last executing test programs:

3m0.378604766s ago: executing program 2 (id=1887):
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x40000)
ioctl$SG_IO(r1, 0x2285, &(0x7f00000000c0)={0x53, 0xfffffffffffffffb, 0x10, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="8f7d0a01007d79710600060000000000", 0x0, 0x10, 0x1001a, 0x0, 0x0})
sendto$inet6(r0, &(0x7f0000000140)="1ba0000016001d0d89fdc59a9e30c36e2ce02b4dca141a780f0f8e", 0x1b, 0x0, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001042cbd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="c0010400000000001400128009000135186f6e640000000004000280ac446809eab5f7e76380ec8f011b257d8f2cd683ad918ae38351aa77bb9267015660f34f3f84cfd8e61d901525b0d2530c509a13f3ba6e1ae8e51f0f23000439eff4f870e76a55fe8e96104837fbcec1bfb172075f246b4528aada409b99e64630709814174a8ef1c3a0e54ac4679a4ff86f401ec81b6aa32a3373d9786568dba0d17a08add2779a9f5cb1690f36"], 0x34}}, 0x0)
r3 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x18, 0x0)
landlock_restrict_self(r3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
syz_emit_ethernet(0xfc0, &(0x7f0000000880)={@empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x29}, @void, {@mpls_uc={0x8847, {[], @generic="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"}}}}, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r5, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r5, 0x5)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r6, 0x84, 0x4, &(0x7f00000002c0)=0xe2, 0x4)
sendto$inet6(r6, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r7 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r7, &(0x7f0000003000)=@file={0x1}, 0x6e)
listen(r7, 0x0)
connect$unix(r4, &(0x7f0000000640)=@file={0x1}, 0x6e)
recvfrom$inet6(r0, 0x0, 0x0, 0x2002, 0x0, 0x0)

2m59.53794874s ago: executing program 2 (id=1907):
socket$pppl2tp(0x18, 0x1, 0x1) (async)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e000000080000000000180003"], 0x44}}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) (async)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)=ANY=[@ANYBLOB="180100002000010000000000fcdbdf2506"], 0x118}], 0x1, 0x0, 0x0, 0x20008001}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x4000, 0x5, @loopback, 0xb}, 0x1c) (async)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x4000, 0x5, @loopback, 0xb}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_256={{0x303}, "c8444943470da91b", "42f3ac0e0b8a32be8fe91c368e60693800000000d6e5394b00", "e7198360", "f7a5c1777af05eaa"}, 0x38) (async)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_256={{0x303}, "c8444943470da91b", "42f3ac0e0b8a32be8fe91c368e60693800000000d6e5394b00", "e7198360", "f7a5c1777af05eaa"}, 0x38)
sendto$inet6(r2, &(0x7f0000000340)="d1", 0x1, 0x8000, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x7, 0x0, 0x0)
write$binfmt_aout(r2, 0x0, 0xfdef) (async)
write$binfmt_aout(r2, 0x0, 0xfdef)
syz_emit_ethernet(0x3e, &(0x7f0000000440)={@local, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010104, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x6, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x2f, 0x0, @private, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}}}, 0x0)
r3 = socket$pppoe(0x18, 0x1, 0x0)
dup2(r2, r2) (async)
r4 = dup2(r2, r2)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) (async)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x30, r7, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_TX_RATES={0x4}, @NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000801}, 0x4)
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x30, r5, 0x200, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x242}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x92}]}, 0x30}, 0x1, 0x0, 0x0, 0x2000c841}, 0x4014)
ioctl$PPPIOCSFLAGS(r3, 0x40047459, &(0x7f0000000000))
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r9, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x7, &(0x7f0000000080)=[{0xff, 0x6, 0x7, 0x95d3}, {0x668b, 0x6, 0x0, 0x1}, {0xce, 0x1, 0x43, 0x4}, {0x752, 0x10, 0xb, 0x100}, {0x2, 0x5, 0x2, 0x3}, {0x1ff, 0x0, 0x13, 0x63}, {0x9, 0x3, 0x7, 0x8}]})
close_range(r10, 0xffffffffffffffff, 0x0)

2m59.42790943s ago: executing program 2 (id=1909):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x2, 0x0, 0x4, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
ioctl$sock_bt_hci(r1, 0x400448df, &(0x7f0000001600)="ca8120e7500410e2a2ba4077a746ff047e6b5d28ea763ba95f63f4b9af0eb858bfa52b9145182f0b9cbf0987ac18eda281bd21d46d8dc54c42b5dfb2d4ca0e432d14ab1f73a230364311086b968ce89b608584677b2bc4a9ec4e7d266997c57de57170a2eb")
r3 = socket$nl_generic(0x10, 0x3, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x406900, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000040)={0xc, <r4=>0xffffffffffffffff, 0x1})
ioctl$BTRFS_IOC_QGROUP_CREATE(r4, 0x4010942a, 0x0)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180), 0x22802, 0x0)
write$yama_ptrace_scope(r5, &(0x7f0000000240)='3\x00', 0x2)
sendmsg$unix(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001680), 0x0, &(0x7f0000000040), 0x0, 0xc0}, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, 0x0, 0x0)
r6 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r7, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r6, 0x4c0a, &(0x7f00000002c0)={r7, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})
ioctl$PPPIOCSMRRU(r7, 0x4004743b, &(0x7f0000000080)=0x8)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r5, 0x5000943f, &(0x7f0000000480)={{r5}, 0x0, 0x4, @inherit={0x48, &(0x7f0000000400)=ANY=[@ANYBLOB="01000000000000000000010001000000000000000000000004000000000000000600000000000000ff000000000000000b0000000000000000000000010000000700000000000000"]}, @name="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"})
ioctl$BLKROGET(r0, 0x125e, 0x0)
ioctl$NBD_CLEAR_QUE(r5, 0xab05)
read$FUSE(r5, &(0x7f0000001740)={0x2020}, 0x2020)
r8 = getpid()
process_vm_readv(r8, &(0x7f0000008400), 0x0, &(0x7f0000000140)=[{&(0x7f0000000400)=""/95, 0x5f}], 0x1, 0x0)
r9 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_DELETE(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001480)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="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"], 0x1c}}, 0x40)

2m59.347771925s ago: executing program 2 (id=1911):
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000640), 0x4000, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0xfffffffc, r1, 0x4}, 0x38)
ioctl$CDROMREADAUDIO(r0, 0x5392, &(0x7f0000000040)={@lba=0x4, 0x1, 0x0, 0x0}) (async)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000080)={0x8}) (async)
r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
ioctl$IOCTL_STOP_ACCEL_DEV(r3, 0x40096101, &(0x7f00000016c0)={{}, 0x2})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) (async)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r6 = syz_clone(0x88200, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r5, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x3, 0x1, 0x0, r6}}, 0x40)
ioctl$TUNGETVNETBE(r4, 0x800454df, &(0x7f00000000c0)) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1a, 0x3, &(0x7f0000000040)=ANY=[@ANYRES32=r4], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
capset(&(0x7f0000000140)={0x20071026}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x84, 0xffffffff, 0x7})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"/2944], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x4a) (async)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180)) (async)
r8 = syz_open_procfs(0x0, &(0x7f0000000040)='auxv\x00')
preadv(r8, &(0x7f0000000000)=[{&(0x7f00000001c0)=""/181, 0xb5}], 0x1, 0x0, 0x0) (async)
umount2(&(0x7f0000000040)='.\x00', 0x2)
r9 = gettid()
process_vm_writev(r9, &(0x7f0000000300)=[{&(0x7f0000000940)=""/248, 0xf8}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/227, 0xe3}], 0x1, 0x0) (async)
ioctl$TIOCGPGRP(r8, 0x540f, &(0x7f00000000c0)=<r10=>0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r7, 0xffffffffffffffff, 0x2d, 0x0, @val=@iter={&(0x7f0000000100)=@task={r9, r10, r2}, 0x10}}, 0x20)

2m59.342950093s ago: executing program 2 (id=1913):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101140, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xb9)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@private2, 0x0, 0x1, 0x0, 0x4}, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r1, 0x400452c8, &(0x7f0000000100))

2m58.596238414s ago: executing program 2 (id=1932):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="340000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b80080002000400000008001b"], 0x34}}, 0x4040004)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000400)={@ptr={0x70742a85, 0x0, 0x0, 0x0, 0x1, 0x27}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x0, 0x25}, @flat=@weak_binder={0x77622a85, 0x110e, 0x3}}, &(0x7f0000000300)={0x0, 0x28, 0x50}}, 0x400}], 0x0, 0x0, 0x0})

2m58.509952993s ago: executing program 32 (id=1932):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="340000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b80080002000400000008001b"], 0x34}}, 0x4040004)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000400)={@ptr={0x70742a85, 0x0, 0x0, 0x0, 0x1, 0x27}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x0, 0x25}, @flat=@weak_binder={0x77622a85, 0x110e, 0x3}}, &(0x7f0000000300)={0x0, 0x28, 0x50}}, 0x400}], 0x0, 0x0, 0x0})

3.297568163s ago: executing program 0 (id=5159):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), r1)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f00000003c0)={0x20, r2, 0x5, 0x0, 0x0, {0x22}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x20}}, 0x4000000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'ip6gretap0\x00'})
socket$key(0xf, 0x3, 0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0)
read$ptp(r4, &(0x7f0000000200)=""/2, 0x2)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240))
r7 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xc1b}, 0x28)
r8 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x20400, 0x61)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r7, 0x4, &(0x7f0000000280)='/dev/kvm\x00', &(0x7f00000002c0)='./file0\x00', r8)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

3.073929632s ago: executing program 0 (id=5169):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x44, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4048840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000010400b500000000040000000000", @ANYRES32=0x0, @ANYBLOB="00000000001400001c00128009000100626f6e64000000000c000280080014"], 0x3c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x8000010}, 0x48000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

3.073597893s ago: executing program 0 (id=5171):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r0, 0x800452d3, &(0x7f0000000100))

3.071238424s ago: executing program 0 (id=5173):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x38, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x4048840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000010400b500000000040000000000", @ANYRES32=0x0, @ANYBLOB="00000000001400001c00128009000100626f6e64000000000c0002800800"], 0x3c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x8000010}, 0x48000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2.997524203s ago: executing program 0 (id=5174):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="9feb0100180000000000000030000000300000000200000000000000000000030000000001000000030000000200000000000000000000020300000009"], 0x0, 0x4a}, 0x28)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000200140008000300", @ANYRES32=r2, @ANYBLOB="0c00990000000000000000000800a102ffff0000080026008d03000008009f"], 0x40}}, 0x0)

2.997157823s ago: executing program 0 (id=5176):
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)=0x74000000)
write$dsp(r0, &(0x7f0000002000)='`', 0x88020)
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000400000/0xc00000)=nil)

699.451679ms ago: executing program 3 (id=5237):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r0, 0x800452d3, 0x0)

646.131079ms ago: executing program 1 (id=5238):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x6)
ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000000)={0x1, 0x1, &(0x7f0000001b40)=""/251, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000200))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000340)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000000380)={0x0, 0x3ff, 0x5})
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$setregs(0xd, r3, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$getregset(0x4204, r3, 0x2, &(0x7f00000022c0)={0x0, 0xff90})
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000880)={{{@in=@remote, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{}, 0x0, @in=@dev}}, &(0x7f00000001c0)=0xe8)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000003740)={0x148c, 0x2e, 0x200, 0x8f0bd27, 0x25dfdbfc, {0x4}, [@nested={0x4, 0xe}, @nested={0x1140, 0xee, 0x0, 0x1, [@generic="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", @nested={0x13a, 0x70, 0x0, 0x1, [@typed={0x4, 0x13a}, @generic="67df9744e1d76a06111482b5578196aec6d9b559e3b8a00192b82862a2de675cbcf78f44dcbd75e094bf146ef9fa2138f9d4adab0322931d7fca24342d07b56ee4507370fb30a9c576a35cbe52929743079d111e24a7a47e8f8e5b72a40def68599a2330aa4087699c343abb59bb09c889dbe222fa0f23972d23e82dcce2e93083169b11cbf939993a28bfd519dc29018a44b0cefe1fa59437db99470032cc73ce90cd569dbd1e245a9c3bf294623cdcd074591f6e0273ed7e20dac4d5dc3bb452e0bcfa53814c", @typed={0x8, 0xa4, 0x0, 0x0, @uid}, @generic="cc42ae6a492773c879143137eb5c838c30f03e9bf2a39df98926b91969b1f2546a075e550f8dfa023b8f746916d3f652dd8739ed561bb38ca55428592a45208c3fd1fb0093d4c5bf443c236b7e9ec1b77f7248c008777e97c3e03295eb1cbd1a3d2335"]}]}, @nested={0x334, 0x138, 0x0, 0x1, [@nested={0x134, 0x6, 0x0, 0x1, [@nested={0x4, 0xfb}, @typed={0x4, 0x137}, @typed={0x8, 0x14, 0x0, 0x0, @ipv4=@remote}, @typed={0x8, 0x16, 0x0, 0x0, @pid=r3}, @typed={0x8, 0xc2, 0x0, 0x0, @u32=0x401}, @generic="813ff7e0fa5aabbb81fd906ddd24da29fe5d2d41af33084e8fc007bfe42201e95314f0579350e126b7820413b311633487f1e08b6f531340935514ae910397228b9087653c41c9705a50bfb7014022252a39001520b00857375518dd7bc07dc87b4f", @nested={0x4, 0x5e}, @nested={0x4, 0xb8}, @nested={0x4, 0x1d}, @generic="61d2cecc5e18739bd2970af1ed5ee877d367baaa9ab10b767a25347ce84609185a61cbe4095402a41d8018f8c9f13eb143fe1d61661e881d00d502365d990b89440908fdfa47d6b175257277e278d78da7fdb4a508d70900ec63e80972bdb2ace65e85ddb2704b328cb3a2ed021de88d2612db3ffbeb6ef04dc72570cd2e88194bd3942fedab23a52572da2c704d87a9e47d6acaa1fc6d7bf9ee9f31b5e8072ac74c"]}, @typed={0x8, 0x3f, 0x0, 0x0, @uid=r4}, @generic="9e2087869afee4068a89e83192f08adce36501f8f5395f9883fd31d2129166b5be15664c5708db9c0fcacd16d9d72fde0912e6cb69525e9419ab3038246dd5697d928bfd452a88b7657114c5f9165b177155f5b52552a4a35def05d78778b5c23f54026a372d4d9ab398f622aea8a1fe3e5a10eecfc3ab6e417ac86355d97f9b1acad10a7132a72eac996ccf15ebd14036265ab8893be697d3a0fdaebe616010c4f89b222c295cfe8f4f50926d8b26463e8157e09fe539347fa8bbb28f8e4e77e902d3a8716b210bd9042410cc79686e", @generic, @typed={0x8, 0x1a, 0x0, 0x0, @fd=r0}, @typed={0x5, 0xb1, 0x0, 0x0, @str='\x00'}, @nested={0x72, 0x114, 0x0, 0x1, [@typed={0x8, 0x10b, 0x0, 0x0, @pid}, @typed={0x8, 0xb8, 0x0, 0x0, @u32=0xa6}, @generic="2537e993a0d28cf1d9d27689b7a7687a3cae9b2c7d3582501aec8b40413e99d8acf4c2b2a7593e854dd3fed901a01e1b84aa67ca81d6cb6484b1179c39977f2fb63b7255acb4275bef65f4763f08d0514fa810c272ba222864f5bcac5d70"]}, @nested={0xa0, 0x135, 0x0, 0x1, [@nested={0x4, 0x12}, @nested={0x4, 0x16}, @generic="2dd4f5bc17d016790cfbc2d06f154761a645459967aaf4396f309a40257560b8dd0225bd59ffb0adefb496711fd37e73a27fa4e48d6819d47762b6c7859273cc303a1fc975d2f00dad0c1acdb4cd41768c51e621d9f69767c1643b1e71047ce661e05da13c2f977b6137e557af50eeb00d79e52fb18d2b39e190c121a6c73958a8698c39f0ef642bcb6fab24875d4dc5689e7ca8"]}]}]}, 0x148c}, 0x1, 0x0, 0x0, 0x2004809c}, 0x20004010)

570.8261ms ago: executing program 1 (id=5240):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), r1)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f00000003c0)={0x20, r2, 0x5, 0x0, 0x0, {0x22}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x20}}, 0x4000000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'ip6gretap0\x00'})
socket$key(0xf, 0x3, 0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0)
read$ptp(r4, &(0x7f0000000200)=""/2, 0x2)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240))
openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

404.807428ms ago: executing program 3 (id=5243):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=@newtfilter={0x58, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0xb, 0xfff3}, {}, {0xffef, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x28, 0x2, [@TCA_BASIC_EMATCHES={0x24, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x8}}, @TCA_EMATCH_TREE_LIST={0x18, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x9, 0x7, 0x4}, {{0x3, 0x1, 0x0, 0x1}, {0x2, 0x0, 0x1, 0x1}}}}]}]}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20041090}, 0x40000) (fail_nth: 2)

347.278513ms ago: executing program 4 (id=5245):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
close_range(r2, 0xffffffffffffffff, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000004a008d2a00000000000000000a000000", @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x0)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRESDEC=r1, @ANYBLOB="010000004000000000004200000008000300", @ANYRES32=r3, @ANYBLOB="0c00990000000000000000000800a000d615000008009f0005000000080026000816"], 0x40}, 0x1, 0x0, 0x0, 0x4001}, 0x200040b4)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5b5d, 0x116245af0bab08c3}, [@IFLA_AF_SPEC={0x8, 0x1a, 0x0, 0x1, [@AF_BRIDGE={0x4}]}, @IFLA_ALT_IFNAME={0x14, 0x35, 'wg1\x00'}]}, 0x3c}}, 0x20004000)
r5 = syz_io_uring_setup(0x755, &(0x7f0000000140)={0x0, 0x822c, 0x4, 0x2, 0x107}, &(0x7f0000000240), &(0x7f0000000280))
r6 = syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00')
writev(r6, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
bind$inet(r7, &(0x7f00000001c0)={0x2, 0x4e24, @empty}, 0x10)
r8 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_udp_int(r8, 0x11, 0xa, &(0x7f0000000040)=0x4, 0x4)
sendmsg(r8, &(0x7f0000002c40)={&(0x7f0000000140)=@in={0x2, 0x4e24, @empty}, 0x80, &(0x7f0000001780)=[{&(0x7f00000001c0)='k', 0x1}], 0x1}, 0x0)
recvmmsg(r7, &(0x7f0000008280)=[{{0x0, 0x0, 0x0}, 0x80000000}], 0x1, 0x40000043, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r5, 0x7, &(0x7f00000002c0)=r6, 0x1)

284.5271ms ago: executing program 3 (id=5246):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f0000000180)="a6bea8a120e5f8320c30ce5086dd", 0xe, 0x0, &(0x7f0000000140)={0x11, 0x88a8, r2, 0x1, 0x0, 0x6, @random="fe8000000004"}, 0x14)

280.999562ms ago: executing program 1 (id=5247):
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
getgroups(0x2, &(0x7f0000001080)=[<r1=>0xee01, <r2=>0xffffffffffffffff])
setgroups(0x1, &(0x7f0000000880)=[r1])
keyctl$chown(0x4, r0, 0xee01, r2)
keyctl$setperm(0x5, r0, 0x30925)
keyctl$KEYCTL_MOVE(0x3, r0, 0x0, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0)
r6 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0)
read$FUSE(r6, &(0x7f0000002240)={0x2020, 0x0, 0x0, 0x0, <r7=>0x0}, 0x2020)
writev(r6, &(0x7f0000000180)=[{&(0x7f0000000080)="742bdc", 0x3}], 0x1)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, 0x0, 0x8000)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r8, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x1, 0x803, 0x0)
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="540000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800e0001006970366772657461700000001800028014000700fc00000000000000000000000000000008000a00", @ANYRES32=r11], 0x54}}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r12, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000500)=@gettaction={0x68, 0x32, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@action_gd=@TCA_ACT_TAB={0x54, 0x1, [{0xc, 0x15, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1400000}}, {0x10, 0x17, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0x10, 0xb, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0x14, 0x3, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}, {0x10, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
r13 = socket$netlink(0x10, 0x3, 0x0)
r14 = socket$packet(0x11, 0x3, 0x300)
getsockname$packet(r14, &(0x7f0000000100)={0x11, 0x0, <r15=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200))
sendmsg$nl_route(r13, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYRESHEX=r15, @ANYRESOCT=r7, @ANYBLOB="01"], 0x20}, 0x1, 0x0, 0x0, 0x4000040}, 0x44000)
r16 = socket(0x1, 0x803, 0x0)
getsockname$packet(r16, &(0x7f0000000100)={0x11, 0x0, <r17=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000007c0)=ANY=[@ANYBLOB="500000001000110f00"/20, @ANYRES32=0x0, @ANYBLOB="0401000000000000280012800900028014000100"/36, @ANYRES32=0x0, @ANYBLOB=' \x00\x00\x00 \x00\x00\x00\b\x00\n\x00', @ANYRES32=r17, @ANYBLOB], 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

176.200242ms ago: executing program 4 (id=5248):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
bind$l2tp(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10)
r1 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
close(0x4)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f00000001c0)=0x10001)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000040)=0x10000)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), r2)
syz_open_dev$tty1(0xc, 0x4, 0x4)
sendmsg$IEEE802154_LLSEC_DEL_KEY(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002dbd7000ffdbdf2528000000060006000000000006000400a3aa00000a0001007770616e3100000005002b"], 0x38}, 0x1, 0x0, 0x0, 0xc000}, 0x4000000)
read$dsp(r0, 0x0, 0x4c)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000001380)={'team0\x00', &(0x7f0000001280)=@ethtool_drvinfo={0x3, "8e83cc9e88b009a8ced008a45a9b15655db53c38758b5d267d47b1a109528e05", "94ec533ac1530fb40d6713ad954eedb14180e9936a9d353caa877653bce1b892", "d39af0372b17ec044525bd6635d3fbdebcba911f0bc93222ad196c2097456bcb", "b039149dc172700e784f8e8f3aa3f18ce4081bf171e8077c02deb94d5f29bf66", "64c7a53e3a3b85ee0f3612d286625fe9778737fb81d24f685563b9e6fa32b055", "1f6869027ad2ecb6a95b1575", 0xfffff591, 0x4, 0x3, 0xa92c, 0x3}})
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="2309fefffffffcffffff0100002005000700000000000800090020000000060002000100000008000a000400010008001700", @ANYRES32], 0x3c}}, 0x0)

