last executing test programs:

2m25.916966349s ago: executing program 0 (id=1936):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80600, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc4f})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80002, 0x0)
syz_emit_ethernet(0x7c, &(0x7f0000000240)={@local, @empty, @void, {@ipv6={0x86dd, @gre_packet={0x1, 0x6, "bc4a06", 0x46, 0x2f, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x88be, 0x0, 0x1}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8100, [0xdb05]}, {}, {0xa888, 0x88be, 0x3, {{0xc, 0x1, 0x8, 0x1, 0x1, 0x0, 0x4, 0x14}, 0x1, {0x7b40}}}, {0x8, 0x22eb, 0x2, {{0x3, 0x2, 0x2, 0x3, 0x0, 0x0, 0x1, 0x9}, 0x2, {0x3, 0xeb, 0x0, 0xd, 0x1, 0x1, 0x1, 0x1, 0x1}}}, {0x8, 0x6558, 0x3}}}}}}}, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f0000000000)="0f20e06635400000000f22e00f237e3e660f124bfab853058ec80f01ca0f20d86635080000000f22d80f01cad838ddeff20f58f3", 0xfffffffffffffe3c}], 0x1, 0x2, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x42, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x300000000000000)

2m25.713452326s ago: executing program 0 (id=1938):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000000e000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000000c0)="440f78bdb20000003e64460f78b49d0060000065400f841b000000650fc77674dd0166baf80cb85cb2f38cefb800000000efc442a3f5f0c44105d3a100400000b9800000c00f3235000100000f3066baf80cb84a88638aef66bafc0cb017ee", 0x5f}], 0x1, 0x30, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000000780)=@vmx={0x0, 0x0, 0x2080, {0xb000, 0x2000}, {'\x00', "000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a5f2000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fe0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004b41ee86077801e500"}})
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 33)

2m25.477068909s ago: executing program 0 (id=1940):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd7000fcdbdf250200000008000100", @ANYRES32=r3], 0x1c}}, 0x840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newqdisc={0x30, 0x24, 0xf0b, 0x0, 0x1, {0x60, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_pie={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="d00000001800010600000000fedbdf251c140000fe000001000000000500"], 0xd0}}, 0x2400c800)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
writev(r5, &(0x7f0000000600)=[{&(0x7f0000000080)="2e9b5b0007e03dd65193dfb6c575963f86", 0x11}, {&(0x7f00000001c0)="b700", 0x2}], 0x57)
write$nci(r0, &(0x7f00000008c0)=@NCI_OP_RF_INTF_ACTIVATED_NTF={0x1, 0x0, 0x3, 0x5, 0x7, @v={0x4, 0x2, 0x2, 0x6, 0x4, 0x10, 0x6f, {0x6, 0x7, "ac300cf54c8a6942"}, 0x8, 0x75, 0x2, 0x8, 0x60, "d703fe170440adbbd933b1ab883d5a2155031a22d191810b17c36df338cd870a9f99c2c3aa4213595ed1978ebe9aadfa90c1458252d7a16720385e267d51c3d691e854795cf1d0a7563fec69f01507112560d7d1f9ff2c1b82e1af7a1b992bd1"}}, 0x79)
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0)

2m25.177108256s ago: executing program 0 (id=1950):
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000080), 0x8800, 0x0)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000000)=0x14)
ioctl$IMDELTIMER(r0, 0x80044941, &(0x7f00000000c0)=0x2)
r1 = socket$inet(0x2, 0x3, 0xa)
r2 = syz_open_dev$dvb_demux(&(0x7f0000000080), 0x0, 0x41)
mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x4c)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0), 0x42, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000040)={0xf0f01b, 0x7})
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f0000008880)={0x2020, 0x0, <r5=>0x0}, 0x2020)
syz_fuse_handle_req(r3, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bind$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x10, 0x0, 0x25dfdbfc, 0x2000}, 0xc)
write$FUSE_INIT(r3, &(0x7f0000004200)={0x50, 0x0, r5, {0x7, 0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x80000, 0x0, 0x0, 0x0, 0xffffffff, 0x0, {0x0, 0x0, 0x0, 0xffffffffffffffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x4, 0x0, 0xa53, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file1\x00', 0x42, 0x0)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7)
ptrace$cont(0x4211, r7, 0x80000001, 0x4)
write$FUSE_CREATE_OPEN(r6, 0x0, 0x0)
ioctl$DVB_DEMUX_DMX_GET_STC(r2, 0xc0106f32, &(0x7f0000000040)={0xb7})
sendmmsg$inet(r1, &(0x7f0000000900)=[{{&(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10, 0x0, 0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1c000000000000000000000007000000860a"], 0x20}}], 0x1, 0x24000004)

2m25.056174663s ago: executing program 0 (id=1952):
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
r0 = openat$ptp1(0xffffffffffffff9c, &(0x7f0000000180), 0xefa8141b13b8e30b, 0x0)
ioctl$XFS_IOC_BULKSTAT(r0, 0x8040587f, &(0x7f0000000200)={{0x7f, 0x3, 0x2, 0x99c, 0x7}, &(0x7f00000002c0)=[{}, {}, {}, {}]})
ioctl$PTP_EXTTS_REQUEST2(r0, 0x40103d0b, &(0x7f00000001c0)={0x5, 0x4})
mknod(&(0x7f0000000000)='./file0\x00', 0x40, 0x2)
r1 = syz_open_dev$hidraw(&(0x7f0000000140), 0x0, 0x40)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, r1, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='fd/4\x00')
writev(r2, &(0x7f0000000800)=[{&(0x7f0000000280)='2', 0x1}], 0x1)
write$P9_RREADDIR(r2, &(0x7f0000000040)={0xc5, 0x29, 0x1, {0x2f04, [{{0x0, 0x1, 0x2}, 0x6, 0x81, 0x7, './file0'}, {{0x80, 0x2, 0x5}, 0x8, 0xd, 0x7, './file0'}, {{0x0, 0x4, 0x4}, 0x100, 0x4, 0x7, './file0'}, {{0x2, 0x4, 0x4}, 0xde, 0xf, 0x7, './file0'}, {{0x20, 0x3, 0x1}, 0x9, 0xaa, 0x7, './file0'}, {{0x10, 0x3, 0x7}, 0x7, 0x5, 0x7, './file0'}]}}, 0xc5)

2m24.633188259s ago: executing program 0 (id=1963):
r0 = socket(0x11, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r2=>0x0})
bind$packet(r0, &(0x7f00000001c0)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}}, 0x14)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f0000001040)={0x1a, {"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", 0x1000}}, 0x1006)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000000c0)=0x6121, 0x4)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
fcntl$setstatus(r5, 0x4, 0x0)
r6 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=@newqdisc={0x40, 0x24, 0x3fe3aa0262d8c583, 0x70bd2d, 0x25dfdbfe, {0x0, 0x0, 0x0, r7, {0x0, 0xfff2}, {0xffff, 0xffff}, {0x10, 0xffee}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_BUCKETS_LOG={0x8, 0x8, 0x11}, @TCA_FQ_INITIAL_QUANTUM={0x8, 0x4, 0x8}]}}]}, 0x40}}, 0x4048000)
r8 = dup(r5)
copy_file_range(r5, 0x0, r8, &(0x7f0000000640)=0x8800000, 0x3000, 0x0)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="02011400012918000e1a80009f0001140000002f0600ac141430e0000003808a8972bd0b72e41082b1a3d206", @ANYBLOB="75e0aa83463e746c9153d700991d10dead1065b19f8e68d138da89b5fa55ce294609b0e83cfe2cd6d80a91298b5fc7aa6b894495ebc794256041"], 0xdd12}], 0x1, 0x0, 0x0, 0x4000007}, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
fcntl$lock(r9, 0x25, &(0x7f0000000380)={0x1, 0x1, 0x81, 0x9, 0xffffffffffffffff})

2m24.561073969s ago: executing program 32 (id=1963):
r0 = socket(0x11, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r2=>0x0})
bind$packet(r0, &(0x7f00000001c0)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}}, 0x14)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f0000001040)={0x1a, {"a2e3ad21ed6b52f99cfbf4c087f71e9b230963ff7fc6e5539b9b3b09719b711b5d52101b080d29428f0e1ac6e7049b3468959b189a242a9b45f3988f7ef319520100ffe8d178708c523c921b1b23380a169b63d336cd3b78130daa61d8e81aea882f5802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f309f4cff7738596ecae8707ce065cd5b91cd0ae11a973735b36d5b1b63e91c00305d9be7bd1d020000000000000075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecd03aded6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801000000005b6bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c580263093ca9a34af674f3f39fe23491e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6fa94fc488ec130fb3850a27afc953854a642c57519544ae15a7e454dea05918b412435111c8f11baa500a3621c56cea8d20ff911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269caf12c31357c8219793e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a687974e7b4ab01b7f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a60560a22f1fca567e65d5e880572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5120000008213b704c7fb082ff27590678ef9f190bae979babc7041d860420c5664ba7921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da3710ac000000001a527777a5371f87d0d4aa202fd28f28381aab144a5d429a04a689b83c7068ae949ef06e288e810bac9c766000a5e19c907f8ea2e2f05dd3318271a1f5f8528f227e79c1386abdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eefc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f103000000416d59fdee5325928974d12dad99dac44c3f0008047096a44060fb30e900caab415db6578b4779415d97b9a6d601005c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3c901cd34e5c92f76cc4c24eeb8bc4e9ac292d9e53803ed000000009737d214060005ea6f1783e287b3bee96e3a7288afe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f48fe4eae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf02b98a269b891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efedfd71af9444e197f47e866101496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ffffff7f000000007f889b09114edb8e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615f7084a607a7eceb6243378e0610060f02cca405d8c5f64fdb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c4e15a7b6eb65ca8104e1b4da1fbb67ab2fc043aead87c32ab875ee7c2e7b7019c902cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe529003d1802d5676d95f160ec97b1ad948741b2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd73643de50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c1023bf70cc77737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73c497579773767075428067e7f16f4dde374f8211fef42cb468e623daf60b3569d462f4f19eacdb3ed70eeebb40800000077d443e8b40426db6fe29068c0ca3d3414442e863a154704b0e5e2c664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae44369ddb4581c55925d0f6f1ba471eba281f259152f85e654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b405177548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd84e935e00785ec27e923911fab964c271556527697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9ddbfb96d6144345f48843dd014e5c5ad8fe995754bd9cf32fce1e7027132f2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5336651b1b9bd522d60399473296b831dbd933d93994ba30b4279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee29165895ac4b008e595f437491d87abed02cefcd9db53dc10772d2b13f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76d57227edff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f84fa6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b30f0b932a4d02da711b757fe43c06d21e759595e4e98b27faea8aa12bc8040000000000000033eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d0000010000000000fcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cb0b3e35cb80dd349e891aef595dc4d080e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c60edddab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec014508e5247d33ae6c962d35603ff8454c16f8342856935125102bb784ed704887071f3d998efdd9923c954ab6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6ff7ffb1d62458d0741a12830052fcc460db043afe525629b40d7cee65802cb5e930ed624806c43a006dc9336d07c2b8081c188d26558f48261f7897084c2a1a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da3932ba5c04c24a560ad80a3ce654578376e599aff3565b1d531f30912b99e6619ebe93cc0b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c0ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf475bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e6491953264c7b34252600c9654e502dcea39cb0800eb69992e234b4ca7db2f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc640df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c02b5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadbb25c72e9758f03a755d0be53f8d2a1dfb1c6000064b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7db6ff957697c9ede7885d94ff1aa7082ead01a9b03c37b0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058093fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d060000008926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000000c0)=0x6121, 0x4)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
fcntl$setstatus(r5, 0x4, 0x0)
r6 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=@newqdisc={0x40, 0x24, 0x3fe3aa0262d8c583, 0x70bd2d, 0x25dfdbfe, {0x0, 0x0, 0x0, r7, {0x0, 0xfff2}, {0xffff, 0xffff}, {0x10, 0xffee}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_BUCKETS_LOG={0x8, 0x8, 0x11}, @TCA_FQ_INITIAL_QUANTUM={0x8, 0x4, 0x8}]}}]}, 0x40}}, 0x4048000)
r8 = dup(r5)
copy_file_range(r5, 0x0, r8, &(0x7f0000000640)=0x8800000, 0x3000, 0x0)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="02011400012918000e1a80009f0001140000002f0600ac141430e0000003808a8972bd0b72e41082b1a3d206", @ANYBLOB="75e0aa83463e746c9153d700991d10dead1065b19f8e68d138da89b5fa55ce294609b0e83cfe2cd6d80a91298b5fc7aa6b894495ebc794256041"], 0xdd12}], 0x1, 0x0, 0x0, 0x4000007}, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
fcntl$lock(r9, 0x25, &(0x7f0000000380)={0x1, 0x1, 0x81, 0x9, 0xffffffffffffffff})

1m14.079796492s ago: executing program 3 (id=2774):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1a00000004000000040000001200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)=ANY=[@ANYRES32=r2, @ANYRES32=r1, @ANYBLOB="05"], 0x10)
close(r1)
socket(0xa, 0x2, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000002, 0x13, r5, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$KDSKBSENT(0xffffffffffffffff, 0x4b49, &(0x7f0000000100)={0x9, "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"})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000000c0)={[0x11, 0x6, 0x800000000000, 0x7, 0xfffffffffffffffe, 0xffd, 0x3, 0x0, 0x10000000000, 0x265b, 0x0, 0x1ff, 0x5, 0x4, 0x0, 0x6c], 0x10000, 0xc11d0})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r2}, &(0x7f0000000340), &(0x7f0000000380)=r1}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r2}, &(0x7f0000000500), &(0x7f0000000540)=r1}, 0x20)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth1_to_hsr\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="680000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000400012800c0001006d6163766c616e00300002800800010010000000100005800a000400aaaaaaaaaabb000008000300030000000a000400aaaaaaaab1aa000008000500", @ANYRES32=r7], 0x68}, 0x1, 0x0, 0x0, 0x404c080}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r8 = syz_open_procfs(0x0, &(0x7f00000002c0)='fdinfo/3\x00')
read$FUSE(r8, &(0x7f0000002080)={0x2020}, 0x202d)
sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x839, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x7, 0x2}, {0xe, 0x10}, {0x1, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x84}, 0x0)

1m13.764860162s ago: executing program 3 (id=2778):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000500), 0xffffffffffffffff)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x6)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f00000000c0)={0xcd, 0x0, [{0x283}]})
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r6 = fcntl$dupfd(r5, 0x406, r5)
ioctl$USBDEVFS_SUBMITURB(r6, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x2, 0x3, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
accept4$ax25(r6, &(0x7f0000000040)={{0x3, @rose}, [@default, @default, @default, @bcast, @bcast, @null, @rose, @null]}, &(0x7f0000000180)=0x48, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0x13, &(0x7f00000009c0)=@framed={{}, [@printk={@li, {0x3, 0x3, 0x3, 0xa, 0x0, 0xfe00}, {0x5, 0x1, 0xb, 0x1, 0xa, 0x6}, {0x6, 0x0, 0x2}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, @printk={@p, {0x3, 0x0, 0x6, 0xa, 0x1, 0xfff8, 0xa1}, {}, {0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffe00}, {}, {}, {0x85, 0x0, 0x0, 0xca}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0xa}, @hci_rp_le_read_buffer_size_v2={{0x9}, {0x0, 0x5, 0x1, 0xb, 0x8}}}}, 0xd)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000600)={0x28, r1, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x24080881}, 0x40)

1m13.605272984s ago: executing program 3 (id=2779):
r0 = syz_open_dev$evdev(&(0x7f0000000140), 0x93ff, 0x2)
ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f00000006c0)={0x51, 0x4800, 0xbffa, {0x3, 0x1}, {0x17, 0x42}, @const={0x3, {0x3, 0x7, 0xc9d, 0x7}}})
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0xc8b, 0x18000)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000002060101000000000000000000000000010000000a000000090002008d001f106f194eb3050001"], 0x30}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="300000001d0001000000000004086aa42d"], 0x30}}, 0x0)
ioctl$int_in(r2, 0x0, &(0x7f0000000880)=0x100000000)
r3 = accept4$unix(0xffffffffffffffff, &(0x7f0000000340), &(0x7f00000003c0)=0x6e, 0x81000)
ioctl$VIDIOC_EXPBUF(r2, 0xc0405610, &(0x7f0000000640)={0x4, 0x1, 0xe, 0x80000, <r4=>0xffffffffffffffff})
r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000680)='ns/time\x00')
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
sendmsg$unix(r3, &(0x7f0000000840)={&(0x7f0000000480)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000500)="e2c5dd15028c1c592780721b834a2bfb9c2c6e73f5c5146359c7caf0d3f074bb6f16742dc542d856cf2bcddf6d8ca5095c4637e447e64a1b281767a098fd4f09785a09081c201967511112e02d5d", 0x4e}, {&(0x7f0000000580)="c930d0f0c7c0507c5ab32a3f04d5ccb723acfd26b6cf008be961ab8eca79606a525c4bec85e00b1511a14927b3ce04e7e0b9ac7b1e0b0d5cfe668a0fbec784df7089546c88d2323187e4f639fb63fab1aae8feb17a8c8176876def91adb7a1827369a1e7d4d69062fbd305a5fc83ee07883a001fa66efb88b022cf55bb3d6a54b6c505aa70bf30f8a40f53f30f0bf88aa033ed87154ba390309bd1e5b018c7", 0x9f}, {&(0x7f0000000700)="7f76cf63d177a14f07d6ac7d9540acfc0dcadb1e7d8fc7ba250dd701f69892da0acd71a740025eb0b3a4810d286c078bac883c352521b25649963a115e6fcbad9390ab36434be22f5f817f7b89e7c785950f807942f2c21accbb15db74d3dc80a96927d9b2e83f875d70466d258d656517f49a9a7dc21bdfeb584d888ec52bd06bfdfd751597ebed4135cf043da5585314bcadea7d3282d584c0fe12ab8e9794c44727c563d28e3be6be1908601fe540a7e882a87693e9ece40e7cf6a0a1574948730fa9e471e5f5e4", 0xc9}], 0x3, &(0x7f0000000800)=[@rights={{0x2c, 0x1, 0x1, [r4, r5, r6, r0, r2, r1, r1]}}], 0x30, 0x404c8d0}, 0x0)
ioctl$EVIOCGKEY(r1, 0x80404518, &(0x7f00000000c0)=""/127)
syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01)
r7 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$char_usb(r7, &(0x7f00000001c0)="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", 0x14d)

1m13.604811994s ago: executing program 3 (id=2780):
r0 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000), 0x0)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f000000b480), 0x0, 0x102, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
setsockopt$inet_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x0, 0xfffd, 0x0, 0x6, 0x5}, {0x12, 0x2, 0x0, 0x40, 0x8001, 0x1400}, 0xa5, 0x5, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd2c, 0x25dfdbfe, {0x60, 0x0, 0x0, r5, {}, {0xffe0, 0xa}, {0xfff3, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x55}, 0xc010)
sendmsg$inet(r2, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)

1m13.51974887s ago: executing program 3 (id=2781):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x8000, 0x1f7)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x201, 0x4000003e, r0, 0x0)
renameat(r0, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000140)='./file0\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000080)={0x8})
r3 = syz_io_uring_setup(0x1f85, &(0x7f0000000080)={0x0, 0xfffffffc, 0x13580}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000380)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000280)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x40, &(0x7f0000001400)={0x0, 0x3938700}, 0x1, 0x40})
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000cc0)="adf802e5370fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r7 = accept4(r6, 0x0, 0x0, 0x800)
sendmmsg$alg(r7, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb0958730", 0x4c}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343e", 0xc4}], 0x2, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r7, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
io_uring_enter(r3, 0x6b4d, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r3, 0x0, 0x3, 0x7, 0x0, 0x0)

1m13.401043744s ago: executing program 3 (id=2783):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x1000}, 0x20)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}, {&(0x7f0000000200)=""/83, 0x53}], 0x2}, 0x0)

57.40435844s ago: executing program 33 (id=2783):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x1000}, 0x20)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}, {&(0x7f0000000200)=""/83, 0x53}], 0x2}, 0x0)

3.847640619s ago: executing program 2 (id=3592):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001080)={0x14, 0x23, 0x301, 0x270bd22, 0x25dfdbfa, {0x1}}, 0x14}}, 0xc004) (fail_nth: 3)

3.763097174s ago: executing program 2 (id=3593):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{0x0}], 0x1, 0x0, 0x0, 0x8000}], 0x1, 0x40800)
ioctl$FS_IOC_GETVERSION(r1, 0xc0145b0e, &(0x7f0000000000))

2.287889589s ago: executing program 2 (id=3613):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000200)={@local, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x20, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0x10}}}}}}, 0x0)

1.464704753s ago: executing program 5 (id=3621):
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000200)=0x15)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5}, 0x50)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800)
ioctl$SG_GET_VERSION_NUM(r0, 0x2284, &(0x7f0000000080))
r1 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x12b001)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x8a240, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
ioctl$CEC_TRANSMIT(r1, 0xc0386105, &(0x7f00000003c0)={0x0, 0xfffffffffffffffe, 0x5, 0x6, 0xe30, 0x7fff7ffe, "c2c3da871813beebb98f6dd3d5e10363", 0x0, 0xfb, 0x9, 0xc, 0x0, 0x0, 0x3})

1.464570115s ago: executing program 5 (id=3622):
syz_emit_ethernet(0x4a, &(0x7f00000004c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "4dd308", 0x14, 0x6, 0x1, @local, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x42, 0x0, 0x0, 0x3c}}}}}}}, 0x0) (fail_nth: 5)

1.408206585s ago: executing program 5 (id=3623):
r0 = io_uring_setup(0x136a, &(0x7f0000000080)={0x0, 0x1f8a, 0x0, 0x3, 0x28c})
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = dup(r1)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f00000000c0)=[@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x22}}], 0x10)
sendmsg$inet6(r1, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000180)=[{&(0x7f00000004c0)="99", 0x1}], 0x1}, 0x4048043)
r3 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000200)=[@in={0x2, 0x4e24, @local}], 0x10)
sendto$inet6(r3, &(0x7f0000000040)='\x00', 0x1, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback={0x700000000000000}, 0xc5f}, 0x1c)
close_range(r0, 0xffffffffffffffff, 0x100000000000000)

