last executing test programs:

1.62175318s ago: executing program 1 (id=2624):
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)}], 0x1, &(0x7f0000000e80)=[@hopopts={{0xe8, 0x29, 0x36, {0x5e, 0x19, '\x00', [@padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @generic={0x9, 0x85, "392801fa36c477dd5884edbbb109fce50a434764c01dfd359783b0eceedf6c9dab7dc865229eea32c49a344ad59016bca1ac03f3b1c84d09b5223afbaec51a78f65fe687f85515fa8966113a6c840055bab1a1d22d8d360cf949a3f02a5b3385425a4acb5e78d0af421c09012fa07aafd18c295b5ce4c941ae130f613bc24a9e7366f3624f"}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x35}}, @jumbo, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @empty}]}}}, @dstopts_2292={{0x170, 0x29, 0x4, {0x89, 0x2a, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0x9, 0x9f, [0x8]}}, @generic={0xfe, 0x55, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc1cf3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a82"}, @generic={0x80, 0x13, "09e12e5f0b6bdcf72f2ec7008a15fa88b025e0"}, @generic={0x8, 0xb4, "7878a8473c6fc1c080b47a371d77dfdd5998b533e164c4f7be558331bfca2a445147a51a5a92a115b036fd3a8b9559fef72490787a56e3c41ed1ea40f98a1d30ea43f7b0067e3a0a5c4d8b62b3f45f2a72705668051570bae1bc92116846d535ebfc72eb2dc018a95a40f170d4d397f05228d0874b0bbefc14d59680aa69dae62ae02e929335fdd1177e7d2a89659ecffd3aca2ba51aec497e6b2920f47276a98437fd625237dbf97c1f29b43e4978a33d11d5f6"}, @ra={0x5, 0x2, 0xa7e}, @pad1, @ra={0x5, 0x2, 0xbf4}, @ra={0x5, 0x2, 0x1}, @generic={0x93, 0xd, "e80ee304ecb784ec4655260cec"}]}}}, @hoplimit={{0x14}}, @hoplimit={{0x14, 0x29, 0x34, 0x7}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @rthdr={{0x28, 0x29, 0x39, {0x0, 0x2, 0x0, 0x0, 0x0, [@mcast2]}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0xc, 0x4, 0x2, 0x70, 0x0, [@mcast1, @mcast2]}}}], 0x300}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200)={0x1b, 0x0, 0x0, 0x9, 0x0, 0xffffffffffffffff, 0xf48, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x1}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="220000000400000010"], 0x48)
r3 = accept4(r2, 0x0, 0x0, 0x800)
ioctl$IOCTL_STOP_ACCEL_DEV(0xffffffffffffffff, 0x40096101, &(0x7f0000000540)={{}, 0x5})
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.32731365s ago: executing program 1 (id=2627):
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000180)={0x1}) (async)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000180)={0x1})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f00000014c0)="66b881000f00d0f342f40f20e035800000000f22e0c7442400d5000000c744240284000000c7442406000000000f011c2440354280000066440ff479e747f4c74424000f000000c74424025f000000ff1c2440de530043daba46e10000", 0x5d}], 0x1, 0x4498bda7e2139f37, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x2, &(0x7f0000000000)=@gcm_128={{0x304}, "bd88818314ff7d84", "0b3ea924c47b25d7624cd362581725c7", "000400", "78cb6e6d9d2574d4"}, 0x28) (async)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x2, &(0x7f0000000000)=@gcm_128={{0x304}, "bd88818314ff7d84", "0b3ea924c47b25d7624cd362581725c7", "000400", "78cb6e6d9d2574d4"}, 0x28)
openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000001c0), 0xc0a8f2509d2c3a6d, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3)
ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000001540)={0xd, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]})
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) (async)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f00000000c0)) (async)
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMAXCID(r4, 0x40047451, &(0x7f0000000200)=0x8)
ioctl$PPPIOCSFLAGS1(r4, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r4, &(0x7f00000002c0)=[{&(0x7f0000000300)="00214717a70d000000000306010000000000002133a65108027d8b7f1c60495d18fec3f83634cfe5cff0e0716010615e88f55306e4d10c4c406904261e0d3fb996e1714f3435bbdeb35b793cb42c3131463efbd3d852", 0x56}], 0x1, 0xe, 0x200004)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x3, 0x40, 0x40, 0x203, 0x10001, 0x2004cc, 0xfffffffffffffffd, 0xffffffffffffffff, 0x3, 0x0, 0x2, 0x10000000000004, 0x3, 0x6, 0x1], 0x26000, 0x200650})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
bind$alg(r0, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="4dc07f9471633078", 0x8)
r5 = accept4(r0, 0x0, 0x0, 0x80000)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000002c0)="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", 0x1000)
r6 = dup(r5)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f00000003c0)=0x9)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x7f) (async)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x7f)
syz_kvm_setup_cpu$x86(r6, r3, &(0x7f0000003000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000012c0)="450f01df3e66410f1a2e440f20c03504000000440f22c015000001000f0648b800000000010000000f23d80f21f835000000b00f23f82e3ef3440f1efec421dded3966480f38f5aa9d1046500f2060", 0x4f}], 0x1, 0x6, &(0x7f00000001c0), 0x0) (async)
syz_kvm_setup_cpu$x86(r6, r3, &(0x7f0000003000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000012c0)="450f01df3e66410f1a2e440f20c03504000000440f22c015000001000f0648b800000000010000000f23d80f21f835000000b00f23f82e3ef3440f1efec421dded3966480f38f5aa9d1046500f2060", 0x4f}], 0x1, 0x6, &(0x7f00000001c0), 0x0)
listen(r5, 0xfffffe00) (async)
listen(r5, 0xfffffe00)
write$binfmt_elf64(r6, &(0x7f0000001340)=ANY=[@ANYBLOB="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"], 0x78) (async)
write$binfmt_elf64(r6, &(0x7f0000001340)=ANY=[@ANYBLOB="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"], 0x78)

1.17736393s ago: executing program 0 (id=2628):
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="2400000026000100000000000000000008000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00', @ANYRES32], 0x24}], 0x1}, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
shmat(0x0, &(0x7f0000ff9000/0x1000)=nil, 0x5000)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000300)="d8000000180081064e81f782db4cb904021d0800fe067c05e8fe55a10a0005000140020003600e41b0000900ac0006fc1100000016000500014002000000035c3b61c1d67f6f94007174cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001b14d6d930dfe1d9d322fe7c4650b5b9bd6ee6f63f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b4ff010000000000000dd6e4edef3d93452a09004b43370e9703920723f97e46bb5c07540d3b", 0xd8}], 0x1}, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000001040)={'ip_vti0\x00', &(0x7f0000001000)={'syztnl2\x00', 0x0, 0x0, 0xa000, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x64, 0x0, 0x0, 0x4, 0x0, @empty, @rand_addr=0x3}}}})
syz_emit_ethernet(0xfdef, &(0x7f0000001c80)={@random="e904a200", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x1, 0x1, 0x4, 0x0, @void}}}}}}}, 0x0)
add_key$keyring(&(0x7f0000005180), 0xfffffffffffffffd, 0x0, 0x0, 0xfffffffffffffffc)
r3 = socket(0x15, 0x5, 0x0)
r4 = syz_open_dev$sndctrl(&(0x7f0000000600), 0x0, 0x0)
ioctl$I2C_RDWR(r4, 0x707, 0x0)
getsockopt(r3, 0x200000000114, 0x271b, &(0x7f0000019580)=""/102393, &(0x7f0000000040)=0x18ff9)

1.143421103s ago: executing program 0 (id=2630):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r1, 0xc06864b8, &(0x7f0000000580)={0x0, 0x1ffe, 0x80, 0x3231564e, 0x3, [0x2], [0x1, 0xffffffff, 0x4ec], [0x0, 0x0, 0x0, 0xfffffffc], [0xa1d6]})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="20000000190a01020000000000000000000000000900010073"], 0x20}}, 0x0)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x3)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r1, 0xc00864bf, &(0x7f0000000300)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r4, 0xc01064c1, &(0x7f0000000380)={r5})
r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
write(r6, &(0x7f0000001280)='\f', 0x1)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000001, 0x4000010, r4, 0x8000000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, 0x0, &(0x7f0000000280)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}})
ioctl$TIOCGPTPEER(r4, 0x40140921, 0x200000000005)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x1c}}, 0x0)
r10 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r10, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
recvmmsg(r10, &(0x7f0000006640)=[{{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000c80)=""/4096, 0x1000}, {&(0x7f0000000a80)=""/223, 0xdf}, {0x0}, {&(0x7f0000001dc0)=""/4096, 0x1000}, {0x0}], 0x5}, 0x1fd}], 0x2, 0x100, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00', <r11=>0x0})
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r12, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=ANY=[@ANYBLOB="4c0000001000010025bd7000fddbdf2500000000", @ANYRES32=r11, @ANYBLOB="10080400895504002c001280110001006272696467655f736c617665000000001400058005002818c1fcf83abaea37bcbb313386533ffbc8fc610e0e10e18b14efd2ee59091920c2d8ec49357fcf7caba838675955bde4da16"], 0x4c}, 0x1, 0x0, 0x0, 0x200404c1}, 0x4044010)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r13=>0x0})
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r6, 0x89f0, &(0x7f0000000080)={'syztnl2\x00', &(0x7f0000000400)={'syztnl1\x00', r13, 0x4, 0xa1, 0x7, 0x3ff, 0xc, @remote, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8081, 0x8, 0xac, 0x800}})
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r0)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, 0x0, 0x40)
r14 = syz_open_dev$sg(0x0, 0x7d97, 0x800)
ioctl$SG_GET_SCSI_ID(r14, 0x2276, &(0x7f00000000c0))
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000017000000540006803c00040067636d286165732900000000000000000000000000000000000000000000000014000000e3de3d7b4cd07ec3ee777de774fc7987cca41989140003"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4008014)

1.063027395s ago: executing program 1 (id=2632):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)="5c00000013006bcd9e3fe3dc6e48aa310b6b8703340000001f03000000000000040014000d000a000d0000009ee517d3334abc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f698", 0x5b}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20004002)

976.972351ms ago: executing program 1 (id=2634):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SEG6_CMD_SETHMAC(r0, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, 0x0, 0x800, 0x70bd2b, 0x25dfdbfb, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x20000854)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0xc8, 0x0, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0xdc}, @ETHTOOL_A_LINKMODES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_LINKMODES_HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}]}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0xf}, @ETHTOOL_A_LINKMODES_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x40}, 0x4000884)
splice(r0, &(0x7f00000000c0)=0xffffffffffffff71, r0, &(0x7f0000000240)=0x4, 0x2, 0x5)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000001f0900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000017000000540006803c00040067636d286165732900000000000000000000000000000000000000000000000014000000e3de3d7b4cd07ec3ee777de774fc7987cca41989140003"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4008014)

913.068336ms ago: executing program 1 (id=2636):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
mount$9p_virtio(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000080), 0x2, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000000100)=0x17, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff02f50000000000000000000000000104004e200023b0"], 0x0)

912.615532ms ago: executing program 1 (id=2637):
r0 = socket(0x15, 0x5, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(0xffffffffffffffff, 0x10, 0x0, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000280)={<r3=>0x0, @in6={{0xa, 0x4e23, 0x70f, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x81}}, 0x1, 0x4, 0x0, 0x3, 0x35, 0x0, 0x6}, &(0x7f0000000080)=0x9c)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001740)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a505000000007751e8ba639a67880141cca555077e3a159110193dd2ff1fa7c3205bfedbe9d8f3b423cdacfa7e32fe0231368b2264f9c504c9f1f65515b2e1a38d522be18bd10a48b043ccc42646d25dfd73d06d7535f7866907dc6751dfced1fd8accae669e173a649c1cfd6587d47578f4c35235138d5521f9453559c35da860e8efbc6f2b2a3e3173d566a0f06c54c3a4903ef31c4d4acef2ce3599f455c7a3a48a01010000009f2f0517e4ca0e1803a2971a50f713d4e21b020000000796f23526ec0fd97f734c4c815bf697e6bd25eac36d4dfafe7cc03b0864009d2e7d7ff6ff72ba8972b87539aac61e3f46b122b09789d99b3d0524f39dc09244ba5dbe9180950f76f7049db5cb19d7962fed44e00f39ed8c13a11fa798de504e2865cd81f2b77fdd76c677f800d249c8130b018d4300000000000000db3947c8dc7b1b4c4554ffdca8b7fb05000000000000593d60abc9b3e67d127e56f3d3759dcfeb820634fd4d419efaefb24305b2bea20007840484511b6efaad206335a30ef7b9e01446a6285f4665a7fe37da2349f8bf4064726dc32add75e0f435f28fbeda75cf971d54a9698cf3270f420edc85c176070bfff7909413f3fbd3ced3284db730b368ddca654dd7836f171b766ffd7526847a6bfda9c648e8aa5c558aa6d463ec9d840f39149091269ce9757d37a687b6b0776952be5cb0417d33d3ab25493418494d9d10d76e603129e9a72657513f2e858f41a46f9ac7d672cacd581b7e2fc7a5758fcfb822de1dacc357341e000cc34c49051d4b7443e5b49c000000000000007d6173050027791c9c1e04ad3711a66d91254a6f911b1449c62a6e1e3f9ce19a9d1715c009a58e6eadac8f61b45853673df72dc813f7454ae22d79ac48034282f030408895886e96443283ddedd93907cedd49e0c5752f755849953957143a0380d1f62acbf18b251ce63b29fe177745448ccc925770fac12cf9e291200df6bb669d5a57dd74df817ef2f8848f710c359afe73947afebdf5536ee29a42ea6c97cbb8a3749d0019ffccd82b97d4f72cc3359798c594bd0ed9a4996e24127f6dcb81b0c8cdb51699fc08aee1376c81e549703cdbdc0a5cac1ac64997db35facfca15a1855f2702342952725ea32beb0ec748a0b39e42c57629b32da2f7bd1c37729dfb07d9766cd0c709e94cac4e32b6967a0000000000000000000000000000003d90fd02293989a74b74ae55bbe148092f95d69af22fa1c88083ace1ecd8936cfd280fe806c515d8958d41fad01e37c0f877a5cced9a980e40bbb2d6a6b230d398c3fecbdf116d5363e66bb63be3f876ae17e3ff5fb63373559bde1199eb6fad7ebeab2842510f4805dda4a580371f2957d1c8744036711474c398697a91cebbe3f5065b84b852c37a9b4940dfe460854a8638ee88bdd5c3fdaa55b453094c6738"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000000c0)='xs_stream_read_request\x00', r4}, 0x10)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f00000001c0)={r3, 0x4}, 0x8)
sendmmsg$inet6(r2, &(0x7f0000000b40)=[{{&(0x7f0000000180)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="e9", 0x1}], 0x1}}], 0x1, 0x600c000)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f00000000c0)={0x0, 0x77}, 0x8)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
ioctl$KVM_CREATE_PIT2(r6, 0x4040ae77, &(0x7f0000000040))
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x2, 0x180, 0x4, 0x10, 0xf1, 0x50, 0x12, 0x5, 0x0, 0x29, 0x0, 0x6, 0x0, 0xbdb], 0xffff1001, 0x43100})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000100)={0x1, 0x1, 0x6f1, 0x7fff800000000})
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f00000003c0)={[0x60000000002, 0x1000000000, 0x0, 0x43, 0x2000001, 0x0, 0x2004cb, 0xc, 0x1000000, 0x68ff, 0x5, 0x9, 0x3], 0xeeee8000, 0x4ad7})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x8080000, 0xeeee0000, 0x8, 0x8, 0xb, 0xe4, 0x40, 0x0, 0x0, 0x2e, 0x80}, {0x5000, 0x4000, 0x3, 0x0, 0x42, 0x5, 0x5, 0x6, 0x15, 0x3, 0x2, 0x87}, {0x6000, 0x1, 0xd, 0x5, 0x3, 0x7, 0x0, 0x9, 0x1, 0xa4, 0x5, 0x5}, {0x1, 0xeeee0000, 0xd, 0x6, 0x4, 0x42, 0xb, 0xff, 0x0, 0x7, 0xe}, {0xeeee0000, 0xd000, 0xf, 0x3, 0x15, 0x7, 0xab, 0x8, 0x9, 0x83, 0xf7, 0x83}, {0x1000, 0x3909e40c33606d9c, 0xe, 0xa0, 0xb1, 0x8, 0x1, 0xa0, 0x82, 0xf, 0x1, 0x7}, {0x3000, 0x3000, 0x4, 0x5, 0x7, 0x5, 0x7, 0x3, 0x8, 0x81, 0x40, 0x70}, {0x4000, 0x4000, 0xe, 0x4, 0xcd, 0x7, 0x1, 0x9, 0x2, 0xc, 0xb8, 0x9}, {0x13c34a3ca7ad6519, 0x30}, {0x8000000, 0x7}, 0x80000031, 0x0, 0x0, 0x2024, 0x2, 0x1500, 0x3000, [0x6800000000000000, 0x4, 0x5b, 0x8]})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x28, r9, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)
getsockopt(r0, 0x200000000114, 0x271b, &(0x7f0000019580)=""/102393, &(0x7f0000000040)=0x18ff9)

664.21265ms ago: executing program 2 (id=2644):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
recvmsg$can_raw(r1, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x10040)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4042}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, 0x1, 0x4, 0x101, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFULA_CFG_MODE={0xa, 0x2, {0x81}}, @NFULA_CFG_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x1}, @NFULA_CFG_CMD={0x5, 0x1, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x2004885c)
r3 = epoll_create1(0x0)
ioctl$FS_IOC_SETFLAGS(r3, 0x80088a02, &(0x7f0000000000)=0x100)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000008b40)=ANY=[@ANYBLOB="3800000040000100fcff070004000000010000000400488014000180100010800400058005000300000000000c0002"], 0x38}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

488.511846ms ago: executing program 2 (id=2646):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x1e0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f00000001c0)={[{@default_permissions}, {@workdir={'workdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@default_permissions}]})
r0 = syz_open_procfs(0x0, &(0x7f0000001ec0)='sessionid\x00')
readv(r0, &(0x7f0000000180)=[{&(0x7f00000012c0)=""/191, 0xbf}], 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000001400)='mounts\x00')
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x101901, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r3, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0x971})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r3, 0x4008ae6a, &(0x7f0000000400)={0x1, 0x0, [{0x0, 0x2, 0x1, 0x0, @adapter={0x4, 0x8001, 0x2, 0xfffffbfd, 0x5}}]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
read$FUSE(r1, &(0x7f0000003ac0)={0x2020}, 0x2023)

418.203749ms ago: executing program 3 (id=2649):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000001f0900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x7000000}, [@NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0)

418.09902ms ago: executing program 3 (id=2650):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r0, &(0x7f0000000300)={0xa, 0x4e23, 0x0, @loopback, 0x5}, 0x1c)
sendto$inet6(r0, &(0x7f0000000340)="051823aba819834740c6e12eb8f6d2df07ba14ab2cc897ace75fff393e12a532a46477d6b11b48e42531a3ae6020a444002ed934192126c75deeeba1683465932c96ba8d0700000000000001e815385444b8f67fedfa426445defc1aa5c6d1101673d81c824f8447252a713eb853c702e9e01920ce0f16ee7b0a18c3228da6a66e585054042f0af4555f3f4cb548748a9e5c63a36221fce707fbb23caafaf368d0343222765de024a422e244fe0841af02827d54c43336956560503c5361fd5d96599899", 0xc4, 0xe0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00'}, 0x1c)

