last executing test programs:

3.346321143s ago: executing program 1 (id=994):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$tipc(0x1e, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'netdevsim0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="680000001000030500000000fcdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="00000000008000004800128008000100687372003c000280060005000180000008000100", @ANYRES32=r2, @ANYBLOB="0500060001000000050007a10000000005000300df00000008000200", @ANYRES64=r0], 0x68}}, 0x0)

3.26417019s ago: executing program 1 (id=995):
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
io_setup(0x3, &(0x7f00000000c0)=<r2=>0x0)
io_submit(r2, 0x2, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0xfefd}, &(0x7f0000000080)={0x0, 0x0, 0x9, 0x1, 0x0, r1, &(0x7f00000001c0)='m', 0xfffffdfc}])

3.263681303s ago: executing program 2 (id=996):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x20}}, 0x2}}, 0x2e)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4e1d, 0x0, @empty, 0x61}, 0x1c)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f00000008c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x34, r2, 0x1, 0x1070bd2c, 0x4, {0x5}, [@L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x5}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaa8}]}, 0x34}, 0x1, 0x0, 0xe4ff, 0x20008000}, 0x30)

3.153762888s ago: executing program 2 (id=997):
memfd_create(0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000180), 0x40000, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000050000000000000000000000850000000e000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r0}, 0xc)
r1 = openat2$dir(0xffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x80, 0x82, 0x4}, 0x18)
renameat2(r1, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x0)

3.09420163s ago: executing program 2 (id=998):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="340000003e000701feffffff00000000017c0000040042800c0001800621060090390000101202"], 0x34}, 0x1, 0x0, 0x0, 0x4000895}, 0xc000)

3.092670453s ago: executing program 2 (id=999):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000240)={0x73622a85, 0x0, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = syz_io_uring_setup(0x59a6, &(0x7f0000000980)={0x0, 0x45885, 0x400, 0x0, 0x8}, &(0x7f0000000340), &(0x7f0000000280), &(0x7f0000000080))
io_uring_register$IORING_UNREGISTER_EVENTFD(r2, 0x5, 0x0, 0x0)
r3 = dup3(r1, r0, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000000c0)={0x8, 0x0, &(0x7f00000005c0)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x1058, 0x0, 0x0, 0x0, 0x0, 0x28, 0x18, &(0x7f0000000540)={@fd={0x66642a85, 0x0, r3}, @ptr={0x70742a85, 0x80000, 0x0, 0x0, 0x1, 0x11}, @ptr={0x70742a85, 0x5, 0x0, 0x0, 0x1, 0xca}}, &(0x7f0000000600)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})

3.015704177s ago: executing program 2 (id=1000):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$snapshot(0xffffff9c, &(0x7f00000000c0), 0x220200, 0x0)
r2 = socket$tipc(0x1e, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'netdevsim0\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="680000001000030500000000fcdbdf2500000000", @ANYRES32=r2, @ANYRESDEC=r1, @ANYRES32=r3, @ANYBLOB="05000600010000000f0007a10000000005000300df00000008000200", @ANYRES64=r0], 0x68}}, 0x0)
syz_open_dev$vcsn(&(0x7f0000000040), 0x5, 0x0)
r4 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r5 = syz_usb_connect(0x0, 0x3d, &(0x7f0000000140)=ANY=[], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
writev(r4, &(0x7f0000000180), 0x0)
r6 = socket(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(r6, 0x0, 0x10)
socket$inet6(0xa, 0x4, 0x7)
r7 = openat$binfmt(0xffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_misc(r7, &(0x7f0000000280)="2c6c36740df6d35b53aadf5740f272ad7aa10ef3e13968a529524bb5c07a4894e5215dc01a26a66607c2dd5eaee4dd69fdd0306638659edbb4fb15c76bec26dda90349a2d15b6c10a3832313f3a140", 0x4f)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240))
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r8, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r8, &(0x7f0000008880)={0x2020, 0x0, <r9=>0x0, <r10=>0x0}, 0x2020)
syz_fuse_handle_req(r8, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r8, &(0x7f0000004200)={0x50, 0xffffffffffffffda, r9, {0x7, 0x2b, 0x4, 0x100200d4, 0x0, 0xe0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xa}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x80000, 0x0, 0x0, 0x0, 0xffffffff, 0x4, {0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x73c}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0xa53, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2000, 0xfffffdfd, r10, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)=ANY=[@ANYRESHEX, @ANYRES64=r5, @ANYBLOB="2ff9a7206343346534dd1287c3ac000820000000", @ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000003000000040000000000000b0000000000000000000000004dd924ac0d64dbc3174aa440c7e5e6edb88745c98c522d48833abddd3eeced6e723fcd070efd4e103180738fd2d869d6b7b94b8c7d51ccafa35e1f051a15748eb8dc0fe57cfee486fe4b809b5e498f4812b63f7a0588299c817cc1c99c4ae894423878d923e4121436d80091a0cdc6563605d6048d087764c01868055587e87241918596621ef34163bc9b8dae521d05783bab1486c73839c7d0b13e50a3d6e417"], 0x50)
r11 = openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0)
poll(&(0x7f0000000000)=[{r11, 0x400}], 0x1, 0x100)

2.755818608s ago: executing program 3 (id=1004):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f000000b500), 0xffffffffffffffff) (async, rerun: 64)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f000000d040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000740)={0x34, r1, 0x8de13c6b70ae92c3, 0x41003, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xe}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xc0}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x34, 0x0, 0x2, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x28}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x6c}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x5)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)={0x34, 0x40, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x4, 0x48}, @nested={0x10, 0x1, 0x0, 0x1, [@nested={0xc, 0x10, 0x0, 0x1, [@nested={0x4, 0x8}, @nested={0x4, 0x8}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x34}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

2.69591965s ago: executing program 3 (id=1005):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x2000000, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}]}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x2}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xc0}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

2.647106172s ago: executing program 3 (id=1006):
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x46aa}}, './file0\x00'})
sendmsg$NL80211_CMD_TDLS_OPER(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, 0x0, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x20}, 0x1, 0x0, 0x0, 0x804}, 0x80c0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r1=>r0, {0x6}}, './file0\x00'})
read$msr(r1, &(0x7f0000000180)=""/4096, 0x1000)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f00000011c0), r0)
sendmsg$DEVLINK_CMD_RATE_GET(r1, &(0x7f00000012c0)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001280)={&(0x7f0000001200)={0x6c, r2, 0x0, 0x70bd2a, 0x25dfdbff, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}]}, 0x6c}, 0x1, 0x0, 0x0, 0x8050}, 0x4000)
read$msr(r1, &(0x7f0000001300)=""/140, 0x8c)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000001400), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r3, &(0x7f0000001540)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x20004080}, 0xc, &(0x7f0000001500)={&(0x7f0000001440)={0xbc, r4, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_SEC_ENABLED={0x5}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8}, @NL802154_ATTR_SEC_OUT_KEY_ID={0x84, 0x2b, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x58, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0x100}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}]}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x18, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}]}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_MODE={0x8}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0xbc}, 0x1, 0x0, 0x0, 0x24000024}, 0x50)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000001580)={0x1f, 0x0, 0x4}, 0x6)
read$msr(r1, &(0x7f00000015c0)=""/105, 0x69)
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000001640)=<r5=>0x0)
r6 = getgid()
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000001680)={{0x1, 0x1, 0x18, <r7=>r1, {r5, r6}}, './file0\x00'})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000001700)={0x6, &(0x7f00000016c0)=[{0x5, 0xc0, 0x4, 0xffff789f}, {0x17, 0x6, 0x9, 0x7f}, {0xcb5, 0x5, 0x9, 0xab}, {0x1, 0x4, 0x8, 0x6}, {0x1, 0x3, 0x4, 0xc6}, {0x3, 0xa, 0x3, 0xfffffef4}]})
openat$ttynull(0xffffff9c, &(0x7f0000001740), 0x68840, 0x0)
keyctl$chown(0x4, 0x0, r5, r6)
read$msr(r1, &(0x7f0000001780)=""/146, 0x92)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000001840)={{0x1, 0x1, 0x18, <r8=>r7, {0x1}}, './file0\x00'})
sendmmsg$alg(r1, &(0x7f0000003fc0)=[{0x0, 0x0, &(0x7f0000003a40)=[{&(0x7f0000001880)}, {&(0x7f00000018c0)="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", 0x1000}, {&(0x7f00000028c0)="28b9738d0b75f5298fa912f67dedf39d1cb8066652ded10465572e622738ae7880035491655c26cd8959b434c57b7e7276932299e5a5004fdb987d960efb0c13c82287438f5bac0abbc11afbaa10db28aa70c8a4649ec73d5e112c8e8096998d8e5a45c4452d2a1cff033d7f775bee39de1ccffe22d1cbcfe0b240a3834e42220ad396fa9b15eb3db4882e9173a8afaa76f5a4fbe9", 0x95}, {&(0x7f0000002980)="0959756e2a53b41d088441da581b1b8674e2f4c9995deb6aa90d530b2f027ba7f9a44806b0c55b444677d9b2cd177c2c94b3b881fddc12fdddc755dff0863ee7d8541528122bb5a6f1e0d45bafbba1afea9d85501ce124f909c1587efe895fa22864f3b83a68652c7de1a70487c9ca7d7ee175668952e9113125f0c6aa9af61521e49df829801d8f83ab5cc49938b56c210bcd6a5615581ee3c44157ce58b8528b3a609564ba244be9cdba", 0xab}, {&(0x7f0000002a40)="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", 0x1000}], 0x5, 0x0, 0x0, 0x1}, {0x0, 0x0, &(0x7f0000003c00)=[{&(0x7f0000003a80)="7551388e149b11fc4d70fba16f200441018d3432b28c5a559947154b6e155061d7f3604cc2703f99ad34724aaa7fe32b874752", 0x33}, {&(0x7f0000003ac0)="d0692e842ce0954a76e87ea0a6d7279e4eedd5fbeed937eacebb8d36b5008598ed6bf77680062bb064", 0x29}, {&(0x7f0000003b00)="6caaa58e30fcbcd70ebe27241a6b966c313e9a94fd6189f7df2a7d22b95d5e58acc19bd1c70df5dc20ea952038204966644bb32a10343718efc7f1987b3bca8e928b4daeabdea16653233173aedfecd4fb459027a41034558d03a05ddf91a0460c9a5885fde7ef6ec158d4a64c842465ca5338ac8c14963bee1654cbb73e0d7777172dcbad5865dd53fb815bf2e061d95a8ad077b6776e0cc8052ba25c4c9183126f7acef70725c66b7712f26863eebfd34603210fccfa7496f5f09190371b144e56", 0xc2}], 0x3, &(0x7f0000003c40)=[@assoc={0x10, 0x117, 0x4, 0x800}, @iv={0xb8, 0x117, 0x2, 0xa6, "c078136b7d2fa56d8622bb0a7aa920bea8efb90ed71dbaaabaa1989efa07a44f56b90e2a8e51a36cfc35cef428f9d1030ee0485707d2a428dd10dabce70bebdc27bcb10d9d5693ed7f86f06bfb94eedddb17c6918bca142d6e58d48e4f6ebd8bc34419022c6714deac8af3c0aeca7931b98ce8a6ea38f6eb007169af70a1504782d3fb2e42aab632a5134d4aec86418a889548f0a8eee40a8215ba9aceea781a002a4ed08745"}, @assoc={0x10, 0x117, 0x4, 0x7}, @op={0x10, 0x117, 0x3, 0x1}, @iv={0xbc, 0x117, 0x2, 0xa9, "502c54f6af2cc90cc949dd9500cf63a6ba5925991b481a112953dfe21ee49672a1aae9c64edf3dc6a4cfdbefc3a3106fa4c101befdcb8f8e70b58ff8ee8e09367270903c439122bc5414646a32077068826af2e6bd8e164bee1f5b18e846965efac4dcc1f12d7df687e5cda93c8b9f14679da4eef86afa5f384093d4b15c6bec3d297ff00c49e3de3d747e224c3704c860ca306f4f271b363015d5ef62f4f9985a4eed1e0538ec5d31"}, @iv={0xc8, 0x117, 0x2, 0xb7, "501a3d10cc85c2de8f6958b0e7ba118193562f6c6c079c1a1405bb13b42d78895e3e668e41643a7265581caebcc730dced0978dceaad93dc542b48d1c6c1c62098953bf88cd66d34e1b7a4ca29845cc0033ad42d3071af5522c8848728c9262cba8a4242fc735dc8a58f189e080fda04391003b833bdfa8378ace9611dc3ac64e006d30434f97f8f13d303a390f808877bd83a4c5dba16cc753bd8060587e35aa547f3e6896ef1eb2f23f2fc17dfe5dc20a9757d308895"}, @iv={0x1c, 0x117, 0x2, 0x9, "1f9a5e5e992a0ff06c"}, @iv={0x84, 0x117, 0x2, 0x71, "d7cf2a551c3cc9cde8efb9098514ab5d8e367f2f850ead8f00ce67e87079cc6b7883b11af0a35650e0fb51f2a48aeb1bd5ab196fe5c425e923ad0d1d9fb339f2ece826a98743163fc5fb09f48739459a7aead7616c669030111853387f0d7d46c38425ffe2e3cf663a15e0f22ce61431d0"}, @iv={0x64, 0x117, 0x2, 0x54, "35f7c58258bba70137e635bf3be34a11b60c15dfc4f288ac74e78280971cfe5be85d56122b47f9f925d49e9a2120f6730f075a23f868d671bce8554abe4a4ee719a13450ff82f31e1b85ceee57c96ef1c6ea8b6c"}, @assoc={0x10, 0x117, 0x4, 0x2}], 0x380, 0x4}], 0x2, 0x45)
r9 = syz_ublk_setup_io_uring(0xba8, &(0x7f0000004000)={0x0, 0xda12, 0x8, 0x1, 0x88, 0x0, r7}, &(0x7f0000004080), &(0x7f00000040c0), &(0x7f0000004100))
io_uring_setup(0x6c42, &(0x7f0000004140)={0x0, 0x6cb9, 0x4, 0x2, 0x2cd, 0x0, r9})
fsmount(r7, 0x0, 0x1)
geteuid()
r10 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000004200), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r3, &(0x7f0000004300)={&(0x7f00000041c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000042c0)={&(0x7f0000004240)={0x7c, r10, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast1}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x1a}}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, @NLBL_UNLABEL_A_SECCTX={0x24, 0x7, 'system_u:object_r:dhcp_etc_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @local}]}, 0x7c}, 0x1, 0x0, 0x0, 0x8051}, 0x800)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r7, 0xae04)
bind$l2tp6(r8, &(0x7f0000004340)={0xa, 0x0, 0x5, @mcast2, 0x3}, 0x20)
openat$binderfs(0xffffff9c, &(0x7f0000004380)='./binderfs2/custom0\x00', 0x2, 0x0)

2.558223641s ago: executing program 3 (id=1009):
shutdown(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r4, 0x0, 0x0)
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r3, &(0x7f00000006c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000680)={&(0x7f0000000480)={0x190, r5, 0x200, 0x70bd2a, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8}}}]}, 0x190}, 0x1, 0x0, 0x0, 0x800}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000000)="5c00000014006b05c84e21000ab16d6e230675f802000000440002000800d30461bc24eeb556a705251e6182149a36c23d3b48dfd8cdbf9367b098fa51f60a64c9f408000000e786a6d0bdd70000b6c0504bb9189d9193e9bd1c1b78", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r8 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r7, &(0x7f0000000500)=ANY=[@ANYBLOB="1c0000f50403090005000f0000000000000067"], 0x7a)
socket$kcm(0x10, 0x3, 0x0)
r9 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r9, 0x84, 0xc, 0x0, 0x0)

2.215866064s ago: executing program 1 (id=1011):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffff3}, 0x94)
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000680)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00U\x00=\t\x00\x00\x00\x00\x00\x00\x00\x00\a\x00\x00\x00', @ANYRES32=r1, @ANYBLOB="20000280", @ANYRES32=r0, @ANYBLOB="0000000ffe000000000000000a000000000000000000001420000100", @ANYRES32=r1], 0x58}, 0x1, 0x0, 0x0, 0x800}, 0x0)

2.164372044s ago: executing program 1 (id=1012):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x14, &(0x7f0000000040), 0x50)
r1 = memfd_secret(0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x11, r1, 0x0)
ftruncate(r1, 0x51a9497)
accept4(r1, 0x0, &(0x7f0000001080), 0x80000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="04"], 0x14}, 0x1, 0x0, 0x0, 0x4044020}, 0x4000000)
recvmmsg(r2, &(0x7f0000000500)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000001180)=""/4090, 0xffa}], 0x1}, 0xc}], 0x1, 0x30002, 0x0)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x2000, 0x0)
acct(&(0x7f0000000040)='./file0\x00')
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r4=>0x0})
connect$can_bcm(r3, &(0x7f00000000c0)={0x1d, r4}, 0x10)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x400448dd, &(0x7f00000000c0))
sendmsg$can_bcm(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="39abd7c89b3ba1b7c3c1b95d7a3b3e9651f5419d344c8e6fa777006bc30e1deea329191c25d5f27e6714a86840085b435487ca1b4bad3be3d6a6001fb761666cb2587007f131122a8f3b9d1f7a87f5b4803530c7cb67a8592f5c00"/106, @ANYRES64=r0, @ANYBLOB="0000000001"], 0x48}, 0x1, 0x0, 0x0, 0x881}, 0x0)

2.086038811s ago: executing program 1 (id=1013):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000640)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000140)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x68, r3, 0x1, 0x70bd25, 0x25dfdbff, {{}, {0x0, 0x4107}, {0x4c, 0x18, {0x401, @link='broadcast-link\x00'}}}}, 0x68}, 0x1, 0x0, 0x0, 0x4090}, 0x4040080)
r4 = openat$null(0xffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
r5 = syz_io_uring_setup(0x4b6, 0x0, &(0x7f0000ff0000), 0x0, &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r5, 0x10, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0xc00}, 0x20)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f00000018c0), r6)
sendmsg$IPVS_CMD_NEW_DAEMON(r6, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000004c0)=ANY=[], 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$IPVS_CMD_DEL_DAEMON(r4, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x20000005)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r7 = syz_open_dev$MSR(&(0x7f0000000100), 0x0, 0x0)
read$msr(r7, &(0x7f0000001a40)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xc0ffffff}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x3801}, {0x2c}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0xffc0}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)

1.025636397s ago: executing program 3 (id=1015):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x5, 0x325, &(0x7f0000000880)=0xff)
r0 = openat$audio(0xffffffffffffff9c, 0x0, 0x94fb60, 0x0)
bind$packet(0xffffffffffffffff, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_CALL(r2, 0x4008af21, &(0x7f0000000780)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0, 0xc000})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f00000008c0)={0x1, 0x0, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000900)=""/95})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000340)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000380)={0x0, 0x3fb, 0x7fff})
r4 = syz_open_procfs(0x0, 0x0)
ioctl$MON_IOCX_GETX(r4, 0x400c920a, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r2}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000019c0)={0x7, 0x0, 0x0, 0x0, 0x8c4, 0x0, 0x0, 0x41100, 0x9, '\x00', 0x0, @fallback=0x5, r4, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000840)=[0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x2}, 0x94)
r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x201, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11011, r5, 0x2000)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x208, 0x30c, 0xa, 0x148, 0x0, 0x60, 0x3a4, 0x2a8, 0x2a8, 0x3a4, 0x2a8, 0x7fffffe, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0xffffffff, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x70, 0xdc, 0x0, {0x200003ae, 0x7f00}}, @common=@unspec=@NFLOG={0x6c, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x264)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r6=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x6, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r6, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
sendfile(r1, r1, &(0x7f0000000000)=0xffffffff, 0x81)
openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0542, 0x0)