175.860364ms ago: executing program 3 (id=5249):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x44, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4048840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000010400b500000000040000000000", @ANYRES32=0x0, @ANYBLOB="00000000001400001c00128009000100626f6e64000000000c000280080014"], 0x3c}}, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000380)="adf3d8dfdc93d0d84b02b9bda77400d0acb073d6193dde19097e2370b6690967fa78879ee2a9030e28605227a60747aa6358479251eaee95d067ea8592bf45009195e0f9169bb2f75e7d540702ecbb1f65bec635f8f25e835d81ddbc547e1b8ae9d5f74e1132a21d2a3324e3a8e0a020f654f74ede15e4bae289c5cf2f956098bfde88afe1f053c7a445ee46462270812e7b313eae5fe1f749221d8b882fddf5ed3ed334", 0xa4)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xc}]}, @NFT_MSG_NEWSETELEM={0x4c, 0xc, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x24, 0x3, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x8}, @NFTA_SET_ELEM_EXPRESSIONS={0x18, 0xb, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @counter={{0x10}, @val={0x4}}}]}]}]}]}], {0x14, 0x10}}, 0xd0}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x8000010}, 0x48000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f0000006180)={0x2020, 0x0, 0x0, <r3=>0x0, <r4=>0x0}, 0x2020)
syz_fuse_handle_req(r2, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x6, 0x2, 0xffffffffffffeffe, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x8, 0xb, 0xffff, 0x0, 0x1, 0x0, 0x0, 0x120, 0x2000, 0x0, r3, r4, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000801, r3, &(0x7f0000000480)={0x4, 0x9, 0x2, 0x28, 0xf, 0xffffffffffff7fff, 0x7, 0x80, 0x2})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r5 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x9e3a, 0x10100, 0x80000, 0x1bd}, &(0x7f0000002000), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f0000000580)=[{&(0x7f0000000380)=""/113, 0x71}], 0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
syz_clone(0x80040000, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x6a)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r6 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000440), 0x47000, 0x0)
ioctl$CDROM_CLEAR_OPTIONS(r6, 0x5321, 0x2)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

175.654576ms ago: executing program 1 (id=5250):
r0 = socket$kcm(0x21, 0x2, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000780)={'ip6gre0\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r3], 0x20}, 0x1, 0x0, 0x0, 0xd4}, 0x24008000)
r4 = socket$kcm(0x21, 0x2, 0x2)
r5 = syz_open_procfs(0x0, &(0x7f0000000380)='gid_map\x00')
write$cgroup_int(r5, 0x0, 0x0)
sendmsg$kcm(r4, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_int(r6, 0x29, 0x4e, 0x0, &(0x7f0000000040))
sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e24, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x200008c0)
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r7, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r7, 0x0)
r8 = signalfd(r4, &(0x7f00000000c0)={[0x8]}, 0x8)
ioctl$KVM_X86_SETUP_MCE(r8, 0x4008ae9c, &(0x7f0000000000)={0x11, 0xa, 0x4})
r9 = socket$igmp6(0xa, 0x3, 0x2)
sendmmsg$inet6(r9, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00 \x00'/28], 0x50)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000140)=@ethernet={0x1}, 0x80, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="51e56bb123904e810000000000"], 0x18}, 0x0)

174.877953ms ago: executing program 4 (id=5251):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x44, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4048840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000010400b500000000040000000000", @ANYRES32=0x0, @ANYBLOB="00000000001400001c00128009000100626f6e64000000000c000280080014"], 0x3c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x8000010}, 0x48000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0) (fail_nth: 2)

74.374255ms ago: executing program 1 (id=5252):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x44, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4048840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x8000010}, 0x48000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

68.914004ms ago: executing program 4 (id=5253):
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, 0x0, 0x0)
listen(r0, 0x0)
socket$unix(0x1, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x10, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd}, 0x94)
bind$unix(0xffffffffffffffff, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x4ff1, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)

4.023278ms ago: executing program 3 (id=5254):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x18)
umount2(0x0, 0x1)
getdents64(r0, &(0x7f00000003c0), 0x0)

3.754835ms ago: executing program 4 (id=5255):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REGISTER_FRAME(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003a00000008000300", @ANYRES32=r2, @ANYBLOB="04005b00060065"], 0x28}}, 0x0)

703.84µs ago: executing program 3 (id=5256):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x44, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4048840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000010400b500000000040000000000", @ANYRES32=0x0, @ANYBLOB="00000000001400001c00128009000100626f6e64000000000c000280080014"], 0x3c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x8000010}, 0x48000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

378.307µs ago: executing program 1 (id=5257):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="9feb0100180000000000000030000000300000000200000000000000000000030000000001000000030000000200000000000000000000020300000009"], 0x0, 0x4a}, 0x28)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB="0c00990000000000000000000800a102ffff0000080026008d03000008009f"], 0x40}}, 0x0)

0s ago: executing program 4 (id=5258):
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000000)={0x1, 0xffffffffffffffff, 0x2})
ioctl$SNDCTL_SEQ_GETINCOUNT(0xffffffffffffffff, 0x80045105, &(0x7f0000000040))
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000080)={'lo\x00', 0x400})
getsockopt$inet_sctp_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000000c0), &(0x7f0000000100)=0xe)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000140), 0x80800, 0x0)
connect$pppoe(r1, &(0x7f0000000180)={0x18, 0x0, {0x4, @random="da99d501de1e", 'gretap0\x00'}}, 0x1e)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r3=>0x0})
getsockopt$inet6_opts(r1, 0x29, 0x36, &(0x7f0000000200)=""/78, &(0x7f0000000280)=0x4e)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r1, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0xa, 0x0, 0x3}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20008040}, 0x1)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, &(0x7f00000003c0)={0x3c, 0x14, 0x0, 0xfc, 0x0, [@loopback, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast1, @local, @dev={0xfe, 0x80, '\x00', 0x3a}, @private1, @empty, @rand_addr=' \x01\x00', @local, @loopback]}, 0xa8)
r4 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_mreqn(r1, 0x0, 0x24, &(0x7f00000004c0)={@empty, @remote, <r5=>0x0}, &(0x7f0000000500)=0xc)
sendmsg$nl_route(r4, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)=@ipv4_newaddr={0x34, 0x14, 0x2, 0x70bd2d, 0x25dfdbff, {0x2, 0x38, 0x52, 0x0, r5}, [@IFA_CACHEINFO={0x14, 0x6, {0x1, 0x7, 0xfff, 0x9}}, @IFA_TARGET_NETNSID={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4040810}, 0x0)
r6 = fcntl$dupfd(r1, 0x406, r1)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), r1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000680)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r6, &(0x7f0000000780)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x4c, r7, 0x1, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0xfffffff7, 0x6d}}}}, [@NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x6}, @NL80211_ATTR_STA_FLAGS={0x14, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_MFP={0x4}, @NL80211_STA_FLAG_WME={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}]}, @NL80211_ATTR_STA_VLAN={0x8, 0x14, r3}]}, 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
r9 = openat$zero(0xffffffffffffff9c, &(0x7f00000007c0), 0x400000, 0x0)
sendmsg$nl_generic(r9, &(0x7f00000009c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000840)={0x118, 0x33, 0x200, 0x70bd25, 0x25dfdbfc, {0x1f}, [@nested={0x101, 0xb, 0x0, 0x1, [@typed={0x8, 0xd2, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="9f55c5b1412d8e9d8f83c22ff13f60c2299c313f158869c93e4b83eac3791359586b8ddb3d84de72c5a2371e046473e6c7a87a208d72a4b4811e884dd8eb69ae092df6d8911906ef53e242341928d00d5eccadb9b482e11d6c002e831e5170ad7eb405fd1f6124398bf8ae03ac13c5c5a526eae7c1f7b53ea9eec255fbccb79b0e94ad75d1a73647a8773ad9ab27b1f4f22abc0ec9414709f3582b5efbd43ea88795bd2b287bf7edae351b6c3bc396fff91fbfc356512140f49c6591de2a11904b17fa98180061d74b8a4d7f0bbc9a493eccf6f150049b01fe508030023f434de9e575438cb001d167e8cfc322", @typed={0x8, 0xe, 0x0, 0x0, @fd=r4}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x8000}, 0x20004044)
ioctl$FICLONERANGE(r2, 0x4020940d, &(0x7f0000000a00)={{r9}, 0x8000000000000000, 0x1, 0x8})
ioctl$CDROM_CLEAR_OPTIONS(r6, 0x5321, 0x0)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a80), r1)
sendmsg$NL80211_CMD_CONNECT(r6, &(0x7f0000000b40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x40, r10, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_USE_MFP={0x8}, @NL80211_ATTR_DISABLE_VHT={0x4}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x6}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_USE_MFP={0x8, 0x42, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0xc880}, 0x8000)
sendmsg$NL80211_CMD_PROBE_CLIENT(r1, &(0x7f0000000cc0)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x94, r7, 0x400, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0x94}, 0x1, 0x0, 0x0, 0x400e081}, 0x4004000)
r11 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000d00), 0x2, 0x0)
read$FUSE(r11, &(0x7f0000000d40)={0x2020}, 0x2020)
getsockopt$X25_QBITINCL(r6, 0x106, 0x1, &(0x7f0000002d80), &(0x7f0000002dc0)=0x4)
sendmsg$IPSET_CMD_TYPE(r1, &(0x7f0000002ec0)={&(0x7f0000002e00)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000002e80)={&(0x7f0000002e40)={0x1c, 0xd, 0x6, 0x801, 0x0, 0x0, {0x2, 0x0, 0x4}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x400d0)

kernel console output (not intermixed with test programs):