417.881057ms ago: executing program 2 (id=2651):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000006c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r0, 0x40505331, &(0x7f0000000040)={{0x2, 0x10}, {0xfd, 0x9f}, 0x5, 0x1, 0x5})
r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000040)={0x80, 0x1, 0x0, "cb9649f4ad7d527a0e7447de4048315cdd8a771b391c208d2bd399e0a56bade4"})
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010027bd7000fbd3df2502000000050004000100000005000400010000001400020076657468315f746f5f7465616d0000000900030073797a32000000000900010073"], 0x68}, 0x1, 0x0, 0x0, 0x4000145}, 0x8000)
r4 = socket(0x2, 0x3, 0xff)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f0000000040)=0x41a4, 0x4)
sendto$inet(r4, &(0x7f0000000100)="9b0af3a12f93236ff673e7f5b20f5103bdad9c4ef0d1b3b100e54015c2862bc49568e839bb5dadbf7b4c32a8", 0x2c, 0x404c000, &(0x7f0000000000)={0x2, 0x4e23, @empty}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'syztnl2\x00', &(0x7f0000000080)={'ip_vti0\x00', <r5=>0x0, 0x700, 0x8, 0xfff, 0x101, {{0xf, 0x4, 0x0, 0x2, 0x3c, 0x65, 0x0, 0x5, 0x2f, 0x0, @local, @dev={0xac, 0x14, 0x14, 0x13}, {[@ssrr={0x89, 0x27, 0x1b, [@loopback, @dev={0xac, 0x14, 0x14, 0x3a}, @remote, @empty, @local, @broadcast, @broadcast, @rand_addr=0x64010102, @rand_addr=0x64010100]}]}}}}})
sendmsg$nl_route_sched(r4, &(0x7f0000000200)={&(0x7f0000000000), 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=@delqdisc={0x68, 0x25, 0x0, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, r5, {0x3, 0xc}, {0x3, 0x9}, {0x1}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x400}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x7}, @qdisc_kind_options=@q_choke={{0xa}, {0xc, 0x2, [@TCA_CHOKE_MAX_P={0x8, 0x3, 0x6}]}}, @qdisc_kind_options=@q_skbprio={{0xc}, {0x8, 0x2, 0x7fffffff}}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x5}]}, 0x68}, 0x1, 0x0, 0x0, 0x20000080}, 0x24004000)
bind$bt_hci(r4, &(0x7f00000002c0)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)

338.02626ms ago: executing program 3 (id=2652):
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)}], 0x1, &(0x7f0000000e80)=[@hopopts={{0xe8, 0x29, 0x36, {0x5e, 0x19, '\x00', [@padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @generic={0x9, 0x85, "392801fa36c477dd5884edbbb109fce50a434764c01dfd359783b0eceedf6c9dab7dc865229eea32c49a344ad59016bca1ac03f3b1c84d09b5223afbaec51a78f65fe687f85515fa8966113a6c840055bab1a1d22d8d360cf949a3f02a5b3385425a4acb5e78d0af421c09012fa07aafd18c295b5ce4c941ae130f613bc24a9e7366f3624f"}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x35}}, @jumbo, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @empty}]}}}, @dstopts_2292={{0x1a8, 0x29, 0x4, {0x89, 0x31, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0x9, 0x9f, [0x8]}}, @generic={0xfe, 0x55, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc1cf3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a82"}, @generic={0x80, 0x12, "09e12e5f0b6bdcf72f2ec7008a15fa88b025"}, @generic={0x8, 0xf0, "7878a8473c6fc1c080b47a371d77dfdd5998b533e164c4f7be558331bfca2a445147a51a5a92a115b036fd3a8b9559fef72490787a56e3c41ed1ea40f98a1d30ea43f7b0067e3a0a5c4d8b62b3f45f2a72705668051570bae1bc92116846d535ebfc72eb2dc018a95a40f170d4d397f05228d0874b0bbefc14d59680aa69dae62ae02e929335fdd1177e7d2a89659ecffd3aca2ba51aec497e6b2920f47276a98437fd625237dbf97c1f29b43e4978a33d11d5f6d0d66218c0e56695f090368869773efc02dc3735010c6b02746a6c0ae53b7ba21fb83180bc98cbf5c6d6b5d55a4db0cbeeb12211d640105ae0de4889"}, @ra={0x5, 0x2, 0xa7e}, @pad1, @ra={0x5, 0x2, 0xbf4}, @ra={0x5, 0x2, 0x1}, @generic={0x93, 0xd, "e80ee304ecb784ec4655260cec"}]}}}, @hoplimit={{0x14}}, @hoplimit={{0x14, 0x29, 0x34, 0x7}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @rthdr={{0x28, 0x29, 0x39, {0x0, 0x2, 0x0, 0x0, 0x0, [@mcast2]}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0xc, 0x4, 0x2, 0x70, 0x0, [@mcast1, @mcast2]}}}], 0x338}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200)={0x1b, 0x0, 0x0, 0x9, 0x0, 0xffffffffffffffff, 0xf48, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x1}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="220000000400000010"], 0x48)
r3 = accept4(r2, 0x0, 0x0, 0x800)
ioctl$IOCTL_STOP_ACCEL_DEV(0xffffffffffffffff, 0x40096101, &(0x7f0000000540)={{}, 0x5})
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

336.353245ms ago: executing program 2 (id=2653):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000003f00000017000000540006803c00040067636d286165732900000000000000000000000000000000000000000000000014000000e3de3d7b4cd07ec3ee777de774fc7987cca41989140003"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4008014)

276.525739ms ago: executing program 2 (id=2654):
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)}], 0x1, &(0x7f0000000e80)=[@hopopts={{0xe8, 0x29, 0x36, {0x5e, 0x19, '\x00', [@padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @generic={0x9, 0x85, "392801fa36c477dd5884edbbb109fce50a434764c01dfd359783b0eceedf6c9dab7dc865229eea32c49a344ad59016bca1ac03f3b1c84d09b5223afbaec51a78f65fe687f85515fa8966113a6c840055bab1a1d22d8d360cf949a3f02a5b3385425a4acb5e78d0af421c09012fa07aafd18c295b5ce4c941ae130f613bc24a9e7366f3624f"}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x35}}, @jumbo, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @empty}]}}}, @dstopts_2292={{0x1b0, 0x29, 0x4, {0x89, 0x32, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0x9, 0x9f, [0x8]}}, @generic={0xfe, 0x55, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc1cf3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a82"}, @generic={0x80, 0x13, "09e12e5f0b6bdcf72f2ec7008a15fa88b025e0"}, @generic={0x8, 0xf0, "7878a8473c6fc1c080b47a371d77dfdd5998b533e164c4f7be558331bfca2a445147a51a5a92a115b036fd3a8b9559fef72490787a56e3c41ed1ea40f98a1d30ea43f7b0067e3a0a5c4d8b62b3f45f2a72705668051570bae1bc92116846d535ebfc72eb2dc018a95a40f170d4d397f05228d0874b0bbefc14d59680aa69dae62ae02e929335fdd1177e7d2a89659ecffd3aca2ba51aec497e6b2920f47276a98437fd625237dbf97c1f29b43e4978a33d11d5f6d0d66218c0e56695f090368869773efc02dc3735010c6b02746a6c0ae53b7ba21fb83180bc98cbf5c6d6b5d55a4db0cbeeb12211d640105ae0de4889"}, @ra={0x5, 0x2, 0xa7e}, @pad1, @ra={0x5, 0x2, 0xbf4}, @ra={0x5, 0x2, 0x1}, @generic={0x93, 0x11, "e80ee304ecb784ec4655260cecea14e498"}]}}}, @hoplimit={{0x14}}, @hoplimit={{0x14, 0x29, 0x34, 0x7}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @rthdr={{0x28, 0x29, 0x39, {0x0, 0x2, 0x0, 0x0, 0x0, [@mcast2]}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0xc, 0x4, 0x2, 0x70, 0x0, [@mcast1, @mcast2]}}}], 0x340}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200)={0x1b, 0x0, 0x0, 0x9, 0x0, 0xffffffffffffffff, 0xf48, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x1}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="220000000400000010"], 0x48)
r3 = accept4(r2, 0x0, 0x0, 0x800)
ioctl$IOCTL_STOP_ACCEL_DEV(0xffffffffffffffff, 0x40096101, &(0x7f0000000540)={{}, 0x5})
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {0x0}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

248.870008ms ago: executing program 0 (id=2655):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
lsetxattr$security_capability(&(0x7f0000002580)='./file0\x00', &(0x7f00000025c0), 0x0, 0x0, 0x0)
syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000040))
openat2$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x202, 0x40, 0x4}, 0x18)
write$binfmt_elf32(r0, &(0x7f0000000540)=ANY=[@ANYBLOB="7f454c4601079704080000000000000002000600010000004300000038000000c0010000030000000100200002"], 0x78)
close(r0)
mkdir(&(0x7f0000000200)='./bus\x00', 0x10)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140))
chroot(&(0x7f0000000000)='./bus\x00')
execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)

188.260828ms ago: executing program 3 (id=2656):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
getpeername$qrtr(r0, 0x0, 0x0)
r1 = eventfd(0xc)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000600)={<r2=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000000)={'veth1_virt_wifi\x00', &(0x7f0000000f00)=@ethtool_cmd={0x23, 0x9, 0x1008000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb, 0x1, 0x1000005, 0x8, 0x2, 0x0, 0x4, 0xfffffffe, [0xeaea]}})
ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, &(0x7f0000000040)={0x1, r1})
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r3, &(0x7f0000000840)={0x9, {"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", 0x1000}}, 0x214)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
socket$packet(0x11, 0x3, 0x300)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r5, 0x84, 0xc, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
syz_open_dev$vim2m(&(0x7f0000000400), 0x3, 0x2)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000440)={'wg0\x00'})
sendmsg$qrtr(0xffffffffffffffff, 0xfffffffffffffffd, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x1a6c42)
setsockopt$ARPT_SO_SET_REPLACE(r4, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)

188.145607ms ago: executing program 0 (id=2657):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
mount$9p_virtio(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000080), 0x2, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000000100)=0x17, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff02000500000000000000000000000104004e200023b0"], 0x0)

187.947551ms ago: executing program 0 (id=2658):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c0000002c00010122bd7005fcffffff0a"], 0x1c}, 0x1, 0x0, 0x0, 0x4048957}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000048000000030a05020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a3000000000080007"], 0xcc}}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18b96485c34759898b1803fee196000000000000003d"], &(0x7f0000000bc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x10, 0x4, 0x8, 0x2, 0x0, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000000c0)={r4, &(0x7f0000000300), &(0x7f0000000000)=""/10, 0x2}, 0x20)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {0x7}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x11}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x58}}, 0x20004000)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000001f0900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000cc0)={{0x14}, [@NFT_MSG_DELRULE={0x134, 0x8, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0xa}, [@NFTA_RULE_USERDATA={0x80, 0x7, 0x1, 0x0, "0bc520ce6147d3cb3ef7586388a273ea7b439c9e2d686eb955f807fe41d71790ff476f8254c157bf3a84c28a007cf4549e647d58ea2afd4cc41fddfe96b632daee159faea9198f621903381a1f38e7c54bc6021c311aea0016d7c8c0bdd258e3be550d597bd80d8c2dce220c29dd2ec2e724f322b6069a7cc3f9a040"}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x3}, @NFTA_RULE_EXPRESSIONS={0x60, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @match={{0xa}, @void}}, {0x3c, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_MASQ_REG_PROTO_MIN={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_MASQ_REG_PROTO_MIN={0x8, 0x2, 0x1, 0x0, 0x17}, @NFTA_MASQ_FLAGS={0x8, 0x1, 0x1, 0x0, 0x2a}, @NFTA_MASQ_REG_PROTO_MIN={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_MASQ_FLAGS={0x8, 0x1, 0x1, 0x0, 0x1}]}}}, {0x10, 0x1, 0x0, 0x1, @inner={{0xa}, @void}}]}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_RULE_ID={0x8}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x3}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x4}]}], {0x14}}, 0x15c}, 0x1, 0x0, 0x0, 0x4004014}, 0x0)

107.855394ms ago: executing program 2 (id=2659):
r0 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r1 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000300)='/dev/comedi3\x00', 0x141000, 0x0)
ioctl$COMEDI_DEVCONFIG(r1, 0x40946400, &(0x7f0000000180)={'pcl818\x00', [0x4f27, 0x4, 0x7cc1, 0x401, 0x1, 0x6dc3, 0xfff, 0x1838, 0x5, 0x3fb, 0x802, 0xc42, 0x1, 0x2, 0x9, 0xe1cb, 0x5, 0x7f, 0x0, 0x395, 0x8000008c, 0xfffffffe, 0xa, 0xfffffff5, 0x0, 0x3, 0xab99, 0x2, 0x5, 0x8000000, 0xff]})
ioctl$COMEDI_INSNLIST(r1, 0x8010640b, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x2000000, 0x0, 0x0, 0x5, 0x300000}]})
bind$tipc(r0, 0x0, 0x0)

107.555936ms ago: executing program 0 (id=2660):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="19000000040000000400000004100000000004005edf09000000c1ff7f271b577c89dc9bcab14c4a6bbf8b733276543408bc4e62ea7a862f397d7bb454aacc532d7549da90dc19c88cb54653e18265846610fe9f278db85d21", @ANYRES32=0x1, @ANYBLOB="fefffffe00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x15, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000010000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800002c0000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b70400000000000085000000330000009500000000000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc00000}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r3, 0x2000012, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0xfffffffe, 0x0, 0xfffffdd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, 0x1a)
mmap(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x3000002, 0x4c831, r0, 0x0)
r4 = userfaultfd(0x801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x380})
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x8000, 0x1f7)
r6 = fanotify_init(0x200, 0x0)
fanotify_mark(r6, 0x201, 0x4000003e, r5, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$PPPOEIOCSFWD(r7, 0x4008b100, &(0x7f00000001c0)={0x18, 0x0, {0x2, @multicast, 'hsr0\x00'}})
ioctl$FS_IOC_FSSETXATTR(r7, 0x401c5820, &(0x7f0000000080)={0x8})
ioctl$HIDIOCAPPLICATION(r7, 0x4802, 0xfff)
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r4, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00001b1000/0x4000)=nil, 0x400000, 0x2, 0x2})
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000780)=@newsa={0x158, 0x10, 0x1, 0x0, 0x0, {{@in=@private=0xa010100, @in=@private, 0x0, 0xecdf, 0x4e24, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {@in=@broadcast, 0x0, 0x32}, @in6=@private1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2000000}, {0x0, 0x800, 0x0, 0x7}, {}, 0x0, 0x0, 0x2, 0x0, 0x0, 0xcd}, [@replay_esn_val={0x1c, 0x17, {0x0, 0x70bd2a}}, @algo_auth_trunc={0x4c, 0x14, {{'hmac(sha256)\x00'}, 0x0, 0x80}}]}, 0x158}}, 0x4050)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x15)
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2)

107.329688ms ago: executing program 3 (id=2661):
r0 = socket(0x15, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x271b, &(0x7f0000019580)=""/102393, &(0x7f0000000040)=0x18ff9) (fail_nth: 27)

0s ago: executing program 3 (id=2662):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c00000010004b0400f4ed00000000007a000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c0002800800040000000000060006"], 0x4c}}, 0x0)

kernel console output (not intermixed with test programs):