575.780252ms ago: executing program 0 (id=1016):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}}, 0x20000800)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001840)={0x8c, r1, 0x5, 0x4, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x47, 0xe, {{{}, {}, @device_b, @device_b, @from_mac=@broadcast}, 0x0, @random=0x4, 0x0, @val={0x0, 0x6, @default_ibss_ssid}, @void, @void, @void, @void, @void, @void, @void, @val={0x3c, 0x4, {0x1, 0x7, 0xb6, 0x2}}, @void, @val={0x72, 0x6}, @val={0x71, 0x7, {0x1, 0x1, 0x0, 0x1, 0x1, 0xf0, 0x8}}, @void}}, @NL80211_ATTR_FTM_RESPONDER={0x10, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_LCI={0x7, 0x2, "e64b4d"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x8c}, 0x1, 0x0, 0x1000000}, 0x0)

520.041769ms ago: executing program 0 (id=1017):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f00000006c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x85000000}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1}, 0x94)

502.06666ms ago: executing program 1 (id=1018):
open$dir(&(0x7f0000000140)='./file0\x00', 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001580)=ANY=[@ANYBLOB="600000000206030000000000b8791fa80000000014000780080012400000000005001500010000000500010006000000050005000200000005000400000000000900020073797a310000000012000300686173683a6e65742c706f7274"], 0x60}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)={0x28, 0x3, 0x6, 0x301, 0x0, 0x0, {0x0, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x10)
openat$random(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000003c0), 0x10)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shutdown(0xffffffffffffffff, 0x1)
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000300)={&(0x7f0000000400)=ANY=[@ANYBLOB="a43a4b73b946a44f2cf022964420c25455ccbf757c75aaa9005951d0483d8d23d7abe15c05887e75f310af8b0845419b507efae94c7d206310d888a5d8eecf0ee0101504b9199cea2e8cc1", @ANYRES16=0x0, @ANYBLOB="000325bd7000fcdbdf2501000000080009000200000006001b004e2300000500070002000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x87d4b69a72310a97)
r4 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r5 = gettid()
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000004181800010000950074000000000900"/32], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0xe4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
tkill(r5, 0xb)
syz_open_dev$tty1(0xc, 0x4, 0x1)

500.237524ms ago: executing program 0 (id=1019):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000080)={'team0\x00', <r1=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0xe4ff, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @wireguard={{0xe}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x40}, 0x1, 0x700}, 0x0)

236.465361ms ago: executing program 3 (id=1020):
openat(0xffffffffffffffff, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) (async)
r0 = openat(0xffffffffffffffff, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
syz_io_uring_setup(0x45, &(0x7f0000000300)={0x0, 0xf20f, 0x40, 0x2, 0x1b}, &(0x7f0000000100), &(0x7f00000000c0), &(0x7f0000000000))
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102) (async)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r2, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x20000011)
sendmsg$kcm(r2, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0xfffe, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x80, 0x0}, 0xe07e872420dfefca)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003580)=ANY=[@ANYBLOB="20000000240000012ebd7000fbdbdf25027c00000cb9fd72c32d9e5e2fa29c79"], 0x20}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010) (async)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003580)=ANY=[@ANYBLOB="20000000240000012ebd7000fbdbdf25027c00000cb9fd72c32d9e5e2fa29c79"], 0x20}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x8040044}, 0x810)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000015c0)=ANY=[@ANYBLOB="18000000041401002dbd7000fedbdf250800010000000000ba30b28e994c1a08786eb807e0000000000000000000009fe70ba83a7a66e67a0bae5cfaccbbb81e28d7b568da", @ANYRESHEX, @ANYRESOCT], 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0) (async)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000015c0)=ANY=[@ANYBLOB="18000000041401002dbd7000fedbdf250800010000000000ba30b28e994c1a08786eb807e0000000000000000000009fe70ba83a7a66e67a0bae5cfaccbbb81e28d7b568da", @ANYRESHEX, @ANYRESOCT], 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4848}, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000100)={0x0, 0x642, 0x0, 0x0})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x100000000005, 0x41, 0x8002000000, 0x0, 0x2004cc, 0x10000000005, 0xa1b, 0x8, 0x5, 0x0, 0x3, 0xb2], 0x10000, 0x202}) (async)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x100000000005, 0x41, 0x8002000000, 0x0, 0x2004cc, 0x10000000005, 0xa1b, 0x8, 0x5, 0x0, 0x3, 0xb2], 0x10000, 0x202})
ioctl$KVM_SET_SREGS(r6, 0x4138ae84, &(0x7f0000000100)={{0x100000, 0xdddd1000, 0x0, 0x2, 0x81, 0x10, 0x3, 0x7, 0x0, 0x8, 0x9}, {0x8080000, 0x10000, 0xc, 0x0, 0x2, 0x0, 0xfd, 0x0, 0x7, 0xbf}, {0xb000, 0x8080000, 0xc, 0x0, 0x27, 0xc4, 0x0, 0x0, 0x8, 0x3, 0x40, 0x3}, {0xeeef0000, 0x33331000, 0x18592cbc7c573fc6, 0x9, 0x1, 0x9, 0x9, 0xd, 0x8, 0xf, 0x4}, {0x80a0000, 0xeeee8000, 0xb, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x3f, 0x6}, {0xb000, 0x0, 0x9, 0x76, 0x2, 0x1, 0x2, 0x80, 0x0, 0xff, 0x6}, {0xeeee8000, 0xeeee0000, 0x3, 0x4, 0x3, 0x0, 0xa1, 0x20, 0x0, 0x0, 0x4}, {0x2, 0x50000, 0xc, 0x3, 0x0, 0x7, 0x9, 0x40, 0x26, 0x0, 0x0, 0x2}, {0x80a0000, 0x8cc}, {0x40000, 0x80f3}, 0xddf8ffd3, 0x0, 0x0, 0x110, 0xe, 0xf001, 0xd000, [0x80000004, 0x0, 0x10000, 0xfffffffffffdffff]}) (async)
ioctl$KVM_SET_SREGS(r6, 0x4138ae84, &(0x7f0000000100)={{0x100000, 0xdddd1000, 0x0, 0x2, 0x81, 0x10, 0x3, 0x7, 0x0, 0x8, 0x9}, {0x8080000, 0x10000, 0xc, 0x0, 0x2, 0x0, 0xfd, 0x0, 0x7, 0xbf}, {0xb000, 0x8080000, 0xc, 0x0, 0x27, 0xc4, 0x0, 0x0, 0x8, 0x3, 0x40, 0x3}, {0xeeef0000, 0x33331000, 0x18592cbc7c573fc6, 0x9, 0x1, 0x9, 0x9, 0xd, 0x8, 0xf, 0x4}, {0x80a0000, 0xeeee8000, 0xb, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x3f, 0x6}, {0xb000, 0x0, 0x9, 0x76, 0x2, 0x1, 0x2, 0x80, 0x0, 0xff, 0x6}, {0xeeee8000, 0xeeee0000, 0x3, 0x4, 0x3, 0x0, 0xa1, 0x20, 0x0, 0x0, 0x4}, {0x2, 0x50000, 0xc, 0x3, 0x0, 0x7, 0x9, 0x40, 0x26, 0x0, 0x0, 0x2}, {0x80a0000, 0x8cc}, {0x40000, 0x80f3}, 0xddf8ffd3, 0x0, 0x0, 0x110, 0xe, 0xf001, 0xd000, [0x80000004, 0x0, 0x10000, 0xfffffffffffdffff]})
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r7, 0x0)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000100)='veth0\x00', 0x10)

141.294047ms ago: executing program 0 (id=1021):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x14, &(0x7f0000000040), 0x50)
r1 = memfd_secret(0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x11, r1, 0x0)
ftruncate(r1, 0x51a9497)
accept4(r1, 0x0, &(0x7f0000001080), 0x80000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="04"], 0x14}, 0x1, 0x0, 0x0, 0x4044020}, 0x4000000)
recvmmsg(r2, &(0x7f0000000500)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000001180)=""/4090, 0xffa}], 0x1}, 0xc}], 0x1, 0x30002, 0x0)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x2000, 0x0)
acct(&(0x7f0000000040)='./file0\x00')
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r4=>0x0})
connect$can_bcm(r3, &(0x7f00000000c0)={0x1d, r4}, 0x10)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x400448dd, &(0x7f00000000c0))
sendmsg$can_bcm(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="39abd7c89b3ba1b7c3c1b95d7a3b3e9651f5419d344c8e6fa777006bc30e1deea329191c25d5f27e6714a86840085b435487ca1b4bad3be3d6a6001fb761666cb2587007f131122a8f3b9d1f7a87f5b4803530c7cb67a8592f5c00"/106, @ANYRES64=r0, @ANYBLOB="0000000001"], 0x48}, 0x1, 0x0, 0x0, 0x881}, 0x0)

56.124843ms ago: executing program 0 (id=1022):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)={0x1c, 0x21, 0x1, 0x0, 0x0, "", [@typed={0xa, 0x0, 0x0, 0x0, @str='\x00\x00\x00\x01\x01b'}]}, 0x1c}], 0x1}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x18, 0x3e, 0x303, 0x70bd27, 0x25dfdbfb, {0x3, 0x7c}, [@nested={0x4, 0xfc}]}, 0x18}, 0x1, 0x0, 0x0, 0x40088c4}, 0x2000c844)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r0)

1.819844ms ago: executing program 0 (id=1023):
shutdown(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r4, 0x0, 0x0)
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r3, &(0x7f00000006c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000680)={&(0x7f0000000480)={0x190, r5, 0x200, 0x70bd2a, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8}}}]}, 0x190}, 0x1, 0x0, 0x0, 0x800}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000000)="5c00000014006b05c84e21000ab16d6e230675f802000000440002000800d30461bc24eeb556a705251e6182149a36c23d3b48dfd8cdbf9367b098fa51f60a64c9f408000000e786a6d0bdd70000b6c0504bb9189d9193e9bd1c1b78", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r8 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r7, &(0x7f0000000500)=ANY=[@ANYBLOB="1c0000f50403090005000f0000000000000067"], 0x7a)
socket$kcm(0x10, 0x3, 0x0)
r9 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r9, 0x84, 0xc, 0x0, 0x0)

0s ago: executing program 2 (id=1024):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x6) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}) (async)
mount(0x0, &(0x7f0000003c40)='.\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000003cc0)='gid=1\x00nk]e') (async)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x18a42000)
r3 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
pread64(r3, &(0x7f0000002240)=""/237, 0xed, 0x4eb) (async)
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) (async)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) (async)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) (async)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x40088d4) (async)
connect$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0xfffe, 0x3000000, @mcast2, 0x4}, 0x1c) (async, rerun: 32)
close(0xffffffffffffffff) (async, rerun: 32)
r4 = getpgid(0x0)
r5 = syz_pidfd_open(r4, 0x0)
r6 = pidfd_getfd(r5, r5, 0x0)
setns(r6, 0x66020000) (async)
ioctl$AUTOFS_IOC_PROTOSUBVER(r6, 0x80049367, &(0x7f00000000c0)) (async)
mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x164) (async)
syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x2185091, 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)

kernel console output (not intermixed with test programs):