1.407922057s ago: executing program 2 (id=3624):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000022c0)=@newtfilter={0x94, 0x2c, 0xd27, 0x170bd2b, 0x2, {0x0, 0x0, 0x0, r5, {0x0, 0x10}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_flow={{0x9}, {0x64, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1a29c}, @TCA_FLOW_ACT={0x50, 0x9, 0x0, 0x1, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x1003d1, 0x3, 0x20000000, 0x6, 0x86}, 0x69}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}}]}, 0x94}, 0x1, 0x0, 0x0, 0xc804}, 0x2)
close(r3)
socket$unix(0x1, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r6 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r6, 0x107, 0xf, &(0x7f0000000600), 0x56)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$kcm(r6, &(0x7f0000000280)={&(0x7f0000000540)=@xdp={0x2c, 0x0, r8, 0x42}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000200)="27030200dc0f14000e00003c0ff000000000ff840000000200000003125ce882cbf490d908f1523f00", 0x29}, {&(0x7f0000002680)="76e69c0141", 0x5}], 0x2}, 0x4005)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd2c, 0x25dfdafd, {0x0, 0x0, 0x0, r9, {0xc, 0xc}, {0x0, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x7000000, 0x20000801}, 0x4041080)

1.336162661s ago: executing program 4 (id=3627):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x168)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
mount$overlay(0xf4010000, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

1.282827692s ago: executing program 5 (id=3628):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
open$dir(&(0x7f0000000080)='./file0\x00', 0x20c402, 0x24) (async)
open$dir(&(0x7f0000000080)='./file0\x00', 0x20c402, 0x24)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)={0x14, 0x4, 0x1, 0x101, 0x0, 0x0, {0x1, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0xc0}, 0x24000080) (async)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)={0x14, 0x4, 0x1, 0x101, 0x0, 0x0, {0x1, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0xc0}, 0x24000080)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$video4linux(&(0x7f00000000c0), 0xffffffffea30e894, 0x80) (async)
r2 = syz_open_dev$video4linux(&(0x7f00000000c0), 0xffffffffea30e894, 0x80)
ioctl$VIDIOC_DQEVENT(r2, 0x80885659, 0x0)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r3, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r4})
ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f0000000180)={0x28, 0x2, r4, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x100000000}) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f0000000180)={0x28, 0x2, r4, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x100000000})

1.281149766s ago: executing program 4 (id=3629):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
mremap(&(0x7f00005e4000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 52)

1.133399496s ago: executing program 2 (id=3630):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000700)={&(0x7f00000004c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000017000000540006803c00040067636d286165732900000000000000000000000003000000000000000000000014000000e3de3d7b4cd07ec3ee777de774fc7987cca41989140003"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4008014)

1.13308649s ago: executing program 2 (id=3631):
r0 = fsopen(&(0x7f0000001240)='nfs4\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000280)='port', &(0x7f00000002c0)='0', 0x0)
io_setup(0x405, &(0x7f0000000180)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00')
writev(r2, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f00000001c0)={{0x2b, @dev={0xac, 0x14, 0x14, 0x25}, 0x4e22, 0x4, 'lblcr\x00', 0x39, 0xd81, 0x4e}, {@dev={0xac, 0x14, 0x14, 0x1f}, 0x4e20, 0x1, 0x10, 0x7fff, 0x3fbc70d8}}, 0x44)
io_submit(r1, 0x0, 0x0)
mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8)
r3 = gettid()
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @tid=r3}, &(0x7f0000000000)=<r4=>0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/vmstat\x00', 0x0, 0x0)
read$FUSE(r5, &(0x7f0000000200)={0x2020}, 0x2020)
io_cancel(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r5, &(0x7f0000001280)="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", 0x1000, 0x6, 0x0, 0x1, r2}, &(0x7f0000000580))
clock_gettime(0x0, &(0x7f0000000040)={<r6=>0x0, <r7=>0x0})
clock_gettime(0x1, &(0x7f0000002280))
timer_settime(r4, 0x0, &(0x7f0000000240)={{r6, r7+60000000}, {0x0, 0x3938700}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
r9 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0x800)
syz_open_dev$dri(&(0x7f0000000140), 0x3, 0x220100)
openat$panthor(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r2, 0xc00864bf, &(0x7f00000003c0)={<r10=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(r9, 0xc01864c1, &(0x7f0000000180)={r10})
close_range(r8, 0xffffffffffffffff, 0x0)
r11 = fsopen(&(0x7f0000000000)='exfat\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r11, 0x1, &(0x7f0000000ac0)='gid', &(0x7f0000000440)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k', 0x0)
io_submit(r1, 0x0, 0x0)

1.045510658s ago: executing program 5 (id=3632):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x10}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b80)=@newtfilter={0x44, 0x2c, 0xd27, 0x170bd2b, 0x3, {0x0, 0x0, 0x0, r7, {0x0, 0x10}, {}, {0x8, 0x4}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1e3a9}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0xc804}, 0x2)
r8 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000c40)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd2b, 0x2, {0x0, 0x0, 0x0, r9, {0x0, 0x10}, {}, {0x0, 0x4}}, [@filter_kind_options=@f_flow={{0x9}, {0xc, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x7ffffffe}]}}]}, 0x3c}}, 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
r11 = openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
close(r11)
socket$unix(0x1, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r11, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r12 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r12, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r12, &(0x7f00000000c0)={&(0x7f0000000500)=@xdp={0x2c, 0x0, r10, 0xc, 0x3000000}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf", 0x22}, {&(0x7f0000000c00)="4307ed2e", 0x4}], 0x2}, 0x4)

1.043666018s ago: executing program 4 (id=3633):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
close(0x3)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
socket$inet6(0xa, 0x1, 0x100)
close_range(r1, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x180)
ioctl$CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f00000003c0)={"0e00", 0xfffd, 0x6, 0x2, 0xfffffffe, 0x0, "f7000000000000000000001a00", "2c0100", "0300", "fcffffff", ['\x00', "808e88e2e9f7ffffffffd138", '\f\x00', "fff700000000002b725d5700"]})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f00000000c0)={'syztnl2\x00', &(0x7f0000000140)={'syztnl2\x00', <r6=>r5, 0x0, 0x40, 0x6, 0xfffffe00, {{0x19, 0x4, 0x1, 0x27, 0x64, 0x67, 0x0, 0x1, 0x2f, 0x0, @private=0xa010102, @remote, {[@cipso={0x86, 0x4e, 0x1, [{0x5, 0x11, "77c201362c080030f4e4aa34a96e84"}, {0x0, 0x11, "003e7f490cd9145719d60d26c91237"}, {0x6, 0x6, "5e4ee550"}, {0x6, 0x11, "d8a54fd1b9b1f54ae26b5e10566f83"}, {0x2, 0x7, "fe5f864c89"}, {0x5, 0x8, "a94e1bdc8827"}]}]}}}}})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000880)=@newtfilter={0x1b0, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0xfff3, 0xc}, {}, {0xa, 0x1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x180, 0x2, [@TCA_CGROUP_EMATCHES={0x17c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x170, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0xc, 0x1, 0x0, 0x0, {{0x8, 0x9, 0x4}}}, @TCF_EM_NBYTE={0x10, 0x3, 0x0, 0x0, {{0xfff9, 0x2, 0xf}, {0x7, 0x0, 0x1}}}, @TCF_EM_CONTAINER={0x108, 0x3, 0x0, 0x0, {{0x0, 0x0, 0x3ff}, "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"}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x80, 0x8, 0x936}, {0x3}}}, @TCF_EM_NBYTE={0x1c, 0x2, 0x0, 0x0, {{0x40, 0x2, 0x8}, {0x4, 0xa, 0x2, "f3d6f3196bd5b0b55ba2"}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x10, 0x3, 0x8001}, {0x9, 0x6, 0xfffffffa, 0x4}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x400}}]}]}}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x84}, 0x40010)

876.670512ms ago: executing program 4 (id=3634):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c000280"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
sendmmsg$inet(r0, &(0x7f0000001340)=[{{&(0x7f0000000000)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000340)="44564c98f6331b29519f7aca6019c047f8c298dbe6431f7dc3fc2886cd0a0707d5d2248245e0d08e36bb68f86973d5e58c77064456e7d10aa9b95e62823bcf78fd954e1dd63a17f9b25e8b2e52a4f0a413083617c5e7c1deee08bcce9903cd55f551e2b96f6a4cc31c271d83f76831ed4997edd42c04dde47b366785c813f3235cd6283188fee2f346744ccde15c488f8dd0f1ea94b6be9301efcc8d8e5c1ad1121f806e35", 0xa5}], 0x1}}, {{&(0x7f0000000140)={0x2, 0x4e23, @multicast1}, 0x10, &(0x7f0000000800)=[{&(0x7f0000000400)="0e7e463f99e00afee201e41976de4ee350f98c2d2b94d9893a101ad616c43afecf59a185b3b8879607449bb41b461c51988d3378d84765999ea4640eadca8fd2ba92afb046e4e0e9e38ac6eaf8b3e9f2d8a821dc626b4740f2792d0cc7225a07fd4f9ef1eb8bc3df494f6e99cdef85f2101db3024c19aaabab2edf64ae09393fdd1240d9e3be946bef7e50f419934749e97d032458485bf5ce1465d010db664bdd0107a2834a376fa654d9056522507b71c1ca273598cf7c0552dfb0f78db678b9a90d405d176f986a62d9992ad97124420652dcda5ad6980aa491", 0xdb}, {&(0x7f0000000500)="2d1a682777de5ff96e3d76887a466d308688561503dee71ccf00189e82bb1b324e30d657ddde79e7b3be340b74bda16f390d56214ef45bc4c6114aef67d082966b8232159c427bc2e62b740077e23051cfda62a1a6caadf7dc70b2924fb2f087e139e18adeefe148c2c8548e50b24fe3a11573aaba5e89bed81a2424a9a69df3b8bdac9f56fcf30bb438591326480db52ac62819c4ca0a057c043c8694bc9331b81b208fecdad62da5f5aba043fbdca6d05ef616abd26473ba503349999f65a6ff3b9c", 0xc3}, {&(0x7f0000000600)="e6aae8e39a126bb269070f81742fa1816ce363f7b79e1771e14b666ff835bef2ae02a2d783da2504333c6e8706ef647538c68b447df6d9dfdd81c0422eebc0b03e5c95a5110739e07663fd44141b85020cb19e5fe18a91b05d32184766441dc0ad80209c560def64748a9c9bf3f37efa617150e5ac7da36192ce7416f2d257b67a23", 0x82}, {&(0x7f00000001c0)="a7c590010a944e76798ae8105c1f2eba01d068cdc4088d6d639072573b54f742c4b2d021250d4d09992b565289b4d125a2066760", 0x34}, {&(0x7f00000006c0)="94bae9533f94bcba1c093d1f85ebd609b638cd8291cd95ee4874ea3d0c48b3fa20ca9e7782929b8348d73baf02b08351a95408c4223bc6449910aef0c56b798bf1a5c6f2b7455c9ddbfa3392534f98d8e4bd5a1cee2deadb5cc71e32d5c30e0cd113208c0d2fc3ad472538e461663d778dac380a0c59ae4d05633ed40d6d7c4b9a46c94833cd327ac3cdebf37324cbaac0320f19f9995263ba76d84abcddafdb461cbd084d442144b3bb90f6d3aead", 0xaf}, {&(0x7f00000002c0)="6c52587cfd25ef35bde6f22b0256440034db12d109ba478516ce3a03f2b61d44ae311050bce25dc60152532f25fc75ed57", 0x31}, {&(0x7f0000000780)="9996b634483d99544d5ea27141778f263c6d95c580cd026f56e4a4e678a43d0648e8dd9a60a8d69a7215d1e3ae441805a507a983d9bfb5f06e091e537b484477f809efbf571a8edb23159cc7944c6f5f024e16988a2b37e4e965db8743e90ce4041bd2eac2fed36780ec36ab0450b08f5f80c184a1d1850b0c44773bba4d", 0x7e}], 0x7, &(0x7f0000000880)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @broadcast}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}], 0x50}}, {{0x0, 0x0, &(0x7f0000000fc0)=[{&(0x7f0000000940)="2dbbee1e66c35d6d5199725f67277ab4f6c3e17dec76252841", 0x19}, {&(0x7f0000000980)="230ae79e29ecb03bd8e3ca2d7141391ea6bfc7231a54fb5380001439f02360b30946a9766da29d1586b12064f44ffb4621a1ddf4ed8ea5f6cdea97a677b651743a18faf0649b80dd7b2047e5a670b29bb3a3c031eef8afc3927a852af4579f", 0x5f}, {&(0x7f0000000a00)="23e0da158eebf46680fcf2764bb164e829992868f1bfdaae6f14dbca493ee483a83b8ba564a6b30bbf2824de976990782c3aeb87c4564513c868ab514531f2fe06de9673c1b629bed9512363921615a71fff43e46d4a7b89ffa326bc5c14c37d44bd4b1abd91adb8d9c01d759afaaa01c40c60bd2e0d7dd76e8be47c986b2ab10f3da94bfff5e8699d392486f36abd182938d172188bf960f7efc0a0324b44248196a324adbddab49557fd0460d830372a73ab59af5d82fe1baf8ed87fb0ab53f8d22f73024858e43fe8475ea0ac4d4f0ff1aa3ad418d854", 0xd8}, {&(0x7f0000000b00)="181aa50653b1f6ed86e109b043c2e26255652cba56d5033da8bdc49137b03eb8551e3ca5e510128a6bf5d4b3c8386b1c2059f64f4a0cfff3ab1e4832797d4e37f56802cea9965ba97824d41da1afc1670af046b4d1db921d093efa5de854fdc1782bf60c02baa4c912c431ec0a93956b1ba729d6d877ab1c9cbbaa93c41e8128bdd5a8e7f8556417498a74f4ff63bf59162a653216f88d01c213c7816d0ff34ff998b0967295107cbfc07c2315629ac3c966fd46b2f5f94a8d4f1bc8d22c9b0d8b07e0a0681d79e861d2984d7d01c875ccad77c27fdfcf", 0xd7}, {&(0x7f0000000c00)="f1ac5dc5c23ffe8e97fec5145505358daf915ee0e7c4a95addb725da070ae1c25c37a1425a63262a130f93693dad98583bdc35c2eead4a7881cd8008a8b9cf04ce7fd66c04332eb48937a1f5ffefede495a85c642280f273c4fc6c082b6785be76d5c802298f7dd4623cf8c179a291c0a5fa53de719e323b89a4ac9d83e94f6ff1beb4472778b97e2b", 0x89}, {&(0x7f0000000cc0)="3f2e9ee7ba1ba5cdfb6e7314df9acc33a99c78d556ab713488ed0b26f101fab951c1aa88b01014c010f8736e3a9010927dcc0809652363143e8aa2550fe9db5283326669c7d2419534d2e6622929c3ac80984016058fec7e0deb08fa58fc4d908c6c0b4379d9a2234ffea0a11c87c068615d56ab4e224c212885d1e071f4073c2aea7dd837aa851ee237daf83998c3d2741233420a8700e9c5635d14858fc762835209d6aac6d4da67e15791e72c38cc3aafc524519bd425838fdf95bca64f17ab", 0xc1}, {&(0x7f0000000dc0)="de82142e6a089306e4c06214a0589f4b6694c30bf3fbffa31f17f43e379f6ace175a14b04a872f2a21b24ce96bb477a999f99767b58ab8d842dd55a28b0acb581f358197aa7ddde6388233b2fee8eb6379f1cce386508cb0b9c4aadebe14924c881ee4dd51a84601753b0df9adfde0f3ba298e63f70660753de3276b3bf6f1dc2606d3257c487ae90ae1c46d", 0x8c}, {&(0x7f0000000e80)="60c6af273e57adfedd6e2be36775935c71020f2281ea299332d13174f8ad2928b5d73df8244b0cd4488915dd2480abe7caa04e850c7a3eb0371388ed953eedfd4459a5ba796ddbd08a8fab2dd44e34d3b06520e99aad8eca5b5b3784c0ac10a1249f7cf26fe8f2e837315049b1b59b815d", 0x71}, {&(0x7f0000000f00)="9d9a4f3d56583b851ed6f25659393c48d66d68962a05a9d4b81ad5e64fddc474abd09c55dc5a44f1fb491961c605b99d6f1470b14339b51b8996040cb286cebb851500023aa6c3e5fd5c5b0e99d7f6a285cad831661dd97732a2eccc810bd556ee6379c451ac26cdd54643d3082250200d6cce7ca93d6efd879c3ebe85ed0e0800012a42ea19e981aa55", 0x8a}], 0x9}}], 0x3, 0x24040801)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="000086dd03000a000000140000006c07010033d43afffe800000000000000000000000000010ff02000000000000000000000000000189"], 0x340a)

875.161008ms ago: executing program 5 (id=3636):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3400000040000701fcffffff00000100017c0000040042800c0001800600060065580000100002800c0009"], 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000) (async)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f00000006c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x3c, r1, 0x400, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xd1ff}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7ff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4040005)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x42)
fcntl$setlease(r4, 0x400, 0x0)
fremovexattr(r3, &(0x7f0000000140)=@known='system.posix_acl_default\x00')
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r5, &(0x7f0000000000), 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f00000003c0)={'vxcan0\x00', <r6=>0x0})
sendmsg$can_bcm(r5, &(0x7f0000000480)={&(0x7f0000000340)={0x1d, r6}, 0x10, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="01000000d7fe68ca0000000000000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000004"], 0x20000600}}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{}, &(0x7f0000000580)=0x2, 0x0}, 0x20) (async)
sendmsg$can_bcm(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[], 0x80}, 0x1, 0x0, 0x0, 0x4000}, 0x4044001) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = syz_open_dev$video4linux(&(0x7f00000000c0), 0x3, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r8, 0xc0305602, &(0x7f0000000040)) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000880)={'vxcan0\x00', <r9=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000940)={0x6, 0x2, &(0x7f0000000700)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0x1e}], &(0x7f0000000740)='syzkaller\x00', 0x0, 0xfc, &(0x7f0000000780)=""/252, 0x40f00, 0x1, '\x00', r9, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000008c0)=[r4, r3, r4, r3], &(0x7f0000000900)=[{0x5, 0x3, 0x0, 0x9}, {0x0, 0x2, 0xe, 0x13bec42cac6dd35}], 0x10, 0x68}, 0x94) (async)
r10 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000001, 0x13, r10, 0x0)
ioctl$MON_IOCX_GETX(r10, 0x4018920a, &(0x7f0000000140)={0x0, 0x0}) (async)
r11 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000340)=@bpf_lsm={0x1d, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb84232d}, [@alu={0x7, 0x1, 0x0, 0x7, 0x4, 0x18, 0x4}, @jmp={0x5, 0x0, 0xa, 0x8, 0x2, 0xfffffffffffffff8}, @btf_id={0x18, 0x3, 0x3, 0x0, 0x1}, @call={0x85, 0x0, 0x0, 0x2}]}, &(0x7f0000000080)='syzkaller\x00', 0x9c, 0x63, &(0x7f0000000100)=""/99, 0x41100, 0x4b, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000180)={0x4, 0xd, 0x1}, 0x10, 0xffffffffffffffff, 0x0, 0x3, &(0x7f00000001c0)=[0xffffffffffffffff, 0x1, r8, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x1], &(0x7f0000000200)=[{0x0, 0x1, 0x5, 0x4}, {0x1, 0x2, 0x2, 0x1}, {0x4, 0x2, 0x8, 0x1}], 0x10, 0x80000000}, 0x94) (async)
r12 = openat$cgroup_pressure(r7, &(0x7f0000000240)='io.pressure\x00', 0x2, 0x0) (async)
clock_gettime(0x0, &(0x7f0000000400)={<r13=>0x0, <r14=>0x0})
ppoll(&(0x7f0000000280)=[{r10, 0x70}, {r8, 0x5184}, {r11, 0x32}, {r7, 0x5000}, {r12, 0x1}, {r7, 0x400}], 0x6, &(0x7f0000000440)={r13, r14+60000000}, &(0x7f0000000480)={[0xfffffffffffffffd]}, 0x8)
sendmsg$nl_route_sched(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000580)=@newtaction={0x94, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x80, 0x1, [@m_tunnel_key={0x50, 0x1, 0x0, 0x0, {{0xf}, {0x20, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x2}}]}, {0x4}, {0xc}, {0xc}}}, @m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x5a, 0x2, 0x0, 0x0}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0x94}}, 0x0)

726.113293ms ago: executing program 4 (id=3639):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xfffffff9, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x8040}, 0x0)
socket(0x27, 0x1, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0x0, r0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x20, 0x10, 0x405, 0xfffffffc, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x45502, 0x4}}, 0x20}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
r1 = io_uring_setup(0x6b61, &(0x7f0000000040)={0x0, 0x7b4b, 0xf080, 0xc, 0x21c})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1b, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfd11, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f00000012c0)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e24}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r3 = fcntl$dupfd(r2, 0x0, r2)
sendmsg$IPVS_CMD_GET_CONFIG(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0)
write$binfmt_elf64(r3, &(0x7f0000000740)=ANY=[], 0x4a2)
syz_io_uring_setup(0xb5c, &(0x7f0000000640)={0x0, 0x9916, 0x0, 0x0, 0x164, 0x0, r3}, &(0x7f0000000040), &(0x7f0000000480))
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000001440)=""/123, 0x7b, 0x841)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@bloom_filter={0x1e, 0x9, 0x9, 0x7e, 0x208, r3, 0x1ff, '\x00', 0x0, r4, 0x0, 0x5, 0x0, 0x2}, 0x50)
vmsplice(r1, &(0x7f00000002c0)=[{&(0x7f0000000140)="82fc02c5aeb5379d92e2b312a86fe5214cd44cf2228ca329ced1213cfd95377d", 0x20}, {&(0x7f0000000280)="0d0b1daae861334ed07dafbdccb34be395f5cc0d4feeae06625969dd1995cbb94811148ea2490dae35dcb5a7618f935579f7899143696051f853", 0x3a}], 0x2, 0xa)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000000)='0', 0x1}], 0x1, 0x0, 0x3)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r7=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010028bd700001000005c996d53b7693ea132667b0acf53900000000020000000400945d4041161c7e52bfcf08e1f424cbe1", @ANYRES32=r7, @ANYBLOB="0600000000000000"], 0x2c}}, 0x80)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r9=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@ipv6_deladdrlabel={0xa0, 0x49, 0x8, 0x70bd26, 0x25dfdbfb, {0xa, 0x0, 0x1f, 0x0, r9, 0x5}, [@IFAL_ADDRESS={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @multicast2}}, @IFAL_ADDRESS={0x14, 0x1, @mcast2}, @IFAL_LABEL={0x8, 0x2, 0x9}, @IFAL_ADDRESS={0x14, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}}, @IFAL_LABEL={0x8}, @IFAL_LABEL={0x8, 0x2, 0x4}, @IFAL_ADDRESS={0x14, 0x1, @private2}, @IFAL_ADDRESS={0x14, 0x1, @local}, @IFAL_LABEL={0x8, 0x2, 0x3}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40}, 0xa0)