mac80211_hwsim hwsim3 wlan1: left allmulticast mode
[   85.076239][ T8951] bond0 (unregistering): Released all slaves
[   85.452209][ T9011] netlink: 'syz.3.1164': attribute type 1 has an invalid length.
[   85.481642][ T9014] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[   85.520912][   T40] audit: type=1400 audit(2000000003.749:381): avc:  denied  { write } for  pid=9016 comm="syz.2.1166" path="socket:[16962]" dev="sockfs" ino=16962 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   85.767075][ T9042] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[   85.817939][ T9049] SET target dimension over the limit!
[   85.826425][ T5936] Bluetooth: hci1: unknown advertising packet type: 0x82
[   85.826450][ T5936] Bluetooth: hci1: Dropping invalid advertising data
[   85.834206][ T5936] Bluetooth: hci1: Malformed LE Event: 0x02
[   85.918864][ T9057] Cannot find del_set index 4 as target
[   86.176004][ T5936] Bluetooth: hci1: unknown advertising packet type: 0x82
[   86.176035][ T5936] Bluetooth: hci1: Dropping invalid advertising data
[   86.182000][ T5936] Bluetooth: hci1: Malformed LE Event: 0x02
[   86.542646][ T5936] Bluetooth: hci1: unknown advertising packet type: 0x82
[   86.542677][ T5936] Bluetooth: hci1: Dropping invalid advertising data
[   86.548314][ T5936] Bluetooth: hci1: Malformed LE Event: 0x02
[   86.693210][   T40] audit: type=1400 audit(2000000004.929:382): avc:  denied  { name_bind } for  pid=9131 comm="syz.1.1211" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[   86.821606][ T9148] SET target dimension over the limit!
[   86.893388][ T9153] bond3: option arp_validate: invalid value (2048)
[   86.898394][ T9153] bond3 (unregistering): Released all slaves
[   86.927514][ T9159] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9159 comm=syz.3.1220
[   87.125613][ T5936] Bluetooth: hci1: unknown advertising packet type: 0x82
[   87.125644][ T5936] Bluetooth: hci1: Dropping invalid advertising data
[   87.131466][ T5936] Bluetooth: hci1: Malformed LE Event: 0x02
[   87.134179][   T40] audit: type=1400 audit(2000000005.369:383): avc:  denied  { read } for  pid=9175 comm="syz.3.1229" path="socket:[18043]" dev="sockfs" ino=18043 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   87.227792][   T40] audit: type=1400 audit(2000000005.459:384): avc:  denied  { read } for  pid=9180 comm="syz.2.1231" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   87.337661][ T9181] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.340949][ T9181] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.508720][   T46] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   87.512181][   T46] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   87.515526][   T46] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   87.518473][   T46] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   87.809924][ T5936] Bluetooth: hci1: unknown advertising packet type: 0x82
[   87.809959][ T5936] Bluetooth: hci1: Malformed LE Event: 0x02
[   87.823892][ T9205] overlayfs: failed to clone upperpath
[   87.960924][ T9216] __nla_validate_parse: 36 callbacks suppressed
[   87.960940][ T9216] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1244'.
[   87.968384][ T9216] SET target dimension over the limit!
[   88.077145][ T9229] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1249'.
[   88.082520][ T9221] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1244'.
[   88.152062][ T9236] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1251'.
[   88.396910][ T9264] xt_recent: Unsupported userspace flags (000000b2)
[   88.444968][ T9245] futex_wake_op: syz.0.1254 tries to shift op by -1; fix this program
[   88.485717][ T9270] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1261'.
[   88.582395][ T9281] netlink: 'syz.3.1266': attribute type 1 has an invalid length.
[   88.697633][ T9292] Cannot find del_set index 4 as target
[   88.896770][ T9315] Cannot find del_set index 4 as target
[   88.923773][ T9319] fuse: Bad value for 'fd'
[   88.956246][ T9325] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1286'.
[   88.960803][ T9325] SET target dimension over the limit!
[   89.023040][ T9335] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1287'.
[   89.069978][ T9338] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1286'.
[   89.095017][ T9342] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1289'.
[   89.216716][ T9352] Cannot find del_set index 4 as target
[   89.306263][ T9362] openvswitch: netlink: Message has 592 unknown bytes.
[   89.309234][ T9362] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   89.381573][ T9375] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1305'.
[   89.424433][ T9384] Cannot find del_set index 4 as target
[   89.449026][   T40] audit: type=1400 audit(2000000007.679:385): avc:  denied  { bind } for  pid=9386 comm="syz.0.1309" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   89.467024][ T5936] Bluetooth: hci2: unknown advertising packet type: 0x82
[   89.467048][ T5936] Bluetooth: hci2: Dropping invalid advertising data
[   89.472000][ T5936] Bluetooth: hci2: Malformed LE Event: 0x02
[   89.535464][   T40] audit: type=1400 audit(2000000007.769:386): avc:  denied  { write } for  pid=9397 comm="syz.1.1315" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   89.591235][ T9406] xt_TPROXY: Can be used only with -p tcp or -p udp
[   89.660031][ T9416] Cannot find del_set index 4 as target
[   89.694402][ T9418] netlink: 'syz.1.1323': attribute type 5 has an invalid length.
[   89.701737][ T5936] Bluetooth: hci2: unknown advertising packet type: 0x82
[   89.701786][ T5936] Bluetooth: hci2: Dropping invalid advertising data
[   89.707553][ T5936] Bluetooth: hci2: unknown advertising packet type: 0x3b
[   89.707572][ T5936] Bluetooth: hci2: Malformed LE Event: 0x02
[   89.903664][ T9448] Cannot find del_set index 4 as target
[   89.956411][ T9456] fuse: Bad value for 'fd'
[   89.985875][ T9459] SET target dimension over the limit!
[   89.996326][   T40] audit: type=1400 audit(2000000008.229:387): avc:  denied  { create } for  pid=9461 comm="syz.2.1342" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[   90.158711][ T9483] Cannot find del_set index 4 as target
[   90.195806][ T9488] tipc: MTU too low for tipc bearer
[   90.235242][ T9496] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[   90.394248][   T40] audit: type=1400 audit(2000000008.629:388): avc:  denied  { getopt } for  pid=9512 comm="syz.2.1363" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   90.400147][ T9513] ip6erspan0: entered promiscuous mode
[   90.445726][ T9515] Cannot find del_set index 4 as target
[   90.772082][ T9541] Cannot find del_set index 4 as target
[   90.903964][ T9549] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[   91.132251][ T9576] Cannot find del_set index 4 as target
[   91.164589][ T9578] devpts: Bad value for 'max'
[   91.173151][ T9581] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[   91.299848][   T40] audit: type=1400 audit(2000000009.529:389): avc:  denied  { sqpoll } for  pid=9594 comm="syz.3.1399" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   91.309729][ T9595] netlink: 'syz.3.1399': attribute type 3 has an invalid length.
[   91.455982][ T9609] netlink: 'syz.3.1402': attribute type 1 has an invalid length.
[   91.813819][ T9611] xt_TCPMSS: Only works on TCP SYN packets
[   91.817293][ T5936] Bluetooth: hci1: unknown advertising packet type: 0x82
[   91.817319][ T5936] Bluetooth: hci1: Dropping invalid advertising data
[   91.823705][ T9611] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   91.823728][ T9611] overlayfs: missing 'lowerdir'
[   91.829881][ T5936] Bluetooth: hci1: Dropping invalid advertising data
[   91.832833][ T5936] Bluetooth: hci1: Malformed LE Event: 0x02
[   91.872393][ T9613] Cannot find del_set index 4 as target
[   92.046927][   T40] audit: type=1400 audit(2000000010.279:390): avc:  denied  { connect } for  pid=9625 comm="syz.2.1412" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   92.138605][ T9633] netlink: 'syz.0.1406': attribute type 10 has an invalid length.
[   92.483817][ T9671] Cannot find del_set index 4 as target
[   92.572574][ T9683] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[   92.577100][ T9685] netlink: 'syz.0.1432': attribute type 5 has an invalid length.
[   92.658297][ T9694] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[   92.738442][ T9705] lo speed is unknown, defaulting to 1000
[   92.758435][ T9709] Cannot find del_set index 4 as target
[   92.773304][ T9710] netlink: 'syz.2.1445': attribute type 4 has an invalid length.
[   92.901721][   T40] audit: type=1400 audit(2000000011.139:391): avc:  denied  { ioctl } for  pid=9721 comm="syz.3.1452" path="socket:[20558]" dev="sockfs" ino=20558 ioctlcmd=0x89f2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   92.952253][ T9730] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[   92.996790][ T9735] __nla_validate_parse: 13 callbacks suppressed
[   92.996803][ T9735] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1459'.
[   93.043801][ T9745] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1462'.
[   93.047594][ T9745] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1462'.
[   93.078858][ T9749] Cannot find del_set index 4 as target
[   93.139451][ T9759] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1469'.
[   93.181352][ T9759] SET target dimension over the limit!
[   93.192550][ T9765] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[   93.237724][ T9770] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1469'.
[   93.263490][ T9773] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1474'.
[   93.355001][ T9780] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1476'.
[   93.395912][ T9786] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1479'.
[   93.447283][ T9790] Cannot find del_set index 4 as target
[   93.473440][ T9792] trusted_key: syz.3.1482 sent an empty control message without MSG_MORE.
[   93.529566][ T9803] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1486'.
[   93.534281][ T9803] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1486'.
[   93.678988][   T40] audit: type=1400 audit(2000000011.909:392): avc:  denied  { connect } for  pid=9815 comm="syz.2.1490" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   93.795602][ T9826] Cannot find del_set index 4 as target
[   93.884047][   T40] audit: type=1400 audit(2000000012.119:393): avc:  denied  { checkpoint_restore } for  pid=9837 comm="syz.2.1501" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   93.953972][ T9847] No such timeout policy "syz1"
[   94.129278][ T9870] SET target dimension over the limit!
[   94.385824][ T5936] Bluetooth: hci3: unknown advertising packet type: 0x76
[   94.385855][ T5936] Bluetooth: hci3: Dropping invalid advertising data
[   94.392442][ T5936] Bluetooth: hci3: Malformed LE Event: 0x02
[   94.617665][ T9915] Cannot find del_set index 4 as target
[   94.925866][ T5936] Bluetooth: hci3: unknown advertising packet type: 0x82
[   94.925885][ T5936] Bluetooth: hci3: Dropping invalid advertising data
[   94.931236][ T5936] Bluetooth: hci3: Malformed LE Event: 0x02
[   94.948718][   T40] audit: type=1400 audit(2000000013.179:394): avc:  denied  { read } for  pid=9953 comm="syz.1.1549" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   95.069066][ T5936] Bluetooth: hci1: unknown advertising packet type: 0x82
[   95.069085][ T5936] Bluetooth: hci1: Dropping invalid advertising data
[   95.074677][ T5936] Bluetooth: hci1: Malformed LE Event: 0x02
[   95.198561][ T9995] Cannot find del_set index 4 as target
[   95.248196][ T9999] SELinux:  Context system_u:object_r:initctl_t:s0 is not valid (left unmapped).
[   95.253153][   T40] audit: type=1400 audit(2000000013.489:395): avc:  denied  { relabelto } for  pid=9998 comm="syz.2.1571" name="file0" dev="tmpfs" ino=2259 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:initctl_t:s0"
[   95.278665][   T40] audit: type=1400 audit(2000000013.489:396): avc:  denied  { associate } for  pid=9998 comm="syz.2.1571" name="file0" dev="tmpfs" ino=2259 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:initctl_t:s0"
[   95.346528][T10011] fuse: Bad value for 'user_id'
[   95.348678][T10011] fuse: Bad value for 'user_id'
[   95.454183][T10032] Cannot find del_set index 4 as target
[   96.018581][   T40] audit: type=1400 audit(2000000014.249:397): avc:  denied  { getopt } for  pid=10095 comm="syz.3.1611" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   96.457007][T10148] set_target_v0_checkentry: 2 callbacks suppressed
[   96.457022][T10148] Cannot find del_set index 4 as target
[   96.495230][T10150] lo speed is unknown, defaulting to 1000
[   96.541378][   T40] audit: type=1400 audit(2000000014.779:398): avc:  denied  { getopt } for  pid=10149 comm="syz.1.1633" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   96.548847][   T40] audit: type=1400 audit(2000000014.779:399): avc:  denied  { read } for  pid=10149 comm="syz.1.1633" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   96.765118][T10180] Cannot find del_set index 4 as target
[   96.891986][T10195] /dev/nullb0: Can't lookup blockdev
[   96.999682][T10214] Cannot find del_set index 4 as target
[   97.207187][T10247] Cannot find del_set index 4 as target
[   97.294981][T10254] team0: Port device team_slave_0 removed
[   97.368956][T10270] SET target dimension over the limit!
[   97.392257][   T40] audit: type=1400 audit(2000000015.629:400): avc:  denied  { ioctl } for  pid=10273 comm="syz.2.1683" path="socket:[23685]" dev="sockfs" ino=23685 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   97.487861][T10286] Illegal XDP return value 1228553373 on prog  (id 136) dev N/A, expect packet loss!
[   97.524455][T10289] Cannot find del_set index 4 as target
[   97.979380][T10326] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10326 comm=syz.1.1703
[   97.995467][T10328] Cannot find del_set index 4 as target
[   98.093881][T10336] __nla_validate_parse: 29 callbacks suppressed
[   98.093893][T10336] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1708'.
[   98.215781][T10350] Cannot find del_set index 4 as target
[   98.322185][T10367] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1721'.
[   98.378893][T10375] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1724'.
[   98.513445][T10398] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1734'.
[   98.586104][T10410] netlink: zone id is out of range
[   98.794095][T10439] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1749'.
[   99.056654][T10470] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1761'.
[   99.095229][   T40] kauditd_printk_skb: 1 callbacks suppressed
[   99.095240][   T40] audit: type=1400 audit(2000000017.329:402): avc:  denied  { mount } for  pid=10467 comm="syz.0.1760" name="/" dev="configfs" ino=33 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   99.105084][   T40] audit: type=1400 audit(2000000017.339:403): avc:  denied  { search } for  pid=10467 comm="syz.0.1760" name="/" dev="configfs" ino=33 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   99.144477][T10475] 9pnet_fd: p9_fd_create_tcp (10475): problem connecting socket to 127.0.0.1
[   99.497541][T10497] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1773'.
[   99.593890][T10513] fuse: Unknown parameter 'K-ض7 Òk»ɘÜñ‡(xz/hD\u0x0000000000000003'
[   99.660013][T10522] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1785'.
[   99.666091][T10525] netlink: 'syz.2.1786': attribute type 10 has an invalid length.
[   99.674590][T10525] team0: Device vxcan1 is of different type
[   99.777138][T10523] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1784'.
[   99.877186][T10553] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1797'.
[   99.897965][   T40] audit: type=1326 audit(2000000018.129:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10548 comm="syz.2.1796" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f95e458f7c9 code=0x0
[  100.897365][   T40] audit: type=1400 audit(2000000019.129:405): avc:  denied  { map } for  pid=10673 comm="syz.1.1835" path="socket:[22805]" dev="sockfs" ino=22805 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  101.048732][T10687] Cannot find del_set index 4 as target
[  101.675298][T10755] Cannot find del_set index 4 as target
[  101.892953][T10781] Cannot find del_set index 4 as target
[  102.059204][T10801] openvswitch: netlink: Flow actions attr not present in new flow.
[  102.117012][T10809] Cannot find del_set index 4 as target
[  102.194553][   T40] audit: type=1400 audit(2000000020.429:406): avc:  denied  { create } for  pid=10805 comm="syz.0.1890" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  102.359931][T10826] overlayfs: failed to clone upperpath
[  102.535979][T10844] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  102.865916][T10877] IPVS: sync thread started: state = BACKUP, mcast_ifn = batadv0, syncid = 0, id = 0
[  102.959671][T10881] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=56 sclass=netlink_route_socket pid=10881 comm=syz.3.1921
[  102.999302][T10887] SET target dimension over the limit!
[  103.100076][T10900] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8224 sclass=netlink_route_socket pid=10900 comm=syz.3.1928
[  103.103157][T10902] __nla_validate_parse: 14 callbacks suppressed
[  103.103171][T10902] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1924'.
[  103.103826][T10899] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1929'.
[  103.104276][T10901] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=57 sclass=netlink_route_socket pid=10901 comm=syz.0.1929
[  103.144813][T10906] Cannot find del_set index 4 as target
[  103.249236][T10916] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1935'.
[  103.254188][T10917] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1935'.
[  103.386964][T10929] Process accounting resumed
[  103.409842][T10931] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1941'.
[  103.427362][T10933] Cannot find del_set index 4 as target
[  103.621860][T10951] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1950'.
[  103.767236][   T40] audit: type=1400 audit(2000000021.999:407): avc:  denied  { firmware_load } for  pid=10954 comm="syz.3.1953" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[  103.847728][T10957] syz.3.1953 (10957) used greatest stack depth: 17768 bytes left
[  103.853716][T10970] gtp0: entered promiscuous mode
[  104.013066][T10995] SET target dimension over the limit!
[  104.113705][T11004] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1966'.
[  104.134630][T11006] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1969'.
[  104.356802][T11027] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  104.363696][T11027] SET target dimension over the limit!
[  104.369767][T11027] 9p: Bad value for 'port'
[  104.442271][T11033] Cannot find del_set index 4 as target
[  104.475829][T11037] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1983'.
[  104.521960][T11042] netlink: 'syz.3.1985': attribute type 6 has an invalid length.
[  104.525480][T11042] netlink: 'syz.3.1985': attribute type 6 has an invalid length.
[  104.542611][T11046] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1987'.
[  104.567424][T11048] overlayfs: failed to clone upperpath
[  104.727211][T11065] Cannot find del_set index 4 as target
[  104.836458][T11081] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=12308 sclass=netlink_xfrm_socket pid=11081 comm=syz.3.1998
[  104.872148][T11085] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=11085 comm=syz.0.2002
[  104.906702][   T40] audit: type=1400 audit(2000000023.139:408): avc:  denied  { create } for  pid=11091 comm="syz.1.2005" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  104.909936][T11092] xt_hashlimit: overflow, rate too high: 0
[  104.978619][T11100] Cannot find del_set index 4 as target
[  104.994269][T11104] : entered promiscuous mode
[  105.038954][T11106] SET target dimension over the limit!
[  105.305175][T11139] Cannot find del_set index 4 as target
[  105.688399][T11155] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22
[  106.447421][T11229] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=22931 sclass=netlink_route_socket pid=11229 comm=syz.0.2060
[  106.452036][T11228] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=22931 sclass=netlink_route_socket pid=11228 comm=syz.0.2060