[1, 0] type 2 family 0 port 6081 - 0
[   56.910918][ T5746] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.920303][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.943939][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.955789][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.959817][   T13] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.963636][ T1241] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.966151][ T1241] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.970769][   T13] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.976444][   T13] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.992429][   T13] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.063708][ T1241] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.069300][ T1241] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.094283][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.103827][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.135799][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.143373][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.183617][ T1241] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.189611][ T1241] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.240659][  T232] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.244473][  T232] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.572895][ T5899] binder: BINDER_SET_CONTEXT_MGR already set
[   57.576540][ T5899] binder: 5895:5899 ioctl 4018620d 80000040 returned -16
[   57.782260][ T5758] Bluetooth: hci0: command tx timeout
[   57.782400][   T62] Bluetooth: hci1: command tx timeout
[   57.782453][ T5744] Bluetooth: hci2: command tx timeout
[   57.782529][ T5752] Bluetooth: hci3: command tx timeout
[   58.895792][ T5910] syz.0.6 uses obsolete (PF_INET,SOCK_PACKET)
[   58.915561][ T5909] netlink: 'syz.1.5': attribute type 2 has an invalid length.
[   58.918467][ T5909] netlink: 'syz.1.5': attribute type 1 has an invalid length.
[   58.921802][ T5909] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5'.
[   59.838401][   T62] Bluetooth: hci1: command tx timeout
[   59.841513][   T62] Bluetooth: hci3: command tx timeout
[   59.844068][   T62] Bluetooth: hci2: command tx timeout
[   59.848352][   T62] Bluetooth: hci0: command tx timeout
[   61.919097][ T5758] Bluetooth: hci0: command tx timeout
[   61.919169][ T5752] Bluetooth: hci3: command tx timeout
[   61.920828][ T5758] Bluetooth: hci1: command tx timeout
[   61.923430][   T62] Bluetooth: hci2: command tx timeout
[   62.434282][ T5914] netlink: 'syz.2.7': attribute type 2 has an invalid length.
[   62.438784][ T5914] netlink: 'syz.2.7': attribute type 1 has an invalid length.
[   62.441799][ T5914] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7'.
[   62.870930][ T5929] netlink: 'syz.2.11': attribute type 4 has an invalid length.
[   62.875212][ T5929] netlink: 156 bytes leftover after parsing attributes in process `syz.2.11'.
[   62.888531][ T5929] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[   63.120198][ T5930] bridge_slave_0: left allmulticast mode
[   63.122677][ T5930] bridge_slave_0: left promiscuous mode
[   63.125932][ T5930] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.248033][ T5930] bridge_slave_1: left allmulticast mode
[   63.250108][ T5930] bridge_slave_1: left promiscuous mode
[   63.253919][ T5930] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.368340][ T5930] bond0: (slave bond_slave_0): Releasing backup interface
[   63.535175][ T5930] bond0: (slave bond_slave_1): Releasing backup interface
[   63.640167][ T5930] team0: Port device team_slave_0 removed
[   64.000686][ T5752] Bluetooth: hci3: command tx timeout
[   64.052853][ T5930] team0: Port device team_slave_1 removed
[   64.062194][ T5930] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   64.067118][ T5930] batman_adv: batadv0: Removing interface: batadv_slave_0
[   64.255229][ T5930] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   64.258733][ T5930] batman_adv: batadv0: Removing interface: batadv_slave_1
[   64.353544][ T5930] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[   64.569281][ T5950] syz_tun: entered allmulticast mode
[   64.588270][ T5949] syz_tun: left allmulticast mode
[   66.013071][ T5970] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[   66.013468][ T5969] netlink: 'syz.2.14': attribute type 2 has an invalid length.
[   66.021682][ T5969] netlink: 'syz.2.14': attribute type 1 has an invalid length.
[   66.024687][ T5969] netlink: 8 bytes leftover after parsing attributes in process `syz.2.14'.
[   68.321518][ T5993] warning: `syz.0.23' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   69.592598][ T6002] netlink: 'syz.3.25': attribute type 2 has an invalid length.
[   69.596151][ T6002] netlink: 'syz.3.25': attribute type 1 has an invalid length.
[   69.599557][ T6002] netlink: 8 bytes leftover after parsing attributes in process `syz.3.25'.
[   71.236811][ T6011] IPVS: Error connecting to the multicast addr
[   72.514984][ T6022] netlink: 'syz.0.27': attribute type 1 has an invalid length.
[   72.520486][ T6022] netlink: 24 bytes leftover after parsing attributes in process `syz.0.27'.
[   72.988186][ T6025] =======================================================
[   72.988186][ T6025] WARNING: The mand mount option has been deprecated and
[   72.988186][ T6025]          and is ignored by this kernel. Remove the mand
[   72.988186][ T6025]          option from the mount to silence this warning.
[   72.988186][ T6025] =======================================================
[   73.016475][ T6025] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   73.605156][ T6030] netlink: 'syz.1.32': attribute type 1 has an invalid length.
[   73.612237][ T6030] netlink: 24 bytes leftover after parsing attributes in process `syz.1.32'.
[   74.229035][ T6043] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[   75.080019][ T6050] netlink: 'syz.1.37': attribute type 2 has an invalid length.
[   75.082503][ T6050] netlink: 'syz.1.37': attribute type 1 has an invalid length.
[   75.084902][ T6050] netlink: 8 bytes leftover after parsing attributes in process `syz.1.37'.
[   75.269954][   T40] audit: type=1326 audit(1778751981.993:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6054 comm="syz.3.39" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa6fcc code=0x0
[   76.092042][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[   76.095362][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[   78.435536][ T6062] netlink: 'syz.2.40': attribute type 2 has an invalid length.
[   78.438516][ T6062] netlink: 'syz.2.40': attribute type 1 has an invalid length.
[   78.441252][ T6062] netlink: 8 bytes leftover after parsing attributes in process `syz.2.40'.
[   79.180435][ T6080] netlink: 'syz.3.43': attribute type 2 has an invalid length.
[   79.184113][ T6080] netlink: 'syz.3.43': attribute type 1 has an invalid length.
[   79.186764][ T6080] netlink: 8 bytes leftover after parsing attributes in process `syz.3.43'.
[   83.254738][ T6120] netlink: 'syz.3.50': attribute type 2 has an invalid length.
[   83.257449][ T6120] netlink: 'syz.3.50': attribute type 1 has an invalid length.
[   83.260071][ T6120] netlink: 8 bytes leftover after parsing attributes in process `syz.3.50'.
[   84.965526][ T6144] netlink: 'syz.3.58': attribute type 2 has an invalid length.
[   85.837403][ T6161] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[   85.839736][ T6161] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   85.847134][ T6161] vhci_hcd vhci_hcd.0: Device attached
[   85.854693][ T6161] random: crng reseeded on system resumption
[   85.890615][ T6161] fuse: Unknown parameter '8'
[   85.903950][ T6165] team0: Device wireguard0 is of different type
[   86.148012][ T5847] usb 42-1: SetAddress Request (2) to port 0
[   86.150871][ T5847] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[   86.279434][ T6162] vhci_hcd: connection reset by peer
[   86.320143][   T58] vhci_hcd vhci_hcd.2: stop threads
[   86.323262][   T58] vhci_hcd vhci_hcd.2: release socket
[   86.334209][ T1355] cfg80211: failed to load regulatory.db
[   86.336466][   T58] vhci_hcd vhci_hcd.2: disconnect device
[   86.343384][ T6172] netlink: 'syz.0.65': attribute type 1 has an invalid length.
[   86.346841][ T6172] netlink: 24 bytes leftover after parsing attributes in process `syz.0.65'.
[   87.002652][ T6174] binder: 6173:6174 ioctl c0306201 0 returned -14
[   87.145470][ T6176] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   87.711382][ T6187] netlink: 28 bytes leftover after parsing attributes in process `syz.0.71'.
[   88.119935][ T6194] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   88.138809][ T6193] netlink: 'syz.0.72': attribute type 2 has an invalid length.
[   88.141171][ T6193] netlink: 'syz.0.72': attribute type 1 has an invalid length.
[   88.143632][ T6193] netlink: 8 bytes leftover after parsing attributes in process `syz.0.72'.
[   88.429438][ T6191] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   89.873834][ T6200] netlink: 'syz.1.74': attribute type 2 has an invalid length.
[   89.878918][ T6200] netlink: 'syz.1.74': attribute type 1 has an invalid length.
[   89.882968][ T6200] netlink: 8 bytes leftover after parsing attributes in process `syz.1.74'.
[   90.281285][    C3] vxcan0: j1939_tp_rxtimer: 0xffff88802b648800: rx timeout, send abort
[   90.782573][    C3] vxcan0: j1939_tp_rxtimer: 0xffff88802b648c00: rx timeout, send abort
[   90.785927][    C3] vxcan0: j1939_tp_rxtimer: 0xffff88802b648800: abort rx timeout. Force session deactivation
[   91.020557][ T6209] netlink: 'syz.0.78': attribute type 2 has an invalid length.
[   91.023336][ T6209] FAULT_INJECTION: forcing a failure.
[   91.023336][ T6209] name failslab, interval 1, probability 0, space 0, times 1
[   91.027444][ T6209] CPU: 1 UID: 0 PID: 6209 Comm: syz.0.78 Not tainted syzkaller #0 PREEMPT(full) 
[   91.027459][ T6209] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   91.027466][ T6209] Call Trace:
[   91.027471][ T6209]  <TASK>
[   91.027476][ T6209]  dump_stack_lvl+0x100/0x190
[   91.027496][ T6209]  should_fail_ex.cold+0x5/0xa
[   91.027511][ T6209]  should_failslab+0xc2/0x120
[   91.027525][ T6209]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[   91.027544][ T6209]  ? __alloc_skb+0x140/0x710
[   91.027556][ T6209]  ? __alloc_skb+0x5b7/0x710
[   91.027568][ T6209]  __alloc_skb+0x140/0x710
[   91.027579][ T6209]  ? __alloc_skb+0x5b7/0x710
[   91.027594][ T6209]  ? __pfx___alloc_skb+0x10/0x10
[   91.027607][ T6209]  ? phonet_address_add+0xb8/0x390
[   91.027628][ T6209]  ? find_held_lock+0x2b/0x80
[   91.027651][ T6209]  phonet_address_notify+0x32/0xf0
[   91.027666][ T6209]  addr_doit+0x3bc/0x6c0
[   91.027679][ T6209]  ? __pfx_addr_doit+0x10/0x10
[   91.027696][ T6209]  ? rtnetlink_rcv_msg+0x93a/0xe90
[   91.027709][ T6209]  ? rtnetlink_rcv_msg+0x93a/0xe90
[   91.027722][ T6209]  ? __pfx_addr_doit+0x10/0x10
[   91.027735][ T6209]  rtnetlink_rcv_msg+0x95e/0xe90
[   91.027749][ T6209]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   91.027782][ T6209]  ? ref_tracker_free+0x37e/0x6c0
[   91.027798][ T6209]  netlink_rcv_skb+0x159/0x420
[   91.027814][ T6209]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   91.027828][ T6209]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   91.027848][ T6209]  ? netlink_deliver_tap+0x1ae/0xcc0
[   91.027865][ T6209]  netlink_unicast+0x585/0x850
[   91.027882][ T6209]  ? __pfx_netlink_unicast+0x10/0x10
[   91.027901][ T6209]  netlink_sendmsg+0x8b0/0xda0
[   91.027918][ T6209]  ? __pfx_netlink_sendmsg+0x10/0x10
[   91.027936][ T6209]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[   91.027955][ T6209]  ____sys_sendmsg+0x9e1/0xb70
[   91.027970][ T6209]  ? __pfx_netlink_sendmsg+0x10/0x10
[   91.027990][ T6209]  ? __pfx_____sys_sendmsg+0x10/0x10
[   91.028011][ T6209]  ___sys_sendmsg+0x190/0x1e0
[   91.028029][ T6209]  ? __pfx____sys_sendmsg+0x10/0x10
[   91.028050][ T6209]  ? find_held_lock+0x2b/0x80
[   91.028072][ T6209]  __sys_sendmsg+0x170/0x220
[   91.028085][ T6209]  ? __pfx___sys_sendmsg+0x10/0x10
[   91.028096][ T6209]  ? __fget_files+0x21f/0x3d0
[   91.028113][ T6209]  ? ksys_write+0x1ac/0x250
[   91.028126][ T6209]  ? rcu_is_watching+0x12/0xc0
[   91.028141][ T6209]  __do_fast_syscall_32+0xe7/0x950
[   91.028158][ T6209]  ? lockdep_hardirqs_on+0x78/0x100
[   91.028175][ T6209]  do_fast_syscall_32+0x32/0x70
[   91.028192][ T6209]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   91.028207][ T6209] RIP: 0023:0xf702efcc
[   91.028220][ T6209] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[   91.028236][ T6209] RSP: 002b:00000000f541d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[   91.028250][ T6209] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[   91.028257][ T6209] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   91.028263][ T6209] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   91.028268][ T6209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   91.028274][ T6209] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   91.028287][ T6209]  </TASK>
[   91.198176][ T5847] usb 42-1: device descriptor read/8, error -110
[   91.285898][    C3] vxcan0: j1939_tp_rxtimer: 0xffff88802b648c00: abort rx timeout. Force session deactivation
[   91.947961][ T6219] netlink: 'syz.2.79': attribute type 2 has an invalid length.
[   91.950256][ T6219] netlink: 'syz.2.79': attribute type 1 has an invalid length.
[   91.952508][ T6219] netlink: 8 bytes leftover after parsing attributes in process `syz.2.79'.
[   92.529506][ T5847] usb usb42-port1: attempt power cycle
[   92.575824][ T6226] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input5
[   92.975603][   T40] audit: type=1326 audit(1778751999.703:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6223 comm="syz.0.83" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x0
[   93.094656][ T6228] fuse: Bad value for 'fd'
[   93.398411][ T6236] netlink: 8 bytes leftover after parsing attributes in process `syz.2.85'.
[   93.536524][ T5847] usb usb42-port1: unable to enumerate USB device
[   93.791338][ T6249] netlink: 36 bytes leftover after parsing attributes in process `syz.2.90'.
[   94.272207][ T6256] fuse: Bad value for 'fd'
[   94.650713][ T6258] ip6gre1: entered promiscuous mode
[   95.010486][ T6265] netlink: 8 bytes leftover after parsing attributes in process `syz.2.94'.
[   95.373115][ T6280] netlink: 'syz.3.97': attribute type 2 has an invalid length.
[   95.375863][ T6280] netlink: 'syz.3.97': attribute type 1 has an invalid length.
[   95.378630][ T6280] netlink: 8 bytes leftover after parsing attributes in process `syz.3.97'.
[   96.648504][   T40] audit: type=1326 audit(1778752003.383:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6292 comm="syz.1.103" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70befcc code=0x0
[   96.701626][ T6287] netlink: 12 bytes leftover after parsing attributes in process `syz.0.101'.
[   96.709839][ T6287] netlink: 4 bytes leftover after parsing attributes in process `syz.0.101'.
[   96.789325][ T6297] tmpfs: Bad value for 'usrquota_inode_hardlimit'
[   96.874655][ T6301] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[   97.332159][ T6314] netlink: 8 bytes leftover after parsing attributes in process `syz.2.110'.
[   97.357132][ T6314] netlink: 8 bytes leftover after parsing attributes in process `syz.2.110'.
[   97.482741][ T6321] netlink: 'syz.3.109': attribute type 10 has an invalid length.
[   97.486432][ T6321] netlink: 40 bytes leftover after parsing attributes in process `syz.3.109'.
[   97.492899][ T6321] bridge0: port 3(dummy0) entered blocking state
[   97.496380][ T6321] bridge0: port 3(dummy0) entered disabled state
[   97.500439][ T6321] dummy0: entered allmulticast mode
[   97.514434][ T6321] dummy0: entered promiscuous mode
[   97.519554][ T6323] netlink: 'syz.1.112': attribute type 2 has an invalid length.
[   97.519730][ T6321] bridge0: port 3(dummy0) entered blocking state
[   97.527062][ T6321] bridge0: port 3(dummy0) entered forwarding state
[   97.931576][ T6331] netlink: 8 bytes leftover after parsing attributes in process `syz.1.114'.
[   98.292978][ T6338] netlink: 8 bytes leftover after parsing attributes in process `syz.0.117'.
[   98.296678][ T6338] netlink: 24 bytes leftover after parsing attributes in process `syz.0.117'.
[   98.967606][ T6371] netlink: 'syz.0.124': attribute type 2 has an invalid length.
[   98.970906][ T6371] netlink: 'syz.0.124': attribute type 1 has an invalid length.
[   98.974248][ T6371] netlink: 8 bytes leftover after parsing attributes in process `syz.0.124'.
[   99.421106][ T6373] netlink: 56 bytes leftover after parsing attributes in process `syz.2.127'.
[   99.437900][   T46] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[   99.444330][   T46] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[   99.458102][   T46] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[   99.465619][   T46] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[   99.935349][ T6382] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  100.275026][ T6387] Bluetooth: MGMT ver 1.23
[  100.527911][ T5532] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  100.691620][ T5532] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  100.697670][ T5532] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.701106][ T5532] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.705199][ T5532] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.709044][ T5532] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.712558][ T5532] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.716337][ T5532] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.719690][ T5532] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.722625][ T5532] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.726596][ T5532] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.731900][ T5532] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.735288][ T5532] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.739384][ T5532] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.742914][ T5532] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.746065][ T5532] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.750101][ T5532] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.755102][ T5532] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.759306][ T5532] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.763128][ T5532] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.766347][ T5532] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.769696][ T5532] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.773317][ T5532] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.776503][ T5532] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.780142][ T5532] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.784408][ T5532] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.789782][ T5532] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  100.793727][ T5532] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  100.797620][ T5532] usb 6-1: Product: syz
[  100.800251][ T5532] usb 6-1: Manufacturer: syz
[  100.802326][ T5532] usb 6-1: SerialNumber: syz
[  100.825281][ T5532] usb 6-1: config 0 descriptor??
[  100.843469][ T5532] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0xa8000)
[  100.978799][ T6380] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.999300][ T1128] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  101.002000][ T1128] ata1: failed to read log page 10h (errno=-5)
[  101.004490][ T1128] ata1.00: exception Emask 0x1 SAct 0xc000 SErr 0x0 action 0x0
[  101.007609][ T1128] ata1.00: irq_stat 0x41000000
[  101.009648][ T1128] ata1.00: failed command: READ FPDMA QUEUED
[  101.011604][ T1128] ata1.00: cmd 60/40:70:ee:59:01/05:00:00:00:00/40 tag 14 ncq dma 688128 in
[  101.011604][ T1128]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  101.016972][ T1128] ata1.00: status: { DRDY }
[  101.018523][ T1128] ata1.00: error: { ABRT }
[  101.019917][ T1128] ata1.00: failed command: READ FPDMA QUEUED
[  101.021715][ T1128] ata1.00: cmd 60/40:78:2e:5f:01/01:00:00:00:00/40 tag 15 ncq dma 163840 in
[  101.021715][ T1128]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  101.027496][ T1128] ata1.00: status: { DRDY }
[  101.029612][ T1128] ata1.00: error: { ABRT }
[  101.031799][ T1128] ata1.00: configured for UDMA/100
[  101.033583][ T1128] sd 0:0:0:0: [sda] tag#14 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  101.036621][ T1128] sd 0:0:0:0: [sda] tag#14 Sense Key : Aborted Command [current] 
[  101.039334][ T1128] sd 0:0:0:0: [sda] tag#14 Add. Sense: No additional sense information
[  101.042358][ T1128] sd 0:0:0:0: [sda] tag#14 CDB: Read(10) 28 00 00 01 59 ee 00 05 40 00
