ex.cold+0x5/0xa
[   95.862651][ T6361]  _copy_from_user+0x2e/0xd0
[   95.862728][ T6361]  io_submit_one+0xbd/0x1fb0
[   95.862801][ T6361]  ? __lock_acquire+0x4a5/0x2630
[   95.862876][ T6361]  ? irqentry_exit+0x246/0x790
[   95.863044][ T6361]  ? lockdep_hardirqs_on+0x78/0x100
[   95.863061][ T6361]  ? __pfx_io_submit_one+0x10/0x10
[   95.863086][ T6361]  ? __might_fault+0xc5/0x140
[   95.863192][ T6361]  ? __x64_sys_io_submit+0x1b1/0x3a0
[   95.863210][ T6361]  __x64_sys_io_submit+0x1b1/0x3a0
[   95.863231][ T6361]  ? __pfx___x64_sys_io_submit+0x10/0x10
[   95.863248][ T6361]  ? fput+0x79/0x100
[   95.863294][ T6361]  ? rcu_is_watching+0x12/0xc0
[   95.863320][ T6361]  do_syscall_64+0x10b/0xf80
[   95.863336][ T6361]  ? clear_bhb_loop+0x40/0x90
[   95.863356][ T6361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.863372][ T6361] RIP: 0033:0x7f6ec139c819
[   95.863387][ T6361] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   95.863401][ T6361] RSP: 002b:00007f6ec233d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[   95.863418][ T6361] RAX: ffffffffffffffda RBX: 00007f6ec1615fa0 RCX: 00007f6ec139c819
[   95.863428][ T6361] RDX: 0000200000000780 RSI: 0000000000000001 RDI: 00007f6ec22f3000
[   95.863437][ T6361] RBP: 00007f6ec233d090 R08: 0000000000000000 R09: 0000000000000000
[   95.863446][ T6361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.863454][ T6361] R13: 00007f6ec1616038 R14: 00007f6ec1615fa0 R15: 00007fffb28840c8
[   95.863476][ T6361]  </TASK>
[   95.984094][ T6373] netlink: 8 bytes leftover after parsing attributes in process `syz.0.124'.
[   96.454600][ T6384] capability: warning: `syz.2.128' uses deprecated v2 capabilities in a way that may be insecure
[   96.960963][ T6392] binder: 6391:6392 ioctl 4018620d 0 returned -22
[   96.998649][ T6395] hpfs: Bad magic ... probably not HPFS
[   97.355387][ T6409] FAULT_INJECTION: forcing a failure.
[   97.355387][ T6409] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.365503][ T6409] CPU: 3 UID: 0 PID: 6409 Comm: syz.0.137 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   97.365532][ T6409] Tainted: [L]=SOFTLOCKUP
[   97.365538][ T6409] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   97.365547][ T6409] Call Trace:
[   97.365554][ T6409]  <TASK>
[   97.365560][ T6409]  dump_stack_lvl+0x100/0x190
[   97.365980][ T6409]  should_fail_ex.cold+0x5/0xa
[   97.366004][ T6409]  _copy_from_iter+0x1f4/0x1690
[   97.366103][ T6409]  ? __asan_memset+0x23/0x50
[   97.366174][ T6409]  ? __pfx__copy_from_iter+0x10/0x10
[   97.366190][ T6409]  ? __pfx___alloc_skb+0x10/0x10
[   97.366341][ T6409]  netlink_sendmsg+0x808/0xda0
[   97.366370][ T6409]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.366392][ T6409]  ? __might_fault+0x20/0x140
[   97.366493][ T6409]  ____sys_sendmsg+0x9e1/0xb70
[   97.366515][ T6409]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.366540][ T6409]  ? __pfx_____sys_sendmsg+0x10/0x10
[   97.366572][ T6409]  ___sys_sendmsg+0x190/0x1e0
[   97.366598][ T6409]  ? __pfx____sys_sendmsg+0x10/0x10
[   97.366645][ T6409]  __sys_sendmsg+0x170/0x220
[   97.366665][ T6409]  ? __pfx___sys_sendmsg+0x10/0x10
[   97.366693][ T6409]  ? rcu_is_watching+0x12/0xc0
[   97.366718][ T6409]  do_syscall_64+0x10b/0xf80
[   97.366965][ T6409]  ? clear_bhb_loop+0x40/0x90
[   97.366985][ T6409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.367000][ T6409] RIP: 0033:0x7f432ad9c819
[   97.367015][ T6409] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   97.367029][ T6409] RSP: 002b:00007f432bcf5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   97.367046][ T6409] RAX: ffffffffffffffda RBX: 00007f432b015fa0 RCX: 00007f432ad9c819
[   97.367055][ T6409] RDX: 0000000020000100 RSI: 00002000000000c0 RDI: 0000000000000003
[   97.367065][ T6409] RBP: 00007f432bcf5090 R08: 0000000000000000 R09: 0000000000000000
[   97.367073][ T6409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.367082][ T6409] R13: 00007f432b016038 R14: 00007f432b015fa0 R15: 00007ffdee62c138
[   97.367102][ T6409]  </TASK>
[   97.373564][ T6411] netlink: 'syz.2.136': attribute type 1 has an invalid length.
[   97.420675][ T6413] netlink: 8 bytes leftover after parsing attributes in process `syz.0.138'.
[   97.479474][ T6411] netlink: 28 bytes leftover after parsing attributes in process `syz.2.136'.
[   97.484707][ T6411] FAULT_INJECTION: forcing a failure.