[  106.654052][   T40] audit: type=1400 audit(2000000024.889:409): avc:  denied  { create } for  pid=11254 comm="syz.0.2072" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  106.662611][   T40] audit: type=1400 audit(2000000024.899:410): avc:  denied  { mounton } for  pid=11254 comm="syz.0.2072" path="/475/file0" dev="tmpfs" ino=2485 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  106.670014][   T40] audit: type=1400 audit(2000000024.899:411): avc:  denied  { write } for  pid=11254 comm="syz.0.2072" name="file0" dev="tmpfs" ino=2485 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  106.678841][   T40] audit: type=1400 audit(2000000024.899:412): avc:  denied  { open } for  pid=11254 comm="syz.0.2072" path="/475/file0" dev="tmpfs" ino=2485 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  106.728821][   T40] audit: type=1400 audit(2000000024.959:413): avc:  denied  { unlink } for  pid=5932 comm="syz-executor" name="file0" dev="tmpfs" ino=2485 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  106.816387][T11266] overlayfs: failed to clone upperpath
[  106.850169][   T53] IPVS: starting estimator thread 0...
[  106.940563][T11277] IPVS: using max 45 ests per chain, 108000 per kthread
[  106.964590][T11288] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  107.001328][   T40] audit: type=1400 audit(2000000025.239:414): avc:  denied  { setattr } for  pid=11289 comm="syz.3.2086" path="socket:[24848]" dev="sockfs" ino=24848 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  107.148284][T11298] SET target dimension over the limit!
[  107.355914][   T40] audit: type=1400 audit(2000000025.589:415): avc:  denied  { getopt } for  pid=11309 comm="syz.2.2095" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  107.380991][T11312] overlayfs: missing 'lowerdir'
[  107.941318][   T40] audit: type=1400 audit(2000000026.179:416): avc:  denied  { accept } for  pid=11365 comm="syz.2.2118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  108.008897][   T40] audit: type=1400 audit(2000000026.239:417): avc:  denied  { audit_write } for  pid=11378 comm="syz.0.2123" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  108.066406][T11385] fuse: Bad value for 'fd'
[  108.152159][T11401] __nla_validate_parse: 10 callbacks suppressed
[  108.152171][T11401] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2134'.
[  108.158831][T11401] SET target dimension over the limit!
[  108.224605][T11412] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2136'.
[  108.268188][T11410] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2134'.
[  108.284790][T11420] netlink: 'syz.2.2140': attribute type 3 has an invalid length.
[  108.624963][T11461] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=57 sclass=netlink_route_socket pid=11461 comm=syz.2.2156
[  108.628864][T11461] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=512 sclass=netlink_route_socket pid=11461 comm=syz.2.2156
[  108.688655][T11468] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2159'.
[  108.973312][T11494] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2171'.
[  109.155328][T11503] overlayfs: failed to clone upperpath
[  109.160116][T11511] netlink: 'syz.3.2175': attribute type 3 has an invalid length.
[  109.163579][T11511] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2175'.
[  109.167077][T11511] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5135 sclass=netlink_route_socket pid=11511 comm=syz.3.2175
[  109.178867][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.182613][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.232781][T11513] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2176'.
[  109.392282][T11527] netlink: 'syz.3.2181': attribute type 1 has an invalid length.
[  109.405689][T11530] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2180'.
[  109.418081][T11527] 8021q: adding VLAN 0 to HW filter on device bond5
[  109.427461][T11530] SET target dimension over the limit!
[  109.551544][T11530] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2180'.
[  109.729098][T11554] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2191'.
[  110.393533][   T53] libceph: connect (1)[c::]:6789 error -101
[  110.396704][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  110.402763][   T53] libceph: connect (1)[c::]:6789 error -101
[  110.406392][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  110.662182][   T53] libceph: connect (1)[c::]:6789 error -101
[  110.664341][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  110.841632][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  110.841648][   T40] audit: type=1400 audit(2000000029.079:420): avc:  denied  { getopt } for  pid=11609 comm="syz.3.2211" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  110.954666][T11616] __vm_enough_memory: pid: 11616, comm: syz.3.2214, bytes: 4503599627366400 not enough memory for the allocation
[  111.170918][   T53] libceph: connect (1)[c::]:6789 error -101
[  111.173029][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  111.201186][T11592] ceph: No mds server is up or the cluster is laggy
[  111.364961][T11643] RDS: rds_bind could not find a transport for ::ffff:10.1.1.2, load rds_tcp or rds_rdma?
[  111.402042][T11647] SET target dimension over the limit!
[  111.457009][T11653] openvswitch: netlink: Flow key attr not present in new flow.
[  112.432442][T11700] veth1_macvtap: mtu less than device minimum
[  112.473581][T11703] SET target dimension over the limit!
[  112.671598][T11713] netlink: 'syz.0.2254': attribute type 10 has an invalid length.
[  112.675368][T11713] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[  112.677818][T11713] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  112.681698][T11713] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check.
[  113.217791][T11734] netlink: 'syz.2.2261': attribute type 1 has an invalid length.
[  113.260259][T11739] __nla_validate_parse: 8 callbacks suppressed
[  113.264009][T11739] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2264'.
[  113.318155][T11746] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2266'.
[  113.402613][T11755] fuse: Bad value for 'user_id'
[  113.404219][T11755] fuse: Bad value for 'user_id'
[  113.454944][T11763] netlink: 'syz.0.2273': attribute type 1 has an invalid length.
[  113.532411][   T40] audit: type=1400 audit(2000000031.769:421): avc:  denied  { read } for  pid=11764 comm="syz.1.2274" name="file0" dev="tmpfs" ino=2998 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  113.543848][   T40] audit: type=1400 audit(2000000031.779:422): avc:  denied  { ioctl } for  pid=11764 comm="syz.1.2274" path="/575/file0" dev="tmpfs" ino=2998 ioctlcmd=0x1285 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  113.578971][   T40] audit: type=1400 audit(2000000031.809:423): avc:  denied  { execute } for  pid=11782 comm="syz-executor" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  113.610204][   T40] audit: type=1400 audit(2000000031.809:424): avc:  denied  { execute_no_trans } for  pid=11782 comm="syz-executor" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  113.653689][   T40] audit: type=1400 audit(2000000031.889:425): avc:  denied  { read write } for  pid=11785 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  113.662299][   T40] audit: type=1400 audit(2000000031.899:426): avc:  denied  { open } for  pid=11785 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  113.672609][ T5946] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  113.677925][ T5946] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  113.681809][ T5946] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  113.685781][ T5946] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  113.688987][ T5946] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  113.716196][T11785] lo speed is unknown, defaulting to 1000
[  113.866081][T11796] netlink: 'syz.0.2285': attribute type 1 has an invalid length.
[  113.962629][   T40] audit: type=1400 audit(2000000032.189:427): avc:  denied  { prog_load } for  pid=11801 comm="syz.3.2287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  113.968452][   T40] audit: type=1800 audit(2000000032.199:428): pid=11804 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2288" name="nullb0" dev="tmpfs" ino=1819 res=0 errno=0
[  113.991249][   T40] audit: type=1400 audit(2000000032.209:429): avc:  denied  { map_create } for  pid=11801 comm="syz.3.2287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  114.047713][T11785] chnl_net:caif_netlink_parms(): no params data found
[  114.144943][T11785] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.148093][T11785] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.151407][T11785] bridge_slave_0: entered allmulticast mode
[  114.155252][T11785] bridge_slave_0: entered promiscuous mode
[  114.164913][T11822] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2294'.
[  114.177441][T11785] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.180519][T11785] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.185315][T11785] bridge_slave_1: entered allmulticast mode
[  114.189303][T11785] bridge_slave_1: entered promiscuous mode
[  114.219090][T11785] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  114.227235][T11785] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  114.256924][T11785] team0: Port device team_slave_0 added
[  114.261281][T11785] team0: Port device team_slave_1 added
[  114.285128][T11785] batman_adv: batadv0: Adding interface: batadv_slave_0
[  114.288156][T11785] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  114.299769][T11785] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  114.332047][T11785] batman_adv: batadv0: Adding interface: batadv_slave_1
[  114.334834][T11785] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  114.345244][T11785] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  114.399258][ T1147] bridge_slave_1: left allmulticast mode
[  114.402528][ T1147] bridge_slave_1: left promiscuous mode
[  114.406210][ T1147] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.422055][ T1147] bridge_slave_0: left allmulticast mode
[  114.424434][ T1147] bridge_slave_0: left promiscuous mode
[  114.426540][ T1147] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.454148][T11850] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2304'.
[  114.584345][ T1147] dvmrp6 (unregistering): left allmulticast mode
[  115.711021][ T5936] Bluetooth: hci4: command tx timeout
[  116.194032][ T1147] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  116.198870][ T1147] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  116.203598][ T1147] bond0 (unregistering): Released all slaves
[  116.210380][ T1147] bond1 (unregistering): Released all slaves
[  116.221996][ T1147] bond2 (unregistering): Released all slaves
[  116.232196][ T1147] bond3 (unregistering): Released all slaves
[  116.308025][ T1147] bond4 (unregistering): Released all slaves
[  116.318303][ T1147] bond5 (unregistering): Released all slaves
[  116.329430][ T1147] bond6 (unregistering): Released all slaves
[  116.340375][ T1147] bond7 (unregistering): Released all slaves
[  116.351874][ T1147] bond8 (unregistering): Released all slaves
[  116.370101][T11785] hsr_slave_0: entered promiscuous mode
[  116.373952][T11785] hsr_slave_1: entered promiscuous mode
[  116.416543][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  116.416559][   T40] audit: type=1400 audit(2000000034.649:431): avc:  denied  { search } for  pid=5646 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  116.449429][   T40] audit: type=1400 audit(2000000034.649:432): avc:  denied  { search } for  pid=5646 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  116.457740][   T40] audit: type=1400 audit(2000000034.649:433): avc:  denied  { search } for  pid=5646 comm="dhcpcd" name="data" dev="tmpfs" ino=13 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  116.490094][   T40] audit: type=1400 audit(2000000034.719:434): avc:  denied  { read open } for  pid=11869 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1901 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  116.504516][   T40] audit: type=1400 audit(2000000034.719:435): avc:  denied  { getattr } for  pid=11869 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1901 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  116.522687][   T40] audit: type=1400 audit(2000000034.739:436): avc:  denied  { add_name } for  pid=11868 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  116.536298][   T40] audit: type=1400 audit(2000000034.739:437): avc:  denied  { create } for  pid=11868 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  116.552544][   T40] audit: type=1400 audit(2000000034.739:438): avc:  denied  { write } for  pid=11868 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.eth2.link" dev="tmpfs" ino=2186 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  116.573867][   T40] audit: type=1400 audit(2000000034.739:439): avc:  denied  { append } for  pid=11868 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" dev="tmpfs" ino=2186 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  116.583416][   T40] audit: type=1400 audit(2000000034.799:440): avc:  denied  { remove_name } for  pid=11873 comm="rm" name="resolv.conf.eth2.link" dev="tmpfs" ino=2186 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  116.612723][T11867] bridge15: the hash_elasticity option has been deprecated and is always 16
[  116.767481][T11892] SET target dimension over the limit!
[  116.877403][ T1147] hsr_slave_0: left promiscuous mode
[  116.878148][T11904] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2315'.
[  116.882881][ T1147] hsr_slave_1: left promiscuous mode
[  117.120100][ T1147] team0 (unregistering): Port device team_slave_1 removed
[  117.389732][T11785] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  117.397222][T11785] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  117.409642][T11785] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  117.427380][T11785] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  117.517476][T11785] 8021q: adding VLAN 0 to HW filter on device bond0
[  117.533847][T11785] 8021q: adding VLAN 0 to HW filter on device team0
[  117.542595][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.545450][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  117.548456][T11943] netlink: 'syz.1.2327': attribute type 12 has an invalid length.
[  117.556432][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.558712][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state
[  117.683011][T11785] 8021q: adding VLAN 0 to HW filter on device batadv0
[  117.692803][T11963] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2334'.
[  117.728294][T11785] veth0_vlan: entered promiscuous mode
[  117.736990][T11785] veth1_vlan: entered promiscuous mode
[  117.746972][T11976] SET target dimension over the limit!
[  117.755413][T11785] veth0_macvtap: entered promiscuous mode
[  117.760525][T11785] veth1_macvtap: entered promiscuous mode
[  117.771874][T11785] batman_adv: batadv0: Interface activated: batadv_slave_0
[  117.782334][T11785] batman_adv: batadv0: Interface activated: batadv_slave_1
[  117.788857][ T1147] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.792699][ T1147] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.793603][ T5936] Bluetooth: hci4: command tx timeout
[  117.802260][ T1147] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.805736][ T1147] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.810201][T11983] bond0: (slave wg0): Error: Device type is different from other slaves
[  117.841129][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.843646][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.857124][T11985] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2338'.
[  117.865947][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.869309][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.970951][T11997] netlink: 'syz.0.2345': attribute type 1 has an invalid length.
[  117.989760][T12000] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2346'.
[  118.015695][ T5946] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  118.019561][ T5946] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  118.024343][ T5946] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  118.027153][ T5946] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  118.029746][ T5946] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  118.053155][T12003] lo speed is unknown, defaulting to 1000
[  118.242759][T12003] chnl_net:caif_netlink_parms(): no params data found
[  118.329699][T12003] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.332925][T12003] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.335309][T12003] bridge_slave_0: entered allmulticast mode
[  118.337987][T12003] bridge_slave_0: entered promiscuous mode
[  118.341696][T12003] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.344719][T12003] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.347729][T12003] bridge_slave_1: entered allmulticast mode
[  118.351677][T12003] bridge_slave_1: entered promiscuous mode
[  118.376498][T12003] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  118.383143][T12003] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  118.425107][T12003] team0: Port device team_slave_0 added
[  118.429401][T12003] team0: Port device team_slave_1 added
[  118.453961][T12003] batman_adv: batadv0: Adding interface: batadv_slave_0
[  118.456587][T12003] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  118.467492][T12003] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  118.485046][T12034] 8021q: adding VLAN 0 to HW filter on device bond3
[  118.489974][T12003] batman_adv: batadv0: Adding interface: batadv_slave_1
[  118.493678][T12003] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  118.502083][T12003] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  118.559090][T12039] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2358'.
[  118.571052][T12003] hsr_slave_0: entered promiscuous mode
[  118.573876][T12003] hsr_slave_1: entered promiscuous mode
[  118.576169][T12003] debugfs: 'hsr0' already exists in 'hsr'
[  118.578443][T12003] Cannot create hsr debugfs directory
[  118.588815][ T1145] bridge_slave_0: left allmulticast mode
[  118.592098][ T1145] bridge_slave_0: left promiscuous mode
[  118.598789][ T1145] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.106475][T12062] proc: Unknown parameter '€'
[  119.108173][T12062] SELinux:  Context system_u:object_r:lib_t:s0 is not valid (left unmapped).
[  119.147120][T12065] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2366'.
[  119.198975][T12066] Cannot find add_set index 0 as target
[  119.257391][T12067] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2366'.
[  119.880428][ T5946] Bluetooth: hci4: command tx timeout
[  120.120892][ T5946] Bluetooth: hci1: command tx timeout
[  120.301230][ T1145] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  120.306120][ T1145] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  120.310371][ T1145] bond0 (unregistering): (slave bridge_slave_1): Releasing backup interface
[  120.314250][ T1145] bond0 (unregistering): Released all slaves
[  120.318899][ T1145] bond1 (unregistering): Released all slaves
[  120.325950][ T1145] bond2 (unregistering): Released all slaves
[  120.334286][ T1145] bond3 (unregistering): Released all slaves
[  120.342206][ T1145] bond4 (unregistering): Released all slaves
[  120.392119][ T1145] bond5 (unregistering): Released all slaves
[  120.447660][ T1145] bond6 (unregistering): Released all slaves
[  120.456261][ T1145] bond7 (unregistering): Released all slaves
[  120.465412][ T1145] bond8 (unregistering): Released all slaves
[  120.473291][ T1145] bond9 (unregistering): Released all slaves
[  120.493465][T12067] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  120.496152][T12067] batman_adv: batadv0: Removing interface: batadv_slave_0
[  120.502226][T12067] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  120.504532][T12067] batman_adv: batadv0: Removing interface: batadv_slave_1
[  120.566927][ T1145] : left promiscuous mode
[  120.653116][T12077] netlink: 'syz.3.2371': attribute type 1 has an invalid length.
[  120.718349][T12085] overlayfs: failed to clone upperpath
[  120.972453][T12120] overlayfs: failed to clone upperpath
[  121.064092][ T1145] hsr_slave_0: left promiscuous mode
[  121.071999][ T1145] hsr_slave_1: left promiscuous mode
[  121.258993][ T1145] team0 (unregistering): Port device team_slave_1 removed
[  121.288948][ T1145] team0 (unregistering): Port device team_slave_0 removed
[  121.301772][T12145] Bluetooth: hci2: Frame reassembly failed (-84)
[  121.308797][   T13] Bluetooth: hci2: Frame reassembly failed (-84)
[  121.313936][   T13] Bluetooth: hci2: Frame reassembly failed (-84)
[  121.509031][   T80] smc: removing ib device s
z1
[  121.511785][T12143] batadv_slave_1: entered promiscuous mode
[  121.520783][T12142] batadv_slave_1: left promiscuous mode
[  121.608755][T12003] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  121.617796][T12154] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2402'.