ocess `syz.0.4497'.
[  282.668295][T19965] Cannot find add_set index 65532 as target
[  282.712471][T19964] binder: 19962:19964 ioctl 4018620d 0 returned -22
[  283.248910][   T40] audit: type=1400 audit(276.281:983): avc:  denied  { map } for  pid=20009 comm="syz.0.4507" path="/dev/zero" dev="devtmpfs" ino=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  283.259042][T20011] fuse: Bad value for 'group_id'
[  283.260832][T20011] fuse: Bad value for 'group_id'
[  283.993256][ T5939] Bluetooth: hci2: command tx timeout
[  284.259118][T20035] Cannot find add_set index 65532 as target
[  284.329547][T20040] block nbd0: shutting down sockets
[  284.345383][T20037] binder: 20036:20037 ioctl 4018620d 0 returned -22
[  284.523428][T20045] netlink: 'syz.3.4517': attribute type 15 has an invalid length.
[  284.526978][T20045] netlink: 'syz.3.4517': attribute type 15 has an invalid length.
[  284.574361][T20050] netlink: 'syz.0.4520': attribute type 11 has an invalid length.
[  284.659601][T20058] Cannot find add_set index 65532 as target
[  284.712155][T20063] rtc_cmos 00:05: Alarms can be up to one day in the future
[  284.763635][T20067] binder: 20066:20067 ioctl 4018620d 0 returned -22
[  284.970143][T20088] Cannot find add_set index 65532 as target
[  285.110057][T20101] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1011 sclass=netlink_route_socket pid=20101 comm=syz.0.4539
[  285.210277][   T61] rtc_cmos 00:05: Alarms can be up to one day in the future
[  285.214386][   T61] rtc_cmos 00:05: Alarms can be up to one day in the future
[  285.217341][   T61] rtc_cmos 00:05: Alarms can be up to one day in the future
[  285.220281][   T61] rtc_cmos 00:05: Alarms can be up to one day in the future
[  285.222658][   T61] rtc rtc0: __rtc_set_alarm: err=-22
[  285.227355][   T53] usb 9-1: USB disconnect, device number 9
[  285.229266][   T40] audit: type=1400 audit(278.133:984): avc:  denied  { setattr } for  pid=20107 comm="syz.0.4541" path="socket:[71777]" dev="sockfs" ino=71777 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  285.308653][ T6017] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  285.313157][T20120] Cannot find add_set index 65532 as target
[  285.424539][   T40] audit: type=1400 audit(278.311:985): avc:  denied  { allowed } for  pid=20130 comm="syz.3.4551" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  285.447487][ T6017] usb 6-1: device descriptor read/64, error -71
[  285.490123][ T1147] tipc: Subscription rejected, illegal request
[  285.608272][T13212] IPVS: ip_vs_send_async error -22
[  285.610231][T20124] xt_hashlimit: size too large, truncated to 1048576
[  285.715034][ T6017] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  285.728973][T20150] Cannot find add_set index 65532 as target
[  285.864490][ T6017] usb 6-1: device descriptor read/64, error -71
[  285.983933][ T6017] usb usb6-port1: attempt power cycle
[  286.206898][ T5939] Bluetooth: hci2: command tx timeout
[  286.264954][T20169] IPVS: set_ctl: invalid protocol: 0 100.1.0.255:20000
[  286.267398][T20170] IPVS: set_ctl: invalid protocol: 20 0.0.0.0:256
[  286.356410][ T6017] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  286.371806][T20178] lo speed is unknown, defaulting to 1000
[  286.378851][ T6017] usb 6-1: device descriptor read/8, error -71
[  286.411000][   T40] audit: type=1400 audit(279.246:986): avc:  denied  { ioctl } for  pid=20177 comm="syz.0.4566" path="socket:[71222]" dev="sockfs" ino=71222 ioctlcmd=0xf512 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  286.436547][T20190] Cannot find add_set index 65532 as target
[  286.635192][ T6017] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  286.666893][ T6017] usb 6-1: device descriptor read/8, error -71
[  286.795052][ T6017] usb usb6-port1: unable to enumerate USB device
[  287.091377][   T40] audit: type=1400 audit(279.872:987): avc:  denied  { write } for  pid=20215 comm="syz.4.4578" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  287.119670][T20220] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  287.446574][   T40] audit: type=1400 audit(280.200:988): avc:  denied  { validate_trans } for  pid=20247 comm="syz.0.4592" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  287.854063][   T24] hid (null): unknown global tag 0x9e
[  287.856933][   T24] hid (null): invalid report_size -282802502
[  287.858938][   T24] hid (null): invalid report_size 25532
[  287.860676][   T24] hid (null): unknown global tag 0x67
[  287.862635][   T24] hid (null): unknown global tag 0x9f
[  287.864448][   T24] hid (null): unknown global tag 0xc
[  287.866266][   T24] hid (null): unknown global tag 0xe
[  287.868047][   T24] hid (null): unknown global tag 0xd
[  287.870403][   T24] hid (null): report_id 0 is invalid
[  287.872125][   T24] hid (null): invalid report_size 51565
[  287.873997][   T24] hid (null): unknown global tag 0x31
[  287.876096][   T24] hid (null): unknown global tag 0xe
[  287.879071][   T24] hid (null): unknown global tag 0x4b
[  287.881325][   T24] hid (null): nested delimiters
[  287.883751][   T24] hid (null): invalid report_count 28500
[  287.887033][   T24] hid (null): usage index exceeded
[  287.888964][   T24] hid (null): unknown global tag 0xe
[  287.890693][   T24] hid (null): bogus close delimiter
[  287.892329][   T24] hid (null): unknown global tag 0xc
[  287.893514][T20286] Cannot find add_set index 65532 as target
[  287.893988][   T24] hid (null): bogus close delimiter
[  287.898872][   T24] hid (null): unknown global tag 0xc
[  287.900957][   T24] hid (null): unknown global tag 0xd
[  287.903166][   T24] hid (null): report_id 7854 is invalid
[  287.904895][   T24] hid (null): unknown global tag 0xd
[  287.907309][   T24] hid (null): nested delimiters
[  287.908998][   T24] hid (null): bogus close delimiter
[  287.911022][   T24] hid (null): invalid report_count 57785
[  287.913253][   T24] hid (null): invalid report_count 315128410
[  287.915381][   T24] hid (null): report_id 5209 is invalid
[  287.917420][   T24] hid (null): unknown global tag 0xc
[  287.919093][   T24] hid (null): unknown global tag 0xec
[  287.920813][   T24] hid (null): unknown global tag 0xe
[  287.922569][   T24] hid (null): global environment stack overflow
[  287.924523][   T24] hid (null): unknown global tag 0xc
[  287.926235][   T24] hid (null): report_id 53199 is invalid
[  287.928537][   T24] hid (null): unknown global tag 0x6b
[  287.930542][   T24] hid (null): invalid report_count -1801399314
[  287.936459][   T24] hid-generic 7EF1:0006:0010.0007: unexpected long global item
[  287.939642][   T24] hid-generic 7EF1:0006:0010.0007: probe with driver hid-generic failed with error -22
[  288.001088][   T40] audit: type=1400 audit(280.723:989): avc:  denied  { relabelto } for  pid=20292 comm="syz.0.4606" name="48" dev="tmpfs" ino=257 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[  288.064907][   T40] audit: type=1400 audit(280.780:990): avc:  denied  { remove_name } for  pid=19747 comm="syz-executor" name="binderfs" dev="tmpfs" ino=261 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[  288.075586][   T40] audit: type=1400 audit(280.780:991): avc:  denied  { rmdir } for  pid=19747 comm="syz-executor" name="48" dev="tmpfs" ino=257 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[  288.183334][T20308] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=45 sclass=netlink_audit_socket pid=20308 comm=syz.4.4611
[  288.307858][T20325] tipc: Failed to obtain node identity
[  288.309732][T20325] tipc: Enabling of bearer <ib:ipvlan0> rejected, failed to enable media
[  288.377878][T20329] delete_channel: no stack
[  288.434172][ T5296] Bluetooth: hci2: command tx timeout
[  288.718593][T20352] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  288.895074][   T40] audit: type=1400 audit(281.565:992): avc:  granted  { setsecparam } for  pid=20360 comm="syz.3.4629" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  289.005241][T20369] Cannot find add_set index 65532 as target
[  289.078778][T20373] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  289.093761][T20373] __nla_validate_parse: 4 callbacks suppressed
[  289.093775][T20373] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4634'.
[  289.126102][T20373] geneve1: entered allmulticast mode
[  289.279493][T20383] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4638'.
[  289.279785][   T40] audit: type=1400 audit(281.921:993): avc:  denied  { bind } for  pid=20380 comm="syz.3.4638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  289.473547][T20392] Cannot find add_set index 65532 as target
[  289.540227][T20397] ufs: You didn't specify the type of your ufs filesystem
[  289.540227][T20397] 
[  289.540227][T20397] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  289.540227][T20397] 
[  289.540227][T20397] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  289.549223][T20397] ufs: ufstype=old is supported read-only
[  289.609498][T20401] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4645'.
[  289.656020][T20405] bond6: option packets_per_slave: invalid value (65547)
[  289.658352][T20405] bond6: option packets_per_slave: allowed values 0 - 65535
[  289.663874][T20405] bond6 (unregistering): Released all slaves
[  289.739248][T20405] bond6: option packets_per_slave: invalid value (65547)
[  289.741672][T20405] bond6: option packets_per_slave: allowed values 0 - 65535
[  289.744900][T20405] bond6 (unregistering): Released all slaves
[  289.865667][T20421] Cannot find add_set index 65532 as target
[  289.895030][T20424] netlink: 'syz.3.4652': attribute type 5 has an invalid length.
[  289.907928][T20426] netlink: 'syz.1.4653': attribute type 12 has an invalid length.
[  289.912419][T20426] netlink: 190972 bytes leftover after parsing attributes in process `syz.1.4653'.
[  289.934559][T20430] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4654'.
[  289.977406][T20426] kvm: kvm [20425]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x5407
[  289.982412][T20426] kvm: kvm [20425]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x5b07
[  289.998774][T20437] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4656'.
[  290.130473][T20443] comedi comedi3: board detection failed
[  290.136245][T20443] comedi comedi3: board detection failed
[  290.142223][T20443] comedi comedi3: board detection failed
[  290.147646][T20443] comedi comedi3: board detection failed
[  290.155003][T20443] comedi comedi3: board detection failed
[  290.160404][T20443] comedi comedi3: board detection failed
[  290.165970][T20443] comedi comedi3: board detection failed
[  290.169494][T20443] comedi comedi3: board detection failed
[  290.174153][T20443] comedi comedi3: board detection failed
[  290.179016][T20443] comedi comedi3: board detection failed
[  290.184861][T20443] comedi comedi3: board detection failed
[  290.190871][T20443] comedi comedi3: board detection failed
[  290.195702][T20443] comedi comedi3: board detection failed
[  290.201594][T20443] comedi comedi3: board detection failed
[  290.206073][T20443] comedi comedi3: board detection failed
[  290.211548][T20443] comedi comedi3: board detection failed
[  290.217053][T20443] comedi comedi3: board detection failed
[  290.221806][T20443] comedi comedi3: board detection failed
[  290.228425][T20443] comedi comedi3: board detection failed
[  290.228840][   T61] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  290.234063][T20443] comedi comedi3: board detection failed
[  290.240700][T20443] comedi comedi3: board detection failed
[  290.246978][T20443] comedi comedi3: board detection failed
[  290.253651][T20443] comedi comedi3: board detection failed
[  290.259630][T20443] comedi comedi3: board detection failed
[  290.263989][T20443] comedi comedi3: board detection failed
[  290.270450][T20443] comedi comedi3: board detection failed
[  290.276865][T20443] comedi comedi3: board detection failed
[  290.283357][T20443] comedi comedi3: board detection failed
[  290.289630][T20443] comedi comedi3: board detection failed
[  290.295086][T20443] comedi comedi3: board detection failed
[  290.301477][T20443] comedi comedi3: board detection failed
[  290.307171][T20443] comedi comedi3: board detection failed
[  290.312880][T20443] comedi comedi3: board detection failed
[  290.383226][T20426] kvm_intel: kvm [20425]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0x1d9) = 0x9cbf
[  290.404672][T20426] kvm: kvm [20425]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0x187) = 0xcabf
[  290.407171][T20448] Cannot find add_set index 65532 as target
[  290.408398][T20426] kvm: kvm [20425]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0x186) = 0x78ae
[  290.410432][   T61] usb 8-1: Using ep0 maxpacket: 8
[  290.420749][   T61] usb 8-1: config 2 interface 0 has no altsetting 0
[  290.424520][   T61] usb 8-1: New USB device found, idVendor=04e2, idProduct=1412, bcdDevice=ca.10
[  290.427406][   T61] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  290.430188][   T61] usb 8-1: Product: syz
[  290.431558][   T61] usb 8-1: Manufacturer: syz
[  290.433075][   T61] usb 8-1: SerialNumber: syz
[  290.434508][T20426] kvm: kvm [20425]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0x11e) = 0x835b
[  290.458085][T20426] kvm: kvm [20425]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x1b4a
[  290.462555][T20426] kvm: kvm [20425]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x553a
[  290.462822][T20450] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4661'.
[  290.617865][T20456] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4664'.
[  290.663657][   T61] usb 8-1: USB disconnect, device number 11
[  290.665479][ T5296] Bluetooth: hci2: command 0x0405 tx timeout
[  290.665536][ T5936] Bluetooth: hci4: command 0x1003 tx timeout
[  290.666193][ T5944] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  290.722308][T20463] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  290.778825][T20469] bond1: option packets_per_slave: invalid value (65547)
[  290.781099][T20469] bond1: option packets_per_slave: allowed values 0 - 65535
[  290.786174][T20469] bond1 (unregistering): Released all slaves
[  290.887569][T20472] lo speed is unknown, defaulting to 1000
[  290.924795][T20469] bond1: option packets_per_slave: invalid value (65547)
[  290.927081][T20469] bond1: option packets_per_slave: allowed values 0 - 65535
[  290.930453][T20469] bond1 (unregistering): Released all slaves
[  290.940947][T20475] netlink: 'syz.4.4669': attribute type 19 has an invalid length.
[  290.943602][T20475] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4669'.
[  290.950775][ T1147] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  290.950846][T20475] netlink: 'syz.4.4669': attribute type 19 has an invalid length.
[  290.954683][ T1147] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  290.956966][T20475] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4669'.
[  290.964572][ T1147] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  290.968777][ T1147] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  291.269857][T20509] Cannot find add_set index 65532 as target
[  291.386967][T20522] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  291.438444][T20536] loop6: detected capacity change from 0 to 524287999
[  291.441696][T19591] buffer_io_error: 10 callbacks suppressed
[  291.441705][T19591] Buffer I/O error on dev loop6, logical block 0, async page read
[  291.448064][T19591] Buffer I/O error on dev loop6, logical block 0, async page read
[  291.451395][T19591] Buffer I/O error on dev loop6, logical block 0, async page read
[  291.454040][T19591] Buffer I/O error on dev loop6, logical block 0, async page read
[  291.456967][T19591] Buffer I/O error on dev loop6, logical block 0, async page read
[  291.459496][T19591] Buffer I/O error on dev loop6, logical block 0, async page read
[  291.461973][T19591] Buffer I/O error on dev loop6, logical block 0, async page read
[  291.464664][T19591] Buffer I/O error on dev loop6, logical block 0, async page read
[  291.467179][T19591] ldm_validate_partition_table(): Disk read failed.
[  291.470967][T19591] Buffer I/O error on dev loop6, logical block 0, async page read
[  291.473819][T19591] Buffer I/O error on dev loop6, logical block 0, async page read
[  291.476420][T19591] Dev loop6: unable to read RDB block 0
[  291.478698][T19591]  loop6: unable to read partition table
[  291.485348][T20536] ldm_validate_partition_table(): Disk read failed.
[  291.488109][T20536] Dev loop6: unable to read RDB block 0
[  291.490700][T20536]  loop6: unable to read partition table
[  291.494696][T20536] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  291.507260][T20545] Cannot find add_set index 65532 as target
[  291.531104][T20548] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  291.537938][T19591] ldm_validate_partition_table(): Disk read failed.
[  291.541082][T20548] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  291.542380][T19591] Dev loop6: unable to read RDB block 0
[  291.546442][T19591]  loop6: unable to read partition table
[  291.550742][T20542] ldm_validate_partition_table(): Disk read failed.
[  291.556208][T20542] Dev loop6: unable to read RDB block 0
[  291.559111][T20542]  loop6: unable to read partition table
[  291.562723][T20542] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  291.580370][   T40] audit: type=1400 audit(284.072:994): avc:  denied  { nosuid_transition } for  pid=20535 comm="syz.1.4689" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process2 permissive=1
[  291.581238][T20536] CIFS mount error: No usable UNC path provided in device string!
[  291.581238][T20536] 
[  291.593468][T20536] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  291.593855][   T40] audit: type=1400 audit(284.072:995): avc:  denied  { transition } for  pid=20535 comm="syz.1.4689" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=1092 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1
[  291.599860][T20548] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  291.609871][   T40] audit: type=1400 audit(284.072:996): avc:  denied  { entrypoint } for  pid=20535 comm="syz.1.4689" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=1092 scontext=system_u:object_r:hugetlbfs_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  291.621862][   T40] audit: type=1400 audit(284.072:997): avc:  denied  { share } for  pid=20535 comm="syz.1.4689" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1
[  291.629622][   T40] audit: type=1400 audit(284.072:998): avc:  denied  { noatsecure } for  pid=20535 comm="syz.1.4689" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1
[  291.674852][T20567] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  291.765706][T20573] Cannot find add_set index 65532 as target
[  291.779414][T20575] xt_l2tp: v2 tid > 0xffff: 16462212
[  291.820622][T20575] netlink: 'syz.0.4703': attribute type 12 has an invalid length.
[  291.823185][T20575] netlink: 'syz.0.4703': attribute type 29 has an invalid length.
[  291.825941][T20575] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2049 sclass=netlink_route_socket pid=20575 comm=syz.0.4703
[  291.845722][T20581] trusted_key: encrypted_key: hex blob is missing
[  291.984672][T20596] Cannot find add_set index 65532 as target
[  292.022487][T20598] ip6erspan0: entered promiscuous mode
[  292.154933][T20623] tmpfs: Bad value for 'mpol'
[  292.155243][T20624] tmpfs: Bad value for 'mpol'
[  292.197304][T20630] Cannot find add_set index 65532 as target
[  292.357591][T20666] tmpfs: Bad value for 'mpol'
[  292.359581][T20666] netlink: 'syz.0.4731': attribute type 1 has an invalid length.
[  292.454660][T20681] delete_channel: no stack
[  292.558780][T20690] input: syz1 as /devices/virtual/input/input21
[  292.578011][T20691] lo speed is unknown, defaulting to 1000
[  292.701364][T20719] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  292.704651][T20719] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  292.704679][T20720] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  292.735149][T20758] kernel profiling enabled (shift: 63)
[  292.736972][T20758] profiling shift: 63 too large
[  292.977570][T20796] bond1: option packets_per_slave: invalid value (65547)
[  292.979871][T20796] bond1: option packets_per_slave: allowed values 0 - 65535
[  292.990970][T20796] bond1 (unregistering): Released all slaves
[  293.008018][T20864] batadv_slave_1: entered promiscuous mode
[  293.047849][T20862] batadv_slave_1: left promiscuous mode
[  293.079407][T20796] bond1: option packets_per_slave: invalid value (65547)
[  293.082324][T20796] bond1: option packets_per_slave: allowed values 0 - 65535
[  293.087588][T20796] bond1 (unregistering): Released all slaves
[  293.435588][T20971] batadv_slave_1: entered promiscuous mode
[  293.440322][T20970] batadv_slave_1: left promiscuous mode
[  293.477665][   T34] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  293.651922][T20977] set_target_v1_checkentry: 3 callbacks suppressed
[  293.651939][T20977] Cannot find add_set index 65532 as target
[  293.659703][   T34] usb 8-1: Using ep0 maxpacket: 8
[  293.665134][   T34] usb 8-1: config 0 has an invalid interface number: 55 but max is 0
[  293.668510][   T34] usb 8-1: config 0 has no interface number 0
[  293.671404][   T34] usb 8-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  293.675901][   T34] usb 8-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  293.680934][   T34] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  293.685459][   T34] usb 8-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  293.690787][   T34] usb 8-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  293.694897][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  293.700371][   T34] usb 8-1: config 0 descriptor??
[  293.713226][   T34] ldusb 8-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  293.721957][T20979] bond5: option packets_per_slave: invalid value (65547)
[  293.724623][T20979] bond5: option packets_per_slave: allowed values 0 - 65535
[  293.732272][T20979] bond5 (unregistering): Released all slaves
[  293.823536][T20979] bond5: option packets_per_slave: invalid value (65547)
[  293.826523][T20979] bond5: option packets_per_slave: allowed values 0 - 65535
[  293.831455][T20979] bond5 (unregistering): Released all slaves
[  293.950099][T21117] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  293.953484][T21117] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  293.955132][T20944] kvm_intel: kvm [20943]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0x900000001
[  293.957191][T21117] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  293.963559][   T24] usb 8-1: USB disconnect, device number 12
[  293.964291][T21117] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[  293.971141][   T24] ldusb 8-1:0.55: LD USB Device #0 now disconnected
[  294.020606][T21129] 8021q: adding VLAN 0 to HW filter on device bond5
[  294.108030][T21198] kernel profiling enabled (shift: 63)
[  294.110921][T21198] profiling shift: 63 too large
[  294.356921][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  294.356931][   T40] audit: type=1326 audit(286.672:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21215 comm="syz.4.4779" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647f18f6c9 code=0x7ffc0000
[  294.366809][   T40] audit: type=1326 audit(286.672:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21215 comm="syz.4.4779" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647f18f6c9 code=0x7ffc0000
[  294.373807][   T40] audit: type=1326 audit(286.672:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21215 comm="syz.4.4779" exe="/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f647f18f6c9 code=0x7ffc0000
[  294.381944][   T40] audit: type=1326 audit(286.672:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21215 comm="syz.4.4779" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647f18f6c9 code=0x7ffc0000
[  294.389197][   T40] audit: type=1326 audit(286.672:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21215 comm="syz.4.4779" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f647f18f6c9 code=0x7ffc0000
[  294.394013][T21224] kernel profiling enabled (shift: 63)
[  294.396098][   T40] audit: type=1326 audit(286.672:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21215 comm="syz.4.4779" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647f18f6c9 code=0x7ffc0000
[  294.404516][T21224] profiling shift: 63 too large
[  294.405213][   T40] audit: type=1326 audit(286.672:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21215 comm="syz.4.4779" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647f18f6c9 code=0x7ffc0000
[  294.414401][   T40] audit: type=1326 audit(286.672:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21215 comm="syz.4.4779" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f647f18f6c9 code=0x7ffc0000
[  294.452293][T21229] program syz.0.4782 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  294.456149][T21229] ata1.00: invalid command format 6
[  294.548760][   T40] audit: type=1400 audit(286.849:1009): avc:  denied  { map } for  pid=21231 comm="syz.0.4783" path="socket:[70639]" dev="sockfs" ino=70639 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  294.657723][T21239] batadv_slave_1: entered promiscuous mode
[  294.661364][T21238] batadv_slave_1: left promiscuous mode
[  294.688164][T21241] can0: slcan on ttyprintk.
[  294.750877][T21240] can0 (unregistered): slcan off ttyprintk.
[  294.818381][T21255] netlink: 'syz.4.4790': attribute type 29 has an invalid length.
[  294.821890][T21256] netlink: 'syz.4.4790': attribute type 29 has an invalid length.
[  294.826165][T21255] __nla_validate_parse: 22 callbacks suppressed
[  294.826179][T21255] netlink: 500 bytes leftover after parsing attributes in process `syz.4.4790'.
[  294.829549][T21256] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4790'.
[  294.906091][   T40] audit: type=1400 audit(287.186:1010): avc:  denied  { listen } for  pid=21275 comm="syz.3.4792" lport=38074 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  294.906191][T21277] sctp: [Deprecated]: syz.3.4792 (pid 21277) Use of struct sctp_assoc_value in delayed_ack socket option.
[  294.906191][T21277] Use struct sctp_sack_info instead
[  295.064838][T21288] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  295.108462][T21295] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4798'.
[  295.111333][T21295] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4798'.
[  295.114952][T21295] netlink: 'syz.3.4798': attribute type 14 has an invalid length.
[  295.200484][T21295] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4798'.
[  295.203425][T21295] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4798'.
[  295.580889][T21324] lo speed is unknown, defaulting to 1000
[  295.877971][T21382] CIFS: Unable to determine destination address
[  296.193503][   T34] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  296.353823][   T34] usb 9-1: Using ep0 maxpacket: 8
[  296.357669][   T34] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  296.361830][   T34] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  296.366108][   T34] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  296.370292][   T34] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  296.375814][   T34] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  296.379686][   T34] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.601347][   T34] usb 9-1: GET_CAPABILITIES returned 0
[  296.603158][   T34] usbtmc 9-1:16.0: can't read capabilities
[  296.822166][    C3] usbtmc 9-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  296.839222][   T34] usb 9-1: USB disconnect, device number 10
[  297.744713][T21411] af_packet: tpacket_rcv: packet too big, clamped from 2 to 4294967272. macoff=96
[  297.753187][T21420] netlink: 224 bytes leftover after parsing attributes in process `syz.3.4823'.
[  297.769469][T21432] FAULT_INJECTION: forcing a failure.
[  297.769469][T21432] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  297.770063][T21428] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4824'.
[  297.773479][T21432] CPU: 0 UID: 0 PID: 21432 Comm: syz.1.4826 Not tainted syzkaller #0 PREEMPT(full) 
[  297.773493][T21432] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  297.773500][T21432] Call Trace:
[  297.773504][T21432]  <TASK>
[  297.773508][T21432]  dump_stack_lvl+0x16c/0x1f0
[  297.773528][T21432]  should_fail_ex+0x512/0x640
[  297.773542][T21432]  _copy_from_user+0x2e/0xd0
[  297.773556][T21432]  move_addr_to_kernel+0x65/0x170
[  297.773568][T21432]  __sys_sendto+0x1be/0x520
[  297.773581][T21432]  ? __pfx___sys_sendto+0x10/0x10
[  297.773604][T21432]  ? ksys_write+0x1ac/0x250
[  297.773614][T21432]  ? __pfx_ksys_write+0x10/0x10
[  297.773625][T21432]  __x64_sys_sendto+0xe0/0x1c0
[  297.773636][T21432]  ? do_syscall_64+0x91/0xfa0
[  297.773646][T21432]  ? lockdep_hardirqs_on+0x7c/0x110
[  297.773655][T21432]  do_syscall_64+0xcd/0xfa0
[  297.773665][T21432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.773676][T21432] RIP: 0033:0x7faae3b8f6c9
[  297.773684][T21432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.773694][T21432] RSP: 002b:00007faae4a40038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  297.773704][T21432] RAX: ffffffffffffffda RBX: 00007faae3de5fa0 RCX: 00007faae3b8f6c9
[  297.773710][T21432] RDX: 000000000000000e RSI: 0000200000000180 RDI: 0000000000000003
[  297.773716][T21432] RBP: 00007faae4a40090 R08: 0000200000000140 R09: 0000000000000014
[  297.773722][T21432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.773728][T21432] R13: 00007faae3de6038 R14: 00007faae3de5fa0 R15: 00007ffe388ea298
[  297.773741][T21432]  </TASK>
[  297.922102][T21442] Cannot find add_set index 65532 as target
[  298.032903][T21485] batadv_slave_1: entered promiscuous mode
[  298.035390][T21484] batadv_slave_1: left promiscuous mode
[  298.171343][T21500] mkiss: ax0: crc mode is auto.
[  298.311486][T21510] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4841'.
[  298.402168][T21523] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4845'.
[  298.421148][T21523] bond1: option packets_per_slave: invalid value (65547)
[  298.423576][T21523] bond1: option packets_per_slave: allowed values 0 - 65535
[  298.427270][T21523] bond1 (unregistering): Released all slaves
[  298.442447][T21555] macvlan0: entered promiscuous mode
[  298.511716][T21523] bond1: option packets_per_slave: invalid value (65547)
[  298.514358][T21523] bond1: option packets_per_slave: allowed values 0 - 65535
[  298.518083][T21523] bond1 (unregistering): Released all slaves
[  298.803122][T21680] bond1: option packets_per_slave: invalid value (65547)
[  298.806259][T21680] bond1: option packets_per_slave: allowed values 0 - 65535
[  298.811099][T21680] bond1 (unregistering): Released all slaves
[  298.845782][T21752] IPVS: sync thread started: state = MASTER, mcast_ifn = bridge_slave_0, syncid = 0, id = 0
[  298.846396][T21748] validate_nla: 1 callbacks suppressed
[  298.846409][T21748] netlink: 'syz.4.4858': attribute type 1 has an invalid length.
[  298.874606][T21748] 8021q: adding VLAN 0 to HW filter on device bond1
[  298.887519][T21748] bond1: (slave geneve2): making interface the new active one
[  298.895889][T21748] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  298.919504][T21680] bond1: option packets_per_slave: invalid value (65547)
[  298.929930][T21680] bond1: option packets_per_slave: allowed values 0 - 65535
[  298.930360][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  298.943253][ T5939] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  298.946307][ T5939] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  298.950553][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  298.953850][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  298.958377][T21833] kernel profiling enabled (shift: 63)
[  298.960117][T21833] profiling shift: 63 too large
[  299.134625][T21680] bond1 (unregistering): Released all slaves
[  299.179207][T16210] bond0: (slave syz_tun): Releasing backup interface
[  299.228626][T21838] bond6: peer notification delay (8) is not a multiple of miimon (100), value rounded to 0 ms
[  299.234906][T21838] 8021q: adding VLAN 0 to HW filter on device bond6
[  299.255491][T21793] lo speed is unknown, defaulting to 1000
[  299.340326][T21922] sch_tbf: burst 21990 is lower than device lo mtu (65550) !
[  299.566292][T21793] chnl_net:caif_netlink_parms(): no params data found
[  299.568528][T22043] support for the xor transformation has been removed.
[  299.699174][T21793] bridge0: port 1(bridge_slave_0) entered blocking state
[  299.702582][T21793] bridge0: port 1(bridge_slave_0) entered disabled state
[  299.704987][T21793] bridge_slave_0: entered allmulticast mode
[  299.707716][T21793] bridge_slave_0: entered promiscuous mode
[  299.711982][T21793] bridge0: port 2(bridge_slave_1) entered blocking state