[   97.484707][ T6411] name failslab, interval 1, probability 0, space 0, times 0
[   97.491034][ T6411] CPU: 2 UID: 0 PID: 6411 Comm: syz.2.136 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   97.491062][ T6411] Tainted: [L]=SOFTLOCKUP
[   97.491068][ T6411] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   97.491078][ T6411] Call Trace:
[   97.491084][ T6411]  <TASK>
[   97.491090][ T6411]  dump_stack_lvl+0x100/0x190
[   97.491117][ T6411]  should_fail_ex.cold+0x5/0xa
[   97.491141][ T6411]  should_failslab+0xc2/0x120
[   97.491165][ T6411]  __kmalloc_node_noprof+0xe6/0x850
[   97.491184][ T6411]  ? qdisc_alloc+0xbb/0xb30
[   97.491206][ T6411]  ? lockdep_init_map_type+0x5c/0x250
[   97.491311][ T6411]  qdisc_alloc+0xbb/0xb30
[   97.491334][ T6411]  qdisc_create_dflt+0x97/0x4b0
[   97.491358][ T6411]  dev_activate+0x64f/0xce0
[   97.491382][ T6411]  ? __pfx_dev_activate+0x10/0x10
[   97.491405][ T6411]  ? __local_bh_enable_ip+0x9e/0x120
[   97.491432][ T6411]  __dev_open+0x4f1/0x960
[   97.491450][ T6411]  ? __pfx___dev_open+0x10/0x10
[   97.491470][ T6411]  ? __local_bh_enable_ip+0x9e/0x120
[   97.491495][ T6411]  __dev_change_flags+0x558/0x6f0
[   97.491516][ T6411]  ? __pfx___dev_change_flags+0x10/0x10
[   97.491534][ T6411]  ? validate_linkmsg+0x57c/0xba0
[   97.491552][ T6411]  ? prb_read_valid+0x78/0xa0
[   97.491572][ T6411]  ? __pfx_validate_linkmsg+0x10/0x10
[   97.491593][ T6411]  netif_change_flags+0x8d/0x160
[   97.491615][ T6411]  do_setlink.isra.0+0x1abb/0x3e50
[   97.491641][ T6411]  ? __pfx_do_setlink.isra.0+0x10/0x10
[   97.491664][ T6411]  ? __lock_acquire+0x4a5/0x2630
[   97.491692][ T6411]  ? lock_acquire+0x1b1/0x370
[   97.491713][ T6411]  ? rcu_is_watching+0x12/0xc0
[   97.491735][ T6411]  ? trace_contention_end+0x122/0x170
[   97.491757][ T6411]  ? __mutex_lock+0x26d/0x1b10
[   97.491777][ T6411]  ? rtnl_newlink+0x8bb/0x2380
[   97.491801][ T6411]  ? __pfx___mutex_lock+0x10/0x10
[   97.491819][ T6411]  ? rcu_is_watching+0x12/0xc0
[   97.491840][ T6411]  ? cap_capable+0x10b/0x440
[   97.491950][ T6411]  rtnl_newlink+0x11c2/0x2380
[   97.491978][ T6411]  ? __pfx_rtnl_newlink+0x10/0x10
[   97.491996][ T6411]  ? find_held_lock+0x2b/0x80
[   97.492019][ T6411]  ? avc_has_perm_noaudit+0x11e/0x3b0
[   97.492037][ T6411]  ? avc_has_perm_noaudit+0x11e/0x3b0
[   97.492058][ T6411]  ? avc_has_perm_noaudit+0x145/0x3b0
[   97.492080][ T6411]  ? __lock_acquire+0x4a5/0x2630
[   97.492110][ T6411]  ? find_held_lock+0x2b/0x80
[   97.492132][ T6411]  ? rtnetlink_rcv_msg+0x93a/0xe90
[   97.492152][ T6411]  ? rtnetlink_rcv_msg+0x93a/0xe90
[   97.492174][ T6411]  ? __pfx_rtnl_newlink+0x10/0x10
[   97.492194][ T6411]  rtnetlink_rcv_msg+0x95e/0xe90
[   97.492216][ T6411]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   97.492243][ T6411]  ? ref_tracker_free+0x37e/0x6c0
[   97.492267][ T6411]  netlink_rcv_skb+0x159/0x420
[   97.492291][ T6411]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   97.492314][ T6411]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   97.492346][ T6411]  ? netlink_deliver_tap+0x1ae/0xcc0
[   97.492374][ T6411]  netlink_unicast+0x585/0x850
[   97.492402][ T6411]  ? __pfx_netlink_unicast+0x10/0x10
[   97.492432][ T6411]  netlink_sendmsg+0x8b0/0xda0
[   97.492460][ T6411]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.492483][ T6411]  ? __might_fault+0x20/0x140
[   97.492536][ T6411]  ____sys_sendmsg+0x9e1/0xb70
[   97.492561][ T6411]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.492587][ T6411]  ? __pfx_____sys_sendmsg+0x10/0x10
[   97.492621][ T6411]  ___sys_sendmsg+0x190/0x1e0
[   97.492647][ T6411]  ? __pfx____sys_sendmsg+0x10/0x10
[   97.492700][ T6411]  __sys_sendmsg+0x170/0x220
[   97.492721][ T6411]  ? __pfx___sys_sendmsg+0x10/0x10
[   97.492750][ T6411]  ? rcu_is_watching+0x12/0xc0
[   97.492775][ T6411]  do_syscall_64+0x10b/0xf80
[   97.492792][ T6411]  ? clear_bhb_loop+0x40/0x90
[   97.492814][ T6411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.492831][ T6411] RIP: 0033:0x7f8afbf9c819
[   97.492863][ T6411] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   97.492878][ T6411] RSP: 002b:00007f8afcdf8028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   97.492896][ T6411] RAX: ffffffffffffffda RBX: 00007f8afc215fa0 RCX: 00007f8afbf9c819
[   97.492912][ T6411] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
[   97.492921][ T6411] RBP: 00007f8afcdf8090 R08: 0000000000000000 R09: 0000000000000000
[   97.492930][ T6411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.492939][ T6411] R13: 00007f8afc216038 R14: 00007f8afc215fa0 R15: 00007fff9172bec8
[   97.492962][ T6411]  </TASK>
[   97.493827][ T6411] 8021q: adding VLAN 0 to HW filter on device bond1
[   97.777480][ T6424] program syz.0.142 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   97.891178][ T6429] netlink: 76 bytes leftover after parsing attributes in process `syz.0.144'.
[   97.895455][ T6429] Illegal XDP return value 3287440518 on prog  (id 15) dev syz_tun, expect packet loss!
[   98.181660][ T6440] netlink: 8 bytes leftover after parsing attributes in process `syz.0.149'.
[   98.188326][ T6440] syz_tun: entered promiscuous mode
[   98.336097][ T5977] IPVS: starting estimator thread 0...
[   98.430210][ T6448] IPVS: using max 42 ests per chain, 100800 per kthread
[   98.741929][ T6480] FAULT_INJECTION: forcing a failure.
[   98.741929][ T6480] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.746365][ T6480] CPU: 2 UID: 0 PID: 6480 Comm: syz.0.161 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   98.746385][ T6480] Tainted: [L]=SOFTLOCKUP
[   98.746388][ T6480] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   98.746395][ T6480] Call Trace:
[   98.746400][ T6480]  <TASK>
[   98.746405][ T6480]  dump_stack_lvl+0x100/0x190
[   98.746423][ T6480]  should_fail_ex.cold+0x5/0xa
[   98.746438][ T6480]  _copy_from_user+0x2e/0xd0
[   98.746452][ T6480]  ucma_write+0x128/0x330
[   98.746533][ T6480]  ? __pfx_ucma_write+0x10/0x10
[   98.746544][ T6480]  ? bpf_lsm_file_permission+0x9/0x10
[   98.746560][ T6480]  ? security_file_permission+0x76/0x210
[   98.746579][ T6480]  ? rw_verify_area+0xce/0x6d0
[   98.746593][ T6480]  vfs_write+0x2aa/0x1070
[   98.746608][ T6480]  ? __pfx_ucma_write+0x10/0x10
[   98.746621][ T6480]  ? __pfx_vfs_write+0x10/0x10
[   98.746635][ T6480]  ? find_held_lock+0x2b/0x80
[   98.746651][ T6480]  ? __fget_files+0x215/0x3d0
[   98.746668][ T6480]  ? __fget_files+0x215/0x3d0
[   98.746686][ T6480]  ? __fget_files+0x21f/0x3d0
[   98.746707][ T6480]  ksys_write+0x1f8/0x250
[   98.746721][ T6480]  ? __pfx_ksys_write+0x10/0x10
[   98.746737][ T6480]  ? rcu_is_watching+0x12/0xc0
[   98.746754][ T6480]  do_syscall_64+0x10b/0xf80
[   98.746767][ T6480]  ? clear_bhb_loop+0x40/0x90
[   98.746780][ T6480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.746792][ T6480] RIP: 0033:0x7f432ad9c819
[   98.746802][ T6480] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   98.746812][ T6480] RSP: 002b:00007f432bcf5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   98.746823][ T6480] RAX: ffffffffffffffda RBX: 00007f432b015fa0 RCX: 00007f432ad9c819
[   98.746830][ T6480] RDX: 0000000000000018 RSI: 00002000000001c0 RDI: 0000000000000003
[   98.746836][ T6480] RBP: 00007f432bcf5090 R08: 0000000000000000 R09: 0000000000000000
[   98.746842][ T6480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.746848][ T6480] R13: 00007f432b016038 R14: 00007f432b015fa0 R15: 00007ffdee62c138
[   98.746861][ T6480]  </TASK>
[   98.822855][   T40] kauditd_printk_skb: 15500 callbacks suppressed
[   98.822871][   T40] audit: type=1400 audit(1776297563.238:25041): avc:  denied  { execute } for  pid=6483 comm="syz.0.163" path="/50/file1" dev="tmpfs" ino=280 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   98.857166][   T40] audit: type=1400 audit(1776297563.268:25042): avc:  denied  { create } for  pid=6485 comm="syz.2.164" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   98.862995][ T6490] __nla_validate_parse: 1 callbacks suppressed
[   98.863008][ T6490] netlink: 8 bytes leftover after parsing attributes in process `syz.3.166'.
