last executing test programs:

2m51.258351739s ago: executing program 0 (id=462):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'ip_vti0\x00'})
sendto$packet(r1, &(0x7f00000002c0)="05031600d3fc140000004788031c09102c28", 0x12, 0x4, 0x0, 0x0)

2m51.073926524s ago: executing program 0 (id=465):
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x21800, 0x0)
openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
sched_setattr(0x0, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000a40)=ANY=[@ANYRES32=0x41424344, @ANYRES32=0x41424344], 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0xfffe, 0x0, 0xa0, 0x2f, 0x0, @loopback, @multicast1}, {0x2001, 0x880b, 0x8}}}}}, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = gettid()
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000180), 0x40e02, 0x0)
write$rfkill(r1, &(0x7f0000000300)={0x0, 0x2, 0x3, 0x1, 0x1}, 0x8)
timer_create(0x0, &(0x7f0000000040)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
io_uring_setup(0x598, &(0x7f0000000300)={0x0, 0x77ae, 0x400, 0x8000002, 0x3d7})

2m50.824315661s ago: executing program 0 (id=468):
r0 = socket$can_raw(0x1d, 0x3, 0x1) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00') (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_all\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r1, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2, 0x100000000, 0x3, 0x0, 0x6, 0x7fffffff}) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x207)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
setxattr$security_capability(&(0x7f0000000080)='./file0/file1\x00', &(0x7f00000001c0), 0x0, 0x0, 0x3) (async)
sendmsg$can_raw(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=@can={{0x1}, 0x2, 0x1, 0x0, 0x0, "cd42beb05b5e994c"}, 0x10}, 0x1, 0x0, 0x0, 0x10000000}, 0xc0) (async)
syz_emit_ethernet(0x22, &(0x7f00000000c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, @val={@void, {0x8100, 0x1, 0x0, 0x2}}, {@can={0xc, {{0x2, 0x0, 0x1, 0x1}, 0x8, 0x0, 0x0, 0x0, "d327629570fbe355"}}}}, 0x0)

2m50.824033021s ago: executing program 0 (id=469):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000001c0)={0x73622a85, 0x10b, 0x8000000000002})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c00000008001240000000000500050002000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r3 = open(&(0x7f0000000000)='.\x00', 0x800000, 0x0)
sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, 0x0, 0x24040050)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r3, 0x40049366, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r4 = dup3(r2, r0, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x2000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r6, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)={0x24, r7, 0xdac7a804b810efff, 0x70bd2b, 0x0, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x9}]}]}]}, 0x24}}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f00000004c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000480)={<r8=>0xffffffffffffffff}, 0x111, 0x1}}, 0x20)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f00000005c0)={0x0, 0x0, <r9=>0x0}, &(0x7f0000000640)=0xc)
r10 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r10, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r10, &(0x7f0000006180)={0x2020, 0x0, 0x0, <r11=>0x0, <r12=>0x0}, 0x2020)
syz_fuse_handle_req(r10, &(0x7f0000004180)="92756f43b31ffe542788ef586b7c5a344424e3acac2590be6bbe37adface4a8f2e534ffe76a83a93f0b3680a72fddfde83f96d01982384e8d689219cb9669b14dbaa1b799f82ea1fc926126a4163618e16d4f94143a4e0f27c44fcef3920a0b3805ed4e78098d8689cc7791bd86648070718d238664332948d87866c8d2590fc0f017f9853abd9ed60b99f1aa6ae2dbd24ab6dbcebdb055246815ace147cc50fa3b2861148fcda374d5b203e51d72c45e4dde3e9ee9a47ffe458baf7bb49035135a8194aa1f0a83fa2abed56398f90daff679634619453f533f22583a6e0a4dc09e9de46684d5e0136e229510f3702cf3a4cd0065d3e5d3c419e38a80b070ca55010e082a9c510fd18cc0b26bb5e8e459e747befbc5c6b60ace80bf41417b7b78cf57e5b3984f0cdddc615c5e0000454d3f4a196fb6d18aa629cf0b0245f95ba958d86dc175616f8cd3ac473057dc3a5ff7107973326350107f4468e7ecd48d689b82c12d22ae5f1858302a1b4cfde8fd347a99ddcde40d1c49d9b5099fbccf09e782212be4b2ce36a2bc3c9ee794abffe72a5501e6c4f3f7f68b74761ffd6620609224a3bf11f655dadb5c8a5813b02fb46830e9ac6825f5d0e89910352eb3a58c0dd82d094f94dd2c85666f684a8f437bbd0e66b9f4d366117b67a054d212c4fbc287848cb0578391335d5d616b14d99a2e3df8e8a152d5de99bcefcaab5bb5cc71f3ddd66b379c104648e190e0b28a180d3aecc5423575d4ba7dbf31215c717da7b87dd454b6efcd36c91aaa631127f5bd88723d221752f102bc0c7ac6c5c7a1ad6747af40d01b6d39eab7b0e1292b44683c586386ad00acf60fb8f9bac551a6eb5bab7317b5d89f64db10bd9018dfa6d65d93862e851afbc30fd70fe5f0de322462045177231852ca80e4e78da4fea0c79ba354333026c8bc77d308a8d256a19ec45d2088c196691d3f9aac28ded36004a65ee1ce49ba9599ceee84534bb61d02d04a6732f1e27d72962f74b59f3522bf844c5022986d55934e48b8681b7f5b7532391448caeef00315d28320a46d8bd7813544e1e4bf994e14a519c2654ff20b42bdb69c262897e28eca528f0999840b00ed8256597d27cfc20d71d5f40d0bbca759f7594c6034aa1e16a84ed152fad0fdc1c303a7f61225712714f823afc5ea241d482d3585759623af8c97ca6a84a2033b3d7314ea0ef7ba9b288b362a294c92c8b9736829c16f61c5a1ee04aca965d71162292274595ea62c9c2918e8279c99f5d2830c617c58211fd7452330184b9428d5ec1d5cd75ddcc6de3326fdc70e891104b3b013c30ffccfaf3308d9671b01f6b080a930dac2052c6f39817a662121d90d40d6a1facfb50bec7d408030b6d0ae3e744f3bcc327c35dc43cf86b743db78ff2e593b19923235ed6467f299b08718fe1840c16a748935dff941150fb08b30573b37bf9af5c86cc8d9e229a832e4ef25ec91f71120f2b3e9062485976c280a2d172386029e2f2a4801197fca0a13514edacf5ddbac5a62e8bb13dd1572657a821a8739297f72e29239d1cdddf3e30cbe9af3141f2275ee4ae85d86ec888fe9a6751f252057e95b8beb055e276439581afee93cd44f1e92f70e5f725451d3ab662918ffbb1269509fbd511e95a00ec717f9d60d643864abd6ad1cc4dd7f933379a6078a86c2158db8076e7b660366fca7b1c46d09d2c8e67a6494bfb4c2c6750e76593895b5e2b2bc78093840c3c4a807826bc2750a96b4e1dd5b82b492bb2215518c92064d1763c37132604e52e73fac3f4511f791753aeecfbb19816e0da7a1bfbea9eeaa0f256eaedcb119a61f7d0ea0f5cd4969d45cb014800f2c888d5c2217cf0f69a7507779883b57352bb8883cc584891950d6e792537074f4fc4337aa19b9bf60e18edd939d289fb4a6b7aa6c66da20774e249ca4f779d3c910b1a9a8e4c38af6adecc87d5481d181fd66023ffff246f4e2556b218fe8110acebe20b1675f1de6f265b6d1d8514a53522396bf0e2f2b153c498e48b36d16f8b9bd56f45d7f5b9397d7f1339117a176d0bad0b68e800682416d3e18fe2197c7f8dc20600feb95cc6ba86ad47f113e159bd4389e30eab2874bd27eebc56020c4dab9973b13f3e82aa62a7e0a151d73de48cb811e32be63ffd303f5a6ea6f097ed763fbf36c430821e451146de79922348354ce285af0997bf3c66e6ef02942e24b8f1ccdd542f09cfe65c0da0094c0b5fd26bbc061538b41e5ed2cbb390ee29b10a4b7a696009e1b5b86c44c0a561a257c15415feaeb1433ea275ed6e4b228503fe71ee5942665164faaed6697112206be0fe7863aebd4bbe951d5dea1da294dba0793196385f4d5141c9d6c4b0fa22b2e200cfb70b52aca31655e71e5a576ccb8ccb5b1364748aa981edbb81a813b1aebc67be1f7619e7e197622d981280429f6ca5145c5b3b05e6bace9191e5c58fbf140f71f594cbfd4db0e9f6923f1758ff9464a61a720a5d4f09c622c3ce3f5d0d3a1d191111168108f41f12b16e9eaf3617c353715cd35260560cbfd0555d51ce5c40bbdb7c95ceaeadadb8902974de50b0863348183864f5ea682e678286a06a6f396af29a7c7fb33a3579e25835963612f3c0d4cf369d85959a0adeda94d35824050e6fba7f83f90867583f713d7783323c7010e94c9be331f860db395dbde6face5bfdb616fcefa9c6b01f6963daa840a31ff554a458c0c50cb5e09f91f54f63234589decaf45bbfbaef0dcbff4ae6e65ca26a530261c491ef8eb9a855a1d7463391c9b66be96cf24c3c321ee5a5bdc857f60b582683c6ae1e3775b62a9f19ff8fa51380ca8a2a3c6de79012f5727ba12025e7e6723a23a81e067ca6e54c7b38ff64880d235d21e7ee5258953dcbf9e2a962f006ca4ffe870859242c850cbae4222b3b72c4f86934379ba2ead1dcde906241b994d95c88355af5a9a30ace9c933a6942f341ad221dd825846a8fd44c03e2eaa9311c26e15a1bd7cbba961a22ef23d7ebba0e34cec5ef09b1ce72814a97e33bd29f3d9ec80a4f45d1d29486accf15c11f1a800bd84918e7626f678275d7c7acb02cc0e6e34bb766ba6b75c3ad14fca9352e09c3b69390c045cfc842ff9ade8ca693c07fadc7047a946e6e570c3afc5b501c964103397f5ddadc2d59a048348dd42f07cfe31bc9b5ae453f5086bb41bba4c8a3e518e30b0855184b053f923025dd72ce1bcbf41231978b34a8547c71d7313992165078903c61d312b0d9469413c9fd97ccdf0ea270fb6c47ec8861a1c8d909eeace761b5a06ba46e25785ff87f867777abb237c6c980687991f1ed0157d58492260c712cec34c1fc0962103955db4d5090b6e8409cf3c3c79d0e691cf4fbc0b2251a016dcd456969cd32e5429533bf0d6f8bda84c05f0e2040de8b53bfb8676eec4b76c3df6f46b1e43732035dda577e75f640777f6ae90fd2f1af42ba462dac732019c599bfef01acd6a0d4d1796bcb8f58519d6f9ad9a3206704a94d472516b988141f44ecd2e6f28a49aa0c449db87972fc995a97379914546ea43143ea2cf779a9cbe81f111fe89129db3610492164ab2598eca7e60d9a6963d8ba03a86729db86e420fd96d61b8fb11edc2b339b57a740074ae5b775eaf60cd85dc934e604bf2b4bd58ee01205b4df57ac20ff8db45a05982b579643882407050c005102a2e71f1e56dc76dbf5331112e83e48bfb5cf2a78a893190d78426175c162ffaa7278a43b9932318fc17fb8cb0dfac610b1ad235b91f9cb7623b155117e07f7b876a3c37627aa31eafed141cc0c5491c4f621a66b6d837a144d78719c46511c04a093cf65fce9fabe5bd6d499eceb63538ece3cf19053550a239bf978c08c879f9954485a4e3e0d5bedb84b407ced85c4dfc4d75af116815992c29f0bc927c4a990c38ae4fcc9feb90fec1b1b555e04d010423010855394d5ccfc8ed21164190cd8f83be5debb70290c3547f07e4dc42814f1e001798e6ceee2558b0c6ff8c1759f90269ee226131116332b99ac8dd104c92088e1f91ace3198c0f59bfb75c4e4a697660eed43a29c831a552de37fce6dce96fa51b6e2111f3071a4e94422d15e102e5f67da7ca6cae6bed7743ebffacb8a811a143605791d17232181a517e872f71262c3c73668f0ef83aad498f67fa26bae698cf78f24c2dbecd399a190e6b8d0684e929f2e8083765eb2c67793a1adbb89d36b58bfb197cdc5f3c894ac9d886e8f3b0936fabd233c09de8fab8099f72a74d908ba5c5e4d39790b0bf9e45b710f5587b7c937c76690c5c5fce621a53a9fd03b0a4ee6d8d1abbe2ed561820a77f12a08cad0755540ab6dd1604b7c30a8652995ab80b85e919011de9438a4637eb0291124ed4b745e782cff98510cb03be79c2a81351abf276584d75cdd96b9c97e73eb71000b3ab7c3c19c2cab4497298fcb3052b5d4503d05e7f310318be6f848547b1a4f4db82caee190801478be28065036aa4d91f290c1f396343e73a5fe8bb5ccf0a317177ed1f77acda1a4a49dccfcab8d1b5d79f015f788b6d5e9f8228a8bcdc0696e6b19f5edffbcd7e9509c87fbe1f726b93bf8c6d8d37428763e142560c46c9e894f7317859000c25abc4f3691ebcd020171e0d4911b5d97a238109aedeb00b2eb475c1e7b45175f8aa85193b5c0f43b434c15de01610c4d022646cd6e3637f349a434a77f571ac1c5d698452d1b991e267f78dca5e592ecd31ccafcad84e4e98d134b4adc525b81bd6843428883023a6ea407201738c8bf16b541ff7280274a34d4cf14819f2dbae167ca0cae8471c495e006b45194ad91c4516f21cbb10e0d26fd5d734cd7725df5b3fbe92955f4a9bb3b9b813aeeff79d6ed5db92def19d060a208c3ec8c42c110786f1e1496c50a7249b03fc792764366894a35320b99d0bef9fd0b6a246c36a357c6b985dc83a37a8d9b8b9ad643dea94860cbe763bb73cc8422b69d4d12332242c8954075fb7117a6679638073617abcdb4619855b2036af160647f66b3531645a3bf047ae290d6ae2249f114e7a8464278bae1486022bcc7c37390c8d9a0efb0e1cfa0da8ef7a5e072f99a47ecc75e4e442880375193db49bb82ba34901286ca473ed5b63e4048db4dc455e74b3fdd2e7898ca3f4c3a02d435cde6141eea645055123a7dcf0d22057f8d425701afc55859f5147954e719d58c7486b1e02ac16cb799b77632c66bb78e6e52e11017c1736424fa4d433f1e19b4c881d23f0b2a12d5fae3ae24339088088d9b496ad97bd9f6e20a8597d1452a0c72dcf43dbbda8f18166585c06d21fbffe5fe7b55f71c9b9f1b34a02bd05ca63c7c1b1bebbb9dd24fb10291b04c665d45154dd28b85d821ce7e613119128996785e1006a8dabc4899b10d2671107d5a0658ed363b9d4b39d02f8cc5e350fbf0a31048adecd1f9e2ca749bd86f195eb48e9b4605f050de03d642940d79184618f7f88a9a0a4683ad84d6134e395305bc1d4d9d17cc334b97653529d6682a87a5fac80a6d46d6e72fc22e58be7b8f8617b3372ef2622110ab1ec448717118b257acffe55d18c7855e9e8710ad977a6792b2315a189eb4468c68641e9b60c0dab7016ac1ad63cd8004b6eca8fc88b1e4263acc00499255c16b11487a0af858075f9c892dc8044c4146e5a5677c4a2cb24bde5e078985020d4ab1e4c87492e76b7e6f4bbd71d84bab1885c9702849e70cf728776b1a94c2a8fb8c7ca01b6111ef6f2032a290949bfe473fe215273b8b5b3ad540f187490f63077dccbca6f62f0a7a66717c596cdef412f2560b10685ede967b3ee68b8c951959aeb1d7564c3b9d806b2ce858381393a79916b78f7e90beadae30ffc0b2b614380f1c2cc551a44565209db3516be379ef566ab00c673fd8aaeeecdcf1168c1960e9a477b9e13757498a44ff089351d1f27abf9fd76816f924504647d1247715ca861ebe624172c322146d66eb2b247f8ecb3e1b5ddca89b287c57510cec40fcf89d802cf4368a861af320e01e34f7a6177d4bc549181b5e87ecdfe02f78c9a59a3bf91ebb6364023ec06410e7b4476ec4e3685bfa3bfe9ef9ecc12dcd899abe0f3c7f16b4686801c0c0a949aa26bed57df56f2bc54ef19af7fcbc7b0d691075f42a4a67acf980b568acb2342f42249f7c1ee3527c13182b096064ecd250887a942d26f637e1c4041b139659d2462a68680bb04387a3b399e396b9fe74de10356125fa47d0a20827370cbf36a79b6fffade91c439dd6cfff4bbe0dd3efefb61c491ee32f935d62307cba369ac8c20f6fe3d4857ce6d240ece5e4d149f0587155a8350fcc18efae2ff11cdbe15218a82499a1996df8b5462ee170b284321e76bbe5c3f4158387644d95f087c598e3d46fbe27f63fa784bda239512113424045a2c5dbc6bc3662ca730a86d13cf8f6fe2743224ca7b535caf6b4701a7dae9cfad3d7290104bbba15b6a064ae6e909a099f75fbe47c9e654d8e3b8dc0f3dbffe829e6c56f7a241e565136812a857f59ab565a9991c6b1d8abcc94c6b33bba314f6e5060e657e4647f969a551dd6c51dfca0ff5d9e4f401fedbc2c927eb1ed95ef25f4e5accba4999322ba1539499310dd5875433a22835cfd42fd77fd4680b7fe767d7aa5c33acde04a65bd3a663fcde4c80e9f2af498f13bf9abbaa1c1265edc691e94abdcc92270c05811cd2a8104eb18efbfec9e4ba9ae5cde211b9b93082ce034b6cd5fbe9cfbac4f7e2404ef159766124f73017cc3600f3c81cd78db25fc3459629eaf20dfdb062c7e502aa69412381d847a9d254d5befc451cda3606f0bc8ae62e0aee928f9ed0b21d705a8d31b899e16445ee064563d32f7b6bb5ad197023cf528d9b329ec67815c6ddf27d2a6ffa7328bb993407cde3d166159fd49fe469254b84c2916daea8df9d69bef019f1351b9bce193e30278835b82ea5f60dc0bdd7f7452b7a820ae7cd6dc29d7ac6a6c1b6411711a96338b1e769146b2a385d282bfaae61b041166efafab2d89a4567b9460cc22d752f8e9aacaaa0db7c84879f5359662d55df6570d4214740851c74574ced733807cbb54571110410892394c3dea07bd4154d0e5689d57c3360207dac951f96a358e9c466a5c5113f3a632e184f57f075edef4dcc9721b963beb95df09dedf848260cbc1ebfdc7408218eaba6d2c51928cd37c4c0c9f321fbb0994a56947cfd9643056db5dbea60a241f8f004c932bc8e645b2ec2eb9bc4e9e2f4156293234d05e70cb26b8a370b0206c756bda6defc11c5eb386640f535a4ffb714168defc6d82f40d8f5ba8768537ead5773c53bd779ca899a2dd31c9138569ff5107c2fb12b804375c3b3dc9b828bfd550328adf358f71e86a0c49fb119f5ef9e06c13855cbfc7d1a62ca2ea655ed912a6dc7bb8b18656e8923fc7a1702ab36947d79384d681c31923e98cf40209f776bc2b219a7ccd139e756a905aa351e6eaae90770c8a193f96cd5c66e4d77a357985556e14333716d80204a5c390e0d76f4081afe917f99ad8a0976b3342f51854b374b4baa9a7f22124d2b82749446e30d9795acb9c3c3a305a6d273ac528e8e9c95c37a78e765fdda55982c2961fbc85a14fc095a78b4654ee6dfc3298749a639ab9c8e155af3a77f8a409ce174532a492ef550a140f774d77d732b3b4ca5bc41fa4488ce5957ce219b032ae1f585273748d81b19edcf3e6cb9a93ec24e41c6b3c472f9baf3ca46cb8b9a91df18acebe7d83bd4473750c4f26806da2f95b9ea48b342460af729ab15e9f033eda67feec645f985d4b9489cf6ceec1b100d007bf46c74be53c7ea17296f9c5b5cbae736491213c93b513009ebdecfcd60d46d7b86c6e3b5e288f2ba5867c07936e7bd1b00de52191eb8630ff82ccafb27a59295164751811bf74eff1e5e2abdf3c93bc5dc9814be83b2562477935e2fa30db7ebb6ec380170cf10c1f98f8c5eb71c730c2b31b55a1dd1c12a64802ab95b63c529e0a96cec8f38680221d6089926d8309796c79994d63b67bfb62f66b4a502f30ed12be41e896e88bc45a160a526fbd5f002e677322f116ec5740d7563cd23ee853c008b84998e38fdf158556e28a532573956e7c00f91f08ca245c295a3d5e003a99ea727f61d12893b435d4c8f2f5cce00c6a3091e2a47f290c07168975c53d7529b71d10faf42d2bac9db8d53669cf59c709c25e9e40b5feaed4c37dde8b84c4961c00712326fb6aaa06e80d766b40b72480f3971def61d1d129676df2478e778d899ed317426ec33e496d1fdd2ec27128f8faee92828e13da72d6aee8330a7988ea1cc8b64ec4d8b20990864c16c52c4be6d00b304b87d97bffdd9c66a740b517223089d9f3f414abedc53c768dab9220b980e6c18d5f20ba8994cc8886d7bdee213442f456d79fce1b1eb48fbf600a666c8ade24d118e6328251cf7b57a6285c650e019850f392b1c29aec5c8fc489a3819d60d5de377d4c11b8ee5625b7c02c5d50d2af3397006f2e2a41a06f039229eef5878ed91f9f6be7e988924dbaeb8455f616275e8698d93fb536e2c839b203aa69bceceddbf9c53f8addba53d50ca0f7a4729a42ac6eb757f1b408ad4a0147546173e62f7621eb18a9e1681510cceb48e0a30ab7a1bf71d56742d5f034f2d725e7ea68a011dbb100fa6eefe4ee093873de366d34f4240ca027a25c5b979c9ac47dd1dcb6ed82c4aee09dcc23cf329a8644f89b5cf00e5683934b1837574e9b39b31b1009f276e15aa040959fdf100838ca3f5ab17e45036668d06044e3a13f3a0a6f68579e50d5b0164f900d7bcfcde78396cf30f0b1dff76dc397ab1a5a44b207eb1eaaf73b945c575029ae2dce20724991e6550155ded6a42672609f2439c5aab4882b2ffaf7da787b71d05d15516bd68c6f1a9d79b675395845f24ee853f877e72c14b6c6702f7b8775ca1bfabbbcf4019f7bccf07f1c211531dfc66a7a1df79e92a20dd1cbe1b22e1209e7e3ecb9d3c2450fc22a57bfe09bd735f61c361cdac2488ae0adc7885edc0712655daaf535e1de96ccbe7869d531d8bf3db512fbd17c772332a3f8cf1e052ee0202eb99a36a0f8d7219888acbb57090cdaf3b28e1e62e8fc2ec237bdf18592a7afe4d8390dcb5e7fcc31bf4f797e6f5710070902265cc2e8c459b7da1451046abd6c8c5b02c0be2d2f505a65376266563ac7b59ef3b4e2570a6cb0bd94d46ad861317c743ce1de12bfa2295a98cdded4414d87a1580b1e4675bbdf73a22cac4a1d8d456d089e0b60cbfd16158f073bd1dac481db49fa5d8801d0fb0844b4afec1bab4e61fa0f381fa667880a1cd8163953be7b591cc9dfd7f91902370b783ae8a0f3c7cbefa7d229a37c00f523529e159b11d2e240629b64af2d11404773e991207a722c320221ce23baed7cbe40a440c5680814b122cfba9092fe03478f85adcbdeacb76d6cbf2491eafae98327b278e267821a0e1cd06ef90cb0328e246c19d8c63b9332291a89bc9f989effc675c79a870ac024756c6f5a7e32babd69625d61487ae7399490b70dd0fade7d70ad9b0757300a2dde77abaff4f63a0303853589d44efa968e10d36561f04408ad0cc227fc6b2f904cead189a0fcca9b2e6cbde5498652e0b3bc9d8b7921474403718feb5cc750dc70f5a9b1a0ae2c642015b6a1a8ab0572182b4e39e0c869cbdc60c9465f5d564d18ba2f5b3bc3e05a458744077430c5ea031ee02dd8f0a65d7dd8d90dd9b8717f77d202239a5778719423fb2aec7ca86eb07c39de65a34b988d65377a7473e9145f16d79593e96903330bbf3a8024fc15519d9baa0fae2018786f4b1846fca355ff0fccf65cccad1896309a5ccf2056dd542c929850cc91cd655962360fe316557ab3fb378328f77a07d9da24447d3fa2020b382ed2e808ec9529a01273434c64b0b7c35a06a019e4ab51cdc9c0f266ab25b6984338a0ba910d1060283b636c5d7e8a3f969c1ee1c99b54bba7ff3679fbeecbb70349f076480a867cc4ee4cacaea39c80f642533599486d2ffb77b8c9109a9d25fa0b06e58eca764f7d56469eb9547036bbea9d5c3d35b4c1fbc3d39a372c2b7ad184965cad3819c8928f1588d00949949c0c4c93d30ac7f6665247c0108bd89dff3aafe780ac66febfacc8c6a3cc387d09da6de700487a80e2c8d56df94d7ebd3e1d9e06411a6c5f7eb6da41c6f52997b5ad47ba985261103fdf12eb4a2828b248f652ef00b6abccab2eb161b878b9dbc0aa911405b6f67adda83c16187748d7b524ffe6381f489f432d592e6171bd9ccb2cd52f977143f57fbf2ab0b823d449ae55f02440972334344cda01837b93afa4f46a2fdefe27e92764cf9596780846de2e3b1ea83e62ee43b1c05aee675e25363504addfaa68e7c53ed685413f5ba951f120d0a646e474872c81e5a887464c19f8460ae814ffff24cb51dd2dca28d597ab2ea60949f8dbbe67f263e722fdb51bce4e328a19f5ff1218e1f63b8da6d40dbd5490964499b2522ea323310634893ead661407966207a66ab13adfcf1a725ed14339c46011c0e0401f2386b47cd9f902fdf84bc85e74d3ae7cc544e4d65670a554a537712c6ee9f75191631d2a4c4da06fc38423b1d5b828d7201235b2974164f52aa16bee70ee509250752f4fdd6b9f8d021943df8320682a6f80ff0d67ab7a4ceea807bd5b3b7b6380b0c7f0caa67b0208ba71317f0355a3b755af0e2c007186389438615df80b7b25104a733fc90625b62682198733c0f1625dfaa08cf81e3df043094b7b5a098b3b36f803b5b0f10a057bf814ae3579932c0a5f208985bab3d817f975283b8838ae5cb709be72b58df7425e059fdbf4e0ee51b3da01fe0b44963c1196baee5ec5909ad80d9d1660f3edd90374952a0bf8b3bece2c2f944593f4de7de5e05ded096b8f4f05d65dfc2e806f78220d84b3db564fb12f4e5e8f5eab316591f004e9374cce8e787263bc3827affe6793c130b8621d3bbb2a86fd87f070ea21718281ee7aec4bb3bb71af4bf5721cecd139c4be8c9df4ec8dfb09a5cf1d86a25d39faa9f064a997c214f334e4410917fc3b4d67ada8d87a38c0f86b02bf653dddaeb5b75b300f8bcfd792858bef8ab23e063421939c59212964c9ed5dd56e215db58cef53d31a966bb8ce4ed56287fecb3a85ba435e0b41b20ba1164b9c9f2c49fa0f7b17a89e0ec47eefe992d63ee29c8c0a1ece2664fee8edadd43636a54c48519b4fcf55b0d9103602b92441a5f85cf8c5e406d0f5815f8f37309934bd78fbc2acf0a03b051b4528db4f7c09de7d0aabafca3736b8259c818ca338ca6754e0747717c2794d664a1cacc1e9c52764a308e6df73d975638630b74cce6c49b1bac16454e96852c4f9d8ed118e86d2f1c8dc33bccd4a07be128db5e80f5684ddcc1158e744411acde590f902f0987cfb750bb5bfeed53bff076868986b566d7701f48ddfcacbd325c8d930bcef26713bf60585d5c991e2a6cc33ccbc27f7ddfba18f998497c2eb378cc8f2cc07a1b4f141c5e0fb6f52e18242e505bcf6dd20e33a469d056a0b4fd5e72d0da9d0bcce1e2f9e9dc7d1c7b6cb0f3604287eca", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x6, 0x2, 0xffffffffffffeffe, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x8, 0xb, 0xffff, 0x0, 0x1, 0x0, 0x0, 0x120, 0x2000, 0x0, r11, r12, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
setgroups(0x3, &(0x7f0000000680)=[0x0, r9, r12])
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r4, &(0x7f0000000500)={0x10, 0x30, 0xfa00, {&(0x7f0000000440), 0x3, {0xa, 0x4e23, 0x0, @private1, 0x1daf}, r8}}, 0x38)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})

2m49.902440481s ago: executing program 0 (id=479):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x23)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@newqdisc={0x70, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xc}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x40, 0x2, {{0x6, 0x2, 0x0, 0x2, 0x5}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0xfffffffd}}, @TCA_NETEM_LATENCY64={0xc, 0xa, 0x8000000000000008}, @TCA_NETEM_RATE64={0xc, 0x8, 0x26455f14adc0284b}]}}}]}, 0x70}, 0x1, 0x0, 0x0, 0x20000040}, 0x20000000)
sendmmsg$inet(r0, &(0x7f0000001340)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001380)="7bde898718a6c6c9237cb3183110240767593c40c38b46f5aaeb010661a7f3a802772dbeacbb719d97936097c7800c3d28a0234a87eba4fc532c7a3e1d96bc18a74bc61cf414ee3274f2ad278b47c77c0e45053d47029eb9ef0b3ac4a709f6dd73fdf65e6cc009bb98827b4d1716e42b0498dad14ebb339fe30c9128e7661135a70a36cc3a0198de1ee50ac13750797f4ea33fabeecb09d217918384bb28ef8d0367ab68e1ed5e3d832450b228c8c1feb0f8ec2d26694be70a3d212c9a304aa07e798a47ba95b016f13bfb0c94e2f325c1a8fc53ec4e06f0c27f07ed17b85387eb107c2ae94bc026472c78b61bc85fbb101d4c", 0xf3}, {&(0x7f00000000c0)="92309e6d23dd22b738dccfb217c3fe033ba644e321e9f54a1e7ec77550f2e0272b4806d914c9f23c3732ebae91b667771f0d5abb4436b0d81cb607cc7cfa30391ec6bbfdf6b477eeae64afd922c6b7aab5", 0x51}], 0x2}}], 0x1, 0x20048814)