[  299.714343][T21793] bridge0: port 2(bridge_slave_1) entered disabled state
[  299.716597][T21793] bridge_slave_1: entered allmulticast mode
[  299.719225][T21793] bridge_slave_1: entered promiscuous mode
[  299.763501][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  299.763512][   T40] audit: type=1400 audit(291.722:1020): avc:  denied  { execute_no_trans } for  pid=22264 comm="syz.0.4872" path="/file1" dev="ramfs" ino=75570 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  299.768191][T21793] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  299.777671][T21793] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  299.818833][T22428] Cannot find add_set index 65532 as target
[  299.836649][T21793] team0: Port device team_slave_0 added
[  299.845981][T21793] team0: Port device team_slave_1 added
[  299.909506][T21793] batman_adv: batadv0: Adding interface: batadv_slave_0
[  299.911635][T21793] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  299.929235][T21793] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  299.935560][T21793] batman_adv: batadv0: Adding interface: batadv_slave_1
[  299.939872][T21793] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  299.950791][T21793] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  300.027687][T21793] hsr_slave_0: entered promiscuous mode
[  300.030396][T21793] hsr_slave_1: entered promiscuous mode
[  300.033863][T21793] debugfs: 'hsr0' already exists in 'hsr'
[  300.034006][T22630] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.4881' sets config #1
[  300.036353][T21793] Cannot create hsr debugfs directory
[  300.057952][T22630] kvm: kvm [22629]: vcpu10, guest rIP: 0x9121 Unhandled WRMSR(0xc1) = 0x460
[  300.062093][T22630] kvm: kvm [22629]: vcpu10, guest rIP: 0x9145 Unhandled WRMSR(0xc1) = 0x421
[  300.070615][T22630] kvm: kvm [22629]: vcpu10, guest rIP: 0x9121 Unhandled WRMSR(0xc1) = 0x451
[  300.076250][T22630] kvm: kvm [22629]: vcpu10, guest rIP: 0x9145 Unhandled WRMSR(0xc1) = 0x430
[  300.089013][T22630] kvm: kvm [22629]: vcpu10, guest rIP: 0x9121 Unhandled WRMSR(0xc1) = 0x480
[  300.093508][T22630] kvm: kvm [22629]: vcpu10, guest rIP: 0x9145 Unhandled WRMSR(0xc1) = 0x4b1
[  300.102094][T22630] kvm: kvm [22629]: vcpu10, guest rIP: 0x9121 Unhandled WRMSR(0xc1) = 0x4e1
[  300.109732][T22883] FAULT_INJECTION: forcing a failure.
[  300.109732][T22883] name failslab, interval 1, probability 0, space 0, times 0
[  300.114491][T22883] CPU: 2 UID: 0 PID: 22883 Comm: syz.0.4885 Not tainted syzkaller #0 PREEMPT(full) 
[  300.114505][T22883] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  300.114512][T22883] Call Trace:
[  300.114516][T22883]  <TASK>
[  300.114520][T22883]  dump_stack_lvl+0x16c/0x1f0
[  300.114539][T22883]  should_fail_ex+0x512/0x640
[  300.114552][T22883]  ? __kmalloc_noprof+0xca/0x880
[  300.114568][T22883]  should_failslab+0xc2/0x120
[  300.114581][T22883]  __kmalloc_noprof+0xdd/0x880
[  300.114595][T22883]  ? kernfs_fop_write_iter+0x237/0x570
[  300.114608][T22883]  ? kernfs_fop_write_iter+0x237/0x570
[  300.114618][T22883]  kernfs_fop_write_iter+0x237/0x570
[  300.114630][T22883]  vfs_write+0x7d3/0x11d0
[  300.114641][T22883]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  300.114652][T22883]  ? __pfx___mutex_lock+0x10/0x10
[  300.114663][T22883]  ? __pfx_vfs_write+0x10/0x10
[  300.114681][T22883]  ksys_write+0x12a/0x250
[  300.114690][T22883]  ? __pfx_ksys_write+0x10/0x10
[  300.114704][T22883]  do_syscall_64+0xcd/0xfa0
[  300.114715][T22883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.114725][T22883] RIP: 0033:0x7fe552d8f6c9
[  300.114734][T22883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  300.114744][T22883] RSP: 002b:00007fe553bbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  300.114754][T22883] RAX: ffffffffffffffda RBX: 00007fe552fe5fa0 RCX: 00007fe552d8f6c9
[  300.114760][T22883] RDX: 0000000000000012 RSI: 00002000000000c0 RDI: 0000000000000003
[  300.114766][T22883] RBP: 00007fe553bbc090 R08: 0000000000000000 R09: 0000000000000000
[  300.114772][T22883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  300.114777][T22883] R13: 00007fe552fe6038 R14: 00007fe552fe5fa0 R15: 00007ffe70935398
[  300.114791][T22883]  </TASK>
[  300.183375][    C2] vkms_vblank_simulate: vblank timer overrun
[  300.234109][T21793] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  300.239211][T21793] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.328914][T21793] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  300.332635][T21793] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.356453][T22990] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2064 sclass=netlink_route_socket pid=22990 comm=syz.1.4892
[  300.361296][T22990] o2cb: This node has not been configured.
[  300.363328][T22990] o2cb: Cluster check failed. Fix errors before retrying.
[  300.366911][   T40] audit: type=1400 audit(292.292:1021): avc:  denied  { setattr } for  pid=22992 comm="syz.0.4893" name="SCTPv6" dev="sockfs" ino=74637 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  300.385405][T22990] (syz.1.4892,22990,1):user_dlm_register:674 ERROR: status = -22
[  300.388629][T22990] (syz.1.4892,22990,1):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file0"
[  300.390986][T21793] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  300.396045][T21793] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.406086][T22998] kernel profiling enabled (shift: 63)
[  300.408847][T22998] profiling shift: 63 too large
[  300.424367][T22987] __nla_validate_parse: 13 callbacks suppressed
[  300.424381][T22987] netlink: 57 bytes leftover after parsing attributes in process `syz.4.4889'.
[  300.464992][T21793] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  300.468519][T21793] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.651543][T21793] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  300.657072][T21793] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  300.664865][T21793] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  300.672678][T21793] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  300.734496][T21793] 8021q: adding VLAN 0 to HW filter on device bond0
[  300.744705][T21793] 8021q: adding VLAN 0 to HW filter on device team0
[  300.749812][ T1151] bridge0: port 1(bridge_slave_0) entered blocking state
[  300.752695][ T1151] bridge0: port 1(bridge_slave_0) entered forwarding state
[  300.758477][ T1161] bridge0: port 2(bridge_slave_1) entered blocking state
[  300.760932][ T1161] bridge0: port 2(bridge_slave_1) entered forwarding state
[  300.886225][T21793] 8021q: adding VLAN 0 to HW filter on device batadv0
[  300.918519][T21793] veth0_vlan: entered promiscuous mode
[  300.930044][T21793] veth1_vlan: entered promiscuous mode
[  300.953012][T21793] veth0_macvtap: entered promiscuous mode
[  300.958496][T21793] veth1_macvtap: entered promiscuous mode
[  300.974102][T21793] batman_adv: batadv0: Interface activated: batadv_slave_0
[  300.982940][T21793] batman_adv: batadv0: Interface activated: batadv_slave_1
[  300.992013][T11163] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  300.995808][T11163] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  301.000197][T11163] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  301.003262][T11163] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  301.050119][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  301.053417][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  301.072643][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  301.076096][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  301.159947][T23057] FAULT_INJECTION: forcing a failure.
[  301.159947][T23057] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  301.165721][T23057] CPU: 2 UID: 0 PID: 23057 Comm: syz.0.4896 Not tainted syzkaller #0 PREEMPT(full) 
[  301.165742][T23057] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  301.165752][T23057] Call Trace:
[  301.165758][T23057]  <TASK>
[  301.165764][T23057]  dump_stack_lvl+0x16c/0x1f0
[  301.165793][T23057]  should_fail_ex+0x512/0x640
[  301.165816][T23057]  _copy_from_iter+0x29f/0x1720
[  301.165841][T23057]  ? __pfx__copy_from_iter+0x10/0x10
[  301.165860][T23057]  ? rcu_is_watching+0x12/0xc0
[  301.165880][T23057]  ? trace_kmalloc+0x2b/0xd0
[  301.165896][T23057]  ? __kmalloc_noprof+0x34f/0x880
[  301.165917][T23057]  ? kernfs_fop_write_iter+0x237/0x570
[  301.165938][T23057]  kernfs_fop_write_iter+0x19a/0x570
[  301.165956][T23057]  vfs_write+0x7d3/0x11d0
[  301.165973][T23057]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  301.165989][T23057]  ? __pfx___mutex_lock+0x10/0x10
[  301.166012][T23057]  ? __pfx_vfs_write+0x10/0x10
[  301.166042][T23057]  ksys_write+0x12a/0x250
[  301.166057][T23057]  ? __pfx_ksys_write+0x10/0x10
[  301.166078][T23057]  do_syscall_64+0xcd/0xfa0
[  301.166095][T23057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  301.166109][T23057] RIP: 0033:0x7fe552d8f6c9
[  301.166121][T23057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  301.166135][T23057] RSP: 002b:00007fe553bbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  301.166150][T23057] RAX: ffffffffffffffda RBX: 00007fe552fe5fa0 RCX: 00007fe552d8f6c9
[  301.166160][T23057] RDX: 0000000000000012 RSI: 00002000000000c0 RDI: 0000000000000003
[  301.166169][T23057] RBP: 00007fe553bbc090 R08: 0000000000000000 R09: 0000000000000000
[  301.166179][T23057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  301.166188][T23057] R13: 00007fe552fe6038 R14: 00007fe552fe5fa0 R15: 00007ffe70935398
[  301.166212][T23057]  </TASK>
[  301.240154][    C2] vkms_vblank_simulate: vblank timer overrun
[  301.242708][ T5944] Bluetooth: hci0: command tx timeout
[  302.202764][ T5944] Bluetooth: hci2: command 0x0405 tx timeout
[  303.400254][ T5939] Bluetooth: hci0: command tx timeout
[  305.624569][ T5939] Bluetooth: hci0: command tx timeout
[  307.859078][ T5939] Bluetooth: hci0: command tx timeout
[  312.940353][T23074] FAULT_INJECTION: forcing a failure.
[  312.940353][T23074] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  312.944719][T23074] CPU: 2 UID: 0 PID: 23074 Comm: syz.3.4903 Not tainted syzkaller #0 PREEMPT(full) 
[  312.944733][T23074] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  312.944739][T23074] Call Trace:
[  312.944743][T23074]  <TASK>
[  312.944748][T23074]  dump_stack_lvl+0x16c/0x1f0
[  312.944768][T23074]  should_fail_ex+0x512/0x640
[  312.944783][T23074]  _copy_from_user+0x2e/0xd0
[  312.944796][T23074]  move_addr_to_kernel+0x65/0x170
[  312.944808][T23074]  __sys_sendto+0x1be/0x520
[  312.944821][T23074]  ? __pfx___sys_sendto+0x10/0x10
[  312.944843][T23074]  ? ksys_write+0x1ac/0x250
[  312.944853][T23074]  ? __pfx_ksys_write+0x10/0x10
[  312.944864][T23074]  __x64_sys_sendto+0xe0/0x1c0
[  312.944876][T23074]  ? do_syscall_64+0x91/0xfa0
[  312.944885][T23074]  ? lockdep_hardirqs_on+0x7c/0x110
[  312.944894][T23074]  do_syscall_64+0xcd/0xfa0
[  312.944905][T23074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.944916][T23074] RIP: 0033:0x7f438e38f6c9
[  312.944925][T23074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  312.944955][T23074] RSP: 002b:00007f438f280038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  312.944970][T23074] RAX: ffffffffffffffda RBX: 00007f438e5e5fa0 RCX: 00007f438e38f6c9
[  312.944980][T23074] RDX: 0000000000010000 RSI: 0000200000000180 RDI: 0000000000000003
[  312.944988][T23074] RBP: 00007f438f280090 R08: 0000200000000140 R09: 0000000000000014
[  312.944995][T23074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  312.945001][T23074] R13: 00007f438e5e6038 R14: 00007f438e5e5fa0 R15: 00007ffcf8cea498
[  312.945015][T23074]  </TASK>
[  313.009042][T23076] overlayfs: statfs failed on './file0'
[  313.070060][T23084] Cannot find add_set index 65532 as target
[  313.079292][T23085] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4904'.
[  313.136458][T23093] sch_tbf: burst 21990 is lower than device lo mtu (65550) !
[  313.156114][T23099] kernel profiling enabled (shift: 63)
[  313.157958][T23099] profiling shift: 63 too large
[  313.209414][T23110] kernel profiling enabled (shift: 63)
[  313.211770][T23110] profiling shift: 63 too large
[  313.213991][T23110] FAULT_INJECTION: forcing a failure.
[  313.213991][T23110] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  313.220252][T23110] CPU: 1 UID: 0 PID: 23110 Comm: syz.4.4914 Not tainted syzkaller #0 PREEMPT(full) 
[  313.220273][T23110] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  313.220283][T23110] Call Trace:
[  313.220289][T23110]  <TASK>
[  313.220295][T23110]  dump_stack_lvl+0x16c/0x1f0
[  313.220325][T23110]  should_fail_ex+0x512/0x640
[  313.220348][T23110]  _copy_to_user+0x32/0xd0
[  313.220372][T23110]  simple_read_from_buffer+0xcb/0x170
[  313.220399][T23110]  proc_fail_nth_read+0x197/0x240
[  313.220420][T23110]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  313.220440][T23110]  ? rw_verify_area+0xcf/0x6c0
[  313.220464][T23110]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  313.220482][T23110]  vfs_read+0x1e4/0xcf0
[  313.220500][T23110]  ? __pfx___mutex_lock+0x10/0x10
[  313.220517][T23110]  ? __pfx_vfs_read+0x10/0x10
[  313.220538][T23110]  ? __fget_files+0x20e/0x3c0
[  313.220560][T23110]  ksys_read+0x12a/0x250
[  313.220575][T23110]  ? __pfx_ksys_read+0x10/0x10
[  313.220596][T23110]  do_syscall_64+0xcd/0xfa0
[  313.220613][T23110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.220629][T23110] RIP: 0033:0x7f647f18e0dc
[  313.220641][T23110] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  313.220656][T23110] RSP: 002b:00007f6480032030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  313.220671][T23110] RAX: ffffffffffffffda RBX: 00007f647f3e5fa0 RCX: 00007f647f18e0dc
[  313.220681][T23110] RDX: 000000000000000f RSI: 00007f64800320a0 RDI: 0000000000000004
[  313.220691][T23110] RBP: 00007f6480032090 R08: 0000000000000000 R09: 0000000000000000
[  313.220700][T23110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.220710][T23110] R13: 00007f647f3e6038 R14: 00007f647f3e5fa0 R15: 00007ffdbd610628
[  313.220733][T23110]  </TASK>
[  313.309027][T23113] Cannot find add_set index 65532 as target
[  313.384517][T23120] autofs: Unknown parameter 'dummy0'
[  313.384716][T23121] overlayfs: statfs failed on './file0'
[  313.419279][   T53] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  313.530023][T23128] FAULT_INJECTION: forcing a failure.
[  313.530023][T23128] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  313.534143][T23128] CPU: 3 UID: 0 PID: 23128 Comm: syz.1.4921 Not tainted syzkaller #0 PREEMPT(full) 
[  313.534157][T23128] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  313.534163][T23128] Call Trace:
[  313.534166][T23128]  <TASK>
[  313.534171][T23128]  dump_stack_lvl+0x16c/0x1f0
[  313.534190][T23128]  should_fail_ex+0x512/0x640
[  313.534205][T23128]  _copy_from_iter+0x29f/0x1720
[  313.534221][T23128]  ? __pfx__copy_from_iter+0x10/0x10
[  313.534234][T23128]  ? find_held_lock+0x2b/0x80
[  313.534247][T23128]  ? dev_get_by_index+0x17c/0x380
[  313.534264][T23128]  packet_sendmsg+0x1cef/0x5850
[  313.534282][T23128]  ? __lock_acquire+0xb8a/0x1c90
[  313.534294][T23128]  ? sock_has_perm+0x259/0x2f0
[  313.534311][T23128]  ? __pfx_sock_has_perm+0x10/0x10
[  313.534327][T23128]  ? __pfx_packet_sendmsg+0x10/0x10
[  313.534347][T23128]  __sys_sendto+0x4a3/0x520
[  313.534361][T23128]  ? __pfx___sys_sendto+0x10/0x10
[  313.534383][T23128]  ? ksys_write+0x1ac/0x250
[  313.534393][T23128]  ? __pfx_ksys_write+0x10/0x10
[  313.534404][T23128]  __x64_sys_sendto+0xe0/0x1c0
[  313.534415][T23128]  ? do_syscall_64+0x91/0xfa0
[  313.534425][T23128]  ? lockdep_hardirqs_on+0x7c/0x110
[  313.534434][T23128]  do_syscall_64+0xcd/0xfa0
[  313.534444][T23128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.534454][T23128] RIP: 0033:0x7faae3b8f6c9
[  313.534463][T23128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.534472][T23128] RSP: 002b:00007faae4a40038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  313.534482][T23128] RAX: ffffffffffffffda RBX: 00007faae3de5fa0 RCX: 00007faae3b8f6c9
[  313.534488][T23128] RDX: 0000000000010000 RSI: 0000200000000180 RDI: 0000000000000003
[  313.534494][T23128] RBP: 00007faae4a40090 R08: 0000200000000140 R09: 0000000000000014
[  313.534501][T23128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.534506][T23128] R13: 00007faae3de6038 R14: 00007faae3de5fa0 R15: 00007ffe388ea298
[  313.534520][T23128]  </TASK>
[  313.628663][T23132] program syz.1.4922 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  313.633148][   T53] usb 5-1: Using ep0 maxpacket: 32
[  313.636642][   T53] usb 5-1: config 8 has an invalid interface number: 203 but max is 0
[  313.639536][   T53] usb 5-1: config 8 has no interface number 0
[  313.642034][   T53] usb 5-1: config 8 interface 203 has no altsetting 0
[  313.646904][   T53] usb 5-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice=eb.7a
[  313.650356][   T53] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  313.653195][   T53] usb 5-1: Product: syz
[  313.655795][   T53] usb 5-1: Manufacturer: syz
[  313.657460][   T53] usb 5-1: SerialNumber: syz
[  313.665695][T23134] delete_channel: no stack
[  313.700208][T23141] Cannot find add_set index 65532 as target
[  313.775210][T23147] overlayfs: statfs failed on './file0'
[  313.851196][T23154] FAULT_INJECTION: forcing a failure.
[  313.851196][T23154] name failslab, interval 1, probability 0, space 0, times 0
[  313.855110][T23154] CPU: 3 UID: 0 PID: 23154 Comm: syz.4.4932 Not tainted syzkaller #0 PREEMPT(full) 
[  313.855124][T23154] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  313.855130][T23154] Call Trace:
[  313.855134][T23154]  <TASK>
[  313.855139][T23154]  dump_stack_lvl+0x16c/0x1f0
[  313.855158][T23154]  should_fail_ex+0x512/0x640
[  313.855171][T23154]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  313.855188][T23154]  should_failslab+0xc2/0x120
[  313.855201][T23154]  kmem_cache_alloc_node_noprof+0x78/0x770
[  313.855227][T23154]  ? __lock_acquire+0x622/0x1c90
[  313.855237][T23154]  ? __alloc_skb+0x2b2/0x380
[  313.855253][T23154]  ? __alloc_skb+0x2b2/0x380
[  313.855264][T23154]  __alloc_skb+0x2b2/0x380
[  313.855275][T23154]  ? __pfx___alloc_skb+0x10/0x10
[  313.855292][T23154]  alloc_skb_with_frags+0xe0/0x860
[  313.855307][T23154]  ? __might_fault+0xe3/0x190
[  313.855321][T23154]  ? __might_fault+0x13b/0x190
[  313.855337][T23154]  sock_alloc_send_pskb+0x7f9/0x980
[  313.855351][T23154]  ? _copy_from_iter+0x15d/0x1720
[  313.855366][T23154]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  313.855378][T23154]  ? find_held_lock+0x2b/0x80
[  313.855391][T23154]  ? dev_get_by_index+0x17c/0x380
[  313.855408][T23154]  packet_sendmsg+0x2054/0x5850
[  313.855430][T23154]  ? sock_has_perm+0x259/0x2f0
[  313.855446][T23154]  ? __pfx_sock_has_perm+0x10/0x10
[  313.855462][T23154]  ? __pfx_packet_sendmsg+0x10/0x10
[  313.855482][T23154]  __sys_sendto+0x4a3/0x520
[  313.855495][T23154]  ? __pfx___sys_sendto+0x10/0x10
[  313.855518][T23154]  ? ksys_write+0x1ac/0x250
[  313.855528][T23154]  ? __pfx_ksys_write+0x10/0x10
[  313.855539][T23154]  __x64_sys_sendto+0xe0/0x1c0
[  313.855550][T23154]  ? do_syscall_64+0x91/0xfa0
[  313.855559][T23154]  ? lockdep_hardirqs_on+0x7c/0x110
[  313.855569][T23154]  do_syscall_64+0xcd/0xfa0
[  313.855579][T23154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.855589][T23154] RIP: 0033:0x7f647f18f6c9
[  313.855598][T23154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.855607][T23154] RSP: 002b:00007f6480032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  313.855618][T23154] RAX: ffffffffffffffda RBX: 00007f647f3e5fa0 RCX: 00007f647f18f6c9
[  313.855624][T23154] RDX: 0000000000010000 RSI: 0000200000000180 RDI: 0000000000000003
[  313.855630][T23154] RBP: 00007f6480032090 R08: 0000200000000140 R09: 0000000000000014
[  313.855635][T23154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.855641][T23154] R13: 00007f647f3e6038 R14: 00007f647f3e5fa0 R15: 00007ffdbd610628
[  313.855655][T23154]  </TASK>
[  313.949341][   T53] port100 5-1:8.203: NFC: Could not find bulk-in or bulk-out endpoint
[  313.954960][   T53] usb 5-1: USB disconnect, device number 6
[  314.080869][T23175] Cannot find add_set index 65532 as target
[  314.360165][T10475] usb 8-1: new full-speed USB device number 13 using dummy_hcd
[  314.404077][T23205] Cannot find add_set index 65532 as target
[  314.431760][T23203] netlink: 'syz.4.4946': attribute type 29 has an invalid length.
[  314.569777][T23221] netlink: 'syz.4.4951': attribute type 7 has an invalid length.
[  314.573511][T23221] netlink: 'syz.4.4951': attribute type 7 has an invalid length.
[  314.866191][T23242] Cannot find add_set index 65532 as target
[  314.873668][T23240] netlink: 68 bytes leftover after parsing attributes in process `syz.4.4958'.
[  314.887861][T10475] usb 8-1: unable to get BOS descriptor or descriptor too short
[  314.892907][T10475] usb 8-1: unable to read config index 0 descriptor/start: -71
[  314.895821][T10475] usb 8-1: can't read configurations, error -71
[  315.065952][T23262] FAULT_INJECTION: forcing a failure.
[  315.065952][T23262] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  315.070499][T23262] CPU: 2 UID: 0 PID: 23262 Comm: syz.4.4966 Not tainted syzkaller #0 PREEMPT(full) 
[  315.070513][T23262] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  315.070520][T23262] Call Trace:
[  315.070524][T23262]  <TASK>
[  315.070528][T23262]  dump_stack_lvl+0x16c/0x1f0
[  315.070549][T23262]  should_fail_ex+0x512/0x640
[  315.070564][T23262]  _copy_from_user+0x2e/0xd0
[  315.070578][T23262]  copy_msghdr_from_user+0x98/0x160
[  315.070592][T23262]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  315.070612][T23262]  ___sys_sendmsg+0xfe/0x1d0
[  315.070626][T23262]  ? __pfx____sys_sendmsg+0x10/0x10
[  315.070638][T23262]  ? __lock_acquire+0x622/0x1c90
[  315.070663][T23262]  __sys_sendmsg+0x16d/0x220
[  315.070676][T23262]  ? __pfx___sys_sendmsg+0x10/0x10
[  315.070698][T23262]  do_syscall_64+0xcd/0xfa0
[  315.070709][T23262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.070719][T23262] RIP: 0033:0x7f647f18f6c9
[  315.070728][T23262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.070738][T23262] RSP: 002b:00007f6480032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  315.070747][T23262] RAX: ffffffffffffffda RBX: 00007f647f3e5fa0 RCX: 00007f647f18f6c9
[  315.070754][T23262] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000007
[  315.070760][T23262] RBP: 00007f6480032090 R08: 0000000000000000 R09: 0000000000000000
[  315.070766][T23262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.070772][T23262] R13: 00007f647f3e6038 R14: 00007f647f3e5fa0 R15: 00007ffdbd610628
[  315.070785][T23262]  </TASK>
[  315.280200][T23316] Cannot find add_set index 65532 as target
[  315.349295][T23321] x_tables: duplicate underflow at hook 1
[  315.466555][T23332] FAULT_INJECTION: forcing a failure.
[  315.466555][T23332] name failslab, interval 1, probability 0, space 0, times 0
[  315.471926][T23332] CPU: 0 UID: 0 PID: 23332 Comm: syz.3.4979 Not tainted syzkaller #0 PREEMPT(full) 
[  315.471948][T23332] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  315.471960][T23332] Call Trace:
[  315.471966][T23332]  <TASK>
[  315.471974][T23332]  dump_stack_lvl+0x16c/0x1f0
[  315.472021][T23332]  should_fail_ex+0x512/0x640
[  315.472042][T23332]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  315.472069][T23332]  should_failslab+0xc2/0x120
[  315.472086][T23332]  kmem_cache_alloc_node_noprof+0x78/0x770
[  315.472106][T23332]  ? __alloc_skb+0x2b2/0x380
[  315.472130][T23332]  ? __alloc_skb+0x2b2/0x380
[  315.472148][T23332]  ? __pfx_netlink_insert+0x10/0x10
[  315.472173][T23332]  __alloc_skb+0x2b2/0x380
[  315.472192][T23332]  ? __pfx___alloc_skb+0x10/0x10
[  315.472213][T23332]  ? netlink_autobind.isra.0+0x158/0x370
[  315.472245][T23332]  netlink_alloc_large_skb+0x69/0x140
[  315.472271][T23332]  netlink_sendmsg+0x698/0xdd0
[  315.472301][T23332]  ? __pfx_netlink_sendmsg+0x10/0x10
[  315.472336][T23332]  ____sys_sendmsg+0xa98/0xc70
[  315.472353][T23332]  ? copy_msghdr_from_user+0x10a/0x160
[  315.472377][T23332]  ? __pfx_____sys_sendmsg+0x10/0x10
[  315.472406][T23332]  ___sys_sendmsg+0x134/0x1d0
[  315.472430][T23332]  ? __pfx____sys_sendmsg+0x10/0x10
[  315.472450][T23332]  ? __lock_acquire+0x622/0x1c90
[  315.472498][T23332]  __sys_sendmsg+0x16d/0x220
[  315.472521][T23332]  ? __pfx___sys_sendmsg+0x10/0x10
[  315.472561][T23332]  do_syscall_64+0xcd/0xfa0
[  315.472579][T23332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.472596][T23332] RIP: 0033:0x7f438e38f6c9
[  315.472610][T23332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.472626][T23332] RSP: 002b:00007f438f280038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  315.472642][T23332] RAX: ffffffffffffffda RBX: 00007f438e5e5fa0 RCX: 00007f438e38f6c9
[  315.472653][T23332] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000007
[  315.472663][T23332] RBP: 00007f438f280090 R08: 0000000000000000 R09: 0000000000000000
[  315.472672][T23332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.472682][T23332] R13: 00007f438e5e6038 R14: 00007f438e5e5fa0 R15: 00007ffcf8cea498
[  315.472707][T23332]  </TASK>
[  315.610486][T23343] FAULT_INJECTION: forcing a failure.
[  315.610486][T23343] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  315.617099][T23343] CPU: 0 UID: 0 PID: 23343 Comm: syz.3.4983 Not tainted syzkaller #0 PREEMPT(full) 
[  315.617121][T23343] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  315.617131][T23343] Call Trace:
[  315.617136][T23343]  <TASK>
[  315.617143][T23343]  dump_stack_lvl+0x16c/0x1f0
[  315.617174][T23343]  should_fail_ex+0x512/0x640
[  315.617198][T23343]  _copy_from_iter+0x29f/0x1720
[  315.617225][T23343]  ? __pfx__copy_from_iter+0x10/0x10
[  315.617245][T23343]  ? _copy_from_iter+0x15d/0x1720
[  315.617275][T23343]  skb_copy_datagram_from_iter+0x124/0x740
[  315.617296][T23343]  ? dev_get_by_index+0x17c/0x380
[  315.617325][T23343]  packet_sendmsg+0x2294/0x5850
[  315.617377][T23343]  ? sock_has_perm+0x259/0x2f0
[  315.617405][T23343]  ? __pfx_sock_has_perm+0x10/0x10
[  315.617434][T23343]  ? __pfx_packet_sendmsg+0x10/0x10
[  315.617470][T23343]  __sys_sendto+0x4a3/0x520
[  315.617491][T23343]  ? __pfx___sys_sendto+0x10/0x10
[  315.617532][T23343]  ? ksys_write+0x1ac/0x250
[  315.617549][T23343]  ? __pfx_ksys_write+0x10/0x10
[  315.617568][T23343]  __x64_sys_sendto+0xe0/0x1c0
[  315.617586][T23343]  ? do_syscall_64+0x91/0xfa0
[  315.617602][T23343]  ? lockdep_hardirqs_on+0x7c/0x110
[  315.617617][T23343]  do_syscall_64+0xcd/0xfa0
[  315.617635][T23343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.617652][T23343] RIP: 0033:0x7f438e38f6c9
[  315.617665][T23343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.617692][T23343] RSP: 002b:00007f438f280038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  315.617708][T23343] RAX: ffffffffffffffda RBX: 00007f438e5e5fa0 RCX: 00007f438e38f6c9
[  315.617719][T23343] RDX: 0000000000010000 RSI: 0000200000000180 RDI: 0000000000000003
[  315.617729][T23343] RBP: 00007f438f280090 R08: 0000200000000140 R09: 0000000000000014
[  315.617739][T23343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.617749][T23343] R13: 00007f438e5e6038 R14: 00007f438e5e5fa0 R15: 00007ffcf8cea498
[  315.617773][T23343]  </TASK>
[  315.654030][   T53] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  315.742372][   T40] audit: type=1400 audit(306.676:1022): avc:  denied  { listen } for  pid=23345 comm="syz.3.4984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  315.857966][   T53] usb 9-1: Using ep0 maxpacket: 16
[  315.872482][T23358] Cannot find add_set index 65532 as target
[  316.109377][T23325] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  316.115562][T23325] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  316.120941][   T53] usb 9-1: unable to get BOS descriptor or descriptor too short
[  316.125800][   T53] usb 9-1: unable to read config index 0 descriptor/start: -71
[  316.128366][   T53] usb 9-1: can't read configurations, error -71
[  316.132046][T23375] lo speed is unknown, defaulting to 1000
[  316.150556][T23383] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  316.153226][T23383] VFS: Can't find a romfs filesystem on dev nullb0.
[  316.153226][T23383] 
[  316.186203][T23384] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci0/hci0:200/input23
[  316.262486][T23399] FAULT_INJECTION: forcing a failure.
[  316.262486][T23399] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  316.266770][T23399] CPU: 2 UID: 0 PID: 23399 Comm: syz.0.4997 Not tainted syzkaller #0 PREEMPT(full) 
[  316.266784][T23399] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  316.266790][T23399] Call Trace:
[  316.266794][T23399]  <TASK>
[  316.266798][T23399]  dump_stack_lvl+0x16c/0x1f0
[  316.266817][T23399]  should_fail_ex+0x512/0x640
[  316.266837][T23399]  _copy_from_iter+0x29f/0x1720
[  316.266851][T23399]  ? _copy_from_iter+0x15d/0x1720
[  316.266863][T23399]  ? __pfx__copy_from_iter+0x10/0x10
[  316.266877][T23399]  ? __pfx__copy_from_iter+0x10/0x10
[  316.266889][T23399]  ? _copy_from_iter+0x15d/0x1720
[  316.266903][T23399]  copy_page_from_iter+0xde/0x180
[  316.266916][T23399]  skb_copy_datagram_from_iter+0x2a0/0x740
[  316.266933][T23399]  packet_sendmsg+0x2294/0x5850
[  316.266956][T23399]  ? sock_has_perm+0x259/0x2f0
[  316.266971][T23399]  ? __pfx_sock_has_perm+0x10/0x10
[  316.266987][T23399]  ? __pfx_packet_sendmsg+0x10/0x10
[  316.267007][T23399]  __sys_sendto+0x4a3/0x520
[  316.267020][T23399]  ? __pfx___sys_sendto+0x10/0x10
[  316.267042][T23399]  ? ksys_write+0x1ac/0x250
[  316.267053][T23399]  ? __pfx_ksys_write+0x10/0x10
[  316.267064][T23399]  __x64_sys_sendto+0xe0/0x1c0
[  316.267075][T23399]  ? do_syscall_64+0x91/0xfa0
[  316.267084][T23399]  ? lockdep_hardirqs_on+0x7c/0x110
[  316.267094][T23399]  do_syscall_64+0xcd/0xfa0
[  316.267104][T23399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.267114][T23399] RIP: 0033:0x7fe552d8f6c9
[  316.267123][T23399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  316.267133][T23399] RSP: 002b:00007fe553bbc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  316.267142][T23399] RAX: ffffffffffffffda RBX: 00007fe552fe5fa0 RCX: 00007fe552d8f6c9
[  316.267149][T23399] RDX: 0000000000010000 RSI: 0000200000000180 RDI: 0000000000000003
[  316.267155][T23399] RBP: 00007fe553bbc090 R08: 0000200000000140 R09: 0000000000000014
[  316.267160][T23399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  316.267166][T23399] R13: 00007fe552fe6038 R14: 00007fe552fe5fa0 R15: 00007ffe70935398
[  316.267180][T23399]  </TASK>
[  316.305196][T23375] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4995'.
[  316.306396][    C2] vkms_vblank_simulate: vblank timer overrun
[  316.345312][    C2] vkms_vblank_simulate: vblank timer overrun
[  316.759225][T23447] Cannot find add_set index 65532 as target
[  316.767416][T23449] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5005'.
[  317.030682][   T40] audit: type=1400 audit(307.873:1023): avc:  denied  { connect } for  pid=23481 comm="syz.4.5010" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  317.036988][   T40] audit: type=1400 audit(307.873:1024): avc:  denied  { getopt } for  pid=23481 comm="syz.4.5010" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  317.125453][T23488] FAULT_INJECTION: forcing a failure.
[  317.125453][T23488] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  317.128128][T23489] FAULT_INJECTION: forcing a failure.
[  317.128128][T23489] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  317.131317][T23488] CPU: 1 UID: 0 PID: 23488 Comm: syz.1.5012 Not tainted syzkaller #0 PREEMPT(full) 
[  317.131331][T23488] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  317.131337][T23488] Call Trace:
[  317.131341][T23488]  <TASK>
[  317.131344][T23488]  dump_stack_lvl+0x16c/0x1f0
[  317.131364][T23488]  should_fail_ex+0x512/0x640
[  317.131379][T23488]  _copy_from_iter+0x29f/0x1720
[  317.131393][T23488]  ? __alloc_skb+0x200/0x380
[  317.131407][T23488]  ? __pfx__copy_from_iter+0x10/0x10
[  317.131419][T23488]  ? netlink_autobind.isra.0+0x158/0x370
[  317.131439][T23488]  netlink_sendmsg+0x820/0xdd0
[  317.131456][T23488]  ? __pfx_netlink_sendmsg+0x10/0x10
[  317.131475][T23488]  ____sys_sendmsg+0xa98/0xc70
[  317.131486][T23488]  ? copy_msghdr_from_user+0x10a/0x160
[  317.131499][T23488]  ? __pfx_____sys_sendmsg+0x10/0x10
[  317.131514][T23488]  ___sys_sendmsg+0x134/0x1d0
[  317.131533][T23488]  ? __pfx____sys_sendmsg+0x10/0x10
[  317.131549][T23488]  ? __lock_acquire+0x622/0x1c90
[  317.131595][T23488]  __sys_sendmsg+0x16d/0x220
[  317.131615][T23488]  ? __pfx___sys_sendmsg+0x10/0x10
[  317.131643][T23488]  do_syscall_64+0xcd/0xfa0