[   98.865887][   T40] audit: type=1400 audit(1776297563.278:25043): avc:  denied  { mounton } for  pid=6485 comm="syz.2.164" path="/37/file0" dev="tmpfs" ino=212 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   98.910877][ T6488] netlink: 'syz.0.165': attribute type 4 has an invalid length.
[   98.952247][ T6498] netlink: 168 bytes leftover after parsing attributes in process `syz.0.168'.
[   98.955645][ T6498] netlink: 168 bytes leftover after parsing attributes in process `syz.0.168'.
[   98.967004][   T40] audit: type=1400 audit(1776297819.373:25044): avc:  denied  { name_bind } for  pid=6485 comm="syz.2.164" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[   98.986382][   T40] audit: type=1400 audit(1776297819.393:25045): avc:  denied  { unlink } for  pid=5941 comm="syz-executor" name="file0" dev="tmpfs" ino=212 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   99.067845][ T6503] netlink: 'syz.2.169': attribute type 21 has an invalid length.
[   99.104202][   T40] audit: type=1400 audit(1776297819.513:25046): avc:  denied  { mount } for  pid=6507 comm="syz.0.171" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   99.105122][ T6510] devtmpfs: Unknown parameter 'usrqumit'
[   99.113772][   T40] audit: type=1400 audit(1776297819.513:25047): avc:  denied  { remount } for  pid=6507 comm="syz.0.171" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   99.119751][ T6508] UDF-fs: error (device sr0): udf_read_tagged: read failed, block=256, location=256
[   99.126636][ T6508] UDF-fs: error (device sr0): udf_read_tagged: read failed, block=512, location=512
[   99.130284][ T6508] UDF-fs: warning (device sr0): udf_load_vrs: No anchor found
[   99.133088][ T6508] UDF-fs: Scanning with blocksize 2048 failed
[   99.153274][   T40] audit: type=1400 audit(1776297819.563:25048): avc:  denied  { map_create } for  pid=6511 comm="syz.3.172" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   99.171237][ T6508] UDF-fs: error (device sr0): udf_read_tagged: read failed, block=256, location=256
[   99.174807][ T6508] UDF-fs: error (device sr0): udf_read_tagged: read failed, block=512, location=512
[   99.232345][ T6508] UDF-fs: warning (device sr0): udf_load_vrs: No anchor found
[   99.234927][ T6508] UDF-fs: Scanning with blocksize 4096 failed
[   99.236878][ T6508] UDF-fs: warning (device sr0): udf_fill_super: No partition found (1)
[   99.254596][   T40] audit: type=1400 audit(1776297819.663:25049): avc:  denied  { watch watch_reads } for  pid=6511 comm="syz.3.172" path=2F6D656D66643A2D42D54E34A64579DBD1A7B153F13A29202864656C6574656429 dev="tmpfs" ino=1028 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   99.266413][ T6512] process 'syz.3.172' launched '/dev/fd/10' with NULL argv: empty string added
[   99.272896][   T40] audit: type=1400 audit(1776297819.683:25050): avc:  denied  { execute_no_trans } for  pid=6511 comm="syz.3.172" path=2F6D656D66643A2D42D54E34A64579DBD1A7B153F13A29202864656C6574656429 dev="tmpfs" ino=1028 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   99.440473][ T6524] binder: 6523:6524 ioctl 4018620d 0 returned -22
[   99.901920][ T6542] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6542 comm=syz.0.181
[   99.917477][ T6542] ip6gre1: entered promiscuous mode
[   99.920446][ T6542] ip6gre1: entered allmulticast mode
[  100.103347][ T6547] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  100.103347][ T6547] The task syz.0.181 (6547) triggered the difference, watch for misbehavior.
[  100.220234][ T6552] FAULT_INJECTION: forcing a failure.
[  100.220234][ T6552] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.226616][ T6552] CPU: 3 UID: 0 PID: 6552 Comm: syz.3.184 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  100.226635][ T6552] Tainted: [L]=SOFTLOCKUP
[  100.226638][ T6552] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  100.226689][ T6552] Call Trace:
[  100.226752][ T6552]  <TASK>
[  100.226756][ T6552]  dump_stack_lvl+0x100/0x190
[  100.226792][ T6552]  should_fail_ex.cold+0x5/0xa
[  100.226808][ T6552]  _copy_from_iter+0x1f4/0x1690
[  100.226886][ T6552]  ? kmalloc_reserve+0xf9/0x350
[  100.226945][ T6552]  ? __pfx__copy_from_iter+0x10/0x10
[  100.226958][ T6552]  ? __alloc_skb+0x4e9/0x710
[  100.226969][ T6552]  ? __alloc_skb+0x5b7/0x710
[  100.226982][ T6552]  ? __pfx___alloc_skb+0x10/0x10
[  100.226995][ T6552]  ? __might_fault+0x20/0x140
[  100.227011][ T6552]  pfkey_sendmsg+0x1ce/0x840
[  100.227075][ T6552]  ____sys_sendmsg+0x9e1/0xb70
[  100.227092][ T6552]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  100.227105][ T6552]  ? __pfx_____sys_sendmsg+0x10/0x10
[  100.227128][ T6552]  ___sys_sendmsg+0x190/0x1e0
[  100.227147][ T6552]  ? __pfx____sys_sendmsg+0x10/0x10
[  100.227184][ T6552]  __sys_sendmsg+0x170/0x220
[  100.227198][ T6552]  ? __pfx___sys_sendmsg+0x10/0x10
[  100.227217][ T6552]  ? rcu_is_watching+0x12/0xc0
[  100.227235][ T6552]  do_syscall_64+0x10b/0xf80
[  100.227247][ T6552]  ? clear_bhb_loop+0x40/0x90
[  100.227260][ T6552]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.227272][ T6552] RIP: 0033:0x7f6ec139c819
[  100.227283][ T6552] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  100.227294][ T6552] RSP: 002b:00007f6ec233d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  100.227306][ T6552] RAX: ffffffffffffffda RBX: 00007f6ec1615fa0 RCX: 00007f6ec139c819
[  100.227313][ T6552] RDX: 0000000024000000 RSI: 00002000000001c0 RDI: 0000000000000003
[  100.227320][ T6552] RBP: 00007f6ec233d090 R08: 0000000000000000 R09: 0000000000000000
[  100.227326][ T6552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.227333][ T6552] R13: 00007f6ec1616038 R14: 00007f6ec1615fa0 R15: 00007fffb28840c8
[  100.227347][ T6552]  </TASK>
[  100.347337][ T6554] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  100.349681][ T6554] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  100.355971][ T6554] vhci_hcd vhci_hcd.0: Device attached
[  100.359689][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  100.397419][ T6557] vhci_hcd: connection closed
[  100.403863][ T1257] vhci_hcd vhci_hcd.2: stop threads
[  100.407150][ T6561] netlink: 'syz.1.187': attribute type 1 has an invalid length.