2m49.634961041s ago: executing program 0 (id=481):
r0 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001a80)=@raw={'raw\x00', 0x8, 0x3, 0x12d8, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1208, 0xffffffff, 0xffffffff, 0x1208, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [0x0, 0x62], [], 'veth0_macvtap\x00', 'dvmrp1\x00', {}, {0xff}, 0x0, 0xfd}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x7fff, 0x30, 0x1}}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [0x0, 0x0, 0xff000000], [], 'wg1\x00', 'ip6gretap0\x00', {}, {}, 0x3b, 0x0, 0x0, 0x3}, 0x0, 0x1108, 0x1138, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x1, 0x0, 0x0, './cgroup.cpu/syz0\x00', 0x2, {0x8}}}, @common=@srh={{0x30}, {0x1, 0x4, 0x7, 0x3, 0x8001, 0x204, 0x3004}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x0, 0x0, 0x1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x1338)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r2=>0x0})
sendmsg$can_raw(r1, &(0x7f0000000280)={&(0x7f0000000040)={0x1d, r2}, 0x10, &(0x7f0000000080)={&(0x7f0000000200)=@canfd={{0x0, 0x0, 0x0, 0x1}, 0x26, 0x1, 0x0, 0x0, "ddb3a5c35b841c979ad2d0b97acc9f9f7d70750c199ec98091bdcf28a3830d495820fd39867468305e3c4f714994a8ab014d3088717cdd85b3c5599c96f3e985"}, 0x48}, 0x1, 0x0, 0x0, 0x15}, 0x20004080)
syz_io_uring_setup(0x8d2, &(0x7f00000000c0)={0x0, 0x0, 0x3010, 0x1, 0x39d}, 0x0, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000600)=ANY=[@ANYBLOB="380100001000010000000000fddbdf25ff020000000000000000000000000001fe8000000000000000000000000000aa02000000200000000000000000060000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ffffffff000000000000000000000000000004d232000000ac1e00010000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000800000000000000000ffffffffffffffff00000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000001350000020000fd0000000000000000480003006465666c61746500"/240], 0x138}}, 0x2004c8c8)
r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000340), 0x22000, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000380)={{{@in6=@ipv4={""/10, ""/2, @multicast1}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in=@local}, 0x0, @in6}}, &(0x7f0000000480)=0xe8)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r3, {0x0, <r7=>0xee01}}, './file0\x00'})
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x221000, &(0x7f0000000740)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {'user_id', 0x3d, r6}, 0x2c, {'group_id', 0x3d, r7}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x8}}, {@blksize={'blksize', 0x3d, 0x1000}}, {@blksize={'blksize', 0x3d, 0x400}}, {@blksize={'blksize', 0x3d, 0x1800}}, {@max_read={'max_read', 0x3d, 0x1}}, {@blksize={'blksize', 0x3d, 0x1a00}}, {@blksize}, {@default_permissions}, {@blksize={'blksize', 0x3d, 0x800}}, {@max_read={'max_read', 0x3d, 0xffff}}], [{@smackfshat={'smackfshat', 0x3d, ']\''}}, {@fsmagic={'fsmagic', 0x3d, 0x9}}]}})
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000000440)=@base={0x1d, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5}, 0x48)
ioctl$FS_IOC_GETFSLABEL(r3, 0x400452c8, &(0x7f0000000100))

2m49.577472794s ago: executing program 32 (id=481):
r0 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001a80)=@raw={'raw\x00', 0x8, 0x3, 0x12d8, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1208, 0xffffffff, 0xffffffff, 0x1208, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [0x0, 0x62], [], 'veth0_macvtap\x00', 'dvmrp1\x00', {}, {0xff}, 0x0, 0xfd}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x7fff, 0x30, 0x1}}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [0x0, 0x0, 0xff000000], [], 'wg1\x00', 'ip6gretap0\x00', {}, {}, 0x3b, 0x0, 0x0, 0x3}, 0x0, 0x1108, 0x1138, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x1, 0x0, 0x0, './cgroup.cpu/syz0\x00', 0x2, {0x8}}}, @common=@srh={{0x30}, {0x1, 0x4, 0x7, 0x3, 0x8001, 0x204, 0x3004}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x0, 0x0, 0x1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x1338)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r2=>0x0})
sendmsg$can_raw(r1, &(0x7f0000000280)={&(0x7f0000000040)={0x1d, r2}, 0x10, &(0x7f0000000080)={&(0x7f0000000200)=@canfd={{0x0, 0x0, 0x0, 0x1}, 0x26, 0x1, 0x0, 0x0, "ddb3a5c35b841c979ad2d0b97acc9f9f7d70750c199ec98091bdcf28a3830d495820fd39867468305e3c4f714994a8ab014d3088717cdd85b3c5599c96f3e985"}, 0x48}, 0x1, 0x0, 0x0, 0x15}, 0x20004080)
syz_io_uring_setup(0x8d2, &(0x7f00000000c0)={0x0, 0x0, 0x3010, 0x1, 0x39d}, 0x0, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000600)=ANY=[@ANYBLOB="380100001000010000000000fddbdf25ff020000000000000000000000000001fe8000000000000000000000000000aa02000000200000000000000000060000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ffffffff000000000000000000000000000004d232000000ac1e00010000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000800000000000000000ffffffffffffffff00000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000001350000020000fd0000000000000000480003006465666c61746500"/240], 0x138}}, 0x2004c8c8)
r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000340), 0x22000, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000380)={{{@in6=@ipv4={""/10, ""/2, @multicast1}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in=@local}, 0x0, @in6}}, &(0x7f0000000480)=0xe8)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r3, {0x0, <r7=>0xee01}}, './file0\x00'})
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x221000, &(0x7f0000000740)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {'user_id', 0x3d, r6}, 0x2c, {'group_id', 0x3d, r7}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x8}}, {@blksize={'blksize', 0x3d, 0x1000}}, {@blksize={'blksize', 0x3d, 0x400}}, {@blksize={'blksize', 0x3d, 0x1800}}, {@max_read={'max_read', 0x3d, 0x1}}, {@blksize={'blksize', 0x3d, 0x1a00}}, {@blksize}, {@default_permissions}, {@blksize={'blksize', 0x3d, 0x800}}, {@max_read={'max_read', 0x3d, 0xffff}}], [{@smackfshat={'smackfshat', 0x3d, ']\''}}, {@fsmagic={'fsmagic', 0x3d, 0x9}}]}})
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000000440)=@base={0x1d, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5}, 0x48)
ioctl$FS_IOC_GETFSLABEL(r3, 0x400452c8, &(0x7f0000000100))

1m58.894031219s ago: executing program 2 (id=1263):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe02001085000000070080ff95"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1m58.893804686s ago: executing program 2 (id=1264):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000001c0)={0x73622a85, 0x10b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x2000)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x2d, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000540)={@fd={0x66642a85, 0x0, r2}, @ptr={0x70742a85, 0x0, &(0x7f0000000240)=""/210, 0xd2, 0x1, 0x29}, @ptr={0x70742a85, 0x5, 0x0, 0x0, 0x1, 0xca}}, &(0x7f0000000600)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})

1m58.834783294s ago: executing program 2 (id=1266):
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x400, &(0x7f0000000a40)=ANY=[@ANYBLOB=',debug=0x0000007,version=9p20\\++},%{!(6,afid=0x000000003f5689cf,nodevmap,fscache,afid=0x0000000000000f9c,msize=0x0', @ANYRESDEC])
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000000)={0x0, 0x9}, &(0x7f00000000c0)=0x8)

1m58.783991222s ago: executing program 2 (id=1268):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000000)="f4ba4300b80f00efba200066b80000000066ef66dea400000f20c06635000001000f22c066b9b10a00000f32660f3814b285d80f300f4ecb67660f281e", 0x3d}], 0x1, 0x72, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m58.781022106s ago: executing program 2 (id=1269):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000740)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x4e24, @broadcast}, 0x2, 0x0, 0x4}}, 0x2e)
syz_open_dev$sg(&(0x7f0000000080), 0xf9ba, 0x14b082)
close(0x3)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd70000400000005000000080009000200000008000c000300000008000b00000000000600010007"], 0x40}}, 0x20)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r5 = userfaultfd(0x801)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
ioctl$UFFDIO_WRITEPROTECT(r5, 0xc018aa06, &(0x7f0000000140)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x67)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRES16=r7, @ANYBLOB="010829bd70000000000007000000050013000900000014000800"/42], 0x30}}, 0x0)
connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000180)="9f", 0x1}], 0x1)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r8, 0x401c5820, &(0x7f0000000080)={0x8})
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r9, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
setsockopt$packet_int(r9, 0x107, 0x16, &(0x7f0000000000)=0x4, 0x4)

1m58.543752136s ago: executing program 2 (id=1279):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = getpid()
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001ec0)={0x34, 0x3e, 0x107, 0x70bd2b, 0x0, {0x1, 0x7c}, [@nested={0x4, 0xfc}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x6, 0x0, 0x0, @pid}]}, @nested={0x8, 0x2, 0x0, 0x1, [@nested={0x4, 0x33}]}, @typed={0x8, 0x9, 0x0, 0x0, @fd=r3}]}, 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0x4040)
r4 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
ioctl$CEC_S_MODE(r4, 0x40046109, &(0x7f0000000040)=0xd0)
ioctl$CEC_S_MODE(r4, 0x40046109, &(0x7f0000000280)=0x1)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r5, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000340)='./file0\x00', &(0x7f0000000280)=[0x5], 0x0, 0x0, 0x1, 0x1, r1}}, 0x40)
close_range(r0, 0xffffffffffffffff, 0x0)
clock_gettime(0x0, &(0x7f00000001c0)={<r6=>0x0, <r7=>0x0})
utimensat(r2, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)={{0x77359400}, {r6, r7/1000+10000}}, 0x0)

1m43.510543163s ago: executing program 33 (id=1279):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = getpid()
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001ec0)={0x34, 0x3e, 0x107, 0x70bd2b, 0x0, {0x1, 0x7c}, [@nested={0x4, 0xfc}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x6, 0x0, 0x0, @pid}]}, @nested={0x8, 0x2, 0x0, 0x1, [@nested={0x4, 0x33}]}, @typed={0x8, 0x9, 0x0, 0x0, @fd=r3}]}, 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0x4040)
r4 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
ioctl$CEC_S_MODE(r4, 0x40046109, &(0x7f0000000040)=0xd0)
ioctl$CEC_S_MODE(r4, 0x40046109, &(0x7f0000000280)=0x1)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r5, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000340)='./file0\x00', &(0x7f0000000280)=[0x5], 0x0, 0x0, 0x1, 0x1, r1}}, 0x40)
close_range(r0, 0xffffffffffffffff, 0x0)
clock_gettime(0x0, &(0x7f00000001c0)={<r6=>0x0, <r7=>0x0})
utimensat(r2, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)={{0x77359400}, {r6, r7/1000+10000}}, 0x0)

46.6171145s ago: executing program 3 (id=2337):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0xf944, 0x40002)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000180)={0x23, 0x1, 0x1, 0x1, 0x0, 0x2, 0x0}) (async)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x4}) (async)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1}) (async)
ioctl$UFFDIO_CONTINUE(r1, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}}) (async)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f0000000040)={&(0x7f00000001c0)=""/4096, 0x1000})

46.567158233s ago: executing program 3 (id=2340):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x3, 0x4, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x7, 0x61, 0x11, 0x4c}, [@call={0x85, 0x0, 0x0, 0x15}]}, &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x41000}, 0x94)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), r0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000000)={0x3c, r1, 0x20, 0x0, 0x0, {0x22}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_LLSEC_ENABLED={0x5, 0x29, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x4}]}, 0x3c}}, 0x2000c094)

46.566577992s ago: executing program 3 (id=2342):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000c40)='./binderfs/binder0\x00', 0x400, 0x0)
ioctl$BINDER_ENABLE_ONEWAY_SPAM_DETECTION(r3, 0x40046210, &(0x7f0000000c80))
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYRESHEX=r3, @ANYRES32=r4, @ANYBLOB="08000100e00000017dfeba1c72140901011c30954bc2403c35715631486ac3cf4fe4bf21e76cf0c6fc1571c9d5c9de6d1358d6b7c4085c0d"], 0x2c}, 0x1, 0x0, 0x0, 0x40085}, 0xea5bc50b6199d77e)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000080), 0x12000, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
r7 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_TRY_FMT(r7, 0xc0d05640, &(0x7f0000000140)={0x1, @sdr={0x32314247, 0x5}})
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x11, &(0x7f00000002c0)=0x23, 0x4)
setsockopt$inet_buf(r6, 0x0, 0x20, &(0x7f0000000680)="17000000020001000003d68c", 0xc)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x1fd, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x22e02, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000040)={0x1, 0x1, 0x0, 0x2000, &(0x7f0000fe6000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r10, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000340)=[@text64={0x40, 0x0}], 0x1, 0x59, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_GET_DIRTY_LOG(r10, 0x4010ae42, &(0x7f0000000240)={0x1, 0x0, &(0x7f0000ff5000/0x2000)=nil})
r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r11, 0xffffffffffffffff, 0x0)

46.197021169s ago: executing program 3 (id=2348):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f91324fc60", 0x14}], 0x1}, 0x0)
sendmsg$NFT_MSG_GETCHAIN(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x38, 0x4, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x9}, [@NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffd}, @NFTA_CHAIN_USERDATA={0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffb}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x20000800)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0xfffffffffffffff5, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x1c, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x18, 0x10, 0x3}, @TCA_FQ_FLOW_DEFAULT_RATE={0x0, 0x6, 0x4}, @TCA_FQ_TIMER_SLACK={0x0, 0xd, 0x2b3}]}}]}, 0x48}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f00000001c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x4000, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x6, 0x80, 0x0, 0x0, 0x0, {[@window={0x3, 0x3, 0x3}]}}}}}}}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
sendmmsg(r2, &(0x7f0000000ec0)=[{{&(0x7f00000002c0)=@l2tp={0x2, 0x0, @private=0xa010100, 0x4}, 0x80, &(0x7f0000000340)=[{&(0x7f00000006c0)="cc5c84001214dbd9e5943aa8a315357330c56529d6b619a78687eea13ea02981afbb0fab70e8c3ab037cd82bd48f4947702a177974e7eff5f2ccdec909645f69e3dea5153157374459f6a21ba8609552d9ada54e81b0f19b55b77cf382ad229baa9decce1ea639a300f1fa65b945a0e29d36cb8ed369e91698c0e9", 0x7b}, {&(0x7f00000007c0)="a960e57530b65741465209e7c6235055450b1ed3da8592b928d8e20971659d8e3ca392643af5fa7ae0e3455099a5f7b857afa34cbf9962bdc9db46a15e7dcf9412a2b98b6ae75ca1bd7eae82d94855e9ced28430f77527b7c0b999eab05883ce32fa9b99187b196d53939db62b2b37c0cd0dea2a1be6f97dbcd0937bb416c3fb74a9d08d9afa4c86a507485b0e6821ba9d82e6b8522a6eba1734eccbc5659567aa08b5b93be09bc2a6d6319acbd1aeb751f8e9b7ce9e2f", 0xb7}, {&(0x7f0000001400)="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", 0xfb6}], 0x3}}, {{0x0, 0x0, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000880)="90b9f79fecb3ad0dc00ca95fb148a3ba4355cee5ce27d2c10d8474464a37dea0c1ab2a961404f5aa5493cdadb4b6bf4131e96c0aef0f89065db2aa551c68ce3fa911638fd608ff9e30cce409b6e516e59c272cdbbb88c83dc61199d70f8f7e05d9639d278d53151a6720a51979ffd78dcc1a000929160435bd61e3f3", 0x7c}, {&(0x7f0000000a40)}], 0x3}}], 0x2, 0x11)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443", 0x67}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000540)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

46.196541586s ago: executing program 3 (id=2350):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
setgroups(0x0, 0x0)
getgroups(0x1, &(0x7f0000000080)=[<r2=>0xee00])
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r3)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000ac0)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[@ANYBLOB="3400000070b49c20f735ed0be391671d2786a45501085453f0ec2cfd4ac1ae7042c8e164da", @ANYRES16=r4, @ANYBLOB="01002cbd700000dcdf251800000008000300", @ANYRES32=r5, @ANYBLOB="180030801400018005000200010000000800010001000000"], 0x34}}, 0x24004084)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000180)={'wpan3\x00', <r6=>0x0})
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0), 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c001b7b", @ANYRES16=r4, @ANYBLOB="040025bd7000090000000f00000008000300", @ANYRES32=r6, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
setregid(0x0, r2)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r7 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0\x00', 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, 0x0, 0x0, 0x84000, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r7, 0x40049366, 0x0)
r8 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(r8, 0x0, 0x82)
fchdir(r9)
fchmodat(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0xffffffd3)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r10=>0xffffffffffffffff})
setsockopt$MRT6_DONE(r7, 0x29, 0xc9, 0x0, 0x0)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000a80)=ANY=[@ANYBLOB="3c00c51a", @ANYRES16=r1, @ANYBLOB="0100feffffff0000000001000000100007800c00018008000100", @ANYRES32=r10, @ANYBLOB="0c0005001f193c99a8772efb0c000200ffff000000000000"], 0x3c}}, 0x20000000)

46.046753158s ago: executing program 3 (id=2354):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = getpid()
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r1, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @rand_addr=0x64010101}, 0x10)
listen(r1, 0xda90)
accept4(r1, 0x0, 0x0, 0x0)
r2 = syz_pidfd_open(r0, 0x0)
r3 = dup(r2)
setns(r3, 0x10000000)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000080)='rdma.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x38)
r6 = creat(&(0x7f0000000ac0)='./file0\x00', 0x0)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0xf, &(0x7f0000000900)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000a40)='GPL\x00', 0xd, 0x0, 0x0, 0x40f00, 0x66, '\x00', 0x0, 0x25, r7, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000ac0)={0x3, 0x1, 0x1ff, 0xb}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100}, 0x94)
mkdirat(r6, &(0x7f00000001c0)='./file0\x00', 0x94)
chown(&(0x7f00000003c0)='./file0\x00', 0x0, 0xee01)
ioctl$USBDEVFS_REAPURBNDELAY(r6, 0x4008550d, &(0x7f0000000240))
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
lsetxattr$system_posix_acl(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)
r8 = socket$inet6_sctp(0xa, 0x801, 0x84)
r9 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r9, &(0x7f0000000880)=[{&(0x7f0000000440)=@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0)
r10 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r10, 0x84, 0xc, &(0x7f0000000000)=@assoc_value={<r11=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={r11, 0x3}, 0x8)
r12 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg/2:0:0:0\x00', 0x40, 0x0)
ioctl$SG_GET_TIMEOUT(r12, 0x2202, 0x0)

38.235178909s ago: executing program 4 (id=2468):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0xa0201, 0x0)
write$dsp(r0, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000080)=0x1)
mmap$dsp(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2, 0x4000010, r0, 0x0)

38.156528658s ago: executing program 4 (id=2470):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000c40)='./binderfs/binder0\x00', 0x400, 0x0)
ioctl$BINDER_ENABLE_ONEWAY_SPAM_DETECTION(r3, 0x40046210, &(0x7f0000000c80))
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYRESHEX=r3, @ANYRES32=r4, @ANYBLOB="08000100e00000017dfeba1c72140901011c30954bc2403c35715631486ac3cf4fe4bf21e76cf0c6fc1571c9d5c9de6d1358d6b7c4085c0d"], 0x2c}, 0x1, 0x0, 0x0, 0x40085}, 0xea5bc50b6199d77e)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000080), 0x12000, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
socket$inet_udp(0x2, 0x2, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x22e02, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000040)={0x1, 0x1, 0x0, 0x2000, &(0x7f0000fe6000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000340)=[@text64={0x40, 0x0}], 0x1, 0x59, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$KVM_GET_DIRTY_LOG(r7, 0x4010ae42, &(0x7f0000000240)={0x1, 0x0, &(0x7f0000ff5000/0x2000)=nil})
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r9, 0xffffffffffffffff, 0x0)

37.868774829s ago: executing program 4 (id=2479):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_setup(0x1e1e, &(0x7f0000000580)={0x0, 0x86f7, 0x10100, 0x3, 0x38a}, &(0x7f0000002000)=<r1=>0x0, &(0x7f0000000440)=<r2=>0x0)
r3 = syz_open_dev$sndpcmp(&(0x7f0000002000), 0x5d5d, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r3, 0xc2604111, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SYMLINKAT={0x26, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1})
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000200)={[{@mpol={'mpol', 0x3d, {'bind', '=static', @val={0x3a, [0x30]}}}}]})
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000280)=ANY=[@ANYRESOCT=r1], 0x60}, 0x1, 0x0, 0x0, 0x20048881}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
syz_io_uring_setup(0x1e1e, &(0x7f0000000580)={0x0, 0x86f7, 0x10100, 0x3, 0x38a}, &(0x7f0000002000), &(0x7f0000000440)) (async)
syz_open_dev$sndpcmp(&(0x7f0000002000), 0x5d5d, 0x0) (async)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r3, 0xc2604111, 0x0) (async)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SYMLINKAT={0x26, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) (async)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000200)={[{@mpol={'mpol', 0x3d, {'bind', '=static', @val={0x3a, [0x30]}}}}]}) (async)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000280)=ANY=[@ANYRESOCT=r1], 0x60}, 0x1, 0x0, 0x0, 0x20048881}, 0x0) (async)

37.794656385s ago: executing program 4 (id=2481):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@volatile, @union={0x0, 0x1, 0x0, 0x5, 0x1, 0x0, [{0x0, 0x1}]}]}}, 0x0, 0x3e}, 0x20)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000009c0), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000002c0)={0x18, 0x2e, 0x1, 0x0, 0x0, "", [@nested={0x6, 0x11, 0x0, 0x1, [@generic="9e15"]}]}, 0x18}], 0x1, 0x0, 0x0, 0x84}, 0x300)
sendmsg$TIPC_CMD_GET_LINKS(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {{}, {}, {0x8, 0x11, 0x1}}}, 0x24}}, 0x8000)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$lock(r4, 0x25, &(0x7f0000000380)={0x1, 0x1, 0x3, 0x80000000000})
futex(&(0x7f0000000500), 0xb, 0x0, &(0x7f0000000540), &(0x7f0000000580), 0x1)
r5 = creat(&(0x7f00000002c0)='./file0\x00', 0xab)
r6 = open$dir(&(0x7f0000000080)='./file0\x00', 0xc402, 0x73)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r6, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000003bc0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
ioctl$CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, &(0x7f0000000040)={'\x00\f\x00', 0x0, 0x5, 0x2, 0x0, 0x9, "00000000020000000000002100", "00004702", "0300", "97ad3700", ["fdffffff84a438dfc5d5c010", "d78cb0af22b85f6c12ff0bff", "0000efffffffffffbfff00"]})
write$P9_RVERSION(r5, &(0x7f0000000040)=ANY=[], 0x13)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r7, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)=[0x5], 0x0, 0x0, 0x1, 0x1}}, 0x40)
fcntl$lock(r4, 0x26, &(0x7f00000031c0)={0x1, 0x0, 0x0, 0x5})
ioctl$EXT4_IOC_GET_ES_CACHE(r4, 0xc020662a, &(0x7f0000000180)={0x6, 0x401, 0x1, 0xffff, 0x4, 0x0, [{0xffffffff, 0x4, 0x5, '\x00', 0x1109}, {0x6, 0x1, 0x2, '\x00', 0x400}, {0x9, 0xcaa}, {0xaa69, 0x8, 0x0, '\x00', 0x348a}]})
mount$fuse(0x0, &(0x7f0000002880)='.\x00', &(0x7f00000028c0), 0x1810048, &(0x7f0000000000)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})

37.729914067s ago: executing program 4 (id=2482):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r0, 0x5000940a, &(0x7f00000000c0)={{r0}, "910c6e8ebb4977fe183128958ed1ec26fd7f5b96b79a4c3c5ec4adb209e792e08bfa13e85298e478a8523f9382787bdb852d76639a20d7ff78dfb68b2e6488e25424d516e8d6ecf0b7ec55b49bd2ab92dbd54d0ba602a24cb36fa86884c287e2b4b3e6c265a9b87a7164fd49e4255331277bcd97b37c4876c406bee5e9371f83ed364a2d5b6b0bd20d23d700b50e993a8aab4d8c7aa4baed49e25e48893b6d41a4ead08245d7cb0825e9ae776c9548b9897c29285e801cbf0ea1b0c2c2b305b3778c89df9b4af882e51c6d0e739004f10936048ab72a35edc2dc66af908d4c8a547935a8d2cce3eda4f14bca8075c3e89fb8df4deb12a4958a0369fdc1c04ac68b7492a7df34cb3b4aecc65894499b8cfb6938be7a9a36f732f4fb131fbca196b01e3929c9263b13488899e33940f5d3e583311ce2aecd3a58a12c0d6a494b0d0fae3311baa4635f18b59b64a2e1237cd909e830ed9aa0ddc2e1706acbc93e42807ace908bde78ee0ce07156227af9df0c1d2e344590c62ba22e3bfa73a0146d2b39d6b5376ab6704aa9c148aca1387a85f06c334419971c32a71c5a84b5e1f8ed20e4e6748e8bff843efbf8dcc15a416fbf18a0fc0743d173505f156c2b06dc69496479fa03c2b994b7948c09f91e7e62daeb4bc7d527a67b7f7687f14e11fea6adc65a372bb4e70aa68a4c325f4bf542e268d3a3faa03d051640c644634371798c49799d8934b0e298fc6406fa63d676ad063b87d2cd51ebd6157aa5378bc1de38c807c5ad0b7bfadf99d3d5483d89611bb97cffa2b099ca44a8a5b2dc572884386cca6f57af68f71f6c5b01ff914a1672c7ef5b81732f5f5bf593ddac0bb4894797a37a6499b80fea77fe3bb7f03cc2dc10852bd71ad6b3ba927b3eb45b84d91f0581cc2a086e7de1c1bd73ef7c9a9aa29c70d50f692f500035f0ad35838d9e5a07550a300a4f09875bb82d2f48bdce3a2c8be916da3f6f2ca680bb63a30ff456817e4ab482b535709a433bc05c2d5737e118f5427a87c0529c7dc4297d0bb5ac0746b6d2a835c9537f2b958a899ba9f43940fef119feca68ee1487a0a1efe01364adaa6f03c527b38eac5c8d1ccdeea3b5a8faba484251925bbf170caedb62008da1868054b26e59e5890aaa2895f7e2c28031fa9bcd57608f296121d3920396c38c48e390558a160e281a75c4f6e0648658dc13ed396c611d2e1b4cc51dbfa81aa62426bdbe1b25b38adc7939071ec206113db05ccbac0bfd97bbdd4da05afb05daac66eb635f4c9dccbb338841080b3ce82f9a656010aaee2c06befd8b48ceb35615396f82e4eb65d7d1d1b25d97868af4f0ab0ecc3079f226826c72c9379ccab7696105e71fe083c8fab443b02d238ac60e10e024e3706b0ee44f2d88672dec1982acb3c430829b491efda302fb22e04b604eefdadce6ae03e1768276bc8edaaece8af09d3dc661cbd6e2e110aef9b361b5ee40761586c9fbd862698616521cafabbc74dcfae51f65b8358b10b54e4b5477ad27d032e4e0d6d71ca8ce42bd3cf9abe6e2a573e2acc289ac1716746b6a6786e820956bcadc538c5ee63e8329dd24e111c3cfd269c523297f223ccac5e4a278f178a89430a059c2683a173fe7c9ccbf482b56ab46ded3e0f966afbb1477057d5cffb5a707f14fa8125c0c7974d6ab3fdf035c807d06f02b980913fe0fbe0fd88969ceddda7e4283dd863ba52e29055889631db7a8782ede72a834a54822f68f8438b8a1b25cc17d55391dd032a457f0167f5e05a52ddefd60e9c82a039ec228ebdc04c46572487ea28a425c0278eb7c6b9df862379edb33293350b0e819c4c5a9c95fcae3461d2e7af2d6672f77fe1637a375e6afc904bb3490c1bdf76b12f22643342e9663e38e364040bdbc9501271fe3f023b110756060b752c27bfe3bebc5e5ac0e62f734622a9cf729d91914d689ae4849f97638e0a82bd4e138d1d7de295414622d28dc30d75a853c57666a23cca3e60179baab03eafd31fa0267fbc75a1683b63a6f40f5b48b69467fa0c0e80db28accb62f0cc46d093c71ffccb3be2d186fbe9dab213cf1b5c8bc18b5e236954884f391655bbbbde4a5fdab4067b5b4551028b540340b2b120330aa22ce5c7ae797043f7e17f5059641280c1bd4f255778f08f4d1339dfbec3297dd5ab4fc976ec1f0293d441a30ff21c9e7f768968a37ce72545e2047a5f26aed7ba08226ca90e8404dac41d2722a1ff9f2f6850ef75c87e551bdad54e9bdf7efaa10edbfa6ea74b7cadf82e032383c629e08f64f16f9bfd6d1b5f1ece3d673e09d2acdc5dc622273702ecd17433b4af1dd3bce0316ffc3ce13f44e9b4a2f4227fee87d9452064efa8293e111bbe810d487abdd174a9cd6cbe24f91c7acb93fef36fc13e1a9ff8a6663fcf9ec0dca00d5b0e727a909a31d54a909bb6babab8c664e24aec482fdebd883c1d5a15f2e7f8da0bb2ed3ae3edcb593ea27c4f5d4248cc678ffb0e10b01560788202d71dace17a8b09f2b5c308f9ff68f272a511210b6ffb85bb3f5b2f70d0fe4fdcca60eeb4155ed333d65654b9b6f6cc122a06ba450f3ed50f2faa8ef76eb833c92f0da97b20f7130065f82329a9d0f29960b8ffa529d4ae79c8d55622c1330bb0e3eb2e7fb8d6c39d89baaaeda29135e246b74953fda8a8461ed0f5cf775ade81b1f33875cf962ef768e3c2c06b98d5c47091aa27a68db5206a78ce6739818b0832b0bec3a9210daa3d78734e55d65211752fba6cd6a89d2fcfb3ac088dc57b0f17efe7cbbed72e7d8c7560eed5d975e238805f4daeec5beb05751ed17cbe2e964967f8dc5372603d718976019015ff1acfce46ad7f40adefa779540566f3eee12c127ce26f3c13f59c665c13bc6477ed4b8db204eb86898addde6fd45ce035494338e831082b27788cc657095b83120ef816fca04f73723c885ea58dd01ca277e06456950905aa204480ad0a4b61f8e68a5f30a42d5deceaaeef7877119b5052f2d4db7076d713c3d131d5e56fd47cdb6fb7049c5554269d0475c9ad8176d2d8e238d3e7d3643210e99bb81b15696f58e0d8a2102fc7c88b906767c7ab2fa5fcf7128139571eeea49622e723731456c9a4123fa964b7fcf808e4c3effc5df4653508f5e45d660d9e9f6ba11923dce4393c8f2de1ae5ba37c33be9c97e1b2aaea25ed3f6d215bcc8d4b01b20000b1a7d3493d8a78badb5ba56dd6791e2ace271ad940db9f283d12228974d6122a601069bcc0116052206a3e85951cb2438bf348b9fb8b0d135df11a250fb3ba64e8a6fff40c0f4d2343076f986b73ef4568dd27f1d01fc6bbf250bd20762a0ecc7288e1d522bd230c88f0a84104961d82dd74c0043740bb2f2750a2adb7d967e0040df57413d03b7bfc82432ef0b2a6d3afb1374c5e6b29fb38880ce3592f80944d88fcdf9c7dd316a86351cb688326c349328e568a53d30742c83e73b38111a89dc916b5e6c7bb1df588b789ec45a8568ed54aa4c281e880384586a2b3d2668122304b1c8e5ce39cf5ac2c6f852b2863f26e963c74f4ed87cd431c50067ef830b7872b8bc014e5fae67c27061978fb818bc9ea93f8012399b885992dd124cef48cef9c4a83bda237c55ce1d6358d53e7a56f3849949bd04770adf6a3f673e29bc96e2bd9093929e96f39069f33e12078838ee057fcd852cf837088f90e6d13f54483ace6487d8f1759e20826847b80f2bb63b50442151c5f107e9d1e9d1852720abab05db64c2c31b8b22e711d8c3658254d513e5c44e86693651f19760a0e39e5bea95e390eaa9d7d65105b88e6ff9d46c56961363186d8c0d8b7d26872ce98bc2fbced973e7120f42d771dec3aa2bcf8e0bbeb91573e8231c959e95fc1b58cd35a34f1b96ee74ca6c549fc7c6153ed63fb1273e0663057df1685b817904091c34b4f6eee8524b54048e383c7de2a27d6b47e3e0d097bf4d98b1259fd3cfc0fd8556dfcd39165db96b09e7df1c1111cf8e214a530780b083553fc5d874ea130cbeeabb777863a2bfaece1a5408e55a536b3941918666a85b5fc84084133e1d22066c82de265833e1b38de6f621c97d21c6f5cfdb1d7a5bc297c7b8d0ca6a5f11315107515b2774cc95f04322b5f6bde654364bbe8c35f8a32d2d73e24d7e11eff15315d4d99682b7e02fd7a8d554f77171db0796e0fbaacee2a95968587a37226389a9c1e593e0fd97919bc7885f59c0d8c23f42e425da88196db2ef7441aa6caee54cfcbccd32b1484e85aac06a5653e0a96935cd35a1fd4a3b8932bfcf5a16660dabef1b38ce8cb20d1fe4b4e5389c45191d9c2b19c677d8ecca714e976b7e0fd7a5505b817618d8104feafa5937ae5130a208ebc21ae212d5342405852434d33fea302241500b451c37178afb2939f621b10bc551e077f074ce82448bf1d2c523f542dfe614101ecf29d714cb57d9c1b0ab02f160f4bb3a456bf94311114b1b8a9e0ab641f6b191b42a10a608e4b604b6eb500f5f9e7fac002faa61deb354c912c7df512bcbec339621b2f555074adef6d3e259058fbabf6fc0be7914a93fab3f408f6fd17148ef6512a02168a6ee5db3cecb13ab85e8e7687b6d4caf80056cdd9ea305a84166ab017f8bb2d9c3fe41c2cb114a4336690239e5e54aa308b23d758dfa1f770c784f50f418a2b8a4c76dfc200e0789c4db173034a7109d71fb9714f390833e28094f4acb8d1b7966fa8ace90bbc344a593ad77a64c0552266c52a14b39f7608c8636b19dfa3a435b63e5fb7ef09327be4174a19eb11c93185deeed10995d10a6e50628b14c64e6095c1aa904c6da9f34acc1436efda7d4c9dc30a17de5194f1a5fc42124880b54e09f6d65dea68a67c44bf1568c9ffab915a3a0c02d63b4b21e4d4ec6543890bb321f8d0aa34e45f9862ab4741b34f012770eb660d5fa3b8de74248a666e287f7366f357b1b5e09cb94080fa735dc0b807ad83f64052af288781ad92a8b31640995d43cb79c2bd9fd4b6e931fe4cd09c4c9b5525696a5a8cdfa1699dae2bb3a4115798d450c6ef5c945ef22a8b94d93dada075117be06a1e8875b6db3f7bc076a5d49bdd756d7b65ec6417701393fcfc5e515e0d6cb4d88f6f5ede1332166b65ba60616bbd6196e995ed7c2c0e45cca945ac17091eb9a2861b3714e9385529754305d770c893bb223887ed1d099ffe3d0651934bff9604851b80cbd112d6856de831b0cd3a969a733312c35f9462a0d2f89b3df579600e7da720a68286e179b24f30bc551cbf3b494290fc21c4898c3818ef842834d8334590aa5fade4c2f0048ec39be6263c75a2f492188b39faaf3984351f9d385d29f007d25bd39b7dbe4ef367e8f2ab514899108241a08d5ed10175d5fe70396ed57a4e97f05b4d1d922110ea7ab2639f0ab3888ba8659985ccfe381c1b9ced47b3f661234543449dab639c838bb1fe2d2b226d16fc3e920436b8770ca275c7a5c80f8c47242f68cec1993c427d7abe81690be5ff827c6196c0abf0de37ca4b5f6907b12ad28b6d887156f5cc8be919ff324ed3dcba1833b96ef084fc8716a9d0d7adb2dd8c89c5db47949caefe7c47bbda4ede46584635e32bb7d4bd5bc580ca1c934ba67ded2f4806e68936faf5d482928a61ce7ab06da8aabb382e2f8d5eb28045a792f377369ad7fcddea8a2474927236805cce869dcf304ca251dda3c487c16748e0d43ad3baaffd338b0b7d779103a644c6e7b4ad9b294f992d73ebd8e69c6a8df56eb6f4066a94336eb698a51dce7decf9ef321e9c2ec9a"}) (async)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})
mkdir(&(0x7f0000000000)='./file0\x00', 0x82)