[  121.620842][T12154] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2402'.
[  121.622791][T12003] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  121.627971][T12003] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  121.638056][T12003] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  121.692343][T12003] 8021q: adding VLAN 0 to HW filter on device bond0
[  121.701958][T12003] 8021q: adding VLAN 0 to HW filter on device team0
[  121.707270][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.709713][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  121.727026][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.729884][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  121.892931][T12003] 8021q: adding VLAN 0 to HW filter on device batadv0
[  121.922606][T12003] veth0_vlan: entered promiscuous mode
[  121.927351][T12003] veth1_vlan: entered promiscuous mode
[  121.941357][T12003] veth0_macvtap: entered promiscuous mode
[  121.945601][T12003] veth1_macvtap: entered promiscuous mode
[  121.950426][ T5936] Bluetooth: hci4: command tx timeout
[  121.953659][ T1145] IPVS: stop unused estimator thread 0...
[  121.953865][T12003] batman_adv: batadv0: Interface activated: batadv_slave_0
[  121.962605][T12003] batman_adv: batadv0: Interface activated: batadv_slave_1
[  121.969151][   T98] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  121.973209][   T98] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  121.977287][   T98] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  121.981149][   T98] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  122.017683][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.020153][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.038928][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.042933][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.089146][T12169] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2344'.
[  122.102153][T12171] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2344'.
[  122.159001][   T64] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  122.163159][   T64] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  122.165783][   T64] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  122.168732][   T64] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  122.173165][   T64] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  122.190465][   T64] Bluetooth: hci1: command tx timeout
[  122.228418][   T40] kauditd_printk_skb: 23 callbacks suppressed
[  122.228433][   T40] audit: type=1400 audit(2000000040.459:464): avc:  denied  { read } for  pid=12177 comm="syz.1.2396" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  122.240072][   T40] audit: type=1400 audit(2000000040.459:465): avc:  denied  { open } for  pid=12177 comm="syz.1.2396" path="/dev/dri/card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  122.258764][   T40] audit: type=1400 audit(2000000040.489:466): avc:  denied  { ioctl } for  pid=12177 comm="syz.1.2396" path="/dev/dri/card1" dev="devtmpfs" ino=636 ioctlcmd=0x64a0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  122.284482][   T40] audit: type=1400 audit(2000000040.519:467): avc:  denied  { unlink } for  pid=12177 comm="syz.1.2396" name="#3" dev="tmpfs" ino=29 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  122.352095][   T40] audit: type=1400 audit(2000000040.589:468): avc:  denied  { create } for  pid=12187 comm="syz.0.2400" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  122.361657][T12188] netlink: 'syz.0.2400': attribute type 1 has an invalid length.
[  122.374805][   T40] audit: type=1400 audit(2000000040.589:469): avc:  denied  { write } for  pid=12187 comm="syz.0.2400" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  122.436624][T12174] chnl_net:caif_netlink_parms(): no params data found
[  122.544267][   T62] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.558054][T12174] bridge0: port 1(bridge_slave_0) entered blocking state
[  122.561314][T12174] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.564532][T12174] bridge_slave_0: entered allmulticast mode
[  122.568165][T12174] bridge_slave_0: entered promiscuous mode
[  122.575180][T12174] bridge0: port 2(bridge_slave_1) entered blocking state
[  122.577748][T12174] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.591955][T12174] bridge_slave_1: entered allmulticast mode
[  122.595596][T12174] bridge_slave_1: entered promiscuous mode
[  122.623686][   T62] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.633229][T12174] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  122.636108][T12215] netlink: 'syz.0.2412': attribute type 1 has an invalid length.
[  122.640217][T12174] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  122.655691][T12174] team0: Port device team_slave_0 added
[  122.658835][T12174] team0: Port device team_slave_1 added
[  122.674084][T12174] batman_adv: batadv0: Adding interface: batadv_slave_0
[  122.676314][T12174] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  122.685366][T12174] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  122.690374][T12174] batman_adv: batadv0: Adding interface: batadv_slave_1
[  122.692561][T12174] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  122.700932][T12174] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  122.742415][   T62] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.762935][T12174] hsr_slave_0: entered promiscuous mode
[  122.765263][T12174] hsr_slave_1: entered promiscuous mode
[  122.767461][T12174] debugfs: 'hsr0' already exists in 'hsr'
[  122.769359][T12174] Cannot create hsr debugfs directory
[  122.771028][   T40] audit: type=1400 audit(2000000040.999:470): avc:  denied  { shutdown } for  pid=12219 comm="syz.0.2415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  122.779151][T12224] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2416'.
[  122.824568][   T62] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.943990][   T62] bridge_slave_0: left allmulticast mode
[  122.946078][   T62] bridge_slave_0: left promiscuous mode
[  122.947959][   T62] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.310502][   T64] Bluetooth: hci2: command 0xfc11 tx timeout
[  123.311154][ T5946] Bluetooth: hci2: Entering manufacturer mode failed (-110)
[  123.609318][T12241] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2423'.
[  123.661399][T12242] SET target dimension over the limit!
[  123.757069][T12245] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2423'.
[  124.191570][ T5946] Bluetooth: hci5: command tx timeout
[  124.281675][ T5946] Bluetooth: hci1: command tx timeout
[  124.387210][   T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  124.393093][   T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  124.396983][   T62] bond0 (unregistering): (slave bridge_slave_1): Releasing backup interface
[  124.400720][   T62] bond0 (unregistering): Released all slaves
[  124.450915][   T62] bond1 (unregistering): Released all slaves
[  124.499074][   T62] bond2 (unregistering): Released all slaves
[  124.505347][   T62] bond3 (unregistering): Released all slaves
[  124.514653][   T62] bond4 (unregistering): Released all slaves
[  124.568290][   T62] bond5 (unregistering): Released all slaves
[  124.591431][T12237] netlink: 'syz.2.2421': attribute type 1 has an invalid length.
[  124.594778][T12241] gre0: entered allmulticast mode
[  124.653773][T12247] syzkaller0: entered promiscuous mode
[  124.656250][T12247] syzkaller0: entered allmulticast mode
[  124.678890][   T62] tipc: Left network mode
[  124.711778][   T62] IPVS: stopping backup sync thread 10877 ...
[  124.957528][   T62] hsr_slave_0: left promiscuous mode
[  124.960897][   T62] hsr_slave_1: left promiscuous mode
[  124.972971][   T62] veth1_macvtap: left promiscuous mode
[  124.975320][   T62] veth0_macvtap: left promiscuous mode
[  124.977073][   T62] veth1_vlan: left promiscuous mode
[  124.979181][   T62] veth0_vlan: left promiscuous mode
[  125.332652][   T62] team0 (unregistering): Port device team_slave_1 removed
[  125.351632][   T62] team0 (unregistering): Port device team_slave_0 removed
[  125.397315][T12293] netlink: 'syz.2.2435': attribute type 33 has an invalid length.
[  125.400076][T12293] netlink: 152 bytes leftover after parsing attributes in process `syz.2.2435'.
[  125.672924][T12174] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  125.677312][T12174] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  125.682318][T12174] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  125.688865][T12174] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  125.718884][T12314] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2438'.
[  125.773840][T12174] 8021q: adding VLAN 0 to HW filter on device bond0
[  125.787142][T12174] 8021q: adding VLAN 0 to HW filter on device team0
[  125.794162][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.796518][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.801370][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.803704][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.833006][   T40] audit: type=1400 audit(2000000044.069:471): avc:  denied  { map } for  pid=12319 comm="syz.0.2441" path="socket:[31238]" dev="sockfs" ino=31238 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  125.916389][T12174] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.918560][T12328] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2443'.
[  125.950741][T12174] veth0_vlan: entered promiscuous mode
[  125.955625][T12174] veth1_vlan: entered promiscuous mode
[  125.962678][T12333] netlink: 'syz.0.2444': attribute type 1 has an invalid length.
[  125.965498][T12333] netlink: 'syz.0.2444': attribute type 4 has an invalid length.
[  125.967421][T12174] veth0_macvtap: entered promiscuous mode
[  125.967986][T12333] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.2444'.
[  125.968767][T12333] netlink: 'syz.0.2444': attribute type 1 has an invalid length.
[  125.972625][T12174] veth1_macvtap: entered promiscuous mode
[  125.974250][T12333] netlink: 'syz.0.2444': attribute type 4 has an invalid length.
[  125.989245][T12174] batman_adv: batadv0: Interface activated: batadv_slave_0
[  125.991105][T12333] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.2444'.
[  125.998126][T12174] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.006788][   T13] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.011596][   T13] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.015819][   T13] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.021638][   T13] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.063512][T12337] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2446'.
[  126.065330][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.067281][T12337] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2446'.
[  126.069741][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.076278][T12337] netlink: 'syz.0.2446': attribute type 6 has an invalid length.
[  126.090938][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.093418][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.105031][   T40] audit: type=1400 audit(2000000044.339:472): avc:  denied  { mounton } for  pid=12174 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2837 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  126.124816][T12339] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2447'.
[  126.142876][T12341] FAULT_INJECTION: forcing a failure.
[  126.142876][T12341] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  126.146917][T12341] CPU: 3 UID: 0 PID: 12341 Comm: syz.3.2405 Not tainted syzkaller #0 PREEMPT(full) 
[  126.146931][T12341] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.146937][T12341] Call Trace:
[  126.146941][T12341]  <TASK>
[  126.146945][T12341]  dump_stack_lvl+0x16c/0x1f0
[  126.146994][T12341]  should_fail_ex+0x512/0x640
[  126.147023][T12341]  should_fail_alloc_page+0xe7/0x130
[  126.147037][T12341]  prepare_alloc_pages+0x401/0x670
[  126.147051][T12341]  ? rcu_is_watching+0x12/0xc0
[  126.147062][T12341]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  126.147076][T12341]  ? __lock_acquire+0x436/0x2890
[  126.147091][T12341]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  126.147107][T12341]  ? __lock_acquire+0x436/0x2890
[  126.147120][T12341]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  126.147133][T12341]  ? policy_nodemask+0xea/0x4e0
[  126.147147][T12341]  alloc_pages_mpol+0x1fb/0x550
[  126.147164][T12341]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  126.147181][T12341]  folio_alloc_mpol_noprof+0x36/0x2f0
[  126.147197][T12341]  vma_alloc_folio_noprof+0xed/0x1e0
[  126.147212][T12341]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  126.147231][T12341]  do_anonymous_page+0xc81/0x2190
[  126.147251][T12341]  __handle_mm_fault+0x1ecf/0x2bb0
[  126.147270][T12341]  ? __pfx___handle_mm_fault+0x10/0x10
[  126.147285][T12341]  ? __pte_offset_map_lock+0x174/0x310
[  126.147298][T12341]  ? find_held_lock+0x2b/0x80
[  126.147317][T12341]  ? follow_page_pte+0x5cf/0x1390
[  126.147333][T12341]  handle_mm_fault+0x3fe/0xad0
[  126.147350][T12341]  __get_user_pages+0x54e/0x3590
[  126.147366][T12341]  ? down_read_killable+0x313/0x4c0
[  126.147382][T12341]  ? __kernel_text_address+0xd/0x40
[  126.147395][T12341]  ? __pfx___get_user_pages+0x10/0x10
[  126.147417][T12341]  __gup_longterm_locked+0xa92/0x17e0
[  126.147434][T12341]  ? __pfx___gup_longterm_locked+0x10/0x10
[  126.147449][T12341]  ? find_held_lock+0x2b/0x80
[  126.147463][T12341]  ? sanity_check_pinned_pages+0x23/0x11d0
[  126.147478][T12341]  gup_fast_fallback+0xf5f/0x2350
[  126.147500][T12341]  ? __pfx_gup_fast_fallback+0x10/0x10
[  126.147520][T12341]  pin_user_pages_fast+0xa7/0xf0
[  126.147533][T12341]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  126.147546][T12341]  ? rds_info_getsockopt+0x377/0x4f0
[  126.147562][T12341]  rds_info_getsockopt+0x39f/0x4f0
[  126.147576][T12341]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  126.147590][T12341]  ? find_held_lock+0x2b/0x80
[  126.147604][T12341]  ? __might_fault+0x13b/0x190
[  126.147617][T12341]  rds_getsockopt+0x173/0x2d0
[  126.147628][T12341]  ? __pfx_rds_getsockopt+0x10/0x10
[  126.147637][T12341]  do_sock_getsockopt+0x324/0x410
[  126.147652][T12341]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  126.147664][T12341]  ? __fget_files+0x204/0x3c0
[  126.147684][T12341]  __sys_getsockopt+0x12f/0x260
[  126.147697][T12341]  __x64_sys_getsockopt+0xbd/0x160
[  126.147707][T12341]  ? do_syscall_64+0x91/0xf80
[  126.147719][T12341]  ? lockdep_hardirqs_on+0x7c/0x110
[  126.147732][T12341]  do_syscall_64+0xcd/0xf80
[  126.147746][T12341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.147757][T12341] RIP: 0033:0x7f1bb618f7c9
[  126.147765][T12341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.147775][T12341] RSP: 002b:00007f1bb6f80038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  126.147785][T12341] RAX: ffffffffffffffda RBX: 00007f1bb63e5fa0 RCX: 00007f1bb618f7c9
[  126.147792][T12341] RDX: 000000000000271b RSI: 0000200000000114 RDI: 0000000000000003
[  126.147801][T12341] RBP: 00007f1bb6f80090 R08: 0000200000000040 R09: 0000000000000000
[  126.147809][T12341] R10: 0000200000019580 R11: 0000000000000246 R12: 0000000000000001
[  126.147816][T12341] R13: 00007f1bb63e6038 R14: 00007f1bb63e5fa0 R15: 00007ffc371704e8
[  126.147834][T12341]  </TASK>
[  126.271395][ T5946] Bluetooth: hci5: command tx timeout
[  126.286100][   T64] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  126.290827][   T64] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  126.293803][   T64] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  126.296475][   T64] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  126.299050][   T64] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  126.343331][   T40] audit: type=1400 audit(2000000044.579:473): avc:  denied  { setattr } for  pid=12347 comm="syz.3.2450" name="timer" dev="devtmpfs" ino=1310 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1
[  126.351198][   T64] Bluetooth: hci1: command tx timeout
[  126.529053][T12343] chnl_net:caif_netlink_parms(): no params data found
[  126.692651][T12343] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.695596][T12343] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.698144][T12343] bridge_slave_0: entered allmulticast mode
[  126.701729][T12343] bridge_slave_0: entered promiscuous mode
[  126.708082][T12343] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.711919][T12343] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.715090][T12343] bridge_slave_1: entered allmulticast mode
[  126.718822][T12343] bridge_slave_1: entered promiscuous mode
[  126.756910][   T62] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.769680][T12343] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  126.774328][T12343] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  126.789534][T12343] team0: Port device team_slave_0 added
[  126.821833][T12343] team0: Port device team_slave_1 added
[  126.861658][T12343] batman_adv: batadv0: Adding interface: batadv_slave_0
[  126.864481][T12343] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  126.876706][T12343] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  126.884260][   T62] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.894276][T12343] batman_adv: batadv0: Adding interface: batadv_slave_1
[  126.897074][T12343] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  126.909216][T12343] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  126.970437][T12398] Cannot find add_set index 0 as target
[  126.983560][T12343] hsr_slave_0: entered promiscuous mode
[  126.986685][T12343] hsr_slave_1: entered promiscuous mode
[  127.008149][T12343] debugfs: 'hsr0' already exists in 'hsr'
[  127.021158][T12343] Cannot create hsr debugfs directory
[  127.033895][   T62] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.112887][   T62] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.412912][   T62] bond2 (unregistering): (slave gretap1): Releasing backup interface
[  128.350534][ T5946] Bluetooth: hci5: command tx timeout
[  128.352149][   T64] Bluetooth: hci2: command tx timeout
[  128.423683][   T62] bond1 (unregistering): Released all slaves
[  128.478795][   T62] bond2 (unregistering): Released all slaves
[  128.485235][   T62] bond0 (unregistering): Released all slaves
[  128.537635][   T62] bond3 (unregistering): Released all slaves
[  128.818961][T12452] __nla_validate_parse: 4 callbacks suppressed
[  128.818978][T12452] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2485'.
[  128.827722][T12458] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2485'.
[  128.836169][T12460] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2488'.
[  128.878947][T12464] FAULT_INJECTION: forcing a failure.
[  128.878947][T12464] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  128.883054][T12464] CPU: 1 UID: 0 PID: 12464 Comm: syz.3.2490 Not tainted syzkaller #0 PREEMPT(full) 
[  128.883068][T12464] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  128.883074][T12464] Call Trace:
[  128.883077][T12464]  <TASK>
[  128.883081][T12464]  dump_stack_lvl+0x16c/0x1f0
[  128.883100][T12464]  should_fail_ex+0x512/0x640
[  128.883117][T12464]  should_fail_alloc_page+0xe7/0x130
[  128.883133][T12464]  prepare_alloc_pages+0x401/0x670
[  128.883147][T12464]  ? rcu_is_watching+0x12/0xc0
[  128.883158][T12464]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  128.883171][T12464]  ? __lock_acquire+0x436/0x2890
[  128.883187][T12464]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  128.883203][T12464]  ? __lock_acquire+0x436/0x2890
[  128.883216][T12464]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  128.883229][T12464]  ? policy_nodemask+0xea/0x4e0
[  128.883244][T12464]  alloc_pages_mpol+0x1fb/0x550
[  128.883258][T12464]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  128.883275][T12464]  folio_alloc_mpol_noprof+0x36/0x2f0
[  128.883290][T12464]  vma_alloc_folio_noprof+0xed/0x1e0
[  128.883305][T12464]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  128.883324][T12464]  do_anonymous_page+0xc81/0x2190
[  128.883344][T12464]  __handle_mm_fault+0x1ecf/0x2bb0
[  128.883363][T12464]  ? __pfx___handle_mm_fault+0x10/0x10
[  128.883378][T12464]  ? __pte_offset_map_lock+0x174/0x310
[  128.883391][T12464]  ? find_held_lock+0x2b/0x80
[  128.883409][T12464]  ? follow_page_pte+0x5cf/0x1390
[  128.883425][T12464]  handle_mm_fault+0x3fe/0xad0
[  128.883442][T12464]  __get_user_pages+0x54e/0x3590
[  128.883459][T12464]  ? down_read_killable+0x313/0x4c0
[  128.883479][T12464]  ? __kernel_text_address+0xd/0x40
[  128.883492][T12464]  ? __pfx___get_user_pages+0x10/0x10
[  128.883509][T12464]  __gup_longterm_locked+0xa92/0x17e0