[  100.411239][ T1257] vhci_hcd vhci_hcd.2: release socket
[  100.414490][ T1257] vhci_hcd vhci_hcd.2: disconnect device
[  100.621298][ T6572] binder: 6571:6572 ioctl 4018620d 0 returned -22
[  100.639609][ T6574] program syz.3.192 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  100.700990][ T6574] kvm: emulating exchange as write
[  100.979735][ T6589] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6589 comm=syz.3.195
[  101.024005][ T6592] cgroup2: Unknown parameter 'euid'
[  101.053014][ T6594] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6594 comm=syz.1.198
[  101.195547][ T6605] binder: 6604:6605 ioctl 4018620d 0 returned -22
[  101.231216][ T6607] netlink: 8 bytes leftover after parsing attributes in process `syz.1.202'.
[  101.314979][ T6609] IPVS: set_ctl: invalid protocol: 59 255.255.255.255:20001
[  101.808470][ T6633] binder: 6632:6633 ioctl 4018620d 0 returned -22
[  102.083240][ T6639] netlink: 208 bytes leftover after parsing attributes in process `syz.2.213'.
[  102.124174][ T6644] netlink: 8 bytes leftover after parsing attributes in process `syz.2.216'.
[  102.135685][ T6644] : entered promiscuous mode
[  102.256582][ T6650] fuse: Bad value for 'fd'
[  102.259747][ T6650] netlink: 20 bytes leftover after parsing attributes in process `syz.3.219'.
[  102.259978][ T6646] kernel profiling enabled (shift: 63)
[  102.266118][ T6646] profiling shift: 63 too large
[  102.474501][ T6676] netlink: 4 bytes leftover after parsing attributes in process `syz.1.228'.
[  102.480065][ T6676] hsr_slave_0: left promiscuous mode
[  102.482784][ T6676] hsr_slave_1: left promiscuous mode
[  102.526853][ T6679] netlink: 'syz.1.228': attribute type 1 has an invalid length.
[  102.574948][ T6677] netlink: 4 bytes leftover after parsing attributes in process `syz.3.227'.
[  102.841324][ T6685] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  102.900194][ T6542] syz.0.181 (6542) used greatest stack depth: 19080 bytes left
[  102.968204][ T6688] FAULT_INJECTION: forcing a failure.
[  102.968204][ T6688] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  102.973525][ T6688] CPU: 2 UID: 0 PID: 6688 Comm: syz.1.232 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  102.973546][ T6688] Tainted: [L]=SOFTLOCKUP
[  102.973550][ T6688] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  102.973557][ T6688] Call Trace:
[  102.973562][ T6688]  <TASK>
[  102.973567][ T6688]  dump_stack_lvl+0x100/0x190
[  102.973955][ T6688]  should_fail_ex.cold+0x5/0xa
[  102.973974][ T6688]  _copy_from_user+0x2e/0xd0
[  102.974030][ T6688]  memdup_user+0x6b/0xe0
[  102.974109][ T6688]  msr_io+0xea/0x480
[  102.974193][ T6688]  ? __pfx_do_set_msr+0x10/0x10
[  102.974213][ T6688]  ? __pfx_msr_io+0x10/0x10
[  102.974228][ T6688]  ? __pfx_widen_string+0x10/0x10
[  102.974538][ T6688]  ? __kernel_text_address+0xd/0x30
[  102.974555][ T6688]  kvm_arch_vcpu_ioctl+0xd1a/0x5720
[  102.974571][ T6688]  ? kvm_arch_vcpu_ioctl+0xcfc/0x5720
[  102.974590][ T6688]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  102.974606][ T6688]  ? __pfx_stack_trace_save+0x10/0x10
[  102.974624][ T6688]  ? stack_depot_save_flags+0x27/0x9d0
[  102.974709][ T6688]  ? __lock_acquire+0x4a5/0x2630
[  102.974722][ T6688]  ? tomoyo_path_number_perm+0x46d/0x580
[  102.974859][ T6688]  ? __lock_acquire+0x4a5/0x2630
[  102.974894][ T6688]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.974911][ T6688]  ? lock_acquire+0x1b1/0x370
[  102.974926][ T6688]  ? rcu_is_watching+0x12/0xc0
[  102.974941][ T6688]  ? trace_contention_end+0x122/0x170
[  102.974956][ T6688]  ? __mutex_lock+0x26d/0x1b10
[  102.974968][ T6688]  ? kvm_vcpu_ioctl+0x322/0x1720
[  102.974983][ T6688]  ? __pfx___mutex_lock+0x10/0x10
[  102.974995][ T6688]  ? kasan_quarantine_put+0x104/0x240
[  102.975075][ T6688]  ? tomoyo_path_number_perm+0x28f/0x580
[  102.975093][ T6688]  ? tomoyo_path_number_perm+0x188/0x580
[  102.975109][ T6688]  ? kvm_vcpu_ioctl+0x8a0/0x1720
[  102.975119][ T6688]  kvm_vcpu_ioctl+0x8a0/0x1720
[  102.975131][ T6688]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  102.975143][ T6688]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  102.975156][ T6688]  ? do_vfs_ioctl+0x226/0x13e0
[  102.975171][ T6688]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  102.975185][ T6688]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  102.975208][ T6688]  ? __fget_files+0x215/0x3d0
[  102.975224][ T6688]  ? hook_file_ioctl_common+0x149/0x410
[  102.975240][ T6688]  ? selinux_file_ioctl+0x13b/0x290
[  102.975256][ T6688]  ? selinux_file_ioctl+0xb6/0x290
[  102.975273][ T6688]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  102.975285][ T6688]  __x64_sys_ioctl+0x18e/0x210
[  102.975300][ T6688]  do_syscall_64+0x10b/0xf80
[  102.975313][ T6688]  ? clear_bhb_loop+0x40/0x90
[  102.975327][ T6688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.975338][ T6688] RIP: 0033:0x7fef42f9c819
[  102.975348][ T6688] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  102.975358][ T6688] RSP: 002b:00007fef43f28028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  102.975370][ T6688] RAX: ffffffffffffffda RBX: 00007fef43215fa0 RCX: 00007fef42f9c819
[  102.975377][ T6688] RDX: 00002000000005c0 RSI: 000000004008ae89 RDI: 0000000000000005
[  102.975383][ T6688] RBP: 00007fef43f28090 R08: 0000000000000000 R09: 0000000000000000
[  102.975389][ T6688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.975395][ T6688] R13: 00007fef43216038 R14: 00007fef43215fa0 R15: 00007ffed167a038
[  102.975409][ T6688]  </TASK>
[  103.867287][ T6690] syz.1.233 (6690): drop_caches: 2
[  104.041428][ T6716] netlink: 'syz.1.239': attribute type 10 has an invalid length.