37.729574187s ago: executing program 4 (id=2483):
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_ENC_INDEX(r0, 0x8818564c, &(0x7f0000000040))
ioctl$VIDIOC_TRY_ENCODER_CMD(r0, 0xc028564e, &(0x7f0000000880)={0x2, 0x0, [0x2, 0x800, 0x5, 0x2, 0xd43cede1, 0x2, 0x80000000, 0xd]})
ioctl$VIDIOC_G_SELECTION(r0, 0xc040565e, &(0x7f00000008c0)={0x2, 0x100, 0x8, {0x7, 0xffffffff, 0x8, 0x2}})
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f0000000900)={0x1, 0x0, {0x5, 0x0, 0x201c, 0x1, 0xa, 0x0, 0x3, 0x1}})
ioctl$VIDIOC_G_AUDOUT(r0, 0x80345631, &(0x7f0000000980))
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f00000009c0), 0x2000, 0x0)
ioctl$IOC_PR_PREEMPT(r1, 0x401870cb, &(0x7f0000000a00)={0xffffffffffff3aa8, 0x2, 0x5, 0x2})
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000a40)={"809e20b33bff8ba39c540642769eaed7cf57fc2981ec0605c844621c455d349cc8369477bcaa944e97de0d39b9f2b7d475001c18ae740379d6bdad8a51adf2ce6993bc4c03314ba1fce99fe3f0d4466a07d6c71acd71b030c9d29887178938acb16347bfe7d791800d8d4b3f035a0f4cd7cfe028d6240ef24442646ece9fc5c35fccb63d91aedecae7df464bed7ef00a02f9b2dbeaf0acbd22be35a4b5567d5544bb5c5764a191c1233ee0d0d7a93070bdedc47bdfb95e6db55ff6b22a16beade6789bdebadcfbdc37ed40bfe706113a0287ef8ee50861d5ed18ae26812dacd9d5cbdc9b38fda1b585f2075b3aa308554487f44f69f8ac02a571af1f7d8fdfd7e201fed0a192c324f154266de316fb5f39a9489bb0817a2ebd01885706e72cd94859db922590fc77b3b1fa3dbb3c2c013b15961a8c4f22b166e7a44b7b41cfa1c840a7f428d01340a147a42c99a01300a314bf5a7477a36f9c896c7b4a31b82e0dffe87392450525f07fe68a955ac3b989ec92073f19cb57da8aa3236b3aad612ce40bebd2fd634f0c00c1f26f4a6823828abc1097471667260805a7ad4b243159800aa6556b2a9636297f69aa94aa17ec5960a290615f322470e358c9df57058016e16bf0627940d2142de32fd8338f4929974d7508430940c5de1bc1f6e6c1c5bc785b9aced22a6861af528651d1ecf1003338a84034e1ce08971fed872bdae295c39c42492e56f82865ce197e8922c033456c639428b96b93071c075a34597077c558be3c7e7f75d76eaf99e1ada6ec7c5eada020928034cd195bdc34301b540384fdcc4a053e35c6cbdcc7622b85b232f6749b783d6ad0bafbfa8ae647939fc3c8fb59ff1a40c3a3cce319f908878509296a5f994bce6a529b2ce7c9f78bef1d634eb1d3686335e7c45c16220f226248fcba60d576390cba8b13a06218d2b73fd7c041e3e81350c5ecf67cf4b52b08209bd718069bf468cfb196f2e2405c7a3318487921e26cbf70b0e7b3d82b2ed5613fb88fff54bd833783fc83f59c925cff6728fb54d22be98611cc99b201e9bb7798634b478bf5e99d0565a903a615a74e5797da39025820aed96fc81df8e9c8a710a355a0b6e3b6eeda90e5d82c709a5c11ff485f705fa7ab53ef22199537e06006aa611f116b9823feefdc45ba8371c81796aa41d617723b2953ffe48a74a34853edf5784cabafe4e6496ba63a0d87b00298065e9c2ebff627df108545803de75f787dd42ed7414cfbd2cb46d350e1609c4ffa5b10fe80648f576814ca32a18638f09ed485cf4ada323f9de6c4d8630a3c258a73151880b0e625b3b462bce677994b38e552859dbd4037273422c32bf0932d1d1e2c8c734f5946f1b59cc9480d3a58614579bcf762941b22603a5812e14d11b5f34e61be442af247eb181f1d190ffe7012bbf933ee2ebe17bde35b"})
r3 = openat$binfmt_format(0xffffffffffffff9c, &(0x7f0000000e40)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x2, 0x0)
write$binfmt_format(r3, &(0x7f0000000e80)='1\x00', 0x2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000f00), 0xffffffffffffffff)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000fc0)={'ip6_vti0\x00', &(0x7f0000000f40)={'syztnl0\x00', <r6=>0x0, 0x4, 0xfd, 0x5, 0x1ff, 0x38, @mcast1, @private2, 0x20, 0x8, 0x7a, 0x71}})
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r4, &(0x7f00000010c0)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001080)={&(0x7f0000001000)={0x68, r5, 0x300, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x6}, @ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x6a}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x6}, @ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0x7}, @ETHTOOL_A_LINKINFO_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x6}, @ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0xb}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000001100)={0x1, 0x0, [{0x40000000, 0x3, 0x1, 0xc9, 0x9476, 0x0, 0x11c2}]})
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r7, &(0x7f0000001140)={0x28, 0x0, 0x0, @local}, 0x10)
r8 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000001180), 0x2, 0x0)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r8, 0xc040563d, &(0x7f00000011c0)={0x1, 0x0, 0x3, 0x7, {0x0, 0x1, 0x6cd, 0xfffffffe}})
ioctl$BTRFS_IOC_FS_INFO(r3, 0x8400941f, &(0x7f0000001200))
r9 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001600), 0x2, 0x0)
write$FUSE_INTERRUPT(r9, &(0x7f0000001640)={0x10}, 0x10)
close_range(r7, r3, 0x0)
r10 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000001680)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
ioctl$VIDIOC_SUBDEV_G_FMT(r7, 0xc0585604, &(0x7f00000016c0)={0x0, 0x0, {0x800, 0x8, 0x300d, 0x8, 0xa, 0x8, 0x2, 0x1}})
ioctl$SYNC_IOC_FILE_INFO(r10, 0xc0383e04, &(0x7f0000001940)={""/32, 0x0, 0x0, 0x6, 0x0, &(0x7f0000001740)=[{}, {}, {}, {}, {}, {}]})
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r10, 0x84, 0x75, &(0x7f0000001980)={0x0, 0x385e5c02}, &(0x7f00000019c0)=0x8)

29.625144592s ago: executing program 34 (id=2354):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = getpid()
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r1, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @rand_addr=0x64010101}, 0x10)
listen(r1, 0xda90)
accept4(r1, 0x0, 0x0, 0x0)
r2 = syz_pidfd_open(r0, 0x0)
r3 = dup(r2)
setns(r3, 0x10000000)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000080)='rdma.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x38)
r6 = creat(&(0x7f0000000ac0)='./file0\x00', 0x0)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0xf, &(0x7f0000000900)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000a40)='GPL\x00', 0xd, 0x0, 0x0, 0x40f00, 0x66, '\x00', 0x0, 0x25, r7, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000ac0)={0x3, 0x1, 0x1ff, 0xb}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100}, 0x94)
mkdirat(r6, &(0x7f00000001c0)='./file0\x00', 0x94)
chown(&(0x7f00000003c0)='./file0\x00', 0x0, 0xee01)
ioctl$USBDEVFS_REAPURBNDELAY(r6, 0x4008550d, &(0x7f0000000240))
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
lsetxattr$system_posix_acl(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)
r8 = socket$inet6_sctp(0xa, 0x801, 0x84)
r9 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r9, &(0x7f0000000880)=[{&(0x7f0000000440)=@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0)
r10 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r10, 0x84, 0xc, &(0x7f0000000000)=@assoc_value={<r11=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={r11, 0x3}, 0x8)
r12 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg/2:0:0:0\x00', 0x40, 0x0)
ioctl$SG_GET_TIMEOUT(r12, 0x2202, 0x0)

25.58220531s ago: executing program 6 (id=2571):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, 0x0, 0x0)
mknod(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000)='jffs2\x00', 0x400080, 0x0)
connect$inet(r0, &(0x7f0000000440)={0x2, 0x4e20, @remote}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000004c0)='hybla', 0x5)
shutdown(r0, 0x1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = syz_open_dev$video(&(0x7f0000000000), 0x0, 0x0)
rmdir(&(0x7f0000000400)='./file0/file0\x00')
ioctl$VIDIOC_S_SELECTION(r3, 0xc040565f, &(0x7f0000000940)={0xa, 0x0, 0x2, {0x8000, 0x8, 0x8, 0x2}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000000)='inet_sock_set_state\x00', r2, 0x0, 0x3}, 0x18)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372000000001400010076657468315f766c616e"], 0xfc}}, 0x0)
sendmmsg(r4, &(0x7f00000007c0)=[{{&(0x7f0000000380)=@in={0x2, 0x4e24, @local}, 0x80, 0x0}}], 0x1, 0x2c000011)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff, {0xfffffff7}}, './file0\x00'})
openat$cgroup_ro(r6, &(0x7f0000000140)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
r7 = socket$inet(0x2, 0x4000000000000001, 0x0)
getsockopt$inet_int(r7, 0x0, 0x12, 0x0, &(0x7f0000000040))
mkdir(&(0x7f00000000c0)='.\x00', 0xa0)
pwritev2(r6, &(0x7f00000003c0)=[{&(0x7f0000000200)="2abb73da24770475599bbcd62766cbea1980682fa75f7d0fd34132c1ef", 0x1d}, {&(0x7f0000000240)="9c074f0d1e7c257d44cecd7f25047169c5104ef1c7f4f95678fd21bf92999922d854f7121eab8508ed3d54312ab01cab40193c4a", 0x34}, {&(0x7f0000000280)="e6c5e18e98e74ef8653fdc380da044bebd33382db92de3ba44219fd5ec0be3f8a9f80cc208503ae30a7042858289d1b631028dca054f194b8cec4aa0e9771949a4aab9c9ad93f8", 0x47}, {&(0x7f0000000300)="4867f3f6636aaa06a0f49656324e0779b878ab8f60dd2599c0b16fb92a2f870c80697671ddeed7cc10ae615abf996910b02de3c0f77a0f02e485f7e46e5cd96bc159a12fa64ddc1ad0059bee7c6d7eaab484b97eed3ffa93c21213e256d24a50e56d0c2e5abfee34b98fa308786bbed730cffb90d98e9b681ddafb31e1655191c2bc09a5768c210fe05a54ec03fa8201ed8372565bb7920a67c8021002683e5317b3399a30895b325dd5ffa772", 0xad}], 0x4, 0x9, 0x7, 0x11)

25.519760554s ago: executing program 6 (id=2572):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
timer_create(0x3, 0x0, &(0x7f0000000080)=<r1=>0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f00000000c0)=[{0x16}]})
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
timer_delete(r1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x5)

24.557339858s ago: executing program 6 (id=2581):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000001c0)={0x73622a85, 0x10b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x2d, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6800, 0x68, 0x18, &(0x7f0000000540)={@fd={0x66642a85, 0x0, r2}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x1, 0x29}, @ptr={0x70742a85, 0x5, 0x0, 0x0, 0x1, 0xca}}, &(0x7f0000000600)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})

24.557124814s ago: executing program 6 (id=2582):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r3, 0x10c000)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000140)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000240)={0xc, 0x0, <r7=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r4, 0x3ba0, &(0x7f0000000500)={0x48, 0x2, r7})
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r8 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r8, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x20000, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000040)={0x28, 0x2, r6, 0x0, &(0x7f0000392000/0x3000)=nil, 0x3000, 0xab1a})
r9 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_GET_XSAVE(r10, 0x9000aea4, 0x0)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000fc0)={'wlan1\x00', <r12=>0x0})
sendmsg$NL80211_CMD_DEL_KEY(r11, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000300)={0x5c, r1, 0x1, 0x70bd2e, 0x25dfdbff, {{}, {@val={0x8, 0x3, r12}, @val={0xc, 0x99, {0x2, 0x48}}}}, [@NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x2c, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40898}, 0x4000)

24.354551873s ago: executing program 6 (id=2583):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000001c0)={0x73622a85, 0x10b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x2000)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x2d, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd200, 0x68, 0x18, &(0x7f0000000540)={@fd={0x66642a85, 0x0, r2}, @ptr={0x70742a85, 0x0, &(0x7f0000000240)=""/210, 0xd2, 0x1, 0x29}, @ptr={0x70742a85, 0x5, 0x0, 0x0, 0x1, 0xca}}, &(0x7f0000000600)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})

23.60358156s ago: executing program 6 (id=2586):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f91324fc60", 0x14}], 0x1}, 0x0)
sendmsg$NFT_MSG_GETCHAIN(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x38, 0x4, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x9}, [@NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffd}, @NFTA_CHAIN_USERDATA={0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffb}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x20000800)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0xfffffffffffffff5, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x1c, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x18, 0x10, 0x3}, @TCA_FQ_FLOW_DEFAULT_RATE={0x0, 0x6, 0x4}, @TCA_FQ_TIMER_SLACK={0x0, 0xd, 0x2b3}]}}]}, 0x48}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f00000001c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x4000, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x6, 0x80, 0x0, 0x0, 0x0, {[@window={0x3, 0x3, 0x3}]}}}}}}}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
sendmmsg(r2, &(0x7f0000000ec0)=[{{&(0x7f00000002c0)=@l2tp={0x2, 0x0, @private=0xa010100, 0x4}, 0x80, &(0x7f0000000340)=[{&(0x7f00000006c0)="cc5c84001214dbd9e5943aa8a315357330c56529d6b619a78687eea13ea02981afbb0fab70e8c3ab037cd82bd48f4947702a177974e7eff5f2ccdec909645f69e3dea5153157374459f6a21ba8609552d9ada54e81b0f19b55b77cf382ad229baa9decce1ea639a300f1fa65b945a0e29d36cb8ed369e91698c0e9", 0x7b}, {&(0x7f00000007c0)="a960e57530b65741465209e7c6235055450b1ed3da8592b928d8e20971659d8e3ca392643af5fa7ae0e3455099a5f7b857afa34cbf9962bdc9db46a15e7dcf9412a2b98b6ae75ca1bd7eae82d94855e9ced28430f77527b7c0b999eab05883ce32fa9b99187b196d53939db62b2b37c0cd0dea2a1be6f97dbcd0937bb416c3fb74a9d08d9afa4c86a507485b0e6821ba9d82e6b8522a6eba1734eccbc5659567aa08b5b93be09bc2a6d6319acbd1aeb751f8e9b7ce9e2f", 0xb7}, {&(0x7f0000001400)="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", 0xfb6}], 0x3}}, {{0x0, 0x0, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000880)="90b9f79fecb3ad0dc00ca95fb148a3ba4355cee5ce27d2c10d8474464a37dea0c1ab2a961404f5aa5493cdadb4b6bf4131e96c0aef0f89065db2aa551c68ce3fa911638fd608ff9e30cce409b6e516e59c272cdbbb88c83dc61199d70f8f7e05d9639d278d53151a6720a51979ffd78dcc1a000929160435bd61e3f3", 0x7c}, {&(0x7f0000000a40)}], 0x3}}], 0x2, 0x11)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x2, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000540)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

23.537715592s ago: executing program 35 (id=2586):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f91324fc60", 0x14}], 0x1}, 0x0)
sendmsg$NFT_MSG_GETCHAIN(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x38, 0x4, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x9}, [@NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffd}, @NFTA_CHAIN_USERDATA={0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffb}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x20000800)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0xfffffffffffffff5, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x1c, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x18, 0x10, 0x3}, @TCA_FQ_FLOW_DEFAULT_RATE={0x0, 0x6, 0x4}, @TCA_FQ_TIMER_SLACK={0x0, 0xd, 0x2b3}]}}]}, 0x48}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f00000001c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x4000, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x6, 0x80, 0x0, 0x0, 0x0, {[@window={0x3, 0x3, 0x3}]}}}}}}}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
sendmmsg(r2, &(0x7f0000000ec0)=[{{&(0x7f00000002c0)=@l2tp={0x2, 0x0, @private=0xa010100, 0x4}, 0x80, &(0x7f0000000340)=[{&(0x7f00000006c0)="cc5c84001214dbd9e5943aa8a315357330c56529d6b619a78687eea13ea02981afbb0fab70e8c3ab037cd82bd48f4947702a177974e7eff5f2ccdec909645f69e3dea5153157374459f6a21ba8609552d9ada54e81b0f19b55b77cf382ad229baa9decce1ea639a300f1fa65b945a0e29d36cb8ed369e91698c0e9", 0x7b}, {&(0x7f00000007c0)="a960e57530b65741465209e7c6235055450b1ed3da8592b928d8e20971659d8e3ca392643af5fa7ae0e3455099a5f7b857afa34cbf9962bdc9db46a15e7dcf9412a2b98b6ae75ca1bd7eae82d94855e9ced28430f77527b7c0b999eab05883ce32fa9b99187b196d53939db62b2b37c0cd0dea2a1be6f97dbcd0937bb416c3fb74a9d08d9afa4c86a507485b0e6821ba9d82e6b8522a6eba1734eccbc5659567aa08b5b93be09bc2a6d6319acbd1aeb751f8e9b7ce9e2f", 0xb7}, {&(0x7f0000001400)="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", 0xfb6}], 0x3}}, {{0x0, 0x0, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000880)="90b9f79fecb3ad0dc00ca95fb148a3ba4355cee5ce27d2c10d8474464a37dea0c1ab2a961404f5aa5493cdadb4b6bf4131e96c0aef0f89065db2aa551c68ce3fa911638fd608ff9e30cce409b6e516e59c272cdbbb88c83dc61199d70f8f7e05d9639d278d53151a6720a51979ffd78dcc1a000929160435bd61e3f3", 0x7c}, {&(0x7f0000000a40)}], 0x3}}], 0x2, 0x11)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x2, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000540)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

21.652301271s ago: executing program 36 (id=2483):
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_ENC_INDEX(r0, 0x8818564c, &(0x7f0000000040))
ioctl$VIDIOC_TRY_ENCODER_CMD(r0, 0xc028564e, &(0x7f0000000880)={0x2, 0x0, [0x2, 0x800, 0x5, 0x2, 0xd43cede1, 0x2, 0x80000000, 0xd]})
ioctl$VIDIOC_G_SELECTION(r0, 0xc040565e, &(0x7f00000008c0)={0x2, 0x100, 0x8, {0x7, 0xffffffff, 0x8, 0x2}})
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f0000000900)={0x1, 0x0, {0x5, 0x0, 0x201c, 0x1, 0xa, 0x0, 0x3, 0x1}})
ioctl$VIDIOC_G_AUDOUT(r0, 0x80345631, &(0x7f0000000980))
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f00000009c0), 0x2000, 0x0)
ioctl$IOC_PR_PREEMPT(r1, 0x401870cb, &(0x7f0000000a00)={0xffffffffffff3aa8, 0x2, 0x5, 0x2})
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000a40)={"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"})
r3 = openat$binfmt_format(0xffffffffffffff9c, &(0x7f0000000e40)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x2, 0x0)
write$binfmt_format(r3, &(0x7f0000000e80)='1\x00', 0x2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000f00), 0xffffffffffffffff)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000fc0)={'ip6_vti0\x00', &(0x7f0000000f40)={'syztnl0\x00', <r6=>0x0, 0x4, 0xfd, 0x5, 0x1ff, 0x38, @mcast1, @private2, 0x20, 0x8, 0x7a, 0x71}})
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r4, &(0x7f00000010c0)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001080)={&(0x7f0000001000)={0x68, r5, 0x300, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x6}, @ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x6a}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x6}, @ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0x7}, @ETHTOOL_A_LINKINFO_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x6}, @ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0xb}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000001100)={0x1, 0x0, [{0x40000000, 0x3, 0x1, 0xc9, 0x9476, 0x0, 0x11c2}]})
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r7, &(0x7f0000001140)={0x28, 0x0, 0x0, @local}, 0x10)
r8 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000001180), 0x2, 0x0)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r8, 0xc040563d, &(0x7f00000011c0)={0x1, 0x0, 0x3, 0x7, {0x0, 0x1, 0x6cd, 0xfffffffe}})
ioctl$BTRFS_IOC_FS_INFO(r3, 0x8400941f, &(0x7f0000001200))
r9 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001600), 0x2, 0x0)
write$FUSE_INTERRUPT(r9, &(0x7f0000001640)={0x10}, 0x10)
close_range(r7, r3, 0x0)
r10 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000001680)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
ioctl$VIDIOC_SUBDEV_G_FMT(r7, 0xc0585604, &(0x7f00000016c0)={0x0, 0x0, {0x800, 0x8, 0x300d, 0x8, 0xa, 0x8, 0x2, 0x1}})
ioctl$SYNC_IOC_FILE_INFO(r10, 0xc0383e04, &(0x7f0000001940)={""/32, 0x0, 0x0, 0x6, 0x0, &(0x7f0000001740)=[{}, {}, {}, {}, {}, {}]})
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r10, 0x84, 0x75, &(0x7f0000001980)={0x0, 0x385e5c02}, &(0x7f00000019c0)=0x8)

975.830779ms ago: executing program 1 (id=2884):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000004c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1, @ANYBLOB='\a\x00', @ANYRES32, @ANYBLOB="08000400000000000c0003000000000000000100080005000000000008000100", @ANYRES32=0x0, @ANYBLOB="0800020000000000060006"], 0x50}}, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r3=>r2, {0x9}}, './file0\x00'})
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0x7)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000200)=0xdc)
ioctl$TIOCSWINSZ(r2, 0x5414, &(0x7f0000000040)={0x8001, 0x6, 0x1, 0x7})

882.238791ms ago: executing program 1 (id=2885):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/crash_elfcorehdr_size', 0x0, 0x8)
read$char_usb(r0, &(0x7f0000000040)=""/169, 0xa9)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
mkdir(&(0x7f0000000000)='./file0\x00', 0x185)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r1 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x53)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r2, &(0x7f0000000180)={0x7, 0x8, 0xfa00, {r3, 0x9}}, 0x10)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000080)=0x1, r3, 0x0, 0x2, 0x4}}, 0x20)
chdir(&(0x7f0000000280)='./file0\x00')
chdir(&(0x7f00000003c0)='./bus\x00')
mkdir(&(0x7f0000000040)='./file0\x00', 0x80)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x80, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000440)='./bus\x00')
r4 = open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
r5 = socket$can_raw(0x1d, 0x3, 0x1)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000002d00)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r6, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000002d40)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010029bd7000fedbdf251900000008000300", @ANYRES32=r8, @ANYBLOB="05001c21020800000500a3000000000005001e00"], 0x34}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x5, 0x1, 0x8000000004007, 0xac, 0x3, 0x4, {0x0, 0x180, 0x20fe, 0x5, 0x87, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0xc000, 0x0, 0xee00, 0x0, 0x3ff, 0x401}}, {0x0, 0x11}}}, 0xa0)
mount_setattr(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x8800, &(0x7f0000000240)={0x8, 0x100009, 0xc0000, {r1}}, 0x20)
open(&(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, 0x1)
sendfile(r4, r4, &(0x7f0000000080), 0x7f03)