[  101.045070][ T1128] I/O error, dev sda, sector 88558 op 0x0:(READ) flags 0x84700 phys_seg 168 prio class 2
[  101.052869][ T1128] sd 0:0:0:0: [sda] tag#15 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  101.057101][ T1128] sd 0:0:0:0: [sda] tag#15 Sense Key : Aborted Command [current] 
[  101.062859][ T5532] usb 6-1: USB disconnect, device number 2
[  101.063852][ T1128] sd 0:0:0:0: [sda] tag#15 Add. Sense: No additional sense information
[  101.068562][ T1128] sd 0:0:0:0: [sda] tag#15 CDB: Read(10) 28 00 00 01 5f 2e 00 01 40 00
[  101.072855][ T1128] I/O error, dev sda, sector 89902 op 0x0:(READ) flags 0x80700 phys_seg 40 prio class 2
[  101.076310][ T1128] ata1: EH complete
[  101.107271][ T6380] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.139118][ T5532] yurex 6-1:0.0: USB YUREX #0 now disconnected
[  101.296475][   T40] audit: type=1326 audit(1778752008.023:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6391 comm="syz.0.133" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702efcc code=0x0
[  101.313775][ T6380] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.421381][ T6380] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.508920][ T1241] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.519333][ T1241] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.536501][ T1241] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.549011][ T1241] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  101.627338][ T6395] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  101.633389][ T6395] FAULT_INJECTION: forcing a failure.
[  101.633389][ T6395] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  101.639166][ T6395] CPU: 1 UID: 0 PID: 6395 Comm: syz.1.134 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  101.639193][ T6395] Tainted: [L]=SOFTLOCKUP
[  101.639199][ T6395] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  101.639210][ T6395] Call Trace:
[  101.639216][ T6395]  <TASK>
[  101.639224][ T6395]  dump_stack_lvl+0x100/0x190
[  101.639250][ T6395]  should_fail_ex.cold+0x5/0xa
[  101.639273][ T6395]  strncpy_from_user+0x3b/0x2d0
[  101.639296][ T6395]  do_getname+0x78/0x390
[  101.639325][ T6395]  __ia32_sys_mkdirat+0x77/0xc0
[  101.639349][ T6395]  __do_fast_syscall_32+0xe7/0x950
[  101.639377][ T6395]  ? lockdep_hardirqs_on+0x78/0x100
[  101.639404][ T6395]  do_fast_syscall_32+0x32/0x70
[  101.639431][ T6395]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  101.639452][ T6395] RIP: 0023:0xf70befcc
[  101.639467][ T6395] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  101.639483][ T6395] RSP: 002b:00000000f54ad50c EFLAGS: 00000292 ORIG_RAX: 0000000000000128
[  101.639499][ T6395] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000540
[  101.639510][ T6395] RDX: 00000000000001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  101.639520][ T6395] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  101.639530][ T6395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  101.639539][ T6395] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  101.639562][ T6395]  </TASK>
[  101.764116][ T6400] netlink: 24 bytes leftover after parsing attributes in process `syz.1.136'.
[  101.771822][ T6400] netlink: 8 bytes leftover after parsing attributes in process `syz.1.136'.
[  101.781443][ T6400] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  101.791726][ T6400] netdevsim netdevsim1 netdevsim0: left promiscuous mode
[  102.055604][ T6410] comedi comedi3: comedi_config --init_data is deprecated
[  102.451643][ T6429] netlink: 'syz.2.148': attribute type 2 has an invalid length.
[  102.502315][   T40] audit: type=1326 audit(1778752009.233:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6430 comm="syz.2.149" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6ffefcc code=0x0
[  104.147948][   T40] audit: type=1326 audit(1778752010.873:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6472 comm="syz.2.163" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6ffefcc code=0x0
[  104.739513][ T6489] binder: 6488:6489 ioctl c0306201 0 returned -14
[  104.883333][   T40] audit: type=1326 audit(1778752011.613:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.166" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  104.905066][   T40] audit: type=1326 audit(1778752011.613:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.166" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  104.922296][ T6494] __nla_validate_parse: 2 callbacks suppressed
[  104.922310][ T6494] netlink: 8 bytes leftover after parsing attributes in process `syz.0.167'.
[  104.924123][   T40] audit: type=1326 audit(1778752011.633:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.166" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa6fe8 code=0x7ffc0000
[  104.933873][ T6494] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  104.946539][ T6494] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[  104.947590][   T40] audit: type=1326 audit(1778752011.633:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.166" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa6fe8 code=0x7ffc0000
[  104.970140][   T40] audit: type=1326 audit(1778752011.633:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.166" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  104.991450][   T40] audit: type=1326 audit(1778752011.633:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.166" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa6fe8 code=0x7ffc0000
[  105.001798][   T40] audit: type=1326 audit(1778752011.633:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.166" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  108.774354][ T6541] netlink: 8 bytes leftover after parsing attributes in process `syz.3.180'.
[  109.168047][ T3261] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  109.269368][ T6552] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input6
[  109.340669][ T3261] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  109.345600][ T3261] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  109.352037][ T3261] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  109.355684][ T3261] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.374042][ T6546] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  109.388131][ T3261] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  109.647859][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  109.662048][ T6559] netlink: 28 bytes leftover after parsing attributes in process `syz.3.182'.
[  109.705000][ T6561] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input7
[  109.709243][ T6004] usb 8-1: USB disconnect, device number 2
[  109.872603][ T6568] 9p: Bad value for 'rfdno'
[  110.397972][ T6570] ieee802154 phy0 wpan0: encryption failed: -22
[  112.779927][ T6600] Driver unsupported XDP return value 0 on prog  (id 25) dev N/A, expect packet loss!
[  113.066658][ T6578] netlink: 'syz.0.191': attribute type 10 has an invalid length.
[  113.070209][ T6578] netlink: 40 bytes leftover after parsing attributes in process `syz.0.191'.
[  113.075081][ T6578] bridge0: port 3(dummy0) entered blocking state
[  113.077977][ T6578] bridge0: port 3(dummy0) entered disabled state
[  113.080668][ T6578] dummy0: entered allmulticast mode
[  113.087938][ T6578] dummy0: entered promiscuous mode
[  113.090665][ T6578] bridge0: port 3(dummy0) entered blocking state
[  113.093317][ T6578] bridge0: port 3(dummy0) entered forwarding state
[  113.837035][ T6614] mmap: syz.2.200 (6614) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  115.754340][   T40] kauditd_printk_skb: 191 callbacks suppressed
[  115.754353][   T40] audit: type=1326 audit(1778752022.483:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6636 comm="syz.0.209" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702efcc code=0x0
[  115.952463][ T6647] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input8
[  116.078237][ T6648] fuse: Bad value for 'fd'
[  117.797020][ T6669] process 'syz.0.216' launched '/dev/fd/10' with NULL argv: empty string added
[  118.488172][ T6677] fuse: Unknown parameter 'roo^mode'
[  118.663134][ T6685] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  118.916308][ T6691] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  119.071552][ T6691] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  119.077270][ T6691] overlayfs: failed to look up (tracing) for ino (-66)
[  119.297352][ T6691] Zero length message leads to an empty skb
[  119.350046][   T40] audit: type=1326 audit(1778752026.083:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6695 comm="syz.1.224" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70befcc code=0x0
[  119.513969][ T6701] netlink: 4 bytes leftover after parsing attributes in process `syz.3.225'.
[  120.738068][ T6710] netlink: 56 bytes leftover after parsing attributes in process `syz.1.228'.
[  120.811830][   T58] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  120.816333][   T58] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  120.820304][   T58] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  120.827036][   T58] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  120.905221][ T6712] loop5: detected capacity change from 0 to 7
[  120.906013][ T6716] bridge2: entered promiscuous mode
[  120.924476][ T6712] Dev loop5: unable to read RDB block 7
[  120.929347][ T6712]  loop5: unable to read partition table
[  120.932423][ T6712] loop5: partition table beyond EOD, truncated
[  120.934743][ T6712] loop_reread_partitions: partition scan of loop5 (�被x������ ) failed (rc=-5)
[  123.517518][ T6723] fuse: Bad value for 'fd'
[  123.710858][ T6738] netlink: 'syz.0.236': attribute type 2 has an invalid length.
[  123.714202][ T6738] netlink: 'syz.0.236': attribute type 1 has an invalid length.
[  123.717749][ T6738] netlink: 8 bytes leftover after parsing attributes in process `syz.0.236'.
[  124.407282][ T6745] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input9
[  124.772327][ T6751] netlink: 32 bytes leftover after parsing attributes in process `syz.2.239'.
[  125.000468][ T6761] fuse: Bad value for 'fd'
[  125.211529][ T6770] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  125.578060][ T6777] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.581796][ T6777] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.585096][ T6777] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.807097][ T6782] capability: warning: `syz.1.250' uses 32-bit capabilities (legacy support in use)
[  125.877755][ T6787] FAULT_INJECTION: forcing a failure.
[  125.877755][ T6787] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.909627][ T6787] CPU: 0 UID: 0 PID: 6787 Comm: syz.1.251 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  125.909661][ T6787] Tainted: [L]=SOFTLOCKUP
[  125.909665][ T6787] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  125.909673][ T6787] Call Trace:
[  125.909679][ T6787]  <TASK>
[  125.909686][ T6787]  dump_stack_lvl+0x100/0x190
[  125.909705][ T6787]  should_fail_ex.cold+0x5/0xa
[  125.909722][ T6787]  _copy_from_user+0x2e/0xd0
[  125.909734][ T6787]  copy_mount_options+0x76/0x190
[  125.909754][ T6787]  __ia32_sys_mount+0x1ab/0x310
[  125.909770][ T6787]  ? __pfx___ia32_sys_mount+0x10/0x10
[  125.909785][ T6787]  ? ksys_write+0x1ac/0x250
[  125.909799][ T6787]  ? rcu_is_watching+0x12/0xc0
[  125.909818][ T6787]  __do_fast_syscall_32+0xe7/0x950
[  125.909842][ T6787]  ? lockdep_hardirqs_on+0x78/0x100
[  125.909867][ T6787]  do_fast_syscall_32+0x32/0x70
[  125.909886][ T6787]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  125.909901][ T6787] RIP: 0023:0xf70befcc
[  125.909910][ T6787] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  125.909921][ T6787] RSP: 002b:00000000f54ad50c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  125.909932][ T6787] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  125.909938][ T6787] RDX: 00000000800001c0 RSI: 0000000000000c00 RDI: 0000000080000080
[  125.909945][ T6787] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  125.909951][ T6787] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  125.909956][ T6787] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  125.909970][ T6787]  </TASK>
[  125.916738][ T6787] tmpfs: Bad value for 'usrquota_inode_hardlimit'
[  126.294284][ T6801] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input11
[  126.611136][ T6808] fuse: Bad value for 'fd'
[  127.193250][ T6815] FAULT_INJECTION: forcing a failure.
[  127.193250][ T6815] name failslab, interval 1, probability 0, space 0, times 0
[  127.197381][ T6815] CPU: 0 UID: 0 PID: 6815 Comm: syz.2.261 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  127.197481][ T6815] Tainted: [L]=SOFTLOCKUP
[  127.197494][ T6815] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  127.197501][ T6815] Call Trace:
[  127.197507][ T6815]  <TASK>
[  127.197513][ T6815]  dump_stack_lvl+0x100/0x190
[  127.197533][ T6815]  should_fail_ex.cold+0x5/0xa
[  127.197548][ T6815]  should_failslab+0xc2/0x120
[  127.197563][ T6815]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  127.197581][ T6815]  ? __alloc_skb+0x140/0x710
[  127.197593][ T6815]  ? __alloc_skb+0x5b7/0x710
[  127.197605][ T6815]  __alloc_skb+0x140/0x710
[  127.197615][ T6815]  ? __alloc_skb+0x5b7/0x710
[  127.197626][ T6815]  ? __pfx___alloc_skb+0x10/0x10
[  127.197641][ T6815]  alloc_skb_with_frags+0xdd/0x760
[  127.197655][ T6815]  ? __might_fault+0xc5/0x140
[  127.197671][ T6815]  ? __might_fault+0xc5/0x140
[  127.197690][ T6815]  sock_alloc_send_pskb+0x801/0x980
[  127.197702][ T6815]  ? _copy_from_iter+0x270/0x1690
[  127.197717][ T6815]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  127.197728][ T6815]  ? _parse_integer_limit+0x17f/0x1d0
[  127.197744][ T6815]  ? iov_iter_advance+0xac/0x6d0
[  127.197788][ T6815]  tun_get_user+0x904/0x3c20
[  127.197827][ T6815]  ? __pfx_tun_get_user+0x10/0x10
[  127.197856][ T6815]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  127.197885][ T6815]  ? find_held_lock+0x2b/0x80
[  127.197908][ T6815]  ? tun_get+0x191/0x370
[  127.197928][ T6815]  ? tun_get+0x191/0x370
[  127.197968][ T6815]  tun_chr_write_iter+0xdc/0x200
[  127.197995][ T6815]  vfs_write+0x6ac/0x1070
[  127.198017][ T6815]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  127.198044][ T6815]  ? __pfx_vfs_write+0x10/0x10
[  127.198060][ T6815]  ? find_held_lock+0x2b/0x80
[  127.198095][ T6815]  ksys_write+0x12a/0x250
[  127.198115][ T6815]  ? __pfx_ksys_write+0x10/0x10
[  127.198134][ T6815]  ? ksys_write+0x1ac/0x250
[  127.198152][ T6815]  ? rcu_is_watching+0x12/0xc0
[  127.198169][ T6815]  __do_fast_syscall_32+0xe7/0x950
[  127.198187][ T6815]  ? lockdep_hardirqs_on+0x78/0x100
[  127.198205][ T6815]  do_fast_syscall_32+0x32/0x70
[  127.198223][ T6815]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  127.198238][ T6815] RIP: 0023:0xf6ffefcc
[  127.198250][ T6815] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  127.198260][ T6815] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[  127.198271][ T6815] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000500
[  127.198278][ T6815] RDX: 000000000000007a RSI: 0000000000000000 RDI: 0000000000000000
[  127.198285][ T6815] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  127.198291][ T6815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  127.198297][ T6815] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  127.198310][ T6815]  </TASK>
[  127.441271][ T6820] netlink: 4 bytes leftover after parsing attributes in process `syz.0.264'.
[  127.445543][ T6820] netlink: 4 bytes leftover after parsing attributes in process `syz.0.264'.
[  127.541848][ T6825] netlink: 20 bytes leftover after parsing attributes in process `syz.2.266'.
[  127.566775][   T40] audit: type=1326 audit(1778752034.293:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6827 comm="syz.3.263" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x0
[  127.817714][ T6843] netlink: 28 bytes leftover after parsing attributes in process `syz.2.269'.
[  127.838305][ T6844] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input12
[  127.871503][   T40] audit: type=1326 audit(1778752034.603:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6845 comm="syz.2.270" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6ffefcc code=0x0
[  128.227258][ T6851] netlink: 56 bytes leftover after parsing attributes in process `syz.1.271'.
[  128.421785][ T6860] netlink: 56 bytes leftover after parsing attributes in process `syz.1.274'.
[  128.572559][ T6867] netlink: 'syz.3.277': attribute type 39 has an invalid length.
[  128.693416][ T6871] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[  130.940609][ T6893] netlink: 8 bytes leftover after parsing attributes in process `syz.0.283'.
[  130.999919][ T6896] team0: Device wireguard0 is of different type
[  131.262449][   T40] audit: type=1804 audit(1778752037.993:210): pid=6904 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.287" name="/newroot/77/bus/bus" dev="overlay" ino=453 res=1 errno=0
[  131.353228][ T6906] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input13
[  131.368707][ T6907] fuse: Bad value for 'user_id'
[  131.374460][ T6907] fuse: Bad value for 'user_id'
[  131.541506][   T40] audit: type=1326 audit(1778752038.273:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6910 comm="syz.0.288" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702efcc code=0x0
[  132.556726][ T6923] fuse: Bad value for 'fd'
[  133.871052][ T6940] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  134.238529][ T6942] netlink: 'syz.0.293': attribute type 2 has an invalid length.
[  134.241205][ T6942] netlink: 'syz.0.293': attribute type 1 has an invalid length.
[  134.243799][ T6942] netlink: 8 bytes leftover after parsing attributes in process `syz.0.293'.
[  134.553381][ T6925] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  134.556042][ T6925] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  134.589678][ T6925] vhci_hcd vhci_hcd.0: Device attached
[  135.588347][ T6925] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[  135.929219][ T6950] FAULT_INJECTION: forcing a failure.
[  135.929219][ T6950] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.934748][ T6950] CPU: 3 UID: 0 PID: 6950 Comm: syz.2.296 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  135.934774][ T6950] Tainted: [L]=SOFTLOCKUP
[  135.934779][ T6950] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  135.934788][ T6950] Call Trace:
[  135.934795][ T6950]  <TASK>
[  135.934802][ T6950]  dump_stack_lvl+0x100/0x190
[  135.934826][ T6950]  should_fail_ex.cold+0x5/0xa
[  135.934847][ T6950]  _copy_from_iter+0x1f4/0x1690
[  135.934865][ T6950]  ? __asan_memset+0x23/0x50
[  135.934894][ T6950]  ? __pfx__copy_from_iter+0x10/0x10
[  135.934908][ T6950]  ? __pfx___alloc_skb+0x10/0x10
[  135.934933][ T6950]  netlink_sendmsg+0x808/0xda0
[  135.934959][ T6950]  ? __pfx_netlink_sendmsg+0x10/0x10
[  135.934980][ T6950]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  135.935006][ T6950]  ____sys_sendmsg+0x9e1/0xb70
[  135.935027][ T6950]  ? __pfx_netlink_sendmsg+0x10/0x10
[  135.935048][ T6950]  ? __pfx_____sys_sendmsg+0x10/0x10
[  135.935075][ T6950]  ___sys_sendmsg+0x190/0x1e0
[  135.935097][ T6950]  ? __pfx____sys_sendmsg+0x10/0x10
[  135.935127][ T6950]  ? find_held_lock+0x2b/0x80
[  135.935157][ T6950]  __sys_sendmsg+0x170/0x220
[  135.935173][ T6950]  ? __pfx___sys_sendmsg+0x10/0x10
[  135.935187][ T6950]  ? __fget_files+0x21f/0x3d0
[  135.935209][ T6950]  ? ksys_write+0x1ac/0x250
[  135.935226][ T6950]  ? rcu_is_watching+0x12/0xc0
[  135.935245][ T6950]  __do_fast_syscall_32+0xe7/0x950
[  135.935269][ T6950]  ? lockdep_hardirqs_on+0x78/0x100
[  135.935291][ T6950]  do_fast_syscall_32+0x32/0x70
[  135.935313][ T6950]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  135.935331][ T6950] RIP: 0023:0xf6ffefcc
[  135.935345][ T6950] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  135.935358][ T6950] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  135.935372][ T6950] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[  135.935381][ T6950] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  135.935389][ T6950] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  135.935397][ T6950] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  135.935405][ T6950] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  135.935423][ T6950]  </TASK>
[  135.950999][ T1468] usb 40-1: SetAddress Request (2) to port 0
[  136.129921][ T6953] netlink: 'syz.3.297': attribute type 10 has an invalid length.
[  136.133484][ T6953] netlink: 40 bytes leftover after parsing attributes in process `syz.3.297'.
[  136.290039][   T40] audit: type=1326 audit(1778752043.023:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.0.299" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702efcc code=0x0