[  317.131654][T23488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.131665][T23488] RIP: 0033:0x7faae3b8f6c9
[  317.131674][T23488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.131684][T23488] RSP: 002b:00007faae4a40038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  317.131694][T23488] RAX: ffffffffffffffda RBX: 00007faae3de5fa0 RCX: 00007faae3b8f6c9
[  317.131701][T23488] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000007
[  317.131707][T23488] RBP: 00007faae4a40090 R08: 0000000000000000 R09: 0000000000000000
[  317.131713][T23488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.131719][T23488] R13: 00007faae3de6038 R14: 00007faae3de5fa0 R15: 00007ffe388ea298
[  317.131732][T23488]  </TASK>
[  317.158110][T23491] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=39 sclass=netlink_route_socket pid=23491 comm=syz.0.5014
[  317.161567][T23489] CPU: 2 UID: 0 PID: 23489 Comm: syz.4.5013 Not tainted syzkaller #0 PREEMPT(full) 
[  317.161589][T23489] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  317.161600][T23489] Call Trace:
[  317.161606][T23489]  <TASK>
[  317.161612][T23489]  dump_stack_lvl+0x16c/0x1f0
[  317.161643][T23489]  should_fail_ex+0x512/0x640
[  317.161667][T23489]  _copy_from_iter+0x29f/0x1720
[  317.161692][T23489]  ? _copy_from_iter+0x15d/0x1720
[  317.161713][T23489]  ? __pfx__copy_from_iter+0x10/0x10
[  317.161737][T23489]  ? __pfx__copy_from_iter+0x10/0x10
[  317.161758][T23489]  ? _copy_from_iter+0x15d/0x1720
[  317.161781][T23489]  copy_page_from_iter+0xde/0x180
[  317.161805][T23489]  skb_copy_datagram_from_iter+0x2a0/0x740
[  317.161835][T23489]  packet_sendmsg+0x2294/0x5850
[  317.161874][T23489]  ? sock_has_perm+0x259/0x2f0
[  317.161900][T23489]  ? __pfx_sock_has_perm+0x10/0x10
[  317.161927][T23489]  ? __pfx_packet_sendmsg+0x10/0x10
[  317.161959][T23489]  __sys_sendto+0x4a3/0x520
[  317.161980][T23489]  ? __pfx___sys_sendto+0x10/0x10
[  317.162020][T23489]  ? ksys_write+0x1ac/0x250
[  317.162037][T23489]  ? __pfx_ksys_write+0x10/0x10
[  317.162055][T23489]  __x64_sys_sendto+0xe0/0x1c0
[  317.162074][T23489]  ? do_syscall_64+0x91/0xfa0
[  317.162088][T23489]  ? lockdep_hardirqs_on+0x7c/0x110
[  317.162109][T23489]  do_syscall_64+0xcd/0xfa0
[  317.162127][T23489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.162144][T23489] RIP: 0033:0x7f647f18f6c9
[  317.162158][T23489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.162174][T23489] RSP: 002b:00007f6480032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  317.162189][T23489] RAX: ffffffffffffffda RBX: 00007f647f3e5fa0 RCX: 00007f647f18f6c9
[  317.162200][T23489] RDX: 0000000000010000 RSI: 0000200000000180 RDI: 0000000000000003
[  317.162210][T23489] RBP: 00007f6480032090 R08: 0000200000000140 R09: 0000000000000014
[  317.162220][T23489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.162229][T23489] R13: 00007f647f3e6038 R14: 00007f647f3e5fa0 R15: 00007ffdbd610628
[  317.162254][T23489]  </TASK>
[  317.335343][T23507] Cannot find add_set index 65532 as target
[  317.565996][T23528] macvlan0: entered promiscuous mode
[  317.567899][T23528] macvlan0: entered allmulticast mode
[  317.569601][T23528] veth1_vlan: entered allmulticast mode
[  317.575783][   T40] audit: type=1326 audit(308.378:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23526 comm="syz.3.5025" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f438e38f6c9 code=0x0
[  317.581485][   T24] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  317.597590][T23532] FAULT_INJECTION: forcing a failure.
[  317.597590][T23532] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  317.604601][T23532] CPU: 3 UID: 0 PID: 23532 Comm: syz.4.5027 Not tainted syzkaller #0 PREEMPT(full) 
[  317.604616][T23532] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  317.604623][T23532] Call Trace:
[  317.604626][T23532]  <TASK>
[  317.604630][T23532]  dump_stack_lvl+0x16c/0x1f0
[  317.604650][T23532]  should_fail_ex+0x512/0x640
[  317.604665][T23532]  _copy_from_iter+0x29f/0x1720
[  317.604680][T23532]  ? _copy_from_iter+0x15d/0x1720
[  317.604693][T23532]  ? __pfx__copy_from_iter+0x10/0x10
[  317.604707][T23532]  ? __pfx__copy_from_iter+0x10/0x10
[  317.604719][T23532]  ? _copy_from_iter+0x15d/0x1720
[  317.604733][T23532]  copy_page_from_iter+0xde/0x180
[  317.604762][T23532]  skb_copy_datagram_from_iter+0x2a0/0x740
[  317.604780][T23532]  packet_sendmsg+0x2294/0x5850
[  317.604802][T23532]  ? sock_has_perm+0x259/0x2f0
[  317.604818][T23532]  ? __pfx_sock_has_perm+0x10/0x10
[  317.604835][T23532]  ? __pfx_packet_sendmsg+0x10/0x10
[  317.604855][T23532]  __sys_sendto+0x4a3/0x520
[  317.604868][T23532]  ? __pfx___sys_sendto+0x10/0x10
[  317.604919][T23532]  ? ksys_write+0x1ac/0x250
[  317.604932][T23532]  ? __pfx_ksys_write+0x10/0x10
[  317.604943][T23532]  __x64_sys_sendto+0xe0/0x1c0
[  317.604955][T23532]  ? do_syscall_64+0x91/0xfa0
[  317.604964][T23532]  ? lockdep_hardirqs_on+0x7c/0x110
[  317.604974][T23532]  do_syscall_64+0xcd/0xfa0
[  317.604984][T23532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.604994][T23532] RIP: 0033:0x7f647f18f6c9
[  317.605003][T23532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.605013][T23532] RSP: 002b:00007f6480032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  317.605024][T23532] RAX: ffffffffffffffda RBX: 00007f647f3e5fa0 RCX: 00007f647f18f6c9
[  317.605030][T23532] RDX: 0000000000010000 RSI: 0000200000000180 RDI: 0000000000000003
[  317.605036][T23532] RBP: 00007f6480032090 R08: 0000200000000140 R09: 0000000000000014
[  317.605042][T23532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  317.605048][T23532] R13: 00007f647f3e6038 R14: 00007f647f3e5fa0 R15: 00007ffdbd610628
[  317.605062][T23532]  </TASK>
[  317.703277][   T40] audit: type=1326 audit(308.500:1026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23529 comm="syz.1.5026" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faae3b8f6c9 code=0x7fc00000
[  317.710269][   T40] audit: type=1326 audit(308.500:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23529 comm="syz.1.5026" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7faae3b8f6c9 code=0x7fc00000
[  317.717061][   T40] audit: type=1326 audit(308.500:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23529 comm="syz.1.5026" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faae3b8f6c9 code=0x7fc00000
[  317.725207][   T40] audit: type=1326 audit(308.500:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23529 comm="syz.1.5026" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faae3b8f6c9 code=0x7fc00000
[  317.725816][T23538] FAULT_INJECTION: forcing a failure.
[  317.725816][T23538] name failslab, interval 1, probability 0, space 0, times 0
[  317.732406][   T40] audit: type=1326 audit(308.500:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23529 comm="syz.1.5026" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faae3b8f6c9 code=0x7fc00000
[  317.736201][T23538] CPU: 1 UID: 0 PID: 23538 Comm: syz.4.5029 Not tainted syzkaller #0 PREEMPT(full) 
[  317.736215][T23538] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  317.736221][T23538] Call Trace:
[  317.736226][T23538]  <TASK>
[  317.736230][T23538]  dump_stack_lvl+0x16c/0x1f0
[  317.736250][T23538]  should_fail_ex+0x512/0x640
[  317.736263][T23538]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  317.736277][T23538]  should_failslab+0xc2/0x120
[  317.736290][T23538]  kmem_cache_alloc_noprof+0x75/0x6e0
[  317.736305][T23538]  ? skb_clone+0x190/0x3f0
[  317.736321][T23538]  ? skb_clone+0x190/0x3f0
[  317.736334][T23538]  skb_clone+0x190/0x3f0
[  317.736348][T23538]  netlink_deliver_tap+0xabd/0xd30
[  317.736365][T23538]  netlink_unicast+0x64c/0x870
[  317.736381][T23538]  ? __pfx_netlink_unicast+0x10/0x10
[  317.736401][T23538]  netlink_sendmsg+0x8c8/0xdd0
[  317.736417][T23538]  ? __pfx_netlink_sendmsg+0x10/0x10
[  317.736437][T23538]  ____sys_sendmsg+0xa98/0xc70
[  317.736448][T23538]  ? copy_msghdr_from_user+0x10a/0x160
[  317.736461][T23538]  ? __pfx_____sys_sendmsg+0x10/0x10
[  317.736477][T23538]  ___sys_sendmsg+0x134/0x1d0
[  317.736491][T23538]  ? __pfx____sys_sendmsg+0x10/0x10
[  317.736504][T23538]  ? __lock_acquire+0x622/0x1c90
[  317.736530][T23538]  __sys_sendmsg+0x16d/0x220
[  317.736543][T23538]  ? __pfx___sys_sendmsg+0x10/0x10
[  317.736565][T23538]  do_syscall_64+0xcd/0xfa0
[  317.736576][T23538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.736587][T23538] RIP: 0033:0x7f647f18f6c9
[  317.736596][T23538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.736606][T23538] RSP: 002b:00007f6480032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  317.736616][T23538] RAX: ffffffffffffffda RBX: 00007f647f3e5fa0 RCX: 00007f647f18f6c9
[  317.736622][T23538] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000007
[  317.736628][T23538] RBP: 00007f6480032090 R08: 0000000000000000 R09: 0000000000000000
[  317.736634][T23538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.736639][T23538] R13: 00007f647f3e6038 R14: 00007f647f3e5fa0 R15: 00007ffdbd610628
[  317.736653][T23538]  </TASK>
[  317.752974][   T24] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  317.754484][   T40] audit: type=1326 audit(308.500:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23529 comm="syz.1.5026" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faae3b8f6c9 code=0x7fc00000
[  317.755483][   T24] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  317.806319][T23536] netlink: 'syz.3.5028': attribute type 29 has an invalid length.
[  317.811933][   T24] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  317.815496][T23536] netlink: 'syz.3.5028': attribute type 3 has an invalid length.
[  317.816131][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.820075][T23536] netlink: 76 bytes leftover after parsing attributes in process `syz.3.5028'.
[  317.845417][   T24] usb 5-1: config 0 descriptor??
[  317.851440][   T24] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  317.853751][   T24] dvb-usb: bulk message failed: -22 (3/0)
[  317.863524][   T24] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  317.866965][   T24] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  317.869899][   T24] usb 5-1: media controller created
[  317.872928][   T24] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  317.882657][   T24] dvb-usb: bulk message failed: -22 (6/0)
[  317.884646][   T24] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  317.888827][   T24] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input24
[  317.895646][   T24] dvb-usb: schedule remote query interval to 150 msecs.
[  317.897815][   T24] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  318.007594][T23566] usb usb8: usbfs: process 23566 (syz.1.5036) did not claim interface 0 before use
[  318.062606][   T24] dvb-usb: bulk message failed: -22 (1/0)
[  318.071845][   T24] dvb-usb: error while querying for an remote control event.
[  318.078718][   T34] usb 5-1: USB disconnect, device number 7
[  318.192418][   T34] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  318.240808][T23598] netlink: 64 bytes leftover after parsing attributes in process `syz.3.5040'.
[  318.271457][T23615] FAULT_INJECTION: forcing a failure.
[  318.271457][T23615] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.276000][T23615] CPU: 3 UID: 0 PID: 23615 Comm: syz.4.5041 Not tainted syzkaller #0 PREEMPT(full) 
[  318.276021][T23615] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  318.276031][T23615] Call Trace:
[  318.276037][T23615]  <TASK>
[  318.276043][T23615]  dump_stack_lvl+0x16c/0x1f0
[  318.276072][T23615]  should_fail_ex+0x512/0x640
[  318.276093][T23615]  _copy_from_iter+0x29f/0x1720
[  318.276115][T23615]  ? _copy_from_iter+0x15d/0x1720
[  318.276133][T23615]  ? __pfx__copy_from_iter+0x10/0x10
[  318.276154][T23615]  ? __pfx__copy_from_iter+0x10/0x10
[  318.276172][T23615]  ? _copy_from_iter+0x15d/0x1720
[  318.276193][T23615]  copy_page_from_iter+0xde/0x180
[  318.276214][T23615]  skb_copy_datagram_from_iter+0x2a0/0x740
[  318.276241][T23615]  packet_sendmsg+0x2294/0x5850
[  318.276275][T23615]  ? sock_has_perm+0x259/0x2f0
[  318.276298][T23615]  ? __pfx_sock_has_perm+0x10/0x10
[  318.276323][T23615]  ? __pfx_packet_sendmsg+0x10/0x10
[  318.276354][T23615]  __sys_sendto+0x4a3/0x520
[  318.276374][T23615]  ? __pfx___sys_sendto+0x10/0x10
[  318.276410][T23615]  ? ksys_write+0x1ac/0x250
[  318.276426][T23615]  ? __pfx_ksys_write+0x10/0x10
[  318.276443][T23615]  __x64_sys_sendto+0xe0/0x1c0
[  318.276460][T23615]  ? do_syscall_64+0x91/0xfa0
[  318.276474][T23615]  ? lockdep_hardirqs_on+0x7c/0x110
[  318.276487][T23615]  do_syscall_64+0xcd/0xfa0
[  318.276502][T23615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.276517][T23615] RIP: 0033:0x7f647f18f6c9
[  318.276530][T23615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.276543][T23615] RSP: 002b:00007f6480032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  318.276559][T23615] RAX: ffffffffffffffda RBX: 00007f647f3e5fa0 RCX: 00007f647f18f6c9
[  318.276569][T23615] RDX: 0000000000010000 RSI: 0000200000000180 RDI: 0000000000000003
[  318.276578][T23615] RBP: 00007f6480032090 R08: 0000200000000140 R09: 0000000000000014
[  318.276587][T23615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  318.276596][T23615] R13: 00007f647f3e6038 R14: 00007f647f3e5fa0 R15: 00007ffdbd610628
[  318.276618][T23615]  </TASK>
[  318.405332][T23617] netlink: 188 bytes leftover after parsing attributes in process `syz.1.5042'.
[  318.419126][T23619] FAULT_INJECTION: forcing a failure.
[  318.419126][T23619] name failslab, interval 1, probability 0, space 0, times 0
[  318.423105][T23619] CPU: 1 UID: 0 PID: 23619 Comm: syz.4.5043 Not tainted syzkaller #0 PREEMPT(full) 
[  318.423118][T23619] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  318.423125][T23619] Call Trace:
[  318.423129][T23619]  <TASK>
[  318.423133][T23619]  dump_stack_lvl+0x16c/0x1f0
[  318.423166][T23619]  should_fail_ex+0x512/0x640
[  318.423178][T23619]  ? __kmalloc_noprof+0xca/0x880
[  318.423194][T23619]  should_failslab+0xc2/0x120
[  318.423207][T23619]  __kmalloc_noprof+0xdd/0x880
[  318.423221][T23619]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  318.423236][T23619]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  318.423246][T23619]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  318.423260][T23619]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  318.423271][T23619]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  318.423286][T23619]  ? bpf_lsm_capable+0x9/0x10
[  318.423299][T23619]  ? security_capable+0x7e/0x260
[  318.423315][T23619]  ? ns_capable+0xd7/0x110
[  318.423329][T23619]  genl_rcv_msg+0x55c/0x800
[  318.423342][T23619]  ? __pfx_genl_rcv_msg+0x10/0x10
[  318.423354][T23619]  ? __pfx_l2tp_nl_cmd_tunnel_create+0x10/0x10
[  318.423375][T23619]  netlink_rcv_skb+0x158/0x420
[  318.423390][T23619]  ? __pfx_genl_rcv_msg+0x10/0x10
[  318.423400][T23619]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  318.423421][T23619]  ? netlink_deliver_tap+0x1ae/0xd30
[  318.423436][T23619]  genl_rcv+0x28/0x40
[  318.423445][T23619]  netlink_unicast+0x5aa/0x870
[  318.423461][T23619]  ? __pfx_netlink_unicast+0x10/0x10
[  318.423481][T23619]  netlink_sendmsg+0x8c8/0xdd0
[  318.423497][T23619]  ? __pfx_netlink_sendmsg+0x10/0x10
[  318.423517][T23619]  ____sys_sendmsg+0xa98/0xc70
[  318.423528][T23619]  ? copy_msghdr_from_user+0x10a/0x160
[  318.423541][T23619]  ? __pfx_____sys_sendmsg+0x10/0x10
[  318.423558][T23619]  ___sys_sendmsg+0x134/0x1d0
[  318.423572][T23619]  ? __pfx____sys_sendmsg+0x10/0x10
[  318.423583][T23619]  ? __lock_acquire+0x622/0x1c90
[  318.423611][T23619]  __sys_sendmsg+0x16d/0x220
[  318.423624][T23619]  ? __pfx___sys_sendmsg+0x10/0x10
[  318.423646][T23619]  do_syscall_64+0xcd/0xfa0
[  318.423657][T23619]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.423668][T23619] RIP: 0033:0x7f647f18f6c9
[  318.423676][T23619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.423686][T23619] RSP: 002b:00007f6480032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  318.423697][T23619] RAX: ffffffffffffffda RBX: 00007f647f3e5fa0 RCX: 00007f647f18f6c9
[  318.423703][T23619] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000007
[  318.423709][T23619] RBP: 00007f6480032090 R08: 0000000000000000 R09: 0000000000000000
[  318.423714][T23619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.423720][T23619] R13: 00007f647f3e6038 R14: 00007f647f3e5fa0 R15: 00007ffdbd610628
[  318.423734][T23619]  </TASK>
[  318.588230][T23625] netlink: 104 bytes leftover after parsing attributes in process `syz.4.5046'.
[  318.621642][T23631] set_target_v1_checkentry: 1 callbacks suppressed
[  318.621653][T23631] Cannot find add_set index 65532 as target
[  318.735598][T23648] FAULT_INJECTION: forcing a failure.
[  318.735598][T23648] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.741001][T23648] CPU: 1 UID: 0 PID: 23648 Comm: syz.0.5057 Not tainted syzkaller #0 PREEMPT(full) 
[  318.741023][T23648] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  318.741033][T23648] Call Trace:
[  318.741040][T23648]  <TASK>
[  318.741047][T23648]  dump_stack_lvl+0x16c/0x1f0
[  318.741078][T23648]  should_fail_ex+0x512/0x640
[  318.741102][T23648]  _copy_from_iter+0x29f/0x1720
[  318.741127][T23648]  ? _copy_from_iter+0x15d/0x1720
[  318.741149][T23648]  ? __pfx__copy_from_iter+0x10/0x10
[  318.741173][T23648]  ? __pfx__copy_from_iter+0x10/0x10
[  318.741194][T23648]  ? _copy_from_iter+0x15d/0x1720
[  318.741218][T23648]  copy_page_from_iter+0xde/0x180
[  318.741242][T23648]  skb_copy_datagram_from_iter+0x2a0/0x740
[  318.741273][T23648]  packet_sendmsg+0x2294/0x5850
[  318.741311][T23648]  ? sock_has_perm+0x259/0x2f0
[  318.741339][T23648]  ? __pfx_sock_has_perm+0x10/0x10
[  318.741367][T23648]  ? __pfx_packet_sendmsg+0x10/0x10
[  318.741404][T23648]  __sys_sendto+0x4a3/0x520
[  318.741426][T23648]  ? __pfx___sys_sendto+0x10/0x10
[  318.741467][T23648]  ? ksys_write+0x1ac/0x250
[  318.741485][T23648]  ? __pfx_ksys_write+0x10/0x10
[  318.741504][T23648]  __x64_sys_sendto+0xe0/0x1c0
[  318.741524][T23648]  ? do_syscall_64+0x91/0xfa0
[  318.741541][T23648]  ? lockdep_hardirqs_on+0x7c/0x110
[  318.741558][T23648]  do_syscall_64+0xcd/0xfa0
[  318.741576][T23648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.741594][T23648] RIP: 0033:0x7fe552d8f6c9
[  318.741609][T23648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.741626][T23648] RSP: 002b:00007fe553bbc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  318.741643][T23648] RAX: ffffffffffffffda RBX: 00007fe552fe5fa0 RCX: 00007fe552d8f6c9
[  318.741655][T23648] RDX: 0000000000010000 RSI: 0000200000000180 RDI: 0000000000000003
[  318.741665][T23648] RBP: 00007fe553bbc090 R08: 0000200000000140 R09: 0000000000000014
[  318.741676][T23648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  318.741686][T23648] R13: 00007fe552fe6038 R14: 00007fe552fe5fa0 R15: 00007ffe70935398
[  318.741711][T23648]  </TASK>
[  318.868936][T23652] FAULT_INJECTION: forcing a failure.
[  318.868936][T23652] name failslab, interval 1, probability 0, space 0, times 0
[  318.872835][T23652] CPU: 0 UID: 0 PID: 23652 Comm: syz.3.5059 Not tainted syzkaller #0 PREEMPT(full) 
[  318.872849][T23652] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  318.872855][T23652] Call Trace:
[  318.872860][T23652]  <TASK>
[  318.872864][T23652]  dump_stack_lvl+0x16c/0x1f0
[  318.872909][T23652]  should_fail_ex+0x512/0x640
[  318.872922][T23652]  ? __kmalloc_cache_noprof+0x5f/0x780
[  318.872939][T23652]  should_failslab+0xc2/0x120
[  318.872952][T23652]  __kmalloc_cache_noprof+0x72/0x780
[  318.872965][T23652]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  318.872980][T23652]  ? l2tp_tunnel_create+0x96/0x460
[  318.872991][T23652]  ? __nla_validate_parse+0x600/0x2880
[  318.873007][T23652]  ? l2tp_tunnel_create+0x96/0x460
[  318.873017][T23652]  l2tp_tunnel_create+0x96/0x460
[  318.873029][T23652]  l2tp_nl_cmd_tunnel_create+0x3ae/0x990
[  318.873047][T23652]  ? __pfx_l2tp_nl_cmd_tunnel_create+0x10/0x10
[  318.873067][T23652]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  318.873079][T23652]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  318.873093][T23652]  genl_family_rcv_msg_doit+0x209/0x2f0
[  318.873104][T23652]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  318.873119][T23652]  ? bpf_lsm_capable+0x9/0x10
[  318.873131][T23652]  ? security_capable+0x7e/0x260
[  318.873148][T23652]  ? ns_capable+0xd7/0x110
[  318.873161][T23652]  genl_rcv_msg+0x55c/0x800
[  318.873173][T23652]  ? __pfx_genl_rcv_msg+0x10/0x10
[  318.873183][T23652]  ? __pfx_l2tp_nl_cmd_tunnel_create+0x10/0x10
[  318.873203][T23652]  netlink_rcv_skb+0x158/0x420
[  318.873219][T23652]  ? __pfx_genl_rcv_msg+0x10/0x10
[  318.873230][T23652]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  318.873250][T23652]  ? netlink_deliver_tap+0x1ae/0xd30
[  318.873266][T23652]  genl_rcv+0x28/0x40
[  318.873274][T23652]  netlink_unicast+0x5aa/0x870
[  318.873291][T23652]  ? __pfx_netlink_unicast+0x10/0x10
[  318.873310][T23652]  netlink_sendmsg+0x8c8/0xdd0
[  318.873327][T23652]  ? __pfx_netlink_sendmsg+0x10/0x10
[  318.873347][T23652]  ____sys_sendmsg+0xa98/0xc70
[  318.873358][T23652]  ? copy_msghdr_from_user+0x10a/0x160
[  318.873372][T23652]  ? __pfx_____sys_sendmsg+0x10/0x10
[  318.873388][T23652]  ___sys_sendmsg+0x134/0x1d0
[  318.873402][T23652]  ? __pfx____sys_sendmsg+0x10/0x10
[  318.873414][T23652]  ? __lock_acquire+0x622/0x1c90
[  318.873441][T23652]  __sys_sendmsg+0x16d/0x220
[  318.873454][T23652]  ? __pfx___sys_sendmsg+0x10/0x10
[  318.873477][T23652]  do_syscall_64+0xcd/0xfa0
[  318.873488][T23652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.873498][T23652] RIP: 0033:0x7f438e38f6c9
[  318.873507][T23652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.873517][T23652] RSP: 002b:00007f438f280038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  318.873527][T23652] RAX: ffffffffffffffda RBX: 00007f438e5e5fa0 RCX: 00007f438e38f6c9
[  318.873534][T23652] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000007
[  318.873540][T23652] RBP: 00007f438f280090 R08: 0000000000000000 R09: 0000000000000000
[  318.873546][T23652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.873552][T23652] R13: 00007f438e5e6038 R14: 00007f438e5e5fa0 R15: 00007ffcf8cea498
[  318.873566][T23652]  </TASK>
[  318.889932][T23657] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  318.992395][T23657] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  319.003093][T23657] vhci_hcd vhci_hcd.0: Device attached
[  319.024503][T23657] sctp: [Deprecated]: syz.4.5061 (pid 23657) Use of struct sctp_assoc_value in delayed_ack socket option.
[  319.024503][T23657] Use struct sctp_sack_info instead
[  319.031638][T23657] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5061'.
[  319.035078][T23657] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5061'.
[  319.041391][T23658] vhci_hcd: unknown pdu 2
[  319.043825][ T1151] vhci_hcd: stop threads
[  319.045395][ T1151] vhci_hcd: release socket
[  319.046839][ T1151] vhci_hcd: disconnect device
[  319.072055][T23671] Cannot find add_set index 65532 as target
[  319.126911][T23680] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5069'.
[  319.130113][T23680] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5069'.
[  319.135222][T23680] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5069'.
[  319.138858][T23680] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5069'.
[  319.210155][T23686] kernel profiling enabled (shift: 63)
[  319.211877][T23686] profiling shift: 63 too large
[  319.273581][T23693] FAULT_INJECTION: forcing a failure.
[  319.273581][T23693] name failslab, interval 1, probability 0, space 0, times 0
[  319.277465][T23693] CPU: 2 UID: 0 PID: 23693 Comm: syz.1.5074 Not tainted syzkaller #0 PREEMPT(full) 
[  319.277479][T23693] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  319.277486][T23693] Call Trace:
[  319.277490][T23693]  <TASK>
[  319.277494][T23693]  dump_stack_lvl+0x16c/0x1f0
[  319.277515][T23693]  should_fail_ex+0x512/0x640
[  319.277527][T23693]  ? __kmalloc_noprof+0xca/0x880
[  319.277544][T23693]  should_failslab+0xc2/0x120
[  319.277556][T23693]  __kmalloc_noprof+0xdd/0x880
[  319.277570][T23693]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  319.277585][T23693]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  319.277596][T23693]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  319.277610][T23693]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  319.277622][T23693]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  319.277637][T23693]  ? bpf_lsm_capable+0x9/0x10
[  319.277656][T23693]  ? security_capable+0x7e/0x260
[  319.277673][T23693]  ? ns_capable+0xd7/0x110
[  319.277688][T23693]  genl_rcv_msg+0x55c/0x800
[  319.277699][T23693]  ? __pfx_genl_rcv_msg+0x10/0x10
[  319.277709][T23693]  ? __pfx_l2tp_nl_cmd_tunnel_create+0x10/0x10
[  319.277738][T23693]  netlink_rcv_skb+0x158/0x420
[  319.277760][T23693]  ? __pfx_genl_rcv_msg+0x10/0x10
[  319.277776][T23693]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  319.277796][T23693]  ? netlink_deliver_tap+0x1ae/0xd30
[  319.277812][T23693]  genl_rcv+0x28/0x40
[  319.277820][T23693]  netlink_unicast+0x5aa/0x870
[  319.277837][T23693]  ? __pfx_netlink_unicast+0x10/0x10
[  319.277864][T23693]  netlink_sendmsg+0x8c8/0xdd0
[  319.277889][T23693]  ? __pfx_netlink_sendmsg+0x10/0x10
[  319.277924][T23693]  ____sys_sendmsg+0xa98/0xc70
[  319.277943][T23693]  ? copy_msghdr_from_user+0x10a/0x160
[  319.277959][T23693]  ? __pfx_____sys_sendmsg+0x10/0x10
[  319.277976][T23693]  ___sys_sendmsg+0x134/0x1d0
[  319.277990][T23693]  ? __pfx____sys_sendmsg+0x10/0x10
[  319.278002][T23693]  ? __lock_acquire+0x622/0x1c90
[  319.278029][T23693]  __sys_sendmsg+0x16d/0x220
[  319.278043][T23693]  ? __pfx___sys_sendmsg+0x10/0x10
[  319.278065][T23693]  do_syscall_64+0xcd/0xfa0
[  319.278077][T23693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.278088][T23693] RIP: 0033:0x7faae3b8f6c9
[  319.278098][T23693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  319.278108][T23693] RSP: 002b:00007faae4a40038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  319.278118][T23693] RAX: ffffffffffffffda RBX: 00007faae3de5fa0 RCX: 00007faae3b8f6c9
[  319.278125][T23693] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000007
[  319.278131][T23693] RBP: 00007faae4a40090 R08: 0000000000000000 R09: 0000000000000000
[  319.278137][T23693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.278142][T23693] R13: 00007faae3de6038 R14: 00007faae3de5fa0 R15: 00007ffe388ea298
[  319.278157][T23693]  </TASK>
[  319.368570][    C2] vkms_vblank_simulate: vblank timer overrun
[  319.469900][ T6017] hid (null): unknown global tag 0xc
[  319.472639][ T6017] hid (null): global environment stack underflow
[  319.475678][ T6017] hid (null): invalid report_count -1434858274
[  319.478149][ T6017] hid (null): unknown global tag 0xba
[  319.480256][ T6017] hid (null): unknown global tag 0xd
[  319.485440][ T6017] hid (null): global environment stack underflow
[  319.487881][ T6017] hid (null): unknown global tag 0xc
[  319.489997][ T6017] hid (null): unknown global tag 0xc
[  319.495357][ T6017] hid-generic 007F:0003:001C.0008: unknown global tag 0xc
[  319.498113][ T6017] hid-generic 007F:0003:001C.0008: item 0 4 1 12 parsing failed
[  319.501375][ T6017] hid-generic 007F:0003:001C.0008: probe with driver hid-generic failed with error -22
[  319.535726][T23712] Cannot find add_set index 65532 as target
[  319.638107][T23722] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5083'.
[  319.641016][T23722] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5083'.
[  319.802583][ T6017] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  319.859642][T23734] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5089'.
[  319.963526][ T6017] usb 5-1: Using ep0 maxpacket: 16
[  319.969444][ T6017] usb 5-1: config 4 has an invalid interface number: 6 but max is 1
[  319.972887][ T6017] usb 5-1: config 4 has an invalid interface number: 31 but max is 1
[  319.976603][ T6017] usb 5-1: config 4 has no interface number 0
[  319.979307][ T6017] usb 5-1: config 4 has no interface number 1
[  319.981878][ T6017] usb 5-1: config 4 interface 31 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[  319.988847][ T6017] usb 5-1: config 4 interface 31 altsetting 7 has an endpoint descriptor with address 0x1C, changing to 0xC
[  319.993851][ T6017] usb 5-1: config 4 interface 31 altsetting 7 endpoint 0xB has invalid maxpacket 1023, setting to 64
[  319.998681][ T6017] usb 5-1: config 4 interface 31 altsetting 7 has an endpoint descriptor with address 0x38, changing to 0x8
[  320.003489][ T6017] usb 5-1: config 4 interface 31 altsetting 7 endpoint 0x8 has an invalid bInterval 70, changing to 10
[  320.008157][ T6017] usb 5-1: config 4 interface 31 altsetting 7 endpoint 0x8 has invalid maxpacket 9348, setting to 1024
[  320.012635][ T6017] usb 5-1: config 4 interface 31 altsetting 7 has a duplicate endpoint with address 0xB, skipping
[  320.017281][ T6017] usb 5-1: config 4 interface 31 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[  320.021756][ T6017] usb 5-1: config 4 interface 31 altsetting 7 has a duplicate endpoint with address 0x9, skipping
[  320.026166][ T6017] usb 5-1: config 4 interface 31 altsetting 7 has a duplicate endpoint with address 0xB, skipping
[  320.030522][ T6017] usb 5-1: config 4 interface 31 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[  320.034799][ T6017] usb 5-1: config 4 interface 31 altsetting 7 bulk endpoint 0x2 has invalid maxpacket 1023
[  320.039037][ T6017] usb 5-1: config 4 interface 31 altsetting 7 has 14 endpoint descriptors, different from the interface descriptor's value: 13
[  320.044398][ T6017] usb 5-1: config 4 interface 6 has no altsetting 0
[  320.047166][ T6017] usb 5-1: config 4 interface 31 has no altsetting 0
[  320.052285][ T6017] usb 5-1: New USB device found, idVendor=045e, idProduct=0412, bcdDevice=93.00
[  320.055825][T23746] FAULT_INJECTION: forcing a failure.
[  320.055825][T23746] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  320.056104][ T6017] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  320.064257][ T6017] usb 5-1: Product: syz
[  320.066099][ T6017] usb 5-1: Manufacturer: syz
[  320.066857][T23746] CPU: 1 UID: 0 PID: 23746 Comm: syz.4.5094 Not tainted syzkaller #0 PREEMPT(full) 
[  320.066872][T23746] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  320.066878][T23746] Call Trace:
[  320.066882][T23746]  <TASK>
[  320.066886][T23746]  dump_stack_lvl+0x16c/0x1f0
[  320.066907][T23746]  should_fail_ex+0x512/0x640
[  320.066922][T23746]  _copy_from_iter+0x29f/0x1720
[  320.066937][T23746]  ? _copy_from_iter+0x15d/0x1720
[  320.066950][T23746]  ? __pfx__copy_from_iter+0x10/0x10
[  320.066964][T23746]  ? __pfx__copy_from_iter+0x10/0x10
[  320.066976][T23746]  ? _copy_from_iter+0x15d/0x1720
[  320.066990][T23746]  copy_page_from_iter+0xde/0x180
[  320.067004][T23746]  skb_copy_datagram_from_iter+0x2a0/0x740
[  320.067024][T23746]  packet_sendmsg+0x2294/0x5850
[  320.067051][T23746]  ? sock_has_perm+0x259/0x2f0
[  320.067067][T23746]  ? __pfx_sock_has_perm+0x10/0x10
[  320.067084][T23746]  ? __pfx_packet_sendmsg+0x10/0x10
[  320.067107][T23746]  __sys_sendto+0x4a3/0x520
[  320.067120][T23746]  ? __pfx___sys_sendto+0x10/0x10
[  320.067143][T23746]  ? ksys_write+0x1ac/0x250
[  320.067153][T23746]  ? __pfx_ksys_write+0x10/0x10
[  320.067165][T23746]  __x64_sys_sendto+0xe0/0x1c0
[  320.067176][T23746]  ? do_syscall_64+0x91/0xfa0
[  320.067186][T23746]  ? lockdep_hardirqs_on+0x7c/0x110
[  320.067196][T23746]  do_syscall_64+0xcd/0xfa0
[  320.067206][T23746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.067217][T23746] RIP: 0033:0x7f647f18f6c9
[  320.067226][T23746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.067236][T23746] RSP: 002b:00007f6480032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  320.067246][T23746] RAX: ffffffffffffffda RBX: 00007f647f3e5fa0 RCX: 00007f647f18f6c9
[  320.067253][T23746] RDX: 0000000000010000 RSI: 0000200000000180 RDI: 0000000000000003
[  320.067259][T23746] RBP: 00007f6480032090 R08: 0000200000000140 R09: 0000000000000014
[  320.067265][T23746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  320.067271][T23746] R13: 00007f647f3e6038 R14: 00007f647f3e5fa0 R15: 00007ffdbd610628
[  320.067284][T23746]  </TASK>
[  320.157795][ T6017] usb 5-1: SerialNumber: syz
[  320.235418][T23753] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  320.312990][T23759] FAULT_INJECTION: forcing a failure.
[  320.312990][T23759] name failslab, interval 1, probability 0, space 0, times 0
[  320.317247][T23759] CPU: 3 UID: 0 PID: 23759 Comm: syz.4.5100 Not tainted syzkaller #0 PREEMPT(full) 