676.978497ms ago: executing program 5 (id=2886):
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$kcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="fc36f84cdf0afdc1426ce5574460528652d8b02cbab5149a5ac5177be5b2fb33640f8eb525384b84098fabcfe4b3642a0201df2db63290a2", 0x38}, {&(0x7f0000000400)="9ffe4d9504278a7b197afa03a53be12d2f0b3bd7dfb8eb9b6faae29eb3b7165a4c2458dd50bceaea55ee5ded5657eb63689c3045fa59dab9d64d667ff31ef09138c38ae95cb948c022faff49eac307d03ec2b513c4787d2cc8cd93a5126ce881db2c3109ea7ef4466a4fa5969dd2c09c5ba82bc6c36fdd471b46a4bf138200045b0f7a48fc763952fd553078d09877", 0x8f}, {&(0x7f0000000500)="63ce043af0092033e7f802f2ae14d3e84c9a1b92deb468e2f66da3ff881a001582a12c8b54a60e67cb52a7073b58f04111a9a5e5017c0d196fa0c836541516b14e223c75f931f649f0ae7f1f838645b5fd66471311b3af99fd009e18992badf9fd279806c9f1125619379cf1d6e1bb0e250506b6c02e166dea3751167f08975ceaee90949039c27f2d1fd6e5730a6592670d09ae862b2c74a6d035477e910fd39bb8895f23aaf7f07d3b7cb397cacff2cd562e62ff6fd9d446dbcb13ab6706ee79c35577f144fd2d9486341bbe11edd21d14d2a36358806259ab83015a33506c6ecf5ac46d89ff0235404404ae73b1fc8557fb", 0xf3}, {&(0x7f0000000600)="2cf55878faa256603e128060483607dd812ff8a7048adcffc46e3bc4ed751dd6d04b21121e1c768b182baa37d4ddf0131ad381da189bfda1877a5915f990e6c69e04668f94c407e416b3d565e21e8248c178213236206200e82d228ab5c49ea9fb15112adf4faa2185556692aec253bb77e7017b52c8a1ef9e54b09666d695de06954c0e7b629364e39ecbbd1563d5da8607730d6b8fa73cf93b9423eac78cdd18cd7cef6142cbca4ec5e5ed5fe25fb2e5e288412afa5ff977c1cfcf1d98edd9d02f3c01440b5e66ae8256f75930412d260b64e971f3a2", 0xd7}], 0x4, &(0x7f0000000740)=[{0x58, 0x104, 0xfffffff9, "ee1c29a9fdcdbe3fd30363000d62995ba758a849bf8b45afc2775cef8c982f67160fe24280b1d545082593744c96ea338e23c8fcdc1a90f729d88078e36a0b5a1bc27981ff3c6ba2"}, {0xc8, 0x10e, 0x0, "493595b5c8245a62bf6a1fadd938594ab3401d85d7d8020c43c47a1294c962f390fbd2db1b707f9ef2f1f1cbad1588f34cfb27c5a5cdbedce20d141d8e637e09d1f081258c77bc9d6d55a47bdbe3a10421f6dc22ba7da446d1e7f416b6ba84a5f44770a317e0e2f4f6a83c43bfa4beed485dd199e3f88326097bfc0ee4c9107f4c2c2d0171950e4ce3e2275ac4260cf374e968d5e6890030e967d8f31aed1a74d4875dad195f589a1143b6fff1fb3aa7514114137c19b5"}, {0x10, 0x0, 0x48}, {0xf8, 0x29, 0x5, "2b6b7bf360d21eaff0a7b3f5976c3f2ff93609dc3971e2b1451fdc6b6e3f5f4252397d9d8c51540bd5f4566c07acfe291d48ede08e54a2a0c42347fd0f7436d93bedbe2618905a2351235d9800ae235b4cea55d00b3ca9b6af05f765bbbe1c69f4077573f04308e3f9f2af9799f57ca7add9f72e10e99ce27c9e09fef52c30931a7baab408c45e15a0918f1f486e40787d6b1c5d37f06d09811ba8ac617cb91e9ad1377b592a8e2560a15b1628df5da6c08deb10d31395378cf49838335b4bb9064e66e6dfdbef542c0cf54d5f35f0fbb3c561a30b4f3f6bc490957df8e23b867f"}], 0x228}, 0x8080)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1, 0x41, &(0x7f0000000200)={0xa, 0x4e23, 0x10001, @loopback, 0xe}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000002600)=ANY=[], 0x10)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000200)={<r3=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0xe, @empty, 0x2}, {0xa, 0x4e23, 0x7, @remote, 0x3}, r3, 0x7}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000380)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x6, @loopback, 0x8}, {0xa, 0x4e24, 0x7, @private2, 0x200008}, r3, 0x1000b}}, 0x48)
socket$netlink(0x10, 0x3, 0x0)
writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fdd411efc40800040000000000000000", 0x39}], 0x1)
sendto$inet6(r0, &(0x7f0000000700)='\x00', 0x1, 0x4090, 0x0, 0x0)

676.814868ms ago: executing program 5 (id=2887):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000001c0)={0x73622a85, 0x10b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x2d, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000540)={@fd={0x66642a85, 0x0, r2}, @flat=@binder={0x73622a85, 0x1, 0x0, 0xfffffffffffffff0}, @fda={0x66646185, 0x4, 0x1, 0x1b}}, &(0x7f0000000600)={0x0, 0x18, 0x30}}, 0x40}], 0x0, 0x0, 0x0})

675.618136ms ago: executing program 5 (id=2888):
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f00000000c0)={0x3})
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe)
getsockopt$bt_l2cap_L2CAP_CONNINFO(r3, 0x6, 0x2, 0x0, &(0x7f0000000080))
write$UHID_CREATE2(r2, &(0x7f0000000040)=ANY=[], 0x118)
r4 = syz_open_dev$mouse(&(0x7f0000000100), 0xfffffffffffffff8, 0x200880)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x88fd537e5e114b6f, 0x40010, r4, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000002c0)={0x0, 0x0, @pic={0x2c, 0xc0, 0x7, 0x6, 0xfb, 0x2, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x9e, 0x6, 0x6, 0x7f}})
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x4000000000000, 0x40, &(0x7f0000000640)=@raw={'raw\x00', 0x4001, 0x3, 0x510, 0x0, 0x0, 0x148, 0x1d0, 0x148, 0x478, 0x240, 0x240, 0x478, 0x240, 0x7fffffe, 0x0, {[{{@ip={@private=0xa010102, @local, 0x0, 0xff000000, 'ip6tnl0\x00', 'bond_slave_1\x00', {}, {}, 0x88, 0x3, 0x10}, 0x0, 0x1b0, 0x1d0, 0x0, {}, [@common=@unspec=@nfacct={{0x48}, {'syz0\x00', 0x6}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x6, 0x1, 0x1, 'syz1\x00', 0xc}}]}, @unspec=@TRACE={0x20}}, {{@ip={@remote, @multicast1, 0xff000000, 0xffffff00, 'tunl0\x00', 'pimreg1\x00', {}, {0xff}, 0x84, 0x0, 0x60}, 0x0, 0x260, 0x2a8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x8, 0x9, 0x1, 0x1, 'syz1\x00'}}, @common=@inet=@recent0={{0xf8}, {0x4, 0x3, 0x1, 0x1, 'syz1\x00', 0x1}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, 'veth0_virt_wifi\x00', {0x9}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x570)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x180, 0x4, 0x14, 0xf1, 0x0, 0x7fffffffffffe, 0x7, 0x5, 0x3, 0xfffffffffffffffe, 0x45, 0x4, 0xbdb], 0x1, 0x1c4213})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

675.142294ms ago: executing program 1 (id=2891):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000480), 0x103400)
read$qrtrtun(r0, 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f00000005c0)={'#! ', './file0'}, 0xb)
ftruncate(r1, 0x5)

604.698283ms ago: executing program 8 (id=2896):
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$kcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="fc36f84cdf0afdc1426ce5574460528652d8b02cbab5149a5ac5177be5b2fb33640f8eb525384b84098fabcfe4b3642a0201df2db63290a2", 0x38}, {&(0x7f0000000400)="9ffe4d9504278a7b197afa03a53be12d2f0b3bd7dfb8eb9b6faae29eb3b7165a4c2458dd50bceaea55ee5ded5657eb63689c3045fa59dab9d64d667ff31ef09138c38ae95cb948c022faff49eac307d03ec2b513c4787d2cc8cd93a5126ce881db2c3109ea7ef4466a4fa5969dd2c09c5ba82bc6c36fdd471b46a4bf138200045b0f7a48fc763952fd553078d09877", 0x8f}, {&(0x7f0000000500)="63ce043af0092033e7f802f2ae14d3e84c9a1b92deb468e2f66da3ff881a001582a12c8b54a60e67cb52a7073b58f04111a9a5e5017c0d196fa0c836541516b14e223c75f931f649f0ae7f1f838645b5fd66471311b3af99fd009e18992badf9fd279806c9f1125619379cf1d6e1bb0e250506b6c02e166dea3751167f08975ceaee90949039c27f2d1fd6e5730a6592670d09ae862b2c74a6d035477e910fd39bb8895f23aaf7f07d3b7cb397cacff2cd562e62ff6fd9d446dbcb13ab6706ee79c35577f144fd2d9486341bbe11edd21d14d2a36358806259ab83015a33506c6ecf5ac46d89ff0235404404ae73b1fc8557fb", 0xf3}, {&(0x7f0000000600)="2cf55878faa256603e128060483607dd812ff8a7048adcffc46e3bc4ed751dd6d04b21121e1c768b182baa37d4ddf0131ad381da189bfda1877a5915f990e6c69e04668f94c407e416b3d565e21e8248c178213236206200e82d228ab5c49ea9fb15112adf4faa2185556692aec253bb77e7017b52c8a1ef9e54b09666d695de06954c0e7b629364e39ecbbd1563d5da8607730d6b8fa73cf93b9423eac78cdd18cd7cef6142cbca4ec5e5ed5fe25fb2e5e288412afa5ff977c1cfcf1d98edd9d02f3c01440b5e66ae8256f75930412d260b64e971f3a2", 0xd7}], 0x4, &(0x7f0000000740)=[{0x58, 0x104, 0xfffffff9, "ee1c29a9fdcdbe3fd30363000d62995ba758a849bf8b45afc2775cef8c982f67160fe24280b1d545082593744c96ea338e23c8fcdc1a90f729d88078e36a0b5a1bc27981ff3c6ba2"}, {0xc8, 0x10e, 0x0, "493595b5c8245a62bf6a1fadd938594ab3401d85d7d8020c43c47a1294c962f390fbd2db1b707f9ef2f1f1cbad1588f34cfb27c5a5cdbedce20d141d8e637e09d1f081258c77bc9d6d55a47bdbe3a10421f6dc22ba7da446d1e7f416b6ba84a5f44770a317e0e2f4f6a83c43bfa4beed485dd199e3f88326097bfc0ee4c9107f4c2c2d0171950e4ce3e2275ac4260cf374e968d5e6890030e967d8f31aed1a74d4875dad195f589a1143b6fff1fb3aa7514114137c19b5"}, {0x10, 0x0, 0x48}, {0xf8, 0x29, 0x5, "2b6b7bf360d21eaff0a7b3f5976c3f2ff93609dc3971e2b1451fdc6b6e3f5f4252397d9d8c51540bd5f4566c07acfe291d48ede08e54a2a0c42347fd0f7436d93bedbe2618905a2351235d9800ae235b4cea55d00b3ca9b6af05f765bbbe1c69f4077573f04308e3f9f2af9799f57ca7add9f72e10e99ce27c9e09fef52c30931a7baab408c45e15a0918f1f486e40787d6b1c5d37f06d09811ba8ac617cb91e9ad1377b592a8e2560a15b1628df5da6c08deb10d31395378cf49838335b4bb9064e66e6dfdbef542c0cf54d5f35f0fbb3c561a30b4f3f6bc490957df8e23b867f"}], 0x228}, 0x8080)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1, 0x41, &(0x7f0000000200)={0xa, 0x4e23, 0x10001, @loopback, 0xe}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000002600)=ANY=[], 0x10)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000200)={<r3=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0xe, @empty, 0x2}, {0xa, 0x4e23, 0x7, @remote, 0x3}, r3, 0x7}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000380)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x6, @loopback, 0x8}, {0xa, 0x4e24, 0x7, @private2, 0x200008}, r3, 0x1000b}}, 0x48)
socket$netlink(0x10, 0x3, 0x0)
writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fdd411efc40800040000000000000000", 0x39}], 0x1)
sendto$inet6(r0, &(0x7f0000000700)='\x00', 0x1, 0x4090, 0x0, 0x0)

537.351695ms ago: executing program 8 (id=2898):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000001c0)={0x73622a85, 0x10b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x2d, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000540)={@fd={0x66642a85, 0x0, r2}, @flat=@binder={0x73622a85, 0x1}, @fda={0x66646185, 0x4, 0x1, 0x1b}}, &(0x7f0000000600)={0x38, 0x18, 0x30}}, 0x40}], 0x0, 0x0, 0x0})

537.016971ms ago: executing program 5 (id=2899):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x22e02, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x1, 0x0, 0x2000, &(0x7f0000fe6000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000340)=[@text64={0x40, 0x0}], 0x1, 0x59, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x1, 0x0, &(0x7f0000ff5000/0x2000)=nil})
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x4000008)

533.983352ms ago: executing program 8 (id=2902):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000001c0)={0x73622a85, 0x10b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x2d, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, 0x0)

475.491057ms ago: executing program 8 (id=2904):
r0 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x24, 0x7, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x810}, 0x44854)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'bridge0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="3800000055002f03020000000000000007000000", @ANYRES32=r3, @ANYBLOB="200001"], 0x38}}, 0x0) (async)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="3800000055002f03020000000000000007000000", @ANYRES32=r3, @ANYBLOB="200001"], 0x38}}, 0x0)
ioctl$NBD_SET_SIZE_BLOCKS(r0, 0xab07, 0x80000000)
unshare(0x6a040000) (async)
unshare(0x6a040000)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRESDEC=r0], 0x20)

380.237303ms ago: executing program 1 (id=2905):
r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000000, 0x5d032, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYRES64=r0], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x13}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='page_pool_state_hold\x00', r1}, 0x18)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x3, &(0x7f0000000180)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='page_pool_state_hold\x00', r2}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000fc07ffff00000000000000008500000041000000850000000700000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket(0x2, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f00000012c0)=@ethtool_rxnfc={0x31, 0xe, 0x2, {0x5, @udp_ip4_spec={@local, @private=0xa010101, 0x4e20, 0x4e20, 0xa6}, {0x0, @empty, 0x9, 0x2, [0x5, 0x10000]}, @esp_ip4_spec={@multicast2, @multicast1, 0x8, 0x4}, {0x0, @broadcast, 0x3, 0x3, [0x9, 0xfffff143]}, 0x1, 0x1}, 0x6, [0x4, 0x0, 0x7fffffff, 0xf, 0x0, 0x100]}})
setsockopt$netrom_NETROM_IDLE(r4, 0x103, 0x7, &(0x7f00000001c0)=0x7, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0xe, 0x0, &(0x7f00000002c0)="ae24a21f9a824666f9acf0e0163f", 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x3}, 0x50)
r5 = socket$packet(0x11, 0x3, 0x300)
r6 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003f000b05d25a806c8c6394f90324fc60100002000a000300053582c137153e3704020180fc0b09000c00", 0x33fe0}], 0x1}, 0x0)
setsockopt$packet_int(r5, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r5, 0x107, 0x5, &(0x7f0000003180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf84, 0x3}, 0x1c)
r7 = socket$inet6(0xa, 0x800000000000002, 0x0)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/partitions\x00', 0x0, 0x0)
preadv(r8, &(0x7f0000001500)=[{&(0x7f00000002c0)=""/4084, 0xff4}], 0x1, 0x202, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x3e)
ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x2)
ioctl$KVM_X86_SET_MCE(r8, 0x4040ae9e, &(0x7f0000000280)={0x9800000000000000, 0x8080000, 0xb715, 0xfa4732bfdcc738df, 0x10})
connect$inet6(r7, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c)
r10 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r10, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha256)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r10, 0x117, 0x1, 0x0, 0x0)
r11 = accept$alg(r10, 0x0, 0x0)
sendmsg$alg(r11, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)='[', 0x1}], 0x1, 0x0, 0x0, 0x30008040}, 0x40080d1)
accept(r11, 0x0, 0x0)
sendmmsg$inet6(r7, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0xa}], 0x1, 0x0)

379.132451ms ago: executing program 5 (id=2907):
r0 = socket(0x10, 0x1, 0x0)
write(r0, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)

378.847485ms ago: executing program 7 (id=2908):
sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000080)={0x60, 0x0, 0x1, 0x0, 0x0, {0x39}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x73}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}]}, 0x60}}, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020b000102"], 0x10}}, 0x0)
sendmsg$key(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000480)={0x2, 0xb, 0x0, 0x0, 0x2}, 0x10}}, 0x20004040)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000900"], 0x48}}, 0x0)

314.252466ms ago: executing program 5 (id=2909):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x88fd537e5e114b6f, 0x12, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000880)={0x0, 0x0, @pic={0x2c, 0xc0, 0x7, 0x6, 0xfb, 0x2, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x9e, 0x6, 0x6, 0x7f}})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x180, 0x4, 0x14, 0xf1, 0x0, 0x7fffffffffffe, 0x7, 0x5, 0x3, 0xfffffffffffffffe, 0x45, 0x4, 0xbdb], 0x1, 0x1c4213})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000001680)=@nat={'nat\x00', 0x19, 0x2, 0x90, [0x200000001400, 0x0, 0x0, 0x20000000150e, 0x200000001644], 0x0, 0x0, &(0x7f0000001400)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x1, 0xffffffffffffffff}, {0x0, '\x00', 0x2, 0xfffffffffffffffe}]}, 0x108)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x70, 0x2, 0x6, 0x201, 0x6000006, 0x0, {0x0, 0x0, 0x3}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private1}}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x70}}, 0xc080)
getsockopt$bt_hci(r2, 0x0, 0x2, &(0x7f00000000c0)=""/65, &(0x7f0000000140)=0x41)

314.067236ms ago: executing program 7 (id=2910):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000001c0)={0x73622a85, 0x10b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x2d, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000540)={@fd={0x66642a85, 0x0, r2}, @flat=@binder={0x73622a85, 0x1}, @fda={0x66646185, 0x4, 0x1, 0x1b}}, &(0x7f0000000600)={0xf0, 0x18, 0x30}}, 0x40}], 0x0, 0x0, 0x0})

312.030169ms ago: executing program 8 (id=2911):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000000000001860000000000000000000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)}, 0x94)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x280280, 0x0)

311.919915ms ago: executing program 7 (id=2912):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000001c0)={0x73622a85, 0x10b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x2d, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, 0x0)

251.227903ms ago: executing program 8 (id=2913):
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="34000000000901000000000000000000000000010800054046ac9c05cb6d69a073797a31000000000c000480080001400051"], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x2000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg/0:0:0:0\x00', 0x80100, 0x0)
ioctl$BSG_EMULATED_HOST(r1, 0x2203, &(0x7f00000000c0))
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
write$qrtrtun(r3, &(0x7f0000000080)="004d82c92215f4a41ceb05d3c07f453171fe4936e3e6cfbed72b668899c8331d239dec5afbbfdf3eb34087038a243eb332fc12ccb96efd96ba4ab3a5e19857debb6a184001e69b3778c8ff84bff578bd0e2b4dc7aa2bd2885360733b", 0x5c)
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000040)={0x82, 0x5, 0xfffffffd, 0x717e387b, 0x3d, "e78d4a39fc00", 0x5, 0x2})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r4, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x400000, 0x14, "3eccd8000000000000000010000000040100"})
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000000c0)=0xf9)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000140)=0xd)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000240)=0x8)
socket$can_j1939(0x1d, 0x2, 0x7)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000180)=0x4)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000200)=0x1)
write$UHID_INPUT(r3, &(0x7f0000001980)={0xc, {"a2e3ad214fc752f91b25060987f70e06d038e7ff7fc6e5539b325d078b089b3b08386e090890e0878f0e1ac6e7049b334d959b429a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31303b305d0936cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5136651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x5c1}}, 0x505)

250.758458ms ago: executing program 7 (id=2914):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@ipv4_newroute={0x38, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x20, 0x0, 0x0, 0x3, 0xc8, 0x9}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x4}, @RTA_ENCAP={0x14, 0x16, 0x0, 0x1, @LWTUNNEL_IP_OPTS={0x10, 0x8, 0x0, 0x1, @LWTUNNEL_IP_OPTS_GENEVE={0xc, 0x1, 0x0, 0x1, @LWTUNNEL_IP_OPT_GENEVE_CLASS={0x6, 0x1, 0x4}}}}]}, 0x38}}, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000002c0)={'syztnl0\x00', &(0x7f0000000240)={'ip6_vti0\x00', <r2=>0x0, 0x29, 0x5, 0x2, 0x4, 0x4a, @empty, @remote, 0x20, 0x20, 0x7, 0x79a}})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x3)
ioctl$TIOCGPTPEER(r3, 0x928, 0x200000000005)
r4 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{0xffffffffffffffff, <r5=>0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f0000000400)}, 0x20)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f00000004c0)={&(0x7f0000000480)=[0x0, 0x0, 0x0], 0x3, 0x80000, 0x0, <r6=>0xffffffffffffffff})
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000580)={{0x1, <r7=>0xffffffffffffffff}, &(0x7f0000000500), &(0x7f0000000540)='%+9llu \x00'}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x2, &(0x7f00000000c0)=@raw=[@cb_func={0x18, 0x8, 0x4, 0x0, 0xfffffffffffffffd}], &(0x7f0000000100)='syzkaller\x00', 0x5, 0xf9, &(0x7f0000000140)=""/249, 0x41000, 0x4, '\x00', r2, 0x0, r0, 0x8, &(0x7f0000000300)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000340)={0x4, 0x7, 0x4, 0x9d9}, 0x10, 0x0, 0x0, 0x1, &(0x7f00000005c0)=[r3, r4, r5, r6, r7], &(0x7f0000000600)=[{0x0, 0x5, 0xe, 0x1}], 0x10, 0x6}, 0x94)
ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x8905, &(0x7f0000000040))

176.689231ms ago: executing program 1 (id=2915):
r0 = getpgrp(0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000180)='net/vlan/vlan0\x00')
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r2, 0x8982, &(0x7f0000002800)={0x1, 'vlan0\x00'})
ioctl$USBDEVFS_SETINTERFACE(0xffffffffffffffff, 0x80045510, 0x0)
mmap$xdp(&(0x7f000004e000/0x3000)=nil, 0x3000, 0x0, 0x50, r1, 0x180000000)

69.498ms ago: executing program 7 (id=2916):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x8, 0x94, 0x7fff0000}]})
close_range(r1, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0xfeac, 0x4, 0x1, 0x7fffe}, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'ip6gretap0\x00', <r5=>0x0})
sendto$packet(r4, &(0x7f0000000180)="0b032200e0ff25000200475400f6a13bb10000a8880008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r5}, 0x14)
r6 = syz_genetlink_get_family_id$l2tp(&(0x7f0000001dc0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000001f00)={0x0, 0x0, &(0x7f0000001ec0)={&(0x7f0000001e40)={0x24, r6, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x4}]}, 0x24}}, 0x80)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r2, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x58, r6, 0x300, 0x70bd26, 0x25dfdbfd, {}, [@L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @private0}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0xb}, @L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e22}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0xf}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x6}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000) (async)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a300000000068000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000212c0011800a0001006c696d69740000001c0002800c00024000000000000000030c0001400000000200000101480000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000001c0003800c00008008000340000000020c0000800800034000000002"], 0xf8}}, 0x0) (async)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x0, @hyper}, 0x10) (async)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) (async)
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r8, 0x2285, &(0x7f00000000c0)={0x53, 0xfffffffffffffffd, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000003c0)="953ea7996702", 0x0, 0x3, 0x0, 0x6, 0x0})
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x1f, &(0x7f0000000000)=[0xffffffffffffffff], 0x1) (async)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000004ec0)=ANY=[@ANYRESHEX=r0], 0x28}, 0x1, 0x0, 0x0, 0x4048011}, 0x2c000)

2.849592ms ago: executing program 7 (id=2917):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000001c0)={0x73622a85, 0x10b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x2000)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x2d, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000540)={@fd={0x66642a85, 0xf0ff, r2}, @ptr={0x70742a85, 0x0, &(0x7f0000000240)=""/210, 0xd2, 0x1, 0x29}, @ptr={0x70742a85, 0x5, 0x0, 0x0, 0x1, 0xca}}, &(0x7f0000000600)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})

0s ago: executing program 1 (id=2918):
r0 = gettid()
r1 = syz_clone(0x8080000, 0x0, 0xffffffffffffffd4, 0x0, 0x0, 0x0)
syz_open_procfs(r1, &(0x7f0000000380)='mounts\x00')
r2 = syz_clone(0x2180, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(r2, &(0x7f0000000040)='syscall\x00')
r3 = syz_clone3(&(0x7f00000007c0)={0x1100, &(0x7f0000000500), &(0x7f0000000640), &(0x7f0000000680), {0x6}, &(0x7f00000006c0)=""/146, 0x92, &(0x7f0000000880)=""/246, &(0x7f0000000780)=[0xffffffffffffffff, 0x0, 0x0], 0x3}, 0x58)
getpid()
syz_clone3(&(0x7f00000009c0)={0x80, &(0x7f00000002c0), &(0x7f0000000340), &(0x7f0000000440), {0x29}, &(0x7f0000000480)=""/95, 0x5f, &(0x7f0000000580)=""/140, &(0x7f0000000980)=[r0, r1, r2, r3], 0x4}, 0x58)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="050000bff8df9edd18f7cf61acf5c903180000000000619d000000000000009500f20b00"/46], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYRES8=r4], 0x1c}, 0x1, 0x0, 0x0, 0x20040040}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r5, &(0x7f0000000000), 0xd)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000002bb3000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000119952570ec0910001744cef79ccd89903adfea42a393d6c8d59215695e9b1b16aebd3a1a7b9dd0307da73628cf076a2a60242e4eb6715da7aa87bbc4da8c430eded6a571c911fd532fb95c97ed898b572e5eae46f6fcdce14a812beb9dc2d96d4763206"], 0x7c}, 0x1, 0x0, 0x0, 0x40080}, 0x8000)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)=@RTM_NEWMDB={0x17, 0x54, 0x1e5}, 0x18}}, 0x4080)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='\x00'/10])
sendmsg$NFT_BATCH(r6, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000002000000020000000900020073797a310000000008000440000000000900010073797a30000000000800034000000007"], 0x64}}, 0x0)

kernel console output (not intermixed with test programs):