608.401215ms ago: executing program 4 (id=3641):
r0 = socket$packet(0x11, 0x2, 0x300)
getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000040)=0x14)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/resume_offset', 0x102, 0x0)
sendfile(r1, r1, 0x0, 0x4)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$net_dm(&(0x7f0000001140), r2)
sendmsg$NET_DM_CMD_START(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000001180)={0x14, r3, 0x1, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40880}, 0x20000000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000480)={'wlan1\x00', <r6=>0x0})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REGISTER_FRAME(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)={0x28, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x4}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x60}]}, 0x28}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x19, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_aout(r8, &(0x7f00000003c0)=ANY=[], 0x20)
write$binfmt_script(r8, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x110, 0xffffffffffffffff, 0x0)
r9 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r9, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)
r10 = io_uring_setup(0x5013, &(0x7f0000000140)={0x0, 0xfffffffc, 0x3681, 0x0, 0x273})
io_uring_enter(r10, 0x0, 0x0, 0xf, &(0x7f0000000000), 0x18)
setsockopt$inet6_int(r9, 0x29, 0x3, &(0x7f0000004240)=0x40000006, 0x4)
recvmmsg(r9, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
r11 = openat$nmem0(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r11, &(0x7f0000000400)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000003c0)={&(0x7f00000005c0)={0x420, r5, 0x8, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0xa}}}}, [@NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0xd}, @NL80211_ATTR_SCAN_FREQUENCIES={0x24, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0x45797805}, {0x8, 0x0, 0xffffffff}, {0x8, 0x0, 0x10}, {0x8, 0x0, 0x100}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x248, 0x84, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xa, 0x1, @default_ibss_ssid}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @random="6e0198a82a8a"}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @random="3b27f9f565fe"}]}, {0x28, 0x0, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @from_mac=@device_b}, @NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0xc, 0x6, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x8, 0x2, 0x9}]}]}, {0xc4, 0x0, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @random="9c0febc12be5"}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xa, 0x1, @default_ap_ssid}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xb, 0x1, @random="23e925d99a2c30"}, @NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0x1c, 0x6, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x8, 0x0, 0xffffffff}, @NL80211_BAND_60GHZ={0x8, 0x2, 0x1}, @NL80211_BAND_60GHZ={0x8, 0x2, 0x1}]}, @NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0x14, 0x6, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x8, 0x1, 0x80}, @NL80211_BAND_60GHZ={0x8, 0x2, 0xff}]}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x34c6}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0x6, 0x1, @random="b395"}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x81}, @NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0x3c, 0x6, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x8, 0x1, 0x4}, @NL80211_BAND_5GHZ={0x8, 0x1, 0x4}, @NL80211_BAND_60GHZ={0x8, 0x2, 0xfe0}, @NL80211_BAND_LC={0x8, 0x5, 0xc}, @NL80211_BAND_6GHZ={0x8, 0x3, 0x5}, @NL80211_BAND_2GHZ={0x8, 0x0, 0x4}, @NL80211_BAND_6GHZ={0x8, 0x3, 0x6}]}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0x18, 0x1, @random="bc162a52eff9be40d38a00e97e1eeaeb320c12d2"}]}, {0xc8, 0x0, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0x3c, 0x6, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x8, 0x2, 0x8}, @NL80211_BAND_6GHZ={0x8, 0x3, 0x7fffffff}, @NL80211_BAND_60GHZ={0x8, 0x2, 0x9}, @NL80211_BAND_60GHZ={0x8, 0x2, 0x5}, @NL80211_BAND_60GHZ={0x8, 0x2, 0xa35}, @NL80211_BAND_60GHZ={0x8, 0x2, 0x9}, @NL80211_BAND_6GHZ={0x8, 0x3, 0x24f91208}]}, @NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0xc, 0x6, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x8, 0x0, 0x7fff}]}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @from_mac}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x5}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @from_mac=@device_b}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xa, 0x1, @default_ibss_ssid}, @NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0x14, 0x6, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x8, 0x2, 0x54}, @NL80211_BAND_5GHZ={0x8, 0x1, 0x688b}]}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0x21, 0x1, @random="1022c296efd5bd8b2ba5c8ca5809b38f2d5051157f89432e680cf7ecc0"}]}, {0x5c, 0x0, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0x34, 0x6, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x8, 0x2, 0xc5}, @NL80211_BAND_5GHZ={0x8, 0x1, 0x5}, @NL80211_BAND_2GHZ={0x8, 0x0, 0xc}, @NL80211_BAND_5GHZ={0x8, 0x1, 0x1}, @NL80211_BAND_LC={0x8, 0x5, 0x9}, @NL80211_BAND_60GHZ={0x8, 0x2, 0x6}]}, @NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0x24, 0x6, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x8, 0x3, 0x7}, @NL80211_BAND_6GHZ={0x8, 0x3, 0x80000000}, @NL80211_BAND_LC={0x8, 0x5, 0x2}, @NL80211_BAND_5GHZ={0x8, 0x1, 0x4}]}]}]}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x8}, @NL80211_ATTR_IE={0x1e, 0x2a, [@mic={0x8c, 0x18, {0x2c8, "49a8cfbcfe1c", @long="e0d17d0c5c0e35e4e7450228066098b2"}}]}, @NL80211_ATTR_IE={0x15d, 0x2a, [@cf={0x4, 0x6, {0x8a, 0x9, 0x5, 0x8}}, @prep={0x83, 0x25, {{0x0, 0x1}, 0x81, 0xfe, @device_a, 0x71bef08, @value, 0xeb6, 0xffff8001, @device_a, 0x21}}, @perr={0x84, 0x128, {0x0, 0x12, [{{0x0, 0x1}, @device_b, 0xaeb, @value=@device_b, 0x16}, {{}, @broadcast, 0xe, @void, 0x1e}, {{0x0, 0x1}, @device_a, 0xfffffb8e, @value=@device_b, 0x3}, {{0x0, 0x1}, @device_a, 0x3, @value, 0x2f}, {{0x0, 0x1}, @broadcast, 0xa, @value, 0x7}, {{}, @device_b, 0x2, @void, 0x3e}, {{0x0, 0x1}, @device_a, 0x38, @value=@broadcast, 0x2d}, {{}, @broadcast, 0x4, @void, 0x1}, {{0x0, 0x1}, @broadcast, 0x3, @value, 0x2b}, {{}, @device_a, 0x80000001, @void, 0x41}, {{0x0, 0x1}, @device_b, 0x3, @value, 0x40}, {{}, @device_a, 0xfffffff8, @void, 0x1e}, {{}, @broadcast, 0x2, @void, 0xd}, {{}, @broadcast, 0xb, @void, 0x35}, {{0x0, 0x1}, @broadcast, 0x5, @value, 0x3e}, {{}, @device_b, 0x80, @void, 0x35}, {{0x0, 0x1}, @device_a, 0xd, @value=@broadcast, 0x16}, {{0x0, 0x1}, @device_a, 0xfd, @value=@device_b, 0x32}]}}]}]}, 0x420}, 0x1, 0x0, 0x0, 0x20040011}, 0x4000040)
setsockopt$inet6_int(r9, 0x29, 0x8, &(0x7f0000000000)=0x7f, 0x4)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001000010028bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="6cf2040000000000140003006e657464801c8b1b73d86b93a02500010001000000b10100000000000000000000000000000000000000000000000000ba4526db6d5a476026974974b9b7f074fa6fa06a4e0881a20f2c94a801eae4b893da76b1bdddf1e95a58aa36fdab545dc9b831b3e52510dde7d24a131de86d71f580b0d5c18898fba44fba8a27b4da2ca56e46d1179ce3bb7a9312daa87764dbeda6000ca31c7d2132161a0cf5505dae0142f71182c3"], 0x54}, 0x1, 0x0, 0x0, 0x1}, 0x40)

459.682676ms ago: executing program 1 (id=3643):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
link(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0xd5)
getsockopt$inet6_mreq(r0, 0x29, 0x1c, &(0x7f0000000480)={@mcast1}, &(0x7f00000004c0)=0x14)
r2 = openat$cgroup_ro(r1, &(0x7f0000000040)='cpu.stat\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xc, 0x11, r2, 0xbd5e4000)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000ec0)=@raw={'raw\x00', 0x8, 0x3, 0x6e8, 0x358, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x618, 0xffffffff, 0xffffffff, 0x618, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x330, 0x358, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @fd={0x2, 0x0, r2}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0xfffffffffffffffd}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x2c0, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0xc4, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0xffffffffffffffff, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x8000, 0x16a, 0x1, 'syz1\x00', 'syz0\x00', {0x80000001}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x748)

459.538209ms ago: executing program 1 (id=3644):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
write$tun(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d002000001311ff00000000000000000000000000000000ff0200000003000000000004e9ffff004f194e20"], 0x4b)

224.736698ms ago: executing program 1 (id=3645):
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0xc, &(0x7f0000000200)=0x5, 0x4)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001680)={0x14, 0x3a, 0x229, 0x0, 0x0, {0xa}}, 0x14}}, 0x0) (async)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, &(0x7f0000000140)={0x8e, 0x40, 0x4}) (async)
bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e20, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x8}, 0x1c)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0x20, &(0x7f0000000000)={@in={{0x2, 0x4e21, @broadcast}}, 0x0, 0x0, 0x3a, 0x0, "a30b3b28af4d2f246a016542daa845f387713f4048ff2ece1e75f1fc0100f41e4de6256109383664417165bba0dd5ace522fa788000000000033035551502f07b4001a00"}, 0xd8) (async)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e62, 0x1ff, @loopback, 0x23}, 0x1c)

224.593439ms ago: executing program 1 (id=3646):
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x2}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000000))
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f00000001c0)={0x60, 0x0, &(0x7f00001e8000/0x4000)=nil, &(0x7f000037d000/0x3000)=nil, 0x6, 0x0, 0x0, 0x4, 0x81, 0x8, 0x24, 0x800000000000000})

160.26392ms ago: executing program 1 (id=3647):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
close(r1)
socket$unix(0x1, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @random="af75355d1696"})
r4 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$kcm(r4, &(0x7f0000000280)={&(0x7f0000000740)=@xdp={0x2c, 0x0, r6, 0x42}, 0x80, &(0x7f0000000cc0)=[{&(0x7f00000002c0)="27030200dc0f14000e00003c0ff000000000ff840000000200000003125ce882cbf490d908f1523f000000002d9c2740e260a09c6911cda856d5141bffc6e29a5789796eec81944d7df8184d3319ce9dfb5c1fcd66e67b91a917a67ece64299573503cbc7e27133c4e5ed68c7a9b407a275bcff3432a487ebef21275b91d386164b443c1dfdf63831812e0471639a99b97a9923e4659cd5d1e3c", 0x9a}, {&(0x7f0000001300)="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", 0xbd7}, {&(0x7f0000000440)="c91d588b87bd12b736780a766e3ebca34836bf87f46f8027511d29f92e1a4e8bd5fb5367cef57a6d8db59a972c54efc7ece9c07cb4a0921d4a2320d73ff2d3c54d7af0deecef81ce277562dde92e480b2cf42e52cc039c43fea94e730feb6f5cad427446e7357d255248ab48a0b733cc2c7541488d63b8f6d2c4f0e03ac8faecc74486b2cfb59a28d701271dc07ef9d82e0ce78bca83048caf47fedf4f4df5863a2f849b5fc6ef0b49bf7a6cb6faab2a777dde15", 0xb4}, {&(0x7f00000007c0)="1da19d23fdff85b98167af7726547120df65aece0cffbb361fd19ec08ddad9340531b1c05e106ea2b36a41070b0be2be119aa8c7d8444f4341cccd89faa6253e1ee49e9132d115fd9988c00b16b48669fd2863efe80b92787339069a0f79bc832754fc4c564bc7c61f70be9565f15584fd519f000000005d433935485cdc2ffa2be958749701504aefae9ac942fd1dfc86b59a3d1caf7923edfc844f870f12b651ec19cedc69367ba0093c404d4ac7409ae7f612cd45bc475f1f4b47ba45ec376c3a98a06da61124f2650b53b15c87c3e6ea7734e44835fcd6d23a0d7e", 0xdd}, {&(0x7f00000009c0)="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", 0x12f}], 0x5}, 0x8bb3a321efc09a)

0s ago: executing program 1 (id=3648):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000780)={0xffffffffffffffff, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000400), &(0x7f00000004c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xca, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0), 0x8, 0x34, 0x8, 0x8, &(0x7f0000000640)}}, 0x10)
sendmsg$ETHTOOL_MSG_EEE_GET(0xffffffffffffffff, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x40448a0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000340)="8224aca5f41b9e0ec5e7a706c919e7c0e343f0cd0a779c17e7f992396b09252009d2d12e9475a57ec39f71417044cf4151af34ac1dfd5d87cdd80bc4c24478821f64d4d971bbc1fc7bdd181a839344917165bb9c", 0x54}, {0x0}, {&(0x7f00000005c0)="f2b3", 0x2}], 0x3}}], 0x1, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], 0x340}}, {{&(0x7f0000000300)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000500)='q', 0x1}, {&(0x7f0000000600)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8afc7d8376e847f403535371a24ce2a19c3898aca95be", 0x8b}, {&(0x7f00000006c0)="138b9f8300af1d793c8e", 0xa}, {&(0x7f0000000700)}, {0x0}], 0x5}}], 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0xeeef0000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x1, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0x0, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x6, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x28, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0xa901, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000740)={"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"})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 50)

kernel console output (not intermixed with test programs):