[  104.054603][ T6716] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  104.061144][ T6716] team0: Port device netdevsim0 added
[  104.065277][ T6716] netlink: 'syz.1.239': attribute type 10 has an invalid length.
[  104.146406][   T40] kauditd_printk_skb: 48 callbacks suppressed
[  104.146420][   T40] audit: type=1400 audit(1776297824.553:25099): avc:  denied  { ioctl } for  pid=6725 comm="syz.0.242" path="socket:[16068]" dev="sockfs" ino=16068 ioctlcmd=0x89e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  104.427226][ T6739] syzkaller0: entered promiscuous mode
[  104.430297][ T6739] syzkaller0: entered allmulticast mode
[  104.633229][   T40] audit: type=1400 audit(1776297825.043:25100): avc:  denied  { getopt } for  pid=6746 comm="syz.1.249" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  104.684275][ T6751] loop4: detected capacity change from 0 to 7
[  104.695486][ T6751] Buffer I/O error on dev loop4, logical block 0, async page read
[  104.702351][ T6751] Buffer I/O error on dev loop4, logical block 0, async page read
[  104.705371][ T6751] Buffer I/O error on dev loop4, logical block 0, async page read
[  104.708243][ T6751] Buffer I/O error on dev loop4, logical block 0, async page read
[  104.713146][ T6751] Buffer I/O error on dev loop4, logical block 0, async page read
[  104.716345][ T6751] Buffer I/O error on dev loop4, logical block 0, async page read
[  104.719612][ T6751] Buffer I/O error on dev loop4, logical block 0, async page read
[  104.722381][ T6751] ldm_validate_partition_table(): Disk read failed.
[  104.729575][ T6751] Buffer I/O error on dev loop4, logical block 0, async page read
[  104.738206][ T6751] Buffer I/O error on dev loop4, logical block 0, async page read
[  104.741398][ T6751] Buffer I/O error on dev loop4, logical block 0, async page read
[  104.744178][ T6751] Dev loop4: unable to read RDB block 0
[  104.744756][ T6752] netlink: 12 bytes leftover after parsing attributes in process `syz.3.250'.
[  104.746393][ T6751]  loop4: unable to read partition table
[  104.752112][ T6751] loop4: partition table beyond EOD, truncated
[  104.763647][ T6752] syz.3.250 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  104.766674][ T6751] loop_reread_partitions: partition scan of loop4 (���������S�j��	���%��`��ր����5) failed (rc=-5)
[  104.870823][   T40] audit: type=1400 audit(1776297825.283:25101): avc:  denied  { create } for  pid=6759 comm="syz.1.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  104.888926][   T40] audit: type=1400 audit(1776297825.283:25102): avc:  denied  { write } for  pid=6759 comm="syz.1.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  104.907877][   T40] audit: type=1400 audit(1776297825.293:25103): avc:  denied  { write } for  pid=6759 comm="syz.1.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  104.915292][   T40] audit: type=1400 audit(1776297825.303:25104): avc:  denied  { view } for  pid=6759 comm="syz.1.253" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  104.942750][   T40] audit: type=1400 audit(1776297825.353:25105): avc:  denied  { setopt } for  pid=6762 comm="syz.1.254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  104.958012][   T40] audit: type=1400 audit(1776297825.363:25106): avc:  denied  { connect } for  pid=6762 comm="syz.1.254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  104.968455][   T40] audit: type=1400 audit(1776297825.363:25107): avc:  denied  { bind } for  pid=6762 comm="syz.1.254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  104.979027][   T40] audit: type=1400 audit(1776297825.383:25108): avc:  denied  { write } for  pid=6762 comm="syz.1.254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  105.324049][ T6782] FAULT_INJECTION: forcing a failure.
[  105.324049][ T6782] name failslab, interval 1, probability 0, space 0, times 0
[  105.349166][ T6782] CPU: 2 UID: 0 PID: 6782 Comm: syz.3.262 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  105.349195][ T6782] Tainted: [L]=SOFTLOCKUP
[  105.349201][ T6782] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  105.349252][ T6782] Call Trace:
[  105.349310][ T6782]  <TASK>
[  105.349316][ T6782]  dump_stack_lvl+0x100/0x190
[  105.349359][ T6782]  should_fail_ex.cold+0x5/0xa
[  105.349381][ T6782]  should_failslab+0xc2/0x120
[  105.349404][ T6782]  __kmalloc_cache_noprof+0x7a/0x6f0
[  105.349421][ T6782]  ? alloc_pipe_info+0x10e/0x590
[  105.349450][ T6782]  alloc_pipe_info+0x10e/0x590
[  105.349476][ T6782]  splice_direct_to_actor+0x78f/0xa30
[  105.349494][ T6782]  ? __lock_acquire+0x4a5/0x2630
[  105.349511][ T6782]  ? __pfx_direct_splice_actor+0x10/0x10
[  105.349540][ T6782]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  105.349562][ T6782]  do_splice_direct+0x174/0x240
[  105.349578][ T6782]  ? __pfx_do_splice_direct+0x10/0x10
[  105.349591][ T6782]  ? avc_policy_seqno+0x9/0x20
[  105.349671][ T6782]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  105.349699][ T6782]  ? rw_verify_area+0xce/0x6d0
[  105.349721][ T6782]  do_sendfile+0xadc/0xe20
[  105.349747][ T6782]  ? __pfx_do_sendfile+0x10/0x10
[  105.349767][ T6782]  ? __fget_files+0x21f/0x3d0
[  105.349797][ T6782]  __x64_sys_sendfile64+0x1d8/0x220
[  105.349812][ T6782]  ? ksys_write+0x1ac/0x250
[  105.349833][ T6782]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  105.349860][ T6782]  ? rcu_is_watching+0x12/0xc0
[  105.349886][ T6782]  do_syscall_64+0x10b/0xf80
[  105.349929][ T6782]  ? clear_bhb_loop+0x40/0x90
[  105.349949][ T6782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.349965][ T6782] RIP: 0033:0x7f6ec139c819
[  105.349981][ T6782] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  105.349996][ T6782] RSP: 002b:00007f6ec233d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  105.350013][ T6782] RAX: ffffffffffffffda RBX: 00007f6ec1615fa0 RCX: 00007f6ec139c819
[  105.350023][ T6782] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  105.350033][ T6782] RBP: 00007f6ec233d090 R08: 0000000000000000 R09: 0000000000000000
[  105.350042][ T6782] R10: 000000000000106f R11: 0000000000000246 R12: 0000000000000001
[  105.350052][ T6782] R13: 00007f6ec1616038 R14: 00007f6ec1615fa0 R15: 00007fffb28840c8
[  105.350074][ T6782]  </TASK>
[  105.451703][ T6785] netlink: 80 bytes leftover after parsing attributes in process `syz.2.263'.