0.281961][ T5935] Bluetooth: hci0: unknown advertising packet type: 0x82
[  220.282002][ T5935] Bluetooth: hci0: Malformed LE Event: 0x02
[  220.283330][T23985] Bluetooth: MGMT ver 1.23
[  220.284216][T23981] FAULT_INJECTION: forcing a failure.
[  220.284216][T23981] name failslab, interval 1, probability 0, space 0, times 0
[  220.284242][T23981] CPU: 0 UID: 0 PID: 23981 Comm: syz.3.2311 Not tainted syzkaller #0 PREEMPT(full) 
[  220.284263][T23981] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.284276][T23981] Call Trace:
[  220.284282][T23981]  <TASK>
[  220.284288][T23981]  dump_stack_lvl+0x16c/0x1f0
[  220.284314][T23981]  should_fail_ex+0x512/0x640
[  220.284334][T23981]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  220.284361][T23981]  should_failslab+0xc2/0x120
[  220.284379][T23981]  kmem_cache_alloc_noprof+0x75/0x6e0
[  220.284410][T23981]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  220.284448][T23981]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  220.284475][T23981]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  220.284497][T23981]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  220.284527][T23981]  mmu_topup_memory_caches+0x25/0x170
[  220.284556][T23981]  kvm_mmu_load+0xd6/0x23c0
[  220.284584][T23981]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  220.284604][T23981]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  220.284626][T23981]  ? __pfx_kvm_mmu_load+0x10/0x10
[  220.284650][T23981]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  220.284672][T23981]  ? kvm_check_and_inject_events+0x71c/0x1310
[  220.284703][T23981]  vcpu_run+0x3779/0x54d0
[  220.284735][T23981]  ? __pfx_vcpu_run+0x10/0x10
[  220.284757][T23981]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  220.284776][T23981]  ? __local_bh_enable_ip+0xa4/0x120
[  220.284800][T23981]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[  220.284816][T23981]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[  220.284840][T23981]  kvm_vcpu_ioctl+0x5eb/0x1690
[  220.284868][T23981]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  220.284893][T23981]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  220.284915][T23981]  ? do_vfs_ioctl+0x128/0x14f0
[  220.284937][T23981]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  220.284959][T23981]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  220.284986][T23981]  ? hook_file_ioctl_common+0x145/0x410
[  220.285016][T23981]  ? selinux_file_ioctl+0x180/0x270
[  220.285036][T23981]  ? selinux_file_ioctl+0xb4/0x270
[  220.285055][T23981]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  220.285077][T23981]  __x64_sys_ioctl+0x18e/0x210
[  220.285100][T23981]  do_syscall_64+0xcd/0xfa0
[  220.285125][T23981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.285139][T23981] RIP: 0033:0x7f06e418efc9
[  220.285154][T23981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.285171][T23981] RSP: 002b:00007f06e4fc3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  220.285189][T23981] RAX: ffffffffffffffda RBX: 00007f06e43e5fa0 RCX: 00007f06e418efc9
[  220.285200][T23981] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  220.285209][T23981] RBP: 00007f06e4fc3090 R08: 0000000000000000 R09: 0000000000000000
[  220.285219][T23981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  220.285228][T23981] R13: 00007f06e43e6038 R14: 00007f06e43e5fa0 R15: 00007ffcd34896b8
[  220.285252][T23981]  </TASK>
[  220.334885][   T40] audit: type=1326 audit(2000000007.970:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23984 comm="syz.1.2312" exe="/syz-executor" sig=31 arch=c000003e syscall=39 compat=0 ip=0x7f5400f85e67 code=0x0
[  220.423294][T23990] binder: 23989:23990 unknown command 0
[  220.425639][T23990] binder: 23989:23990 ioctl c0306201 200000000080 returned -22
[  220.430540][T23990] binder: 23989:23990 ioctl c0306201 2000000003c0 returned -14
[  220.515764][T23730] usb 10-1: new high-speed USB device number 18 using dummy_hcd
[  220.536577][T23730] usb 10-1: device descriptor read/8, error -71
[  220.653811][   T40] audit: type=1326 audit(2000000008.290:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24001 comm="syz.4.2318" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6bfe385e67 code=0x7ffc0000
[  220.661970][   T40] audit: type=1326 audit(2000000008.290:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24001 comm="syz.4.2318" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6bfe32b099 code=0x7ffc0000
[  220.670113][   T40] audit: type=1326 audit(2000000008.290:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24001 comm="syz.4.2318" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6bfe385e67 code=0x7ffc0000
[  220.670205][T23730] usb usb10-port1: unable to enumerate USB device
[  220.678236][   T40] audit: type=1326 audit(2000000008.290:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24001 comm="syz.4.2318" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6bfe32b099 code=0x7ffc0000
[  220.686240][   T40] audit: type=1326 audit(2000000008.290:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24001 comm="syz.4.2318" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bfe38efc9 code=0x7ffc0000
[  220.693069][   T40] audit: type=1326 audit(2000000008.290:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24001 comm="syz.4.2318" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bfe38efc9 code=0x7ffc0000
[  220.955893][ T5935] Bluetooth: hci4: command tx timeout
[  221.163123][T24016] FAULT_INJECTION: forcing a failure.
[  221.163123][T24016] name failslab, interval 1, probability 0, space 0, times 0
[  221.168530][T24016] CPU: 0 UID: 0 PID: 24016 Comm: syz.1.2323 Not tainted syzkaller #0 PREEMPT(full) 
[  221.168546][T24016] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.168552][T24016] Call Trace:
[  221.168557][T24016]  <TASK>
[  221.168561][T24016]  dump_stack_lvl+0x16c/0x1f0
[  221.168588][T24016]  should_fail_ex+0x512/0x640
[  221.168605][T24016]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  221.168632][T24016]  should_failslab+0xc2/0x120
[  221.168651][T24016]  kmem_cache_alloc_noprof+0x75/0x6e0
[  221.168673][T24016]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  221.168696][T24016]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  221.168725][T24016]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  221.168740][T24016]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  221.168759][T24016]  mmu_topup_memory_caches+0x25/0x170
[  221.168777][T24016]  kvm_mmu_load+0xd6/0x23c0
[  221.168793][T24016]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  221.168806][T24016]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  221.168820][T24016]  ? __pfx_kvm_mmu_load+0x10/0x10
[  221.168836][T24016]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  221.168851][T24016]  ? kvm_check_and_inject_events+0x71c/0x1310
[  221.168870][T24016]  vcpu_run+0x3779/0x54d0
[  221.168897][T24016]  ? __pfx_vcpu_run+0x10/0x10
[  221.168918][T24016]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  221.168939][T24016]  ? __local_bh_enable_ip+0xa4/0x120
[  221.168962][T24016]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[  221.168977][T24016]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[  221.169001][T24016]  kvm_vcpu_ioctl+0x5eb/0x1690
[  221.169028][T24016]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  221.169050][T24016]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  221.169065][T24016]  ? do_vfs_ioctl+0x128/0x14f0
[  221.169080][T24016]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  221.169094][T24016]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  221.169111][T24016]  ? hook_file_ioctl_common+0x145/0x410
[  221.169129][T24016]  ? selinux_file_ioctl+0x180/0x270
[  221.169143][T24016]  ? selinux_file_ioctl+0xb4/0x270
[  221.169161][T24016]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  221.169181][T24016]  __x64_sys_ioctl+0x18e/0x210
[  221.169197][T24016]  do_syscall_64+0xcd/0xfa0
[  221.169220][T24016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.169231][T24016] RIP: 0033:0x7f5400f8efc9
[  221.169240][T24016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.169250][T24016] RSP: 002b:00007f5401e36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  221.169261][T24016] RAX: ffffffffffffffda RBX: 00007f54011e5fa0 RCX: 00007f5400f8efc9
[  221.169268][T24016] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  221.169274][T24016] RBP: 00007f5401e36090 R08: 0000000000000000 R09: 0000000000000000
[  221.169280][T24016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  221.169287][T24016] R13: 00007f54011e6038 R14: 00007f54011e5fa0 R15: 00007ffdaa58d3b8
[  221.169301][T24016]  </TASK>
[  221.326941][T24021] binder: 24020:24021 unknown command 0
[  221.329374][T24021] binder: 24020:24021 ioctl c0306201 200000000080 returned -22
[  221.333192][T24021] binder: 24020:24021 ioctl c0306201 2000000003c0 returned -14
[  221.433677][T24036] binder: 24035:24036 unknown command 0
[  221.435588][T24036] binder: 24035:24036 ioctl c0306201 200000000080 returned -22
[  221.440791][T24036] binder: 24035:24036 ioctl c0306201 2000000003c0 returned -14
[  221.478979][T24039] binder: 24038:24039 unknown command 0
[  221.480793][T24039] binder: 24038:24039 ioctl c0306201 200000000080 returned -22
[  221.484445][T24039] binder: 24038:24039 ioctl c0306201 2000000003c0 returned -14
[  221.897811][T24074] binder: 24073:24074 unknown command 0
[  221.899644][T24074] binder: 24073:24074 ioctl c0306201 200000000080 returned -22
[  221.903502][T24074] binder: 24073:24074 ioctl c0306201 2000000003c0 returned -14
[  222.153072][T24106] __nla_validate_parse: 2 callbacks suppressed
[  222.153089][T24106] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2345'.
[  222.352745][T24125] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2349'.
[  222.413293][T24140] binder: 24139:24140 unknown command 0
[  222.416749][T24140] binder: 24139:24140 ioctl c0306201 200000000080 returned -22
[  222.421771][T24140] binder: 24139:24140 ioctl c0306201 2000000003c0 returned -14
[  222.573138][T24151] FAULT_INJECTION: forcing a failure.
[  222.573138][T24151] name failslab, interval 1, probability 0, space 0, times 0
[  222.580180][T24151] CPU: 1 UID: 0 PID: 24151 Comm: syz.1.2356 Not tainted syzkaller #0 PREEMPT(full) 
[  222.580202][T24151] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  222.580213][T24151] Call Trace:
[  222.580236][T24151]  <TASK>
[  222.580243][T24151]  dump_stack_lvl+0x16c/0x1f0
[  222.580289][T24151]  should_fail_ex+0x512/0x640
[  222.580316][T24151]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  222.580346][T24151]  should_failslab+0xc2/0x120
[  222.580366][T24151]  kmem_cache_alloc_noprof+0x75/0x6e0
[  222.580391][T24151]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  222.580420][T24151]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  222.580450][T24151]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  222.580475][T24151]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  222.580508][T24151]  mmu_topup_memory_caches+0x25/0x170
[  222.580537][T24151]  kvm_mmu_load+0xd6/0x23c0
[  222.580563][T24151]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  222.580585][T24151]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  222.580611][T24151]  ? __pfx_kvm_mmu_load+0x10/0x10
[  222.580637][T24151]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  222.580662][T24151]  ? kvm_check_and_inject_events+0x71c/0x1310
[  222.580696][T24151]  vcpu_run+0x3779/0x54d0
[  222.580726][T24151]  ? __pfx_vcpu_run+0x10/0x10
[  222.580750][T24151]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  222.580772][T24151]  ? __local_bh_enable_ip+0xa4/0x120
[  222.580799][T24151]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[  222.580817][T24151]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[  222.580843][T24151]  kvm_vcpu_ioctl+0x5eb/0x1690
[  222.580870][T24151]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  222.580895][T24151]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  222.580920][T24151]  ? do_vfs_ioctl+0x128/0x14f0
[  222.580944][T24151]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  222.580969][T24151]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  222.580998][T24151]  ? hook_file_ioctl_common+0x145/0x410
[  222.581029][T24151]  ? selinux_file_ioctl+0x180/0x270
[  222.581047][T24151]  ? selinux_file_ioctl+0xb4/0x270
[  222.581068][T24151]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  222.581094][T24151]  __x64_sys_ioctl+0x18e/0x210
[  222.581119][T24151]  do_syscall_64+0xcd/0xfa0
[  222.581147][T24151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.581165][T24151] RIP: 0033:0x7f5400f8efc9
[  222.581180][T24151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.581196][T24151] RSP: 002b:00007f5401e36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  222.581213][T24151] RAX: ffffffffffffffda RBX: 00007f54011e5fa0 RCX: 00007f5400f8efc9
[  222.581225][T24151] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  222.581235][T24151] RBP: 00007f5401e36090 R08: 0000000000000000 R09: 0000000000000000
[  222.581246][T24151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  222.581255][T24151] R13: 00007f54011e6038 R14: 00007f54011e5fa0 R15: 00007ffdaa58d3b8
[  222.581280][T24151]  </TASK>
[  222.585918][   T53] usb 10-1: new full-speed USB device number 19 using dummy_hcd
[  222.770269][T24156] binder: 24155:24156 unknown command 0
[  222.772255][T24156] binder: 24155:24156 ioctl c0306201 200000000080 returned -22
[  222.776855][T24156] binder: 24155:24156 ioctl c0306201 2000000003c0 returned -14
[  222.857707][   T53] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  222.861564][   T53] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  222.866642][   T53] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  222.869955][   T53] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.025923][ T5935] Bluetooth: hci4: command tx timeout
[  223.083850][   T53] usb 10-1: usb_control_msg returned -32
[  223.086215][   T53] usbtmc 10-1:16.0: can't read capabilities
[  223.141072][T24176] binder: 24175:24176 unknown command 0
[  223.142853][T24176] binder: 24175:24176 ioctl c0306201 200000000080 returned -22
[  223.146564][T24176] binder: 24175:24176 ioctl c0306201 2000000003c0 returned -14
[  223.286884][T24179] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2364'.
[  223.332362][T24184] fuse: Bad value for 'fd'
[  223.389151][T24186] FAULT_INJECTION: forcing a failure.
[  223.389151][T24186] name failslab, interval 1, probability 0, space 0, times 0
[  223.393058][T24186] CPU: 2 UID: 0 PID: 24186 Comm: syz.1.2366 Not tainted syzkaller #0 PREEMPT(full) 
[  223.393073][T24186] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  223.393079][T24186] Call Trace:
[  223.393084][T24186]  <TASK>
[  223.393089][T24186]  dump_stack_lvl+0x16c/0x1f0
[  223.393108][T24186]  should_fail_ex+0x512/0x640
[  223.393121][T24186]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  223.393138][T24186]  should_failslab+0xc2/0x120
[  223.393151][T24186]  kmem_cache_alloc_noprof+0x75/0x6e0
[  223.393166][T24186]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  223.393181][T24186]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  223.393199][T24186]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  223.393214][T24186]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  223.393233][T24186]  mmu_topup_memory_caches+0x25/0x170
[  223.393251][T24186]  kvm_mmu_load+0xd6/0x23c0
[  223.393267][T24186]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  223.393280][T24186]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  223.393295][T24186]  ? __pfx_kvm_mmu_load+0x10/0x10
[  223.393310][T24186]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  223.393325][T24186]  ? kvm_check_and_inject_events+0x71c/0x1310
[  223.393344][T24186]  vcpu_run+0x3779/0x54d0
[  223.393361][T24186]  ? __pfx_vcpu_run+0x10/0x10
[  223.393374][T24186]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  223.393387][T24186]  ? __local_bh_enable_ip+0xa4/0x120
[  223.393403][T24186]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[  223.393413][T24186]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[  223.393428][T24186]  kvm_vcpu_ioctl+0x5eb/0x1690
[  223.393448][T24186]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  223.393463][T24186]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  223.393477][T24186]  ? do_vfs_ioctl+0x128/0x14f0
[  223.393492][T24186]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  223.393506][T24186]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  223.393523][T24186]  ? hook_file_ioctl_common+0x145/0x410
[  223.393540][T24186]  ? selinux_file_ioctl+0x180/0x270
[  223.393551][T24186]  ? selinux_file_ioctl+0xb4/0x270
[  223.393562][T24186]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  223.393577][T24186]  __x64_sys_ioctl+0x18e/0x210
[  223.393593][T24186]  do_syscall_64+0xcd/0xfa0
[  223.393609][T24186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.393620][T24186] RIP: 0033:0x7f5400f8efc9
[  223.393629][T24186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.393639][T24186] RSP: 002b:00007f5401e36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  223.393649][T24186] RAX: ffffffffffffffda RBX: 00007f54011e5fa0 RCX: 00007f5400f8efc9
[  223.393656][T24186] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  223.393662][T24186] RBP: 00007f5401e36090 R08: 0000000000000000 R09: 0000000000000000
[  223.393668][T24186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  223.393674][T24186] R13: 00007f54011e6038 R14: 00007f54011e5fa0 R15: 00007ffdaa58d3b8
[  223.393688][T24186]  </TASK>
[  223.442710][T24189] usb 10-1: usbtmc_ioctl_clear_in_halt returned -32
[  223.496099][T24191] xt_l2tp: missing protocol rule (udp|l2tpip)
[  223.709068][T24197] netlink: 5 bytes leftover after parsing attributes in process `syz.1.2369'.
[  223.829952][T24226] hugetlbfs: Bad value for 'uid'
[  223.831651][T24226] hugetlbfs: Bad value for 'uid'
[  223.868794][T24228] binder: 24227:24228 unknown command 0
[  223.871199][T24228] binder: 24227:24228 ioctl c0306201 200000000080 returned -22
[  223.877177][T24228] binder: 24227:24228 ioctl c0306201 2000000003c0 returned -14
[  224.008529][T24232] kvm: pic: non byte read
[  224.011916][T24232] kvm: pic: non byte read
[  224.015052][T24232] kvm: pic: non byte read
[  224.018518][T24232] kvm: pic: non byte read
[  224.021659][T24232] kvm: pic: non byte read
[  224.024833][T24232] kvm: pic: non byte read
[  224.028154][T24232] kvm: pic: non byte read
[  224.031290][T24232] kvm: pic: non byte read
[  224.034482][T24232] kvm: pic: non byte read
[  224.037808][T24232] kvm: pic: non byte read
[  224.329835][T24250] binder: 24249:24250 unknown command 0
[  224.332277][T24250] binder: 24249:24250 ioctl c0306201 200000000080 returned -22
[  224.337398][T24250] binder: 24249:24250 ioctl c0306201 2000000003c0 returned -14
[  225.003800][T24267] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2381'.
[  225.007285][T24267] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2381'.
[  225.011024][T24267] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2381'.
[  225.200649][   T12] bridge_slave_1: left allmulticast mode
[  225.203016][   T12] bridge_slave_1: left promiscuous mode
[  225.205374][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.213320][   T12] bridge_slave_0: left allmulticast mode
[  225.215300][   T12] bridge_slave_0: left promiscuous mode
[  225.217748][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.254946][T24281] binder: 24280:24281 unknown command 0
[  225.257528][T24281] binder: 24280:24281 ioctl c0306201 200000000080 returned -22
[  225.262349][T24281] binder: 24280:24281 ioctl c0306201 2000000003c0 returned -14
[  225.360442][T12117] usb 10-1: USB disconnect, device number 19
[  225.759708][   T12] .` (unregistering): (slave bond_slave_0): Releasing backup interface
[  225.764740][   T12] .` (unregistering): (slave bond_slave_1): Releasing backup interface
[  225.770949][   T12] .` (unregistering): Released all slaves
[  225.781441][   T12] bond0 (unregistering): Released all slaves
[  225.788974][T24283] netlink: 'syz.4.2386': attribute type 3 has an invalid length.
[  225.791932][T24283] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2386'.
[  225.867009][   T12] tipc: Disabling bearer <udp:s>
[  225.879042][   T12] tipc: Left network mode
[  225.910850][T24324] option changes via remount are deprecated (pid=24323 comm=syz.4.2392)
[  225.914303][T24324] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2392'.
[  225.930967][T24335] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2394'.
[  225.932465][   T40] kauditd_printk_skb: 37 callbacks suppressed
[  225.932478][   T40] audit: type=1400 audit(2000000013.570:714): avc:  denied  { unmount } for  pid=7782 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  225.938364][T24335] fuse: Unknown parameter ''
[  225.952576][T24338] binder: 24337:24338 unknown command 0
[  225.954383][T24338] binder: 24337:24338 ioctl c0306201 200000000080 returned -22
[  225.960093][T24338] binder: 24337:24338 ioctl c0306201 2000000003c0 returned -14
[  226.023178][T24345] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  226.080215][T24335] overlay: Unknown parameter 'euid>00000000000000000000'
[  226.083924][T24335] overlayfs: overlapping lowerdir path
[  226.201545][T24359] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.251836][   T40] audit: type=1400 audit(2000000013.890:715): avc:  denied  { create } for  pid=24356 comm="syz.5.2399" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 trawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  226.252704][   T40] audit: type=1400 audit(2000000013.890:716): avc:  denied  { associate } for  pid=24356 comm="syz.5.2399" name="file0" scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon=2321202E2F6367726F75702F66696C6530616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  226.284274][   T40] audit: type=1400 audit(2000000013.890:717): avc:  denied  { create } for  pid=24356 comm="syz.5.2399" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C65306161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[  226.322538][   T40] audit: type=1400 audit(2000000013.890:718): avc:  denied  { mounton } for  pid=24356 comm="syz.5.2399" path="/179/bus" dev="tmpfs" ino=952 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C65306161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[  226.359432][   T40] audit: type=1400 audit(2000000013.890:719): avc:  denied  { read } for  pid=24356 comm="syz.5.2399" name="file0" dev="tmpfs" ino=950 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 trawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  226.386715][   T40] audit: type=1400 audit(2000000013.890:720): avc:  denied  { add_name } for  pid=24356 comm="syz.5.2399" name="work" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C6530616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  226.407238][T24376] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  226.420504][   T40] audit: type=1400 audit(2000000013.900:721): avc:  denied  { setattr } for  pid=24356 comm="syz.5.2399" name="work" dev="tmpfs" ino=953 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[  226.421884][T24359] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.463775][T24376] overlay: ./file1 is not a directory
[  226.474699][    C3] vxcan1: j1939_tp_rxtimer: 0xffff888061b04c00: rx timeout, send abort
[  226.485760][    C3] vxcan1: j1939_xtp_rx_abort_one: 0xffff888061b04c00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  226.491690][   T40] audit: type=1400 audit(2000000013.900:722): avc:  denied  { write open } for  pid=24356 comm="syz.5.2399" path=2F202864656C6574656429 dev="tmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=2321202E2F6367726F75702F66696C6530616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[  226.501848][   T40] audit: type=1400 audit(2000000013.900:723): avc:  denied  { create } for  pid=24356 comm="syz.5.2399" name="#21" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  226.580204][T24359] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.672314][   T12] hsr_slave_0: left promiscuous mode
[  226.674871][   T12] hsr_slave_1: left promiscuous mode
[  226.677370][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  226.680471][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  226.687513][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  226.690026][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  226.720443][   T12] veth1_macvtap: left promiscuous mode
[  226.722540][   T12] veth0_macvtap: left promiscuous mode
[  226.724983][   T12] veth1_vlan: left promiscuous mode
[  226.726904][   T12] veth0_vlan: left promiscuous mode
[  226.857488][T24402] binder: 24401:24402 unknown command 0
[  226.859561][T24402] binder: 24401:24402 ioctl c0306201 200000000080 returned -22
[  226.863210][T24402] binder: 24401:24402 ioctl c0306201 2000000003c0 returned -14
[  227.337264][   T12] team0 (unregistering): Port device team_slave_1 removed
[  227.401246][   T12] team0 (unregistering): Port device team_slave_0 removed
[  227.893392][T24359] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.068963][T15681] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  228.078324][T15681] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  228.100214][ T1146] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  228.104631][T15414] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  228.117616][T24436] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  228.141997][T24436] overlay: ./file1 is not a directory
[  228.142618][T24443] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24443 comm=syz.4.2416
[  228.288336][T24464] binder: 24461:24464 unknown command 0
[  228.290620][T24464] binder: 24461:24464 ioctl c0306201 200000000080 returned -22
[  228.295199][T24464] binder: 24461:24464 ioctl c0306201 2000000003c0 returned -14
[  228.336763][T24469] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2424'.
[  228.342219][T24476] binder: 24474:24476 unknown command 0
[  228.344039][T24476] binder: 24474:24476 ioctl c0306201 200000000080 returned -22
[  228.347773][T24476] binder: 24474:24476 ioctl c0306201 2000000003c0 returned -14
[  228.578680][T24499] cgroup: Need name or subsystem set
[  228.809045][T24513] IPVS: set_ctl: invalid protocol: 0 172.20.20.61:20003
[  228.824207][T24513] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2432'.
[  228.830971][T24513] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2432'.
[  228.848150][T24541] tipc: Enabled bearer <ib:veth0_to_batadv>, priority 10
[  228.918349][T24547] binder: 24546:24547 unknown command 0
[  228.920836][T24547] binder: 24546:24547 ioctl c0306201 200000000080 returned -22
[  228.925762][T24547] binder: 24546:24547 ioctl c0306201 2000000003c0 returned -14
[  228.968501][T24550] program syz.5.2435 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  229.004027][T24555] binder: 24553:24555 unknown command 0
[  229.005882][T24555] binder: 24553:24555 ioctl c0306201 200000000080 returned -22
[  229.009191][T24555] binder: 24553:24555 ioctl c0306201 2000000003c0 returned -14
[  229.099771][T24564] binder: 24563:24564 unknown command 0
[  229.101013][T24560] FAULT_INJECTION: forcing a failure.
[  229.101013][T24560] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  229.102198][T24564] binder: 24563:24564 ioctl c0306201 200000000080 returned -22
[  229.109672][T24560] CPU: 0 UID: 0 PID: 24560 Comm: syz.4.2438 Not tainted syzkaller #0 PREEMPT(full) 
[  229.109687][T24560] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  229.109693][T24560] Call Trace:
[  229.109706][T24560]  <TASK>
[  229.109711][T24560]  dump_stack_lvl+0x16c/0x1f0
[  229.109742][T24560]  should_fail_ex+0x512/0x640
[  229.109761][T24560]  should_fail_alloc_page+0xe7/0x130
[  229.109775][T24560]  prepare_alloc_pages+0x3c2/0x610
[  229.109787][T24560]  ? stack_depot_save_flags+0x29/0x9c0
[  229.109801][T24560]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  229.109818][T24560]  ? kasan_save_stack+0x33/0x60
[  229.109827][T24560]  ? kasan_save_track+0x14/0x30
[  229.109837][T24560]  ? __kasan_kmalloc+0xaa/0xb0
[  229.109845][T24560]  ? __kvmalloc_node_noprof+0x3a3/0x9c0
[  229.109855][T24560]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  229.109871][T24560]  ? mmu_topup_memory_caches+0xbc/0x170
[  229.109887][T24560]  ? kvm_mmu_load+0xd6/0x23c0
[  229.109901][T24560]  ? vcpu_run+0x3779/0x54d0
[  229.109911][T24560]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[  229.109921][T24560]  ? kvm_vcpu_ioctl+0x5eb/0x1690
[  229.109934][T24560]  ? __x64_sys_ioctl+0x18e/0x210
[  229.109948][T24560]  ? do_syscall_64+0xcd/0xfa0
[  229.109962][T24560]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.109975][T24560]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  229.109999][T24560]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  229.110014][T24560]  ? policy_nodemask+0xea/0x4e0
[  229.110027][T24560]  alloc_pages_mpol+0x1fb/0x550
[  229.110040][T24560]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  229.110051][T24560]  ? __kvmalloc_node_noprof+0x3c0/0x9c0
[  229.110061][T24560]  ? trace_kmem_cache_alloc+0x28/0xc0
[  229.110076][T24560]  alloc_pages_noprof+0x131/0x390
[  229.110089][T24560]  get_free_pages_noprof+0x10/0xb0
[  229.110099][T24560]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  229.110118][T24560]  mmu_topup_memory_caches+0xbc/0x170
[  229.110135][T24560]  kvm_mmu_load+0xd6/0x23c0
[  229.110151][T24560]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  229.110169][T24560]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  229.110189][T24560]  ? __pfx_kvm_mmu_load+0x10/0x10
[  229.110211][T24560]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  229.110236][T24560]  ? kvm_check_and_inject_events+0x71c/0x1310
[  229.110269][T24560]  vcpu_run+0x3779/0x54d0
[  229.110298][T24560]  ? __pfx_vcpu_run+0x10/0x10
[  229.110316][T24560]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  229.110329][T24560]  ? __local_bh_enable_ip+0xa4/0x120
[  229.110345][T24560]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[  229.110356][T24560]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[  229.110371][T24560]  kvm_vcpu_ioctl+0x5eb/0x1690
[  229.110387][T24560]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  229.110401][T24560]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  229.110417][T24560]  ? do_vfs_ioctl+0x128/0x14f0
[  229.110431][T24560]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  229.110445][T24560]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  229.110462][T24560]  ? hook_file_ioctl_common+0x145/0x410
[  229.110479][T24560]  ? selinux_file_ioctl+0x180/0x270
[  229.110490][T24560]  ? selinux_file_ioctl+0xb4/0x270
[  229.110501][T24560]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  229.110516][T24560]  __x64_sys_ioctl+0x18e/0x210
[  229.110535][T24560]  do_syscall_64+0xcd/0xfa0
[  229.110554][T24560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.110564][T24560] RIP: 0033:0x7f6bfe38efc9
[  229.110574][T24560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  229.110584][T24560] RSP: 002b:00007f6bff2b5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  229.110594][T24560] RAX: ffffffffffffffda RBX: 00007f6bfe5e5fa0 RCX: 00007f6bfe38efc9
[  229.110601][T24560] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  229.110607][T24560] RBP: 00007f6bff2b5090 R08: 0000000000000000 R09: 0000000000000000
[  229.110615][T24560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  229.110623][T24560] R13: 00007f6bfe5e6038 R14: 00007f6bfe5e5fa0 R15: 00007ffe23ff64d8
[  229.110645][T24560]  </TASK>
[  229.152893][T24567] binder: 24563:24567 ioctl c0306201 2000000003c0 returned -14
[  229.324086][T23730] IPVS: starting estimator thread 0...
[  229.421162][T24593] netlink: 37 bytes leftover after parsing attributes in process `syz.4.2443'.
[  229.425831][T24578] IPVS: using max 45 ests per chain, 108000 per kthread
[  229.425968][T24593] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  229.431680][T24593] IPv6: NLM_F_CREATE should be set when creating new route
[  229.434475][T24593] IPv6: NLM_F_CREATE should be set when creating new route
[  229.465162][T24596] netlink: 'syz.1.2445': attribute type 10 has an invalid length.
[  229.481843][T24596] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  229.633536][T24620] IPv6: Can't replace route, no match found
[  229.637865][T24620] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2447'.
[  229.641150][T24620] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2447'.
[  229.712335][T24629] xt_TCPMSS: Only works on TCP SYN packets
[  229.811214][T24649] binder: 24647:24649 unknown command 0
[  229.813053][T24649] binder: 24647:24649 ioctl c0306201 200000000080 returned -22
[  229.816996][T24649] binder: 24647:24649 ioctl c0306201 2000000003c0 returned -14
[  229.906314][T24654] binder: BINDER_SET_CONTEXT_MGR already set
[  229.908445][T24654] binder: 24653:24654 ioctl 4018620d 200000004a80 returned -16
[  229.911215][T24654] netlink: 'syz.4.2457': attribute type 4 has an invalid length.
[  229.969096][T24651] kvm: kvm [24650]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0xc1) = 0x1
[  229.972527][T24651] kvm: kvm [24650]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0xc2) = 0x1
[  230.029154][T24664] VFS: Mount too revealing
[  230.089133][T24670] MTD: Attempt to mount non-MTD device "/dev/nbd4"
[  230.093350][T24670] cramfs: wrong magic
[  230.096842][T24670] IPVS: set_ctl: invalid protocol: 255 224.0.0.2:20003
[  230.222277][T24688] binder: 24687:24688 unknown command 0
[  230.224287][T24688] binder: 24687:24688 ioctl c0306201 200000000080 returned -22
[  230.230596][T24688] binder: 24687:24688 ioctl c0306201 2000000003c0 returned -14
[  230.263855][T24690] binder: 24689:24690 unknown command 0
[  230.265787][T24690] binder: 24689:24690 ioctl c0306201 200000000080 returned -22
[  230.270379][T24690] binder: 24689:24690 ioctl c0306201 2000000003c0 returned -14
[  230.396106][T24701] comedi comedi0: Minor 10 could not be opened
[  230.400463][T24701] ubi31: attaching mtd0
[  230.402457][T24701] ubi31 error: ubi_attach_mtd_dev: bad VID header (2000000018) or data offsets (2000000082)
[  230.513691][T24710] binder: 24709:24710 unknown command 0
[  230.515567][T24710] binder: 24709:24710 ioctl c0306201 200000000080 returned -22
[  230.520135][T24710] binder: 24709:24710 ioctl c0306201 2000000003c0 returned -14
[  230.571684][T24715] binder: 24714:24715 unknown command 0
[  230.573310][T24715] binder: 24714:24715 ioctl c0306201 200000000080 returned -22
[  230.576747][T24715] binder: 24714:24715 ioctl c0306201 2000000003c0 returned -14
[  230.723452][T24734] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2481'.
[  231.026158][T24757] binder: 24755:24757 unknown command 0
[  231.028032][T24757] binder: 24755:24757 ioctl c0306201 200000000080 returned -22
[  231.032202][T24757] binder: 24755:24757 ioctl c0306201 2000000003c0 returned -14
[  231.081766][T24765] binder: 24764:24765 unknown command 0
[  231.083991][T24765] binder: 24764:24765 ioctl c0306201 200000000080 returned -22
[  231.087392][T24765] binder: 24764:24765 ioctl c0306201 2000000003c0 returned -14
[  231.114737][T24770] binder: 24768:24770 unknown command 0
[  231.116848][T24770] binder: 24768:24770 ioctl c0306201 200000000080 returned -22
[  231.120579][T24770] binder: 24768:24770 ioctl c0306201 2000000003c0 returned -14
[  231.164572][T24774] dlm: no locking on control device
[  231.168372][T24774] dlm: no locking on control device
[  231.169951][T24774] dlm: no locking on control device
[  231.171531][T24774] dlm: no locking on control device
[  231.173192][T24774] dlm: no locking on control device
[  231.174948][T24774] dlm: no locking on control device
[  231.177114][T24774] dlm: no locking on control device
[  231.212094][T24778] netlink: 'syz.5.2493': attribute type 32 has an invalid length.
[  231.216505][T24778] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2493'.
[  231.527536][T24796] SELinux: security_context_str_to_sid („) failed with errno=-22
[  231.642703][T24798] xt_cluster: you have exceeded the maximum number of cluster nodes (205 > 32)
[  231.705538][ T5986] IPVS: starting estimator thread 0...
[  231.796668][T24806] IPVS: using max 49 ests per chain, 117600 per kthread
[  231.935278][T24811] ref_ctr increment failed for inode: 0x471 offset: 0x5 ref_ctr_offset: 0x1000 of mm: 0xffff88802516c080
[  232.191223][T24829] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  232.196642][T24829] batadv_slave_0: entered promiscuous mode
[  232.199317][T24829] batadv_slave_0: entered allmulticast mode
[  232.248531][T24846] binder: 24845:24846 unknown command 0
[  232.250283][T24846] binder: 24845:24846 ioctl c0306201 200000000080 returned -22
[  232.253531][T24846] binder: 24845:24846 ioctl c0306201 2000000003c0 returned -14
[  232.318785][   T40] kauditd_printk_skb: 22 callbacks suppressed
[  232.318797][   T40] audit: type=1400 audit(2000000019.836:746): avc:  denied  { lock } for  pid=24852 comm="syz.5.2510" path="socket:[66830]" dev="sockfs" ino=66830 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  232.394264][T24864] binder: 24863:24864 unknown command 0
[  232.399300][T24864] binder: 24863:24864 ioctl c0306201 200000000080 returned -22
[  232.404048][T24864] binder: 24863:24864 ioctl c0306201 2000000003c0 returned -14
[  232.441411][T24871] binder: 24870:24871 unknown command 0
[  232.443241][T24871] binder: 24870:24871 ioctl c0306201 200000000080 returned -22
[  232.446680][T24871] binder: 24870:24871 ioctl c0306201 2000000003c0 returned -14
[  232.486586][T24875] binder: 24874:24875 unknown command 0
[  232.488987][T24875] binder: 24874:24875 ioctl c0306201 200000000080 returned -22
[  232.553610][T24882] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2523'.
[  232.652838][T24955] binder: 24954:24955 unknown command 0
[  232.654632][T24955] binder: 24954:24955 ioctl c0306201 200000000080 returned -22
[  232.658156][T24955] binder: 24954:24955 ioctl c0306201 2000000003c0 returned -14
[  232.689818][T24958] netlink: 'syz.1.2526': attribute type 23 has an invalid length.
[  232.701061][T24961] netlink: 'syz.1.2526': attribute type 23 has an invalid length.
[  232.836071][T24982] binder: 24981:24982 unknown command 0
[  232.838357][T24982] binder: 24981:24982 ioctl c0306201 200000000080 returned -22
[  232.842937][T24982] binder: 24981:24982 ioctl c0306201 2000000003c0 returned -14
[  232.883451][T24984] 9pnet_virtio: no channels available for device syz
[  232.989428][T24986] overlay: Unknown parameter 'euid'
[  233.047211][T24995] binder: 24994:24995 unknown command 0
[  233.049591][T24995] binder: 24994:24995 ioctl c0306201 200000000080 returned -22
[  233.054724][T24995] binder: 24994:24995 ioctl c0306201 2000000003c0 returned -14
[  233.095031][T24997] binder: 24996:24997 unknown command 0
[  233.096763][T24997] binder: 24996:24997 ioctl c0306201 200000000080 returned -22
[  233.100662][T24997] binder: 24996:24997 ioctl c0306201 2000000003c0 returned -14
[  233.293379][   T55] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  233.453799][   T55] usb 6-1: Using ep0 maxpacket: 32
[  233.457298][   T55] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  233.459969][   T55] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  233.462654][   T55] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  233.466108][   T55] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 81
[  233.469004][   T55] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  233.471779][   T55] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  233.476185][   T55] usb 6-1: config 0 descriptor??
[  233.697746][ T5965] usb 6-1: USB disconnect, device number 21
[  234.087581][T25014] binder: 25013:25014 unknown command 0
[  234.089810][T25014] binder: 25013:25014 ioctl c0306201 200000000080 returned -22
[  234.094417][T25014] binder: 25013:25014 ioctl c0306201 2000000003c0 returned -14
[  234.170338][   T55] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  234.330747][   T55] usb 6-1: Using ep0 maxpacket: 32
[  234.335493][   T55] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  234.339246][   T55] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  234.343258][   T55] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  234.347503][   T55] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 81
[  234.351402][   T55] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  234.355460][   T55] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.370007][   T55] usb 6-1: config 0 descriptor??
[  235.112680][   T40] audit: type=1400 audit(2000000022.455:747): avc:  denied  { read } for  pid=25023 comm="syz.5.2540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  235.463936][   T55] usb 10-1: new high-speed USB device number 20 using dummy_hcd
[  235.646988][   T55] usb 10-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  235.650382][   T55] usb 10-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  235.654271][   T55] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 66
[  235.657483][   T55] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  235.660847][   T55] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  235.665478][   T55] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  235.668436][   T55] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  235.670998][   T55] usb 10-1: Product: syz
[  235.672354][   T55] usb 10-1: Manufacturer: syz
[  235.679265][   T55] cdc_wdm 10-1:1.0: skipping garbage
[  235.680944][   T55] cdc_wdm 10-1:1.0: skipping garbage
[  235.684351][   T55] cdc_wdm 10-1:1.0: cdc-wdm0: USB WDM device
[  235.686266][   T55] cdc_wdm 10-1:1.0: Unknown control protocol
[  235.897981][ T5965] usb 10-1: USB disconnect, device number 20
[  236.273202][T23730] usb 6-1: USB disconnect, device number 22
[  236.300288][T25048] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2541'.
[  236.311123][T25048] autofs: Unknown parameter ''
[  236.337091][   T40] audit: type=1400 audit(2000000023.595:748): avc:  denied  { read } for  pid=25047 comm="syz.1.2541" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  236.575979][ T5965] usb 10-1: new high-speed USB device number 21 using dummy_hcd
[  236.758911][ T5965] usb 10-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  236.761449][ T5965] usb 10-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  236.764345][ T5965] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 66
[  236.767441][ T5965] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  236.770921][ T5965] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  236.775268][ T5965] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  236.777808][ T5965] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  236.780431][ T5965] usb 10-1: Product: syz