608][T15466] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3260'.
[  354.187185][ T9178] usb 10-1: config 0 has no interfaces?
[  354.189030][ T9178] usb 10-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  354.192276][ T9178] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  354.199261][ T9178] usb 10-1: config 0 descriptor??
[  354.221034][T15471] FAULT_INJECTION: forcing a failure.
[  354.221034][T15471] name failslab, interval 1, probability 0, space 0, times 0
[  354.227180][T15471] CPU: 3 UID: 0 PID: 15471 Comm: syz.2.3262 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  354.227199][T15471] Tainted: [L]=SOFTLOCKUP
[  354.227203][T15471] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  354.227210][T15471] Call Trace:
[  354.227214][T15471]  <TASK>
[  354.227218][T15471]  dump_stack_lvl+0x100/0x190
[  354.227241][T15471]  should_fail_ex.cold+0x5/0xa
[  354.227256][T15471]  should_failslab+0xc2/0x120
[  354.227267][T15471]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  354.227283][T15471]  ? __kernfs_new_node+0xd2/0x960
[  354.227305][T15471]  __kernfs_new_node+0xd2/0x960
[  354.227321][T15471]  ? __kernel_text_address+0xd/0x30
[  354.227335][T15471]  ? arch_stack_walk+0xa6/0xf0
[  354.227348][T15471]  ? __pfx___kernfs_new_node+0x10/0x10
[  354.227369][T15471]  ? find_held_lock+0x2b/0x80
[  354.227383][T15471]  ? kernfs_root+0xee/0x2a0
[  354.227400][T15471]  ? kernfs_root+0xee/0x2a0
[  354.227420][T15471]  kernfs_new_node+0x11b/0x1a0
[  354.227435][T15471]  kernfs_create_dir_ns+0x4c/0x1a0
[  354.227449][T15471]  sysfs_create_dir_ns+0x13a/0x2b0
[  354.227466][T15471]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  354.227484][T15471]  ? kfree_const+0x5a/0x70
[  354.227500][T15471]  ? rcu_is_watching+0x12/0xc0
[  354.227514][T15471]  ? kfree_const+0x5a/0x70
[  354.227529][T15471]  ? kfree+0x2ec/0x6b0
[  354.227543][T15471]  kobject_add_internal+0x2c8/0x930
[  354.227563][T15471]  kobject_add+0x16a/0x1e0
[  354.227579][T15471]  ? __pfx_kobject_add+0x10/0x10
[  354.227622][T15471]  kobject_create_and_add+0x7a/0xc0
[  354.227641][T15471]  iommu_group_alloc+0x254/0x4a0
[  354.227655][T15471]  __iommu_probe_device+0x3b1/0x1550
[  354.227672][T15471]  ? __pfx___iommu_probe_device+0x10/0x10
[  354.227687][T15471]  ? __pfx___might_resched+0x10/0x10
[  354.227703][T15471]  iommu_probe_device+0x28/0x130
[  354.227719][T15471]  iommu_bus_notifier+0x5b/0x110
[  354.227734][T15471]  notifier_call_chain+0x99/0x420
[  354.227748][T15471]  blocking_notifier_call_chain+0x69/0xa0
[  354.227760][T15471]  bus_notify+0x56/0x80
[  354.227775][T15471]  device_add+0x1164/0x1950
[  354.227788][T15471]  ? __pfx_device_add+0x10/0x10
[  354.227799][T15471]  ? kobject_get+0xbb/0x150
[  354.227815][T15471]  ? software_node_get+0x68/0x90
[  354.227828][T15471]  ? fwnode_handle_get+0x97/0xd0
[  354.227846][T15471]  iommu_mock_device_add+0x7c/0xb0
[  354.227862][T15471]  iommufd_test+0x2f6b/0x6610
[  354.227875][T15471]  ? __lock_acquire+0x4a5/0x2630
[  354.227887][T15471]  ? __pfx_iommufd_test+0x10/0x10
[  354.227899][T15471]  ? tomoyo_path_number_perm+0x188/0x580
[  354.227917][T15471]  ? find_held_lock+0x2b/0x80
[  354.227931][T15471]  ? __might_fault+0xc5/0x140
[  354.227953][T15471]  iommufd_fops_ioctl+0x358/0x520
[  354.227967][T15471]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  354.227983][T15471]  ? __fget_files+0x215/0x3d0
[  354.227994][T15471]  ? hook_file_ioctl_common+0x146/0x410
[  354.228016][T15471]  ? selinux_file_ioctl+0x139/0x290
[  354.228031][T15471]  ? selinux_file_ioctl+0xb4/0x290
[  354.228047][T15471]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  354.228061][T15471]  __x64_sys_ioctl+0x18e/0x210
[  354.228079][T15471]  do_syscall_64+0x106/0xf80
[  354.228093][T15471]  ? clear_bhb_loop+0x40/0x90
[  354.228107][T15471]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  354.228119][T15471] RIP: 0033:0x7f4595b9c799
[  354.228129][T15471] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  354.228140][T15471] RSP: 002b:00007f4596a91028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  354.228151][T15471] RAX: ffffffffffffffda RBX: 00007f4595e15fa0 RCX: 00007f4595b9c799
[  354.228158][T15471] RDX: 0000200000000100 RSI: 0000000000003ba0 RDI: 0000000000000003
[  354.228165][T15471] RBP: 00007f4596a91090 R08: 0000000000000000 R09: 0000000000000000
[  354.228171][T15471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  354.228178][T15471] R13: 00007f4595e16038 R14: 00007f4595e15fa0 R15: 00007fff9186e4e8
[  354.228193][T15471]  </TASK>
[  354.228231][T15471] kobject: kobject_add_internal failed for devices (error: -12 parent: 9)
[  354.383567][T15471] kobject: kobject_create_and_add: kobject_add error: -12
[  354.429292][T15452] macsec1: entered promiscuous mode
[  354.450896][T15473] netlink: 68 bytes leftover after parsing attributes in process `syz.1.3263'.
[  354.505931][ T9178] usb 10-1: USB disconnect, device number 7
[  355.102827][T15485] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[  355.175204][T15497] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3271'.
[  355.237057][T15505] sch_tbf: burst 19872 is lower than device lo mtu (32783) !
[  355.851625][T15520] syzkaller0: entered promiscuous mode
[  355.895703][T15524] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3283'.
[  355.899643][T15524] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3283'.
[  355.903152][T15524] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3283'.
[  355.906888][T15524] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3283'.
[  355.909845][T15524] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3283'.
[  355.947573][T15529] SELinux:  policydb version 1402900228 does not match my version range 15-35
[  355.950579][T15529] SELinux: failed to load policy
[  356.131282][T15541] FAULT_INJECTION: forcing a failure.
[  356.131282][T15541] name failslab, interval 1, probability 0, space 0, times 0
[  356.135586][T15541] CPU: 0 UID: 0 PID: 15541 Comm: syz.1.3289 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  356.135607][T15541] Tainted: [L]=SOFTLOCKUP
[  356.135611][T15541] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  356.135618][T15541] Call Trace:
[  356.135622][T15541]  <TASK>
[  356.135627][T15541]  dump_stack_lvl+0x100/0x190
[  356.135649][T15541]  should_fail_ex.cold+0x5/0xa
[  356.135665][T15541]  should_failslab+0xc2/0x120
[  356.135676][T15541]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  356.135692][T15541]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  356.135713][T15541]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  356.135735][T15541]  mmu_topup_memory_caches+0x25/0x170
[  356.135749][T15541]  kvm_mmu_load+0xd6/0x23e0
[  356.135760][T15541]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  356.135776][T15541]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  356.135794][T15541]  ? __pfx_kvm_mmu_load+0x10/0x10
[  356.135805][T15541]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  356.135823][T15541]  ? kvm_check_and_inject_events+0x961/0x10c0
[  356.135836][T15541]  ? record_steal_time+0x370/0xbe0
[  356.135854][T15541]  vcpu_run+0x39f4/0x5ca0
[  356.135872][T15541]  ? __pfx_vcpu_run+0x10/0x10
[  356.135890][T15541]  ? rcu_is_watching+0x12/0xc0
[  356.135906][T15541]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  356.135919][T15541]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  356.135936][T15541]  kvm_vcpu_ioctl+0x730/0x1730
[  356.135960][T15541]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  356.135984][T15541]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  356.136011][T15541]  ? do_vfs_ioctl+0x226/0x13e0
[  356.136038][T15541]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  356.136062][T15541]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  356.136083][T15541]  ? __fget_files+0x215/0x3d0
[  356.136093][T15541]  ? hook_file_ioctl_common+0x146/0x410
[  356.136121][T15541]  ? selinux_file_ioctl+0x139/0x290
[  356.136136][T15541]  ? selinux_file_ioctl+0xb4/0x290
[  356.136152][T15541]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  356.136169][T15541]  __x64_sys_ioctl+0x18e/0x210
[  356.136201][T15541]  do_syscall_64+0x106/0xf80
[  356.136217][T15541]  ? clear_bhb_loop+0x40/0x90
[  356.136232][T15541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.136243][T15541] RIP: 0033:0x7fa58359c799
[  356.136254][T15541] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  356.136265][T15541] RSP: 002b:00007fa5844bd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  356.136276][T15541] RAX: ffffffffffffffda RBX: 00007fa583815fa0 RCX: 00007fa58359c799
[  356.136284][T15541] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  356.136291][T15541] RBP: 00007fa5844bd090 R08: 0000000000000000 R09: 0000000000000000
[  356.136297][T15541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  356.136304][T15541] R13: 00007fa583816038 R14: 00007fa583815fa0 R15: 00007fff01ec13b8
[  356.136318][T15541]  </TASK>
[  356.136369][T15545] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  356.244588][T15545] batman_adv: batadv0: Removing interface: batadv_slave_0
[  356.247865][T15545] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  356.250480][T15545] batman_adv: batadv0: Removing interface: batadv_slave_1
[  356.270847][T15552] syzkaller0: entered promiscuous mode
[  356.339880][T15557] openvswitch: netlink: Missing valid actions attribute.
[  356.343034][T15557] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  356.348802][T15557] IPVS: length: 10 != 8
[  356.413143][T15561] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=47 sclass=netlink_route_socket pid=15561 comm=syz.2.3296
[  356.452332][T15565] tipc: Trying to set illegal importance in message
[  356.455306][T15567] FAULT_INJECTION: forcing a failure.
[  356.455306][T15567] name failslab, interval 1, probability 0, space 0, times 0
[  356.463337][T15567] CPU: 2 UID: 0 PID: 15567 Comm: syz.4.3297 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  356.463356][T15567] Tainted: [L]=SOFTLOCKUP
[  356.463360][T15567] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  356.463367][T15567] Call Trace:
[  356.463372][T15567]  <TASK>
[  356.463376][T15567]  dump_stack_lvl+0x100/0x190
[  356.463404][T15567]  should_fail_ex.cold+0x5/0xa
[  356.463419][T15567]  should_failslab+0xc2/0x120
[  356.463431][T15567]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  356.463448][T15567]  ? cond_bools_copy+0x45/0xf0
[  356.463459][T15567]  ? trace_kmem_cache_alloc+0xf3/0x120
[  356.463470][T15567]  ? __kasan_slab_alloc+0x89/0x90
[  356.463489][T15567]  kmemdup_noprof+0x29/0x60
[  356.463507][T15567]  cond_bools_copy+0x45/0xf0
[  356.463518][T15567]  hashtab_duplicate+0x24a/0x5c0
[  356.463534][T15567]  ? __pfx_cond_bools_copy+0x10/0x10
[  356.463547][T15567]  ? __pfx_cond_bools_destroy+0x10/0x10
[  356.463559][T15567]  cond_policydb_dup+0x155/0x750
[  356.463574][T15567]  ? __asan_memcpy+0x3c/0x60
[  356.463591][T15567]  security_set_bools+0x13f/0x6c0
[  356.463611][T15567]  ? sel_commit_bools_write+0x25b/0x420
[  356.463625][T15567]  sel_commit_bools_write+0x36d/0x420
[  356.463638][T15567]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  356.463656][T15567]  vfs_write+0x2aa/0x1070
[  356.463674][T15567]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  356.463688][T15567]  ? __pfx_vfs_write+0x10/0x10
[  356.463705][T15567]  ? __fget_files+0x215/0x3d0
[  356.463720][T15567]  ? __fget_files+0x21f/0x3d0
[  356.463736][T15567]  ksys_write+0x12a/0x250
[  356.463753][T15567]  ? __pfx_ksys_write+0x10/0x10
[  356.463775][T15567]  do_syscall_64+0x106/0xf80
[  356.463790][T15567]  ? clear_bhb_loop+0x40/0x90
[  356.463803][T15567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.463815][T15567] RIP: 0033:0x7f9fc4b9c799
[  356.463825][T15567] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  356.463835][T15567] RSP: 002b:00007f9fc59fb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  356.463846][T15567] RAX: ffffffffffffffda RBX: 00007f9fc4e15fa0 RCX: 00007f9fc4b9c799
[  356.463853][T15567] RDX: 000000000000001e RSI: 00002000000018c0 RDI: 0000000000000003
[  356.463860][T15567] RBP: 00007f9fc59fb090 R08: 0000000000000000 R09: 0000000000000000
[  356.463866][T15567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  356.463873][T15567] R13: 00007f9fc4e16038 R14: 00007f9fc4e15fa0 R15: 00007ffe6f659338
[  356.463887][T15567]  </TASK>
[  356.655257][   T34] IPVS: starting estimator thread 0...
[  356.685070][T15583] ªªªªªª: renamed from vlan0 (while UP)
[  356.693589][T15583] vlan0: tun_chr_ioctl cmd 1074025676
[  356.695476][T15583] vlan0: owner set to 0
[  356.703411][ T6018] usb 7-1: new high-speed USB device number 53 using dummy_hcd
[  356.757182][T15579] IPVS: using max 47 ests per chain, 112800 per kthread
[  356.863598][ T6018] usb 7-1: Using ep0 maxpacket: 8
[  356.866581][ T6018] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  356.869718][ T6018] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  356.872914][ T6018] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  356.876543][ T6018] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  356.880690][ T6018] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  356.883709][ T6018] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.904847][T15586] syzkaller0: entered promiscuous mode
[  357.104422][ T6018] usb 7-1: GET_CAPABILITIES returned 0
[  357.106660][ T6018] usbtmc 7-1:16.0: can't read capabilities
[  357.324862][    T9] usb 7-1: USB disconnect, device number 53
[  357.417288][T15618] netlink: 'syz.5.3315': attribute type 10 has an invalid length.
[  357.422298][T15618] team0: Device ipvlan1 failed to register rx_handler
[  357.473796][T15621] syzkaller0: entered promiscuous mode
[  357.548516][   T40] kauditd_printk_skb: 19 callbacks suppressed
[  357.548528][   T40] audit: type=1400 audit(2000000259.048:3939): avc:  denied  { mount } for  pid=15629 comm="syz.1.3320" name="/" dev="configfs" ino=3149 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  357.558984][   T40] audit: type=1400 audit(2000000259.048:3940): avc:  denied  { search } for  pid=15629 comm="syz.1.3320" name="/" dev="configfs" ino=3149 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  357.569355][   T40] audit: type=1400 audit(2000000259.057:3941): avc:  denied  { setattr } for  pid=15629 comm="syz.1.3320" name="/" dev="configfs" ino=3149 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  357.707574][T15642] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.711705][T15642] bridge0: port 1(bridge_slave_0) entered disabled state
[  357.723583][T15642] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.725988][T15642] bridge0: port 2(bridge_slave_1) entered forwarding state
[  357.728654][T15642] bridge0: port 1(bridge_slave_0) entered blocking state
[  357.731705][T15642] bridge0: port 1(bridge_slave_0) entered forwarding state
[  357.737023][T15642] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.739423][T15642] bridge0: port 1(bridge_slave_0) entered disabled state
[  357.811906][   T40] audit: type=1400 audit(2000000259.291:3942): avc:  denied  { write } for  pid=15647 comm="syz.4.3328" name="urandom" dev="devtmpfs" ino=9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1
[  357.828077][   T40] audit: type=1400 audit(2000000259.309:3943): avc:  denied  { lock } for  pid=15647 comm="syz.4.3328" path="/dev/dma_heap/system" dev="devtmpfs" ino=712 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  357.854992][T15650] syzkaller0: entered promiscuous mode
[  357.894263][T15652] FAULT_INJECTION: forcing a failure.
[  357.894263][T15652] name failslab, interval 1, probability 0, space 0, times 0
[  357.897097][T15654] __nla_validate_parse: 9 callbacks suppressed
[  357.897114][T15654] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3331'.
[  357.899892][T15652] CPU: 3 UID: 0 PID: 15652 Comm: syz.4.3330 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  357.899910][T15652] Tainted: [L]=SOFTLOCKUP
[  357.899914][T15652] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  357.899921][T15652] Call Trace:
[  357.899925][T15652]  <TASK>
[  357.899929][T15652]  dump_stack_lvl+0x100/0x190
[  357.899952][T15652]  should_fail_ex.cold+0x5/0xa
[  357.899967][T15652]  should_failslab+0xc2/0x120
[  357.899979][T15652]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  357.899994][T15652]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  357.900016][T15652]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  357.900038][T15652]  mmu_topup_memory_caches+0x25/0x170
[  357.900051][T15652]  kvm_mmu_load+0xd6/0x23e0
[  357.900064][T15652]  ? kvm_lapic_sync_to_vapic+0x208/0x6d0
[  357.900082][T15652]  ? __pfx_kvm_mmu_load+0x10/0x10
[  357.900095][T15652]  ? vmx_update_cr8_intercept+0x21e/0x370
[  357.900111][T15652]  vcpu_run+0x39f4/0x5ca0
[  357.900130][T15652]  ? __pfx_vcpu_run+0x10/0x10
[  357.900148][T15652]  ? rcu_is_watching+0x12/0xc0
[  357.900163][T15652]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  357.900176][T15652]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  357.900194][T15652]  kvm_vcpu_ioctl+0x730/0x1730
[  357.900211][T15652]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  357.900228][T15652]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  357.900245][T15652]  ? do_vfs_ioctl+0x226/0x13e0
[  357.900262][T15652]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  357.900279][T15652]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  357.900300][T15652]  ? __fget_files+0x215/0x3d0
[  357.900311][T15652]  ? hook_file_ioctl_common+0x146/0x410
[  357.900333][T15652]  ? selinux_file_ioctl+0x139/0x290
[  357.900348][T15652]  ? selinux_file_ioctl+0xb4/0x290
[  357.900364][T15652]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  357.900381][T15652]  __x64_sys_ioctl+0x18e/0x210
[  357.900404][T15652]  do_syscall_64+0x106/0xf80
[  357.900419][T15652]  ? clear_bhb_loop+0x40/0x90
[  357.900447][T15652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.900461][T15652] RIP: 0033:0x7f9fc4b9c799
[  357.900471][T15652] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  357.900482][T15652] RSP: 002b:00007f9fc59fb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  357.900494][T15652] RAX: ffffffffffffffda RBX: 00007f9fc4e15fa0 RCX: 00007f9fc4b9c799
[  357.900501][T15652] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  357.900508][T15652] RBP: 00007f9fc59fb090 R08: 0000000000000000 R09: 0000000000000000
[  357.900514][T15652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  357.900521][T15652] R13: 00007f9fc4e16038 R14: 00007f9fc4e15fa0 R15: 00007ffe6f659338
[  357.900536][T15652]  </TASK>
[  358.051610][T15659] netlink: 'syz.2.3332': attribute type 1 has an invalid length.
[  358.057848][T15659] erspan1: entered allmulticast mode
[  358.242977][T15671] FAULT_INJECTION: forcing a failure.
[  358.242977][T15671] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  358.248421][T15671] CPU: 2 UID: 0 PID: 15671 Comm: syz.1.3338 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  358.248438][T15671] Tainted: [L]=SOFTLOCKUP
[  358.248443][T15671] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  358.248449][T15671] Call Trace:
[  358.248453][T15671]  <TASK>
[  358.248458][T15671]  dump_stack_lvl+0x100/0x190
[  358.248479][T15671]  should_fail_ex.cold+0x5/0xa
[  358.248494][T15671]  _copy_from_user+0x2e/0xd0
[  358.248506][T15671]  binder_ioctl+0x4f5/0x7610
[  358.248528][T15671]  ? tomoyo_path_number_perm+0x188/0x580
[  358.248546][T15671]  ? __pfx_binder_ioctl+0x10/0x10
[  358.248564][T15671]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  358.248581][T15671]  ? do_vfs_ioctl+0x226/0x13e0
[  358.248598][T15671]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  358.248615][T15671]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  358.248635][T15671]  ? hook_file_ioctl_common+0x146/0x410
[  358.248656][T15671]  ? selinux_file_ioctl+0x139/0x290
[  358.248671][T15671]  ? selinux_file_ioctl+0xb4/0x290
[  358.248687][T15671]  ? __pfx_binder_ioctl+0x10/0x10
[  358.248704][T15671]  __x64_sys_ioctl+0x18e/0x210
[  358.248721][T15671]  do_syscall_64+0x106/0xf80
[  358.248735][T15671]  ? clear_bhb_loop+0x40/0x90
[  358.248749][T15671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.248760][T15671] RIP: 0033:0x7fa58359c799
[  358.248770][T15671] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  358.248781][T15671] RSP: 002b:00007fa5844bd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  358.248792][T15671] RAX: ffffffffffffffda RBX: 00007fa583815fa0 RCX: 00007fa58359c799
[  358.248799][T15671] RDX: 0000200000000180 RSI: 00000000c0306201 RDI: 0000000000000003
[  358.248806][T15671] RBP: 00007fa5844bd090 R08: 0000000000000000 R09: 0000000000000000
[  358.248812][T15671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.248819][T15671] R13: 00007fa583816038 R14: 00007fa583815fa0 R15: 00007fff01ec13b8
[  358.248833][T15671]  </TASK>
[  358.248838][T15671] binder: 15670:15671 ioctl c0306201 200000000180 returned -14
[  358.272829][   T40] audit: type=1400 audit(2000000259.721:3944): avc:  denied  { getopt } for  pid=15674 comm="syz.4.3340" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  358.304568][T15677] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3341'.
[  358.343422][T15679] syzkaller0: entered promiscuous mode
[  358.345738][   T40] audit: type=1400 audit(2000000259.787:3945): avc:  denied  { create } for  pid=15676 comm="syz.1.3341" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  358.522740][T15683] netlink: 'syz.4.3345': attribute type 1 has an invalid length.
[  358.531389][ T9183] usb 7-1: new high-speed USB device number 54 using dummy_hcd
[  358.629327][T15693] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3349'.
[  358.712216][ T9183] usb 7-1: Using ep0 maxpacket: 8
[  358.725924][ T9183] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  358.730170][ T9183] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  358.734321][ T9183] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  358.741672][ T9183] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  358.745850][ T9183] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  358.748730][ T9183] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.748856][T15695] netlink: 56 bytes leftover after parsing attributes in process `syz.5.3350'.
[  358.827291][T15697] syzkaller0: entered promiscuous mode
[  358.939074][T15699] FAULT_INJECTION: forcing a failure.
[  358.939074][T15699] name failslab, interval 1, probability 0, space 0, times 0
[  358.944613][T15699] CPU: 0 UID: 0 PID: 15699 Comm: syz.4.3352 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  358.944641][T15699] Tainted: [L]=SOFTLOCKUP
[  358.944647][T15699] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  358.944658][T15699] Call Trace:
[  358.944666][T15699]  <TASK>
[  358.944674][T15699]  dump_stack_lvl+0x100/0x190
[  358.944722][T15699]  should_fail_ex.cold+0x5/0xa