[  136.777867][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  137.510688][ T1468] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd
[  137.512406][ T6952] block nbd0: shutting down sockets
[  137.526649][ T6926] vhci_hcd: connection closed
[  137.527340][   T12] vhci_hcd vhci_hcd.1: stop threads
[  137.531106][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[  137.531192][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  137.533817][   T12] vhci_hcd vhci_hcd.1: release socket
[  137.540992][   T12] vhci_hcd vhci_hcd.1: disconnect device
[  137.624723][ T6962] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input14
[  137.758399][   T40] audit: type=1326 audit(1778752044.483:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6960 comm="syz.2.301" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffefcc code=0x7ffc0000
[  137.768295][   T40] audit: type=1326 audit(1778752044.483:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6960 comm="syz.2.301" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffefcc code=0x7ffc0000
[  137.782278][   T40] audit: type=1326 audit(1778752044.483:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6960 comm="syz.2.301" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffefcc code=0x7ffc0000
[  137.796884][   T40] audit: type=1326 audit(1778752044.493:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6960 comm="syz.2.301" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffefcc code=0x7ffc0000
[  137.809283][   T40] audit: type=1326 audit(1778752044.493:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6960 comm="syz.2.301" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf6ffefcc code=0x7ffc0000
[  137.819588][   T40] audit: type=1326 audit(1778752044.493:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6960 comm="syz.2.301" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffefcc code=0x7ffc0000
[  137.829569][   T40] audit: type=1326 audit(1778752044.503:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6960 comm="syz.2.301" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffefcc code=0x7ffc0000
[  137.841610][   T40] audit: type=1326 audit(1778752044.503:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6960 comm="syz.2.301" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffefcc code=0x7ffc0000
[  137.851643][   T40] audit: type=1326 audit(1778752044.503:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6960 comm="syz.2.301" exe="/syz-executor" sig=0 arch=40000003 syscall=394 compat=1 ip=0xf6ffefcc code=0x7ffc0000
[  138.050479][ T6976] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  138.139410][ T6980] netlink: 'syz.0.304': attribute type 2 has an invalid length.
[  138.462443][ T6984] comedi comedi3: comedi_config --init_data is deprecated
[  138.468572][ T6984] netlink: 'syz.1.307': attribute type 1 has an invalid length.
[  138.473711][ T6984] netlink: 24 bytes leftover after parsing attributes in process `syz.1.307'.
[  138.557159][ T6986] bridge0: port 1(bridge_slave_0) entered disabled state
[  138.562594][ T6986] bridge0: port 1(bridge_slave_0) entered blocking state
[  138.565750][ T6986] bridge0: port 1(bridge_slave_0) entered forwarding state
[  139.935459][ T7011] netlink: 'syz.3.316': attribute type 2 has an invalid length.
[  139.953172][ T7011] !: entered promiscuous mode
[  140.129198][ T7018] netlink: 4 bytes leftover after parsing attributes in process `syz.3.319'.
[  141.051279][ T7028] fuse: Bad value for 'fd'
[  142.364323][ T7042] 9pnet_virtio: no channels available for device syz
[  142.382795][ T7044] FAULT_INJECTION: forcing a failure.
[  142.382795][ T7044] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  142.388652][ T7044] CPU: 3 UID: 0 PID: 7044 Comm: syz.0.327 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  142.388680][ T7044] Tainted: [L]=SOFTLOCKUP
[  142.388686][ T7044] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  142.388696][ T7044] Call Trace:
[  142.388705][ T7044]  <TASK>
[  142.388713][ T7044]  dump_stack_lvl+0x100/0x190
[  142.388740][ T7044]  should_fail_ex.cold+0x5/0xa
[  142.388763][ T7044]  save_fsave_header+0x14c/0x2f0
[  142.388790][ T7044]  ? __pfx_save_fsave_header+0x10/0x10
[  142.388823][ T7044]  ? copy_fpstate_to_sigframe+0x2b8/0xb00
[  142.388849][ T7044]  ? rcu_is_watching+0x12/0xc0
[  142.388873][ T7044]  ? copy_fpstate_to_sigframe+0x2b8/0xb00
[  142.388898][ T7044]  ? __local_bh_enable_ip+0x9e/0x120
[  142.388924][ T7044]  copy_fpstate_to_sigframe+0x76a/0xb00
[  142.388954][ T7044]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  142.388975][ T7044]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  142.389007][ T7044]  ? posixtimer_deliver_signal+0x3c3/0x690
[  142.389029][ T7044]  ? x86_task_fpu+0x5f/0x90
[  142.389055][ T7044]  get_sigframe+0x3fb/0x940
[  142.389084][ T7044]  ? __pfx_get_sigframe+0x10/0x10
[  142.389111][ T7044]  ? siginfo_layout+0x156/0x290
[  142.389135][ T7044]  ia32_setup_rt_frame+0xe7/0xaf0
[  142.389160][ T7044]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[  142.389216][ T7044]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  142.389242][ T7044]  ? kernel_write+0x5e3/0x6c0
[  142.389261][ T7044]  arch_do_signal_or_restart+0x459/0x7a0
[  142.389283][ T7044]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  142.389308][ T7044]  ? fput+0x79/0x100
[  142.389327][ T7044]  ? rcu_is_watching+0x12/0xc0
[  142.389349][ T7044]  exit_to_user_mode_loop+0x8b/0x4f0
[  142.389368][ T7044]  ? rcu_is_watching+0x12/0xc0
[  142.389388][ T7044]  do_int80_emulation+0x58b/0x700
[  142.389418][ T7044]  asm_int80_emulation+0x1a/0x20
[  142.389444][ T7044] RIP: 0023:0xf71661ab
[  142.389458][ T7044] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  142.389474][ T7044] RSP: 002b:00000000f541d4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[  142.389492][ T7044] RAX: 0000000000000001 RBX: 0000000000000003 RCX: 00000000f541d5c0
[  142.389502][ T7044] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  142.389511][ T7044] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  142.389520][ T7044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  142.389529][ T7044] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  142.389551][ T7044]  </TASK>
[  142.568003][ T1468] usb 40-1: device descriptor read/8, error -110
[  143.079070][ T1468] usb usb40-port1: attempt power cycle
[  143.383852][   T40] kauditd_printk_skb: 136 callbacks suppressed
[  143.383868][   T40] audit: type=1326 audit(1778752050.113:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7052 comm="syz.2.331" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6ffefcc code=0x0
[  143.668548][ T1468] usb usb40-port1: unable to enumerate USB device
[  143.752099][ T7060] netlink: 'syz.0.332': attribute type 2 has an invalid length.
[  145.134197][ T7073] 9pnet_virtio: no channels available for device syz
[  146.454441][ T7088] netlink: 4 bytes leftover after parsing attributes in process `syz.1.340'.
[  146.729317][ T7088] team0: Device wireguard0 is of different type
[  147.001428][ T7081] fuse: Bad value for 'fd'
[  147.156762][   T40] audit: type=1326 audit(1778752053.883:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.1.342" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70befcc code=0x0
[  147.267507][ T7102] fuse: Bad value for 'fd'
[  147.731067][ T7119] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input15
[  147.998547][ T7128] netlink: 'syz.0.346': attribute type 2 has an invalid length.
[  148.001531][ T7128] netlink: 'syz.0.346': attribute type 1 has an invalid length.
[  148.004740][ T7128] netlink: 8 bytes leftover after parsing attributes in process `syz.0.346'.
[  148.265170][ T7137] syz_tun: entered allmulticast mode
[  148.364689][ T7146] netlink: 'syz.1.347': attribute type 2 has an invalid length.
[  149.732296][   T40] audit: type=1326 audit(1778752056.463:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7180 comm="syz.0.356" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702efcc code=0x0
[  150.594888][ T7195] netlink: 8 bytes leftover after parsing attributes in process `syz.2.361'.
[  150.636766][ T7195] 8021q: adding VLAN 0 to HW filter on device bond1
[  150.723653][ T7193] netlink: 80 bytes leftover after parsing attributes in process `syz.1.360'.
[  150.800997][ T7192] block device autoloading is deprecated and will be removed.
[  150.819656][ T7192] SQUASHFS error: Failed to read block 0x0: -5
[  150.821452][ T7207] bond2: entered promiscuous mode
[  151.859063][ T7225] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.863105][ T7229] netlink: 'syz.3.368': attribute type 2 has an invalid length.
[  151.864546][ T7225] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.868960][ T7225] bridge0: port 1(bridge_slave_0) entered forwarding state
[  152.256071][ T7249] fuse: Bad value for 'fd'
[  152.763681][ T7251] netlink: 32 bytes leftover after parsing attributes in process `syz.0.380'.
[  153.023428][ T7257] FAULT_INJECTION: forcing a failure.
[  153.023428][ T7257] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.029681][ T7257] CPU: 3 UID: 0 PID: 7257 Comm: syz.1.383 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  153.029710][ T7257] Tainted: [L]=SOFTLOCKUP
[  153.029765][ T7257] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  153.029780][ T7257] Call Trace:
[  153.029790][ T7257]  <TASK>
[  153.029797][ T7257]  dump_stack_lvl+0x100/0x190
[  153.029829][ T7257]  should_fail_ex.cold+0x5/0xa
[  153.029852][ T7257]  strncpy_from_user+0x3b/0x2d0
[  153.029873][ T7257]  do_getname+0x78/0x390
[  153.029901][ T7257]  user_path_at+0x26/0x60
[  153.029921][ T7257]  __ia32_sys_mount+0x1fb/0x310
[  153.029942][ T7257]  ? __pfx___ia32_sys_mount+0x10/0x10
[  153.029962][ T7257]  ? ksys_write+0x1ac/0x250
[  153.029982][ T7257]  ? rcu_is_watching+0x12/0xc0
[  153.030007][ T7257]  __do_fast_syscall_32+0xe7/0x950
[  153.030032][ T7257]  ? lockdep_hardirqs_on+0x78/0x100
[  153.030059][ T7257]  do_fast_syscall_32+0x32/0x70
[  153.030084][ T7257]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.030106][ T7257] RIP: 0023:0xf70befcc
[  153.030122][ T7257] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  153.030139][ T7257] RSP: 002b:00000000f54ad50c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  153.030156][ T7257] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  153.030167][ T7257] RDX: 00000000800001c0 RSI: 0000000000000c00 RDI: 0000000080000080
[  153.030176][ T7257] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  153.030187][ T7257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  153.030197][ T7257] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  153.030219][ T7257]  </TASK>
[  153.469058][ T7284] netlink: 'syz.0.387': attribute type 10 has an invalid length.
[  153.471738][ T7284] netlink: 40 bytes leftover after parsing attributes in process `syz.0.387'.
[  153.685782][ T7287] binder: 7285:7287 ioctl 40406f06 80000000 returned -22
[  154.447146][ T7291] netlink: 4 bytes leftover after parsing attributes in process `syz.1.395'.
[  154.452327][ T7291] netlink: 4 bytes leftover after parsing attributes in process `syz.1.395'.
[  154.532683][ T7296] netlink: 28 bytes leftover after parsing attributes in process `syz.1.397'.
[  154.641516][ T7281] fuse: Bad value for 'fd'
[  154.681499][ T7304] netlink: 'syz.1.400': attribute type 2 has an invalid length.
[  155.465976][ T7303] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  155.470296][ T7303] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  155.496071][ T7303] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  155.537181][ T7303] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  155.540063][ T7303] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  155.545463][ T7303] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  155.553701][ T7303] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  155.556599][ T7303] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  155.575060][ T7303] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  155.580742][ T7303] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  155.583700][ T7303] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  155.595847][ T7303] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  155.638620][ T7311] netlink: 56 bytes leftover after parsing attributes in process `syz.2.404'.
[  155.654209][   T40] audit: type=1326 audit(1778752062.383:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7312 comm="syz.3.403" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa6fcc code=0x0
[  155.694315][ T7315] netlink: 16 bytes leftover after parsing attributes in process `syz.1.405'.
[  155.719405][ T7320] netlink: 4 bytes leftover after parsing attributes in process `syz.2.407'.
[  155.903599][ T7315] tmpfs: Cannot change global quota limit on remount
[  155.956470][ T7330] fuse: Bad value for 'fd'
[  157.117978][ T5752] Bluetooth: hci0: command 0x0c1a tx timeout
[  157.598035][ T5752] Bluetooth: hci3: command 0x0c1a tx timeout
[  157.600239][   T62] Bluetooth: hci2: command 0x0c1a tx timeout
[  157.600278][ T5744] Bluetooth: hci1: command 0x0c1a tx timeout
[  158.514484][ T7349] 9pnet_virtio: no channels available for device syz
[  159.127304][ T7356] netlink: 64 bytes leftover after parsing attributes in process `syz.1.419'.
[  159.198037][ T5744] Bluetooth: hci0: command 0x0c1a tx timeout
[  159.678147][ T5744] Bluetooth: hci1: command 0x0c1a tx timeout
[  159.688018][ T5744] Bluetooth: hci2: command 0x0c1a tx timeout
[  159.688079][   T62] Bluetooth: hci3: command 0x0c1a tx timeout
[  160.564215][   T40] audit: type=1326 audit(1778752067.293:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7380 comm="syz.3.424" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa6fcc code=0x0
[  160.805451][ T7385] fuse: Bad value for 'fd'
[  161.278918][   T62] Bluetooth: hci0: command 0x0c1a tx timeout
[  161.535732][ T7400] FAULT_INJECTION: forcing a failure.
[  161.535732][ T7400] name failslab, interval 1, probability 0, space 0, times 0
[  161.541084][ T7400] CPU: 3 UID: 0 PID: 7400 Comm: syz.3.429 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  161.541113][ T7400] Tainted: [L]=SOFTLOCKUP
[  161.541118][ T7400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  161.541129][ T7400] Call Trace:
[  161.541135][ T7400]  <TASK>
[  161.541142][ T7400]  dump_stack_lvl+0x100/0x190
[  161.541168][ T7400]  should_fail_ex.cold+0x5/0xa
[  161.541193][ T7400]  should_failslab+0xc2/0x120
[  161.541211][ T7400]  __kmalloc_cache_noprof+0x7a/0x6f0
[  161.541234][ T7400]  ? rtnl_newlink+0x126/0x2380
[  161.541254][ T7400]  ? __pfx_rtnl_newlink+0x10/0x10
[  161.541274][ T7400]  rtnl_newlink+0x126/0x2380
[  161.541299][ T7400]  ? __pfx_rtnl_newlink+0x10/0x10
[  161.541316][ T7400]  ? rcu_is_watching+0x12/0xc0
[  161.541337][ T7400]  ? kasan_quarantine_put+0x104/0x240
[  161.541352][ T7400]  ? lockdep_hardirqs_on+0x78/0x100
[  161.541380][ T7400]  ? kfree_skbmem+0x19a/0x210
[  161.541402][ T7400]  ? kmem_cache_free+0x127/0x6c0
[  161.541432][ T7400]  ? __lock_acquire+0x4a5/0x2630
[  161.541453][ T7400]  ? __dev_queue_xmit+0x9ef/0x4950
[  161.541486][ T7400]  ? find_held_lock+0x2b/0x80
[  161.541507][ T7400]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  161.541526][ T7400]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  161.541547][ T7400]  ? __pfx_rtnl_newlink+0x10/0x10
[  161.541567][ T7400]  rtnetlink_rcv_msg+0x95e/0xe90
[  161.541589][ T7400]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  161.541615][ T7400]  ? ref_tracker_free+0x37e/0x6c0
[  161.541640][ T7400]  netlink_rcv_skb+0x159/0x420
[  161.541664][ T7400]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  161.541686][ T7400]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  161.541717][ T7400]  ? netlink_deliver_tap+0x1ae/0xcc0
[  161.541744][ T7400]  netlink_unicast+0x585/0x850
[  161.541770][ T7400]  ? __pfx_netlink_unicast+0x10/0x10
[  161.541800][ T7400]  netlink_sendmsg+0x8b0/0xda0
[  161.541827][ T7400]  ? __pfx_netlink_sendmsg+0x10/0x10
[  161.541882][ T7400]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  161.541913][ T7400]  ____sys_sendmsg+0x9e1/0xb70
[  161.541934][ T7400]  ? __pfx_netlink_sendmsg+0x10/0x10
[  161.541960][ T7400]  ? __pfx_____sys_sendmsg+0x10/0x10
[  161.541994][ T7400]  ___sys_sendmsg+0x190/0x1e0
[  161.542020][ T7400]  ? __pfx____sys_sendmsg+0x10/0x10
[  161.542051][ T7400]  ? find_held_lock+0x2b/0x80
[  161.542075][ T7400]  __sys_sendmsg+0x170/0x220
[  161.542088][ T7400]  ? __pfx___sys_sendmsg+0x10/0x10
[  161.542100][ T7400]  ? __fget_files+0x21f/0x3d0
[  161.542118][ T7400]  ? ksys_write+0x1ac/0x250
[  161.542133][ T7400]  ? rcu_is_watching+0x12/0xc0
[  161.542149][ T7400]  __do_fast_syscall_32+0xe7/0x950
[  161.542166][ T7400]  ? lockdep_hardirqs_on+0x78/0x100
[  161.542184][ T7400]  do_fast_syscall_32+0x32/0x70
[  161.542202][ T7400]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  161.542217][ T7400] RIP: 0023:0xf7fa6fcc
[  161.542228][ T7400] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  161.542239][ T7400] RSP: 002b:00000000f544550c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  161.542251][ T7400] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[  161.542257][ T7400] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  161.542264][ T7400] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  161.542270][ T7400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  161.542276][ T7400] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  161.542290][ T7400]  </TASK>
[  161.777957][ T5744] Bluetooth: hci2: command 0x0c1a tx timeout
[  161.780743][ T5744] Bluetooth: hci1: command 0x0c1a tx timeout
[  161.783092][   T62] Bluetooth: hci3: command 0x0c1a tx timeout
[  162.267635][ T7396] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  163.134216][ T7433] netlink: 20 bytes leftover after parsing attributes in process `syz.0.436'.
[  163.139041][ T7433] netlink: 4 bytes leftover after parsing attributes in process `syz.0.436'.
[  163.546976][   T40] audit: type=1326 audit(1778752070.273:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7435 comm="syz.3.437" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa6fcc code=0x0
[  164.006300][ T7441] syzkaller0: entered promiscuous mode
[  164.008879][ T7441] syzkaller0: entered allmulticast mode
[  164.019529][ T7441] tipc: Started in network mode
[  164.023404][ T7441] tipc: Node identity faf75a28571a, cluster identity 4711
[  164.026647][ T7441] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  164.030658][ T7440] tipc: Resetting bearer <eth:syzkaller0>
[  164.048348][ T7440] tipc: Disabling bearer <eth:syzkaller0>
[  164.230957][ T7445] bridge0: port 1(bridge_slave_0) entered disabled state
[  164.234598][ T7445] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.237032][ T7445] bridge0: port 1(bridge_slave_0) entered forwarding state
[  164.864020][ T7459] FAULT_INJECTION: forcing a failure.
[  164.864020][ T7459] name failslab, interval 1, probability 0, space 0, times 0
[  164.869797][ T7459] CPU: 2 UID: 0 PID: 7459 Comm: syz.3.447 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  164.869823][ T7459] Tainted: [L]=SOFTLOCKUP
[  164.869829][ T7459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  164.869838][ T7459] Call Trace:
[  164.869846][ T7459]  <TASK>
[  164.869852][ T7459]  dump_stack_lvl+0x100/0x190
[  164.869878][ T7459]  should_fail_ex.cold+0x5/0xa
[  164.869902][ T7459]  ? tomoyo_encode2+0xfb/0x3c0
[  164.869922][ T7459]  should_failslab+0xc2/0x120
[  164.869944][ T7459]  __kmalloc_noprof+0xe0/0x850
[  164.869966][ T7459]  tomoyo_encode2+0xfb/0x3c0
[  164.869991][ T7459]  tomoyo_encode+0x29/0x50
[  164.870009][ T7459]  tomoyo_mount_acl+0x14c/0x8b0
[  164.870029][ T7459]  ? is_bpf_text_address+0x8a/0x1a0
[  164.870053][ T7459]  ? is_bpf_text_address+0x8a/0x1a0
[  164.870079][ T7459]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  164.870104][ T7459]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  164.870123][ T7459]  ? kernel_text_address+0x8d/0x100
[  164.870141][ T7459]  ? __lock_acquire+0x4a5/0x2630
[  164.870158][ T7459]  ? unwind_get_return_address+0x59/0xa0
[  164.870182][ T7459]  ? arch_stack_walk+0xa6/0xf0
[  164.870224][ T7459]  ? tomoyo_domain+0xb2/0x150
[  164.870246][ T7459]  ? tomoyo_profile+0x47/0x60
[  164.870273][ T7459]  tomoyo_mount_permission+0x214/0x460
[  164.870291][ T7459]  ? tomoyo_mount_permission+0x1f6/0x460
[  164.870314][ T7459]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  164.870348][ T7459]  security_sb_mount+0xdd/0x270
[  164.870383][ T7459]  path_mount+0x158/0x23d0
[  164.870411][ T7459]  ? __pfx_path_mount+0x10/0x10
[  164.870434][ T7459]  ? lockdep_hardirqs_on+0x78/0x100