[  236.781661][ T5965] usb 10-1: Manufacturer: syz
[  236.791564][ T5965] cdc_wdm 10-1:1.0: skipping garbage
[  236.793121][ T5965] cdc_wdm 10-1:1.0: skipping garbage
[  236.796251][ T5965] cdc_wdm 10-1:1.0: cdc-wdm0: USB WDM device
[  236.797981][ T5965] cdc_wdm 10-1:1.0: Unknown control protocol
[  237.005956][ T5965] usb 10-1: USB disconnect, device number 21
[  237.757928][T25076] binder: 25075:25076 unknown command 0
[  237.759840][T25076] binder: 25075:25076 ioctl c0306201 200000000080 returned -22
[  237.764611][T25076] binder: 25075:25076 ioctl c0306201 2000000003c0 returned -14
[  237.793637][T25078] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2545'.
[  237.963162][T25086] kvm: kvm [25082]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0xc1) = 0xfffffc18
[  237.967855][T25086] kvm: kvm [25082]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0xc2) = 0xfffffc18
[  237.989935][T25086] kvm: kvm [25082]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x11e) = 0xfffffc18
[  238.009841][T25086] kvm: kvm [25082]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x186) = 0xfffffc18
[  238.013209][T25086] kvm: kvm [25082]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x187) = 0xfffffc18
[  238.923594][T25094] binder: 25093:25094 unknown command 0
[  238.926015][T25094] binder: 25093:25094 ioctl c0306201 200000000080 returned -22
[  238.932943][T25094] binder: 25093:25094 ioctl c0306201 2000000003c0 returned -14
[  238.980726][T25099] binder: 25098:25099 unknown command 0
[  238.983396][T25099] binder: 25098:25099 ioctl c0306201 200000000080 returned -22
[  238.987829][T25099] binder: BINDER_SET_CONTEXT_MGR already set
[  238.990422][T25099] binder: 25098:25099 ioctl 4018620d 200000000040 returned -16
[  239.075699][ T5938] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  239.081763][ T5938] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  239.086190][ T5938] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  239.091799][ T5938] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  239.095337][ T5938] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  239.284367][   T81] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.295387][T25110] chnl_net:caif_netlink_parms(): no params data found
[  239.404545][   T81] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.413738][T25110] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.416644][T25110] bridge0: port 1(bridge_slave_0) entered disabled state
[  239.419577][T25110] bridge_slave_0: entered allmulticast mode
[  239.425271][T25110] bridge_slave_0: entered promiscuous mode
[  239.434099][T25110] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.437183][T25110] bridge0: port 2(bridge_slave_1) entered disabled state
[  239.440245][T25110] bridge_slave_1: entered allmulticast mode
[  239.444747][T25110] bridge_slave_1: entered promiscuous mode
[  239.521765][   T81] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.532424][T25110] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  239.538245][T25110] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  239.593367][T25110] team0: Port device team_slave_0 added
[  239.611269][   T81] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.625309][T25110] team0: Port device team_slave_1 added
[  239.687106][T25110] batman_adv: batadv0: Adding interface: batadv_slave_0
[  239.691457][T25110] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  239.702175][T25110] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  239.708148][T25110] batman_adv: batadv0: Adding interface: batadv_slave_1
[  239.711224][T25110] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  239.721590][T25110] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  239.826284][T25110] hsr_slave_0: entered promiscuous mode
[  239.831854][T25110] hsr_slave_1: entered promiscuous mode
[  239.834055][T25110] debugfs: 'hsr0' already exists in 'hsr'
[  239.835889][T25110] Cannot create hsr debugfs directory
[  239.961979][   T81] bridge_slave_1: left allmulticast mode
[  239.964480][   T81] bridge_slave_1: left promiscuous mode
[  239.967613][   T81] bridge0: port 2(bridge_slave_1) entered disabled state
[  239.971706][   T81] bridge_slave_0: left allmulticast mode
[  239.973534][   T81] bridge_slave_0: left promiscuous mode
[  239.975577][   T81] bridge0: port 1(bridge_slave_0) entered disabled state
[  240.019012][T26062] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  240.097343][   T40] audit: type=1400 audit(2000000027.112:749): avc:  denied  { watch } for  pid=26054 comm="syz.5.2555" path="/241/file0" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  240.100393][T26062] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2555'.
[  240.258838][   T81] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  240.265191][   T81] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  240.270476][   T81] bond0 (unregistering): Released all slaves
[  240.422491][T25110] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  240.432562][T25110] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  240.439981][T25110] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  240.445901][T25110] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  240.459128][T26153] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2556'.
[  240.463563][T26153] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  240.556167][T25110] 8021q: adding VLAN 0 to HW filter on device bond0
[  240.569622][T25110] 8021q: adding VLAN 0 to HW filter on device team0
[  240.578697][T15681] bridge0: port 1(bridge_slave_0) entered blocking state
[  240.581691][T15681] bridge0: port 1(bridge_slave_0) entered forwarding state
[  240.586114][   T40] audit: type=1326 audit(2000000027.561:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26161 comm="syz.1.2557" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5400f8efc9 code=0x7ffc0000
[  240.594621][ T1191] bridge0: port 2(bridge_slave_1) entered blocking state
[  240.594708][ T1191] bridge0: port 2(bridge_slave_1) entered forwarding state
[  240.599004][   T40] audit: type=1326 audit(2000000027.570:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26161 comm="syz.1.2557" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5400f8efc9 code=0x7ffc0000
[  240.611334][   T40] audit: type=1326 audit(2000000027.570:752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26161 comm="syz.1.2557" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5400f8efc9 code=0x7ffc0000
[  240.619445][   T40] audit: type=1326 audit(2000000027.570:753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26161 comm="syz.1.2557" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5400f8efc9 code=0x7ffc0000
[  240.626406][   T40] audit: type=1326 audit(2000000027.570:754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26161 comm="syz.1.2557" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5400f8efc9 code=0x7ffc0000
[  240.637043][   T40] audit: type=1326 audit(2000000027.570:755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26161 comm="syz.1.2557" exe="/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5400f8efc9 code=0x7ffc0000
[  240.645075][   T40] audit: type=1326 audit(2000000027.570:756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26161 comm="syz.1.2557" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5400f8efc9 code=0x7ffc0000
[  240.653417][T26166] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  240.653630][   T40] audit: type=1326 audit(2000000027.570:757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26161 comm="syz.1.2557" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5400f8efc9 code=0x7ffc0000
[  240.666207][   T40] audit: type=1326 audit(2000000027.570:758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26161 comm="syz.1.2557" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5400f8efc9 code=0x7ffc0000
[  240.690443][   T81] hsr_slave_0: left promiscuous mode
[  240.694318][   T81] hsr_slave_1: left promiscuous mode
[  240.697066][   T81] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  240.700011][   T81] batman_adv: batadv0: Removing interface: batadv_slave_0
[  240.704848][   T81] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  240.707500][   T81] batman_adv: batadv0: Removing interface: batadv_slave_1
[  240.715193][T26178] binder: 26177:26178 unknown command 0
[  240.717471][T26178] binder: 26177:26178 ioctl c0306201 200000000080 returned -22
[  240.721989][T26178] binder: 26177:26178 ioctl c0306201 2000000003c0 returned -14
[  240.752763][   T81] veth1_macvtap: left promiscuous mode
[  240.755169][   T81] veth0_macvtap: left promiscuous mode
[  240.757705][   T81] veth1_vlan: left promiscuous mode
[  240.759967][   T81] veth0_vlan: left promiscuous mode
[  240.986951][T26185] 9pnet_virtio: no channels available for device syz
[  241.336826][ T5938] Bluetooth: hci2: command tx timeout
[  241.515276][   T81] team0 (unregistering): Port device team_slave_1 removed
[  241.588676][   T81] team0 (unregistering): Port device team_slave_0 removed
[  241.808305][T26189] binder: 26188:26189 unknown command 0
[  241.810178][T26189] binder: 26188:26189 ioctl c0306201 200000000080 returned -22
[  241.813863][T26189] binder: 26188:26189 ioctl c0306201 2000000003c0 returned -14
[  242.220140][T26191] veth1_to_batadv: entered promiscuous mode
[  242.419360][T25110] 8021q: adding VLAN 0 to HW filter on device batadv0
[  242.489066][T26225] binder: 26224:26225 unknown command 0
[  242.490789][T26225] binder: 26224:26225 ioctl c0306201 200000000080 returned -22
[  242.494090][T26225] binder: 26224:26225 ioctl c0306201 2000000003c0 returned -14
[  242.594446][T25110] veth0_vlan: entered promiscuous mode
[  242.602461][T25110] veth1_vlan: entered promiscuous mode
[  242.621550][T25110] veth0_macvtap: entered promiscuous mode
[  242.625468][T25110] veth1_macvtap: entered promiscuous mode
[  242.638362][T25110] batman_adv: batadv0: Interface activated: batadv_slave_0
[  242.646198][T25110] batman_adv: batadv0: Interface activated: batadv_slave_1
[  242.657510][T15681] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  242.667274][T15681] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  242.683531][T15681] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  242.687070][T15681] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  242.726993][   T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  242.729744][   T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  242.753733][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  242.756880][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  242.860865][T26262] 9pnet_virtio: no channels available for device syz
[  242.931997][T26265] No source specified
[  243.032320][T26269] mkiss: ax0: crc mode is auto.
[  243.307967][T26278] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  243.315353][T26278] ip_vti0: Master is either lo or non-ether device
[  243.346755][T26280] binder: 26279:26280 unknown command 0
[  243.348652][T26280] binder: 26279:26280 ioctl c0306201 200000000080 returned -22
[  243.353129][T26280] binder: 26279:26280 ioctl c0306201 2000000003c0 returned -14
[  243.446742][T26286] fuse: Unknown parameter 'group_i00000000000000000000'
[  243.558245][ T5938] Bluetooth: hci2: command tx timeout
[  243.901406][   T10] usb 10-1: new high-speed USB device number 22 using dummy_hcd
[  243.953985][T26306] binder: 26305:26306 unknown command 0
[  243.955782][T26306] binder: 26305:26306 ioctl c0306201 200000000080 returned -22
[  243.959007][T26306] binder: 26305:26306 ioctl c0306201 2000000003c0 returned -14
[  243.996059][T26309] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  244.082234][   T10] usb 10-1: Using ep0 maxpacket: 32
[  244.085123][   T10] usb 10-1: config index 0 descriptor too short (expected 29220, got 36)
[  244.087897][   T10] usb 10-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  244.090643][   T10] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  244.095173][   T10] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 81
[  244.099930][   T10] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  244.102879][   T10] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18
[  244.106835][   T10] usb 10-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  244.109863][   T10] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.114466][   T10] usb 10-1: config 0 descriptor??
[  244.333356][   T24] usb 10-1: USB disconnect, device number 22
[  244.658348][T26338] warn_alloc: 3 callbacks suppressed
[  244.658361][T26338] syz.1.2585: vmalloc error: size 134221824, failed to allocated page array size 262152, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  244.665720][T26338] CPU: 1 UID: 0 PID: 26338 Comm: syz.1.2585 Not tainted syzkaller #0 PREEMPT(full) 
[  244.665734][T26338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  244.665741][T26338] Call Trace:
[  244.665745][T26338]  <TASK>
[  244.665749][T26338]  dump_stack_lvl+0x16c/0x1f0
[  244.665778][T26338]  warn_alloc+0x248/0x3a0
[  244.665795][T26338]  ? __pfx_warn_alloc+0x10/0x10
[  244.665815][T26338]  ? xskq_create+0xfb/0x1d0
[  244.665827][T26338]  ? __vmalloc_node_noprof+0xad/0xf0
[  244.665842][T26338]  __vmalloc_node_range_noprof+0xfe2/0x1480
[  244.665860][T26338]  ? xskq_create+0xfb/0x1d0
[  244.665875][T26338]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  244.665893][T26338]  ? xskq_create+0xfb/0x1d0
[  244.665905][T26338]  vmalloc_user_noprof+0x9e/0xe0
[  244.665918][T26338]  ? xskq_create+0xfb/0x1d0
[  244.665931][T26338]  xskq_create+0xfb/0x1d0
[  244.665944][T26338]  xsk_setsockopt+0x74e/0x9a0
[  244.665957][T26338]  ? __pfx_xsk_setsockopt+0x10/0x10
[  244.665969][T26338]  ? find_held_lock+0x2b/0x80
[  244.665984][T26338]  ? selinux_socket_setsockopt+0x6a/0x80
[  244.666001][T26338]  ? __pfx_xsk_setsockopt+0x10/0x10
[  244.666014][T26338]  do_sock_setsockopt+0xf3/0x1d0
[  244.666031][T26338]  __sys_setsockopt+0x1a0/0x230
[  244.666046][T26338]  __x64_sys_setsockopt+0xbd/0x160
[  244.666058][T26338]  ? do_syscall_64+0x91/0xfa0
[  244.666073][T26338]  ? lockdep_hardirqs_on+0x7c/0x110
[  244.666088][T26338]  do_syscall_64+0xcd/0xfa0
[  244.666104][T26338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.666115][T26338] RIP: 0033:0x7f5400f8efc9
[  244.666125][T26338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.666135][T26338] RSP: 002b:00007f5401e36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  244.666146][T26338] RAX: ffffffffffffffda RBX: 00007f54011e5fa0 RCX: 00007f5400f8efc9
[  244.666152][T26338] RDX: 0000000000000005 RSI: 000000000000011b RDI: 0000000000000003
[  244.666158][T26338] RBP: 00007f5401011f91 R08: 0000000000000004 R09: 0000000000000000
[  244.666164][T26338] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000
[  244.666171][T26338] R13: 00007f54011e6038 R14: 00007f54011e5fa0 R15: 00007ffdaa58d3b8
[  244.666185][T26338]  </TASK>
[  244.666189][T26338] Mem-Info:
[  244.747965][T26338] active_anon:28656 inactive_anon:0 isolated_anon:0
[  244.747965][T26338]  active_file:5994 inactive_file:50014 isolated_file:0
[  244.747965][T26338]  unevictable:1768 dirty:285 writeback:0
[  244.747965][T26338]  slab_reclaimable:13079 slab_unreclaimable:80733
[  244.747965][T26338]  mapped:26029 shmem:18796 pagetables:1505
[  244.747965][T26338]  sec_pagetables:314 bounce:0
[  244.747965][T26338]  kernel_misc_reclaimable:0
[  244.747965][T26338]  free:418138 free_pcp:15165 free_cma:0
[  244.767542][T26338] Node 0 active_anon:114624kB inactive_anon:0kB active_file:23976kB inactive_file:199796kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:104064kB dirty:1136kB writeback:0kB shmem:71648kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13808kB pagetables:5824kB sec_pagetables:1256kB all_unreclaimable? no Balloon:0kB
[  244.781677][T26338] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:260kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:52kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:112kB pagetables:196kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  244.794955][T26338] Node 0 DMA free:5272kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:416kB local_pcp:128kB free_cma:0kB
[  244.804796][T26338] lowmem_reserve[]: 0 1239 1239 1239 1239
[  244.806625][T26338] Node 0 DMA32 free:66904kB boost:26624kB min:54204kB low:61096kB high:67988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:114624kB inactive_anon:0kB active_file:23976kB inactive_file:199796kB unevictable:3536kB writepending:1136kB zspages:0kB present:2080628kB managed:1269500kB mlocked:0kB bounce:0kB free_pcp:36000kB local_pcp:12808kB free_cma:0kB
[  244.809476][  T841] usb 10-1: new high-speed USB device number 23 using dummy_hcd
[  244.816829][T26338] lowmem_reserve[]: 0 0 0 0 0
[  244.821636][T26338] Node 1 Normal free:1599872kB boost:0kB min:39660kB low:49572kB high:59484kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:260kB unevictable:3536kB writepending:4kB zspages:0kB present:2097152kB managed:1781892kB mlocked:0kB bounce:0kB free_pcp:24132kB local_pcp:6888kB free_cma:0kB
[  244.831517][T26338] lowmem_reserve[]: 0 0 0 0 0
[  244.833013][T26338] Node 0 DMA: 4*4kB (M) 3*8kB (M) 5*16kB (M) 7*32kB (UM) 3*64kB (M) 3*128kB (M) 3*256kB (UM) 1*512kB (M) 1*1024kB (U) 1*2048kB (U) 0*4096kB = 5272kB
[  244.837966][T26338] Node 0 DMA32: 471*4kB (UME) 120*8kB (UME) 35*16kB (UM) 92*32kB (UME) 31*64kB (UME) 15*128kB (UME) 3*256kB (M) 23*512kB (UME) 27*1024kB (UM) 8*2048kB (UM) 0*4096kB = 66828kB
[  244.845054][T26338] Node 1 Normal: 45*4kB (UME) 36*8kB (UME) 31*16kB (UME) 62*32kB (UME) 20*64kB (UME) 14*128kB (UME) 4*256kB (UM) 1*512kB (M) 3*1024kB (UME) 0*2048kB 388*4096kB (UM) = 1599876kB
[  244.850693][T26338] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  244.853639][T26338] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  244.856493][T26338] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  244.859329][T26338] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  244.862056][T26338] 74800 total pagecache pages
[  244.863576][T26338] 0 pages in swap cache
[  244.864889][T26338] Free swap  = 124996kB
[  244.866178][T26338] Total swap = 124996kB
[  244.867494][T26338] 1048443 pages RAM
[  244.869604][T26338] 0 pages HighMem/MovableOnly
[  244.872421][T26338] 281755 pages reserved
[  244.874483][T26338] 0 pages cma reserved
[  244.908575][   T81] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.001613][  T841] usb 10-1: Using ep0 maxpacket: 32
[  245.013700][  T841] usb 10-1: config index 0 descriptor too short (expected 29220, got 36)
[  245.016325][  T841] usb 10-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  245.019553][  T841] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  245.024019][  T841] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 81
[  245.027652][  T841] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  245.031153][  T841] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18
[  245.036334][  T841] usb 10-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  245.039699][  T841] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  245.050817][  T841] usb 10-1: config 0 descriptor??
[  245.061522][T26352] binder: 26349:26352 unknown command 0
[  245.063503][T26352] binder: 26349:26352 ioctl c0306201 200000000080 returned -22
[  245.068366][T26352] binder: 26349:26352 ioctl c0306201 2000000003c0 returned -14
[  245.128017][ T5935] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  245.131946][ T5935] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  245.136107][ T5935] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  245.139155][ T5935] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  245.142991][ T5935] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  245.222974][T26386] mkiss: ax0: crc mode is auto.
[  245.296858][T26355] chnl_net:caif_netlink_parms(): no params data found
[  245.401723][T26355] bridge0: port 1(bridge_slave_0) entered blocking state
[  245.405296][T26355] bridge0: port 1(bridge_slave_0) entered disabled state
[  245.409800][T26355] bridge_slave_0: entered allmulticast mode
[  245.412422][T26355] bridge_slave_0: entered promiscuous mode
[  245.415699][T26355] bridge0: port 2(bridge_slave_1) entered blocking state
[  245.418375][T26355] bridge0: port 2(bridge_slave_1) entered disabled state
[  245.422435][T26355] bridge_slave_1: entered allmulticast mode
[  245.426126][T26355] bridge_slave_1: entered promiscuous mode
[  245.475511][T26355] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  245.491759][   T81] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.502864][T26355] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  245.576876][   T81] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.592113][T26355] team0: Port device team_slave_0 added
[  245.597192][T26355] team0: Port device team_slave_1 added
[  245.683962][   T81] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.696141][T26355] batman_adv: batadv0: Adding interface: batadv_slave_0
[  245.699242][T26355] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  245.708393][T26355] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  245.713324][T26355] batman_adv: batadv0: Adding interface: batadv_slave_1
[  245.716047][T26355] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  245.726280][T26355] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  245.801823][T26355] hsr_slave_0: entered promiscuous mode
[  245.809183][T26355] hsr_slave_1: entered promiscuous mode
[  245.812138][T26355] debugfs: 'hsr0' already exists in 'hsr'
[  245.814583][T26355] Cannot create hsr debugfs directory
[  246.008497][   T81] bridge_slave_1: left allmulticast mode
[  246.010661][   T81] bridge_slave_1: left promiscuous mode
[  246.013515][   T81] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.024310][   T81] bridge_slave_0: left allmulticast mode
[  246.026660][   T81] bridge_slave_0: left promiscuous mode
[  246.029900][   T81] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.405407][   T81] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  246.411702][   T81] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  246.417566][   T81] bond0 (unregistering): Released all slaves
[  246.484475][T26355] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  246.489881][T26355] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  246.495320][T26355] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  246.500552][T26355] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  246.560646][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  246.560658][   T40] audit: type=1400 audit(2000000033.154:773): avc:  denied  { node_bind } for  pid=27399 comm="syz.1.2595" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  246.597246][T26355] 8021q: adding VLAN 0 to HW filter on device bond0
[  246.606631][T26355] 8021q: adding VLAN 0 to HW filter on device team0
[  246.614475][ T1146] bridge0: port 1(bridge_slave_0) entered blocking state
[  246.616950][ T1146] bridge0: port 1(bridge_slave_0) entered forwarding state
[  246.623858][T27407] binder: 27406:27407 unknown command 0
[  246.625679][T27407] binder: 27406:27407 ioctl c0306201 200000000080 returned -22
[  246.629437][T27407] binder: 27406:27407 ioctl c0306201 2000000003c0 returned -14
[  246.639455][ T1146] bridge0: port 2(bridge_slave_1) entered blocking state
[  246.641816][ T1146] bridge0: port 2(bridge_slave_1) entered forwarding state
[  246.682340][T27413] usb usb8: usbfs: process 27413 (syz.1.2598) did not claim interface 0 before use
[  246.758201][   T81] hsr_slave_0: left promiscuous mode
[  246.763052][   T81] hsr_slave_1: left promiscuous mode
[  246.765341][   T81] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  246.771591][   T81] batman_adv: batadv0: Removing interface: batadv_slave_0
[  246.774529][   T81] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  246.777956][   T81] batman_adv: batadv0: Removing interface: batadv_slave_1
[  246.813744][   T81] veth1_macvtap: left promiscuous mode
[  246.815555][   T81] veth0_macvtap: left promiscuous mode
[  246.817330][   T81] veth1_vlan: left promiscuous mode
[  246.819095][   T81] veth0_vlan: left promiscuous mode
[  246.983127][   T55] usb 10-1: USB disconnect, device number 23
[  247.085196][   T40] audit: type=1400 audit(2000000033.640:774): avc:  denied  { read } for  pid=27449 comm="syz.5.2603" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  247.110076][ T5935] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  247.129438][ T5935] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  247.140410][ T5935] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  247.145725][ T5935] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  247.150216][ T5935] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  247.326061][ T5938] Bluetooth: hci2: command tx timeout
[  247.714848][   T81] team0 (unregistering): Port device team_slave_1 removed
[  247.797350][   T81] team0 (unregistering): Port device team_slave_0 removed
[  248.399843][T26355] 8021q: adding VLAN 0 to HW filter on device batadv0
[  248.464828][T27489] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  248.476236][T27489] overlay: ./file1 is not a directory
[  248.561516][T27453] chnl_net:caif_netlink_parms(): no params data found
[  248.670254][T27625] autofs4:pid:27625:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(40960.1), cmd(0xc0189374)
[  248.674300][T27625] autofs4:pid:27625:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189374)
[  248.772580][T27453] bridge0: port 1(bridge_slave_0) entered blocking state
[  248.798093][T27453] bridge0: port 1(bridge_slave_0) entered disabled state
[  248.805307][T27453] bridge_slave_0: entered allmulticast mode
[  248.810104][T27453] bridge_slave_0: entered promiscuous mode
[  248.817656][T27453] bridge0: port 2(bridge_slave_1) entered blocking state
[  248.822003][T27453] bridge0: port 2(bridge_slave_1) entered disabled state
[  248.824995][T27453] bridge_slave_1: entered allmulticast mode
[  248.828955][T27453] bridge_slave_1: entered promiscuous mode
[  248.833962][T27800] binder: 27799:27800 unknown command 0
[  248.836415][T27800] binder: 27799:27800 ioctl c0306201 200000000080 returned -22
[  248.877957][   T40] audit: type=1400 audit(2000000035.323:775): avc:  denied  { read } for  pid=27862 comm="syz.5.2611" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  248.898102][T27453] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  248.907118][T27453] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  248.933793][   T40] audit: type=1400 audit(2000000035.370:776): avc:  denied  { bind } for  pid=27862 comm="syz.5.2611" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  248.944760][T26355] veth0_vlan: entered promiscuous mode
[  248.974874][T27453] team0: Port device team_slave_0 added
[  248.977429][T28045] binder: 28028:28045 unknown command 0
[  248.980337][T28045] binder: 28028:28045 ioctl c0306201 200000000080 returned -22
[  248.982119][T27453] team0: Port device team_slave_1 added
[  248.986023][T28045] binder: 28028:28045 ioctl c0306201 2000000003c0 returned -14
[  249.042117][T26355] veth1_vlan: entered promiscuous mode
[  249.045484][   T24] IPVS: starting estimator thread 0...
[  249.050241][T27453] batman_adv: batadv0: Adding interface: batadv_slave_0
[  249.052400][T27453] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  249.060974][T27453] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  249.067010][T27453] batman_adv: batadv0: Adding interface: batadv_slave_1
[  249.069811][T27453] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  249.081511][T27453] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  249.103566][T28173] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  249.116037][T28173] overlay: ./file1 is not a directory
[  249.150441][T28171] IPVS: using max 49 ests per chain, 117600 per kthread
[  249.175204][T27453] hsr_slave_0: entered promiscuous mode
[  249.178452][T27453] hsr_slave_1: entered promiscuous mode
[  249.181387][T27453] debugfs: 'hsr0' already exists in 'hsr'
[  249.184839][T27453] Cannot create hsr debugfs directory
[  249.326103][T26355] veth0_macvtap: entered promiscuous mode
[  249.330083][T26355] veth1_macvtap: entered promiscuous mode
[  249.362473][T26355] batman_adv: batadv0: Interface activated: batadv_slave_0
[  249.370004][T26355] batman_adv: batadv0: Interface activated: batadv_slave_1
[  249.374825][ T5938] Bluetooth: hci4: command tx timeout
[  249.407888][   T95] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  249.411298][   T95] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  249.419380][   T95] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  249.434881][T15681] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  249.456386][T27453] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  249.463599][T27453] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  249.478458][T27453] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  249.495481][T27453] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  249.514283][T28527] netlink: 'syz.5.2616': attribute type 5 has an invalid length.
[  249.534357][T15681] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  249.537837][T15681] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  249.550006][ T5938] Bluetooth: hci2: command tx timeout
[  249.574110][T28542] smb3: Unknown parameter 'aclv/infiniband/rdma_cm'
[  249.575108][T15681] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  249.577585][T28542] overlay: Unknown parameter 'obj_user'
[  249.583980][T15681] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  249.639129][T27453] 8021q: adding VLAN 0 to HW filter on device bond0
[  249.655228][T27453] 8021q: adding VLAN 0 to HW filter on device team0
[  249.663566][ T1191] bridge0: port 1(bridge_slave_0) entered blocking state
[  249.666540][ T1191] bridge0: port 1(bridge_slave_0) entered forwarding state
[  249.676912][   T81] bridge0: port 2(bridge_slave_1) entered blocking state
[  249.679886][   T81] bridge0: port 2(bridge_slave_1) entered forwarding state
[  249.801527][T28554] picdev_read: 5 callbacks suppressed
[  249.801543][T28554] kvm: pic: non byte read
[  249.807407][T28554] kvm: pic: non byte read
[  249.810528][T28554] kvm: pic: non byte read
[  249.814638][T28554] kvm: pic: non byte read
[  249.818513][T28554] kvm: pic: non byte read
[  249.821724][T28554] kvm: pic: non byte read
[  249.825974][T28554] kvm: pic: non byte read
[  249.829003][T28554] kvm: pic: non byte read
[  249.832164][T28554] kvm: pic: non byte read
[  249.835725][T28554] kvm: pic: non byte read
[  249.855638][T27453] 8021q: adding VLAN 0 to HW filter on device batadv0
[  249.990838][T27453] veth0_vlan: entered promiscuous mode
[  249.999312][T27453] veth1_vlan: entered promiscuous mode
[  250.012490][T28575] binder: 28574:28575 unknown command 0
[  250.014366][T28575] binder: 28574:28575 ioctl c0306201 200000000080 returned -22
[  250.024203][T27453] veth0_macvtap: entered promiscuous mode
[  250.030068][T27453] veth1_macvtap: entered promiscuous mode
[  250.045046][T27453] batman_adv: batadv0: Interface activated: batadv_slave_0
[  250.052953][T27453] batman_adv: batadv0: Interface activated: batadv_slave_1
[  250.054778][T28578] fuse: Bad value for 'fd'
[  250.058289][   T81] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  250.061383][   T81] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  250.064778][   T81] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  250.067458][   T81] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  250.113726][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  250.116229][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  250.131929][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  250.135187][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  250.150189][T28595] binder: 28594:28595 unknown command 0
[  250.152202][T28595] binder: 28594:28595 ioctl c0306201 200000000080 returned -22
[  250.155934][T28595] binder: 28594:28595 ioctl c0306201 2000000003c0 returned -14
[  250.347301][   T40] audit: type=1400 audit(2000000036.698:777): avc:  denied  { write } for  pid=28606 comm="syz.8.2624" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  250.688304][T28649] fuse: Bad value for 'fd'
[  250.694594][T28651] binder: 28650:28651 unknown command 0
[  250.696378][T28651] binder: 28650:28651 ioctl c0306201 200000000080 returned -22
[  250.699768][T28651] binder: 28650:28651 ioctl c0306201 2000000003c0 returned -14
[  250.723244][   T40] audit: type=1400 audit(2000000037.054:778): avc:  denied  { map } for  pid=28652 comm="syz.7.2630" path="/proc/sys/net/ipv4/vs/pmtu_disc" dev="proc" ino=71392 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_net_t tclass=file permissive=1
[  250.731092][   T40] audit: type=1400 audit(2000000037.054:779): avc:  denied  { execute } for  pid=28652 comm="syz.7.2630" path="/proc/sys/net/ipv4/vs/pmtu_disc" dev="proc" ino=71392 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_net_t tclass=file permissive=1
[  250.971079][   T40] audit: type=1400 audit(2000000037.287:780): avc:  denied  { setopt } for  pid=28679 comm="syz.7.2637" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  251.009780][T28686] fuse: Bad value for 'fd'
[  251.472806][T28702] binder: 28701:28702 unknown command 0
[  251.475139][T28702] binder: 28701:28702 ioctl c0306201 200000000080 returned -22
[  251.479813][T28702] binder: 28701:28702 ioctl c0306201 2000000003c0 returned -14
[  251.519176][T28706] binder: 28705:28706 unknown command 0
[  251.521168][T28706] binder: 28705:28706 ioctl c0306201 200000000080 returned -22
[  251.525165][T28706] binder: 28705:28706 ioctl c0306201 2000000003c0 returned -14
[  251.556638][T28709] binder: 28707:28709 unknown command 0
[  251.558654][T28709] binder: 28707:28709 ioctl c0306201 200000000080 returned -22
[  251.562829][T28709] binder: 28707:28709 ioctl c0306201 2000000003c0 returned -14
[  251.603903][   T40] audit: type=1400 audit(2000000037.877:781): avc:  denied  { bind } for  pid=28712 comm="syz.1.2644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  251.610423][ T5938] Bluetooth: hci4: command tx timeout
[  251.611225][   T40] audit: type=1400 audit(2000000037.877:782): avc:  denied  { accept } for  pid=28712 comm="syz.1.2644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  251.646429][T28718] kernel read not supported for file /policy (pid: 28718 comm: syz.1.2645)
[  251.687811][T28726] fuse: Invalid rootmode
[  251.770046][ T5938] Bluetooth: hci2: command tx timeout
[  251.964273][T28737] binder: BINDER_SET_CONTEXT_MGR already set
[  251.966827][T28737] binder: 28736:28737 ioctl 4018620d 200000000040 returned -16
[  251.974632][   T29] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  252.022220][T28739] netlink: 27 bytes leftover after parsing attributes in process `syz.5.2650'.
[  252.133396][   T29] usb 6-1: Using ep0 maxpacket: 32
[  252.135156][T28747] syzkaller1: entered promiscuous mode
[  252.136881][   T29] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  252.137845][T28747] syzkaller1: entered allmulticast mode
[  252.141328][   T29] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  252.149911][   T29] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  252.150604][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  252.150619][   T40] audit: type=1400 audit(2000000038.391:784): avc:  denied  { validate_trans } for  pid=28750 comm="syz.5.2653" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  252.153804][   T29] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  252.170274][   T29] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  252.174286][   T29] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  252.178352][   T29] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18
[  252.183318][   T29] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  252.186434][   T29] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.190786][   T29] usb 6-1: config 0 descriptor??
[  252.394157][T28767] 9pnet_fd: Insufficient options for proto=fd
[  252.399227][T28767] netlink: 'syz.5.2656': attribute type 10 has an invalid length.
[  252.402109][T28767] macvlan1: entered allmulticast mode
[  252.403905][T28767] veth1_vlan: entered allmulticast mode
[  252.405813][T28767] team0: Device macvlan1 is up. Set it down before adding it as a team port
[  252.411185][   T34] usb 6-1: USB disconnect, device number 23
[  252.413831][   T40] audit: type=1400 audit(2000000038.625:785): avc:  denied  { setattr } for  pid=28766 comm="syz.5.2656" name="" dev="pipefs" ino=70518 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  252.892655][T23730] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  253.063871][T23730] usb 6-1: Using ep0 maxpacket: 32
[  253.067635][T23730] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  253.070665][T23730] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  253.073440][T23730] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  253.076820][T23730] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  253.079839][T23730] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  253.082937][T23730] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  253.086130][T23730] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18
[  253.090042][T23730] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  253.092857][T23730] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  253.096964][T23730] usb 6-1: config 0 descriptor??
[  253.206663][T28786] bridge0: entered allmulticast mode
[  253.208592][T28786] bridge0: left allmulticast mode
[  253.241640][T28790] binder: BINDER_SET_CONTEXT_MGR already set
[  253.245338][T28790] binder: 28789:28790 ioctl 4018620d 200000000040 returned -16
[  253.314286][T28798] binder: 28796:28798 unknown command 0
[  253.316396][T28798] binder: 28796:28798 ioctl c0306201 200000000080 returned -22
[  253.319952][T28798] binder: 28796:28798 ioctl c0306201 2000000003c0 returned -14
[  253.434092][   T40] audit: type=1400 audit(2000000039.588:786): avc:  denied  { mounton } for  pid=28794 comm="syz.5.2660" path="/bus" dev="ramfs" ino=73748 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  253.439499][T28810] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  253.444929][T28810] overlayfs: failed to set xattr on upper
[  253.447203][T28810] overlayfs: ...falling back to redirect_dir=nofollow.
[  253.450095][T28810] overlayfs: ...falling back to metacopy=off.
[  253.452487][T28810] overlayfs: ...falling back to index=off.
[  253.454843][T28810] overlayfs: ...falling back to uuid=null.
[  253.524532][   T40] audit: type=1326 audit(2000000039.672:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28813 comm="syz.7.2663" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c32b8efc9 code=0x7ffc0000
[  253.533785][   T40] audit: type=1326 audit(2000000039.672:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28813 comm="syz.7.2663" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c32b8efc9 code=0x7ffc0000
[  253.543619][   T40] audit: type=1326 audit(2000000039.672:789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28813 comm="syz.7.2663" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c32b8efc9 code=0x7ffc0000
[  253.557708][   T40] audit: type=1326 audit(2000000039.672:790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28813 comm="syz.7.2663" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3c32b85e67 code=0x7ffc0000
[  253.567819][   T40] audit: type=1326 audit(2000000039.672:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28813 comm="syz.7.2663" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3c32b2b099 code=0x7ffc0000
[  253.574861][   T40] audit: type=1326 audit(2000000039.672:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28813 comm="syz.7.2663" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c32b8efc9 code=0x7ffc0000
[  253.584696][   T40] audit: type=1326 audit(2000000039.672:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28813 comm="syz.7.2663" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c32b8efc9 code=0x7ffc0000
[  253.692339][T28818] fuse: Invalid rootmode
[  253.750853][T28821] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2665'.
[  253.761706][T28821] hfs: can't find a HFS filesystem on dev sr0
[  253.823500][ T5938] Bluetooth: hci4: command tx timeout
[  253.994602][ T5938] Bluetooth: hci2: command tx timeout
[  254.628787][T28820] delete_channel: no stack
[  254.824081][T28864] netlink: 44 bytes leftover after parsing attributes in process `syz.7.2671'.
[  254.828012][T28864] netlink: 84 bytes leftover after parsing attributes in process `syz.7.2671'.
[  254.863579][T28867] binder: 28865:28867 unknown command 0
[  254.865987][T28867] binder: 28865:28867 ioctl c0306201 200000000080 returned -22
[  254.872146][T28867] binder: 28865:28867 ioctl c0306201 2000000003c0 returned -14
[  255.007151][   T53] usb 6-1: USB disconnect, device number 24
[  255.031131][T28879] binder: 28878:28879 unknown command 0
[  255.032982][T28879] binder: 28878:28879 ioctl c0306201 200000000080 returned -22
[  255.037501][T28879] binder: 28878:28879 ioctl c0306201 2000000003c0 returned -14
[  255.136109][T28870] ADFS-fs (nbd7): error: unable to read block 3, try 0
[  255.142223][T28870] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2673'.
[  255.372854][T28898] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  255.391100][T28898] overlay: ./file1 is not a directory
[  255.400551][T28898] evm: overlay not supported
[  255.515865][T28907] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2681'.
[  255.520196][T28907] netlink: 'syz.8.2681': attribute type 322 has an invalid length.
[  255.649780][T28922] ip6_tunnel: non-ECT from 0000:0000:0000:0000:0000:0000:0000:0000 with DS=0x3
[  255.723419][T28929] binder: 28928:28929 unknown command 0
[  255.725732][T28929] binder: 28928:28929 ioctl c0306201 200000000080 returned -22
[  255.730321][T28929] binder: 28928:28929 ioctl c0306201 2000000003c0 returned -14
[  255.779969][T28933] binder: 28932:28933 unknown command 0
[  255.783332][T28933] binder: 28932:28933 ioctl c0306201 200000000080 returned -22
[  255.788007][T28933] binder: 28932:28933 ioctl c0306201 2000000003c0 returned -14
[  255.874308][T28942] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  255.889225][T28942] overlay: ./file1 is not a directory
[  256.047062][ T5938] Bluetooth: hci4: command tx timeout
[  256.492712][T28964] netlink: 'syz.5.2693': attribute type 23 has an invalid length.
[  256.539459][T28976] netlink: 'syz.7.2694': attribute type 16 has an invalid length.
[  256.541976][T28976] netlink: 64138 bytes leftover after parsing attributes in process `syz.7.2694'.