[  320.317261][T23759] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  320.317267][T23759] Call Trace:
[  320.317272][T23759]  <TASK>
[  320.317276][T23759]  dump_stack_lvl+0x16c/0x1f0
[  320.317296][T23759]  should_fail_ex+0x512/0x640
[  320.317309][T23759]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  320.317323][T23759]  should_failslab+0xc2/0x120
[  320.317337][T23759]  kmem_cache_alloc_noprof+0x75/0x6e0
[  320.317352][T23759]  ? skb_clone+0x190/0x3f0
[  320.317369][T23759]  ? skb_clone+0x190/0x3f0
[  320.317381][T23759]  skb_clone+0x190/0x3f0
[  320.317395][T23759]  netlink_deliver_tap+0xabd/0xd30
[  320.317413][T23759]  netlink_unicast+0x71f/0x870
[  320.317429][T23759]  ? __pfx_netlink_unicast+0x10/0x10
[  320.317445][T23759]  ? genl_rcv_msg+0x4bb/0x800
[  320.317459][T23759]  netlink_ack+0x696/0xb80
[  320.317477][T23759]  netlink_rcv_skb+0x332/0x420
[  320.317491][T23759]  ? __pfx_genl_rcv_msg+0x10/0x10
[  320.317502][T23759]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  320.317522][T23759]  ? netlink_deliver_tap+0x1ae/0xd30
[  320.317538][T23759]  genl_rcv+0x28/0x40
[  320.317546][T23759]  netlink_unicast+0x5aa/0x870
[  320.317563][T23759]  ? __pfx_netlink_unicast+0x10/0x10
[  320.317582][T23759]  netlink_sendmsg+0x8c8/0xdd0
[  320.317599][T23759]  ? __pfx_netlink_sendmsg+0x10/0x10
[  320.317619][T23759]  ____sys_sendmsg+0xa98/0xc70
[  320.317629][T23759]  ? copy_msghdr_from_user+0x10a/0x160
[  320.317654][T23759]  ? __pfx_____sys_sendmsg+0x10/0x10
[  320.317670][T23759]  ___sys_sendmsg+0x134/0x1d0
[  320.317684][T23759]  ? __pfx____sys_sendmsg+0x10/0x10
[  320.317696][T23759]  ? __lock_acquire+0x622/0x1c90
[  320.317723][T23759]  __sys_sendmsg+0x16d/0x220
[  320.317736][T23759]  ? __pfx___sys_sendmsg+0x10/0x10
[  320.317758][T23759]  do_syscall_64+0xcd/0xfa0
[  320.317769][T23759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.317780][T23759] RIP: 0033:0x7f647f18f6c9
[  320.317789][T23759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.317799][T23759] RSP: 002b:00007f6480032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  320.317809][T23759] RAX: ffffffffffffffda RBX: 00007f647f3e5fa0 RCX: 00007f647f18f6c9
[  320.317816][T23759] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000007
[  320.317822][T23759] RBP: 00007f6480032090 R08: 0000000000000000 R09: 0000000000000000
[  320.317828][T23759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  320.317834][T23759] R13: 00007f647f3e6038 R14: 00007f647f3e5fa0 R15: 00007ffdbd610628
[  320.317848][T23759]  </TASK>
[  320.411133][ T6017] usb 5-1: USB disconnect, device number 8
[  320.519513][T23784] kvm: MWAIT instruction emulated as NOP!
[  320.613884][T23793] vxlan0: entered promiscuous mode
[  320.616274][T23793] vxlan0: entered allmulticast mode
[  320.618863][ T1151] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  320.627573][T23793] erspan0: entered promiscuous mode
[  320.629444][T23795] program syz.3.5108 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  320.630469][ T1151] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  320.633263][T23795] ata1.00: invalid command format 0
[  320.638942][ T1151] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  320.642964][ T1151] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  320.677063][T23808] Cannot find add_set index 65532 as target
[  320.755204][T23820] lo: entered allmulticast mode
[  320.759165][T23820] vxcan1: entered allmulticast mode
[  320.982879][T23839] erspan0: entered promiscuous mode
[  321.026619][T23847] Cannot find add_set index 65532 as target
[  321.087650][T23850] 9pnet_virtio: no channels available for device syz
[  321.110483][T11163] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  321.113735][T11163] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  321.117325][T11163] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  321.122288][T11163] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  321.217969][ T5939] Bluetooth: hci2: unexpected event for opcode 0x041b
[  321.479965][   T40] kauditd_printk_skb: 993 callbacks suppressed
[  321.479980][   T40] audit: type=1400 audit(312.035:2025): avc:  denied  { map } for  pid=23889 comm="syz.3.5136" path="/proc/sys/net/ipv4/vs/drop_entry" dev="proc" ino=80986 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_net_t tclass=file permissive=1
[  321.530911][T23895] netlink: 'syz.3.5139': attribute type 1 has an invalid length.
[  321.575320][T23810] lo: left allmulticast mode
[  321.639184][T23907] Cannot find add_set index 65532 as target
[  321.742338][T23919] Cannot find add_set index 65532 as target
[  321.986677][T23959] loop3: detected capacity change from 0 to 7
[  321.993330][T21793] Dev loop3: unable to read RDB block 7
[  321.999432][T21793]  loop3: unable to read partition table
[  322.001341][T21793] loop3: partition table beyond EOD, truncated
[  322.005915][T23959] Dev loop3: unable to read RDB block 7
[  322.009031][T23959]  loop3: unable to read partition table
[  322.010889][T23959] loop3: partition table beyond EOD, truncated
[  322.012839][T23959] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[  322.028649][   T40] audit: type=1400 audit(312.540:2026): avc:  denied  { read } for  pid=23961 comm="syz.3.5164" name="usbmon7" dev="devtmpfs" ino=759 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  322.036181][   T40] audit: type=1400 audit(312.549:2027): avc:  denied  { open } for  pid=23961 comm="syz.3.5164" path="/dev/usbmon7" dev="devtmpfs" ino=759 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  322.043354][   T40] audit: type=1400 audit(312.549:2028): avc:  denied  { ioctl } for  pid=23961 comm="syz.3.5164" path="/dev/usbmon7" dev="devtmpfs" ino=759 ioctlcmd=0x9204 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  322.217155][T23992] overlay: filesystem on ./file0 not supported
[  322.443509][T24008] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  322.446355][T24008] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  322.450601][T24008] vhci_hcd vhci_hcd.0: Device attached
[  322.723557][   T24] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  322.732557][   T61] usb 43-1: new high-speed USB device number 2 using vhci_hcd
[  322.840912][T24025] netlink: 'syz.1.5184': attribute type 10 has an invalid length.
[  322.895463][   T24] usb 8-1: config 4 has an invalid interface number: 28 but max is 0
[  322.898043][   T24] usb 8-1: config 4 has no interface number 0
[  322.905592][   T24] usb 8-1: New USB device found, idVendor=05a8, idProduct=0245, bcdDevice= a.3a
[  322.908440][   T24] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  322.910924][   T24] usb 8-1: Product: syz
[  322.912239][   T24] usb 8-1: Manufacturer: syz
[  322.913774][   T24] usb 8-1: SerialNumber: syz
[  322.991298][T24038] loop5: detected capacity change from 0 to 7
[  323.047952][T24044] Cannot find add_set index 65532 as target
[  323.101390][T23075] Dev loop5: unable to read RDB block 7
[  323.103220][T23075]  loop5: unable to read partition table
[  323.105115][T23075] loop5: partition table beyond EOD, truncated
[  323.162885][T24010] usb 43-1: recv xbuf, 0
[  323.164812][   T24] usb 8-1: USB disconnect, device number 15
[  323.168682][   T13] vhci_hcd: stop threads
[  323.170089][   T13] vhci_hcd: release socket
[  323.174269][   T13] vhci_hcd: disconnect device
[  323.245654][   T61] vhci_hcd: vhci_device speed not set
[  323.990632][T24148] __nla_validate_parse: 34 callbacks suppressed
[  323.990648][T24148] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5218'.
[  323.997015][T24148] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5218'.
[  324.021336][T24148] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5218'.
[  324.024747][T24148] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5218'.
[  324.141571][T24167] FAULT_INJECTION: forcing a failure.
[  324.141571][T24167] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  324.146958][T24167] CPU: 1 UID: 0 PID: 24167 Comm: syz.4.5225 Not tainted syzkaller #0 PREEMPT(full) 
[  324.146986][T24167] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  324.146997][T24167] Call Trace:
[  324.147004][T24167]  <TASK>
[  324.147012][T24167]  dump_stack_lvl+0x16c/0x1f0
[  324.147045][T24167]  should_fail_ex+0x512/0x640
[  324.147071][T24167]  _copy_from_user+0x2e/0xd0
[  324.147095][T24167]  copy_msghdr_from_user+0x98/0x160
[  324.147119][T24167]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  324.147155][T24167]  ___sys_sendmsg+0xfe/0x1d0
[  324.147180][T24167]  ? __pfx____sys_sendmsg+0x10/0x10
[  324.147201][T24167]  ? __lock_acquire+0x622/0x1c90
[  324.147248][T24167]  __sys_sendmsg+0x16d/0x220
[  324.147272][T24167]  ? __pfx___sys_sendmsg+0x10/0x10
[  324.147305][T24167]  ? fput+0x9b/0xd0
[  324.147332][T24167]  do_syscall_64+0xcd/0xfa0
[  324.147351][T24167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.147369][T24167] RIP: 0033:0x7f647f18f6c9
[  324.147383][T24167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.147400][T24167] RSP: 002b:00007f6480032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  324.147417][T24167] RAX: ffffffffffffffda RBX: 00007f647f3e5fa0 RCX: 00007f647f18f6c9
[  324.147428][T24167] RDX: 0000000000040000 RSI: 00002000000001c0 RDI: 0000000000000003
[  324.147439][T24167] RBP: 00007f6480032090 R08: 0000000000000000 R09: 0000000000000000
[  324.147449][T24167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.147459][T24167] R13: 00007f647f3e6038 R14: 00007f647f3e5fa0 R15: 00007ffdbd610628
[  324.147484][T24167]  </TASK>
[  324.281766][T24168] syz.3.5224 (24168): drop_caches: 2
[  324.289918][T24178] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5228'.
[  324.293766][T24178] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5228'.
[  324.328983][T24178] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5228'.
[  324.331803][T24178] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5228'.
[  324.378153][T24194] 9pnet_virtio: no channels available for device syz
[  324.412301][T24200] vivid-004: =================  START STATUS  =================
[  324.413258][T24197] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5232'.
[  324.414716][T24200] vivid-004: Radio HW Seek Mode: Bounded
[  324.419926][T24200] vivid-004: Radio Programmable HW Seek: false
[  324.423908][T24200] vivid-004: RDS Rx I/O Mode: Block I/O
[  324.426108][T24200] vivid-004: Generate RBDS Instead of RDS: false
[  324.428473][T24200] vivid-004: RDS Reception: true
[  324.430145][T24200] vivid-004: RDS Program Type: 0 inactive
[  324.431935][T24200] vivid-004: RDS PS Name:  inactive
[  324.435703][T24200] vivid-004: RDS Radio Text:  inactive
[  324.437705][T24200] vivid-004: RDS Traffic Announcement: false inactive
[  324.439931][T24200] vivid-004: RDS Traffic Program: false inactive
[  324.441972][T24200] vivid-004: RDS Music: false inactive
[  324.444280][T24200] vivid-004: ==================  END STATUS  ==================
[  324.477069][T24267] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1017 sclass=netlink_route_socket pid=24267 comm=syz.1.5235
[  324.482748][T24267] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5235'.
[  324.486662][T24267] netlink: 'syz.1.5235': attribute type 20 has an invalid length.
[  324.494019][ T1151] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  324.495146][T24267] netlink: 'syz.1.5235': attribute type 20 has an invalid length.
[  324.500377][ T1151] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  324.505304][ T1151] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  324.510280][ T1151] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  324.827373][T24297] FAULT_INJECTION: forcing a failure.
[  324.827373][T24297] name failslab, interval 1, probability 0, space 0, times 0
[  324.833188][T24297] CPU: 1 UID: 0 PID: 24297 Comm: syz.3.5243 Not tainted syzkaller #0 PREEMPT(full) 
[  324.833212][T24297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  324.833222][T24297] Call Trace:
[  324.833229][T24297]  <TASK>
[  324.833236][T24297]  dump_stack_lvl+0x16c/0x1f0
[  324.833268][T24297]  should_fail_ex+0x512/0x640
[  324.833289][T24297]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  324.833319][T24297]  should_failslab+0xc2/0x120
[  324.833340][T24297]  kmem_cache_alloc_node_noprof+0x78/0x770
[  324.833366][T24297]  ? __alloc_skb+0x2b2/0x380
[  324.833392][T24297]  ? __alloc_skb+0x2b2/0x380
[  324.833411][T24297]  ? __pfx_netlink_insert+0x10/0x10
[  324.833433][T24297]  __alloc_skb+0x2b2/0x380
[  324.833454][T24297]  ? __pfx___alloc_skb+0x10/0x10
[  324.833475][T24297]  ? netlink_autobind.isra.0+0x158/0x370
[  324.833506][T24297]  netlink_alloc_large_skb+0x69/0x140
[  324.833533][T24297]  netlink_sendmsg+0x698/0xdd0
[  324.833561][T24297]  ? __pfx_netlink_sendmsg+0x10/0x10
[  324.833595][T24297]  ____sys_sendmsg+0xa98/0xc70
[  324.833613][T24297]  ? copy_msghdr_from_user+0x10a/0x160
[  324.833636][T24297]  ? __pfx_____sys_sendmsg+0x10/0x10
[  324.833664][T24297]  ___sys_sendmsg+0x134/0x1d0
[  324.833688][T24297]  ? __pfx____sys_sendmsg+0x10/0x10
[  324.833708][T24297]  ? __lock_acquire+0x622/0x1c90
[  324.833753][T24297]  __sys_sendmsg+0x16d/0x220
[  324.833775][T24297]  ? __pfx___sys_sendmsg+0x10/0x10
[  324.833814][T24297]  do_syscall_64+0xcd/0xfa0
[  324.833832][T24297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.833850][T24297] RIP: 0033:0x7f438e38f6c9
[  324.833864][T24297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.833881][T24297] RSP: 002b:00007f438f280038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  324.833897][T24297] RAX: ffffffffffffffda RBX: 00007f438e5e5fa0 RCX: 00007f438e38f6c9
[  324.833909][T24297] RDX: 0000000000040000 RSI: 00002000000001c0 RDI: 0000000000000003
[  324.833919][T24297] RBP: 00007f438f280090 R08: 0000000000000000 R09: 0000000000000000
[  324.833929][T24297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.833939][T24297] R13: 00007f438e5e6038 R14: 00007f438e5e5fa0 R15: 00007ffcf8cea498
[  324.833964][T24297]  </TASK>
[  324.957564][T24308] netlink: 'syz.1.5247': attribute type 1 has an invalid length.
[  325.047506][T24350] FAULT_INJECTION: forcing a failure.
[  325.047506][T24350] name failslab, interval 1, probability 0, space 0, times 0
[  325.051499][T24350] CPU: 0 UID: 0 PID: 24350 Comm: syz.4.5251 Not tainted syzkaller #0 PREEMPT(full) 
[  325.051520][T24350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  325.051529][T24350] Call Trace:
[  325.051535][T24350]  <TASK>
[  325.051542][T24350]  dump_stack_lvl+0x16c/0x1f0
[  325.051570][T24350]  should_fail_ex+0x512/0x640
[  325.051586][T24350]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  325.051604][T24350]  should_failslab+0xc2/0x120
[  325.051617][T24350]  kmem_cache_alloc_node_noprof+0x78/0x770
[  325.051633][T24350]  ? __alloc_skb+0x2b2/0x380
[  325.051649][T24350]  ? __alloc_skb+0x2b2/0x380
[  325.051672][T24350]  ? __pfx_netlink_insert+0x10/0x10
[  325.051688][T24350]  __alloc_skb+0x2b2/0x380
[  325.051700][T24350]  ? __pfx___alloc_skb+0x10/0x10
[  325.051713][T24350]  ? netlink_autobind.isra.0+0x158/0x370
[  325.051731][T24350]  netlink_alloc_large_skb+0x69/0x140
[  325.051747][T24350]  netlink_sendmsg+0x698/0xdd0
[  325.051764][T24350]  ? __pfx_netlink_sendmsg+0x10/0x10
[  325.051783][T24350]  ____sys_sendmsg+0xa98/0xc70
[  325.051798][T24350]  ? copy_msghdr_from_user+0x10a/0x160
[  325.051812][T24350]  ? __pfx_____sys_sendmsg+0x10/0x10
[  325.051824][T24350]  ? __pfx__kstrtoull+0x10/0x10
[  325.051843][T24350]  ___sys_sendmsg+0x134/0x1d0
[  325.051857][T24350]  ? __pfx____sys_sendmsg+0x10/0x10
[  325.051877][T24350]  ? find_held_lock+0x2b/0x80
[  325.051899][T24350]  __sys_sendmmsg+0x200/0x420
[  325.051914][T24350]  ? __pfx___sys_sendmmsg+0x10/0x10
[  325.051932][T24350]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  325.051949][T24350]  ? fput+0x9b/0xd0
[  325.051961][T24350]  ? ksys_write+0x1ac/0x250
[  325.051971][T24350]  ? __pfx_ksys_write+0x10/0x10
[  325.051983][T24350]  __x64_sys_sendmmsg+0x9c/0x100
[  325.051996][T24350]  ? lockdep_hardirqs_on+0x7c/0x110
[  325.052008][T24350]  do_syscall_64+0xcd/0xfa0
[  325.052024][T24350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.052039][T24350] RIP: 0033:0x7f647f18f6c9
[  325.052052][T24350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  325.052065][T24350] RSP: 002b:00007f6480032038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  325.052080][T24350] RAX: ffffffffffffffda RBX: 00007f647f3e5fa0 RCX: 00007f647f18f6c9
[  325.052090][T24350] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000003
[  325.052100][T24350] RBP: 00007f6480032090 R08: 0000000000000000 R09: 0000000000000000
[  325.052110][T24350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  325.052118][T24350] R13: 00007f647f3e6038 R14: 00007f647f3e5fa0 R15: 00007ffdbd610628
[  325.052141][T24350]  </TASK>
[  325.269166][T24377] FAULT_INJECTION: forcing a failure.
[  325.269166][T24377] name failslab, interval 1, probability 0, space 0, times 0
[  325.273276][T24377] CPU: 1 UID: 0 PID: 24377 Comm: syz.1.5261 Not tainted syzkaller #0 PREEMPT(full) 
[  325.273291][T24377] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  325.273297][T24377] Call Trace:
[  325.273302][T24377]  <TASK>
[  325.273307][T24377]  dump_stack_lvl+0x16c/0x1f0
[  325.273326][T24377]  should_fail_ex+0x512/0x640
[  325.273339][T24377]  ? fs_reclaim_acquire+0xae/0x150
[  325.273353][T24377]  should_failslab+0xc2/0x120
[  325.273366][T24377]  __kmalloc_noprof+0xdd/0x880
[  325.273381][T24377]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  325.273397][T24377]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  325.273408][T24377]  tomoyo_realpath_from_path+0xc2/0x6e0
[  325.273422][T24377]  ? tomoyo_profile+0x47/0x60
[  325.273437][T24377]  tomoyo_path_number_perm+0x245/0x580
[  325.273447][T24377]  ? tomoyo_path_number_perm+0x237/0x580
[  325.273458][T24377]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  325.273469][T24377]  ? find_held_lock+0x2b/0x80
[  325.273494][T24377]  ? find_held_lock+0x2b/0x80
[  325.273506][T24377]  ? hook_file_ioctl_common+0x145/0x410
[  325.273523][T24377]  ? __fget_files+0x20e/0x3c0
[  325.273537][T24377]  security_file_ioctl+0x9b/0x240
[  325.273550][T24377]  __x64_sys_ioctl+0xb7/0x210
[  325.273566][T24377]  do_syscall_64+0xcd/0xfa0
[  325.273577][T24377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.273587][T24377] RIP: 0033:0x7faae3b8f6c9
[  325.273597][T24377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  325.273607][T24377] RSP: 002b:00007faae4a40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  325.273617][T24377] RAX: ffffffffffffffda RBX: 00007faae3de5fa0 RCX: 00007faae3b8f6c9
[  325.273624][T24377] RDX: 0000200000000100 RSI: 00000000800452d3 RDI: 0000000000000004
[  325.273630][T24377] RBP: 00007faae4a40090 R08: 0000000000000000 R09: 0000000000000000
[  325.273636][T24377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  325.273642][T24377] R13: 00007faae3de6038 R14: 00007faae3de5fa0 R15: 00007ffe388ea298
[  325.273656][T24377]  </TASK>
[  325.273660][T24377] ERROR: Out of memory at tomoyo_realpath_from_path.
[  325.339690][T24374] afs: Unknown parameter 'smackfsdef'
[  325.382122][T24385] netlink: 'syz.3.5256': attribute type 20 has an invalid length.
[  325.385598][T24384] TCP: TCP_TX_DELAY enabled
[  325.411833][   T40] audit: type=1400 audit(315.710:2029): avc:  denied  { map } for  pid=24386 comm="syz.4.5263" path="socket:[83123]" dev="sockfs" ino=83123 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  325.438954][T24385] netlink: 'syz.3.5256': attribute type 20 has an invalid length.
[  326.588738][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  351.219402][T13212] IPVS: ip_vs_send_async error -22
[  392.283371][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  410.925337][ T5939] Bluetooth: hci2: command 0x0405 tx timeout
[  416.839510][T13212] IPVS: ip_vs_send_async error -22
[  457.977744][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  471.855887][    C0] 
[  471.856949][    C0] ======================================================
[  471.859753][    C0] WARNING: possible circular locking dependency detected
[  471.862532][    C0] syzkaller #0 Not tainted
[  471.865008][    C0] ------------------------------------------------------
[  471.869205][    C0] swapper/0/0 is trying to acquire lock:
[  471.871497][    C0] ffff88802c7aa218 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3){+.-.}-{3:3}, at: __dev_queue_xmit+0x33ff/0x4490
[  471.876462][    C0] 
[  471.876462][    C0] but task is already holding lock:
[  471.879382][    C0] ffff888032a79958 (&qdisc_xmit_lock_key#4){+.-.}-{3:3}, at: sch_direct_xmit+0x3ba/0xcf0
[  471.883332][    C0] 
[  471.883332][    C0] which lock already depends on the new lock.
[  471.883332][    C0] 
[  471.887524][    C0] 
[  471.887524][    C0] the existing dependency chain (in reverse order) is:
[  471.891141][    C0] 
[  471.891141][    C0] -> #1 (&qdisc_xmit_lock_key#4){+.-.}-{3:3}:
[  471.894484][    C0]        _raw_spin_lock+0x2e/0x40
[  471.896558][    C0]        sch_direct_xmit+0x3ba/0xcf0
[  471.898702][    C0]        __dev_queue_xmit+0x144d/0x4490
[  471.900990][    C0]        neigh_resolve_output+0x53a/0x940
[  471.903305][    C0]        ip6_finish_output2+0xad1/0x1cf0
[  471.905604][    C0]        __ip6_finish_output+0x3cd/0x1010
[  471.907928][    C0]        ip6_output+0x253/0x710
[  471.909903][    C0]        mld_sendpack+0xac1/0x1350
[  471.912035][    C0]        mld_ifc_work+0x740/0xbf0
[  471.914164][    C0]        process_one_work+0x9cf/0x1b70
[  471.916384][    C0]        worker_thread+0x6c8/0xf10
[  471.918511][    C0]        kthread+0x3c5/0x780
[  471.920427][    C0]        ret_from_fork+0x675/0x7d0
[  471.922500][    C0]        ret_from_fork_asm+0x1a/0x30
[  471.924769][    C0] 
[  471.924769][    C0] -> #0 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3){+.-.}-{3:3}:
[  471.928944][    C0]        __lock_acquire+0x126f/0x1c90
[  471.931113][    C0]        lock_acquire+0x179/0x350
[  471.933223][    C0]        _raw_spin_lock+0x2e/0x40
[  471.935293][    C0]        __dev_queue_xmit+0x33ff/0x4490
[  471.937607][    C0]        neigh_resolve_output+0x53a/0x940
[  471.939939][    C0]        ip6_finish_output2+0xad1/0x1cf0
[  471.942244][    C0]        __ip6_finish_output+0x3cd/0x1010
[  471.944563][    C0]        ip6_output+0x253/0x710
[  471.946592][    C0]        ndisc_send_skb+0xa85/0x1f50
[  471.948759][    C0]        ndisc_send_ns+0xc6/0x140
[  471.950856][    C0]        ndisc_solicit+0x2f6/0x510
[  471.952948][    C0]        neigh_probe+0xce/0x110
[  471.954952][    C0]        __neigh_event_send+0xac5/0x13c0
[  471.957268][    C0]        neigh_resolve_output+0x56b/0x940
[  471.959656][    C0]        ip6_finish_output2+0xad1/0x1cf0
[  471.961933][    C0]        __ip6_finish_output+0x3cd/0x1010
[  471.964316][    C0]        ip6_output+0x253/0x710
[  471.966307][    C0]        ip6_local_out+0xd1/0x4d0
[  471.968374][    C0]        ip6_send_skb+0x112/0x460
[  471.970424][    C0]        ip6_push_pending_frames+0xdd/0x100
[  471.972843][    C0]        icmpv6_push_pending_frames+0x2dc/0x460
[  471.975359][    C0]        icmp6_send+0x1ec9/0x2be0
[  471.977404][    C0]        ip6_link_failure+0x31/0x5a0
[  471.979501][    C0]        ip_tunnel_xmit+0x2fd7/0x3850
[  471.981719][    C0]        __gre_xmit+0x8bb/0xc00
[  471.983725][    C0]        erspan_xmit+0x56b/0x25d0
[  471.985799][    C0]        dev_hard_start_xmit+0x97/0x740
[  471.988046][    C0]        sch_direct_xmit+0x1b2/0xcf0
[  471.990188][    C0]        __qdisc_run+0x54a/0x1c00
[  471.992295][    C0]        net_tx_action+0x74f/0xce0
[  471.994386][    C0]        handle_softirqs+0x219/0x8e0
[  471.996546][    C0]        __irq_exit_rcu+0x109/0x170
[  471.998658][    C0]        irq_exit_rcu+0x9/0x30
[  472.000619][    C0]        sysvec_apic_timer_interrupt+0xa4/0xc0
[  472.003147][    C0]        asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  472.005811][    C0]        pv_native_safe_halt+0xf/0x20
[  472.008021][    C0]        default_idle+0x13/0x20
[  472.010015][    C0]        default_idle_call+0x6c/0xb0
[  472.012203][    C0]        do_idle+0x38d/0x500
[  472.014124][    C0]        cpu_startup_entry+0x4f/0x60
[  472.016293][    C0]        rest_init+0x16b/0x2b0
[  472.018254][    C0]        start_kernel+0x3f6/0x4e0
[  472.020342][    C0]        x86_64_start_reservations+0x18/0x30
[  472.022778][    C0]        x86_64_start_kernel+0x130/0x190
[  472.025137][    C0]        common_startup_64+0x13e/0x148
[  472.027339][    C0] 
[  472.027339][    C0] other info that might help us debug this:
[  472.027339][    C0] 
[  472.031394][    C0]  Possible unsafe locking scenario:
[  472.031394][    C0] 
[  472.034479][    C0]        CPU0                    CPU1
[  472.036672][    C0]        ----                    ----
[  472.038824][    C0]   lock(&qdisc_xmit_lock_key#4);
[  472.040795][    C0]                                lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3);
[  472.044622][    C0]                                lock(&qdisc_xmit_lock_key#4);
[  472.047658][    C0]   lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3);
[  472.050561][    C0] 
[  472.050561][    C0]  *** DEADLOCK ***
[  472.050561][    C0] 
[  472.053684][    C0] 9 locks held by swapper/0/0:
[  472.055657][    C0]  #0: ffffffff8e3c4720 (rcu_read_lock){....}-{1:3}, at: net_tx_action+0x39a/0xce0
[  472.059413][    C0]  #1: ffff888032a79958 (&qdisc_xmit_lock_key#4){+.-.}-{3:3}, at: sch_direct_xmit+0x3ba/0xcf0
[  472.063621][    C0]  #2: ffffffff8e3c4720 (rcu_read_lock){....}-{1:3}, at: icmp6_send+0x24c/0x2be0
[  472.067353][    C0]  #3: ffff8881053481e0 (k-slock-AF_INET6){+.-.}-{3:3}, at: icmp6_send+0x8a5/0x2be0
[  472.071175][    C0]  #4: ffffffff8e3c4720 (rcu_read_lock){....}-{1:3}, at: ip6_send_skb+0xb9/0x460
[  472.074996][    C0]  #5: ffffffff8e3c4720 (rcu_read_lock){....}-{1:3}, at: ip6_output+0xe3/0x710
[  472.078714][    C0]  #6: ffffffff8e3c4720 (rcu_read_lock){....}-{1:3}, at: ndisc_send_skb+0x1ab/0x1f50
[  472.082604][    C0]  #7: ffffffff8e3c4720 (rcu_read_lock){....}-{1:3}, at: ip6_output+0xe3/0x710
[  472.086319][    C0]  #8: ffffffff8e3c46c0 (rcu_read_lock_bh){....}-{1:3}, at: __dev_queue_xmit+0x276/0x4490
[  472.090371][    C0] 
[  472.090371][    C0] stack backtrace:
[  472.092827][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) 
[  472.092852][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  472.092863][    C0] Call Trace:
[  472.092870][    C0]  <IRQ>
[  472.092879][    C0]  dump_stack_lvl+0x116/0x1f0
[  472.092908][    C0]  print_circular_bug+0x275/0x350
[  472.092936][    C0]  check_noncircular+0x14c/0x170
[  472.092964][    C0]  __lock_acquire+0x126f/0x1c90
[  472.092984][    C0]  lock_acquire+0x179/0x350
[  472.093000][    C0]  ? __dev_queue_xmit+0x33ff/0x4490
[  472.093022][    C0]  _raw_spin_lock+0x2e/0x40
[  472.093045][    C0]  ? __dev_queue_xmit+0x33ff/0x4490
[  472.093064][    C0]  __dev_queue_xmit+0x33ff/0x4490
[  472.093084][    C0]  ? stack_trace_save+0x8e/0xc0
[  472.093107][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  472.093131][    C0]  ? __pfx___dev_queue_xmit+0x10/0x10
[  472.093149][    C0]  ? check_path.constprop.0+0x24/0x50
[  472.093173][    C0]  ? save_trace+0x4e/0x380
[  472.093196][    C0]  ? add_lock_to_list+0x9d/0x130
[  472.093220][    C0]  ? lockdep_unlock+0x64/0xe0
[  472.093241][    C0]  ? __lock_acquire+0x1053/0x1c90
[  472.093262][    C0]  ? __asan_memcpy+0x3c/0x60
[  472.093287][    C0]  ? eth_header+0x11c/0x1f0
[  472.093312][    C0]  neigh_resolve_output+0x53a/0x940
[  472.093342][    C0]  ip6_finish_output2+0xad1/0x1cf0
[  472.093363][    C0]  ? ip6_dst_mtu_maybe_forward.constprop.0+0x1be/0x530
[  472.093385][    C0]  __ip6_finish_output+0x3cd/0x1010
[  472.093407][    C0]  ip6_output+0x253/0x710
[  472.093428][    C0]  ndisc_send_skb+0xa85/0x1f50
[  472.093451][    C0]  ? __pfx_ndisc_send_skb+0x10/0x10
[  472.093471][    C0]  ? ndisc_alloc_skb+0x319/0x530
[  472.093492][    C0]  ? __pfx_dst_output+0x10/0x10
[  472.093511][    C0]  ? __ndisc_fill_addr_option+0xcd/0x110
[  472.093536][    C0]  ? ipv6_get_lladdr+0x2d3/0x4f0
[  472.093555][    C0]  ndisc_send_ns+0xc6/0x140
[  472.093577][    C0]  ? __pfx_ndisc_send_ns+0x10/0x10
[  472.093600][    C0]  ? ipv6_chk_addr_and_flags+0x3b/0x60
[  472.093632][    C0]  ndisc_solicit+0x2f6/0x510
[  472.093654][    C0]  ? __pfx_ndisc_solicit+0x10/0x10
[  472.093676][    C0]  ? neigh_probe+0x72/0x110
[  472.093697][    C0]  ? __pfx_ndisc_solicit+0x10/0x10
[  472.093719][    C0]  neigh_probe+0xce/0x110
[  472.093740][    C0]  __neigh_event_send+0xac5/0x13c0
[  472.093768][    C0]  neigh_resolve_output+0x56b/0x940
[  472.093794][    C0]  ? nf_hook+0x48d/0x780
[  472.093812][    C0]  ? __pfx____neigh_create+0x10/0x10
[  472.093832][    C0]  ip6_finish_output2+0xad1/0x1cf0
[  472.093852][    C0]  ? ip6_dst_mtu_maybe_forward.constprop.0+0x1be/0x530
[  472.093874][    C0]  __ip6_finish_output+0x3cd/0x1010
[  472.093896][    C0]  ip6_output+0x253/0x710
[  472.093917][    C0]  ip6_local_out+0xd1/0x4d0
[  472.093943][    C0]  ip6_send_skb+0x112/0x460
[  472.093964][    C0]  ip6_push_pending_frames+0xdd/0x100
[  472.093986][    C0]  icmpv6_push_pending_frames+0x2dc/0x460
[  472.094008][    C0]  icmp6_send+0x1ec9/0x2be0
[  472.094031][    C0]  ? __pfx_icmp6_send+0x10/0x10
[  472.094049][    C0]  ? ___neigh_create+0x15d8/0x28c0
[  472.094070][    C0]  ? find_held_lock+0x2b/0x80
[  472.094090][    C0]  ? __pfx____neigh_create+0x10/0x10
[  472.094107][    C0]  ? ip6_neigh_lookup+0x7b5/0xbe0
[  472.094129][    C0]  ? x86_64_start_reservations+0x18/0x30
[  472.094154][    C0]  ? x86_64_start_kernel+0x130/0x190
[  472.094178][    C0]  ? __pfx_ip6_neigh_lookup+0x10/0x10
[  472.094199][    C0]  ? ip6_link_failure+0x31/0x5a0
[  472.094216][    C0]  ip6_link_failure+0x31/0x5a0
[  472.094233][    C0]  ? __pfx_ip6_link_failure+0x10/0x10
[  472.094252][    C0]  ip_tunnel_xmit+0x2fd7/0x3850
[  472.094275][    C0]  ? __pfx_ip_tunnel_xmit+0x10/0x10
[  472.094293][    C0]  ? rcu_is_watching+0x12/0xc0
[  472.094315][    C0]  ? trace_kmem_cache_alloc+0x28/0xc0
[  472.094336][    C0]  ? kmem_cache_alloc_node_noprof+0x2d8/0x770
[  472.094363][    C0]  ? skb_release_data+0x79a/0x9e0
[  472.094385][    C0]  ? kmalloc_reserve+0x18b/0x2c0
[  472.094410][    C0]  ? kmalloc_reserve+0x13c/0x2c0
[  472.094436][    C0]  __gre_xmit+0x8bb/0xc00
[  472.094461][    C0]  ? __pfx___gre_xmit+0x10/0x10
[  472.094481][    C0]  ? __pfx_pskb_expand_head+0x10/0x10
[  472.094501][    C0]  erspan_xmit+0x56b/0x25d0
[  472.094523][    C0]  ? __pfx_erspan_xmit+0x10/0x10
[  472.094545][    C0]  dev_hard_start_xmit+0x97/0x740
[  472.094563][    C0]  sch_direct_xmit+0x1b2/0xcf0
[  472.094583][    C0]  ? __pfx_sch_direct_xmit+0x10/0x10
[  472.094600][    C0]  ? get_slot_next+0x230/0x2f0
[  472.094624][    C0]  __qdisc_run+0x54a/0x1c00
[  472.094656][    C0]  net_tx_action+0x74f/0xce0
[  472.094676][    C0]  ? rcu_is_watching+0x12/0xc0
[  472.094694][    C0]  handle_softirqs+0x219/0x8e0
[  472.094714][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  472.094732][    C0]  __irq_exit_rcu+0x109/0x170
[  472.094748][    C0]  irq_exit_rcu+0x9/0x30
[  472.094763][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  472.094787][    C0]  </IRQ>
[  472.094793][    C0]  <TASK>
[  472.094798][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  472.094816][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  472.094843][    C0] Code: d7 6c 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d e3 84 29 00 fb f4 <e9> 3c 0a 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  472.094860][    C0] RSP: 0018:ffffffff8e007df8 EFLAGS: 00000286
[  472.094876][    C0] RAX: 00000000003afbbd RBX: 0000000000000000 RCX: ffffffff8b60a2a9
[  472.094889][    C0] RDX: 0000000000000000 RSI: ffffffff8da2b882 RDI: ffffffff8bf07040
[  472.094901][    C0] RBP: fffffbfff1c12f40 R08: 0000000000000001 R09: ffffed100d486655
[  472.094913][    C0] R10: ffff88806a4332ab R11: 0000000000000001 R12: 0000000000000000
[  472.094925][    C0] R13: ffffffff8e097a00 R14: ffffffff90820dd0 R15: 0000000000000000
[  472.094941][    C0]  ? ct_kernel_exit+0x139/0x190
[  472.094961][    C0]  default_idle+0x13/0x20
[  472.094979][    C0]  default_idle_call+0x6c/0xb0
[  472.094999][    C0]  do_idle+0x38d/0x500
[  472.095021][    C0]  ? __pfx_do_idle+0x10/0x10
[  472.095042][    C0]  ? trace_sched_exit_tp+0x2f/0x120
[  472.095064][    C0]  cpu_startup_entry+0x4f/0x60
[  472.095086][    C0]  rest_init+0x16b/0x2b0
[  472.095105][    C0]  ? acpi_subsystem_init+0x133/0x180
[  472.095128][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  472.095153][    C0]  start_kernel+0x3f6/0x4e0
[  472.095176][    C0]  x86_64_start_reservations+0x18/0x30
[  472.095199][    C0]  x86_64_start_kernel+0x130/0x190
[  472.095223][    C0]  common_startup_64+0x13e/0x148
[  472.095247][    C0]  </TASK>