[  164.870461][ T7459]  ? putname+0xb1/0x110
[  164.870483][ T7459]  ? kmem_cache_free+0x127/0x6c0
[  164.870514][ T7459]  ? __ia32_sys_mount+0x292/0x310
[  164.870538][ T7459]  __ia32_sys_mount+0x292/0x310
[  164.870561][ T7459]  ? __pfx___ia32_sys_mount+0x10/0x10
[  164.870584][ T7459]  ? ksys_write+0x1ac/0x250
[  164.870603][ T7459]  ? rcu_is_watching+0x12/0xc0
[  164.870629][ T7459]  __do_fast_syscall_32+0xe7/0x950
[  164.870654][ T7459]  ? lockdep_hardirqs_on+0x78/0x100
[  164.870681][ T7459]  do_fast_syscall_32+0x32/0x70
[  164.870706][ T7459]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  164.870733][ T7459] RIP: 0023:0xf7fa6fcc
[  164.870746][ T7459] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  164.870762][ T7459] RSP: 002b:00000000f546650c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  164.870779][ T7459] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  164.870789][ T7459] RDX: 00000000800001c0 RSI: 0000000000000c00 RDI: 0000000080000080
[  164.870797][ T7459] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  164.870807][ T7459] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  164.870816][ T7459] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  164.870838][ T7459]  </TASK>
[  165.325133][ T7474] netlink: 'syz.1.448': attribute type 2 has an invalid length.
[  165.328503][ T7474] netlink: 'syz.1.448': attribute type 1 has an invalid length.
[  165.332123][ T7474] netlink: 8 bytes leftover after parsing attributes in process `syz.1.448'.
[  165.517044][ T7476] netlink: 'syz.3.451': attribute type 2 has an invalid length.
[  165.520553][ T7476] netlink: 'syz.3.451': attribute type 1 has an invalid length.
[  165.523623][ T7476] netlink: 8 bytes leftover after parsing attributes in process `syz.3.451'.
[  166.865687][ T7491] fuse: Bad value for 'fd'
[  167.256144][ T7501] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  167.269262][ T7501] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  167.508003][ T1471] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[  167.663146][ T1471] usb 5-1: config 0 has no interfaces?
[  167.666003][ T1471] usb 5-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00
[  167.670478][ T1471] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.678582][ T1471] usb 5-1: config 0 descriptor??
[  167.890513][ T7496] xt_nfacct: accounting object `\�$�9Z�M#���mU�|�^c�\F9YⳈ���' does not exist
[  168.230897][ T1355] usb 8-1: new low-speed USB device number 3 using dummy_hcd
[  168.381905][ T1355] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  168.385431][ T1355] usb 8-1: config 0 has no interface number 0
[  168.391225][ T1355] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  168.396451][ T1355] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  168.401637][ T1355] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  168.405319][ T1355] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  168.416774][ T1355] usb 8-1: config 0 descriptor??
[  168.419937][ T7502] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  168.432551][ T1355] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  168.647738][    C2] iowarrior 8-1:0.1: iowarrior_callback - usb_submit_urb failed with result -1
[  168.658873][   T10] usb 8-1: USB disconnect, device number 3
[  170.422729][ T1471] usb 5-1: USB disconnect, device number 2
[  170.485953][ T7539] netlink: 'syz.1.469': attribute type 2 has an invalid length.
[  171.119665][ T7557] binder: 7548:7557 ioctl c0306201 80000640 returned -22
[  171.700586][ T7565] netlink: 'syz.3.475': attribute type 10 has an invalid length.
[  171.703280][ T7565] netlink: 40 bytes leftover after parsing attributes in process `syz.3.475'.
[  173.325837][ T7569] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[  173.449524][ T7582] netlink: 'syz.0.480': attribute type 2 has an invalid length.
[  173.491825][ T7584] netlink: 8 bytes leftover after parsing attributes in process `syz.2.482'.
[  173.534816][ T7584] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  173.540313][ T7584] netdevsim netdevsim2 netdevsim0: left promiscuous mode
[  173.664338][ T7586] netlink: 'syz.3.481': attribute type 2 has an invalid length.
[  173.756777][ T7595] netlink: 8 bytes leftover after parsing attributes in process `syz.2.485'.
[  175.038416][ T7616] bond1: entered promiscuous mode
[  175.849724][ T7644] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  176.003940][ T7646] netlink: 'syz.2.500': attribute type 2 has an invalid length.
[  176.350688][ T7651] netlink: 8 bytes leftover after parsing attributes in process `syz.3.504'.
[  176.677094][ T7667] netlink: 'syz.3.506': attribute type 10 has an invalid length.
[  176.680138][ T7667] netlink: 40 bytes leftover after parsing attributes in process `syz.3.506'.
[  178.320151][ T1355] IPVS: starting estimator thread 0...
[  178.408002][ T7679] IPVS: using max 42 ests per chain, 100800 per kthread
[  178.569471][ T7684] netlink: 'syz.0.515': attribute type 1 has an invalid length.
[  178.694705][ T7690] FAULT_INJECTION: forcing a failure.
[  178.694705][ T7690] name failslab, interval 1, probability 0, space 0, times 0
[  178.699941][ T7690] CPU: 2 UID: 0 PID: 7690 Comm: syz.0.518 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  178.699960][ T7690] Tainted: [L]=SOFTLOCKUP
[  178.699963][ T7690] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  178.699970][ T7690] Call Trace:
[  178.699974][ T7690]  <TASK>
[  178.699978][ T7690]  dump_stack_lvl+0x100/0x190
[  178.699996][ T7690]  should_fail_ex.cold+0x5/0xa
[  178.700010][ T7690]  ? tomoyo_realpath_from_path+0xb6/0x690
[  178.700027][ T7690]  should_failslab+0xc2/0x120
[  178.700040][ T7690]  __kmalloc_noprof+0xe0/0x850
[  178.700050][ T7690]  ? kfree+0x1dd/0x6c0
[  178.700067][ T7690]  tomoyo_realpath_from_path+0xb6/0x690
[  178.700085][ T7690]  tomoyo_mount_acl+0x1b6/0x8b0
[  178.700096][ T7690]  ? is_bpf_text_address+0x8a/0x1a0
[  178.700112][ T7690]  ? is_bpf_text_address+0x8a/0x1a0
[  178.700130][ T7690]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  178.700147][ T7690]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  178.700159][ T7690]  ? kernel_text_address+0x8d/0x100
[  178.700170][ T7690]  ? __lock_acquire+0x4a5/0x2630
[  178.700181][ T7690]  ? unwind_get_return_address+0x59/0xa0
[  178.700196][ T7690]  ? arch_stack_walk+0xa6/0xf0
[  178.700221][ T7690]  ? tomoyo_domain+0xb2/0x150
[  178.700236][ T7690]  ? tomoyo_profile+0x47/0x60
[  178.700252][ T7690]  tomoyo_mount_permission+0x214/0x460
[  178.700264][ T7690]  ? tomoyo_mount_permission+0x1f6/0x460
[  178.700278][ T7690]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  178.700299][ T7690]  security_sb_mount+0xdd/0x270
[  178.700317][ T7690]  path_mount+0x158/0x23d0
[  178.700335][ T7690]  ? __pfx_path_mount+0x10/0x10
[  178.700350][ T7690]  ? lockdep_hardirqs_on+0x78/0x100
[  178.700368][ T7690]  ? putname+0xb1/0x110
[  178.700382][ T7690]  ? kmem_cache_free+0x127/0x6c0
[  178.700402][ T7690]  ? __ia32_sys_mount+0x292/0x310
[  178.700417][ T7690]  __ia32_sys_mount+0x292/0x310
[  178.700433][ T7690]  ? __pfx___ia32_sys_mount+0x10/0x10
[  178.700448][ T7690]  ? ksys_write+0x1ac/0x250
[  178.700461][ T7690]  ? rcu_is_watching+0x12/0xc0
[  178.700476][ T7690]  __do_fast_syscall_32+0xe7/0x950
[  178.700495][ T7690]  ? lockdep_hardirqs_on+0x78/0x100
[  178.700511][ T7690]  do_fast_syscall_32+0x32/0x70
[  178.700528][ T7690]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  178.700542][ T7690] RIP: 0023:0xf702efcc
[  178.700552][ T7690] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  178.700562][ T7690] RSP: 002b:00000000f541d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  178.700572][ T7690] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  178.700579][ T7690] RDX: 00000000800001c0 RSI: 0000000000000c00 RDI: 0000000080000080
[  178.700585][ T7690] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  178.700591][ T7690] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  178.700597][ T7690] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  178.700610][ T7690]  </TASK>
[  178.700620][ T7690] ERROR: Out of memory at tomoyo_realpath_from_path.
[  179.367905][ T7676] netlink: 'syz.3.512': attribute type 2 has an invalid length.
[  179.370248][ T7676] netlink: 'syz.3.512': attribute type 1 has an invalid length.
[  179.372402][ T7676] netlink: 8 bytes leftover after parsing attributes in process `syz.3.512'.
[  181.984650][ T7760] syz.2.534 (7760) used greatest stack depth: 17864 bytes left
[  182.575318][ T7767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.538'.
[  182.871727][ T7774] netlink: 8 bytes leftover after parsing attributes in process `syz.3.540'.
[  183.064239][ T7781] netlink: 20 bytes leftover after parsing attributes in process `syz.2.541'.
[  184.082537][ T7799] bridge1: entered promiscuous mode
[  184.305960][ T7797] fuse: Bad value for 'fd'
[  184.507433][ T7822] bond2: entered promiscuous mode
[  184.587403][ T7827] syzkaller0: entered promiscuous mode
[  184.597320][ T7827] syzkaller0: entered allmulticast mode
[  184.609598][ T7827] tipc: Started in network mode
[  184.611654][ T7827] tipc: Node identity 56d2265b9cfd, cluster identity 4711
[  184.614730][ T7827] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  184.621979][ T7825] tipc: Resetting bearer <eth:syzkaller0>
[  184.638467][ T7825] tipc: Disabling bearer <eth:syzkaller0>
[  186.220732][ T7844] netlink: 'syz.2.559': attribute type 2 has an invalid length.
[  186.224263][ T7844] netlink: 'syz.2.559': attribute type 1 has an invalid length.
[  186.227544][ T7844] netlink: 8 bytes leftover after parsing attributes in process `syz.2.559'.
[  186.761894][ T7857] sit0: entered promiscuous mode
[  186.768736][ T7857] netlink: 'syz.2.562': attribute type 1 has an invalid length.
[  186.771854][ T7857] netlink: 1 bytes leftover after parsing attributes in process `syz.2.562'.
[  187.028274][ T5889] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  187.210967][ T5889] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  187.217174][ T5889] usb 7-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  187.223756][ T5889] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  187.231319][ T5889] usb 7-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  187.236976][ T5889] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  187.244116][ T5889] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  187.258970][ T5889] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  187.263581][ T5889] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  187.266423][ T5889] usb 7-1: Product: syz
[  187.270679][ T5889] usb 7-1: Manufacturer: syz
[  187.319155][ T7857] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  187.412088][ T5889] cdc_wdm 7-1:1.0: skipping garbage
[  187.416757][ T5889] cdc_wdm 7-1:1.0: skipping garbage
[  187.447397][ T5889] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  187.450660][ T5889] cdc_wdm 7-1:1.0: Unknown control protocol
[  187.758390][ T5889] usb 7-1: USB disconnect, device number 2
[  188.724334][ T7881] netlink: 'syz.2.568': attribute type 2 has an invalid length.
[  188.727538][ T7881] netlink: 'syz.2.568': attribute type 1 has an invalid length.
[  188.730811][ T7881] netlink: 8 bytes leftover after parsing attributes in process `syz.2.568'.
[  189.119172][   T40] audit: type=1326 audit(1778752095.853:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7884 comm="syz.3.571" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa6fcc code=0x0
[  189.307976][ T5532] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  189.489022][ T5532] usb 6-1: Using ep0 maxpacket: 16
[  189.493061][ T5532] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 11
[  189.496463][ T5532] usb 6-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  189.500367][ T5532] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  189.503356][ T5532] usb 6-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  189.506414][ T5532] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  189.509933][ T5532] usb 6-1: config 1 interface 0 has no altsetting 0
[  189.511982][ T5532] usb 6-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  189.514869][ T5532] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.520387][ T5532] ums-sddr09 6-1:1.0: USB Mass Storage device detected
[  189.972619][ T5532] ums-sddr09 6-1:1.0: probe with driver ums-sddr09 failed with error -22
[  189.981454][ T5532] usb 6-1: USB disconnect, device number 3
[  190.135591][ T7931] netlink: 28 bytes leftover after parsing attributes in process `syz.0.584'.
[  190.845556][ T7942] trusted_key: syz.1.581 sent an empty control message without MSG_MORE.
[  191.419009][ T7953] netlink: 4 bytes leftover after parsing attributes in process `syz.1.590'.
[  191.471038][ T7956] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[  191.760616][ T7971] netlink: 'syz.1.595': attribute type 2 has an invalid length.
[  191.763353][ T7971] netlink: 'syz.1.595': attribute type 1 has an invalid length.
[  191.765945][ T7971] netlink: 8 bytes leftover after parsing attributes in process `syz.1.595'.
[  192.588050][ T8018] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  192.682098][ T8027] netlink: 'syz.0.605': attribute type 2 has an invalid length.
[  192.685387][ T8027] netlink: 'syz.0.605': attribute type 1 has an invalid length.
[  192.712076][ T8031] block nbd0: Unsupported socket: should be TCP or UNIX.
[  192.726348][ T8031] netlink: 540 bytes leftover after parsing attributes in process `syz.1.614'.
[  192.778424][ T8027] netlink: 8 bytes leftover after parsing attributes in process `syz.0.605'.
[  194.434006][ T8038] faux_driver vkms: [drm] Unknown color mode 9; guessing buffer size.
[  195.174168][ T8046] netlink: 'syz.1.615': attribute type 2 has an invalid length.
[  195.381169][ T8062] IPVS: set_ctl: invalid protocol: 136 172.20.20.38:20001
[  195.462073][ T8058] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  195.466006][ T8058] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  195.473301][ T8058] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  195.480220][ T8058] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  195.707159][ T8071] FAULT_INJECTION: forcing a failure.
[  195.707159][ T8071] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  195.713708][ T8071] CPU: 0 UID: 0 PID: 8071 Comm: syz.1.625 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  195.713738][ T8071] Tainted: [L]=SOFTLOCKUP
[  195.713744][ T8071] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  195.713754][ T8071] Call Trace:
[  195.713762][ T8071]  <TASK>
[  195.713769][ T8071]  dump_stack_lvl+0x100/0x190
[  195.713797][ T8071]  should_fail_ex.cold+0x5/0xa
[  195.713827][ T8071]  _copy_to_user+0x32/0xd0
[  195.713847][ T8071]  simple_read_from_buffer+0xcb/0x170
[  195.713871][ T8071]  proc_fail_nth_read+0x1af/0x230
[  195.713900][ T8071]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  195.713928][ T8071]  ? rw_verify_area+0xce/0x6d0
[  195.713945][ T8071]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  195.713971][ T8071]  vfs_read+0x1e4/0xb30
[  195.713995][ T8071]  ? __pfx_vfs_read+0x10/0x10
[  195.714012][ T8071]  ? find_held_lock+0x2b/0x80
[  195.714035][ T8071]  ? __fget_files+0x215/0x3d0
[  195.714060][ T8071]  ? __fget_files+0x21f/0x3d0
[  195.714087][ T8071]  ksys_read+0x12a/0x250
[  195.714106][ T8071]  ? __pfx_ksys_read+0x10/0x10
[  195.714125][ T8071]  ? rcu_is_watching+0x12/0xc0
[  195.714147][ T8071]  ? rcu_is_watching+0x12/0xc0
[  195.714171][ T8071]  do_int80_emulation+0x141/0x700
[  195.714202][ T8071]  asm_int80_emulation+0x1a/0x20
[  195.714219][ T8071] RIP: 0023:0xf71f61ab
[  195.714233][ T8071] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  195.714249][ T8071] RSP: 002b:00000000f54ad4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  195.714265][ T8071] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54ad5d0
[  195.714275][ T8071] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  195.714285][ T8071] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  195.714294][ T8071] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  195.714303][ T8071] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  195.714326][ T8071]  </TASK>
[  196.199318][ T8077] netlink: 'syz.0.627': attribute type 10 has an invalid length.
[  196.218368][ T8077] bridge0: port 3(dummy0) entered disabled state
[  196.221955][ T8077] dummy0: left allmulticast mode
[  196.223683][ T8077] dummy0: left promiscuous mode
[  196.225674][ T8077] bridge0: port 3(dummy0) entered disabled state
[  196.235317][ T8077] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  196.239988][ T8077] team0: Failed to send options change via netlink (err -105)
[  196.243433][ T8077] team0: Port device dummy0 added
[  196.248560][ T8077] netlink: 'syz.0.627': attribute type 10 has an invalid length.
[  196.251790][ T8077] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  196.259098][ T8077] team0: Failed to send options change via netlink (err -105)
[  196.262083][ T8077] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  196.265263][ T8077] team0: Port device dummy0 removed
[  196.272558][ T8077] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  196.405034][ T8088] netlink: 'syz.2.628': attribute type 2 has an invalid length.
[  196.408707][ T8088] netlink: 'syz.2.628': attribute type 1 has an invalid length.
[  196.411614][ T8088] netlink: 8 bytes leftover after parsing attributes in process `syz.2.628'.
[  197.202700][ T8091] netlink: 'syz.0.631': attribute type 2 has an invalid length.
[  197.210170][ T8091] netlink: 4 bytes leftover after parsing attributes in process `syz.0.631'.
[  197.327246][ T8097] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[  197.358003][ T5744] Bluetooth: hci0: command 0x0c1a tx timeout
[  197.528329][ T5744] Bluetooth: hci2: command 0x0c1a tx timeout
[  197.528482][ T5752] Bluetooth: hci1: command 0x0c1a tx timeout
[  197.528616][ T5744] Bluetooth: hci3: command 0x0c1a tx timeout
[  198.216302][ T8104] binder: 8103:8104 ioctl 40046205 0 returned -22
[  198.453376][ T8104] netlink: 'syz.0.635': attribute type 12 has an invalid length.
[  198.959778][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[  198.964014][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  198.995665][ T8121] netlink: 8 bytes leftover after parsing attributes in process `syz.0.641'.
[  198.998724][ T8121] FAULT_INJECTION: forcing a failure.
[  198.998724][ T8121] name failslab, interval 1, probability 0, space 0, times 0
[  199.004920][ T8121] CPU: 3 UID: 0 PID: 8121 Comm: syz.0.641 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  199.004941][ T8121] Tainted: [L]=SOFTLOCKUP
[  199.004945][ T8121] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  199.004953][ T8121] Call Trace:
[  199.004965][ T8121]  <TASK>
[  199.004971][ T8121]  dump_stack_lvl+0x100/0x190
[  199.004990][ T8121]  should_fail_ex.cold+0x5/0xa
[  199.005008][ T8121]  should_failslab+0xc2/0x120
[  199.005023][ T8121]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  199.005043][ T8121]  ? alloc_inode+0x68/0x250
[  199.005063][ T8121]  ? simple_start_creating+0xb0/0x110
[  199.005078][ T8121]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  199.005099][ T8121]  alloc_inode+0x68/0x250
[  199.005118][ T8121]  new_inode+0x22/0x1c0
[  199.005139][ T8121]  __debugfs_create_file+0x105/0x4f0
[  199.005161][ T8121]  debugfs_create_file_full+0x41/0x60
[  199.005182][ T8121]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  199.005198][ T8121]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  199.005225][ T8121]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  199.005237][ T8121]  ? alloc_netdev_mqs+0xd7/0x1560
[  199.005252][ T8121]  ? lockdep_init_map_type+0x5c/0x250
[  199.005267][ T8121]  ? __pfx_hsr_dev_setup+0x10/0x10
[  199.005282][ T8121]  alloc_netdev_mqs+0x314/0x1560
[  199.005299][ T8121]  rtnl_create_link+0xc13/0xf80
[  199.005316][ T8121]  rtnl_newlink+0x13bd/0x2380
[  199.005337][ T8121]  ? __pfx_rtnl_newlink+0x10/0x10
[  199.005350][ T8121]  ? rcu_is_watching+0x12/0xc0
[  199.005365][ T8121]  ? kasan_quarantine_put+0x104/0x240
[  199.005377][ T8121]  ? lockdep_hardirqs_on+0x78/0x100
[  199.005400][ T8121]  ? kfree_skbmem+0x19a/0x210
[  199.005423][ T8121]  ? kmem_cache_free+0x127/0x6c0
[  199.005455][ T8121]  ? __dev_queue_xmit+0x9ef/0x4950
[  199.005488][ T8121]  ? find_held_lock+0x2b/0x80
[  199.005509][ T8121]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  199.005524][ T8121]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  199.005539][ T8121]  ? __pfx_rtnl_newlink+0x10/0x10
[  199.005554][ T8121]  rtnetlink_rcv_msg+0x95e/0xe90