[  256.566548][T28982] binder: 28981:28982 unknown command 0
[  256.568499][T28982] binder: 28981:28982 ioctl c0306201 200000000080 returned -22
[  256.573151][T28982] binder: 28981:28982 ioctl c0306201 2000000003c0 returned -14
[  256.664651][T28995] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  256.678954][T28995] overlay: ./file1 is not a directory
[  256.742387][T29004] tmpfs: Bad value for 'mpol'
[  257.017499][T29022] binder: 29021:29022 unknown command 0
[  257.019532][T29022] binder: 29021:29022 ioctl c0306201 200000000080 returned -22
[  257.022866][T29022] binder: 29021:29022 ioctl c0306201 2000000003c0 returned -14
[  257.062742][T29024] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2707'.
[  257.164503][T29030] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  257.176550][T29030] overlay: ./file1 is not a directory
[  257.503212][T29054] binder: 29053:29054 unknown command 0
[  257.505455][T29054] binder: 29053:29054 ioctl c0306201 200000000080 returned -22
[  257.509472][T29054] binder: 29053:29054 ioctl c0306201 2000000003c0 returned -14
[  257.516152][T29056] binder: 29055:29056 ioctl c0306201 2000000003c0 returned -14
[  257.629296][  T841] usb 10-1: new high-speed USB device number 24 using dummy_hcd
[  257.666614][T29071] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  257.676886][T29071] overlay: ./file1 is not a directory
[  257.685671][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  257.750934][T29078] bond1: peer notification delay (8) is not a multiple of miimon (100), value rounded to 0 ms
[  257.756906][T29078] 8021q: adding VLAN 0 to HW filter on device bond1
[  257.807207][T29115] netlink: 88 bytes leftover after parsing attributes in process `syz.7.2722'.
[  257.815715][   T40] kauditd_printk_skb: 1020 callbacks suppressed
[  257.815729][   T40] audit: type=1400 audit(2000000043.685:1814): avc:  denied  { map } for  pid=29114 comm="syz.7.2722" path="/36/file0/cgroup.kill" dev="9p" ino=71827989 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  257.827161][   T40] audit: type=1400 audit(2000000043.685:1815): avc:  denied  { execute } for  pid=29114 comm="syz.7.2722" path="/36/file0/cgroup.kill" dev="9p" ino=71827989 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  257.834744][  T841] usb 10-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  257.834768][  T841] usb 10-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  257.841486][  T841] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 66
[  257.847812][  T841] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  257.853052][  T841] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  257.859355][  T841] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  257.863175][  T841] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  257.866662][  T841] usb 10-1: Product: syz
[  257.868423][  T841] usb 10-1: Manufacturer: syz
[  257.878862][  T841] cdc_wdm 10-1:1.0: skipping garbage
[  257.879313][   T40] audit: type=1326 audit(2000000043.741:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29120 comm="syz.1.2720" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5400f8efc9 code=0x0
[  257.881119][  T841] cdc_wdm 10-1:1.0: skipping garbage
[  257.892212][  T841] cdc_wdm 10-1:1.0: cdc-wdm0: USB WDM device
[  257.894716][  T841] cdc_wdm 10-1:1.0: Unknown control protocol
[  258.092258][  T841] usb 10-1: USB disconnect, device number 24
[  258.103452][   T40] audit: type=1400 audit(2000000043.956:1817): avc:  denied  { getopt } for  pid=29138 comm="syz.1.2724" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  258.150333][T29147] binder: 29146:29147 unknown command 0
[  258.152818][T29147] binder: 29146:29147 ioctl c0306201 200000000080 returned -22
[  258.159138][T29147] binder: 29146:29147 ioctl c0306201 2000000003c0 returned -14
[  258.194244][T29149] binder: 29148:29149 ioctl c0306201 2000000003c0 returned -14
[  258.288850][T29155] fuse: Unknown parameter 'user_i00000000000000000000'
[  258.333444][T29161] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  258.344387][T29161] overlay: ./file1 is not a directory
[  258.528366][T29172] binder: 29171:29172 unknown command 0
[  258.530182][T29172] binder: 29171:29172 ioctl c0306201 200000000080 returned -22
[  258.533800][T29172] binder: 29171:29172 ioctl c0306201 2000000003c0 returned -14
[  258.549173][T29174] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2733'.
[  258.564617][   T24] usb 10-1: new high-speed USB device number 25 using dummy_hcd
[  258.575242][T29177] binder: 29176:29177 unknown command 0
[  258.577159][T29177] binder: 29176:29177 ioctl c0306201 200000000080 returned -22
[  258.580456][T29177] binder: 29176:29177 ioctl c0306201 2000000003c0 returned -14
[  258.663917][T29191] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  258.673033][T29191] overlay: ./file1 is not a directory
[  258.698855][   T24] usb 10-1: device descriptor read/64, error -71
[  258.725626][T29193] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2736'.
[  258.863163][T29197] binder: 29196:29197 unknown command 0
[  258.865587][T29197] binder: 29196:29197 ioctl c0306201 200000000080 returned -22
[  258.871197][T29197] binder: 29196:29197 ioctl c0306201 2000000003c0 returned -14
[  258.922327][T29199] team0: Device gtp0 is of different type
[  258.955315][   T24] usb 10-1: new high-speed USB device number 26 using dummy_hcd
[  259.019279][T29207] IPVS: length: 18 != 8
[  259.094185][   T24] usb 10-1: device descriptor read/64, error -71
[  259.096623][ T5938] Bluetooth: hci0: unexpected subevent 0x01 length: 28 > 18
[  259.146777][   T40] audit: type=1400 audit(2000000044.928:1818): avc:  denied  { read } for  pid=29238 comm="syz.7.2743" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  259.153089][T29239] efs: device does not support 512 byte blocks
[  259.154597][   T40] audit: type=1400 audit(2000000044.928:1819): avc:  denied  { open } for  pid=29238 comm="syz.7.2743" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  259.156368][T29239] device does not support 512 byte blocks
[  259.156368][T29239] 
[  259.212084][   T24] usb usb10-port1: attempt power cycle
[  259.223724][T29246] binder: 29245:29246 unknown command 0
[  259.225608][T29246] binder: 29245:29246 ioctl c0306201 200000000080 returned -22
[  259.229855][T29246] binder: 29245:29246 ioctl c0306201 2000000003c0 returned -14
[  259.357248][T29256] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  259.367546][T29256] overlay: ./file1 is not a directory
[  259.555376][T29261] binder: 29260:29261 unknown command 0
[  259.557527][T29261] binder: 29260:29261 ioctl c0306201 200000000080 returned -22
[  259.563066][T29261] binder: 29260:29261 ioctl c0306201 2000000003c0 returned -14
[  259.575352][   T24] usb 10-1: new high-speed USB device number 27 using dummy_hcd
[  259.602176][   T24] usb 10-1: device descriptor read/8, error -71
[  259.611381][T29264] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2749'.
[  259.615103][T29264] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2749'.
[  259.626497][   T81] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  259.626601][T29264] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2749'.
[  259.629266][   T81] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  259.629288][   T81] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  259.629306][   T81] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  259.646066][T29264] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2749'.
[  259.737869][T29268] program syz.7.2750 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  259.742832][T29268] xt_bpf: check failed: parse error
[  259.794956][T29276] netlink: 'syz.7.2752': attribute type 1 has an invalid length.
[  259.844810][T29281] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2753'.
[  259.853598][   T24] usb 10-1: new high-speed USB device number 28 using dummy_hcd
[  259.875725][   T24] usb 10-1: device descriptor read/8, error -71
[  259.890179][T29284] binder: 29283:29284 unknown command 0
[  259.893107][T29284] binder: 29283:29284 ioctl c0306201 200000000080 returned -22
[  259.899333][T29284] binder: 29283:29284 ioctl c0306201 2000000003c0 returned -14
[  259.992550][   T24] usb usb10-port1: unable to enumerate USB device
[  260.162634][T29300] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  260.167474][T29303] bond2: peer notification delay (8) is not a multiple of miimon (100), value rounded to 0 ms
[  260.171450][T29303] bond2: option arp_interval: mode dependency failed, not supported in mode balance-tlb(5)
[  260.175929][T29300] overlay: ./file1 is not a directory
[  260.183720][T29303] bond2 (unregistering): Released all slaves
[  260.294283][   T40] audit: type=1400 audit(2000000046.004:1820): avc:  denied  { setopt } for  pid=29372 comm="syz.7.2759" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  260.430448][T29382] picdev_read: 20 callbacks suppressed
[  260.430464][T29382] kvm: pic: non byte read
[  260.436004][T29382] kvm: pic: non byte read
[  260.439616][T29382] kvm: pic: non byte read
[  260.444191][T29382] kvm: pic: non byte read
[  260.447263][T29382] kvm: pic: non byte read
[  260.450346][T29382] kvm: pic: non byte read
[  260.454274][T29382] kvm: pic: non byte read
[  260.457438][T29382] kvm: pic: non byte read
[  260.460535][T29382] kvm: pic: non byte read
[  260.463901][T29382] kvm: pic: non byte read
[  260.603294][T29393] fuse: Bad value for 'fd'
[  260.644613][ T6020] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  260.804951][ T6020] usb 6-1: Using ep0 maxpacket: 8
[  260.808058][ T6020] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  260.810688][ T6020] usb 6-1: config 0 has no interface number 0
[  260.812674][ T6020] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  260.816252][ T6020] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  260.819905][ T6020] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  260.823370][ T6020] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  260.827650][ T6020] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  260.830579][ T6020] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  260.835488][ T6020] usb 6-1: config 0 descriptor??
[  260.841415][ T6020] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  260.994239][T29419] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2768'.
[  261.198848][T29430] binder: 29428:29430 unknown command 0
[  261.201424][T29430] binder: 29428:29430 ioctl c0306201 200000000080 returned -22
[  261.206927][T29430] binder: 29428:29430 ioctl c0306201 2000000003c0 returned -14
[  261.262974][T29440] binder: 29439:29440 unknown command 0
[  261.265819][T29440] binder: 29439:29440 ioctl c0306201 200000000080 returned -22
[  261.267349][ T5935] Bluetooth: hci0: command tx timeout
[  261.271246][T29440] binder: 29439:29440 ioctl c0306201 2000000003c0 returned -14
[  261.360519][T29450] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  261.361514][   T40] audit: type=1400 audit(2000000046.995:1821): avc:  denied  { setopt } for  pid=29448 comm="syz.8.2773" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  261.372514][T29450] CIFS mount error: No usable UNC path provided in device string!
[  261.372514][T29450] 
[  261.386183][T29450] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  261.473251][T29461] binder: 29459:29461 unknown command 0
[  261.475371][T29461] binder: 29459:29461 ioctl c0306201 200000000080 returned -22
[  261.480538][T29461] binder: 29459:29461 ioctl 4018620d 0 returned -22
[  261.480912][T29464] sctp: [Deprecated]: syz.5.2778 (pid 29464) Use of int in max_burst socket option deprecated.
[  261.480912][T29464] Use struct sctp_assoc_value instead
[  261.483460][T29461] binder: 29459:29461 ioctl c0306201 2000000003c0 returned -14
[  261.491367][T29465] xt_hashlimit: Unknown mode mask 84, kernel too old?
[  261.517653][T29472] binder: 29471:29472 unknown command 0
[  261.519698][T29472] binder: 29471:29472 ioctl c0306201 200000000080 returned -22
[  261.523263][T29475] binder: 29474:29475 unknown command 0
[  261.524763][T29472] binder: 29471:29472 ioctl c0306201 2000000003c0 returned -14
[  261.525029][T29475] binder: 29474:29475 ioctl c0306201 200000000080 returned -22
[  261.534327][T29475] binder: 29474:29475 ioctl c0306201 2000000003c0 returned -14
[  261.569178][   T40] audit: type=1400 audit(2000000047.192:1822): avc:  denied  { remount } for  pid=29479 comm="syz.5.2782" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  261.610977][   T40] audit: type=1400 audit(2000000047.238:1823): avc:  denied  { execute } for  pid=29492 comm="syz.7.2786" path="/dev/adsp1" dev="devtmpfs" ino=1326 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1
[  261.611573][T29494] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2786'.
[  262.593350][T29527] binder: 29526:29527 unknown command 0
[  262.595754][T29527] binder: 29526:29527 ioctl c0306201 200000000080 returned -22
[  262.600319][T29527] binder: 29526:29527 ioctl 4018620d 0 returned -22
[  262.603690][T29527] binder: 29526:29527 ioctl c0306201 2000000003c0 returned -14
[  262.647928][T29530] binder: 29529:29530 unknown command 0
[  262.649815][T29530] binder: 29529:29530 ioctl c0306201 200000000080 returned -22
[  262.655133][T29530] binder: 29529:29530 ioctl c0306201 2000000003c0 returned -14
[  262.763759][T29606] binder: 29604:29606 unknown command 0
[  262.766209][T29606] binder: 29604:29606 ioctl c0306201 200000000080 returned -22
[  262.771269][T29606] binder: 29604:29606 ioctl c0306201 2000000003c0 returned -14
[  263.067979][T29625] binder: 29624:29625 unknown command 0
[  263.069843][T29625] binder: 29624:29625 ioctl c0306201 200000000080 returned -22
[  263.074060][T29625] binder: 29624:29625 ioctl 4018620d 0 returned -22
[  263.076654][T29625] binder: 29624:29625 ioctl c0306201 2000000003c0 returned -14
[  263.114597][T29630] binder: 29629:29630 unknown command 0
[  263.116618][T29630] binder: 29629:29630 ioctl c0306201 200000000080 returned -22
[  263.119399][T29630] binder: 29629:29630 ioctl c0306201 2000000003c0 returned -14
[  263.246022][ T6019] usb 6-1: USB disconnect, device number 25
[  263.250259][ T6019] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[  263.430319][   T40] audit: type=1400 audit(2000000304.935:1824): avc:  denied  { map } for  pid=29654 comm="syz.7.2804" path="/60" dev="tmpfs" ino=335 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  263.439211][   T40] audit: type=1400 audit(2000000304.935:1825): avc:  denied  { execute } for  pid=29654 comm="syz.7.2804" path="/60" dev="tmpfs" ino=335 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  263.640794][T29667] netlink: 'syz.1.2807': attribute type 4 has an invalid length.
[  263.793202][T29674] fuse: Unknown parameter '0x0000000000000004'
[  264.323846][T29708] binder: 29707:29708 unknown command 0
[  264.326138][T29708] binder: 29707:29708 ioctl c0306201 200000000080 returned -22
[  264.330777][T29708] binder: 29707:29708 ioctl c0306201 0 returned -14
[  264.404940][T29704] netlink: 'syz.8.2815': attribute type 1 has an invalid length.
[  264.409222][T29704] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  264.412866][T29704] batadv_slave_0: entered promiscuous mode
[  264.416851][T29704] batadv_slave_0: entered allmulticast mode
[  264.460834][T29719] trusted_key: encrypted_key: insufficient parameters specified
[  264.497049][T29722] CIFS: iocharset name too long
[  264.500208][T29722] random: crng reseeded on system resumption
[  264.522550][T29725] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[  264.674714][T29738] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2822'.
[  264.677907][T29738] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2822'.
[  264.743847][T29738] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2822'.
[  264.747229][T29738] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2822'.
[  265.103704][T29763] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2826'.
[  265.148758][T29719] syz.1.2818 (29719): drop_caches: 1
[  265.227397][   T40] audit: type=1400 audit(2000000306.618:1826): avc:  denied  { write } for  pid=29762 comm="syz.7.2826" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  265.261951][T29770] binder: 29769:29770 unknown command 0
[  265.263833][T29770] binder: 29769:29770 ioctl c0306201 200000000080 returned -22
[  265.268652][T29770] binder: 29769:29770 ioctl c0306201 2000000003c0 returned -14
[  265.299307][T29772] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2828'.
[  265.330248][T29774] binder: 29773:29774 unknown command 0
[  265.332576][T29774] binder: 29773:29774 ioctl c0306201 200000000080 returned -22
[  265.371750][T29776] binder: 29775:29776 unknown command 0
[  265.374132][T29776] binder: 29775:29776 ioctl c0306201 200000000080 returned -22
[  265.378673][T29776] binder: 29775:29776 ioctl c0306201 2000000003c0 returned -14
[  265.418358][T29780] binder: 29779:29780 unknown command 0
[  265.420791][T29780] binder: 29779:29780 ioctl c0306201 200000000080 returned -22
[  265.425811][T29780] binder: 29779:29780 ioctl c0306201 2000000003c0 returned -14
[  265.473411][T29722] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  265.474752][T29783] netlink: 'syz.1.2832': attribute type 4 has an invalid length.
[  265.619277][T29794] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2836'.
[  265.675187][T29800] binder: 29799:29800 unknown command 0
[  265.677201][T29800] binder: 29799:29800 ioctl c0306201 200000000080 returned -22
[  265.681327][T29800] binder: 29799:29800 ioctl c0306201 2000000003c0 returned -14
[  265.783496][T29811] fuse: Unknown parameter 'fd0x0000000000000004'
[  265.794369][T29804] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2839'.
[  265.797806][T29804] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  265.832225][T29814] hpfs: Unknown parameter 'norecovery'
[  265.894060][T29819] netlink: 'syz.1.2843': attribute type 4 has an invalid length.
[  266.013691][T29823] kvm: pic: level sensitive irq not supported
[  266.014023][T29823] picdev_read: 65 callbacks suppressed
[  266.014035][T29823] kvm: pic: non byte read
[  266.072476][T29834] binder: 29833:29834 unknown command 0
[  266.074620][T29834] binder: 29833:29834 ioctl c0306201 200000000080 returned -22
[  266.080145][T29834] binder: 29833:29834 ioctl c0306201 2000000003c0 returned -14
[  266.139477][T29839] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  266.139477][T29839] The task syz.5.2845 (29839) triggered the difference, watch for misbehavior.
[  266.220587][   T40] audit: type=1400 audit(2000000307.543:1827): avc:  denied  { setopt } for  pid=29837 comm="syz.7.2848" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  266.220873][T29838] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2848'.
[  266.276873][T23730] IPVS: starting estimator thread 0...
[  266.376719][T29850] IPVS: using max 49 ests per chain, 117600 per kthread
[  266.480642][   T40] audit: type=1400 audit(2000000307.786:1828): avc:  denied  { create } for  pid=29859 comm="syz.7.2851" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  266.481564][T29860] Invalid source name
[  266.489088][   T40] audit: type=1400 audit(2000000307.786:1829): avc:  denied  { mounton } for  pid=29859 comm="syz.7.2851" path="/74/file0" dev="tmpfs" ino=412 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  266.502056][T29860] UBIFS error (pid: 29860): cannot open "./file0", error -22
[  266.542101][T29866] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2852'.
[  266.644682][T29866] hsr_slave_1 (unregistering): left promiscuous mode
[  266.740537][ T5935] Bluetooth: hci0: command 0x0c1a tx timeout
[  266.933942][T29895] binder: 29894:29895 unknown command 0
[  266.936343][T29895] binder: 29894:29895 ioctl c0306201 200000000080 returned -22
[  266.942316][T29895] binder: 29894:29895 ioctl c0306201 2000000003c0 returned -14
[  266.983819][T29899] binder: 29897:29899 unknown command 0
[  266.985160][T29900] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  266.985639][T29899] binder: 29897:29899 ioctl c0306201 200000000080 returned -22
[  266.989208][T29900] overlayfs: missing 'lowerdir'
[  267.027097][T29907] binder: 29905:29907 unknown command 0
[  267.030105][T29907] binder: 29905:29907 ioctl c0306201 200000000080 returned -22
[  267.035256][T29907] binder: 29905:29907 ioctl c0306201 2000000003c0 returned -14
[  267.069157][T29911] netlink: 'syz.1.2860': attribute type 4 has an invalid length.
[  267.177599][T29935] binder: 29934:29935 unknown command 0
[  267.180667][T29935] binder: 29934:29935 ioctl c0306201 200000000080 returned -22
[  267.184964][T29935] binder: 29934:29935 ioctl c0306201 2000000003c0 returned -14
[  267.274670][T29941] xt_CT: No such helper "pptp"
[  267.295216][T29944] binder: 29943:29944 unknown command 0
[  267.298058][T29944] binder: 29943:29944 ioctl c0306201 200000000080 returned -22
[  267.329442][T29952] binder: 29951:29952 unknown command 0
[  267.331144][T29952] binder: 29951:29952 ioctl c0306201 200000000080 returned -22
[  267.334595][T29952] binder: 29951:29952 ioctl c0306201 2000000003c0 returned -14
[  267.356987][T29957] netlink: 'syz.7.2872': attribute type 4 has an invalid length.
[  267.391492][T29961] binder: 29960:29961 unknown command 0
[  267.394192][T29961] binder: 29960:29961 ioctl c0306201 200000000080 returned -22
[  267.399108][T29961] binder: 29960:29961 ioctl c0306201 2000000003c0 returned -14
[  267.409662][   T40] audit: type=1326 audit(2000000308.656:1830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29962 comm="syz.7.2876" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c32b8efc9 code=0x7ffc0000
[  267.420646][   T40] audit: type=1326 audit(2000000308.656:1831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29962 comm="syz.7.2876" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c32b8efc9 code=0x7ffc0000
[  267.433868][   T40] audit: type=1326 audit(2000000308.656:1832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29962 comm="syz.7.2876" exe="/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f3c32b8efc9 code=0x7ffc0000
[  267.442731][   T40] audit: type=1326 audit(2000000308.656:1833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29962 comm="syz.7.2876" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c32b8efc9 code=0x7ffc0000
[  267.478676][T29975] binder: 29973:29975 unknown command 0
[  267.480797][T29975] binder: 29973:29975 ioctl c0306201 200000000080 returned -22
[  267.523240][T29979] input: syz0 as /devices/virtual/input/input17
[  267.528691][T29988] binder: 29984:29988 unknown command 0
[  267.530563][T29988] binder: 29984:29988 ioctl c0306201 200000000080 returned -22
[  267.534664][T29988] binder: 29984:29988 ioctl c0306201 2000000003c0 returned -14
[  267.615418][T30001] overlayfs: failed to resolve './file1': -2
[  267.652802][T30007] binder: 30006:30007 unknown command 0
[  267.655272][T30007] binder: 30006:30007 ioctl c0306201 200000000080 returned -22
[  267.661845][T30007] binder: 30006:30007 ioctl c0306201 2000000003c0 returned -14
[  267.668278][T30001] overlay: ./file1 is not a directory
[  267.733794][T30019] binder: 30018:30019 unknown command 0
[  267.736896][T30019] binder: 30018:30019 ioctl c0306201 200000000080 returned -22
[  267.742158][T30019] binder: 30018:30019 ioctl c0306201 2000000003c0 returned -14
[  267.743844][T30021] binder: 30020:30021 unknown command 0
[  267.746491][T30019] binder: 30018:30019 ioctl c0306201 0 returned -14
[  267.748780][T30021] binder: 30020:30021 ioctl c0306201 200000000080 returned -22
[  267.758859][T30021] binder: 30020:30021 ioctl c0306201 2000000003c0 returned -14
[  267.963982][T30043] binder: 30041:30043 unknown command 0
[  267.966391][T30043] binder: 30041:30043 ioctl c0306201 200000000080 returned -22
[  267.972215][T30043] binder: 30041:30043 ioctl c0306201 2000000003c0 returned -14
[  268.005197][T30050] 9pnet_virtio: no channels available for device syz
[  268.009179][T30050] overlayfs: failed to resolve './file1': -2
[  268.019937][T30053] binder: 30052:30053 unknown command 0
[  268.022295][T30053] binder: 30052:30053 ioctl c0306201 200000000080 returned -22
[  268.027761][T30053] binder: 30052:30053 ioctl c0306201 2000000003c0 returned -14
[  268.031211][T30053] binder: 30052:30053 ioctl c0306201 0 returned -14
[  268.075052][T30059] Failed to initialize the IGMP autojoin socket (err -2)
[  268.078197][T30058] Failed to initialize the IGMP autojoin socket (err -2)
[  268.090507][T30056] ALSA: seq fatal error: cannot create timer (-19)
[  268.122109][T30063] binder: 30062:30063 unknown command 0
[  268.124130][T30063] binder: 30062:30063 ioctl c0306201 200000000080 returned -22
[  268.127819][T30063] binder: 30062:30063 ioctl c0306201 2000000003c0 returned -14
[  268.186971][T30072] binder: 30071:30072 unknown command 0
[  268.189251][T30072] binder: 30071:30072 ioctl c0306201 200000000080 returned -22
[  268.194059][T30072] binder: 30071:30072 ioctl c0306201 2000000003c0 returned -14
[  268.232263][T30078] binder: 30077:30078 unknown command 0
[  268.234434][T30078] binder: 30077:30078 ioctl c0306201 200000000080 returned -22
[  268.238519][T30078] binder: 30077:30078 ioctl c0306201 2000000003c0 returned -14
[  268.241587][T30078] binder: 30077:30078 ioctl c0306201 0 returned -14
[  268.257176][T30081] Illegal XDP return value 3596462022 on prog  (id 191) dev N/A, expect packet loss!
[  268.497864][T30170] binder: 30168:30170 unknown command 0
[  268.542358][T30170] binder: 30168:30170 ioctl c0306201 200000000080 returned -22
[  268.560051][T30194] binder: 30168:30194 ioctl c0306201 2000000003c0 returned -14
[  268.622594][    C1] ------------[ cut here ]------------
[  268.625805][    C1] ODEBUG: free active (active state 0) object: ffff888026a1e090 object type: timer_list hint: rose_t0timer_expiry+0x0/0x150
[  268.631536][    C1] WARNING: CPU: 1 PID: 5341 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0
[  268.635573][    C1] Modules linked in:
[  268.637699][    C1] CPU: 1 UID: 0 PID: 5341 Comm: udevd Not tainted syzkaller #0 PREEMPT(full) 
[  268.643066][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  268.647636][    C1] RIP: 0010:debug_print_object+0x1a2/0x2b0
[  268.650085][    C1] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 20 7f f0 8b 4c 89 e6 48 c7 c7 a0 73 f0 8b e8 cf e0 ce fc 90 <0f> 0b 90 90 58 83 05 d6 ca d5 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[  268.657607][    C1] RSP: 0018:ffffc900006a0a18 EFLAGS: 00010282
[  268.660082][    C1] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817b3ee8
[  268.663480][    C1] RDX: ffff888024e60000 RSI: ffffffff817b3ef5 RDI: 0000000000000001
[  268.666825][    C1] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  268.670181][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff8bf07a40
[  268.673483][    C1] R13: ffffffff8b901fe0 R14: ffffffff8a4d6ca0 R15: ffffc900006a0b18
[  268.676797][    C1] FS:  00007f3c8584c880(0000) GS:ffff8880d6b0a000(0000) knlGS:0000000000000000
[  268.680595][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  268.683453][    C1] CR2: 0000200000000380 CR3: 0000000031440000 CR4: 0000000000352ef0
[  268.683488][    C1] Call Trace:
[  268.688423][    C1]  <IRQ>
[  268.689701][    C1]  ? __pfx_rose_t0timer_expiry+0x10/0x10
[  268.692138][    C1]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  268.694649][    C1]  debug_check_no_obj_freed+0x4b7/0x600
[  268.697131][    C1]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  268.699865][    C1]  ? mark_held_locks+0x49/0x80
[  268.701938][    C1]  ? kasan_quarantine_put+0x10a/0x240
[  268.704246][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[  268.706350][    C1]  kfree+0x291/0x6d0
[  268.708176][    C1]  ? rose_timer_expiry+0x53f/0x630
[  268.710457][    C1]  ? rose_timer_expiry+0x53f/0x630
[  268.712545][    C1]  rose_timer_expiry+0x53f/0x630
[  268.714622][    C1]  ? __pfx_rose_timer_expiry+0x10/0x10
[  268.716907][    C1]  call_timer_fn+0x19a/0x620
[  268.718996][    C1]  ? __pfx_call_timer_fn+0x10/0x10
[  268.721188][    C1]  ? mark_held_locks+0x49/0x80
[  268.723265][    C1]  ? __pfx_rose_timer_expiry+0x10/0x10
[  268.725635][    C1]  __run_timers+0x6ef/0x960
[  268.727595][    C1]  ? __pfx___run_timers+0x10/0x10
[  268.729888][    C1]  run_timer_base+0x114/0x190
[  268.732064][    C1]  ? __pfx_run_timer_base+0x10/0x10
[  268.734309][    C1]  run_timer_softirq+0x1a/0x40
[  268.736429][    C1]  handle_softirqs+0x219/0x8e0
[  268.738508][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  268.740868][    C1]  __irq_exit_rcu+0x109/0x170
[  268.742928][    C1]  irq_exit_rcu+0x9/0x30
[  268.744762][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  268.747167][    C1]  </IRQ>
[  268.748447][    C1]  <TASK>
[  268.749741][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  268.752412][    C1] RIP: 0010:preempt_schedule_irq+0x4c/0x90
[  268.754938][    C1] Code: df 55 65 48 8b 2d ac e2 3f 08 53 48 89 eb 48 c1 eb 03 48 01 c3 bf 01 00 00 00 e8 5f 38 28 f6 e8 ba 8f 63 f6 fb bf 01 00 00 00 <e8> af 99 ff ff 9c 58 fa f6 c4 02 75 1e bf 01 00 00 00 e8 4d c3 27
[  268.763077][    C1] RSP: 0018:ffffc90004397258 EFLAGS: 00000202
[  268.765705][    C1] RAX: 000000000067cc85 RBX: ffffed10049cc000 RCX: 0000000000000006
[  268.769048][    C1] RDX: 0000000000000000 RSI: ffffffff8da2a287 RDI: 0000000000000001
[  268.772490][    C1] RBP: ffff888024e60000 R08: 0000000000000001 R09: 0000000000000001
[  268.775862][    C1] R10: ffffffff9081f6d7 R11: 0000000000000000 R12: 0000000000000000
[  268.779214][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  268.782609][    C1]  ? preempt_schedule_irq+0x46/0x90
[  268.784951][    C1]  irqentry_exit+0x36/0x90
[  268.786874][    C1]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  268.789204][    C1] RIP: 0010:lock_acquire+0x62/0x350
[  268.791345][    C1] Code: 74 08 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 12 0b e9 0e 0f 82 74 02 00 00 8b 35 8a 3b e9 0e 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 29 74 08 12 0f 85 c7 02 00 00 48 83 c4
[  268.799014][    C1] RSP: 0018:ffffc90004397320 EFLAGS: 00000206
[  268.801605][    C1] RAX: 0000000000000046 RBX: ffffffff8e3c4460 RCX: 0000000038390cb5
[  268.804743][    C1] RDX: 0000000000000000 RSI: ffffffff8da048cb RDI: ffffffff8bf06e40
[  268.807245][    C1] RBP: 0000000000000002 R08: ea061aeeb3dee3be R09: 0000000000000000
[  268.809743][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  268.812248][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  268.814681][    C1]  ? unwind_next_frame+0x3f4/0x20a0
[  268.816315][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  268.818161][    C1]  unwind_next_frame+0xd1/0x20a0
[  268.819730][    C1]  ? unwind_next_frame+0xbd/0x20a0
[  268.821277][    C1]  ? do_filp_open+0x20b/0x470
[  268.822761][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  268.824706][    C1]  arch_stack_walk+0x94/0x100
[  268.826245][    C1]  ? do_filp_open+0x20b/0x470
[  268.827735][    C1]  stack_trace_save+0x8e/0xc0
[  268.829222][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  268.830854][    C1]  ? kasan_save_stack+0x42/0x60
[  268.832357][    C1]  ? __lock_acquire+0x622/0x1c90
[  268.833902][    C1]  kasan_save_stack+0x33/0x60
[  268.835348][    C1]  ? kasan_save_stack+0x33/0x60
[  268.836913][    C1]  ? kasan_save_track+0x14/0x30
[  268.838461][    C1]  ? __kasan_kmalloc+0xaa/0xb0
[  268.840009][    C1]  ? __kmalloc_noprof+0x32f/0x880
[  268.841622][    C1]  ? security_inode_init_security+0x13f/0x390
[  268.843543][    C1]  ? shmem_mknod+0x22e/0x450
[  268.845013][    C1]  ? lookup_open.isra.0+0x11d3/0x1580
[  268.846708][    C1]  ? path_openat+0x893/0x2cb0
[  268.848303][    C1]  ? do_filp_open+0x20b/0x470
[  268.849781][    C1]  kasan_save_track+0x14/0x30
[  268.851290][    C1]  __kasan_kmalloc+0xaa/0xb0
[  268.852681][    C1]  __kmalloc_noprof+0x32f/0x880
[  268.854227][    C1]  ? security_inode_init_security+0x13f/0x390
[  268.856132][    C1]  ? security_inode_init_security+0x13f/0x390
[  268.858082][    C1]  security_inode_init_security+0x13f/0x390
[  268.859962][    C1]  ? __pfx_shmem_initxattrs+0x10/0x10
[  268.861670][    C1]  ? __pfx_security_inode_init_security+0x10/0x10
[  268.863690][    C1]  shmem_mknod+0x22e/0x450
[  268.865323][    C1]  ? __pfx_shmem_create+0x10/0x10
[  268.867297][    C1]  lookup_open.isra.0+0x11d3/0x1580
[  268.869410][    C1]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  268.871586][    C1]  ? find_held_lock+0x2b/0x80
[  268.873402][    C1]  ? __pfx_down_write+0x10/0x10
[  268.875331][    C1]  path_openat+0x893/0x2cb0
[  268.877111][    C1]  ? __pfx_path_openat+0x10/0x10
[  268.879111][    C1]  ? __lock_acquire+0xb8a/0x1c90
[  268.881133][    C1]  do_filp_open+0x20b/0x470
[  268.882718][    C1]  ? __pfx_do_filp_open+0x10/0x10
[  268.884466][    C1]  ? alloc_fd+0x471/0x7d0
[  268.885887][    C1]  do_sys_openat2+0x11b/0x1d0
[  268.887506][    C1]  ? __pfx_do_sys_openat2+0x10/0x10
[  268.889261][    C1]  ? rcu_is_watching+0x12/0xc0
[  268.890890][    C1]  ? __rseq_handle_notify_resume+0x66e/0x10c0
[  268.892855][    C1]  ? blkcg_maybe_throttle_current+0x650/0xf30
[  268.894818][    C1]  __x64_sys_openat+0x174/0x210
[  268.896351][    C1]  ? __pfx___x64_sys_openat+0x10/0x10
[  268.898081][    C1]  do_syscall_64+0xcd/0xfa0
[  268.899527][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.901704][    C1] RIP: 0033:0x7f3c850a7407
[  268.903531][    C1] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  268.911072][    C1] RSP: 002b:00007fff23b16ad0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  268.914457][    C1] RAX: ffffffffffffffda RBX: 00007f3c8584c880 RCX: 00007f3c850a7407
[  268.917531][    C1] RDX: 0000000000080141 RSI: 000055b91726902e RDI: ffffffffffffff9c
[  268.920561][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  268.923972][    C1] R10: 00000000000001a4 R11: 0000000000000202 R12: 00000000ffffffff
[  268.927215][    C1] R13: 00000000ffffffff R14: ffffffffffffffff R15: 0000000000000000
[  268.930179][    C1]  </TASK>
[  268.931155][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  268.933236][    C1] CPU: 1 UID: 0 PID: 5341 Comm: udevd Not tainted syzkaller #0 PREEMPT(full) 
[  268.936356][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  268.939648][    C1] Call Trace:
[  268.940707][    C1]  <IRQ>
[  268.941623][    C1]  dump_stack_lvl+0x3d/0x1f0
[  268.943140][    C1]  vpanic+0x640/0x6f0
[  268.944768][    C1]  ? debug_print_object+0x1a2/0x2b0
[  268.946941][    C1]  panic+0xca/0xd0
[  268.948550][    C1]  ? __pfx_panic+0x10/0x10
[  268.950467][    C1]  ? check_panic_on_warn+0x1f/0xb0
[  268.952682][    C1]  check_panic_on_warn+0xab/0xb0
[  268.954825][    C1]  __warn+0xf6/0x3c0
[  268.956476][    C1]  ? debug_print_object+0x1a2/0x2b0
[  268.958641][    C1]  report_bug+0x3c3/0x580
[  268.960247][    C1]  ? debug_print_object+0x1a2/0x2b0
[  268.962041][    C1]  handle_bug+0x184/0x210
[  268.963704][    C1]  exc_invalid_op+0x17/0x50
[  268.965643][    C1]  asm_exc_invalid_op+0x1a/0x20
[  268.967742][    C1] RIP: 0010:debug_print_object+0x1a2/0x2b0
[  268.970185][    C1] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 20 7f f0 8b 4c 89 e6 48 c7 c7 a0 73 f0 8b e8 cf e0 ce fc 90 <0f> 0b 90 90 58 83 05 d6 ca d5 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[  268.977979][    C1] RSP: 0018:ffffc900006a0a18 EFLAGS: 00010282
[  268.980497][    C1] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817b3ee8
[  268.983391][    C1] RDX: ffff888024e60000 RSI: ffffffff817b3ef5 RDI: 0000000000000001
[  268.985951][    C1] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  268.988773][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff8bf07a40
[  268.991389][    C1] R13: ffffffff8b901fe0 R14: ffffffff8a4d6ca0 R15: ffffc900006a0b18
[  268.993902][    C1]  ? __pfx_rose_t0timer_expiry+0x10/0x10
[  268.995804][    C1]  ? __warn_printk+0x198/0x350
[  268.997304][    C1]  ? __warn_printk+0x1a5/0x350
[  268.998845][    C1]  ? debug_print_object+0x1a1/0x2b0
[  269.000561][    C1]  ? __pfx_rose_t0timer_expiry+0x10/0x10
[  269.002357][    C1]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  269.004685][    C1]  debug_check_no_obj_freed+0x4b7/0x600
[  269.006422][    C1]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  269.008338][    C1]  ? mark_held_locks+0x49/0x80
[  269.009865][    C1]  ? kasan_quarantine_put+0x10a/0x240
[  269.011611][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[  269.013242][    C1]  kfree+0x291/0x6d0
[  269.014514][    C1]  ? rose_timer_expiry+0x53f/0x630
[  269.016173][    C1]  ? rose_timer_expiry+0x53f/0x630
[  269.017773][    C1]  rose_timer_expiry+0x53f/0x630
[  269.019352][    C1]  ? __pfx_rose_timer_expiry+0x10/0x10
[  269.021111][    C1]  call_timer_fn+0x19a/0x620
[  269.022569][    C1]  ? __pfx_call_timer_fn+0x10/0x10
[  269.024608][    C1]  ? mark_held_locks+0x49/0x80
[  269.026134][    C1]  ? __pfx_rose_timer_expiry+0x10/0x10
[  269.027845][    C1]  __run_timers+0x6ef/0x960
[  269.029428][    C1]  ? __pfx___run_timers+0x10/0x10
[  269.031272][    C1]  run_timer_base+0x114/0x190
[  269.032755][    C1]  ? __pfx_run_timer_base+0x10/0x10
[  269.034519][    C1]  run_timer_softirq+0x1a/0x40
[  269.036225][    C1]  handle_softirqs+0x219/0x8e0
[  269.037717][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  269.039446][    C1]  __irq_exit_rcu+0x109/0x170
[  269.040945][    C1]  irq_exit_rcu+0x9/0x30
[  269.042286][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  269.044103][    C1]  </IRQ>
[  269.045127][    C1]  <TASK>
[  269.046139][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  269.048103][    C1] RIP: 0010:preempt_schedule_irq+0x4c/0x90
[  269.050007][    C1] Code: df 55 65 48 8b 2d ac e2 3f 08 53 48 89 eb 48 c1 eb 03 48 01 c3 bf 01 00 00 00 e8 5f 38 28 f6 e8 ba 8f 63 f6 fb bf 01 00 00 00 <e8> af 99 ff ff 9c 58 fa f6 c4 02 75 1e bf 01 00 00 00 e8 4d c3 27
[  269.056190][    C1] RSP: 0018:ffffc90004397258 EFLAGS: 00000202
[  269.058132][    C1] RAX: 000000000067cc85 RBX: ffffed10049cc000 RCX: 0000000000000006
[  269.060632][    C1] RDX: 0000000000000000 RSI: ffffffff8da2a287 RDI: 0000000000000001
[  269.063216][    C1] RBP: ffff888024e60000 R08: 0000000000000001 R09: 0000000000000001
[  269.065856][    C1] R10: ffffffff9081f6d7 R11: 0000000000000000 R12: 0000000000000000
[  269.068457][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  269.071103][    C1]  ? preempt_schedule_irq+0x46/0x90
[  269.072780][    C1]  irqentry_exit+0x36/0x90
[  269.074268][    C1]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  269.076097][    C1] RIP: 0010:lock_acquire+0x62/0x350
[  269.077803][    C1] Code: 74 08 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 12 0b e9 0e 0f 82 74 02 00 00 8b 35 8a 3b e9 0e 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 29 74 08 12 0f 85 c7 02 00 00 48 83 c4
[  269.083897][    C1] RSP: 0018:ffffc90004397320 EFLAGS: 00000206
[  269.085940][    C1] RAX: 0000000000000046 RBX: ffffffff8e3c4460 RCX: 0000000038390cb5
[  269.088393][    C1] RDX: 0000000000000000 RSI: ffffffff8da048cb RDI: ffffffff8bf06e40
[  269.091091][    C1] RBP: 0000000000000002 R08: ea061aeeb3dee3be R09: 0000000000000000
[  269.094000][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  269.097331][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  269.100349][    C1]  ? unwind_next_frame+0x3f4/0x20a0
[  269.102442][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  269.104896][    C1]  unwind_next_frame+0xd1/0x20a0
[  269.106813][    C1]  ? unwind_next_frame+0xbd/0x20a0
[  269.108958][    C1]  ? do_filp_open+0x20b/0x470
[  269.110952][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  269.113539][    C1]  arch_stack_walk+0x94/0x100
[  269.115474][    C1]  ? do_filp_open+0x20b/0x470
[  269.117441][    C1]  stack_trace_save+0x8e/0xc0
[  269.119399][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  269.121055][    C1]  ? kasan_save_stack+0x42/0x60
[  269.122580][    C1]  ? __lock_acquire+0x622/0x1c90
[  269.124493][    C1]  kasan_save_stack+0x33/0x60
[  269.126328][    C1]  ? kasan_save_stack+0x33/0x60
[  269.128244][    C1]  ? kasan_save_track+0x14/0x30
[  269.130170][    C1]  ? __kasan_kmalloc+0xaa/0xb0
[  269.132053][    C1]  ? __kmalloc_noprof+0x32f/0x880
[  269.134013][    C1]  ? security_inode_init_security+0x13f/0x390
[  269.136266][    C1]  ? shmem_mknod+0x22e/0x450
[  269.137818][    C1]  ? lookup_open.isra.0+0x11d3/0x1580
[  269.139571][    C1]  ? path_openat+0x893/0x2cb0
[  269.141114][    C1]  ? do_filp_open+0x20b/0x470
[  269.142642][    C1]  kasan_save_track+0x14/0x30
[  269.144196][    C1]  __kasan_kmalloc+0xaa/0xb0
[  269.145700][    C1]  __kmalloc_noprof+0x32f/0x880
[  269.147312][    C1]  ? security_inode_init_security+0x13f/0x390
[  269.149401][    C1]  ? security_inode_init_security+0x13f/0x390
[  269.151373][    C1]  security_inode_init_security+0x13f/0x390
[  269.153291][    C1]  ? __pfx_shmem_initxattrs+0x10/0x10
[  269.155134][    C1]  ? __pfx_security_inode_init_security+0x10/0x10
[  269.157218][    C1]  shmem_mknod+0x22e/0x450
[  269.158651][    C1]  ? __pfx_shmem_create+0x10/0x10
[  269.160336][    C1]  lookup_open.isra.0+0x11d3/0x1580
[  269.161999][    C1]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  269.163797][    C1]  ? find_held_lock+0x2b/0x80
[  269.165327][    C1]  ? __pfx_down_write+0x10/0x10
[  269.166947][    C1]  path_openat+0x893/0x2cb0
[  269.168403][    C1]  ? __pfx_path_openat+0x10/0x10
[  269.170024][    C1]  ? __lock_acquire+0xb8a/0x1c90
[  269.171668][    C1]  do_filp_open+0x20b/0x470
[  269.173127][    C1]  ? __pfx_do_filp_open+0x10/0x10
[  269.175011][    C1]  ? alloc_fd+0x471/0x7d0
[  269.176576][    C1]  do_sys_openat2+0x11b/0x1d0
[  269.178073][    C1]  ? __pfx_do_sys_openat2+0x10/0x10
[  269.179700][    C1]  ? rcu_is_watching+0x12/0xc0
[  269.181342][    C1]  ? __rseq_handle_notify_resume+0x66e/0x10c0
[  269.183244][    C1]  ? blkcg_maybe_throttle_current+0x650/0xf30
[  269.185158][    C1]  __x64_sys_openat+0x174/0x210
[  269.186674][    C1]  ? __pfx___x64_sys_openat+0x10/0x10
[  269.188400][    C1]  do_syscall_64+0xcd/0xfa0
[  269.189957][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.191877][    C1] RIP: 0033:0x7f3c850a7407
[  269.193308][    C1] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  269.200298][    C1] RSP: 002b:00007fff23b16ad0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  269.203398][    C1] RAX: ffffffffffffffda RBX: 00007f3c8584c880 RCX: 00007f3c850a7407
[  269.206555][    C1] RDX: 0000000000080141 RSI: 000055b91726902e RDI: ffffffffffffff9c
[  269.209045][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  269.211497][    C1] R10: 00000000000001a4 R11: 0000000000000202 R12: 00000000ffffffff
[  269.213946][    C1] R13: 00000000ffffffff R14: ffffffffffffffff R15: 0000000000000000
[  269.217028][    C1]  </TASK>
[  269.218893][    C1] Kernel Offset: disabled
[  269.220241][    C1] Rebooting in 86400 seconds..