[  128.883526][T12464]  ? __pfx___gup_longterm_locked+0x10/0x10
[  128.883541][T12464]  ? find_held_lock+0x2b/0x80
[  128.883555][T12464]  ? sanity_check_pinned_pages+0x23/0x11d0
[  128.883570][T12464]  gup_fast_fallback+0xf5f/0x2350
[  128.883592][T12464]  ? __pfx_gup_fast_fallback+0x10/0x10
[  128.883612][T12464]  pin_user_pages_fast+0xa7/0xf0
[  128.883625][T12464]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  128.883638][T12464]  ? rds_info_getsockopt+0x377/0x4f0
[  128.883654][T12464]  rds_info_getsockopt+0x39f/0x4f0
[  128.883669][T12464]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  128.883682][T12464]  ? find_held_lock+0x2b/0x80
[  128.883696][T12464]  ? __might_fault+0x13b/0x190
[  128.883709][T12464]  rds_getsockopt+0x173/0x2d0
[  128.883720][T12464]  ? __pfx_rds_getsockopt+0x10/0x10
[  128.883729][T12464]  do_sock_getsockopt+0x324/0x410
[  128.883744][T12464]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  128.883756][T12464]  ? __fget_files+0x204/0x3c0
[  128.883776][T12464]  __sys_getsockopt+0x12f/0x260
[  128.883800][T12464]  __x64_sys_getsockopt+0xbd/0x160
[  128.883812][T12464]  ? do_syscall_64+0x91/0xf80
[  128.883825][T12464]  ? lockdep_hardirqs_on+0x7c/0x110
[  128.883838][T12464]  do_syscall_64+0xcd/0xf80
[  128.883852][T12464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.883862][T12464] RIP: 0033:0x7f1bb618f7c9
[  128.883871][T12464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.883880][T12464] RSP: 002b:00007f1bb6f80038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  128.883890][T12464] RAX: ffffffffffffffda RBX: 00007f1bb63e5fa0 RCX: 00007f1bb618f7c9
[  128.883896][T12464] RDX: 000000000000271b RSI: 0000200000000114 RDI: 0000000000000003
[  128.883902][T12464] RBP: 00007f1bb6f80090 R08: 0000200000000040 R09: 0000000000000000
[  128.883908][T12464] R10: 0000200000019580 R11: 0000000000000246 R12: 0000000000000002
[  128.883914][T12464] R13: 00007f1bb63e6038 R14: 00007f1bb63e5fa0 R15: 00007ffc371704e8
[  128.883927][T12464]  </TASK>
[  129.050943][   T62] hsr_slave_0: left promiscuous mode
[  129.053719][   T62] hsr_slave_1: left promiscuous mode
[  129.072867][   T62] veth1_macvtap: left promiscuous mode
[  129.074896][   T62] veth0_macvtap: left promiscuous mode
[  129.076743][   T62] veth1_vlan: left promiscuous mode
[  129.117214][T12481] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2494'.
[  129.243937][   T62] team0 (unregistering): Port device vlan0 removed
[  129.351418][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  129.351428][   T40] audit: type=1400 audit(2000000047.589:481): avc:  denied  { append } for  pid=12491 comm="syz.2.2498" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  129.433726][T12500] FAULT_INJECTION: forcing a failure.
[  129.433726][T12500] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  129.437861][T12500] CPU: 3 UID: 0 PID: 12500 Comm: syz.1.2500 Not tainted syzkaller #0 PREEMPT(full) 
[  129.437875][T12500] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  129.437881][T12500] Call Trace:
[  129.437893][T12500]  <TASK>
[  129.437898][T12500]  dump_stack_lvl+0x16c/0x1f0
[  129.437931][T12500]  should_fail_ex+0x512/0x640
[  129.437955][T12500]  should_fail_alloc_page+0xe7/0x130
[  129.437970][T12500]  prepare_alloc_pages+0x401/0x670
[  129.437984][T12500]  ? rcu_is_watching+0x12/0xc0
[  129.437996][T12500]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  129.438009][T12500]  ? __lock_acquire+0x436/0x2890
[  129.438025][T12500]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  129.438040][T12500]  ? __lock_acquire+0x436/0x2890
[  129.438053][T12500]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  129.438066][T12500]  ? policy_nodemask+0xea/0x4e0
[  129.438081][T12500]  alloc_pages_mpol+0x1fb/0x550
[  129.438094][T12500]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  129.438111][T12500]  folio_alloc_mpol_noprof+0x36/0x2f0
[  129.438126][T12500]  vma_alloc_folio_noprof+0xed/0x1e0
[  129.438141][T12500]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  129.438159][T12500]  do_anonymous_page+0xc81/0x2190
[  129.438180][T12500]  __handle_mm_fault+0x1ecf/0x2bb0
[  129.438199][T12500]  ? __pfx___handle_mm_fault+0x10/0x10
[  129.438214][T12500]  ? __pte_offset_map_lock+0x174/0x310
[  129.438227][T12500]  ? find_held_lock+0x2b/0x80
[  129.438246][T12500]  ? follow_page_pte+0x5cf/0x1390
[  129.438261][T12500]  handle_mm_fault+0x3fe/0xad0
[  129.438279][T12500]  __get_user_pages+0x54e/0x3590
[  129.438295][T12500]  ? down_read_killable+0x313/0x4c0
[  129.438310][T12500]  ? __kernel_text_address+0xd/0x40
[  129.438324][T12500]  ? __pfx___get_user_pages+0x10/0x10
[  129.438340][T12500]  __gup_longterm_locked+0xa92/0x17e0
[  129.438357][T12500]  ? __pfx___gup_longterm_locked+0x10/0x10
[  129.438373][T12500]  ? find_held_lock+0x2b/0x80
[  129.438387][T12500]  ? sanity_check_pinned_pages+0x23/0x11d0
[  129.438402][T12500]  gup_fast_fallback+0xf5f/0x2350
[  129.438424][T12500]  ? __pfx_gup_fast_fallback+0x10/0x10
[  129.438443][T12500]  pin_user_pages_fast+0xa7/0xf0
[  129.438456][T12500]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  129.438469][T12500]  ? rds_info_getsockopt+0x377/0x4f0
[  129.438486][T12500]  rds_info_getsockopt+0x39f/0x4f0
[  129.438500][T12500]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  129.438513][T12500]  ? find_held_lock+0x2b/0x80
[  129.438528][T12500]  ? __might_fault+0x13b/0x190
[  129.438541][T12500]  rds_getsockopt+0x173/0x2d0
[  129.438552][T12500]  ? __pfx_rds_getsockopt+0x10/0x10
[  129.438561][T12500]  do_sock_getsockopt+0x324/0x410
[  129.438575][T12500]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  129.438587][T12500]  ? __fget_files+0x204/0x3c0
[  129.438607][T12500]  __sys_getsockopt+0x12f/0x260
[  129.438620][T12500]  __x64_sys_getsockopt+0xbd/0x160
[  129.438630][T12500]  ? do_syscall_64+0x91/0xf80
[  129.438643][T12500]  ? lockdep_hardirqs_on+0x7c/0x110
[  129.438655][T12500]  do_syscall_64+0xcd/0xf80
[  129.438673][T12500]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.438684][T12500] RIP: 0033:0x7f05de98f7c9
[  129.438693][T12500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.438702][T12500] RSP: 002b:00007f05df82f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  129.438712][T12500] RAX: ffffffffffffffda RBX: 00007f05debe5fa0 RCX: 00007f05de98f7c9
[  129.438718][T12500] RDX: 000000000000271b RSI: 0000200000000114 RDI: 0000000000000003
[  129.438725][T12500] RBP: 00007f05df82f090 R08: 0000200000000040 R09: 0000000000000000
[  129.438730][T12500] R10: 0000200000019580 R11: 0000000000000246 R12: 0000000000000002
[  129.438736][T12500] R13: 00007f05debe6038 R14: 00007f05debe5fa0 R15: 00007ffe18db7d78
[  129.438749][T12500]  </TASK>
[  129.726490][T12506] overlayfs: only single ':' or double '::' sequences of unescaped colons in lowerdir mount option allowed.
[  129.736913][   T40] audit: type=1400 audit(2000000047.969:482): avc:  denied  { compute_member } for  pid=12503 comm="syz.1.2502" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  129.737651][T12506] netlink: 112 bytes leftover after parsing attributes in process `syz.1.2502'.
[  129.906810][T12343] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  129.914044][T12343] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  129.922693][T12343] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  129.935840][T12343] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  130.028595][   T40] audit: type=1400 audit(2000000048.259:483): avc:  denied  { write } for  pid=12518 comm="syz.1.2505" name="file0" dev="9p" ino=74186829 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  130.035239][T12343] 8021q: adding VLAN 0 to HW filter on device bond0
[  130.042676][   T40] audit: type=1400 audit(2000000048.259:484): avc:  denied  { open } for  pid=12518 comm="syz.1.2505" path="/35/file0/file0" dev="9p" ino=74186829 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  130.052353][T12343] 8021q: adding VLAN 0 to HW filter on device team0
[  130.052842][   T40] audit: type=1400 audit(2000000048.269:485): avc:  denied  { add_name } for  pid=12518 comm="syz.1.2505" name="blkio.bfq.io_merged_recursive" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  130.060833][   T80] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.064010][   T40] audit: type=1400 audit(2000000048.269:486): avc:  denied  { associate } for  pid=12518 comm="syz.1.2505" name="blkio.bfq.io_merged_recursive" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  130.065220][   T80] bridge0: port 1(bridge_slave_0) entered forwarding state
[  130.072096][   T40] audit: type=1400 audit(2000000048.279:487): avc:  denied  { read append } for  pid=12518 comm="syz.1.2505" path="/35/file0/blkio.bfq.io_merged_recursive" dev="9p" ino=74186757 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  130.085472][   T80] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.088371][   T80] bridge0: port 2(bridge_slave_1) entered forwarding state
[  130.136083][   T40] audit: type=1400 audit(2000000048.369:488): avc:  denied  { read write } for  pid=12525 comm="syz.2.2507" name="uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  130.145627][   T40] audit: type=1400 audit(2000000048.379:489): avc:  denied  { open } for  pid=12525 comm="syz.2.2507" path="/dev/uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  130.148031][   T29] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  130.173789][   T29] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  130.189266][   T62] IPVS: stop unused estimator thread 0...
[  130.213317][T12530] fido_id[12530]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  130.255413][T12343] 8021q: adding VLAN 0 to HW filter on device batadv0
[  130.279857][T12343] veth0_vlan: entered promiscuous mode
[  130.282834][ T6033] IPVS: starting estimator thread 0...
[  130.286224][T12343] veth1_vlan: entered promiscuous mode
[  130.302854][T12343] veth0_macvtap: entered promiscuous mode
[  130.306880][T12343] veth1_macvtap: entered promiscuous mode
[  130.315091][T12343] batman_adv: batadv0: Interface activated: batadv_slave_0
[  130.320825][T12343] batman_adv: batadv0: Interface activated: batadv_slave_1
[  130.326741][   T98] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  130.332957][   T98] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  130.337570][   T98] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  130.344184][   T98] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  130.376924][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  130.380458][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  130.390522][T12536] IPVS: using max 44 ests per chain, 105600 per kthread
[  130.406292][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  130.411723][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  130.430424][   T64] Bluetooth: hci2: command tx timeout
[  130.430614][ T5946] Bluetooth: hci5: command tx timeout
[  130.439328][T12538] FAULT_INJECTION: forcing a failure.
[  130.439328][T12538] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  130.444233][T12538] CPU: 2 UID: 0 PID: 12538 Comm: syz.3.2509 Not tainted syzkaller #0 PREEMPT(full) 
[  130.444247][T12538] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  130.444254][T12538] Call Trace:
[  130.444258][T12538]  <TASK>
[  130.444261][T12538]  dump_stack_lvl+0x16c/0x1f0
[  130.444279][T12538]  should_fail_ex+0x512/0x640
[  130.444297][T12538]  should_fail_alloc_page+0xe7/0x130
[  130.444311][T12538]  prepare_alloc_pages+0x401/0x670
[  130.444326][T12538]  ? rcu_is_watching+0x12/0xc0
[  130.444337][T12538]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  130.444350][T12538]  ? __lock_acquire+0x436/0x2890
[  130.444366][T12538]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  130.444381][T12538]  ? __lock_acquire+0x436/0x2890
[  130.444395][T12538]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  130.444407][T12538]  ? policy_nodemask+0xea/0x4e0
[  130.444422][T12538]  alloc_pages_mpol+0x1fb/0x550
[  130.444435][T12538]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  130.444452][T12538]  folio_alloc_mpol_noprof+0x36/0x2f0
[  130.444467][T12538]  vma_alloc_folio_noprof+0xed/0x1e0
[  130.444482][T12538]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  130.444501][T12538]  do_anonymous_page+0xc81/0x2190
[  130.444521][T12538]  __handle_mm_fault+0x1ecf/0x2bb0
[  130.444539][T12538]  ? __pfx___handle_mm_fault+0x10/0x10
[  130.444555][T12538]  ? __pte_offset_map_lock+0x174/0x310
[  130.444568][T12538]  ? find_held_lock+0x2b/0x80
[  130.444587][T12538]  ? follow_page_pte+0x5cf/0x1390
[  130.444603][T12538]  handle_mm_fault+0x3fe/0xad0
[  130.444620][T12538]  __get_user_pages+0x54e/0x3590
[  130.444636][T12538]  ? down_read_killable+0x313/0x4c0
[  130.444651][T12538]  ? __kernel_text_address+0xd/0x40
[  130.444665][T12538]  ? __pfx___get_user_pages+0x10/0x10
[  130.444686][T12538]  __gup_longterm_locked+0xa92/0x17e0
[  130.444703][T12538]  ? __pfx___gup_longterm_locked+0x10/0x10
[  130.444718][T12538]  ? find_held_lock+0x2b/0x80
[  130.444732][T12538]  ? sanity_check_pinned_pages+0x23/0x11d0
[  130.444747][T12538]  gup_fast_fallback+0xf5f/0x2350
[  130.444769][T12538]  ? __pfx_gup_fast_fallback+0x10/0x10
[  130.444789][T12538]  pin_user_pages_fast+0xa7/0xf0
[  130.444801][T12538]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  130.444815][T12538]  ? rds_info_getsockopt+0x377/0x4f0
[  130.444831][T12538]  rds_info_getsockopt+0x39f/0x4f0
[  130.444857][T12538]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  130.444871][T12538]  ? find_held_lock+0x2b/0x80
[  130.444886][T12538]  ? __might_fault+0x13b/0x190
[  130.444900][T12538]  rds_getsockopt+0x173/0x2d0
[  130.444910][T12538]  ? __pfx_rds_getsockopt+0x10/0x10
[  130.444919][T12538]  do_sock_getsockopt+0x324/0x410
[  130.444934][T12538]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  130.444946][T12538]  ? __fget_files+0x204/0x3c0
[  130.444967][T12538]  __sys_getsockopt+0x12f/0x260
[  130.444980][T12538]  __x64_sys_getsockopt+0xbd/0x160
[  130.444990][T12538]  ? do_syscall_64+0x91/0xf80
[  130.445003][T12538]  ? lockdep_hardirqs_on+0x7c/0x110
[  130.445016][T12538]  do_syscall_64+0xcd/0xf80
[  130.445030][T12538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.445040][T12538] RIP: 0033:0x7f1bb618f7c9
[  130.445049][T12538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.445059][T12538] RSP: 002b:00007f1bb6f80038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  130.445069][T12538] RAX: ffffffffffffffda RBX: 00007f1bb63e5fa0 RCX: 00007f1bb618f7c9
[  130.445075][T12538] RDX: 000000000000271b RSI: 0000200000000114 RDI: 0000000000000003
[  130.445080][T12538] RBP: 00007f1bb6f80090 R08: 0000200000000040 R09: 0000000000000000
[  130.445086][T12538] R10: 0000200000019580 R11: 0000000000000246 R12: 0000000000000002
[  130.445092][T12538] R13: 00007f1bb63e6038 R14: 00007f1bb63e5fa0 R15: 00007ffc371704e8
[  130.445105][T12538]  </TASK>
[  130.741348][   T40] audit: type=1400 audit(2000000048.969:490): avc:  denied  { read write } for  pid=12556 comm="syz.2.2517" name="fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  130.843280][T12567] FAULT_INJECTION: forcing a failure.
[  130.843280][T12567] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  130.849170][T12567] CPU: 3 UID: 0 PID: 12567 Comm: syz.2.2519 Not tainted syzkaller #0 PREEMPT(full) 
[  130.849192][T12567] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  130.849203][T12567] Call Trace:
[  130.849217][T12567]  <TASK>
[  130.849224][T12567]  dump_stack_lvl+0x16c/0x1f0
[  130.849274][T12567]  should_fail_ex+0x512/0x640
[  130.849310][T12567]  should_fail_alloc_page+0xe7/0x130
[  130.849349][T12567]  prepare_alloc_pages+0x401/0x670
[  130.849373][T12567]  ? rcu_is_watching+0x12/0xc0
[  130.849411][T12567]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  130.849433][T12567]  ? find_held_lock+0x2b/0x80
[  130.849459][T12567]  ? free_unref_folios+0x1085/0x1610
[  130.849482][T12567]  ? do_raw_spin_unlock+0x172/0x230
[  130.849520][T12567]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  130.849550][T12567]  ? __lock_acquire+0x436/0x2890
[  130.849573][T12567]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  130.849595][T12567]  ? policy_nodemask+0xea/0x4e0
[  130.849620][T12567]  alloc_pages_mpol+0x1fb/0x550
[  130.849643][T12567]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  130.849671][T12567]  folio_alloc_mpol_noprof+0x36/0x2f0
[  130.849697][T12567]  vma_alloc_folio_noprof+0xed/0x1e0
[  130.849721][T12567]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  130.849752][T12567]  do_anonymous_page+0xc81/0x2190
[  130.849786][T12567]  __handle_mm_fault+0x1ecf/0x2bb0
[  130.849818][T12567]  ? __pfx___handle_mm_fault+0x10/0x10
[  130.849843][T12567]  ? __pte_offset_map_lock+0x174/0x310
[  130.849864][T12567]  ? find_held_lock+0x2b/0x80
[  130.849896][T12567]  ? follow_page_pte+0x5cf/0x1390
[  130.849922][T12567]  handle_mm_fault+0x3fe/0xad0
[  130.849952][T12567]  __get_user_pages+0x54e/0x3590
[  130.849980][T12567]  ? down_read_killable+0x313/0x4c0
[  130.850005][T12567]  ? __kernel_text_address+0xd/0x40
[  130.850027][T12567]  ? __pfx___get_user_pages+0x10/0x10
[  130.850055][T12567]  __gup_longterm_locked+0xa92/0x17e0
[  130.850084][T12567]  ? __pfx___gup_longterm_locked+0x10/0x10
[  130.850109][T12567]  ? find_held_lock+0x2b/0x80
[  130.850133][T12567]  ? sanity_check_pinned_pages+0x23/0x11d0
[  130.850159][T12567]  gup_fast_fallback+0xf5f/0x2350
[  130.850199][T12567]  ? __pfx_gup_fast_fallback+0x10/0x10
[  130.850232][T12567]  pin_user_pages_fast+0xa7/0xf0
[  130.850254][T12567]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  130.850275][T12567]  ? rds_info_getsockopt+0x377/0x4f0
[  130.850303][T12567]  rds_info_getsockopt+0x39f/0x4f0
[  130.850327][T12567]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  130.850352][T12567]  ? find_held_lock+0x2b/0x80
[  130.850376][T12567]  ? __might_fault+0x13b/0x190
[  130.850403][T12567]  rds_getsockopt+0x173/0x2d0
[  130.850421][T12567]  ? __pfx_rds_getsockopt+0x10/0x10
[  130.850437][T12567]  do_sock_getsockopt+0x324/0x410
[  130.850460][T12567]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  130.850484][T12567]  ? __fget_files+0x204/0x3c0
[  130.850519][T12567]  __sys_getsockopt+0x12f/0x260
[  130.850542][T12567]  __x64_sys_getsockopt+0xbd/0x160
[  130.850557][T12567]  ? do_syscall_64+0x91/0xf80
[  130.850578][T12567]  ? lockdep_hardirqs_on+0x7c/0x110
[  130.850599][T12567]  do_syscall_64+0xcd/0xf80
[  130.850622][T12567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.850639][T12567] RIP: 0033:0x7f67c058f7c9
[  130.850653][T12567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.850669][T12567] RSP: 002b:00007f67c14a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  130.850684][T12567] RAX: ffffffffffffffda RBX: 00007f67c07e5fa0 RCX: 00007f67c058f7c9
[  130.850695][T12567] RDX: 000000000000271b RSI: 0000200000000114 RDI: 0000000000000003
[  130.850705][T12567] RBP: 00007f67c14a4090 R08: 0000200000000040 R09: 0000000000000000
[  130.850715][T12567] R10: 0000200000019580 R11: 0000000000000246 R12: 0000000000000002
[  130.850723][T12567] R13: 00007f67c07e6038 R14: 00007f67c07e5fa0 R15: 00007fff6afa8858
[  130.850748][T12567]  </TASK>
[  131.205704][T12588] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2529'.
[  131.267000][T12596] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2532'.
[  131.389780][T12603] netlink: 212324 bytes leftover after parsing attributes in process `syz.3.2533'.
[  131.565755][T12620] FAULT_INJECTION: forcing a failure.
[  131.565755][T12620] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  131.569939][T12620] CPU: 2 UID: 0 PID: 12620 Comm: syz.3.2539 Not tainted syzkaller #0 PREEMPT(full) 
[  131.569953][T12620] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  131.569959][T12620] Call Trace:
[  131.569964][T12620]  <TASK>
[  131.569968][T12620]  dump_stack_lvl+0x16c/0x1f0
[  131.569985][T12620]  should_fail_ex+0x512/0x640
[  131.570003][T12620]  should_fail_alloc_page+0xe7/0x130
[  131.570019][T12620]  prepare_alloc_pages+0x401/0x670
[  131.570034][T12620]  ? rcu_is_watching+0x12/0xc0
[  131.570045][T12620]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  131.570058][T12620]  ? __lock_acquire+0x436/0x2890
[  131.570074][T12620]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  131.570090][T12620]  ? __lock_acquire+0x436/0x2890
[  131.570103][T12620]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  131.570116][T12620]  ? policy_nodemask+0xea/0x4e0
[  131.570130][T12620]  alloc_pages_mpol+0x1fb/0x550
[  131.570144][T12620]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  131.570161][T12620]  folio_alloc_mpol_noprof+0x36/0x2f0
[  131.570178][T12620]  vma_alloc_folio_noprof+0xed/0x1e0