[  358.944749][T15699]  should_failslab+0xc2/0x120
[  358.944768][T15699]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  358.944793][T15699]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  358.944827][T15699]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  358.944862][T15699]  mmu_topup_memory_caches+0x25/0x170
[  358.944884][T15699]  kvm_mmu_load+0xd6/0x23e0
[  358.944903][T15699]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  358.944929][T15699]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  358.944963][T15699]  ? __pfx_kvm_mmu_load+0x10/0x10
[  358.944980][T15699]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  358.945008][T15699]  ? kvm_check_and_inject_events+0x961/0x10c0
[  358.945028][T15699]  ? record_steal_time+0x370/0xbe0
[  358.945057][T15699]  vcpu_run+0x39f4/0x5ca0
[  358.945088][T15699]  ? __pfx_vcpu_run+0x10/0x10
[  358.945118][T15699]  ? rcu_is_watching+0x12/0xc0
[  358.945144][T15699]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  358.945165][T15699]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  358.945194][T15699]  kvm_vcpu_ioctl+0x730/0x1730
[  358.945222][T15699]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  358.945248][T15699]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  358.945275][T15699]  ? do_vfs_ioctl+0x226/0x13e0
[  358.945301][T15699]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  358.945327][T15699]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  358.945361][T15699]  ? __fget_files+0x215/0x3d0
[  358.945378][T15699]  ? hook_file_ioctl_common+0x146/0x410
[  358.945412][T15699]  ? selinux_file_ioctl+0x139/0x290
[  358.945435][T15699]  ? selinux_file_ioctl+0xb4/0x290
[  358.945460][T15699]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  358.945486][T15699]  __x64_sys_ioctl+0x18e/0x210
[  358.945514][T15699]  do_syscall_64+0x106/0xf80
[  358.945536][T15699]  ? clear_bhb_loop+0x40/0x90
[  358.945559][T15699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.945577][T15699] RIP: 0033:0x7f9fc4b9c799
[  358.945592][T15699] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  358.945609][T15699] RSP: 002b:00007f9fc59fb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  358.945626][T15699] RAX: ffffffffffffffda RBX: 00007f9fc4e15fa0 RCX: 00007f9fc4b9c799
[  358.945637][T15699] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  358.945648][T15699] RBP: 00007f9fc59fb090 R08: 0000000000000000 R09: 0000000000000000
[  358.945659][T15699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  358.945669][T15699] R13: 00007f9fc4e16038 R14: 00007f9fc4e15fa0 R15: 00007ffe6f659338
[  358.945695][T15699]  </TASK>
[  359.066264][ T9183] usb 7-1: GET_CAPABILITIES returned 0
[  359.068155][ T9183] usbtmc 7-1:16.0: can't read capabilities
[  359.164699][T15705] netlink: 'syz.5.3354': attribute type 1 has an invalid length.
[  359.180492][T15705] erspan1: entered allmulticast mode
[  359.296287][ T9183] usb 7-1: USB disconnect, device number 54
[  359.305445][T15710] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=39936 sclass=netlink_route_socket pid=15710 comm=syz.4.3355
[  359.664560][ T9183] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  359.835598][ T9183] usb 10-1: Using ep0 maxpacket: 8
[  359.841206][ T9183] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  359.846263][ T9183] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  359.850345][ T9183] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  359.867686][ T9183] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  359.873252][ T9183] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  359.877178][ T9183] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.113071][T15720] syzkaller0: entered promiscuous mode
[  360.113967][ T9183] usb 10-1: GET_CAPABILITIES returned 0
[  360.118544][ T9183] usbtmc 10-1:16.0: can't read capabilities
[  360.244348][T15722] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3362'.
[  360.248235][T15722] netlink: 5 bytes leftover after parsing attributes in process `syz.4.3362'.
[  360.271274][   T40] audit: type=1400 audit(2000000261.592:3946): avc:  denied  { create } for  pid=15723 comm="syz.2.3363" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  360.300046][   T40] audit: type=1400 audit(2000000261.620:3947): avc:  denied  { write } for  pid=15725 comm="syz.4.3364" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  360.316737][T15726] program syz.4.3364 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  360.321981][   T40] audit: type=1400 audit(2000000261.639:3948): avc:  denied  { lock } for  pid=15725 comm="syz.4.3364" path="socket:[84149]" dev="sockfs" ino=84149 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  360.329222][    C2] usbtmc 10-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  360.335970][T15714] FAULT_INJECTION: forcing a failure.
[  360.335970][T15714] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  360.339591][T15714] CPU: 2 UID: 0 PID: 15714 Comm: syz.5.3358 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  360.339610][T15714] Tainted: [L]=SOFTLOCKUP
[  360.339615][T15714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  360.339622][T15714] Call Trace:
[  360.339627][T15714]  <TASK>
[  360.339632][T15714]  dump_stack_lvl+0x100/0x190
[  360.339654][T15714]  should_fail_ex.cold+0x5/0xa
[  360.339669][T15714]  _copy_to_user+0x32/0xd0
[  360.339682][T15714]  usbtmc_generic_read+0xe23/0x1810
[  360.339703][T15714]  ? __pfx_usbtmc_generic_read+0x10/0x10
[  360.339718][T15714]  ? __might_fault+0xc5/0x140
[  360.339734][T15714]  ? __might_fault+0xc5/0x140
[  360.339749][T15714]  ? __pfx_autoremove_wake_function+0x10/0x10
[  360.339772][T15714]  usbtmc_ioctl+0x12c9/0x2930
[  360.339788][T15714]  ? do_vfs_ioctl+0x226/0x13e0
[  360.339806][T15714]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  360.339822][T15714]  ? __pfx_usbtmc_ioctl+0x10/0x10
[  360.339836][T15714]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  360.339857][T15714]  ? __fget_files+0x215/0x3d0
[  360.339873][T15714]  ? selinux_file_ioctl+0x139/0x290
[  360.339888][T15714]  ? selinux_file_ioctl+0xb4/0x290
[  360.339904][T15714]  ? __pfx_usbtmc_ioctl+0x10/0x10
[  360.339920][T15714]  __x64_sys_ioctl+0x18e/0x210
[  360.339938][T15714]  do_syscall_64+0x106/0xf80
[  360.339952][T15714]  ? clear_bhb_loop+0x40/0x90
[  360.339967][T15714]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.339979][T15714] RIP: 0033:0x7fa41499c799
[  360.339989][T15714] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  360.340000][T15714] RSP: 002b:00007fa415939028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  360.340011][T15714] RAX: ffffffffffffffda RBX: 00007fa414c15fa0 RCX: 00007fa41499c799
[  360.340018][T15714] RDX: 0000200000000000 RSI: 00000000c0145b0e RDI: 0000000000000004
[  360.340024][T15714] RBP: 00007fa415939090 R08: 0000000000000000 R09: 0000000000000000
[  360.340031][T15714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  360.340037][T15714] R13: 00007fa414c16038 R14: 00007fa414c15fa0 R15: 00007ffc6ec06d18
[  360.340052][T15714]  </TASK>
[  360.341023][ T6018] usb 10-1: USB disconnect, device number 8
[  360.383522][T15732] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3365'.
[  360.528346][T15740] netlink: 'syz.2.3368': attribute type 1 has an invalid length.
[  360.531524][T15677] nfs4: Unknown parameter '(+&'
[  360.541902][T15740] erspan1: entered allmulticast mode
[  360.564162][T15737] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  360.569895][T15737] ªªªªªª: renamed from wg2 (while UP)
[  360.667468][T15745] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  360.670345][T15745] UDF-fs: Scanning with blocksize 2048 failed
[  360.672902][T15745] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  360.675223][T15745] UDF-fs: Scanning with blocksize 4096 failed
[  360.825979][T15767] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3379'.
[  360.833346][T15769] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3378'.
[  360.872052][T15772] Can't find a SQUASHFS superblock on nullb0
[  360.939116][T15775] kernel read not supported for file /policy (pid: 15775 comm: syz.5.3381)
[  360.962191][T15780] syz.4.3383: attempt to access beyond end of device
[  360.962191][T15780] sr0: rw=6144, sector=128, nr_sectors = 8 limit=128
[  360.969278][T15780] gfs2: error -5 reading superblock
[  361.001560][T15784] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  361.003696][T15784] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  361.008423][T15784] vhci_hcd vhci_hcd.0: Device attached
[  361.012612][T15785] vhci_hcd: cannot find the pending unlink 4
[  361.017221][T15785] vhci_hcd: connection closed
[  361.017687][   T78] vhci_hcd vhci_hcd.2: stop threads
[  361.020947][   T78] vhci_hcd vhci_hcd.2: release socket
[  361.032253][   T78] vhci_hcd vhci_hcd.2: disconnect device
[  361.168731][T15800] syzkaller0: entered promiscuous mode
[  361.170625][T15800] syzkaller0: entered allmulticast mode
[  361.378570][T15802] FAULT_INJECTION: forcing a failure.
[  361.378570][T15802] name failslab, interval 1, probability 0, space 0, times 0
[  361.382474][T15802] CPU: 3 UID: 0 PID: 15802 Comm: syz.4.3388 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  361.382493][T15802] Tainted: [L]=SOFTLOCKUP
[  361.382497][T15802] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  361.382503][T15802] Call Trace:
[  361.382508][T15802]  <TASK>
[  361.382513][T15802]  dump_stack_lvl+0x100/0x190
[  361.382535][T15802]  should_fail_ex.cold+0x5/0xa
[  361.382550][T15802]  should_failslab+0xc2/0x120
[  361.382562][T15802]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  361.382578][T15802]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  361.382599][T15802]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  361.382621][T15802]  mmu_topup_memory_caches+0x25/0x170
[  361.382635][T15802]  kvm_mmu_load+0xd6/0x23e0
[  361.382646][T15802]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  361.382662][T15802]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  361.382679][T15802]  ? __pfx_kvm_mmu_load+0x10/0x10
[  361.382690][T15802]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  361.382708][T15802]  ? kvm_check_and_inject_events+0x961/0x10c0
[  361.382721][T15802]  ? record_steal_time+0x370/0xbe0
[  361.382738][T15802]  vcpu_run+0x39f4/0x5ca0
[  361.382756][T15802]  ? __pfx_vcpu_run+0x10/0x10
[  361.382774][T15802]  ? rcu_is_watching+0x12/0xc0
[  361.382789][T15802]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  361.382802][T15802]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  361.382819][T15802]  kvm_vcpu_ioctl+0x730/0x1730
[  361.382837][T15802]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  361.382854][T15802]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  361.382871][T15802]  ? do_vfs_ioctl+0x226/0x13e0
[  361.382888][T15802]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  361.382905][T15802]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  361.382927][T15802]  ? __fget_files+0x215/0x3d0
[  361.382937][T15802]  ? hook_file_ioctl_common+0x146/0x410
[  361.382959][T15802]  ? selinux_file_ioctl+0x139/0x290
[  361.382974][T15802]  ? selinux_file_ioctl+0xb4/0x290
[  361.382990][T15802]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  361.383007][T15802]  __x64_sys_ioctl+0x18e/0x210
[  361.383025][T15802]  do_syscall_64+0x106/0xf80
[  361.383039][T15802]  ? clear_bhb_loop+0x40/0x90
[  361.383053][T15802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.383065][T15802] RIP: 0033:0x7f9fc4b9c799
[  361.383075][T15802] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  361.383089][T15802] RSP: 002b:00007f9fc59fb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  361.383101][T15802] RAX: ffffffffffffffda RBX: 00007f9fc4e15fa0 RCX: 00007f9fc4b9c799
[  361.383108][T15802] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  361.383115][T15802] RBP: 00007f9fc59fb090 R08: 0000000000000000 R09: 0000000000000000
[  361.383122][T15802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  361.383128][T15802] R13: 00007f9fc4e16038 R14: 00007f9fc4e15fa0 R15: 00007ffe6f659338
[  361.383143][T15802]  </TASK>
[  361.674365][T15810] netlink: 211320 bytes leftover after parsing attributes in process `syz.1.3390'.
[  361.678801][T15810] binder: 15809:15810 ioctl c020aa08 200000001800 returned -22
[  362.120525][T15835] netlink: 'syz.1.3402': attribute type 10 has an invalid length.
[  362.308425][T15850] BTRFS info: 'norecovery' is for compatibility only, recommended to use 'rescue=nologreplay'
[  362.617449][T15865] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  362.663016][T15870] syzkaller0: entered promiscuous mode
[  362.664879][T15870] syzkaller0: entered allmulticast mode
[  362.864964][T15874] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  362.946807][   T40] kauditd_printk_skb: 28 callbacks suppressed
[  362.946819][   T40] audit: type=1400 audit(2000000264.089:3977): avc:  denied  { getopt } for  pid=15883 comm="syz.4.3418" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  362.983158][T15888] lo speed is unknown, defaulting to 1000
[  363.002496][   T40] audit: type=1400 audit(2000000264.145:3978): avc:  denied  { read } for  pid=15887 comm="syz.4.3420" name="loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  363.010532][   T40] audit: type=1400 audit(2000000264.145:3979): avc:  denied  { open } for  pid=15887 comm="syz.4.3420" path="/dev/loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  363.322619][T15902] FAULT_INJECTION: forcing a failure.
[  363.322619][T15902] name failslab, interval 1, probability 0, space 0, times 0
[  363.327410][T15902] CPU: 2 UID: 0 PID: 15902 Comm: syz.5.3425 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  363.327436][T15902] Tainted: [L]=SOFTLOCKUP
[  363.327442][T15902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  363.327468][T15902] Call Trace:
[  363.327478][T15902]  <TASK>
[  363.327484][T15902]  dump_stack_lvl+0x100/0x190
[  363.327515][T15902]  should_fail_ex.cold+0x5/0xa
[  363.327538][T15902]  should_failslab+0xc2/0x120
[  363.327555][T15902]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  363.327577][T15902]  ? __kernfs_new_node+0xd2/0x960
[  363.327607][T15902]  __kernfs_new_node+0xd2/0x960
[  363.327630][T15902]  ? __kernel_text_address+0xd/0x30
[  363.327650][T15902]  ? arch_stack_walk+0xa6/0xf0
[  363.327670][T15902]  ? __pfx___kernfs_new_node+0x10/0x10
[  363.327700][T15902]  ? find_held_lock+0x2b/0x80
[  363.327721][T15902]  ? kernfs_root+0xee/0x2a0
[  363.327744][T15902]  ? kernfs_root+0xee/0x2a0
[  363.327773][T15902]  kernfs_new_node+0x11b/0x1a0
[  363.327795][T15902]  kernfs_create_dir_ns+0x4c/0x1a0
[  363.327816][T15902]  sysfs_create_dir_ns+0x13a/0x2b0
[  363.327840][T15902]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  363.327872][T15902]  ? kfree_const+0x5a/0x70
[  363.327895][T15902]  ? rcu_is_watching+0x12/0xc0
[  363.327913][T15902]  ? kfree_const+0x5a/0x70
[  363.327934][T15902]  ? kfree+0x2ec/0x6b0
[  363.327955][T15902]  kobject_add_internal+0x2c8/0x930
[  363.327984][T15902]  kobject_add+0x16a/0x1e0
[  363.328007][T15902]  ? __pfx_kobject_add+0x10/0x10
[  363.328043][T15902]  kobject_create_and_add+0x7a/0xc0
[  363.328068][T15902]  iommu_group_alloc+0x254/0x4a0
[  363.328089][T15902]  __iommu_probe_device+0x3b1/0x1550
[  363.328113][T15902]  ? __pfx___iommu_probe_device+0x10/0x10
[  363.328135][T15902]  ? __pfx___might_resched+0x10/0x10
[  363.328159][T15902]  iommu_probe_device+0x28/0x130
[  363.328182][T15902]  iommu_bus_notifier+0x5b/0x110
[  363.328204][T15902]  notifier_call_chain+0x99/0x420
[  363.328225][T15902]  blocking_notifier_call_chain+0x69/0xa0
[  363.328244][T15902]  bus_notify+0x56/0x80
[  363.328266][T15902]  device_add+0x1164/0x1950
[  363.328285][T15902]  ? __pfx_device_add+0x10/0x10
[  363.328301][T15902]  ? kobject_get+0xbb/0x150
[  363.328324][T15902]  ? software_node_get+0x68/0x90
[  363.328343][T15902]  ? fwnode_handle_get+0x97/0xd0
[  363.328369][T15902]  iommu_mock_device_add+0x7c/0xb0
[  363.328391][T15902]  iommufd_test+0x2f6b/0x6610
[  363.328412][T15902]  ? __lock_acquire+0x4a5/0x2630
[  363.328430][T15902]  ? __pfx_iommufd_test+0x10/0x10
[  363.328447][T15902]  ? tomoyo_path_number_perm+0x188/0x580
[  363.328475][T15902]  ? find_held_lock+0x2b/0x80
[  363.328494][T15902]  ? __might_fault+0xc5/0x140
[  363.328527][T15902]  iommufd_fops_ioctl+0x358/0x520
[  363.328549][T15902]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  363.328571][T15902]  ? __fget_files+0x215/0x3d0
[  363.328588][T15902]  ? hook_file_ioctl_common+0x146/0x410
[  363.328618][T15902]  ? selinux_file_ioctl+0x139/0x290
[  363.328640][T15902]  ? selinux_file_ioctl+0xb4/0x290
[  363.328663][T15902]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  363.328684][T15902]  __x64_sys_ioctl+0x18e/0x210
[  363.328710][T15902]  do_syscall_64+0x106/0xf80
[  363.328729][T15902]  ? clear_bhb_loop+0x40/0x90
[  363.328749][T15902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.328766][T15902] RIP: 0033:0x7fa41499c799
[  363.328782][T15902] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  363.328796][T15902] RSP: 002b:00007fa415939028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  363.328814][T15902] RAX: ffffffffffffffda RBX: 00007fa414c15fa0 RCX: 00007fa41499c799
[  363.328825][T15902] RDX: 0000200000000100 RSI: 0000000000003ba0 RDI: 0000000000000003
[  363.328835][T15902] RBP: 00007fa415939090 R08: 0000000000000000 R09: 0000000000000000
[  363.328845][T15902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  363.328855][T15902] R13: 00007fa414c16038 R14: 00007fa414c15fa0 R15: 00007ffc6ec06d18
[  363.328883][T15902]  </TASK>
[  363.328908][T15902] kobject: kobject_add_internal failed for devices (error: -12 parent: 9)
[  363.353815][T15904] FAULT_INJECTION: forcing a failure.
[  363.353815][T15904] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.363467][T15902] kobject: kobject_create_and_add: kobject_add error: -12
[  363.365943][T15904] CPU: 1 UID: 0 PID: 15904 Comm: syz.2.3426 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  363.365962][T15904] Tainted: [L]=SOFTLOCKUP
[  363.365966][T15904] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  363.365973][T15904] Call Trace:
[  363.365977][T15904]  <TASK>
[  363.365982][T15904]  dump_stack_lvl+0x100/0x190
[  363.366004][T15904]  should_fail_ex.cold+0x5/0xa
[  363.366020][T15904]  _copy_from_user+0x2e/0xd0
[  363.366054][T15904]  kstrtouint_from_user+0xd6/0x1d0
[  363.366078][T15904]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  363.366096][T15904]  ? __lock_acquire+0x4a5/0x2630
[  363.366109][T15904]  ? lock_acquire+0x1cf/0x380
[  363.366123][T15904]  proc_fail_nth_write+0x83/0x220
[  363.366139][T15904]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  363.366159][T15904]  vfs_write+0x2aa/0x1070
[  363.366177][T15904]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  363.366194][T15904]  ? __pfx_vfs_write+0x10/0x10
[  363.366211][T15904]  ? __fget_files+0x215/0x3d0
[  363.366226][T15904]  ? __fget_files+0x21f/0x3d0
[  363.366241][T15904]  ksys_write+0x12a/0x250
[  363.366258][T15904]  ? __pfx_ksys_write+0x10/0x10
[  363.366279][T15904]  do_syscall_64+0x106/0xf80
[  363.366294][T15904]  ? clear_bhb_loop+0x40/0x90
[  363.366308][T15904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.366319][T15904] RIP: 0033:0x7f4595b5cfce
[  363.366330][T15904] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  363.366340][T15904] RSP: 002b:00007f4596a90fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  363.366352][T15904] RAX: ffffffffffffffda RBX: 00007f4596a916c0 RCX: 00007f4595b5cfce
[  363.366359][T15904] RDX: 0000000000000001 RSI: 00007f4596a910a0 RDI: 0000000000000004
[  363.366366][T15904] RBP: 00007f4596a91090 R08: 0000000000000000 R09: 0000000000000000
[  363.366372][T15904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.366379][T15904] R13: 00007f4595e16038 R14: 00007f4595e15fa0 R15: 00007fff9186e4e8
[  363.366394][T15904]  </TASK>
[  363.446829][T15900] overlay: Bad value for 'workdir'
[  363.527039][   T40] audit: type=1400 audit(2000000264.641:3980): avc:  denied  { execute_no_trans } for  pid=15911 comm="syz.5.3428" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=3143 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  363.563541][   T40] audit: type=1400 audit(2000000264.660:3981): avc:  denied  { associate } for  pid=15911 comm="syz.5.3428" name="3" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  363.586780][   T40] audit: type=1400 audit(2000000264.688:3982): avc:  denied  { read } for  pid=15913 comm="syz.2.3429" name="usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  363.602922][   T40] audit: type=1400 audit(2000000264.688:3983): avc:  denied  { open } for  pid=15913 comm="syz.2.3429" path="/dev/usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  363.681159][T15917] FAULT_INJECTION: forcing a failure.
[  363.681159][T15917] name failslab, interval 1, probability 0, space 0, times 0
[  363.686151][T15917] CPU: 2 UID: 0 PID: 15917 Comm: syz.5.3430 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  363.686169][T15917] Tainted: [L]=SOFTLOCKUP
[  363.686174][T15917] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  363.686180][T15917] Call Trace:
[  363.686184][T15917]  <TASK>
[  363.686189][T15917]  dump_stack_lvl+0x100/0x190
[  363.686211][T15917]  should_fail_ex.cold+0x5/0xa
[  363.686227][T15917]  should_failslab+0xc2/0x120
[  363.686238][T15917]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  363.686254][T15917]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  363.686275][T15917]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  363.686297][T15917]  mmu_topup_memory_caches+0x25/0x170
[  363.686310][T15917]  kvm_mmu_load+0xd6/0x23e0
[  363.686322][T15917]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  363.686338][T15917]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  363.686356][T15917]  ? __pfx_kvm_mmu_load+0x10/0x10
[  363.686367][T15917]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  363.686390][T15917]  ? kvm_check_and_inject_events+0x961/0x10c0
[  363.686403][T15917]  ? record_steal_time+0x370/0xbe0
[  363.686420][T15917]  vcpu_run+0x39f4/0x5ca0
[  363.686438][T15917]  ? __pfx_vcpu_run+0x10/0x10
[  363.686457][T15917]  ? rcu_is_watching+0x12/0xc0
[  363.686472][T15917]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  363.686486][T15917]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  363.686503][T15917]  kvm_vcpu_ioctl+0x730/0x1730
[  363.686521][T15917]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  363.686538][T15917]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  363.686555][T15917]  ? do_vfs_ioctl+0x226/0x13e0
[  363.686571][T15917]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  363.686588][T15917]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  363.686610][T15917]  ? __fget_files+0x215/0x3d0