[  199.005570][ T8121]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  199.005589][ T8121]  ? ref_tracker_free+0x37e/0x6c0
[  199.005606][ T8121]  netlink_rcv_skb+0x159/0x420
[  199.005626][ T8121]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  199.005642][ T8121]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  199.005665][ T8121]  ? netlink_deliver_tap+0x1ae/0xcc0
[  199.005685][ T8121]  netlink_unicast+0x585/0x850
[  199.005705][ T8121]  ? __pfx_netlink_unicast+0x10/0x10
[  199.005727][ T8121]  netlink_sendmsg+0x8b0/0xda0
[  199.005748][ T8121]  ? __pfx_netlink_sendmsg+0x10/0x10
[  199.005767][ T8121]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  199.005789][ T8121]  ____sys_sendmsg+0x9e1/0xb70
[  199.005807][ T8121]  ? __pfx_netlink_sendmsg+0x10/0x10
[  199.005825][ T8121]  ? __pfx_____sys_sendmsg+0x10/0x10
[  199.005850][ T8121]  ___sys_sendmsg+0x190/0x1e0
[  199.005870][ T8121]  ? __pfx____sys_sendmsg+0x10/0x10
[  199.005895][ T8121]  ? find_held_lock+0x2b/0x80
[  199.005935][ T8121]  __sys_sendmsg+0x170/0x220
[  199.005952][ T8121]  ? __pfx___sys_sendmsg+0x10/0x10
[  199.005969][ T8121]  ? __fget_files+0x21f/0x3d0
[  199.005988][ T8121]  ? ksys_write+0x1ac/0x250
[  199.006003][ T8121]  ? rcu_is_watching+0x12/0xc0
[  199.006020][ T8121]  __do_fast_syscall_32+0xe7/0x950
[  199.006039][ T8121]  ? lockdep_hardirqs_on+0x78/0x100
[  199.006058][ T8121]  do_fast_syscall_32+0x32/0x70
[  199.006078][ T8121]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  199.006094][ T8121] RIP: 0023:0xf702efcc
[  199.006105][ T8121] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  199.006117][ T8121] RSP: 002b:00000000f541d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  199.006130][ T8121] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[  199.006137][ T8121] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  199.006144][ T8121] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  199.006150][ T8121] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  199.006156][ T8121] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  199.006170][ T8121]  </TASK>
[  199.006325][ T8121] debugfs: out of free dentries, can not create file 'netdev@ffff8880601dc658'
[  199.148801][ T8121] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  199.153902][ T8121] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[  199.863084][ T8144] netlink: 4 bytes leftover after parsing attributes in process `syz.0.649'.
[  199.864613][ T8148] netlink: 4 bytes leftover after parsing attributes in process `syz.3.651'.
[  199.868397][ T8146] netlink: 16 bytes leftover after parsing attributes in process `syz.1.650'.
[  199.940656][ T8146] netlink: 4 bytes leftover after parsing attributes in process `syz.1.650'.
[  200.029915][ T8125] overlayfs: statfs failed on './file0'
[  200.146368][ T8156] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  200.190527][ T8168] netlink: 56 bytes leftover after parsing attributes in process `syz.1.657'.
[  200.557485][ T8179] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[  201.365351][ T8188] netlink: 28 bytes leftover after parsing attributes in process `syz.3.666'.
[  201.400508][ T8190] tipc: Started in network mode
[  201.402402][ T8190] tipc: Node identity c2ba9b5f46ab, cluster identity 4711
[  201.405086][ T8190] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  201.461418][ T8190] tipc: Resetting bearer <eth:syzkaller0>
[  201.473495][ T8189] tipc: Disabling bearer <eth:syzkaller0>
[  201.567244][ T8194] netlink: 56 bytes leftover after parsing attributes in process `syz.3.668'.
[  202.024924][ T8219] netlink: 'syz.1.664': attribute type 10 has an invalid length.
[  202.027534][ T8219] netlink: 40 bytes leftover after parsing attributes in process `syz.1.664'.
[  202.032203][ T8219] bridge0: port 3(dummy0) entered blocking state
[  202.034542][ T8219] bridge0: port 3(dummy0) entered disabled state
[  202.037150][ T8219] dummy0: entered allmulticast mode
[  202.044796][ T8219] dummy0: entered promiscuous mode
[  202.047877][ T8219] bridge0: port 3(dummy0) entered blocking state
[  202.049951][ T8219] bridge0: port 3(dummy0) entered forwarding state
[  203.617753][ T8233] could not allocate digest TFM handle md5
[  206.155863][ T8270] IPVS: sync thread started: state = BACKUP, mcast_ifn = bond0, syncid = 4, id = 0
[  206.298567][ T8280] netlink: 8 bytes leftover after parsing attributes in process `syz.3.693'.
[  206.345104][ T8280] bond2: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  206.351942][ T8280] bond2 (unregistering): Released all slaves
[  207.073180][ T8297] FAULT_INJECTION: forcing a failure.
[  207.073180][ T8297] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  207.077557][ T8297] CPU: 2 UID: 0 PID: 8297 Comm: syz.0.694 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  207.077577][ T8297] Tainted: [L]=SOFTLOCKUP
[  207.077581][ T8297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  207.077587][ T8297] Call Trace:
[  207.077592][ T8297]  <TASK>
[  207.077597][ T8297]  dump_stack_lvl+0x100/0x190
[  207.077614][ T8297]  should_fail_ex.cold+0x5/0xa
[  207.077630][ T8297]  _copy_from_user+0x2e/0xd0
[  207.077642][ T8297]  get_compat_msghdr+0xb3/0x4b0
[  207.077658][ T8297]  ? __pfx_get_compat_msghdr+0x10/0x10
[  207.077674][ T8297]  ? _kstrtoull+0x13c/0x1f0
[  207.077688][ T8297]  ? __pfx__kstrtoull+0x10/0x10
[  207.077703][ T8297]  ___sys_sendmsg+0x1b6/0x1e0
[  207.077722][ T8297]  ? __pfx____sys_sendmsg+0x10/0x10
[  207.077739][ T8297]  ? __lock_acquire+0x4a5/0x2630
[  207.077781][ T8297]  __sys_sendmmsg+0x2ff/0x430
[  207.077799][ T8297]  ? __pfx___sys_sendmmsg+0x10/0x10
[  207.077817][ T8297]  ? __fget_files+0x215/0x3d0
[  207.077836][ T8297]  ? fput+0x79/0x100
[  207.077851][ T8297]  ? ksys_write+0x1ac/0x250
[  207.077866][ T8297]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  207.077882][ T8297]  ? lockdep_hardirqs_on+0x78/0x100
[  207.077900][ T8297]  __do_fast_syscall_32+0xe7/0x950
[  207.077917][ T8297]  ? lockdep_hardirqs_on+0x78/0x100
[  207.077934][ T8297]  do_fast_syscall_32+0x32/0x70
[  207.077952][ T8297]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  207.077967][ T8297] RIP: 0023:0xf702efcc
[  207.077977][ T8297] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  207.077988][ T8297] RSP: 002b:00000000f541d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[  207.078000][ T8297] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080007fc0
[  207.078007][ T8297] RDX: 000000000800001d RSI: 0000000000000000 RDI: 0000000000000000
[  207.078013][ T8297] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  207.078019][ T8297] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  207.078026][ T8297] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  207.078039][ T8297]  </TASK>
[  208.046571][ T8324] netlink: 4 bytes leftover after parsing attributes in process `syz.3.703'.
[  208.071779][ T8322] tipc: Trying to set illegal importance in message
[  208.189497][ T8331] netlink: 8 bytes leftover after parsing attributes in process `syz.0.706'.
[  208.192605][ T8331] netlink: 12 bytes leftover after parsing attributes in process `syz.0.706'.
[  208.218498][ T8331] netlink: 8 bytes leftover after parsing attributes in process `syz.0.706'.
[  208.221728][ T8331] netlink: 12 bytes leftover after parsing attributes in process `syz.0.706'.
[  210.155446][ T8348] netlink: 4 bytes leftover after parsing attributes in process `syz.3.713'.
[  210.482995][ T8370] netlink: 8 bytes leftover after parsing attributes in process `syz.1.719'.
[  210.496771][ T8370] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  210.503373][ T8370] netdevsim netdevsim1 netdevsim0: left promiscuous mode
[  210.741889][ T8382] FAULT_INJECTION: forcing a failure.
[  210.741889][ T8382] name failslab, interval 1, probability 0, space 0, times 0
[  210.747208][ T8382] CPU: 3 UID: 0 PID: 8382 Comm: syz.1.725 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  210.747238][ T8382] Tainted: [L]=SOFTLOCKUP
[  210.747243][ T8382] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  210.747253][ T8382] Call Trace:
[  210.747261][ T8382]  <TASK>
[  210.747268][ T8382]  dump_stack_lvl+0x100/0x190
[  210.747296][ T8382]  should_fail_ex.cold+0x5/0xa
[  210.747317][ T8382]  should_failslab+0xc2/0x120
[  210.747341][ T8382]  __kmalloc_cache_noprof+0x7a/0x6f0
[  210.747366][ T8382]  ? binder_alloc_new_buf+0x1bb/0x30b0
[  210.747401][ T8382]  binder_alloc_new_buf+0x1bb/0x30b0
[  210.747425][ T8382]  ? binder_debug+0xe0/0x190
[  210.747444][ T8382]  ? __pfx_binder_debug+0x10/0x10
[  210.747470][ T8382]  ? __pfx_binder_alloc_new_buf+0x10/0x10
[  210.747499][ T8382]  binder_transaction+0x1eb0/0x9c10
[  210.747529][ T8382]  ? ima_match_policy+0x8c4/0x2350
[  210.747547][ T8382]  ? ima_match_policy+0x8c4/0x2350
[  210.747576][ T8382]  ? __lock_acquire+0x4a5/0x2630
[  210.747593][ T8382]  ? __pfx_binder_transaction+0x10/0x10
[  210.747617][ T8382]  ? __lock_acquire+0x4a5/0x2630
[  210.747641][ T8382]  ? __lock_acquire+0x4a5/0x2630
[  210.747663][ T8382]  ? __lock_acquire+0x4a5/0x2630
[  210.747694][ T8382]  ? __lock_acquire+0x4a5/0x2630
[  210.747712][ T8382]  ? __lock_acquire+0x4a5/0x2630
[  210.747729][ T8382]  ? is_bpf_text_address+0x94/0x1a0
[  210.747777][ T8382]  ? find_held_lock+0x2b/0x80
[  210.747801][ T8382]  ? __might_fault+0xc5/0x140
[  210.747833][ T8382]  ? __might_fault+0xc5/0x140
[  210.747869][ T8382]  binder_thread_write+0x1303/0x4db0
[  210.747902][ T8382]  ? __lock_acquire+0x4a5/0x2630
[  210.747919][ T8382]  ? __pfx_binder_thread_write+0x10/0x10
[  210.747944][ T8382]  ? binder_debug+0xe0/0x190
[  210.747963][ T8382]  ? __pfx_binder_debug+0x10/0x10
[  210.747984][ T8382]  ? binder_debug+0xe0/0x190
[  210.748004][ T8382]  ? __pfx_binder_debug+0x10/0x10
[  210.748035][ T8382]  ? __pfx_binder_ioctl+0x10/0x10
[  210.748057][ T8382]  binder_ioctl+0x28f8/0x7550
[  210.748084][ T8382]  ? find_held_lock+0x2b/0x80
[  210.748106][ T8382]  ? tomoyo_path_number_perm+0x28f/0x580
[  210.748125][ T8382]  ? tomoyo_path_number_perm+0x28f/0x580
[  210.748148][ T8382]  ? tomoyo_path_number_perm+0x188/0x580
[  210.748197][ T8382]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  210.748217][ T8382]  ? __pfx_binder_ioctl+0x10/0x10
[  210.748245][ T8382]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  210.748273][ T8382]  ? do_vfs_ioctl+0x226/0x13e0
[  210.748293][ T8382]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  210.748318][ T8382]  ? find_held_lock+0x2b/0x80
[  210.748340][ T8382]  ? __fget_files+0x215/0x3d0
[  210.748359][ T8382]  ? hook_file_ioctl_common+0x149/0x410
[  210.748384][ T8382]  ? __fget_files+0x21f/0x3d0
[  210.748405][ T8382]  ? __pfx_binder_ioctl+0x10/0x10
[  210.748427][ T8382]  compat_ptr_ioctl+0x6e/0xa0
[  210.748445][ T8382]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  210.748461][ T8382]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  210.748482][ T8382]  __do_fast_syscall_32+0xe7/0x950
[  210.748510][ T8382]  ? lockdep_hardirqs_on+0x78/0x100
[  210.748537][ T8382]  do_fast_syscall_32+0x32/0x70
[  210.748565][ T8382]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  210.748588][ T8382] RIP: 0023:0xf70befcc
[  210.748604][ T8382] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  210.748620][ T8382] RSP: 002b:00000000f54ad50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  210.748638][ T8382] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0306201
[  210.748649][ T8382] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  210.748658][ T8382] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  210.748669][ T8382] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  210.748679][ T8382] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  210.748699][ T8382]  </TASK>
[  210.833912][ T8384] syzkaller0: entered promiscuous mode
[  210.898602][ T8390] netlink: 'syz.3.723': attribute type 2 has an invalid length.
[  210.904642][ T8384] syzkaller0: entered allmulticast mode
[  210.911403][ T8390] netlink: 'syz.3.723': attribute type 1 has an invalid length.
[  210.926877][ T8390] netlink: 8 bytes leftover after parsing attributes in process `syz.3.723'.
[  211.041030][ T8395] netlink: 4 bytes leftover after parsing attributes in process `syz.2.728'.
[  212.720013][ T8419] team0: Device wireguard0 is of different type
[  213.159798][ T8443] netlink: 'syz.1.735': attribute type 10 has an invalid length.
[  213.162340][ T8443] __nla_validate_parse: 1 callbacks suppressed
[  213.162348][ T8443] netlink: 40 bytes leftover after parsing attributes in process `syz.1.735'.
[  213.508433][ T8453] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[  214.890953][ T8467] bridge0: port 3(erspan0) entered blocking state
[  214.897717][ T8467] bridge0: port 3(erspan0) entered disabled state
[  214.905563][ T8467] erspan0: entered allmulticast mode
[  214.926775][ T8467] erspan0: entered promiscuous mode
[  214.933982][ T8467] bridge0: port 3(erspan0) entered blocking state
[  214.938344][ T8467] bridge0: port 3(erspan0) entered forwarding state
[  215.014320][ T8470] erspan0: left allmulticast mode
[  215.016893][ T8470] erspan0: left promiscuous mode
[  215.026959][ T8470] bridge0: port 3(erspan0) entered disabled state
[  215.251517][ T8472] overlayfs: failed to clone upperpath
[  215.555884][ T8488] netlink: 36 bytes leftover after parsing attributes in process `syz.2.754'.
[  215.706490][ T8493] netlink: 32 bytes leftover after parsing attributes in process `syz.1.758'.
[  215.886113][   T40] audit: type=1326 audit(1778752122.613:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8495 comm="syz.1.759" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70befcc code=0x0
[  216.726004][ T8516] team0: Device wireguard0 is of different type
[  217.004440][ T8524] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  217.036316][ T8534] fuse: fd is not a fuse device
[  217.049816][ T8527] bridge0: port 3(vlan2) entered blocking state
[  217.054584][ T8527] bridge0: port 3(vlan2) entered disabled state
[  217.059746][ T8527] vlan2: entered allmulticast mode
[  217.063486][ T8527] bridge0: entered allmulticast mode
[  217.069500][ T8527] vlan2: left allmulticast mode
[  217.071905][ T8527] bridge0: left allmulticast mode
[  218.544430][ T8569] v: renamed from veth0_vlan (while UP)
[  218.621746][ T8576] netlink: 8 bytes leftover after parsing attributes in process `syz.0.779'.
[  218.750263][ T8588] netlink: 8 bytes leftover after parsing attributes in process `syz.1.784'.
[  218.756698][ T8588] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  218.760985][ T8588] gretap0: entered promiscuous mode
[  218.815565][ T8592] netlink: 40 bytes leftover after parsing attributes in process `syz.0.787'.
[  218.820087][ T8590] netlink: 16 bytes leftover after parsing attributes in process `syz.2.786'.
[  219.057935][ T3261] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  219.252691][ T3261] usb 5-1: Using ep0 maxpacket: 8
[  219.284365][ T3261] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  219.289828][ T3261] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  219.302112][ T3261] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  219.314399][ T3261] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  219.327622][ T3261] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  219.342889][ T3261] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  219.353447][ T3261] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  219.768305][ T3261] usb 5-1: GET_CAPABILITIES returned 0
[  219.771631][ T3261] usbtmc 5-1:16.0: can't read capabilities
[  220.138569][ T5847] usb 5-1: USB disconnect, device number 3
[  220.445759][ T8608] syzkaller0: entered promiscuous mode
[  220.448210][ T8608] syzkaller0: entered allmulticast mode
[  220.572207][ T8612] overlayfs: failed to clone upperpath
[  220.577154][   T40] audit: type=1326 audit(1778752127.303:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  220.587510][   T40] audit: type=1326 audit(1778752127.303:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  220.598415][   T40] audit: type=1326 audit(1778752127.303:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.3.794" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  220.609798][   T40] audit: type=1326 audit(1778752127.303:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.3.794" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  220.618538][   T40] audit: type=1326 audit(1778752127.313:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.3.794" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  220.630347][ T8614] bond3: entered promiscuous mode
[  220.631489][   T40] audit: type=1326 audit(1778752127.313:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  220.644059][   T40] audit: type=1326 audit(1778752127.313:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  220.653812][   T40] audit: type=1326 audit(1778752127.313:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.3.794" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  220.663850][   T40] audit: type=1326 audit(1778752127.313:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.3.794" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6fcc code=0x7ffc0000
[  220.750824][ T8629] netlink: 'syz.3.801': attribute type 2 has an invalid length.
[  220.759666][ T8630] netlink: 44 bytes leftover after parsing attributes in process `syz.0.802'.
[  220.794264][ T8634] netlink: 4 bytes leftover after parsing attributes in process `syz.3.803'.
[  221.002969][ T8646] netlink: 4 bytes leftover after parsing attributes in process `syz.1.798'.
[  221.019384][ T8645] netlink: 'syz.0.806': attribute type 1 has an invalid length.
[  221.023817][ T8645] netlink: 24 bytes leftover after parsing attributes in process `syz.0.806'.
[  221.779124][ T8652] team0: Device wireguard0 is of different type
[  222.021257][ T8657] netlink: 'syz.3.810': attribute type 10 has an invalid length.
[  222.024994][ T8657] netlink: 40 bytes leftover after parsing attributes in process `syz.3.810'.
[  222.245402][ T5752] Bluetooth: hci0: command 0x0c1a tx timeout
[  223.413079][ T8668] xt_CT: No such helper "pptp"
[  223.450119][ T8664] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.454859][ T8664] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  223.463358][ T8665] netlink: 8 bytes leftover after parsing attributes in process `syz.1.813'.
[  223.535931][ T8664] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.543601][ T8664] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  223.592599][ T8683] 9p: Bad value for 'rfdno'
[  223.693998][ T8664] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.700673][ T8664] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  223.780377][ T8664] netdevsim netdevsim1 netdevsim0 (unregistering): left promiscuous mode
[  223.783918][ T8664] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.788154][ T8664] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  223.889985][ T8690] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  223.892640][ T8690] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  223.899654][ T8690] vhci_hcd vhci_hcd.0: Device attached
[  223.949037][   T12] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  223.955348][   T12] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  223.969833][ T8695] netlink: 28 bytes leftover after parsing attributes in process `syz.0.818'.
[  223.988493][ T8695] netlink: 80 bytes leftover after parsing attributes in process `syz.0.818'.
[  224.011790][   T46] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  224.017578][   T46] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  224.063342][   T12] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  224.066331][   T12] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  224.078949][   T12] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  224.084117][   T12] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  224.088626][ T5847] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  224.208019][ T1468] usb 38-1: SetAddress Request (2) to port 0
[  224.210557][ T1468] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[  224.252086][ T5847] usb 7-1: unable to get BOS descriptor or descriptor too short
[  224.259318][ T5847] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  224.264605][ T5847] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  224.288987][ T5847] usb 7-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice= 0.40
[  224.296327][ T5847] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.312119][ T5847] usb 7-1: Product: syz
[  224.319362][ T5847] usb 7-1: Manufacturer: syz
[  224.324622][ T5847] usb 7-1: SerialNumber: syz
[  224.390083][ T8691] vhci_hcd: connection reset by peer
[  224.393769][   T12] vhci_hcd vhci_hcd.0: stop threads
[  224.395737][   T12] vhci_hcd vhci_hcd.0: release socket