[  131.570193][T12620]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  131.570212][T12620]  do_anonymous_page+0xc81/0x2190
[  131.570232][T12620]  __handle_mm_fault+0x1ecf/0x2bb0
[  131.570251][T12620]  ? __pfx___handle_mm_fault+0x10/0x10
[  131.570267][T12620]  ? __pte_offset_map_lock+0x174/0x310
[  131.570293][T12620]  ? find_held_lock+0x2b/0x80
[  131.570313][T12620]  ? follow_page_pte+0x5cf/0x1390
[  131.570329][T12620]  handle_mm_fault+0x3fe/0xad0
[  131.570347][T12620]  __get_user_pages+0x54e/0x3590
[  131.570364][T12620]  ? down_read_killable+0x313/0x4c0
[  131.570381][T12620]  ? __kernel_text_address+0xd/0x40
[  131.570395][T12620]  ? __pfx___get_user_pages+0x10/0x10
[  131.570411][T12620]  __gup_longterm_locked+0xa92/0x17e0
[  131.570429][T12620]  ? __pfx___gup_longterm_locked+0x10/0x10
[  131.570444][T12620]  ? find_held_lock+0x2b/0x80
[  131.570459][T12620]  ? sanity_check_pinned_pages+0x23/0x11d0
[  131.570474][T12620]  gup_fast_fallback+0xf5f/0x2350
[  131.570497][T12620]  ? __pfx_gup_fast_fallback+0x10/0x10
[  131.570516][T12620]  pin_user_pages_fast+0xa7/0xf0
[  131.570530][T12620]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  131.570543][T12620]  ? rds_info_getsockopt+0x377/0x4f0
[  131.570560][T12620]  rds_info_getsockopt+0x39f/0x4f0
[  131.570575][T12620]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  131.570588][T12620]  ? find_held_lock+0x2b/0x80
[  131.570603][T12620]  ? __might_fault+0x13b/0x190
[  131.570620][T12620]  rds_getsockopt+0x173/0x2d0
[  131.570631][T12620]  ? __pfx_rds_getsockopt+0x10/0x10
[  131.570640][T12620]  do_sock_getsockopt+0x324/0x410
[  131.570656][T12620]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  131.570668][T12620]  ? __fget_files+0x204/0x3c0
[  131.570689][T12620]  __sys_getsockopt+0x12f/0x260
[  131.570702][T12620]  __x64_sys_getsockopt+0xbd/0x160
[  131.570711][T12620]  ? do_syscall_64+0x91/0xf80
[  131.570724][T12620]  ? lockdep_hardirqs_on+0x7c/0x110
[  131.570737][T12620]  do_syscall_64+0xcd/0xf80
[  131.570751][T12620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.570762][T12620] RIP: 0033:0x7f1bb618f7c9
[  131.570771][T12620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.570780][T12620] RSP: 002b:00007f1bb6f80038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  131.570791][T12620] RAX: ffffffffffffffda RBX: 00007f1bb63e5fa0 RCX: 00007f1bb618f7c9
[  131.570797][T12620] RDX: 000000000000271b RSI: 0000200000000114 RDI: 0000000000000003
[  131.570803][T12620] RBP: 00007f1bb6f80090 R08: 0000200000000040 R09: 0000000000000000
[  131.570809][T12620] R10: 0000200000019580 R11: 0000000000000246 R12: 0000000000000002
[  131.570814][T12620] R13: 00007f1bb63e6038 R14: 00007f1bb63e5fa0 R15: 00007ffc371704e8
[  131.570828][T12620]  </TASK>
[  132.050897][T12654] FAULT_INJECTION: forcing a failure.
[  132.050897][T12654] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  132.057364][T12654] CPU: 3 UID: 0 PID: 12654 Comm: syz.0.2553 Not tainted syzkaller #0 PREEMPT(full) 
[  132.057411][T12654] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.057421][T12654] Call Trace:
[  132.057427][T12654]  <TASK>
[  132.057433][T12654]  dump_stack_lvl+0x16c/0x1f0
[  132.057458][T12654]  should_fail_ex+0x512/0x640
[  132.057485][T12654]  should_fail_alloc_page+0xe7/0x130
[  132.057507][T12654]  prepare_alloc_pages+0x401/0x670
[  132.057529][T12654]  ? rcu_is_watching+0x12/0xc0
[  132.057546][T12654]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  132.057572][T12654]  ? __lock_acquire+0x436/0x2890
[  132.057595][T12654]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  132.057620][T12654]  ? __lock_acquire+0x436/0x2890
[  132.057646][T12654]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  132.057667][T12654]  ? policy_nodemask+0xea/0x4e0
[  132.057691][T12654]  alloc_pages_mpol+0x1fb/0x550
[  132.057713][T12654]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  132.057741][T12654]  folio_alloc_mpol_noprof+0x36/0x2f0
[  132.057781][T12654]  vma_alloc_folio_noprof+0xed/0x1e0
[  132.057806][T12654]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  132.057837][T12654]  do_anonymous_page+0xc81/0x2190
[  132.057869][T12654]  __handle_mm_fault+0x1ecf/0x2bb0
[  132.057899][T12654]  ? __pfx___handle_mm_fault+0x10/0x10
[  132.057924][T12654]  ? __pte_offset_map_lock+0x174/0x310
[  132.057944][T12654]  ? find_held_lock+0x2b/0x80
[  132.057977][T12654]  ? follow_page_pte+0x5cf/0x1390
[  132.058003][T12654]  handle_mm_fault+0x3fe/0xad0
[  132.058032][T12654]  __get_user_pages+0x54e/0x3590
[  132.058061][T12654]  ? down_read_killable+0x313/0x4c0
[  132.058086][T12654]  ? __kernel_text_address+0xd/0x40
[  132.058108][T12654]  ? __pfx___get_user_pages+0x10/0x10
[  132.058137][T12654]  __gup_longterm_locked+0xa92/0x17e0
[  132.058166][T12654]  ? __pfx___gup_longterm_locked+0x10/0x10
[  132.058191][T12654]  ? find_held_lock+0x2b/0x80
[  132.058215][T12654]  ? sanity_check_pinned_pages+0x23/0x11d0
[  132.058240][T12654]  gup_fast_fallback+0xf5f/0x2350
[  132.058280][T12654]  ? __pfx_gup_fast_fallback+0x10/0x10
[  132.058314][T12654]  pin_user_pages_fast+0xa7/0xf0
[  132.058336][T12654]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  132.058358][T12654]  ? rds_info_getsockopt+0x377/0x4f0
[  132.058384][T12654]  rds_info_getsockopt+0x39f/0x4f0
[  132.058407][T12654]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  132.058428][T12654]  ? find_held_lock+0x2b/0x80
[  132.058452][T12654]  ? __might_fault+0x13b/0x190
[  132.058474][T12654]  rds_getsockopt+0x173/0x2d0
[  132.058492][T12654]  ? __pfx_rds_getsockopt+0x10/0x10
[  132.058506][T12654]  do_sock_getsockopt+0x324/0x410
[  132.058529][T12654]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  132.058548][T12654]  ? __fget_files+0x204/0x3c0
[  132.058583][T12654]  __sys_getsockopt+0x12f/0x260
[  132.058605][T12654]  __x64_sys_getsockopt+0xbd/0x160
[  132.058621][T12654]  ? do_syscall_64+0x91/0xf80
[  132.058648][T12654]  ? lockdep_hardirqs_on+0x7c/0x110
[  132.058669][T12654]  do_syscall_64+0xcd/0xf80
[  132.058691][T12654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.058707][T12654] RIP: 0033:0x7f5bd238f7c9
[  132.058721][T12654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.058736][T12654] RSP: 002b:00007f5bd32e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  132.058752][T12654] RAX: ffffffffffffffda RBX: 00007f5bd25e5fa0 RCX: 00007f5bd238f7c9
[  132.058762][T12654] RDX: 000000000000271b RSI: 0000200000000114 RDI: 0000000000000003
[  132.058772][T12654] RBP: 00007f5bd32e5090 R08: 0000200000000040 R09: 0000000000000000
[  132.058781][T12654] R10: 0000200000019580 R11: 0000000000000246 R12: 0000000000000002
[  132.058791][T12654] R13: 00007f5bd25e6038 R14: 00007f5bd25e5fa0 R15: 00007fffebe7a2f8
[  132.058815][T12654]  </TASK>
[  132.087787][T12651] fuse: Bad value for 'rootmode'
[  132.110865][T12657] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2554'.
[  132.279301][T12669] ip6erspan0: entered promiscuous mode
[  132.391368][T12680] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2564'.
[  132.435236][T12680] syzkaller0: entered promiscuous mode
[  132.437099][T12680] syzkaller0: entered allmulticast mode
[  132.499010][T12688] FAULT_INJECTION: forcing a failure.
[  132.499010][T12688] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  132.505971][T12688] CPU: 2 UID: 0 PID: 12688 Comm: syz.2.2567 Not tainted syzkaller #0 PREEMPT(full) 
[  132.505993][T12688] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.506003][T12688] Call Trace:
[  132.506008][T12688]  <TASK>
[  132.506015][T12688]  dump_stack_lvl+0x16c/0x1f0
[  132.506066][T12688]  should_fail_ex+0x512/0x640
[  132.506102][T12688]  should_fail_alloc_page+0xe7/0x130
[  132.506125][T12688]  prepare_alloc_pages+0x401/0x670
[  132.506149][T12688]  ? rcu_is_watching+0x12/0xc0
[  132.506167][T12688]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  132.506192][T12688]  ? __lock_acquire+0x436/0x2890
[  132.506217][T12688]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  132.506243][T12688]  ? __lock_acquire+0x436/0x2890
[  132.506266][T12688]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  132.506286][T12688]  ? policy_nodemask+0xea/0x4e0
[  132.506308][T12688]  alloc_pages_mpol+0x1fb/0x550
[  132.506328][T12688]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  132.506355][T12688]  folio_alloc_mpol_noprof+0x36/0x2f0
[  132.506384][T12688]  vma_alloc_folio_noprof+0xed/0x1e0
[  132.506408][T12688]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  132.506437][T12688]  do_anonymous_page+0xc81/0x2190
[  132.506472][T12688]  __handle_mm_fault+0x1ecf/0x2bb0
[  132.506503][T12688]  ? __pfx___handle_mm_fault+0x10/0x10
[  132.506529][T12688]  ? __pte_offset_map_lock+0x174/0x310
[  132.506549][T12688]  ? find_held_lock+0x2b/0x80
[  132.506579][T12688]  ? follow_page_pte+0x5cf/0x1390
[  132.506605][T12688]  handle_mm_fault+0x3fe/0xad0
[  132.506634][T12688]  __get_user_pages+0x54e/0x3590
[  132.506663][T12688]  ? down_read_killable+0x313/0x4c0
[  132.506687][T12688]  ? __kernel_text_address+0xd/0x40
[  132.506708][T12688]  ? __pfx___get_user_pages+0x10/0x10
[  132.506735][T12688]  __gup_longterm_locked+0xa92/0x17e0
[  132.506764][T12688]  ? __pfx___gup_longterm_locked+0x10/0x10
[  132.506788][T12688]  ? find_held_lock+0x2b/0x80
[  132.506812][T12688]  ? sanity_check_pinned_pages+0x23/0x11d0
[  132.506837][T12688]  gup_fast_fallback+0xf5f/0x2350
[  132.506876][T12688]  ? __pfx_gup_fast_fallback+0x10/0x10
[  132.506908][T12688]  pin_user_pages_fast+0xa7/0xf0
[  132.506931][T12688]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  132.506953][T12688]  ? rds_info_getsockopt+0x377/0x4f0
[  132.506980][T12688]  rds_info_getsockopt+0x39f/0x4f0
[  132.507004][T12688]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  132.507025][T12688]  ? find_held_lock+0x2b/0x80
[  132.507048][T12688]  ? __might_fault+0x13b/0x190
[  132.507069][T12688]  rds_getsockopt+0x173/0x2d0
[  132.507086][T12688]  ? __pfx_rds_getsockopt+0x10/0x10
[  132.507101][T12688]  do_sock_getsockopt+0x324/0x410
[  132.507123][T12688]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  132.507141][T12688]  ? __fget_files+0x204/0x3c0
[  132.507173][T12688]  __sys_getsockopt+0x12f/0x260
[  132.507197][T12688]  __x64_sys_getsockopt+0xbd/0x160
[  132.507213][T12688]  ? do_syscall_64+0x91/0xf80
[  132.507234][T12688]  ? lockdep_hardirqs_on+0x7c/0x110
[  132.507256][T12688]  do_syscall_64+0xcd/0xf80
[  132.507277][T12688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.507293][T12688] RIP: 0033:0x7f67c058f7c9
[  132.507306][T12688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.507322][T12688] RSP: 002b:00007f67c14a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  132.507337][T12688] RAX: ffffffffffffffda RBX: 00007f67c07e5fa0 RCX: 00007f67c058f7c9
[  132.507344][T12688] RDX: 000000000000271b RSI: 0000200000000114 RDI: 0000000000000003
[  132.507350][T12688] RBP: 00007f67c14a4090 R08: 0000200000000040 R09: 0000000000000000
[  132.507356][T12688] R10: 0000200000019580 R11: 0000000000000246 R12: 0000000000000002
[  132.507361][T12688] R13: 00007f67c07e6038 R14: 00007f67c07e5fa0 R15: 00007fff6afa8858
[  132.507380][T12688]  </TASK>
[  132.643338][ T5946] Bluetooth: hci2: command tx timeout
[  132.671667][T12692] FAULT_INJECTION: forcing a failure.
[  132.671667][T12692] name failslab, interval 1, probability 0, space 0, times 0
[  132.677003][T12692] CPU: 0 UID: 0 PID: 12692 Comm: syz.3.2569 Not tainted syzkaller #0 PREEMPT(full) 
[  132.677025][T12692] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.677034][T12692] Call Trace:
[  132.677039][T12692]  <TASK>
[  132.677045][T12692]  dump_stack_lvl+0x16c/0x1f0
[  132.677070][T12692]  should_fail_ex+0x512/0x640
[  132.677094][T12692]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[  132.677114][T12692]  should_failslab+0xc2/0x120
[  132.677135][T12692]  kmem_cache_alloc_node_noprof+0x86/0x800
[  132.677151][T12692]  ? __alloc_skb+0x156/0x410
[  132.677171][T12692]  ? __alloc_skb+0x156/0x410
[  132.677184][T12692]  __alloc_skb+0x156/0x410
[  132.677197][T12692]  ? __alloc_skb+0x35d/0x410
[  132.677211][T12692]  ? __pfx___alloc_skb+0x10/0x10
[  132.677237][T12692]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[  132.677257][T12692]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  132.677284][T12692]  netlink_alloc_large_skb+0x69/0x140
[  132.677307][T12692]  netlink_sendmsg+0x698/0xdd0
[  132.677332][T12692]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.677361][T12692]  ____sys_sendmsg+0xa5d/0xc30
[  132.677407][T12692]  ? copy_msghdr_from_user+0x10a/0x160
[  132.677423][T12692]  ? __pfx_____sys_sendmsg+0x10/0x10
[  132.677456][T12692]  ___sys_sendmsg+0x134/0x1d0
[  132.677473][T12692]  ? __pfx____sys_sendmsg+0x10/0x10
[  132.677520][T12692]  __sys_sendmsg+0x16d/0x220
[  132.677538][T12692]  ? __pfx___sys_sendmsg+0x10/0x10
[  132.677579][T12692]  do_syscall_64+0xcd/0xf80
[  132.677602][T12692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.677618][T12692] RIP: 0033:0x7f1bb618f7c9
[  132.677631][T12692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.677652][T12692] RSP: 002b:00007f1bb6f80038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  132.677668][T12692] RAX: ffffffffffffffda RBX: 00007f1bb63e5fa0 RCX: 00007f1bb618f7c9
[  132.677678][T12692] RDX: 0000000004008014 RSI: 0000200000000100 RDI: 0000000000000003
[  132.677687][T12692] RBP: 00007f1bb6f80090 R08: 0000000000000000 R09: 0000000000000000
[  132.677696][T12692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.677705][T12692] R13: 00007f1bb63e6038 R14: 00007f1bb63e5fa0 R15: 00007ffc371704e8
[  132.677729][T12692]  </TASK>
[  132.700449][   T29] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  132.769103][T12700] binder: 12699:12700 ioctl c018620c 200000000700 returned -1
[  132.853163][T12710] comedi comedi0: Minor -1 is invalid!
[  132.902398][T12714] bridge_slave_0: default FDB implementation only supports local addresses
[  132.915818][T12716] tipc: Enabling <eth:lo> not permitted
[  132.917583][T12716] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  132.940547][   T29] usb 6-1: Using ep0 maxpacket: 8
[  132.945465][   T29] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[  132.949029][   T29] usb 6-1: config 179 has no interface number 0
[  132.952408][   T29] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  132.957210][   T29] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  132.963083][   T29] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  132.968067][   T29] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  132.974607][   T29] usb 6-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  132.985911][   T29] usb 6-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  132.989827][   T29] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.000879][T12676] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  133.233091][   T29] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:179.65/input/input9
[  133.233923][T12747] netlink: 'syz.2.2592': attribute type 21 has an invalid length.
[  133.239210][T12747] IPv6: NLM_F_CREATE should be specified when creating new route
[  133.326989][T12750] netlink: 'syz.2.2593': attribute type 5 has an invalid length.
[  133.429584][    C1] xpad 6-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  133.429660][   T53] usb 6-1: USB disconnect, device number 2
[  133.436063][    C1] dummy_hcd dummy_hcd.1: timer fired with no URBs pending?
[  133.444703][T12758] : entered promiscuous mode
[  133.698699][T12774] FAULT_INJECTION: forcing a failure.
[  133.698699][T12774] name failslab, interval 1, probability 0, space 0, times 0
[  133.704035][T12774] CPU: 1 UID: 0 PID: 12774 Comm: syz.3.2603 Not tainted syzkaller #0 PREEMPT(full) 
[  133.704057][T12774] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  133.704067][T12774] Call Trace:
[  133.704073][T12774]  <TASK>
[  133.704080][T12774]  dump_stack_lvl+0x16c/0x1f0
[  133.704132][T12774]  should_fail_ex+0x512/0x640
[  133.704165][T12774]  ? __kmalloc_noprof+0xca/0x910
[  133.704194][T12774]  should_failslab+0xc2/0x120
[  133.704216][T12774]  __kmalloc_noprof+0xeb/0x910
[  133.704242][T12774]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  133.704275][T12774]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  133.704300][T12774]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  133.704331][T12774]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  133.704358][T12774]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  133.704382][T12774]  ? genl_get_cmd+0x194/0x580
[  133.704413][T12774]  ? __radix_tree_lookup+0x21f/0x2c0
[  133.704436][T12774]  genl_rcv_msg+0x55c/0x800
[  133.704463][T12774]  ? __pfx_genl_rcv_msg+0x10/0x10
[  133.704487][T12774]  ? __pfx_tipc_nl_node_set_key+0x10/0x10
[  133.704519][T12774]  netlink_rcv_skb+0x158/0x420
[  133.704540][T12774]  ? __pfx_genl_rcv_msg+0x10/0x10
[  133.704565][T12774]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  133.704597][T12774]  ? netlink_deliver_tap+0x1ae/0xd30
[  133.704621][T12774]  genl_rcv+0x28/0x40
[  133.704641][T12774]  netlink_unicast+0x5aa/0x870
[  133.704671][T12774]  ? __pfx_netlink_unicast+0x10/0x10
[  133.704701][T12774]  netlink_sendmsg+0x8c8/0xdd0
[  133.704727][T12774]  ? __pfx_netlink_sendmsg+0x10/0x10
[  133.704757][T12774]  ____sys_sendmsg+0xa5d/0xc30
[  133.704782][T12774]  ? copy_msghdr_from_user+0x10a/0x160
[  133.704799][T12774]  ? __pfx_____sys_sendmsg+0x10/0x10
[  133.704834][T12774]  ___sys_sendmsg+0x134/0x1d0
[  133.704853][T12774]  ? __pfx____sys_sendmsg+0x10/0x10
[  133.704904][T12774]  __sys_sendmsg+0x16d/0x220
[  133.704922][T12774]  ? __pfx___sys_sendmsg+0x10/0x10
[  133.704950][T12774]  ? fdget+0x187/0x210
[  133.704978][T12774]  do_syscall_64+0xcd/0xf80
[  133.705002][T12774]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.705019][T12774] RIP: 0033:0x7f1bb618f7c9
[  133.705032][T12774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.705048][T12774] RSP: 002b:00007f1bb6f80038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  133.705063][T12774] RAX: ffffffffffffffda RBX: 00007f1bb63e5fa0 RCX: 00007f1bb618f7c9
[  133.705074][T12774] RDX: 0000000004008014 RSI: 0000200000000100 RDI: 0000000000000003
[  133.705084][T12774] RBP: 00007f1bb6f80090 R08: 0000000000000000 R09: 0000000000000000
[  133.705093][T12774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.705102][T12774] R13: 00007f1bb63e6038 R14: 00007f1bb63e5fa0 R15: 00007ffc371704e8
[  133.705126][T12774]  </TASK>
[  133.910464][T11986] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  134.080556][T11986] usb 7-1: Using ep0 maxpacket: 8
[  134.091555][T11986] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  134.099736][T11986] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  134.119126][T11986] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  134.125674][T11986] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.127172][T12796] __nla_validate_parse: 12 callbacks suppressed
[  134.127187][T12796] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2611'.
[  134.129180][T11986] usb 7-1: Product: syz
[  134.133554][T12796] Cannot find add_set index 0 as target
[  134.136058][T11986] usb 7-1: Manufacturer: syz
[  134.142314][T11986] usb 7-1: SerialNumber: syz
[  134.165035][T12789] binder: 12788:12789 ioctl 4040942c 0 returned -22
[  134.167317][T12789] binder: 12788:12789 ioctl 400c620e 200000000580 returned -22
[  134.200001][T12797] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2611'.
[  134.203927][T12797] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  134.207065][T12797] batman_adv: batadv0: Removing interface: batadv_slave_0
[  134.211572][T12797] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  134.214424][T12797] batman_adv: batadv0: Removing interface: batadv_slave_1
[  134.317740][T12805] tipc: Started in network mode
[  134.319397][T12805] tipc: Node identity , cluster identity 4711
[  134.325387][T12805] tipc: Failed to obtain node identity
[  134.327166][T12805] tipc: Enabling of bearer <eth:ip6_vti0> rejected, failed to enable media
[  134.330785][T12805] netlink: 'syz.0.2615': attribute type 12 has an invalid length.
[  134.333682][T12805] netlink: 190972 bytes leftover after parsing attributes in process `syz.0.2615'.
[  134.359712][T11986] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  134.442203][   T40] kauditd_printk_skb: 22 callbacks suppressed