[  363.686621][T15917]  ? hook_file_ioctl_common+0x146/0x410
[  363.686642][T15917]  ? selinux_file_ioctl+0x139/0x290
[  363.686657][T15917]  ? selinux_file_ioctl+0xb4/0x290
[  363.686673][T15917]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  363.686690][T15917]  __x64_sys_ioctl+0x18e/0x210
[  363.686708][T15917]  do_syscall_64+0x106/0xf80
[  363.686723][T15917]  ? clear_bhb_loop+0x40/0x90
[  363.686736][T15917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.686748][T15917] RIP: 0033:0x7fa41499c799
[  363.686759][T15917] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  363.686769][T15917] RSP: 002b:00007fa415939028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  363.686781][T15917] RAX: ffffffffffffffda RBX: 00007fa414c15fa0 RCX: 00007fa41499c799
[  363.686788][T15917] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  363.686795][T15917] RBP: 00007fa415939090 R08: 0000000000000000 R09: 0000000000000000
[  363.686801][T15917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  363.686808][T15917] R13: 00007fa414c16038 R14: 00007fa414c15fa0 R15: 00007ffc6ec06d18
[  363.686822][T15917]  </TASK>
[  363.689627][   T40] audit: type=1400 audit(2000000264.791:3984): avc:  denied  { bind } for  pid=15926 comm="syz.2.3434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  363.808204][   T40] audit: type=1400 audit(2000000264.810:3985): avc:  denied  { read append } for  pid=15926 comm="syz.2.3434" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  363.846569][T15929] binder: 15928:15929 ioctl c0306201 200000000640 returned -22
[  363.920989][T15933] syzkaller0: entered promiscuous mode
[  363.922854][T15933] syzkaller0: entered allmulticast mode
[  363.998305][T15935] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[  364.117127][   T40] audit: type=1400 audit(2000000265.193:3986): avc:  denied  { setopt } for  pid=15936 comm="syz.1.3439" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  364.250238][T15949] __nla_validate_parse: 9 callbacks suppressed
[  364.250250][T15949] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3444'.
[  364.259885][T15951] netlink: 7064 bytes leftover after parsing attributes in process `syz.5.3443'.
[  364.264163][T15951] openvswitch: netlink: Missing key (keys=40, expected=100)
[  364.268371][T15951] tmpfs: Unknown parameter 'usrquota'
[  364.338349][T15958] program syz.5.3447 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  364.605242][T15962] openvswitch: netlink: EtherType 50a is less than min 600
[  364.608713][T15962] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3449'.
[  364.699067][T15964] netlink: 'syz.2.3450': attribute type 2 has an invalid length.
[  364.990216][T15981] erspan1: entered allmulticast mode
[  365.152015][T15990] netlink: 'syz.2.3460': attribute type 1 has an invalid length.
[  365.169190][T15990] bond4: entered promiscuous mode
[  365.171921][T15990] 8021q: adding VLAN 0 to HW filter on device bond4
[  365.181988][T15990] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3460'.
[  365.541443][T16005] erspan1: entered allmulticast mode
[  365.754438][T16015] FAULT_INJECTION: forcing a failure.
[  365.754438][T16015] name failslab, interval 1, probability 0, space 0, times 0
[  365.759086][T16015] CPU: 0 UID: 0 PID: 16015 Comm: syz.5.3469 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  365.759115][T16015] Tainted: [L]=SOFTLOCKUP
[  365.759122][T16015] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  365.759132][T16015] Call Trace:
[  365.759139][T16015]  <TASK>
[  365.759146][T16015]  dump_stack_lvl+0x100/0x190
[  365.759178][T16015]  should_fail_ex.cold+0x5/0xa
[  365.759202][T16015]  should_failslab+0xc2/0x120
[  365.759221][T16015]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  365.759247][T16015]  ? __alloc_skb+0x140/0x710
[  365.759272][T16015]  __alloc_skb+0x140/0x710
[  365.759291][T16015]  ? __alloc_skb+0x5b7/0x710
[  365.759311][T16015]  ? __pfx___alloc_skb+0x10/0x10
[  365.759339][T16015]  netlink_ack+0x117/0xb80
[  365.759372][T16015]  netlink_rcv_skb+0x333/0x420
[  365.759397][T16015]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  365.759421][T16015]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  365.759455][T16015]  ? netlink_deliver_tap+0x1ae/0xcc0
[  365.759487][T16015]  netlink_unicast+0x5aa/0x870
[  365.759516][T16015]  ? __pfx_netlink_unicast+0x10/0x10
[  365.759550][T16015]  netlink_sendmsg+0x8b0/0xda0
[  365.759579][T16015]  ? __pfx_netlink_sendmsg+0x10/0x10
[  365.759604][T16015]  ? PageHuge+0x170/0x180
[  365.759635][T16015]  ____sys_sendmsg+0x9e1/0xb70
[  365.759661][T16015]  ? __pfx_netlink_sendmsg+0x10/0x10
[  365.759687][T16015]  ? __pfx_____sys_sendmsg+0x10/0x10
[  365.759725][T16015]  ___sys_sendmsg+0x190/0x1e0
[  365.759754][T16015]  ? __pfx____sys_sendmsg+0x10/0x10
[  365.759811][T16015]  __sys_sendmsg+0x170/0x220
[  365.759834][T16015]  ? __pfx___sys_sendmsg+0x10/0x10
[  365.759872][T16015]  do_syscall_64+0x106/0xf80
[  365.759896][T16015]  ? clear_bhb_loop+0x40/0x90
[  365.759924][T16015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.759945][T16015] RIP: 0033:0x7fa41499c799
[  365.759960][T16015] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  365.759978][T16015] RSP: 002b:00007fa415939028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  365.759995][T16015] RAX: ffffffffffffffda RBX: 00007fa414c15fa0 RCX: 00007fa41499c799
[  365.760005][T16015] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[  365.760015][T16015] RBP: 00007fa415939090 R08: 0000000000000000 R09: 0000000000000000
[  365.760022][T16015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  365.760029][T16015] R13: 00007fa414c16038 R14: 00007fa414c15fa0 R15: 00007ffc6ec06d18
[  365.760044][T16015]  </TASK>
[  365.776311][T16014] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3468'.
[  365.906068][T16022] netlink: 'syz.1.3472': attribute type 1 has an invalid length.
[  365.923757][T16022] 8021q: adding VLAN 0 to HW filter on device bond3
[  365.936577][T16022] bond3: (slave geneve2): making interface the new active one
[  365.942090][T16022] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  365.946559][T16022] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3472'.
[  366.028128][T16029] erspan1: entered allmulticast mode
[  366.075352][T16031] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3476'.
[  366.093508][T16031] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9 sclass=netlink_route_socket pid=16031 comm=syz.2.3476
[  366.178235][T16040] FAULT_INJECTION: forcing a failure.
[  366.178235][T16040] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  366.196531][T16040] CPU: 2 UID: 0 PID: 16040 Comm: syz.2.3480 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  366.196551][T16040] Tainted: [L]=SOFTLOCKUP
[  366.196555][T16040] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  366.196562][T16040] Call Trace:
[  366.196566][T16040]  <TASK>
[  366.196571][T16040]  dump_stack_lvl+0x100/0x190
[  366.196595][T16040]  should_fail_ex.cold+0x5/0xa
[  366.196608][T16040]  ? prepare_alloc_pages+0x16d/0x5f0
[  366.196622][T16040]  should_fail_alloc_page+0xeb/0x140
[  366.196634][T16040]  prepare_alloc_pages+0x1f0/0x5f0
[  366.196649][T16040]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  366.196667][T16040]  ? do_raw_spin_unlock+0x145/0x1e0
[  366.196681][T16040]  ? _raw_spin_unlock+0x28/0x50
[  366.196694][T16040]  ? move_cluster+0x1f7/0x570
[  366.196712][T16040]  ? swap_entries_free+0x513/0x890
[  366.196730][T16040]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  366.196754][T16040]  ? lock_acquire+0x1cf/0x380
[  366.196765][T16040]  ? find_held_lock+0x2b/0x80
[  366.196779][T16040]  ? page_table_check_set+0x49a/0xa10
[  366.196796][T16040]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  366.196814][T16040]  ? policy_nodemask+0xed/0x4f0
[  366.196826][T16040]  alloc_pages_mpol+0x1fb/0x550
[  366.196838][T16040]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  366.196853][T16040]  folio_alloc_mpol_noprof+0x36/0x340
[  366.196868][T16040]  vma_alloc_folio_noprof+0xed/0x1d0
[  366.196881][T16040]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  366.196898][T16040]  do_anonymous_page+0xb3a/0x1fb0
[  366.196918][T16040]  __handle_mm_fault+0x1d42/0x2b60
[  366.196936][T16040]  ? __pfx___handle_mm_fault+0x10/0x10
[  366.196952][T16040]  ? pte_offset_map_lock+0x174/0x320
[  366.196970][T16040]  ? find_held_lock+0x2b/0x80
[  366.196989][T16040]  ? follow_page_pte+0x5b3/0x1400
[  366.197004][T16040]  handle_mm_fault+0x36d/0xa20
[  366.197027][T16040]  __get_user_pages+0xf9c/0x34d0
[  366.197044][T16040]  ? __pfx___get_user_pages+0x10/0x10
[  366.197060][T16040]  populate_vma_page_range+0x267/0x3f0
[  366.197074][T16040]  ? __pfx_populate_vma_page_range+0x10/0x10
[  366.197086][T16040]  ? __pfx_find_vma_intersection+0x10/0x10
[  366.197098][T16040]  ? __pfx_apply_vma_lock_flags+0x10/0x10
[  366.197116][T16040]  __mm_populate+0x107/0x3a0
[  366.197130][T16040]  ? __pfx___mm_populate+0x10/0x10
[  366.197143][T16040]  ? up_write+0x290/0x4f0
[  366.197157][T16040]  do_mlock+0x3f0/0x7f0
[  366.197173][T16040]  ? __fget_files+0x21f/0x3d0
[  366.197185][T16040]  ? __pfx_do_mlock+0x10/0x10
[  366.197202][T16040]  ? fput+0x79/0x100
[  366.197215][T16040]  ? ksys_write+0x1ac/0x250
[  366.197232][T16040]  ? __pfx_ksys_write+0x10/0x10
[  366.197252][T16040]  __x64_sys_mlock+0x59/0x80
[  366.197268][T16040]  do_syscall_64+0x106/0xf80
[  366.197283][T16040]  ? clear_bhb_loop+0x40/0x90
[  366.197297][T16040]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.197308][T16040] RIP: 0033:0x7f4595b9c799
[  366.197319][T16040] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  366.197330][T16040] RSP: 002b:00007f4596a91028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  366.197342][T16040] RAX: ffffffffffffffda RBX: 00007f4595e15fa0 RCX: 00007f4595b9c799
[  366.197350][T16040] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[  366.197356][T16040] RBP: 00007f4596a91090 R08: 0000000000000000 R09: 0000000000000000
[  366.197363][T16040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  366.197370][T16040] R13: 00007f4595e16038 R14: 00007f4595e15fa0 R15: 00007fff9186e4e8
[  366.197384][T16040]  </TASK>
[  366.467746][T16046] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3481'.
[  366.470966][T16043] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3481'.
[  366.478834][T16046] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3481'.
[  366.483608][   T59] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  366.487643][   T59] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  366.493429][   T59] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  366.496513][   T59] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  366.674116][T16055] lo speed is unknown, defaulting to 1000
[  366.713546][ T5939] Bluetooth: hci4: connection err: -111
[  367.035183][T16060] syzkaller0: entered promiscuous mode
[  367.037663][T16060] syzkaller0: entered allmulticast mode
[  367.597036][ T9186] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  367.780021][ T9186] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  367.783911][ T9186] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  367.787017][ T9186] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  367.806544][ T9186] usb 10-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  367.809620][ T9186] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  367.812104][ T9186] usb 10-1: Product: syz
[  367.813342][ T9186] usb 10-1: Manufacturer: syz
[  367.814692][ T9186] usb 10-1: SerialNumber: syz
[  367.818665][ T9186] usb 10-1: config 0 descriptor??
[  368.046497][ T9186] adutux 10-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[  368.259835][ T5939] Bluetooth: hci3: command 0x0406 tx timeout
[  368.318548][T16067] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  368.431738][T16089] ip6gre1: entered promiscuous mode
[  368.550528][T16092] FAULT_INJECTION: forcing a failure.
[  368.550528][T16092] name failslab, interval 1, probability 0, space 0, times 0
[  368.555567][T16092] CPU: 1 UID: 0 PID: 16092 Comm: syz.1.3495 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  368.555592][T16092] Tainted: [L]=SOFTLOCKUP
[  368.555598][T16092] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  368.555607][T16092] Call Trace:
[  368.555614][T16092]  <TASK>
[  368.555621][T16092]  dump_stack_lvl+0x100/0x190
[  368.555651][T16092]  should_fail_ex.cold+0x5/0xa
[  368.555673][T16092]  should_failslab+0xc2/0x120
[  368.555690][T16092]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  368.555713][T16092]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  368.555743][T16092]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  368.555774][T16092]  mmu_topup_memory_caches+0x25/0x170
[  368.555795][T16092]  kvm_mmu_load+0xd6/0x23e0
[  368.555811][T16092]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  368.555833][T16092]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  368.555858][T16092]  ? __pfx_kvm_mmu_load+0x10/0x10
[  368.555874][T16092]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  368.555898][T16092]  ? kvm_check_and_inject_events+0x961/0x10c0
[  368.555917][T16092]  ? record_steal_time+0x370/0xbe0
[  368.555943][T16092]  vcpu_run+0x39f4/0x5ca0
[  368.555970][T16092]  ? __pfx_vcpu_run+0x10/0x10
[  368.555997][T16092]  ? rcu_is_watching+0x12/0xc0
[  368.556022][T16092]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  368.556040][T16092]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  368.556067][T16092]  kvm_vcpu_ioctl+0x730/0x1730
[  368.556091][T16092]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  368.556115][T16092]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  368.556139][T16092]  ? do_vfs_ioctl+0x226/0x13e0
[  368.556163][T16092]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  368.556186][T16092]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  368.556216][T16092]  ? __fget_files+0x215/0x3d0
[  368.556232][T16092]  ? hook_file_ioctl_common+0x146/0x410
[  368.556262][T16092]  ? selinux_file_ioctl+0x139/0x290
[  368.556283][T16092]  ? selinux_file_ioctl+0xb4/0x290
[  368.556306][T16092]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  368.556331][T16092]  __x64_sys_ioctl+0x18e/0x210
[  368.556356][T16092]  do_syscall_64+0x106/0xf80
[  368.556377][T16092]  ? clear_bhb_loop+0x40/0x90
[  368.556398][T16092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.556415][T16092] RIP: 0033:0x7fa58359c799
[  368.556429][T16092] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  368.556444][T16092] RSP: 002b:00007fa5844bd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  368.556460][T16092] RAX: ffffffffffffffda RBX: 00007fa583815fa0 RCX: 00007fa58359c799
[  368.556471][T16092] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  368.556487][T16092] RBP: 00007fa5844bd090 R08: 0000000000000000 R09: 0000000000000000
[  368.556496][T16092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  368.556506][T16092] R13: 00007fa583816038 R14: 00007fa583815fa0 R15: 00007fff01ec13b8
[  368.556530][T16092]  </TASK>
[  368.675181][    C1] hpet_rtc_timer_reinit: 23 callbacks suppressed
[  368.675190][    C1] hpet: Lost 7 RTC interrupts
[  368.782234][T16108] FAULT_INJECTION: forcing a failure.
[  368.782234][T16108] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  368.786851][T16108] CPU: 3 UID: 0 PID: 16108 Comm: syz.4.3500 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  368.786870][T16108] Tainted: [L]=SOFTLOCKUP
[  368.786874][T16108] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  368.786881][T16108] Call Trace:
[  368.786884][T16108]  <TASK>
[  368.786889][T16108]  dump_stack_lvl+0x100/0x190
[  368.786918][T16108]  should_fail_ex.cold+0x5/0xa
[  368.786933][T16108]  _copy_to_user+0x32/0xd0
[  368.786949][T16108]  simple_read_from_buffer+0xcb/0x170
[  368.786969][T16108]  proc_fail_nth_read+0x1af/0x230
[  368.786985][T16108]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  368.787005][T16108]  ? rw_verify_area+0xce/0x6d0
[  368.787022][T16108]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  368.787037][T16108]  vfs_read+0x1e4/0xb30
[  368.787056][T16108]  ? __pfx_vfs_read+0x10/0x10
[  368.787072][T16108]  ? __fget_files+0x215/0x3d0
[  368.787087][T16108]  ? __fget_files+0x21f/0x3d0
[  368.787103][T16108]  ksys_read+0x12a/0x250
[  368.787120][T16108]  ? __pfx_ksys_read+0x10/0x10
[  368.787141][T16108]  do_syscall_64+0x106/0xf80
[  368.787159][T16108]  ? clear_bhb_loop+0x40/0x90
[  368.787173][T16108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.787185][T16108] RIP: 0033:0x7f9fc4b5cfce
[  368.787195][T16108] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  368.787205][T16108] RSP: 002b:00007f9fc59fafe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  368.787216][T16108] RAX: ffffffffffffffda RBX: 00007f9fc59fb6c0 RCX: 00007f9fc4b5cfce
[  368.787223][T16108] RDX: 000000000000000f RSI: 00007f9fc59fb0a0 RDI: 0000000000000005
[  368.787230][T16108] RBP: 00007f9fc59fb090 R08: 0000000000000000 R09: 0000000000000000
[  368.787236][T16108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  368.787247][T16108] R13: 00007f9fc4e16038 R14: 00007f9fc4e15fa0 R15: 00007ffe6f659338
[  368.787262][T16108]  </TASK>
[  368.889738][   T40] audit: type=1400 audit(2000000269.646:4010): avc:  denied  { recv } for  pid=0 comm="swapper/1" saddr=10.0.2.2 src=39334 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  368.900956][   T40] audit: type=1400 audit(2000000269.646:4011): avc:  denied  { unmount } for  pid=11652 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  368.915182][   T40] audit: type=1400 audit(2000000269.683:4012): avc:  denied  { read write } for  pid=12888 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  368.922612][   T40] audit: type=1400 audit(2000000269.683:4013): avc:  denied  { open } for  pid=12888 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  368.931323][   T40] audit: type=1400 audit(2000000269.683:4014): avc:  denied  { ioctl } for  pid=12888 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  368.941053][   T40] audit: type=1400 audit(2000000269.692:4015): avc:  denied  { recv } for  pid=23 comm="ksoftirqd/2" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=57102 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  369.112912][   T40] audit: type=1400 audit(2000000269.861:4016): avc:  denied  { name_bind } for  pid=16111 comm="syz.1.3503" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  369.122254][   T40] audit: type=1400 audit(2000000269.861:4017): avc:  denied  { node_bind } for  pid=16111 comm="syz.1.3503" saddr=::1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  369.167108][   T40] audit: type=1400 audit(2000000269.908:4018): avc:  denied  { name_bind } for  pid=16118 comm="syz.4.3505" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  369.610395][T16130] __nla_validate_parse: 9 callbacks suppressed
[  369.610412][T16130] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3510'.
[  369.812663][T16132] netlink: 64 bytes leftover after parsing attributes in process `syz.2.3511'.
[  369.888533][T16134] FAULT_INJECTION: forcing a failure.
[  369.888533][T16134] name failslab, interval 1, probability 0, space 0, times 0
[  369.892587][T16134] CPU: 0 UID: 0 PID: 16134 Comm: syz.2.3512 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  369.892606][T16134] Tainted: [L]=SOFTLOCKUP
[  369.892610][T16134] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  369.892616][T16134] Call Trace:
[  369.892621][T16134]  <TASK>
[  369.892625][T16134]  dump_stack_lvl+0x100/0x190
[  369.892660][T16134]  should_fail_ex.cold+0x5/0xa
[  369.892677][T16134]  ? p9pdu_readf+0x875/0x1d90
[  369.892694][T16134]  should_failslab+0xc2/0x120
[  369.892706][T16134]  __kmalloc_noprof+0xe0/0x850
[  369.892722][T16134]  ? rcu_is_watching+0x12/0xc0
[  369.892739][T16134]  p9pdu_readf+0x875/0x1d90
[  369.892760][T16134]  ? __pfx_p9pdu_readf+0x10/0x10
[  369.892777][T16134]  ? __pfx_autoremove_wake_function+0x10/0x10
[  369.892797][T16134]  ? __pfx_idr_alloc_u32+0x10/0x10
[  369.892812][T16134]  ? find_held_lock+0x2b/0x80
[  369.892826][T16134]  ? p9_fid_create+0x26d/0x460
[  369.892842][T16134]  ? trace_9p_fid_ref+0x72/0x210
[  369.892859][T16134]  p9_client_walk+0x222/0x530
[  369.892877][T16134]  ? __pfx_p9_client_walk+0x10/0x10
[  369.892896][T16134]  ? v9fs_fid_lookup+0xec/0xec0
[  369.892916][T16134]  v9fs_vfs_lookup+0x206/0x5b0
[  369.892930][T16134]  ? __pfx_v9fs_vfs_lookup+0x10/0x10
[  369.892948][T16134]  ? do_raw_spin_unlock+0x145/0x1e0
[  369.892962][T16134]  ? _raw_spin_unlock+0x28/0x50
[  369.892976][T16134]  lookup_one_qstr_excl+0x1d1/0x250
[  369.892991][T16134]  ? mnt_get_write_access+0x52/0x2f0
[  369.893009][T16134]  __start_renaming+0x1c9/0x520
[  369.893027][T16134]  filename_renameat2+0x538/0xa60
[  369.893046][T16134]  ? __pfx_filename_renameat2+0x10/0x10
[  369.893064][T16134]  ? __might_fault+0xc5/0x140
[  369.893088][T16134]  ? do_getname+0x191/0x390
[  369.893103][T16134]  __x64_sys_rename+0x81/0xb0
[  369.893118][T16134]  do_syscall_64+0x106/0xf80
[  369.893132][T16134]  ? clear_bhb_loop+0x40/0x90
[  369.893147][T16134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.893158][T16134] RIP: 0033:0x7f4595b9c799
[  369.893169][T16134] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  369.893180][T16134] RSP: 002b:00007f4596a91028 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  369.893191][T16134] RAX: ffffffffffffffda RBX: 00007f4595e15fa0 RCX: 00007f4595b9c799
[  369.893198][T16134] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000200000000100
[  369.893205][T16134] RBP: 00007f4596a91090 R08: 0000000000000000 R09: 0000000000000000
[  369.893211][T16134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  369.893218][T16134] R13: 00007f4595e16038 R14: 00007f4595e15fa0 R15: 00007fff9186e4e8
[  369.893232][T16134]  </TASK>
[  370.246504][T16138] FAULT_INJECTION: forcing a failure.
[  370.246504][T16138] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  370.253890][T16138] CPU: 3 UID: 0 PID: 16138 Comm: syz.2.3514 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  370.253917][T16138] Tainted: [L]=SOFTLOCKUP
[  370.253924][T16138] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  370.253934][T16138] Call Trace:
[  370.253939][T16138]  <TASK>
[  370.253947][T16138]  dump_stack_lvl+0x100/0x190
[  370.253982][T16138]  should_fail_ex.cold+0x5/0xa
[  370.254027][T16138]  ? prepare_alloc_pages+0x16d/0x5f0
[  370.254049][T16138]  should_fail_alloc_page+0xeb/0x140
[  370.254067][T16138]  prepare_alloc_pages+0x1f0/0x5f0
[  370.254089][T16138]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  370.254112][T16138]  ? stack_trace_consume_entry+0x131/0x170
[  370.254136][T16138]  ? stack_depot_save_flags+0x27/0x9d0
[  370.254159][T16138]  ? kasan_save_stack+0x3f/0x50
[  370.254183][T16138]  ? kasan_save_stack+0x30/0x50