VM DIAGNOSIS:
22:39:53  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff852963f0 RDI=ffffffff9add8780 RBP=ffffffff9add8740 RSP=ffffc90000006490
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=656c6c616b7a7973
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff35bb142 R15=dffffc0000000000
RIP=ffffffff85296417 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6a08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffda5cc4f52 CR3=000000000e182000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000060001 Opmask01=0000000000000001 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=00000000fffbffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9919468d6048f812 9bd80b203c021ede
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 07f8c702d8afaf43 e7b2f7e7985e4a0e
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 955557659b26a921 aa8061b3a1cd549e
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 14c88056724aa11c 61cd584024e6e6d5
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 00000000000000b4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000034
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2328c1c07cfb30b7 4bf7848ed4a1fdc0
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7ee8a124d535cbcc 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a38c13de87253224 05bc4b009de2f7b1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffb3273000000000 9038548c36286324
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f1b4a1d4f75ee10 988656bd8de4f029
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 816afe161f59b768 cfbef0e229ad3840
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6d6f632036383334 323d64697000002e 6874676e656c2064 696c61766e692000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6765632036323334 3237646370000024 6274676465662064 6366617664632000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6870203435313230 3865656569205d31 32343154205b5d34 34373737392e3735
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 313d657669737369 6d7265702074656b 636f735f636d733d 7373616c63742074
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f6d64617379733a 725f6d6461737973 3a746f6f723d7478 65746e6f63742074
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f6d64617379733a 725f6d6461737973 3a746f6f723d7478 65746e6f63732033
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323133383d6f6e69 202273666b636f73 223d76656420225d 33323133385b3a74
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7865746e6f637320 3430323978303d64 6d636c74636f6920 3935373d6f6e6920
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=ffffffff8e3c4720 RCX=0000000000000002 RDX=0000000000000000
RSI=ffffffff8bf06fc0 RDI=ffffffff8dcd5ee8 RBP=0000000000000001 RSP=ffffc900032df038
R8 =0000000000000000 R9 =0000000000000000 R10=ffffc900032df130 R11=0000000000010c76
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81a1b973 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f681e7ab300 ffffffff 00c00000
GS =0000 ffff8880d6b08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055c55d7d6f40 CR3=000000002aa11000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000c 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=3a896dd291eff84b f40f0e0f4d3de023 3a896dd291eff84b f40f0e0f4d3de023 3a896dd291eff84b f40f0e0f4d3de023 3a896dd291eff84b f40f0e0f4d3de023
ZMM18=52354e3ff90526fa 9a974297210b6364 52354e3ff90526fa 9a974297210b6364 52354e3ff90526fa 9a974297210b6364 52354e3ff90526fa 9a974297210b6364
ZMM19=8717000000000000 0000000000000004 8717000000000000 0000000000000003 8717000000000000 0000000000000002 8717000000000000 0000000000000001
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff89af9027 ffffffff89af8fbc ffffffff89af8fe1 ffffffff89af8ffe
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff89af8ee0 ffffffff89af925e ffffffff89af8e5f 0000000b00000004
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000600040008 000602000000000c 0000000800040009 000a000800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0300000000000008 ffffffae000003e6 0000000800040000 0008000800000014
ZMM25=9a9742979a974297 9a9742979a974297 9a9742979a974297 9a9742979a974297 9a9742979a974297 9a9742979a974297 9a9742979a974297 9a9742979a974297
ZMM26=f90526faf90526fa f90526faf90526fa f90526faf90526fa f90526faf90526fa f90526faf90526fa f90526faf90526fa f90526faf90526fa f90526faf90526fa
ZMM27=52354e3f52354e3f 52354e3f52354e3f 52354e3f52354e3f 52354e3f52354e3f 52354e3f52354e3f 52354e3f52354e3f 52354e3f52354e3f 52354e3f52354e3f
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=8017000080170000 8017000080170000 8017000080170000 8017000080170000 8017000080170000 8017000080170000 8017000080170000 8017000080170000
info registers vcpu 2