[  134.442217][   T40] audit: type=1400 audit(2000000052.679:513): avc:  denied  { read } for  pid=12817 comm="syz.0.2620" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  134.455168][   T40] audit: type=1400 audit(2000000052.679:514): avc:  denied  { open } for  pid=12817 comm="syz.0.2620" path="/dev/ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  134.465582][   T40] audit: type=1400 audit(2000000052.679:515): avc:  denied  { bind } for  pid=12817 comm="syz.0.2620" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  134.472557][   T40] audit: type=1400 audit(2000000052.679:516): avc:  denied  { ioctl } for  pid=12817 comm="syz.0.2620" path="socket:[34298]" dev="sockfs" ino=34298 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  134.483241][   T40] audit: type=1400 audit(2000000052.679:517): avc:  denied  { ioctl } for  pid=12817 comm="syz.0.2620" path="/dev/ndctl0" dev="devtmpfs" ino=109 ioctlcmd=0x5403 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  134.553201][   T40] audit: type=1400 audit(2000000052.789:518): avc:  denied  { read write } for  pid=12771 comm="syz.2.2602" name="lp0" dev="devtmpfs" ino=2863 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  134.565451][   T40] audit: type=1400 audit(2000000052.789:519): avc:  denied  { open } for  pid=12771 comm="syz.2.2602" path="/dev/usb/lp0" dev="devtmpfs" ino=2863 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  134.573864][   T40] audit: type=1400 audit(2000000052.799:520): avc:  denied  { ioctl } for  pid=12771 comm="syz.2.2602" path="/dev/usb/lp0" dev="devtmpfs" ino=2863 ioctlcmd=0x604 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  134.643305][T11986] usb 7-1: USB disconnect, device number 2
[  134.649570][T11986] usblp0: removed
[  134.670519][ T5946] Bluetooth: hci2: command tx timeout
[  134.747493][   T40] audit: type=1400 audit(2000000052.979:521): avc:  denied  { getopt } for  pid=12830 comm="syz.0.2625" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  134.812281][T12833] FAULT_INJECTION: forcing a failure.
[  134.812281][T12833] name failslab, interval 1, probability 0, space 0, times 0
[  134.817478][T12833] CPU: 2 UID: 0 PID: 12833 Comm: syz.0.2626 Not tainted syzkaller #0 PREEMPT(full) 
[  134.817499][T12833] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.817509][T12833] Call Trace:
[  134.817515][T12833]  <TASK>
[  134.817522][T12833]  dump_stack_lvl+0x16c/0x1f0
[  134.817548][T12833]  should_fail_ex+0x512/0x640
[  134.817571][T12833]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[  134.817596][T12833]  should_failslab+0xc2/0x120
[  134.817616][T12833]  kmem_cache_alloc_node_noprof+0x86/0x800
[  134.817647][T12833]  ? __alloc_skb+0x156/0x410
[  134.817667][T12833]  ? __alloc_skb+0x156/0x410
[  134.817679][T12833]  __alloc_skb+0x156/0x410
[  134.817692][T12833]  ? __alloc_skb+0x35d/0x410
[  134.817705][T12833]  ? __pfx___alloc_skb+0x10/0x10
[  134.817719][T12833]  ? genl_rcv_msg+0x4bb/0x800
[  134.817748][T12833]  netlink_ack+0x15d/0xb80
[  134.817776][T12833]  netlink_rcv_skb+0x332/0x420
[  134.817794][T12833]  ? __pfx_genl_rcv_msg+0x10/0x10
[  134.817818][T12833]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  134.817849][T12833]  ? netlink_deliver_tap+0x1ae/0xd30
[  134.817874][T12833]  genl_rcv+0x28/0x40
[  134.817893][T12833]  netlink_unicast+0x5aa/0x870
[  134.817917][T12833]  ? __pfx_netlink_unicast+0x10/0x10
[  134.817947][T12833]  netlink_sendmsg+0x8c8/0xdd0
[  134.817973][T12833]  ? __pfx_netlink_sendmsg+0x10/0x10
[  134.818003][T12833]  ____sys_sendmsg+0xa5d/0xc30
[  134.818028][T12833]  ? copy_msghdr_from_user+0x10a/0x160
[  134.818045][T12833]  ? __pfx_____sys_sendmsg+0x10/0x10
[  134.818078][T12833]  ___sys_sendmsg+0x134/0x1d0
[  134.818098][T12833]  ? __pfx____sys_sendmsg+0x10/0x10
[  134.818146][T12833]  __sys_sendmsg+0x16d/0x220
[  134.818165][T12833]  ? __pfx___sys_sendmsg+0x10/0x10
[  134.818193][T12833]  ? fdget+0x187/0x210
[  134.818220][T12833]  do_syscall_64+0xcd/0xf80
[  134.818244][T12833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.818260][T12833] RIP: 0033:0x7f5bd238f7c9
[  134.818274][T12833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.818289][T12833] RSP: 002b:00007f5bd32e5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  134.818305][T12833] RAX: ffffffffffffffda RBX: 00007f5bd25e5fa0 RCX: 00007f5bd238f7c9
[  134.818315][T12833] RDX: 0000000004008014 RSI: 0000200000000100 RDI: 0000000000000003
[  134.818325][T12833] RBP: 00007f5bd32e5090 R08: 0000000000000000 R09: 0000000000000000
[  134.818333][T12833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.818342][T12833] R13: 00007f5bd25e6038 R14: 00007f5bd25e5fa0 R15: 00007fffebe7a2f8
[  134.818367][T12833]  </TASK>
[  134.967126][T12840] netlink: 'syz.0.2628': attribute type 5 has an invalid length.
[  134.989628][T12842] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2629'.
[  135.074250][   T40] audit: type=1400 audit(2000000053.309:522): avc:  denied  { ioctl } for  pid=12845 comm="syz.3.2631" path="user:[4026531837]" dev="nsfs" ino=4026531837 ioctlcmd=0x9423 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  135.114053][T12847] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2630'.
[  135.119591][T12847] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.318573][T12865] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2639'.
[  135.471042][T12876] FAULT_INJECTION: forcing a failure.
[  135.471042][T12876] name failslab, interval 1, probability 0, space 0, times 0
[  135.475570][T12876] CPU: 0 UID: 0 PID: 12876 Comm: syz.3.2642 Not tainted syzkaller #0 PREEMPT(full) 
[  135.475584][T12876] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  135.475590][T12876] Call Trace:
[  135.475595][T12876]  <TASK>
[  135.475599][T12876]  dump_stack_lvl+0x16c/0x1f0
[  135.475617][T12876]  should_fail_ex+0x512/0x640
[  135.475638][T12876]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  135.475649][T12876]  should_failslab+0xc2/0x120
[  135.475663][T12876]  kmem_cache_alloc_noprof+0x83/0x770
[  135.475674][T12876]  ? skb_clone+0x190/0x3f0
[  135.475688][T12876]  ? skb_clone+0x190/0x3f0
[  135.475697][T12876]  skb_clone+0x190/0x3f0
[  135.475709][T12876]  netlink_deliver_tap+0xabd/0xd30
[  135.475725][T12876]  netlink_unicast+0x71f/0x870
[  135.475740][T12876]  ? __pfx_netlink_unicast+0x10/0x10
[  135.475755][T12876]  ? genl_rcv_msg+0x4bb/0x800
[  135.475773][T12876]  netlink_ack+0x696/0xb80
[  135.475789][T12876]  netlink_rcv_skb+0x332/0x420
[  135.475802][T12876]  ? __pfx_genl_rcv_msg+0x10/0x10
[  135.475817][T12876]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  135.475835][T12876]  ? netlink_deliver_tap+0x1ae/0xd30
[  135.475849][T12876]  genl_rcv+0x28/0x40
[  135.475862][T12876]  netlink_unicast+0x5aa/0x870
[  135.475876][T12876]  ? __pfx_netlink_unicast+0x10/0x10
[  135.475894][T12876]  netlink_sendmsg+0x8c8/0xdd0
[  135.475909][T12876]  ? __pfx_netlink_sendmsg+0x10/0x10
[  135.475927][T12876]  ____sys_sendmsg+0xa5d/0xc30
[  135.475941][T12876]  ? copy_msghdr_from_user+0x10a/0x160
[  135.475953][T12876]  ? __pfx_____sys_sendmsg+0x10/0x10
[  135.475972][T12876]  ___sys_sendmsg+0x134/0x1d0
[  135.475984][T12876]  ? __pfx____sys_sendmsg+0x10/0x10
[  135.476011][T12876]  __sys_sendmsg+0x16d/0x220
[  135.476022][T12876]  ? __pfx___sys_sendmsg+0x10/0x10
[  135.476042][T12876]  do_syscall_64+0xcd/0xf80
[  135.476056][T12876]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.476066][T12876] RIP: 0033:0x7f1bb618f7c9
[  135.476075][T12876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.476085][T12876] RSP: 002b:00007f1bb6f80038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  135.476095][T12876] RAX: ffffffffffffffda RBX: 00007f1bb63e5fa0 RCX: 00007f1bb618f7c9
[  135.476102][T12876] RDX: 0000000004008014 RSI: 0000200000000100 RDI: 0000000000000003
[  135.476107][T12876] RBP: 00007f1bb6f80090 R08: 0000000000000000 R09: 0000000000000000
[  135.476113][T12876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.476119][T12876] R13: 00007f1bb63e6038 R14: 00007f1bb63e5fa0 R15: 00007ffc371704e8
[  135.476132][T12876]  </TASK>
[  135.509703][T12880] openvswitch: netlink: IP tunnel dst address not specified
[  135.629556][T12885] overlayfs: missing 'lowerdir'
[  135.780956][T12896] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2651'.
[  135.905597][T12905] Invalid argument reading file caps for ./file0
[  135.995025][T12914] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2658'.
[  136.072686][T12923] FAULT_INJECTION: forcing a failure.
[  136.072686][T12923] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  136.074180][T12924] genirq: Flags mismatch irq 4. 00200000 (pcl818) vs. 00200080 (ttyS0)
[  136.077256][T12923] CPU: 2 UID: 0 PID: 12923 Comm: syz.3.2661 Not tainted syzkaller #0 PREEMPT(full) 
[  136.077270][T12923] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.077276][T12923] Call Trace:
[  136.077280][T12923]  <TASK>
[  136.077284][T12923]  dump_stack_lvl+0x16c/0x1f0
[  136.077302][T12923]  should_fail_ex+0x512/0x640
[  136.077320][T12923]  should_fail_alloc_page+0xe7/0x130
[  136.077335][T12923]  prepare_alloc_pages+0x401/0x670
[  136.077374][T12923]  ? rcu_is_watching+0x12/0xc0
[  136.077387][T12923]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  136.077400][T12923]  ? __lock_acquire+0x436/0x2890
[  136.077416][T12923]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  136.077433][T12923]  ? __lock_acquire+0x436/0x2890
[  136.077446][T12923]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  136.077459][T12923]  ? policy_nodemask+0xea/0x4e0
[  136.077473][T12923]  alloc_pages_mpol+0x1fb/0x550
[  136.077487][T12923]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  136.077504][T12923]  folio_alloc_mpol_noprof+0x36/0x2f0
[  136.077519][T12923]  vma_alloc_folio_noprof+0xed/0x1e0
[  136.077534][T12923]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  136.077553][T12923]  do_anonymous_page+0xc81/0x2190
[  136.077573][T12923]  __handle_mm_fault+0x1ecf/0x2bb0
[  136.077592][T12923]  ? __pfx___handle_mm_fault+0x10/0x10
[  136.077607][T12923]  ? __pte_offset_map_lock+0x174/0x310
[  136.077620][T12923]  ? find_held_lock+0x2b/0x80
[  136.077639][T12923]  ? follow_page_pte+0x5cf/0x1390
[  136.077659][T12923]  handle_mm_fault+0x3fe/0xad0
[  136.077676][T12923]  __get_user_pages+0x54e/0x3590
[  136.077693][T12923]  ? down_read_killable+0x313/0x4c0
[  136.077708][T12923]  ? __kernel_text_address+0xd/0x40
[  136.077722][T12923]  ? __pfx___get_user_pages+0x10/0x10
[  136.077738][T12923]  __gup_longterm_locked+0xa92/0x17e0
[  136.077755][T12923]  ? __pfx___gup_longterm_locked+0x10/0x10
[  136.077770][T12923]  ? find_held_lock+0x2b/0x80
[  136.077785][T12923]  ? sanity_check_pinned_pages+0x23/0x11d0
[  136.077800][T12923]  gup_fast_fallback+0xf5f/0x2350
[  136.077822][T12923]  ? __pfx_gup_fast_fallback+0x10/0x10
[  136.077842][T12923]  pin_user_pages_fast+0xa7/0xf0
[  136.077855][T12923]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  136.077868][T12923]  ? rds_info_getsockopt+0x377/0x4f0
[  136.077884][T12923]  rds_info_getsockopt+0x39f/0x4f0
[  136.077898][T12923]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  136.077911][T12923]  ? find_held_lock+0x2b/0x80
[  136.077926][T12923]  ? __might_fault+0x13b/0x190
[  136.077939][T12923]  rds_getsockopt+0x173/0x2d0
[  136.077950][T12923]  ? __pfx_rds_getsockopt+0x10/0x10
[  136.077959][T12923]  do_sock_getsockopt+0x324/0x410
[  136.077974][T12923]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  136.077986][T12923]  ? __fget_files+0x204/0x3c0
[  136.078006][T12923]  __sys_getsockopt+0x12f/0x260
[  136.078020][T12923]  __x64_sys_getsockopt+0xbd/0x160
[  136.078029][T12923]  ? do_syscall_64+0x91/0xf80
[  136.078043][T12923]  ? lockdep_hardirqs_on+0x7c/0x110
[  136.078056][T12923]  do_syscall_64+0xcd/0xf80
[  136.078069][T12923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.078080][T12923] RIP: 0033:0x7f1bb618f7c9
[  136.078088][T12923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.078098][T12923] RSP: 002b:00007f1bb6f80038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  136.078108][T12923] RAX: ffffffffffffffda RBX: 00007f1bb63e5fa0 RCX: 00007f1bb618f7c9
[  136.078114][T12923] RDX: 000000000000271b RSI: 0000200000000114 RDI: 0000000000000003
[  136.078120][T12923] RBP: 00007f1bb6f80090 R08: 0000200000000040 R09: 0000000000000000
[  136.078127][T12923] R10: 0000200000019580 R11: 0000000000000246 R12: 0000000000000002
[  136.078133][T12923] R13: 00007f1bb63e6038 R14: 00007f1bb63e5fa0 R15: 00007ffc371704e8
[  136.078146][T12923]  </TASK>
[  136.170860][T11986] ------------[ cut here ]------------
[  136.186434][T12926] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2662'.
[  136.189842][T11986] [CRTC:37:crtc-0] vblank wait timed out
[  136.189860][T11986] WARNING: drivers/gpu/drm/drm_atomic_helper.c:1920 at drm_atomic_helper_wait_for_vblanks.part.0+0x760/0x8c0, CPU#0: kworker/0:6/11986
[  136.243218][T11986] Modules linked in:
[  136.245169][T11986] CPU: 0 UID: 0 PID: 11986 Comm: kworker/0:6 Not tainted syzkaller #0 PREEMPT(full) 
[  136.248960][T11986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.253545][T11986] Workqueue: events drm_fb_helper_damage_work
[  136.256135][T11986] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x766/0x8c0
[  136.259447][T11986] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 3f 01 00 00 48 8d 3d b0 47 3a 0b 8b b5 d8 00 00 00 <67> 48 0f b9 3a e9 ed fc ff ff e8 9b 6d 66 fc e9 81 fe ff ff e8 d1
[  136.267768][T11986] RSP: 0018:ffffc900037e7688 EFLAGS: 00010246
[  136.270061][T11986] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 1ffff11004ea4023
[  136.272851][T11986] RDX: ffff888105aff200 RSI: 0000000000000025 RDI: ffffffff9092d5d0
[  136.275400][T11986] RBP: ffff888027520040 R08: 0000000000000005 R09: 0000000000000000
[  136.277951][T11986] R10: 0000000000000000 R11: ffff888055ed2ff0 R12: dffffc0000000000
[  136.280576][T11986] R13: ffff88802b93f800 R14: 0000000000000000 R15: 0000000000000000
[  136.283119][T11986] FS:  0000000000000000(0000) GS:ffff8880d68f4000(0000) knlGS:0000000000000000
[  136.285987][T11986] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  136.288107][T11986] CR2: 00007f67c1461f98 CR3: 0000000012be9000 CR4: 0000000000352ef0
[  136.290873][T11986] Call Trace:
[  136.292003][T11986]  <TASK>
[  136.292961][T11986]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  136.295464][T11986]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  136.297394][T11986]  ? lockdep_hardirqs_on+0x7c/0x110
[  136.299132][T11986]  ? __pfx_autoremove_wake_function+0x10/0x10
[  136.301184][T11986]  ? drm_atomic_helper_commit_hw_done+0x330/0x490
[  136.303277][T11986]  drm_atomic_helper_commit_tail+0xff/0x130
[  136.305191][T11986]  commit_tail+0x334/0x410
[  136.306645][T11986]  drm_atomic_helper_commit+0x300/0x380
[  136.308467][T11986]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  136.310515][T11986]  drm_atomic_commit+0x234/0x300
[  136.312073][T11986]  ? __pfx_drm_atomic_commit+0x10/0x10
[  136.313851][T11986]  ? __pfx___drm_printfn_info+0x10/0x10
[  136.315609][T11986]  ? modeset_lock+0x114/0x6d0
[  136.317132][T11986]  drm_atomic_helper_dirtyfb+0x5fd/0x780
[  136.318956][T11986]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  136.321140][T11986]  ? do_raw_spin_lock+0x12c/0x2b0
[  136.322853][T11986]  ? find_held_lock+0x2b/0x80
[  136.324592][T11986]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  136.326636][T11986]  drm_fbdev_shmem_helper_fb_dirty+0x1cc/0x310
[  136.328652][T11986]  drm_fb_helper_damage_work+0x34a/0x650
[  136.330616][T11986]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  136.332636][T11986]  ? rcu_is_watching+0x12/0xc0
[  136.334221][T11986]  process_one_work+0x9ba/0x1b20
[  136.335862][T11986]  ? __pfx_fb_flashcursor+0x10/0x10
[  136.337602][T11986]  ? __pfx_process_one_work+0x10/0x10
[  136.339704][T11986]  ? assign_work+0x1a0/0x250
[  136.341699][T11986]  worker_thread+0x6c8/0xf10
[  136.343297][T11986]  ? __kthread_parkme+0x19e/0x250
[  136.344988][T11986]  ? __pfx_worker_thread+0x10/0x10
[  136.346665][T11986]  kthread+0x3c5/0x780
[  136.348006][T11986]  ? __pfx_kthread+0x10/0x10
[  136.349569][T11986]  ? rcu_is_watching+0x12/0xc0
[  136.351180][T11986]  ? __pfx_kthread+0x10/0x10
[  136.352738][T11986]  ret_from_fork+0x983/0xb10
[  136.354319][T11986]  ? __pfx_ret_from_fork+0x10/0x10
[  136.355990][T11986]  ? __switch_to+0x7af/0x10d0
[  136.357575][T11986]  ? __pfx_kthread+0x10/0x10
[  136.359063][T11986]  ret_from_fork_asm+0x1a/0x30
[  136.360717][T11986]  </TASK>
[  136.361757][T11986] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  136.364072][T11986] CPU: 0 UID: 0 PID: 11986 Comm: kworker/0:6 Not tainted syzkaller #0 PREEMPT(full) 
[  136.367077][T11986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.370557][T11986] Workqueue: events drm_fb_helper_damage_work
[  136.372492][T11986] Call Trace:
[  136.373593][T11986]  <TASK>
[  136.374564][T11986]  dump_stack_lvl+0x3d/0x1f0
[  136.376079][T11986]  vpanic+0x640/0x6f0
[  136.377402][T11986]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x760/0x8c0
[  136.379692][T11986]  panic+0xca/0xd0
[  136.380939][T11986]  ? __pfx_panic+0x10/0x10
[  136.382365][T11986]  ? check_panic_on_warn+0x1f/0xb0
[  136.384014][T11986]  check_panic_on_warn+0xab/0xb0
[  136.385563][T11986]  __warn+0x108/0x3c0
[  136.386829][T11986]  __report_bug+0x2a0/0x520
[  136.388311][T11986]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x760/0x8c0
[  136.390661][T11986]  ? __pfx___report_bug+0x10/0x10
[  136.392269][T11986]  ? debug_object_free+0x295/0x550
[  136.393945][T11986]  ? lockdep_hardirqs_on+0x7c/0x110
[  136.395613][T11986]  report_bug_entry+0xe1/0x290
[  136.397171][T11986]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x766/0x8c0
[  136.399493][T11986]  handle_bug+0x18a/0x260
[  136.400953][T11986]  exc_invalid_op+0x17/0x50
[  136.402497][T11986]  asm_exc_invalid_op+0x1a/0x20
[  136.404057][T11986] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x766/0x8c0
[  136.406540][T11986] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 3f 01 00 00 48 8d 3d b0 47 3a 0b 8b b5 d8 00 00 00 <67> 48 0f b9 3a e9 ed fc ff ff e8 9b 6d 66 fc e9 81 fe ff ff e8 d1
[  136.412691][T11986] RSP: 0018:ffffc900037e7688 EFLAGS: 00010246
[  136.414658][T11986] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 1ffff11004ea4023
[  136.417168][T11986] RDX: ffff888105aff200 RSI: 0000000000000025 RDI: ffffffff9092d5d0
[  136.419745][T11986] RBP: ffff888027520040 R08: 0000000000000005 R09: 0000000000000000
[  136.422298][T11986] R10: 0000000000000000 R11: ffff888055ed2ff0 R12: dffffc0000000000
[  136.424817][T11986] R13: ffff88802b93f800 R14: 0000000000000000 R15: 0000000000000000
[  136.427337][T11986]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x70e/0x8c0
[  136.429656][T11986]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  136.432038][T11986]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  136.433899][T11986]  ? lockdep_hardirqs_on+0x7c/0x110
[  136.435529][T11986]  ? __pfx_autoremove_wake_function+0x10/0x10
[  136.437481][T11986]  ? drm_atomic_helper_commit_hw_done+0x330/0x490
[  136.439507][T11986]  drm_atomic_helper_commit_tail+0xff/0x130
[  136.441422][T11986]  commit_tail+0x334/0x410
[  136.442861][T11986]  drm_atomic_helper_commit+0x300/0x380
[  136.444641][T11986]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  136.446583][T11986]  drm_atomic_commit+0x234/0x300
[  136.448212][T11986]  ? __pfx_drm_atomic_commit+0x10/0x10
[  136.449977][T11986]  ? __pfx___drm_printfn_info+0x10/0x10
[  136.451825][T11986]  ? modeset_lock+0x114/0x6d0
[  136.453381][T11986]  drm_atomic_helper_dirtyfb+0x5fd/0x780
[  136.455165][T11986]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  136.457173][T11986]  ? do_raw_spin_lock+0x12c/0x2b0
[  136.458834][T11986]  ? find_held_lock+0x2b/0x80
[  136.460388][T11986]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  136.462409][T11986]  drm_fbdev_shmem_helper_fb_dirty+0x1cc/0x310
[  136.464419][T11986]  drm_fb_helper_damage_work+0x34a/0x650
[  136.466228][T11986]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  136.468200][T11986]  ? rcu_is_watching+0x12/0xc0
[  136.469748][T11986]  process_one_work+0x9ba/0x1b20
[  136.471424][T11986]  ? __pfx_fb_flashcursor+0x10/0x10
[  136.473084][T11986]  ? __pfx_process_one_work+0x10/0x10
[  136.474916][T11986]  ? assign_work+0x1a0/0x250
[  136.476410][T11986]  worker_thread+0x6c8/0xf10
[  136.477965][T11986]  ? __kthread_parkme+0x19e/0x250
[  136.479577][T11986]  ? __pfx_worker_thread+0x10/0x10
[  136.481266][T11986]  kthread+0x3c5/0x780
[  136.482601][T11986]  ? __pfx_kthread+0x10/0x10
[  136.484136][T11986]  ? rcu_is_watching+0x12/0xc0
[  136.485725][T11986]  ? __pfx_kthread+0x10/0x10
[  136.487217][T11986]  ret_from_fork+0x983/0xb10
[  136.488729][T11986]  ? __pfx_ret_from_fork+0x10/0x10
[  136.490376][T11986]  ? __switch_to+0x7af/0x10d0
[  136.492034][T11986]  ? __pfx_kthread+0x10/0x10
[  136.493587][T11986]  ret_from_fork_asm+0x1a/0x30
[  136.495359][T11986]  </TASK>
[  136.497106][T11986] Kernel Offset: disabled
[  136.498504][T11986] Rebooting in 86400 seconds..