[  370.254205][T16138]  ? kasan_save_track+0x14/0x30
[  370.254227][T16138]  ? __kasan_kmalloc+0xaa/0xb0
[  370.254249][T16138]  ? __kvmalloc_node_noprof+0x360/0xa00
[  370.254273][T16138]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  370.254297][T16138]  ? mmu_topup_memory_caches+0xbc/0x170
[  370.254315][T16138]  ? kvm_mmu_load+0xd6/0x23e0
[  370.254329][T16138]  ? vcpu_run+0x39f4/0x5ca0
[  370.254346][T16138]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  370.254366][T16138]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  370.254389][T16138]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.254424][T16138]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  370.254450][T16138]  ? policy_nodemask+0xed/0x4f0
[  370.254469][T16138]  alloc_pages_mpol+0x1fb/0x550
[  370.254489][T16138]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  370.254506][T16138]  ? __kasan_kmalloc+0xaa/0xb0
[  370.254533][T16138]  alloc_pages_noprof+0x131/0x390
[  370.254551][T16138]  get_free_pages_noprof+0x10/0xb0
[  370.254577][T16138]  __kvm_mmu_topup_memory_cache+0x278/0x5f0
[  370.254611][T16138]  mmu_topup_memory_caches+0xbc/0x170
[  370.254632][T16138]  kvm_mmu_load+0xd6/0x23e0
[  370.254651][T16138]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  370.254673][T16138]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  370.254701][T16138]  ? __pfx_kvm_mmu_load+0x10/0x10
[  370.254718][T16138]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  370.254745][T16138]  ? kvm_check_and_inject_events+0x961/0x10c0
[  370.254764][T16138]  ? record_steal_time+0x370/0xbe0
[  370.254792][T16138]  vcpu_run+0x39f4/0x5ca0
[  370.254822][T16138]  ? __pfx_vcpu_run+0x10/0x10
[  370.254853][T16138]  ? rcu_is_watching+0x12/0xc0
[  370.254878][T16138]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  370.254899][T16138]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  370.254927][T16138]  kvm_vcpu_ioctl+0x730/0x1730
[  370.254956][T16138]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  370.254988][T16138]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  370.255014][T16138]  ? do_vfs_ioctl+0x226/0x13e0
[  370.255042][T16138]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  370.255067][T16138]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  370.255102][T16138]  ? __fget_files+0x215/0x3d0
[  370.255119][T16138]  ? hook_file_ioctl_common+0x146/0x410
[  370.255154][T16138]  ? selinux_file_ioctl+0x139/0x290
[  370.255176][T16138]  ? selinux_file_ioctl+0xb4/0x290
[  370.255199][T16138]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  370.255226][T16138]  __x64_sys_ioctl+0x18e/0x210
[  370.255254][T16138]  do_syscall_64+0x106/0xf80
[  370.255276][T16138]  ? clear_bhb_loop+0x40/0x90
[  370.255299][T16138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.255317][T16138] RIP: 0033:0x7f4595b9c799
[  370.255332][T16138] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  370.255350][T16138] RSP: 002b:00007f4596a91028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  370.255369][T16138] RAX: ffffffffffffffda RBX: 00007f4595e15fa0 RCX: 00007f4595b9c799
[  370.255381][T16138] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  370.255392][T16138] RBP: 00007f4596a91090 R08: 0000000000000000 R09: 0000000000000000
[  370.255403][T16138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  370.255414][T16138] R13: 00007f4595e16038 R14: 00007f4595e15fa0 R15: 00007fff9186e4e8
[  370.255439][T16138]  </TASK>
[  370.420400][ T9178] usb 10-1: USB disconnect, device number 9
[  370.748982][T16141] vcan0: tx address claim with different name
[  370.862287][T16146] syzkaller0: entered promiscuous mode
[  370.864801][T16146] syzkaller0: entered allmulticast mode
[  371.021596][T16151] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3519'.
[  371.741289][T16179] netlink: 164 bytes leftover after parsing attributes in process `syz.2.3529'.
[  371.782132][T16181] syzkaller0: entered promiscuous mode
[  371.785395][T16183] FAULT_INJECTION: forcing a failure.
[  371.785395][T16183] name failslab, interval 1, probability 0, space 0, times 0
[  371.790934][T16183] CPU: 0 UID: 0 PID: 16183 Comm: syz.5.3526 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  371.790964][T16183] Tainted: [L]=SOFTLOCKUP
[  371.790971][T16183] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  371.790982][T16183] Call Trace:
[  371.790989][T16183]  <TASK>
[  371.790996][T16183]  dump_stack_lvl+0x100/0x190
[  371.791030][T16183]  should_fail_ex.cold+0x5/0xa
[  371.791056][T16183]  should_failslab+0xc2/0x120
[  371.791076][T16183]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  371.791100][T16183]  ? __kernfs_new_node+0xd2/0x960
[  371.791128][T16183]  ? find_held_lock+0x2b/0x80
[  371.791157][T16183]  __kernfs_new_node+0xd2/0x960
[  371.791187][T16183]  ? kernfs_root+0xf8/0x2a0
[  371.791214][T16183]  ? __pfx___kernfs_new_node+0x10/0x10
[  371.791269][T16183]  ? find_held_lock+0x2b/0x80
[  371.791292][T16183]  ? kernfs_root+0xee/0x2a0
[  371.791317][T16183]  ? kernfs_root+0xee/0x2a0
[  371.791350][T16183]  kernfs_new_node+0x11b/0x1a0
[  371.791373][T16183]  __kernfs_create_file+0x53/0x350
[  371.791394][T16183]  sysfs_add_file_mode_ns+0x207/0x3c0
[  371.791422][T16183]  sysfs_create_file_ns+0x145/0x1e0
[  371.791440][T16183]  ? __pfx_sysfs_create_file_ns+0x10/0x10
[  371.791461][T16183]  ? kobject_put+0xb9/0x640
[  371.791480][T16183]  iommu_group_alloc+0x29a/0x4a0
[  371.791495][T16183]  __iommu_probe_device+0x3b1/0x1550
[  371.791513][T16183]  ? __pfx___iommu_probe_device+0x10/0x10
[  371.791529][T16183]  ? __pfx___might_resched+0x10/0x10
[  371.791546][T16183]  iommu_probe_device+0x28/0x130
[  371.791563][T16183]  iommu_bus_notifier+0x5b/0x110
[  371.791579][T16183]  notifier_call_chain+0x99/0x420
[  371.791594][T16183]  blocking_notifier_call_chain+0x69/0xa0
[  371.791608][T16183]  bus_notify+0x56/0x80
[  371.791624][T16183]  device_add+0x1164/0x1950
[  371.791637][T16183]  ? __pfx_device_add+0x10/0x10
[  371.791649][T16183]  ? kobject_get+0xbb/0x150
[  371.791666][T16183]  ? software_node_get+0x68/0x90
[  371.791680][T16183]  ? fwnode_handle_get+0x97/0xd0
[  371.791700][T16183]  iommu_mock_device_add+0x7c/0xb0
[  371.791717][T16183]  iommufd_test+0x2f6b/0x6610
[  371.791732][T16183]  ? __lock_acquire+0x4a5/0x2630
[  371.791745][T16183]  ? __pfx_iommufd_test+0x10/0x10
[  371.791757][T16183]  ? tomoyo_path_number_perm+0x188/0x580
[  371.791777][T16183]  ? find_held_lock+0x2b/0x80
[  371.791791][T16183]  ? __might_fault+0xc5/0x140
[  371.791815][T16183]  iommufd_fops_ioctl+0x358/0x520
[  371.791831][T16183]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  371.791846][T16183]  ? __fget_files+0x215/0x3d0
[  371.791858][T16183]  ? hook_file_ioctl_common+0x146/0x410
[  371.791881][T16183]  ? selinux_file_ioctl+0x139/0x290
[  371.791897][T16183]  ? selinux_file_ioctl+0xb4/0x290
[  371.791914][T16183]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  371.791930][T16183]  __x64_sys_ioctl+0x18e/0x210
[  371.791949][T16183]  do_syscall_64+0x106/0xf80
[  371.791964][T16183]  ? clear_bhb_loop+0x40/0x90
[  371.791980][T16183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.791992][T16183] RIP: 0033:0x7fa41499c799
[  371.792003][T16183] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  371.792014][T16183] RSP: 002b:00007fa415939028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  371.792027][T16183] RAX: ffffffffffffffda RBX: 00007fa414c15fa0 RCX: 00007fa41499c799
[  371.792034][T16183] RDX: 0000200000000100 RSI: 0000000000003ba0 RDI: 0000000000000003
[  371.792041][T16183] RBP: 00007fa415939090 R08: 0000000000000000 R09: 0000000000000000
[  371.792048][T16183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  371.792055][T16183] R13: 00007fa414c16038 R14: 00007fa414c15fa0 R15: 00007ffc6ec06d18
[  371.792071][T16183]  </TASK>
[  371.956076][T16185] binder: 16184:16185 ioctl c0306201 200000000640 returned -22
[  372.019170][T16187] FAULT_INJECTION: forcing a failure.
[  372.019170][T16187] name failslab, interval 1, probability 0, space 0, times 0
[  372.025084][T16187] CPU: 3 UID: 0 PID: 16187 Comm: syz.5.3532 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  372.025113][T16187] Tainted: [L]=SOFTLOCKUP
[  372.025119][T16187] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  372.025130][T16187] Call Trace:
[  372.025137][T16187]  <TASK>
[  372.025143][T16187]  dump_stack_lvl+0x100/0x190
[  372.025192][T16187]  should_fail_ex.cold+0x5/0xa
[  372.025216][T16187]  should_failslab+0xc2/0x120
[  372.025236][T16187]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  372.025260][T16187]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  372.025294][T16187]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  372.025331][T16187]  mmu_topup_memory_caches+0x25/0x170
[  372.025354][T16187]  kvm_mmu_load+0xd6/0x23e0
[  372.025373][T16187]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  372.025398][T16187]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  372.025444][T16187]  ? __pfx_kvm_mmu_load+0x10/0x10
[  372.025464][T16187]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  372.025490][T16187]  ? kvm_check_and_inject_events+0x961/0x10c0
[  372.025511][T16187]  ? record_steal_time+0x370/0xbe0
[  372.025539][T16187]  vcpu_run+0x39f4/0x5ca0
[  372.025570][T16187]  ? __pfx_vcpu_run+0x10/0x10
[  372.025599][T16187]  ? rcu_is_watching+0x12/0xc0
[  372.025623][T16187]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  372.025646][T16187]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  372.025674][T16187]  kvm_vcpu_ioctl+0x730/0x1730
[  372.025703][T16187]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  372.025731][T16187]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  372.025758][T16187]  ? do_vfs_ioctl+0x226/0x13e0
[  372.025787][T16187]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  372.025812][T16187]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  372.025854][T16187]  ? __fget_files+0x215/0x3d0
[  372.025870][T16187]  ? hook_file_ioctl_common+0x146/0x410
[  372.025906][T16187]  ? selinux_file_ioctl+0x139/0x290
[  372.025930][T16187]  ? selinux_file_ioctl+0xb4/0x290
[  372.025954][T16187]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  372.026002][T16187]  __x64_sys_ioctl+0x18e/0x210
[  372.026030][T16187]  do_syscall_64+0x106/0xf80
[  372.026053][T16187]  ? clear_bhb_loop+0x40/0x90
[  372.026076][T16187]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.026094][T16187] RIP: 0033:0x7fa41499c799
[  372.026110][T16187] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  372.026128][T16187] RSP: 002b:00007fa415939028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  372.026147][T16187] RAX: ffffffffffffffda RBX: 00007fa414c15fa0 RCX: 00007fa41499c799
[  372.026159][T16187] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  372.026170][T16187] RBP: 00007fa415939090 R08: 0000000000000000 R09: 0000000000000000
[  372.026180][T16187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  372.026190][T16187] R13: 00007fa414c16038 R14: 00007fa414c15fa0 R15: 00007ffc6ec06d18
[  372.026216][T16187]  </TASK>
[  372.309098][T16196] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3535'.
[  372.315984][T16196] erspan1: entered allmulticast mode
[  372.416324][   T46] Bluetooth: hci2: Frame reassembly failed (-84)
[  372.461364][T16200] netlink: 'syz.5.3537': attribute type 6 has an invalid length.
[  372.464208][T16200] netlink: 'syz.5.3537': attribute type 4 has an invalid length.
[  372.467691][T16200] netlink: 'syz.5.3537': attribute type 5 has an invalid length.
[  372.471145][T16200] netlink: 'syz.5.3537': attribute type 6 has an invalid length.
[  372.475464][T16200] netlink: 'syz.5.3537': attribute type 8 has an invalid length.
[  372.478916][T16200] netlink: 1068 bytes leftover after parsing attributes in process `syz.5.3537'.
[  372.483275][T16200] netlink: 'syz.5.3537': attribute type 1 has an invalid length.
[  372.495134][T16200] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  372.572178][   T34] lo speed is unknown, defaulting to 1000
[  372.613896][T16206] erspan0: entered promiscuous mode
[  372.640363][T16208] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3541'.
[  373.234502][  T219] nci: nci_ntf_packet: unknown ntf opcode 0x23
[  373.625244][T16254] MINIX-fs: blocksize too small for device
[  373.687748][T16258] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3557'.
[  373.876347][T16266] FAULT_INJECTION: forcing a failure.
[  373.876347][T16266] name failslab, interval 1, probability 0, space 0, times 0
[  373.881729][T16266] CPU: 2 UID: 0 PID: 16266 Comm: syz.4.3560 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  373.881756][T16266] Tainted: [L]=SOFTLOCKUP
[  373.881762][T16266] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  373.881773][T16266] Call Trace:
[  373.881780][T16266]  <TASK>
[  373.881788][T16266]  dump_stack_lvl+0x100/0x190
[  373.881820][T16266]  should_fail_ex.cold+0x5/0xa
[  373.881845][T16266]  should_failslab+0xc2/0x120
[  373.881863][T16266]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  373.881888][T16266]  ? do_getname+0x35/0x390
[  373.881909][T16266]  ? find_held_lock+0x2b/0x80
[  373.881935][T16266]  do_getname+0x35/0x390
[  373.881960][T16266]  do_sys_openat2+0xc5/0x1e0
[  373.882007][T16266]  ? __pfx_do_sys_openat2+0x10/0x10
[  373.882027][T16266]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  373.882055][T16266]  ? __fget_files+0x21f/0x3d0
[  373.882078][T16266]  __x64_sys_openat+0x12d/0x210
[  373.882101][T16266]  ? __pfx___x64_sys_openat+0x10/0x10
[  373.882122][T16266]  ? ksys_write+0x1ac/0x250
[  373.882155][T16266]  do_syscall_64+0x106/0xf80
[  373.882177][T16266]  ? clear_bhb_loop+0x40/0x90
[  373.882198][T16266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.882216][T16266] RIP: 0033:0x7f9fc4b9c799
[  373.882231][T16266] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  373.882247][T16266] RSP: 002b:00007f9fc59fb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  373.882279][T16266] RAX: ffffffffffffffda RBX: 00007f9fc4e15fa0 RCX: 00007f9fc4b9c799
[  373.882291][T16266] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  373.882302][T16266] RBP: 00007f9fc59fb090 R08: 0000000000000000 R09: 0000000000000000
[  373.882312][T16266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  373.882322][T16266] R13: 00007f9fc4e16038 R14: 00007f9fc4e15fa0 R15: 00007ffe6f659338
[  373.882346][T16266]  </TASK>
[  374.006558][T16235] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  374.075504][   T40] kauditd_printk_skb: 116 callbacks suppressed
[  374.075521][   T40] audit: type=1400 audit(2000000274.500:4135): avc:  denied  { create } for  pid=16271 comm="syz.1.3563" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  374.146898][   T40] audit: type=1400 audit(2000000274.566:4136): avc:  denied  { ioctl } for  pid=16271 comm="syz.1.3563" path="socket:[87504]" dev="sockfs" ino=87504 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  374.154779][   T40] audit: type=1400 audit(2000000274.566:4137): avc:  denied  { write } for  pid=16271 comm="syz.1.3563" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  374.197607][   T40] audit: type=1400 audit(2000000274.622:4138): avc:  denied  { create } for  pid=16274 comm="syz.4.3564" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  374.207952][   T40] audit: type=1400 audit(2000000274.631:4139): avc:  denied  { ioctl } for  pid=16274 comm="syz.4.3564" path="socket:[89121]" dev="sockfs" ino=89121 ioctlcmd=0x48d3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  374.208707][T16275] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3564'.
[  374.247128][ T5939] Bluetooth: hci4: command tx timeout
[  374.334814][T16283] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3567'.
[  374.588860][ T5933] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  374.598857][   T40] audit: type=1400 audit(2000000274.987:4140): avc:  denied  { unmount } for  pid=14399 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  374.635199][T16294] netlink: 'syz.5.3571': attribute type 3 has an invalid length.
[  374.641581][T16294] netlink: 'syz.5.3571': attribute type 3 has an invalid length.
[  374.690542][   T40] audit: type=1400 audit(2000000275.080:4141): avc:  denied  { ioctl } for  pid=16298 comm="syz.5.3574" path="/dev/uinput" dev="devtmpfs" ino=943 ioctlcmd=0x5564 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  374.699935][T16299] input: syz0 as /devices/virtual/input/input27
[  374.717540][   T40] audit: type=1400 audit(2000000275.108:4142): avc:  denied  { read write } for  pid=16300 comm="syz.4.3575" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  374.725212][   T40] audit: type=1400 audit(2000000275.108:4143): avc:  denied  { open } for  pid=16300 comm="syz.4.3575" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  374.733254][   T40] audit: type=1400 audit(2000000275.108:4144): avc:  denied  { read } for  pid=5326 comm="acpid" name="event4" dev="devtmpfs" ino=3363 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  374.750792][T16301] FAULT_INJECTION: forcing a failure.
[  374.750792][T16301] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  374.759911][T16301] CPU: 0 UID: 0 PID: 16301 Comm: syz.4.3575 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  374.759939][T16301] Tainted: [L]=SOFTLOCKUP
[  374.759945][T16301] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  374.759956][T16301] Call Trace:
[  374.759962][T16301]  <TASK>
[  374.759969][T16301]  dump_stack_lvl+0x100/0x190
[  374.760001][T16301]  should_fail_ex.cold+0x5/0xa
[  374.760019][T16301]  ? prepare_alloc_pages+0x16d/0x5f0
[  374.760040][T16301]  should_fail_alloc_page+0xeb/0x140
[  374.760058][T16301]  prepare_alloc_pages+0x1f0/0x5f0
[  374.760101][T16301]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  374.760127][T16301]  ? ima_match_policy+0x871/0x2340
[  374.760147][T16301]  ? __lock_acquire+0x4a5/0x2630
[  374.760173][T16301]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  374.760212][T16301]  ? lock_acquire+0x1cf/0x380
[  374.760229][T16301]  ? find_held_lock+0x2b/0x80
[  374.760250][T16301]  ? page_table_check_set+0x49a/0xa10
[  374.760277][T16301]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  374.760308][T16301]  ? policy_nodemask+0xed/0x4f0
[  374.760329][T16301]  alloc_pages_mpol+0x1fb/0x550
[  374.760347][T16301]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  374.760372][T16301]  folio_alloc_mpol_noprof+0x36/0x340
[  374.760395][T16301]  vma_alloc_folio_noprof+0xed/0x1d0
[  374.760415][T16301]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  374.760442][T16301]  do_anonymous_page+0xb3a/0x1fb0
[  374.760472][T16301]  __handle_mm_fault+0x1d42/0x2b60
[  374.760502][T16301]  ? __pfx___handle_mm_fault+0x10/0x10
[  374.760525][T16301]  ? pte_offset_map_lock+0x174/0x320
[  374.760552][T16301]  ? find_held_lock+0x2b/0x80
[  374.760582][T16301]  ? follow_page_pte+0x5b3/0x1400
[  374.760606][T16301]  handle_mm_fault+0x36d/0xa20
[  374.760634][T16301]  __get_user_pages+0xf9c/0x34d0
[  374.760662][T16301]  ? __pfx___get_user_pages+0x10/0x10
[  374.760688][T16301]  populate_vma_page_range+0x267/0x3f0
[  374.760709][T16301]  ? __pfx_populate_vma_page_range+0x10/0x10
[  374.760728][T16301]  ? __pfx_find_vma_intersection+0x10/0x10
[  374.760747][T16301]  ? __pfx_apply_vma_lock_flags+0x10/0x10
[  374.760775][T16301]  __mm_populate+0x107/0x3a0
[  374.760795][T16301]  ? __pfx___mm_populate+0x10/0x10
[  374.760817][T16301]  ? up_write+0x290/0x4f0
[  374.760839][T16301]  do_mlock+0x3f0/0x7f0
[  374.760863][T16301]  ? __fget_files+0x21f/0x3d0
[  374.760883][T16301]  ? __pfx_do_mlock+0x10/0x10
[  374.760908][T16301]  ? fput+0x79/0x100
[  374.760928][T16301]  ? ksys_write+0x1ac/0x250
[  374.760953][T16301]  ? __pfx_ksys_write+0x10/0x10
[  374.760986][T16301]  __x64_sys_mlock+0x59/0x80
[  374.761010][T16301]  do_syscall_64+0x106/0xf80
[  374.761032][T16301]  ? clear_bhb_loop+0x40/0x90
[  374.761053][T16301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.761071][T16301] RIP: 0033:0x7f9fc4b9c799
[  374.761086][T16301] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  374.761109][T16301] RSP: 002b:00007f9fc59fb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  374.761127][T16301] RAX: ffffffffffffffda RBX: 00007f9fc4e15fa0 RCX: 00007f9fc4b9c799
[  374.761138][T16301] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[  374.761149][T16301] RBP: 00007f9fc59fb090 R08: 0000000000000000 R09: 0000000000000000
[  374.761159][T16301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  374.761169][T16301] R13: 00007f9fc4e16038 R14: 00007f9fc4e15fa0 R15: 00007ffe6f659338
[  374.761194][T16301]  </TASK>
[  374.781857][T16303] binder_alloc: 16302: binder_alloc_buf, no vma
[  374.883178][T16309] binder: BINDER_SET_CONTEXT_MGR already set
[  374.926472][T16309] binder: 16308:16309 ioctl 4018620d 200000000040 returned -16
[  374.992401][T16317] __nla_validate_parse: 3 callbacks suppressed
[  374.992419][T16317] netlink: 180 bytes leftover after parsing attributes in process `syz.5.3583'.
[  375.010187][T16319] IPVS: set_ctl: invalid protocol: 43 255.255.255.255:20004
[  375.011887][T16317] netlink: 180 bytes leftover after parsing attributes in process `syz.5.3583'.
[  375.019239][T16319] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=16319 comm=syz.1.3584
[  375.023304][T16313] FAULT_INJECTION: forcing a failure.
[  375.023304][T16313] name failslab, interval 1, probability 0, space 0, times 0
[  375.029909][T16313] CPU: 3 UID: 0 PID: 16313 Comm: syz.2.3581 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  375.029935][T16313] Tainted: [L]=SOFTLOCKUP
[  375.029942][T16313] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  375.029952][T16313] Call Trace:
[  375.029959][T16313]  <TASK>
[  375.029989][T16313]  dump_stack_lvl+0x100/0x190
[  375.030023][T16313]  should_fail_ex.cold+0x5/0xa
[  375.030046][T16313]  should_failslab+0xc2/0x120
[  375.030065][T16313]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  375.030089][T16313]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  375.030123][T16313]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  375.030157][T16313]  mmu_topup_memory_caches+0x25/0x170
[  375.030178][T16313]  kvm_mmu_load+0xd6/0x23e0
[  375.030201][T16313]  ? kvm_lapic_sync_to_vapic+0x208/0x6d0
[  375.030228][T16313]  ? __pfx_kvm_mmu_load+0x10/0x10
[  375.030249][T16313]  ? vmx_update_cr8_intercept+0x21e/0x370
[  375.030275][T16313]  vcpu_run+0x39f4/0x5ca0
[  375.030313][T16313]  ? __pfx_vcpu_run+0x10/0x10
[  375.030343][T16313]  ? rcu_is_watching+0x12/0xc0
[  375.030368][T16313]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  375.030388][T16313]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  375.030417][T16313]  kvm_vcpu_ioctl+0x730/0x1730
[  375.030445][T16313]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  375.030472][T16313]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  375.030498][T16313]  ? do_vfs_ioctl+0x226/0x13e0