CPU#2
RAX=ffffc9000013d000 RBX=ffff888026c9e800 RCX=ffffffff819cedd3 RDX=1ffff11004d93c87
RSI=ffffffff8632d934 RDI=ffff888026c9e438 RBP=0000000000000001 RSP=ffffc90000648e98
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffc90000648ff8
R12=ffffc9000013d008 R13=ffff888026c9e428 R14=ffff88802902b800 R15=0000000000000000
RIP=ffffffff8632d982 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6c08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffda5cb3350 CR3=000000000e182000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffffe00 Opmask01=0000000000000000 Opmask02=000000003f3f3dff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000002696cdff 000000000000000f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000561652eb99a0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0200000000000000 00000000000080fe
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f91b47bdb20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0200000000000000 00000000000080fe
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1200545200000000 0000000000000000 0000000000007e01 7c1b029c00060101
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3701013563538263 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a630010001005634 1200ff133dd00502 39773b3a3633211c 1a0f0c060379010e
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff 0101910101740050 8b7314c301ea0176 a630010001005634
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1200ff133dd00502 39773b3a3633211c 1a0f0c060379010e 3701013563538263
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbff52532232d20
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000264e04 RBX=0000000000000003 RCX=ffffffff8b60a2a9 RDX=ffffed100d4e6656
RSI=ffffffff8bf06fc0 RDI=ffffffff8192358d RBP=ffffed1003bd6000 RSP=ffffc90000197de8
R8 =0000000000000000 R9 =ffffed100d4e6655 R10=ffff88806a7332ab R11=0000000000000000
R12=0000000000000003 R13=ffff88801deb0000 R14=ffffffff90820dd0 R15=0000000000000000
RIP=ffffffff8b608d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6d08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000561652eb8168 CR3=000000000e182000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bae24d6d13fe1aa7 dcb43409c9938b83
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 35e3307c0498e078 567475838668fda0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f2d8e0f2bff17052 692b7bf1a553a499
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 aeafd22566608eee 0d22e5dd52943d08
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 00000000000000b4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000034
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 08a3e3e60cf9eda7 6e3569f1fa542a22
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a19ad955a94b73fd 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d9d2dc2004215d5d cde033bbcf7a5bf1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8562926800000000 d4ebc8bcf176db50
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0c184ff4c7611f6d 72435660f6db4391
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9c48cf3041c24377 87ed66150bf5714a
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 840004ce030010b0 80840004ce033a01 e08080840004cc03 18040004c8030066
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 706201ffffffffff fffffff70804c003 02040004bc031004 00080007000c0008
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 840004b6030010b0 80840004b6033801 e08080840004b403 18040004b0030204
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0004ac0338040004 a80300040004a403 00020004a2030002 0004a00304ddfeef
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fc08000498030785 f4ca080004900340 0400048c03640400 0488030188080004
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0004ac0338040004 a80300040004a403 00020004a2030002 0004a00304ddfeef
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 840004b6030010b0 80840004b6033801 e08080840004b403 18040004b0030204
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100100008808080 80808082be10000b 8004010000000806 0801598600080006
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000