VM DIAGNOSIS:
00:28:44  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffea0000c71fb4 RCX=ffffffff820bebb3 RDX=ffff888057818000
RSI=0000000000000004 RDI=ffffea0000c71fb4 RBP=0000000000000001 RSP=ffffc90003157668
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffffea0000c71f80 R13=ffffea0000c71f70 R14=ffffea0000c71f80 R15=dffffc0000000000
RIP=ffffffff82259fe0 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 000055557bff5500 ffffffff 00c00000
GS =0000 ffff8880d6a0a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f3c339156c0 CR3=000000005cc05000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffef5a99cd0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3c32c12fdb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3c32c12fe8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3c32c12fe2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3c32c12ff6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3c32c1307c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3c32c1315a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff852954d0 RDI=ffffffff9add6740 RBP=ffffffff9add6700 RSP=ffffc900006a0328
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff35bad3a R15=dffffc0000000000
RIP=ffffffff852954f7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f3c8584c880 ffffffff 00c00000
GS =0000 ffff8880d6b0a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000000380 CR3=0000000031440000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000104080 Opmask01=0000000000000000 Opmask02=00000000ffff7fdf Opmask03=0000000000400200
Opmask04=00000000ffffffdf Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 44455a494c414954 494e495f43455355
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055b943ab5e70
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055b943aa6f80
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3c851f1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff0000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 737326ca30d9f483 737326cf6b604259
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3bb9445f5d16d14b 7373737628e749c0
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 33347974746d7367 2f7974742f6c6175 747269762f736563 697665642f737973
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 005600051f40494c 43055c5155484005 424b4c55554c4e53 004057005b1a0f00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 48ca372c2e65a238 000055bc1824747a 0000000000000411 000000000035352e
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7766736c6d61722c 4142312c4339312c 3739312c3539312c 3339312c3239312c
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3139312c3039312c 4638312c4538312c 4238312c3938312c 3838312c3538312c
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3438312c3138312c 3937312c3737312c 3437312c4436312c 4336312c3636312c
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3336312c3136312c 3036312c30462c46 442c30442c46432c 38412c37412c4639
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000014100 000000000000303d 44440045525f5346 0054242044492065
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=ffffffff8217de13 RBX=0000000000000001 RCX=ffffffff91232274 RDX=dffffc0000000000
RSI=1ffff92001964c98 RDI=ffffc9000cb267c0 RBP=ffffc9000cb264c0 RSP=ffffc9000cb26408
R8 =ffffffff91232278 R9 =0000000000000000 R10=0000000000000000 R11=0000000000011777
R12=ffffc9000cb264c8 R13=ffffc9000cb26478 R14=ffffc9000cb267c8 R15=ffffc9000cb264ac
RIP=ffffffff816c2255 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6c0a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000003132d000 CR4=00352ef0
DR0=00000000fec0000c DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdaa58d740 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5401012fdb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5401012fe8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5401012fe2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5401012ff6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f540101307c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f540101315a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=1ffff92000d6bf5a RCX=0000000000000001 RDX=0000000000000000
RSI=00000000ffffffff RDI=ffffffff8e3c4400 RBP=ffffffff8e3c4400 RSP=ffffc90006b5fa78
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=ffff888029550000 R13=00000000ffffffff R14=00000000ffffffff R15=00000000000017da
RIP=ffffffff8b604634 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
GS =0000 ffff8880d6d0a000 ffffffff 00c09300 DPL=0 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000002c2da000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000