[  224.398138][   T12] vhci_hcd vhci_hcd.0: disconnect device
[  224.448016][ T5847] usb 7-1: selecting invalid altsetting 1
[  224.515918][ T5847] usb 7-1: unit 6 not found!
[  224.703310][ T8713] netlink: 56 bytes leftover after parsing attributes in process `syz.3.828'.
[  224.713610][   T12] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  224.718311][   T12] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  224.724146][   T12] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  224.729920][   T12] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  225.217336][ T8722] syzkaller0: entered promiscuous mode
[  225.220025][ T8722] syzkaller0: entered allmulticast mode
[  225.348218][ T5847] usb 7-1: 2:0: failed to get current value for ch 0 (-71)
[  225.417747][ T5847] snd-usb-audio 7-1:1.0: probe with driver snd-usb-audio failed with error -22
[  225.427476][ T5847] usb 7-1: USB disconnect, device number 3
[  225.446053][ T7518] udevd[7518]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  226.752421][ T8760] netlink: 'syz.2.836': attribute type 2 has an invalid length.
[  227.208843][ T8772] netlink: 16 bytes leftover after parsing attributes in process `syz.3.844'.
[  227.998523][ T8790] netlink: 4 bytes leftover after parsing attributes in process `syz.2.849'.
[  228.180245][ T8794] bond2: entered promiscuous mode
[  228.218730][ T8797] FAULT_INJECTION: forcing a failure.
[  228.218730][ T8797] name failslab, interval 1, probability 0, space 0, times 0
[  228.226561][ T8797] CPU: 3 UID: 0 PID: 8797 Comm: syz.1.852 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  228.226582][ T8797] Tainted: [L]=SOFTLOCKUP
[  228.226586][ T8797] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  228.226593][ T8797] Call Trace:
[  228.226600][ T8797]  <TASK>
[  228.226606][ T8797]  dump_stack_lvl+0x100/0x190
[  228.226624][ T8797]  should_fail_ex.cold+0x5/0xa
[  228.226639][ T8797]  ? tomoyo_realpath_from_path+0xb6/0x690
[  228.226655][ T8797]  should_failslab+0xc2/0x120
[  228.226669][ T8797]  __kmalloc_noprof+0xe0/0x850
[  228.226679][ T8797]  ? kfree+0x1dd/0x6c0
[  228.226698][ T8797]  tomoyo_realpath_from_path+0xb6/0x690
[  228.226716][ T8797]  tomoyo_path_number_perm+0x23c/0x580
[  228.226728][ T8797]  ? tomoyo_path_number_perm+0x22e/0x580
[  228.226740][ T8797]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  228.226753][ T8797]  ? get_pid_task+0x106/0x250
[  228.226782][ T8797]  ? find_held_lock+0x2b/0x80
[  228.226797][ T8797]  ? __fget_files+0x215/0x3d0
[  228.226809][ T8797]  ? hook_file_ioctl_common+0x149/0x410
[  228.226821][ T8797]  ? __fget_files+0x215/0x3d0
[  228.226837][ T8797]  ? __fget_files+0x21f/0x3d0
[  228.226852][ T8797]  security_file_ioctl_compat+0xd3/0x230
[  228.226866][ T8797]  __ia32_compat_sys_ioctl+0xc2/0x360
[  228.226881][ T8797]  __do_fast_syscall_32+0xe7/0x950
[  228.226899][ T8797]  ? lockdep_hardirqs_on+0x78/0x100
[  228.226917][ T8797]  do_fast_syscall_32+0x32/0x70
[  228.226935][ T8797]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  228.226950][ T8797] RIP: 0023:0xf70befcc
[  228.226960][ T8797] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  228.226971][ T8797] RSP: 002b:00000000f54ad50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  228.226983][ T8797] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004008ae89
[  228.226990][ T8797] RDX: 00000000800004c0 RSI: 0000000000000000 RDI: 0000000000000000
[  228.226996][ T8797] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  228.227003][ T8797] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  228.227009][ T8797] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  228.227023][ T8797]  </TASK>
[  228.227030][ T8797] ERROR: Out of memory at tomoyo_realpath_from_path.
[  228.277957][ T1471] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  228.578408][ T8814] netlink: 28 bytes leftover after parsing attributes in process `syz.0.856'.
[  228.602246][ T1471] usb 7-1: unable to get BOS descriptor or descriptor too short
[  228.607031][ T1471] usb 7-1: unable to read config index 0 descriptor/start: -71
[  228.609999][ T1471] usb 7-1: can't read configurations, error -71
[  229.128850][ T8823] ip6t_srh: unknown srh invflags 4000
[  229.289873][ T1468] usb 38-1: device descriptor read/8, error -110
[  229.363873][ T8832] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  229.422592][ T8838] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  229.602110][ T8848] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[  229.685685][ T8819] netlink: 'syz.0.857': attribute type 1 has an invalid length.
[  229.688366][ T8819] netlink: 24 bytes leftover after parsing attributes in process `syz.0.857'.
[  229.709299][ T1468] usb usb38-port1: attempt power cycle
[  230.268365][ T5744] Bluetooth: hci2: unexpected event for opcode 0x203d
[  230.335392][ T1468] usb usb38-port1: unable to enumerate USB device
[  230.432560][ T8859] bridge0: port 3(dummy0) entered disabled state
[  230.435475][ T8859] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.440583][ T8859] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.482480][ T8862] vivid-000: disconnect
[  230.568026][ T8861] vivid-000: reconnect
[  230.798396][ T8870] xt_l2tp: missing protocol rule (udp|l2tpip)
[  230.887668][ T8871] netlink: 'syz.2.875': attribute type 10 has an invalid length.
[  230.891248][ T8871] netlink: 40 bytes leftover after parsing attributes in process `syz.2.875'.
[  230.896180][ T8871] bridge0: port 1(dummy0) entered blocking state
[  230.900307][ T8871] bridge0: port 1(dummy0) entered disabled state
[  230.903996][ T8871] dummy0: entered allmulticast mode
[  230.916258][ T8871] dummy0: entered promiscuous mode
[  230.919451][ T8871] bridge0: port 1(dummy0) entered blocking state
[  230.921502][ T8871] bridge0: port 1(dummy0) entered forwarding state
[  231.605399][ T8885] team0: Device wireguard0 is of different type
[  232.147246][ T8898] syz.0.886 (8898): /proc/8896/oom_adj is deprecated, please use /proc/8896/oom_score_adj instead.
[  232.956772][ T8913] netlink: 72 bytes leftover after parsing attributes in process `syz.3.889'.
[  233.191717][ T8927] netlink: 8 bytes leftover after parsing attributes in process `syz.3.894'.
[  233.374091][ T8950] netlink: 'syz.1.890': attribute type 2 has an invalid length.
[  233.382235][ T8950] netlink: 'syz.1.890': attribute type 1 has an invalid length.
[  233.394068][ T8950] netlink: 8 bytes leftover after parsing attributes in process `syz.1.890'.
[  233.958984][ T8965] infiniband syz2: set down
[  233.961346][ T8965] infiniband syz2: added ipvlan1
[  233.976276][ T8965] smbdirect: ib_dev[syz2]: added: IB_CA max_fast_reg_page_list_len=512 device_cap_flags=0x1c001223c76 kernel_cap_flags=0x14 page_size_cap=0xfffff000
[  233.981465][ T8965] smbdirect: ib_dev[syz2]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=32 max_cqe=32767 max_qp_wr=1048576 max_send_sge=32 max_recv_sge=32
[  233.989077][ T8965] smbdirect: ib_dev[syz2]PORT[1]: iwarp=0 ib=0 roce=1 v1=0 v2=1 core_cap_flags=0x803005
[  234.024829][ T8965] RDS/IB: syz2: added
[  234.026608][ T8965] smc: adding ib device syz2 with port count 1
[  234.030754][ T8965] smc:    ib device syz2 port 1 has no pnetid
[  234.321391][ T5744] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  234.324829][ T5744] Bluetooth: hci2: Injecting HCI hardware error event
[  234.327680][ T5744] Bluetooth: hci2: hardware error 0x00
[  234.348721][ T8977] netem: change failed
[  234.453682][ T8981] netlink: 56 bytes leftover after parsing attributes in process `syz.2.913'.
[  234.583119][ T8988] netlink: 4 bytes leftover after parsing attributes in process `syz.2.915'.
[  234.627996][ T8990] netlink: 'syz.2.916': attribute type 2 has an invalid length.
[  234.926186][ T8997] bond4: entered promiscuous mode
[  235.512917][ T9026] tmpfs: Bad value for 'usrquota_inode_hardlimit'
[  235.576943][ T9027] netlink: 'syz.3.927': attribute type 1 has an invalid length.
[  235.587869][ T9027] netlink: 24 bytes leftover after parsing attributes in process `syz.3.927'.
[  236.345901][ T9035] fuse: Bad value for 'fd'
[  236.403248][ T5744] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  236.884313][ T9052] pim6reg: entered allmulticast mode
[  236.887470][ T9052] team0: entered allmulticast mode
[  236.889524][ T9052] team_slave_0: entered allmulticast mode
[  236.891672][ T9052] team_slave_1: entered allmulticast mode
[  236.942151][ T9051] netlink: 12 bytes leftover after parsing attributes in process `syz.3.937'.
[  237.482093][ T9064] netlink: 'syz.3.939': attribute type 2 has an invalid length.
[  239.501372][ T9099] netlink: 36 bytes leftover after parsing attributes in process `syz.2.946'.
[  241.928973][ T9109] netlink: 766 bytes leftover after parsing attributes in process `syz.3.948'.
[  242.086590][ T9121] bridge0: port 2(bridge_slave_1) entered disabled state
[  242.090325][ T9121] bridge0: port 1(bridge_slave_0) entered disabled state
[  242.161229][ T9121] comedi comedi0: mpc624: I/O base address not correctly aligned
[  243.262281][ T9145] netlink: 'syz.0.955': attribute type 1 has an invalid length.
[  243.265403][ T9145] netlink: 24 bytes leftover after parsing attributes in process `syz.0.955'.
[  243.650754][ T9140] ./bus: Can't lookup blockdev
[  244.019016][ T9165] tmpfs: Bad value for 'usrquota_inode_hardlimit'
[  244.023912][ T9165] FAULT_INJECTION: forcing a failure.
[  244.023912][ T9165] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  244.036281][ T9165] CPU: 0 UID: 0 PID: 9165 Comm: syz.2.960 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  244.036311][ T9165] Tainted: [L]=SOFTLOCKUP
[  244.036318][ T9165] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  244.036329][ T9165] Call Trace:
[  244.036338][ T9165]  <TASK>
[  244.036346][ T9165]  dump_stack_lvl+0x100/0x190
[  244.036374][ T9165]  should_fail_ex.cold+0x5/0xa
[  244.036397][ T9165]  _copy_from_user+0x2e/0xd0
[  244.036416][ T9165]  kstrtouint_from_user+0xd6/0x1d0
[  244.036440][ T9165]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  244.036460][ T9165]  ? __lock_acquire+0x4a5/0x2630
[  244.036489][ T9165]  proc_fail_nth_write+0x83/0x220
[  244.036518][ T9165]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  244.036553][ T9165]  vfs_write+0x2aa/0x1070
[  244.036575][ T9165]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  244.036605][ T9165]  ? __pfx_vfs_write+0x10/0x10
[  244.036623][ T9165]  ? find_held_lock+0x2b/0x80
[  244.036646][ T9165]  ? __fget_files+0x215/0x3d0
[  244.036672][ T9165]  ? __fget_files+0x21f/0x3d0
[  244.036700][ T9165]  ksys_write+0x12a/0x250
[  244.036720][ T9165]  ? __pfx_ksys_write+0x10/0x10
[  244.036742][ T9165]  ? rcu_is_watching+0x12/0xc0
[  244.036773][ T9165]  do_int80_emulation+0x141/0x700
[  244.036804][ T9165]  asm_int80_emulation+0x1a/0x20
[  244.036822][ T9165] RIP: 0023:0xf71361ab
[  244.036836][ T9165] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  244.036853][ T9165] RSP: 002b:00000000f53ed4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[  244.036869][ T9165] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f53ed5d0
[  244.036879][ T9165] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  244.036889][ T9165] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  244.036898][ T9165] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  244.036908][ T9165] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  244.036931][ T9165]  </TASK>
[  244.239401][ T9169] syzkaller0: entered promiscuous mode
[  244.247722][ T9169] syzkaller0: entered allmulticast mode
[  244.263367][ T9169] tipc: Started in network mode
[  244.270243][ T9169] tipc: Node identity 72b102c675f3, cluster identity 4711
[  244.275529][ T9169] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  244.286529][ T9168] tipc: Resetting bearer <eth:syzkaller0>
[  244.319498][ T9168] tipc: Disabling bearer <eth:syzkaller0>
[  245.215078][ T9174] netlink: 'syz.3.963': attribute type 10 has an invalid length.
[  245.219106][ T9174] netlink: 40 bytes leftover after parsing attributes in process `syz.3.963'.
[  246.176611][ T9184] netlink: 8 bytes leftover after parsing attributes in process `syz.0.965'.
[  246.225800][ T9188] netlink: 60 bytes leftover after parsing attributes in process `syz.3.968'.
[  246.233381][ T9188] netlink: 'syz.3.968': attribute type 3 has an invalid length.
[  246.236776][ T9188] netlink: 72 bytes leftover after parsing attributes in process `syz.3.968'.
[  247.061836][ T9216] cgroup: Name too long
[  247.973653][ T9250] netlink: 'syz.3.981': attribute type 2 has an invalid length.
[  249.523079][ T9284] netlink: 4 bytes leftover after parsing attributes in process `syz.1.989'.
[  249.567553][ T9287] overlayfs: failed to resolve './file0': -2
[  249.928864][ T9282] overlayfs: failed to resolve './bus': -2
[  249.945526][ T9282] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  249.947875][ T9282] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  249.956527][ T9282] vhci_hcd vhci_hcd.0: Device attached
[  250.067954][ T9301] netlink: 8 bytes leftover after parsing attributes in process `syz.1.994'.
[  250.169626][ T9296] vhci_hcd: connection closed
[  250.174778][  T232] vhci_hcd vhci_hcd.0: stop threads
[  250.178872][  T232] vhci_hcd vhci_hcd.0: release socket
[  250.181068][  T232] vhci_hcd vhci_hcd.0: disconnect device
[  250.228284][   T24] usb 38-1: enqueue for inactive port 0
[  250.267655][ T9311] netlink: 16 bytes leftover after parsing attributes in process `syz.2.998'.
[  250.357985][ T9315] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1000'.
[  250.608866][ T1471] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  250.738858][   T24] usb usb38-port1: attempt power cycle
[  250.748162][ T1471] usb 7-1: device descriptor read/64, error -71
[  251.017979][ T1471] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  251.144155][ T9344] netlink: 'syz.3.1009': attribute type 2 has an invalid length.
[  251.157955][ T1471] usb 7-1: device descriptor read/64, error -71
[  251.165107][ T9347] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1011'.
[  251.278294][ T1471] usb usb7-port1: attempt power cycle
[  251.321001][   T24] usb usb38-port1: unable to enumerate USB device
[  251.738329][ T1471] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  251.795720][ T1471] usb 7-1: device descriptor read/8, error -71
[  252.078669][ T1471] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  252.387169][ T1471] usb 7-1: device descriptor read/8, error -71
[  252.511064][ T1471] usb usb7-port1: unable to enumerate USB device
[  252.940358][ T9367] team0: Device wireguard0 is of different type
[  253.313906][ T9372] ceph: No mds server is up or the cluster is laggy
[  253.338553][ T1471] libceph: connect (1)[c::]:6789 error -101
[  253.344337][ T1471] libceph: mon0 (1)[c::]:6789 connect error
[  253.395900][ T9381] siw: device registration error -23
[  253.421873][ T9382] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000d: 0000 [#1] SMP KASAN NOPTI
[  253.427040][ T9382] KASAN: null-ptr-deref in range [0x0000000000000068-0x000000000000006f]
[  253.430640][ T9382] CPU: 1 UID: 0 PID: 9382 Comm: syz.3.1020 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  253.435613][ T9382] Tainted: [L]=SOFTLOCKUP
[  253.437499][ T9382] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  253.441634][ T9382] RIP: 0010:kernel_sock_shutdown+0x47/0x70
[  253.444112][ T9382] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 33 48 b8 00 00 00 00 00 fc ff df 4c 8b 63 20 49 8d 7c 24 68 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 1a 49 8b 44 24 68 89 ee 48 89 df 5b 5d 41 5c e9 d2
[  253.452556][ T9382] RSP: 0000:ffffc900035cf170 EFLAGS: 00010202
[  253.455121][ T9382] RAX: dffffc0000000000 RBX: ffff8880005d4840 RCX: 0000000000000000
[  253.458403][ T9382] RDX: 000000000000000d RSI: ffffffff8952e692 RDI: 0000000000000068
[  253.461706][ T9382] RBP: 0000000000000002 R08: 0000000000000000 R09: fffffbfff21afb8a
[  253.465094][ T9382] R10: ffffffff90d7dc57 R11: 0000000000000000 R12: 0000000000000000
[  253.468350][ T9382] R13: ffff8880606b8000 R14: 0000000000000002 R15: 0000000000000018
[  253.471352][ T9382] FS:  0000000000000000(0000) GS:ffff888097277000(0063) knlGS:00000000f5445b40
[  253.475022][ T9382] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  253.477888][ T9382] CR2: 000000000c3de941 CR3: 0000000077149000 CR4: 0000000000352ef0
[  253.481330][ T9382] Call Trace:
[  253.482747][ T9382]  <TASK>
[  253.484005][ T9382]  ? __pfx_rxe_ns_pernet_set_sk4+0x10/0x10
[  253.486284][ T9382]  udp_tunnel_sock_release+0x68/0x80
[  253.488562][ T9382]  rxe_sock_put+0xae/0x130
[  253.490511][ T9382]  ? __pfx_rxe_dellink+0x10/0x10
[  253.492774][ T9382]  rxe_net_del+0x83/0x120
[  253.494807][ T9382]  rxe_dellink+0x15/0x20
[  253.496663][ T9382]  nldev_dellink+0x289/0x3c0
[  253.498626][ T9382]  ? __pfx_nldev_dellink+0x10/0x10
[  253.500826][ T9382]  ? rcu_is_watching+0x12/0xc0
[  253.502993][ T9382]  ? apparmor_capable+0x1d7/0x4d0
[  253.505507][ T9382]  ? bpf_lsm_capable+0x9/0x10
[  253.507552][ T9382]  ? security_capable+0x80/0x260
[  253.509764][ T9382]  ? ns_capable+0xd2/0xf0
[  253.511619][ T9382]  ? __pfx_nldev_dellink+0x10/0x10
[  253.513842][ T9382]  rdma_nl_rcv_msg+0x392/0x6f0
[  253.515945][ T9382]  ? __pfx_rdma_nl_rcv_msg+0x10/0x10
[  253.518169][ T9382]  ? __lock_acquire+0x4a5/0x2630
[  253.520396][ T9382]  rdma_nl_rcv_skb.constprop.0.isra.0+0x2cb/0x410
[  253.523098][ T9382]  ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10
[  253.526087][ T9382]  ? netlink_deliver_tap+0x1ae/0xcc0
[  253.528500][ T9382]  netlink_unicast+0x585/0x850
[  253.530652][ T9382]  ? __pfx_netlink_unicast+0x10/0x10
[  253.533053][ T9382]  netlink_sendmsg+0x8b0/0xda0
[  253.535084][ T9382]  ? __pfx_netlink_sendmsg+0x10/0x10
[  253.537315][ T9382]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  253.539767][ T9382]  ____sys_sendmsg+0x9e1/0xb70
[  253.542146][ T9382]  ? __pfx_netlink_sendmsg+0x10/0x10
[  253.544731][ T9382]  ? __pfx_____sys_sendmsg+0x10/0x10
[  253.546975][ T9382]  ? __pfx___futex_wait+0x10/0x10
[  253.549130][ T9382]  ? __pfx_futex_wake_mark+0x10/0x10
[  253.551346][ T9382]  ___sys_sendmsg+0x190/0x1e0
[  253.553438][ T9382]  ? __pfx____sys_sendmsg+0x10/0x10
[  253.555901][ T9382]  ? find_held_lock+0x2b/0x80
[  253.557998][ T9382]  __sys_sendmsg+0x170/0x220
[  253.560023][ T9382]  ? __pfx___sys_sendmsg+0x10/0x10
[  253.562180][ T9382]  ? rcu_is_watching+0x12/0xc0
[  253.564295][ T9382]  __do_fast_syscall_32+0xe7/0x950
[  253.566480][ T9382]  ? lockdep_hardirqs_on+0x78/0x100
[  253.568862][ T9382]  do_fast_syscall_32+0x32/0x70
[  253.571069][ T9382]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  253.573733][ T9382] RIP: 0023:0xf7fa6fcc
[  253.575512][ T9382] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  253.584004][ T9382] RSP: 002b:00000000f544550c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  253.587260][ T9382] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000800002c0
[  253.590498][ T9382] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  253.594187][ T9382] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  253.597703][ T9382] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  253.600991][ T9382] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  253.604332][ T9382]  </TASK>
[  253.605702][ T9382] Modules linked in:
[  253.607840][ T9382] ---[ end trace 0000000000000000 ]---
[  253.611105][ T9381] smc: removing ib device syz2
[  253.611108][ T9382] RIP: 0010:kernel_sock_shutdown+0x47/0x70
[  253.616193][ T9382] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 33 48 b8 00 00 00 00 00 fc ff df 4c 8b 63 20 49 8d 7c 24 68 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 1a 49 8b 44 24 68 89 ee 48 89 df 5b 5d 41 5c e9 d2
[  253.622978][ T9381] smbdirect: ib_dev[syz2] removed
[  253.637976][ T9382] RSP: 0000:ffffc900035cf170 EFLAGS: 00010202
[  253.641429][ T9382] RAX: dffffc0000000000 RBX: ffff8880005d4840 RCX: 0000000000000000
[  253.645115][ T9382] RDX: 000000000000000d RSI: ffffffff8952e692 RDI: 0000000000000068
[  253.668005][ T9382] RBP: 0000000000000002 R08: 0000000000000000 R09: fffffbfff21afb8a
[  253.671927][ T9382] R10: ffffffff90d7dc57 R11: 0000000000000000 R12: 0000000000000000
[  253.698344][ T9382] R13: ffff8880606b8000 R14: 0000000000000002 R15: 0000000000000018
[  253.709145][ T9382] FS:  0000000000000000(0000) GS:ffff888097177000(0063) knlGS:00000000f5445b40
[  253.713485][ T9382] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  253.716543][ T9382] CR2: 00000000f5402ff4 CR3: 0000000077149000 CR4: 0000000000352ef0
[  253.720243][ T9382] Kernel panic - not syncing: Fatal exception
[  253.723751][ T9382] Kernel Offset: disabled
[  253.725919][ T9382] Rebooting in 86400 seconds..