[  105.562447][ T6790] openvswitch: netlink: Unexpected mask (mask=840, allowed=10048)
[  105.610388][ T6799] netlink: 4 bytes leftover after parsing attributes in process `syz.0.268'.
[  105.615800][ T6799] openvswitch: netlink: Missing key (keys=c0, expected=200000)
[  105.730338][ T6809] FAULT_INJECTION: forcing a failure.
[  105.730338][ T6809] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.735298][ T6809] CPU: 3 UID: 0 PID: 6809 Comm: syz.1.272 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  105.735320][ T6809] Tainted: [L]=SOFTLOCKUP
[  105.735324][ T6809] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  105.735332][ T6809] Call Trace:
[  105.735338][ T6809]  <TASK>
[  105.735344][ T6809]  dump_stack_lvl+0x100/0x190
[  105.735365][ T6809]  should_fail_ex.cold+0x5/0xa
[  105.735384][ T6809]  _copy_from_user+0x2e/0xd0
[  105.735461][ T6809]  copy_msghdr_from_user+0x9f/0x4f0
[  105.735646][ T6809]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  105.735688][ T6809]  ___sys_sendmsg+0x106/0x1e0
[  105.735720][ T6809]  ? __pfx____sys_sendmsg+0x10/0x10
[  105.735782][ T6809]  __sys_sendmsg+0x170/0x220
[  105.735809][ T6809]  ? __pfx___sys_sendmsg+0x10/0x10
[  105.735845][ T6809]  ? rcu_is_watching+0x12/0xc0
[  105.735873][ T6809]  do_syscall_64+0x10b/0xf80
[  105.735895][ T6809]  ? clear_bhb_loop+0x40/0x90
[  105.735919][ T6809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.735938][ T6809] RIP: 0033:0x7fef42f9c819
[  105.735957][ T6809] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  105.735974][ T6809] RSP: 002b:00007fef43f28028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  105.735994][ T6809] RAX: ffffffffffffffda RBX: 00007fef43215fa0 RCX: 00007fef42f9c819
[  105.736007][ T6809] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000007
[  105.736019][ T6809] RBP: 00007fef43f28090 R08: 0000000000000000 R09: 0000000000000000
[  105.736033][ T6809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.736043][ T6809] R13: 00007fef43216038 R14: 00007fef43215fa0 R15: 00007ffed167a038
[  105.736065][ T6809]  </TASK>
[  105.896200][ T6815] fuse: Unknown parameter 'fB'
[  105.909799][ T6815] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  105.915004][ T6815] overlayfs: failed to set xattr on upper
[  105.917889][ T6815] overlayfs: ...falling back to redirect_dir=nofollow.
[  105.921337][ T6815] overlayfs: ...falling back to index=off.
[  105.925525][ T6815] overlayfs: ...falling back to uuid=null.
[  105.936115][ T6815] overlayfs: cleanup of 'bus/work' failed (-13)
[  105.940175][ T6815] overlayfs: failed to create directory ./bus/work (errno: 17); mounting read-only
[  105.944683][ T6815] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off.
[  105.952331][ T6815] overlayfs: failed to get uuid (/file0, err=-95); falling back to uuid=null.
[  105.969078][   T39] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  106.120348][   T39] usb 8-1: Using ep0 maxpacket: 8
[  106.123925][   T39] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  106.126712][   T39] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  106.131072][   T39] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  106.135250][   T39] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  106.138373][   T39] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  106.142955][   T39] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  106.146084][   T39] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.213265][ T6822] FAULT_INJECTION: forcing a failure.
[  106.213265][ T6822] name failslab, interval 1, probability 0, space 0, times 0
[  106.218426][ T6822] CPU: 0 UID: 0 PID: 6822 Comm: syz.0.277 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  106.218445][ T6822] Tainted: [L]=SOFTLOCKUP
[  106.218449][ T6822] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  106.218456][ T6822] Call Trace:
[  106.218461][ T6822]  <TASK>
[  106.218467][ T6822]  dump_stack_lvl+0x100/0x190
[  106.218484][ T6822]  should_fail_ex.cold+0x5/0xa
[  106.218501][ T6822]  ? tomoyo_realpath_from_path+0xb6/0x690
[  106.218519][ T6822]  should_failslab+0xc2/0x120
[  106.218536][ T6822]  __kmalloc_noprof+0xe0/0x850
[  106.218549][ T6822]  ? kfree+0x1dd/0x6c0
[  106.218562][ T6822]  tomoyo_realpath_from_path+0xb6/0x690
[  106.218583][ T6822]  tomoyo_path_number_perm+0x23c/0x580
[  106.218597][ T6822]  ? tomoyo_path_number_perm+0x22e/0x580
[  106.218613][ T6822]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  106.218640][ T6822]  ? find_held_lock+0x2b/0x80
[  106.218657][ T6822]  ? __fget_files+0x215/0x3d0
[  106.218675][ T6822]  ? hook_file_ioctl_common+0x149/0x410
[  106.218686][ T6822]  ? __fget_files+0x215/0x3d0
[  106.218705][ T6822]  ? __fget_files+0x21f/0x3d0
[  106.218723][ T6822]  security_file_ioctl+0xd3/0x230
[  106.218829][ T6822]  __x64_sys_ioctl+0xb7/0x210
[  106.218851][ T6822]  do_syscall_64+0x10b/0xf80
[  106.218863][ T6822]  ? clear_bhb_loop+0x40/0x90
[  106.218877][ T6822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.218889][ T6822] RIP: 0033:0x7f432ad9c819
[  106.218899][ T6822] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  106.218909][ T6822] RSP: 002b:00007f432bcf5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  106.218921][ T6822] RAX: ffffffffffffffda RBX: 00007f432b015fa0 RCX: 00007f432ad9c819
[  106.218928][ T6822] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[  106.218934][ T6822] RBP: 00007f432bcf5090 R08: 0000000000000000 R09: 0000000000000000
[  106.218940][ T6822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.218946][ T6822] R13: 00007f432b016038 R14: 00007f432b015fa0 R15: 00007ffdee62c138
[  106.218960][ T6822]  </TASK>
[  106.294632][ T6822] ERROR: Out of memory at tomoyo_realpath_from_path.
[  106.405644][ T6806] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  106.416416][ T6806] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  106.421749][ T6806] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  106.431331][ T6806] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  106.434602][ T6806] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  106.446301][ T6806] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  106.457803][ T6806] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  106.462556][ T6806] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  106.467080][ T6806] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  106.471746][ T6806] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  106.485268][   T39] usb 8-1: usb_control_msg returned -32
[  106.488964][   T39] usbtmc 8-1:16.0: can't read capabilities
[  106.515029][ T6829] netlink: 12 bytes leftover after parsing attributes in process `syz.0.279'.
[  106.531865][   T39] usb 8-1: USB disconnect, device number 3
[  106.548419][ T6833] netlink: 32 bytes leftover after parsing attributes in process `syz.2.278'.
[  106.553509][ T6825] netlink: 32 bytes leftover after parsing attributes in process `syz.2.278'.
[  106.789239][ T6835] sg_write: data in/out 63015/14 bytes for SCSI command 0x8-- guessing data in;
[  106.789239][ T6835]    program syz.3.280 not setting count and/or reply_len properly
[  106.797683][ T6835] netlink: 4 bytes leftover after parsing attributes in process `syz.3.280'.
[  106.995281][ T6852] FAULT_INJECTION: forcing a failure.
[  106.995281][ T6852] name failslab, interval 1, probability 0, space 0, times 0
[  107.003483][ T6852] CPU: 2 UID: 0 PID: 6852 Comm: syz.2.286 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  107.003512][ T6852] Tainted: [L]=SOFTLOCKUP
[  107.003517][ T6852] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  107.003589][ T6852] Call Trace:
[  107.003666][ T6852]  <TASK>
[  107.003673][ T6852]  dump_stack_lvl+0x100/0x190
[  107.003984][ T6852]  should_fail_ex.cold+0x5/0xa
[  107.004011][ T6852]  should_failslab+0xc2/0x120
[  107.004098][ T6852]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  107.004191][ T6852]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  107.004275][ T6852]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  107.004303][ T6852]  mmu_topup_memory_caches+0x25/0x170
[  107.004328][ T6852]  kvm_mmu_load+0xd6/0x23e0
[  107.004351][ T6852]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  107.004378][ T6852]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  107.004410][ T6852]  ? __pfx_kvm_mmu_load+0x10/0x10
[  107.004431][ T6852]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  107.004476][ T6852]  ? kvm_check_and_inject_events+0x961/0x10c0
[  107.004502][ T6852]  ? record_steal_time+0x380/0xbc0
[  107.004534][ T6852]  vcpu_run+0x39f4/0x5ca0
[  107.004568][ T6852]  ? __pfx_vcpu_run+0x10/0x10
[  107.004601][ T6852]  ? rcu_is_watching+0x12/0xc0
[  107.004631][ T6852]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  107.004679][ T6852]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  107.004710][ T6852]  kvm_vcpu_ioctl+0x730/0x1720
[  107.004732][ T6852]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  107.004752][ T6852]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  107.004773][ T6852]  ? do_vfs_ioctl+0x226/0x13e0
[  107.004797][ T6852]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  107.004820][ T6852]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  107.005002][ T6852]  ? __fget_files+0x215/0x3d0
[  107.005029][ T6852]  ? hook_file_ioctl_common+0x149/0x410
[  107.005056][ T6852]  ? selinux_file_ioctl+0x13b/0x290
[  107.005080][ T6852]  ? selinux_file_ioctl+0xb6/0x290
[  107.005114][ T6852]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  107.005133][ T6852]  __x64_sys_ioctl+0x18e/0x210
[  107.005158][ T6852]  do_syscall_64+0x10b/0xf80
[  107.005585][ T6852]  ? clear_bhb_loop+0x40/0x90
[  107.005608][ T6852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.005626][ T6852] RIP: 0033:0x7f8afbf9c819
[  107.005644][ T6852] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  107.005661][ T6852] RSP: 002b:00007f8afcdf8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  107.005680][ T6852] RAX: ffffffffffffffda RBX: 00007f8afc215fa0 RCX: 00007f8afbf9c819
[  107.005692][ T6852] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000d
[  107.005701][ T6852] RBP: 00007f8afcdf8090 R08: 0000000000000000 R09: 0000000000000000
[  107.005712][ T6852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.005722][ T6852] R13: 00007f8afc216038 R14: 00007f8afc215fa0 R15: 00007fff9172bec8
[  107.005747][ T6852]  </TASK>
[  107.258287][ T6868] netlink: 16 bytes leftover after parsing attributes in process `syz.3.289'.
[  107.263218][ T6858] ------------[ cut here ]------------
[  107.265480][ T6858] enable_ept && !allow_smaller_maxphyaddr
[  107.265491][ T6858] WARNING: arch/x86/kvm/vmx/vmx.c:5444 at handle_exception_nmi+0xa6e/0x1bb0, CPU#1: syz.3.289/6858
[  107.267457][ T6868] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=7354 sclass=netlink_route_socket pid=6868 comm=syz.3.289
[  107.269510][ T6858] Modules linked in:
[  107.280353][ T6858] CPU: 1 UID: 0 PID: 6858 Comm: syz.3.289 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  107.284794][ T6858] Tainted: [L]=SOFTLOCKUP
[  107.286633][ T6858] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  107.290659][ T6858] RIP: 0010:handle_exception_nmi+0xa6e/0x1bb0
[  107.292882][ T6858] Code: 08 84 d2 0f 85 fd 10 00 00 44 0f b6 2d 46 72 3b 0f 31 ff 44 89 ee e8 11 5d 69 00 45 84 ed 0f 85 b5 0e 00 00 e8 b3 62 69 00 90 <0f> 0b 90 31 ff 44 89 e6 e8 55 5d 69 00 45 85 e4 0f 85 7f 0b 00 00
[  107.299453][ T6858] RSP: 0018:ffffc900207cf9d8 EFLAGS: 00010283
[  107.301614][ T6858] RAX: 0000000000014454 RBX: ffff88802c3da980 RCX: ffffc900076a3000
[  107.304538][ T6858] RDX: 0000000000080000 RSI: ffffffff819fc74d RDI: ffff88802540a500
[  107.307925][ T6858] RBP: 000000000f6632eb R08: 0000000000000001 R09: 0000000000000000
[  107.310789][ T6858] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  107.313417][ T6858] R13: 0000000000000000 R14: ffff88803f13d000 R15: ffff88802c3daa50
[  107.316170][ T6858] FS:  00007f6ec233d6c0(0000) GS:ffff8880d6409000(0000) knlGS:0000000000000000
[  107.319480][ T6858] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  107.322555][ T6858] CR2: 000000000f6632eb CR3: 000000003027b000 CR4: 0000000000352ef0
[  107.325918][ T6858] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000009100
[  107.329166][ T6858] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  107.331875][ T6858] Call Trace:
[  107.333285][ T6858]  <TASK>
[  107.334317][ T6858]  ? __pfx_handle_exception_nmi+0x10/0x10
[  107.336214][ T6858]  vmx_handle_exit+0x84d/0x1f40
[  107.337853][ T6858]  vcpu_run+0x34cf/0x5ca0
[  107.339528][ T6858]  ? __pfx_vcpu_run+0x10/0x10
[  107.341182][ T6858]  ? rcu_is_watching+0x12/0xc0
[  107.343015][ T6858]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  107.345046][ T6858]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  107.347021][ T6858]  kvm_vcpu_ioctl+0x730/0x1720
[  107.349137][ T6858]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  107.351195][ T6858]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  107.353472][ T6858]  ? do_vfs_ioctl+0x226/0x13e0
[  107.355080][ T6858]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  107.356770][ T6858]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  107.359129][ T6858]  ? __fget_files+0x215/0x3d0
[  107.360712][ T6858]  ? hook_file_ioctl_common+0x149/0x410
[  107.362867][ T6858]  ? selinux_file_ioctl+0x13b/0x290
[  107.364790][ T6858]  ? selinux_file_ioctl+0xb6/0x290
[  107.366549][ T6858]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  107.368476][ T6858]  __x64_sys_ioctl+0x18e/0x210
[  107.370387][ T6858]  do_syscall_64+0x10b/0xf80
[  107.372156][ T6858]  ? clear_bhb_loop+0x40/0x90
[  107.374007][ T6858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.375948][ T6858] RIP: 0033:0x7f6ec139c819
[  107.377452][ T6858] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  107.384370][ T6858] RSP: 002b:00007f6ec233d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  107.387432][ T6858] RAX: ffffffffffffffda RBX: 00007f6ec1615fa0 RCX: 00007f6ec139c819
[  107.390238][ T6858] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[  107.392974][ T6858] RBP: 00007f6ec1432c91 R08: 0000000000000000 R09: 0000000000000000
[  107.395643][ T6858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  107.398356][ T6858] R13: 00007f6ec1616038 R14: 00007f6ec1615fa0 R15: 00007fffb28840c8
[  107.405769][ T6858]  </TASK>
[  107.407040][ T6858] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  107.409918][ T6858] CPU: 1 UID: 0 PID: 6858 Comm: syz.3.289 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  107.413610][ T6858] Tainted: [L]=SOFTLOCKUP
[  107.415079][ T6858] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  107.418695][ T6858] Call Trace:
[  107.419856][ T6858]  <TASK>
[  107.420933][ T6858]  dump_stack_lvl+0x100/0x190
[  107.422920][ T6858]  vpanic+0x552/0x970
[  107.424439][ T6858]  ? __pfx_vpanic+0x10/0x10
[  107.426246][ T6858]  panic+0xd1/0xe0
[  107.427749][ T6858]  ? __pfx_panic+0x10/0x10
[  107.429532][ T6858]  check_panic_on_warn.cold+0x19/0x34
[  107.431497][ T6858]  ? handle_exception_nmi+0xa6e/0x1bb0
[  107.433489][ T6858]  __warn.cold+0x191/0x328
[  107.435034][ T6858]  __report_bug+0x296/0x3d0
[  107.436631][ T6858]  ? handle_exception_nmi+0xa6e/0x1bb0
[  107.438563][ T6858]  ? __pfx___report_bug+0x10/0x10
[  107.440300][ T6858]  ? __hrtimer_rearm_deferred+0x24d/0x740
[  107.442464][ T6858]  ? __hrtimer_rearm_deferred+0x24d/0x740
[  107.444660][ T6858]  ? find_held_lock+0x2b/0x80
[  107.446588][ T6858]  ? rcu_is_watching+0x12/0xc0
[  107.448681][ T6858]  ? trace_sched_exit_tp+0x11c/0x160
[  107.450992][ T6858]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  107.453571][ T6858]  ? handle_exception_nmi+0xa6e/0x1bb0
[  107.455455][ T6858]  report_bug+0xb2/0x220
[  107.456954][ T6858]  ? handle_exception_nmi+0xa6e/0x1bb0
[  107.458841][ T6858]  handle_bug+0x16a/0x2a0
[  107.460352][ T6858]  exc_invalid_op+0x17/0x50
[  107.462019][ T6858]  asm_exc_invalid_op+0x1a/0x20
[  107.463705][ T6858] RIP: 0010:handle_exception_nmi+0xa6e/0x1bb0
[  107.465838][ T6858] Code: 08 84 d2 0f 85 fd 10 00 00 44 0f b6 2d 46 72 3b 0f 31 ff 44 89 ee e8 11 5d 69 00 45 84 ed 0f 85 b5 0e 00 00 e8 b3 62 69 00 90 <0f> 0b 90 31 ff 44 89 e6 e8 55 5d 69 00 45 85 e4 0f 85 7f 0b 00 00
[  107.472477][ T6858] RSP: 0018:ffffc900207cf9d8 EFLAGS: 00010283
[  107.474646][ T6858] RAX: 0000000000014454 RBX: ffff88802c3da980 RCX: ffffc900076a3000
[  107.477740][ T6858] RDX: 0000000000080000 RSI: ffffffff819fc74d RDI: ffff88802540a500
[  107.480870][ T6858] RBP: 000000000f6632eb R08: 0000000000000001 R09: 0000000000000000
[  107.483935][ T6858] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  107.486699][ T6858] R13: 0000000000000000 R14: ffff88803f13d000 R15: ffff88802c3daa50
[  107.489437][ T6858]  ? handle_exception_nmi+0xa6d/0x1bb0
[  107.491307][ T6858]  ? handle_exception_nmi+0xa6d/0x1bb0
[  107.493430][ T6858]  ? __pfx_handle_exception_nmi+0x10/0x10
[  107.495308][ T6858]  vmx_handle_exit+0x84d/0x1f40
[  107.497016][ T6858]  vcpu_run+0x34cf/0x5ca0
[  107.498685][ T6858]  ? __pfx_vcpu_run+0x10/0x10
[  107.500494][ T6858]  ? rcu_is_watching+0x12/0xc0
[  107.502324][ T6858]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  107.504222][ T6858]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  107.506171][ T6858]  kvm_vcpu_ioctl+0x730/0x1720
[  107.507844][ T6858]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  107.509655][ T6858]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  107.512043][ T6858]  ? do_vfs_ioctl+0x226/0x13e0
[  107.513887][ T6858]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  107.515860][ T6858]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  107.518657][ T6858]  ? __fget_files+0x215/0x3d0
[  107.520512][ T6858]  ? hook_file_ioctl_common+0x149/0x410
[  107.522493][ T6858]  ? selinux_file_ioctl+0x13b/0x290
[  107.524288][ T6858]  ? selinux_file_ioctl+0xb6/0x290
[  107.526087][ T6858]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  107.527881][ T6858]  __x64_sys_ioctl+0x18e/0x210
[  107.529596][ T6858]  do_syscall_64+0x10b/0xf80
[  107.531098][ T6858]  ? clear_bhb_loop+0x40/0x90
[  107.532730][ T6858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.535025][ T6858] RIP: 0033:0x7f6ec139c819
[  107.536852][ T6858] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  107.543747][ T6858] RSP: 002b:00007f6ec233d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  107.546631][ T6858] RAX: ffffffffffffffda RBX: 00007f6ec1615fa0 RCX: 00007f6ec139c819
[  107.549418][ T6858] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[  107.552805][ T6858] RBP: 00007f6ec1432c91 R08: 0000000000000000 R09: 0000000000000000
[  107.555943][ T6858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  107.558789][ T6858] R13: 00007f6ec1616038 R14: 00007f6ec1615fa0 R15: 00007fffb28840c8
[  107.561554][ T6858]  </TASK>
[  107.563684][ T6858] Kernel Offset: disabled
[  107.565247][ T6858] Rebooting in 86400 seconds..