[  375.030526][T16313]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  375.030551][T16313]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  375.030586][T16313]  ? __fget_files+0x215/0x3d0
[  375.030603][T16313]  ? hook_file_ioctl_common+0x146/0x410
[  375.030638][T16313]  ? selinux_file_ioctl+0x139/0x290
[  375.030660][T16313]  ? selinux_file_ioctl+0xb4/0x290
[  375.030685][T16313]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  375.030717][T16313]  __x64_sys_ioctl+0x18e/0x210
[  375.030744][T16313]  do_syscall_64+0x106/0xf80
[  375.030767][T16313]  ? clear_bhb_loop+0x40/0x90
[  375.030789][T16313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.030806][T16313] RIP: 0033:0x7f4595b9c799
[  375.030822][T16313] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  375.030838][T16313] RSP: 002b:00007f4596a91028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  375.030855][T16313] RAX: ffffffffffffffda RBX: 00007f4595e15fa0 RCX: 00007f4595b9c799
[  375.030866][T16313] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  375.030876][T16313] RBP: 00007f4596a91090 R08: 0000000000000000 R09: 0000000000000000
[  375.030887][T16313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  375.030897][T16313] R13: 00007f4595e16038 R14: 00007f4595e15fa0 R15: 00007fff9186e4e8
[  375.030922][T16313]  </TASK>
[  375.204723][T16332] FAULT_INJECTION: forcing a failure.
[  375.204723][T16332] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  375.212075][T16332] CPU: 0 UID: 0 PID: 16332 Comm: syz.5.3587 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  375.212103][T16332] Tainted: [L]=SOFTLOCKUP
[  375.212110][T16332] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  375.212120][T16332] Call Trace:
[  375.212126][T16332]  <TASK>
[  375.212134][T16332]  dump_stack_lvl+0x100/0x190
[  375.212167][T16332]  should_fail_ex.cold+0x5/0xa
[  375.212186][T16332]  ? prepare_alloc_pages+0x16d/0x5f0
[  375.212207][T16332]  should_fail_alloc_page+0xeb/0x140
[  375.212227][T16332]  prepare_alloc_pages+0x1f0/0x5f0
[  375.212250][T16332]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  375.212275][T16332]  ? stack_trace_consume_entry+0x131/0x170
[  375.212299][T16332]  ? stack_depot_save_flags+0x27/0x9d0
[  375.212329][T16332]  ? kasan_save_stack+0x3f/0x50
[  375.212353][T16332]  ? kasan_save_stack+0x30/0x50
[  375.212376][T16332]  ? kasan_save_track+0x14/0x30
[  375.212400][T16332]  ? __kasan_kmalloc+0xaa/0xb0
[  375.212423][T16332]  ? __kvmalloc_node_noprof+0x360/0xa00
[  375.212447][T16332]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  375.212474][T16332]  ? mmu_topup_memory_caches+0xbc/0x170
[  375.212491][T16332]  ? kvm_mmu_load+0xd6/0x23e0
[  375.212507][T16332]  ? vcpu_run+0x39f4/0x5ca0
[  375.212525][T16332]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  375.212545][T16332]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  375.212569][T16332]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.212605][T16332]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  375.212632][T16332]  ? policy_nodemask+0xed/0x4f0
[  375.212652][T16332]  alloc_pages_mpol+0x1fb/0x550
[  375.212671][T16332]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  375.212689][T16332]  ? __kasan_kmalloc+0xaa/0xb0
[  375.212719][T16332]  alloc_pages_noprof+0x131/0x390
[  375.212739][T16332]  get_free_pages_noprof+0x10/0xb0
[  375.212766][T16332]  __kvm_mmu_topup_memory_cache+0x278/0x5f0
[  375.212797][T16332]  mmu_topup_memory_caches+0xbc/0x170
[  375.212814][T16332]  kvm_mmu_load+0xd6/0x23e0
[  375.212832][T16332]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  375.212855][T16332]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  375.212880][T16332]  ? kvm_apic_accept_pic_intr+0xdf/0x1b0
[  375.212902][T16332]  ? __pfx_kvm_mmu_load+0x10/0x10
[  375.212920][T16332]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  375.212949][T16332]  ? kvm_check_and_inject_events+0x961/0x10c0
[  375.212968][T16332]  ? record_steal_time+0x370/0xbe0
[  375.212997][T16332]  vcpu_run+0x39f4/0x5ca0
[  375.213028][T16332]  ? __pfx_vcpu_run+0x10/0x10
[  375.213056][T16332]  ? rcu_is_watching+0x12/0xc0
[  375.213080][T16332]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  375.213101][T16332]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  375.213129][T16332]  kvm_vcpu_ioctl+0x730/0x1730
[  375.213156][T16332]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  375.213182][T16332]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  375.213207][T16332]  ? do_vfs_ioctl+0x226/0x13e0
[  375.213234][T16332]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  375.213261][T16332]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  375.213295][T16332]  ? __fget_files+0x215/0x3d0
[  375.213318][T16332]  ? hook_file_ioctl_common+0x146/0x410
[  375.213353][T16332]  ? selinux_file_ioctl+0x139/0x290
[  375.213375][T16332]  ? selinux_file_ioctl+0xb4/0x290
[  375.213400][T16332]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  375.213426][T16332]  __x64_sys_ioctl+0x18e/0x210
[  375.213454][T16332]  do_syscall_64+0x106/0xf80
[  375.213477][T16332]  ? clear_bhb_loop+0x40/0x90
[  375.213499][T16332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.213518][T16332] RIP: 0033:0x7fa41499c799
[  375.213533][T16332] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  375.213550][T16332] RSP: 002b:00007fa415939028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  375.213568][T16332] RAX: ffffffffffffffda RBX: 00007fa414c15fa0 RCX: 00007fa41499c799
[  375.213580][T16332] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  375.213590][T16332] RBP: 00007fa415939090 R08: 0000000000000000 R09: 0000000000000000
[  375.213601][T16332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  375.213612][T16332] R13: 00007fa414c16038 R14: 00007fa414c15fa0 R15: 00007ffc6ec06d18
[  375.213637][T16332]  </TASK>
[  375.567839][T16350] fuse: Bad value for 'fd'
[  375.764692][ T2298] usb 7-1: new high-speed USB device number 55 using dummy_hcd
[  375.924927][ T2298] usb 7-1: Using ep0 maxpacket: 8
[  375.927885][ T2298] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  375.931061][ T2298] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  375.934109][ T2298] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  375.937506][ T2298] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  375.941700][ T2298] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  375.944666][ T2298] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.985979][T16358] --map-set only usable from mangle table
[  376.171919][ T2298] usb 7-1: GET_CAPABILITIES returned 0
[  376.173781][ T2298] usbtmc 7-1:16.0: can't read capabilities
[  376.391117][ T9178] usb 7-1: USB disconnect, device number 55
[  376.675894][T16371] bond3: entered promiscuous mode
[  376.678169][T16371] bond3: entered allmulticast mode
[  376.681002][T16371] 8021q: adding VLAN 0 to HW filter on device bond3
[  376.699321][T16379] FAULT_INJECTION: forcing a failure.
[  376.699321][T16379] name failslab, interval 1, probability 0, space 0, times 0
[  376.704874][T16379] CPU: 3 UID: 0 PID: 16379 Comm: syz.1.3606 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  376.704901][T16379] Tainted: [L]=SOFTLOCKUP
[  376.704907][T16379] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  376.704917][T16379] Call Trace:
[  376.704924][T16379]  <TASK>
[  376.704931][T16379]  dump_stack_lvl+0x100/0x190
[  376.704963][T16379]  should_fail_ex.cold+0x5/0xa
[  376.704987][T16379]  should_failslab+0xc2/0x120
[  376.705006][T16379]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  376.705032][T16379]  ? __alloc_skb+0x140/0x710
[  376.705058][T16379]  __alloc_skb+0x140/0x710
[  376.705077][T16379]  ? __alloc_skb+0x5b7/0x710
[  376.705096][T16379]  ? __pfx___alloc_skb+0x10/0x10
[  376.705124][T16379]  netlink_alloc_large_skb+0x69/0x150
[  376.705151][T16379]  netlink_sendmsg+0x680/0xda0
[  376.705181][T16379]  ? __pfx_netlink_sendmsg+0x10/0x10
[  376.705204][T16379]  ? PageHuge+0x170/0x180
[  376.705237][T16379]  ____sys_sendmsg+0x9e1/0xb70
[  376.705280][T16379]  ? __pfx_netlink_sendmsg+0x10/0x10
[  376.705307][T16379]  ? __pfx_____sys_sendmsg+0x10/0x10
[  376.705345][T16379]  ___sys_sendmsg+0x190/0x1e0
[  376.705389][T16379]  ? __pfx____sys_sendmsg+0x10/0x10
[  376.705448][T16379]  __sys_sendmsg+0x170/0x220
[  376.705475][T16379]  ? __pfx___sys_sendmsg+0x10/0x10
[  376.705511][T16379]  do_syscall_64+0x106/0xf80
[  376.705532][T16379]  ? clear_bhb_loop+0x40/0x90
[  376.705552][T16379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.705569][T16379] RIP: 0033:0x7fa58359c799
[  376.705583][T16379] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  376.705600][T16379] RSP: 002b:00007fa5844bd028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  376.705617][T16379] RAX: ffffffffffffffda RBX: 00007fa583815fa0 RCX: 00007fa58359c799
[  376.705628][T16379] RDX: 0000000004000080 RSI: 0000200000000300 RDI: 0000000000000003
[  376.705639][T16379] RBP: 00007fa5844bd090 R08: 0000000000000000 R09: 0000000000000000
[  376.705649][T16379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  376.705659][T16379] R13: 00007fa583816038 R14: 00007fa583815fa0 R15: 00007fff01ec13b8
[  376.705683][T16379]  </TASK>
[  376.755844][T16383] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3608'.
[  376.833352][T16381] FAULT_INJECTION: forcing a failure.
[  376.833352][T16381] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  376.837846][T16381] CPU: 2 UID: 0 PID: 16381 Comm: syz.4.3607 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  376.837865][T16381] Tainted: [L]=SOFTLOCKUP
[  376.837869][T16381] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  376.837876][T16381] Call Trace:
[  376.837880][T16381]  <TASK>
[  376.837884][T16381]  dump_stack_lvl+0x100/0x190
[  376.837906][T16381]  should_fail_ex.cold+0x5/0xa
[  376.837919][T16381]  ? prepare_alloc_pages+0x16d/0x5f0
[  376.837933][T16381]  should_fail_alloc_page+0xeb/0x140
[  376.837945][T16381]  prepare_alloc_pages+0x1f0/0x5f0
[  376.837985][T16381]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  376.838008][T16381]  ? stack_trace_consume_entry+0x131/0x170
[  376.838025][T16381]  ? stack_depot_save_flags+0x27/0x9d0
[  376.838036][T16381]  ? stack_depot_save_flags+0x27/0x9d0
[  376.838050][T16381]  ? kasan_save_stack+0x3f/0x50
[  376.838066][T16381]  ? kasan_save_stack+0x30/0x50
[  376.838081][T16381]  ? kasan_save_track+0x14/0x30
[  376.838097][T16381]  ? __kasan_kmalloc+0xaa/0xb0
[  376.838112][T16381]  ? __kvmalloc_node_noprof+0x360/0xa00
[  376.838128][T16381]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  376.838145][T16381]  ? mmu_topup_memory_caches+0xbc/0x170
[  376.838157][T16381]  ? kvm_mmu_load+0xd6/0x23e0
[  376.838167][T16381]  ? vcpu_run+0x39f4/0x5ca0
[  376.838178][T16381]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  376.838192][T16381]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  376.838208][T16381]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.838229][T16381]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  376.838246][T16381]  ? policy_nodemask+0xed/0x4f0
[  376.838259][T16381]  alloc_pages_mpol+0x1fb/0x550
[  376.838271][T16381]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  376.838282][T16381]  ? __kasan_kmalloc+0xaa/0xb0
[  376.838301][T16381]  alloc_pages_noprof+0x131/0x390
[  376.838313][T16381]  get_free_pages_noprof+0x10/0xb0
[  376.838331][T16381]  __kvm_mmu_topup_memory_cache+0x278/0x5f0
[  376.838353][T16381]  mmu_topup_memory_caches+0xbc/0x170
[  376.838366][T16381]  kvm_mmu_load+0xd6/0x23e0
[  376.838377][T16381]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  376.838392][T16381]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  376.838410][T16381]  ? __pfx_kvm_mmu_load+0x10/0x10
[  376.838420][T16381]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  376.838438][T16381]  ? kvm_check_and_inject_events+0x961/0x10c0
[  376.838454][T16381]  vcpu_run+0x39f4/0x5ca0
[  376.838477][T16381]  ? __pfx_vcpu_run+0x10/0x10
[  376.838494][T16381]  ? rcu_is_watching+0x12/0xc0
[  376.838511][T16381]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  376.838524][T16381]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  376.838541][T16381]  kvm_vcpu_ioctl+0x730/0x1730
[  376.838559][T16381]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  376.838575][T16381]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  376.838592][T16381]  ? do_vfs_ioctl+0x226/0x13e0
[  376.838609][T16381]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  376.838626][T16381]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  376.838647][T16381]  ? __fget_files+0x215/0x3d0
[  376.838658][T16381]  ? hook_file_ioctl_common+0x146/0x410
[  376.838680][T16381]  ? selinux_file_ioctl+0x139/0x290
[  376.838695][T16381]  ? selinux_file_ioctl+0xb4/0x290
[  376.838711][T16381]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  376.838728][T16381]  __x64_sys_ioctl+0x18e/0x210
[  376.838746][T16381]  do_syscall_64+0x106/0xf80
[  376.838761][T16381]  ? clear_bhb_loop+0x40/0x90
[  376.838775][T16381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.838786][T16381] RIP: 0033:0x7f9fc4b9c799
[  376.838796][T16381] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  376.838807][T16381] RSP: 002b:00007f9fc59fb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  376.838819][T16381] RAX: ffffffffffffffda RBX: 00007f9fc4e15fa0 RCX: 00007f9fc4b9c799
[  376.838826][T16381] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  376.838832][T16381] RBP: 00007f9fc59fb090 R08: 0000000000000000 R09: 0000000000000000
[  376.838839][T16381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  376.838845][T16381] R13: 00007f9fc4e16038 R14: 00007f9fc4e15fa0 R15: 00007ffe6f659338
[  376.838860][T16381]  </TASK>
[  376.898088][   T34] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  376.909287][ T5933] Bluetooth: hci3: command 0x0406 tx timeout
[  376.919500][   T34] Bluetooth: hci3: Error when powering off device on rfkill (-110)
[  376.960361][T16390] FAULT_INJECTION: forcing a failure.
[  376.960361][T16390] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  376.989365][T16393] syzkaller0: entered promiscuous mode
[  376.994530][T16390] CPU: 3 UID: 0 PID: 16390 Comm: syz.5.3611 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  376.994550][T16390] Tainted: [L]=SOFTLOCKUP
[  376.994554][T16390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  376.994561][T16390] Call Trace:
[  376.994565][T16390]  <TASK>
[  376.994570][T16390]  dump_stack_lvl+0x100/0x190
[  376.994592][T16390]  should_fail_ex.cold+0x5/0xa
[  376.994605][T16390]  ? prepare_alloc_pages+0x16d/0x5f0
[  376.994619][T16390]  should_fail_alloc_page+0xeb/0x140
[  376.994631][T16390]  prepare_alloc_pages+0x1f0/0x5f0
[  376.994645][T16390]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  376.994662][T16390]  ? do_syscall_64+0x81/0xf80
[  376.994684][T16390]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  376.994707][T16390]  ? rcu_is_watching+0x12/0xc0
[  376.994721][T16390]  ? trace_kmalloc+0x101/0x130
[  376.994731][T16390]  ? __kasan_kmalloc+0xaa/0xb0
[  376.994748][T16390]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  376.994764][T16390]  ? policy_nodemask+0xed/0x4f0
[  376.994776][T16390]  alloc_pages_mpol+0x1fb/0x550
[  376.994788][T16390]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  376.994799][T16390]  ? __alloc_skb+0x5b7/0x710
[  376.994812][T16390]  ? __pfx___alloc_skb+0x10/0x10
[  376.994827][T16390]  alloc_pages_noprof+0x131/0x390
[  376.994838][T16390]  alloc_skb_with_frags+0x500/0x810
[  376.994858][T16390]  sock_alloc_send_pskb+0x801/0x980
[  376.994871][T16390]  ? _copy_from_iter+0x270/0x1690
[  376.994885][T16390]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  376.994897][T16390]  ? _parse_integer_limit+0x17f/0x1d0
[  376.994914][T16390]  ? _kstrtoull+0x13c/0x1f0
[  376.994926][T16390]  ? iov_iter_advance+0xac/0x6d0
[  376.994957][T16390]  ? __pfx__kstrtoull+0x10/0x10
[  376.994974][T16390]  tun_get_user+0x8f7/0x3e10
[  376.994998][T16390]  ? __pfx_tun_get_user+0x10/0x10
[  376.995016][T16390]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  376.995033][T16390]  ? find_held_lock+0x2b/0x80
[  376.995048][T16390]  ? tun_get+0x191/0x370
[  376.995062][T16390]  ? tun_get+0x191/0x370
[  376.995081][T16390]  tun_chr_write_iter+0xdc/0x200
[  376.995099][T16390]  vfs_write+0x6ac/0x1070
[  376.995119][T16390]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  376.995137][T16390]  ? __pfx_vfs_write+0x10/0x10
[  376.995153][T16390]  ? find_held_lock+0x2b/0x80
[  376.995176][T16390]  ksys_write+0x12a/0x250
[  376.995193][T16390]  ? __pfx_ksys_write+0x10/0x10
[  376.995214][T16390]  do_syscall_64+0x106/0xf80
[  376.995228][T16390]  ? clear_bhb_loop+0x40/0x90
[  376.995241][T16390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.995253][T16390] RIP: 0033:0x7fa41499c799
[  376.995282][T16390] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  376.995293][T16390] RSP: 002b:00007fa415939028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  376.995304][T16390] RAX: ffffffffffffffda RBX: 00007fa414c15fa0 RCX: 00007fa41499c799
[  376.995311][T16390] RDX: 000000000000fd6c RSI: 0000200000000280 RDI: 0000000000000003
[  376.995318][T16390] RBP: 00007fa415939090 R08: 0000000000000000 R09: 0000000000000000
[  376.995324][T16390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  376.995331][T16390] R13: 00007fa414c16038 R14: 00007fa414c15fa0 R15: 00007ffc6ec06d18
[  376.995345][T16390]  </TASK>
[  377.133520][T16393] syzkaller0: entered allmulticast mode
[  377.198971][T16396] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3612'.
[  377.202802][T16396] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3612'.
[  377.626243][T16402] bond4: entered promiscuous mode
[  377.628483][T16402] bond4: entered allmulticast mode
[  377.631201][T16402] 8021q: adding VLAN 0 to HW filter on device bond4
[  377.648902][T16405] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3616'.
[  377.687635][T16409] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3618'.
[  377.716306][T16411] FAULT_INJECTION: forcing a failure.
[  377.716306][T16411] name failslab, interval 1, probability 0, space 0, times 0
[  377.720648][T16411] CPU: 0 UID: 0 PID: 16411 Comm: syz.5.3620 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  377.720667][T16411] Tainted: [L]=SOFTLOCKUP
[  377.720671][T16411] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  377.720677][T16411] Call Trace:
[  377.720682][T16411]  <TASK>
[  377.720686][T16411]  dump_stack_lvl+0x100/0x190
[  377.720708][T16411]  should_fail_ex.cold+0x5/0xa
[  377.720722][T16411]  ? tomoyo_realpath_from_path+0xb6/0x690
[  377.720739][T16411]  should_failslab+0xc2/0x120
[  377.720750][T16411]  __kmalloc_noprof+0xe0/0x850
[  377.720769][T16411]  tomoyo_realpath_from_path+0xb6/0x690
[  377.720789][T16411]  tomoyo_path_number_perm+0x23c/0x580
[  377.720802][T16411]  ? tomoyo_path_number_perm+0x22e/0x580
[  377.720817][T16411]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  377.720844][T16411]  ? find_held_lock+0x2b/0x80
[  377.720859][T16411]  ? __fget_files+0x215/0x3d0
[  377.720884][T16411]  ? hook_file_ioctl_common+0x146/0x410
[  377.720908][T16411]  ? __fget_files+0x21f/0x3d0
[  377.720923][T16411]  security_file_ioctl+0xd3/0x230
[  377.720938][T16411]  __x64_sys_ioctl+0xb7/0x210
[  377.720957][T16411]  do_syscall_64+0x106/0xf80
[  377.720971][T16411]  ? clear_bhb_loop+0x40/0x90
[  377.720985][T16411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.720997][T16411] RIP: 0033:0x7fa41499c799
[  377.721008][T16411] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  377.721018][T16411] RSP: 002b:00007fa415939028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  377.721030][T16411] RAX: ffffffffffffffda RBX: 00007fa414c15fa0 RCX: 00007fa41499c799
[  377.721038][T16411] RDX: 00002000000003c0 RSI: 00000000c0386105 RDI: 0000000000000003
[  377.721044][T16411] RBP: 00007fa415939090 R08: 0000000000000000 R09: 0000000000000000
[  377.721051][T16411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  377.721058][T16411] R13: 00007fa414c16038 R14: 00007fa414c15fa0 R15: 00007ffc6ec06d18
[  377.721073][T16411]  </TASK>
[  377.788537][T16411] ERROR: Out of memory at tomoyo_realpath_from_path.
[  377.840214][T16417] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  377.908705][T16421] syzkaller0: entered promiscuous mode
[  377.910598][T16421] syzkaller0: entered allmulticast mode
[  377.946153][ T5933] Bluetooth: hci0: link tx timeout
[  377.948355][ T5933] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa
[  378.015848][T16431] FAULT_INJECTION: forcing a failure.
[  378.015848][T16431] name failslab, interval 1, probability 0, space 0, times 0
[  378.020206][T16431] CPU: 0 UID: 0 PID: 16431 Comm: syz.4.3629 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  378.020237][T16431] Tainted: [L]=SOFTLOCKUP
[  378.020241][T16431] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  378.020248][T16431] Call Trace:
[  378.020253][T16431]  <TASK>
[  378.020262][T16431]  dump_stack_lvl+0x100/0x190
[  378.020285][T16431]  should_fail_ex.cold+0x5/0xa
[  378.020300][T16431]  should_failslab+0xc2/0x120
[  378.020312][T16431]  __kvmalloc_node_noprof+0xfa/0xa00
[  378.020328][T16431]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  378.020346][T16431]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  378.020366][T16431]  __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  378.020388][T16431]  mmu_topup_memory_caches+0xbc/0x170
[  378.020402][T16431]  kvm_mmu_load+0xd6/0x23e0
[  378.020413][T16431]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  378.020429][T16431]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  378.020446][T16431]  ? __pfx_kvm_mmu_load+0x10/0x10
[  378.020457][T16431]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  378.020475][T16431]  ? kvm_check_and_inject_events+0x961/0x10c0
[  378.020488][T16431]  ? record_steal_time+0x370/0xbe0
[  378.020506][T16431]  vcpu_run+0x39f4/0x5ca0
[  378.020538][T16431]  ? __pfx_vcpu_run+0x10/0x10
[  378.020556][T16431]  ? rcu_is_watching+0x12/0xc0
[  378.020573][T16431]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  378.020586][T16431]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  378.020603][T16431]  kvm_vcpu_ioctl+0x730/0x1730
[  378.020622][T16431]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  378.020638][T16431]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  378.020655][T16431]  ? do_vfs_ioctl+0x226/0x13e0
[  378.020672][T16431]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  378.020689][T16431]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  378.020710][T16431]  ? __fget_files+0x215/0x3d0
[  378.020721][T16431]  ? hook_file_ioctl_common+0x146/0x410
[  378.020746][T16431]  ? selinux_file_ioctl+0x139/0x290
[  378.020761][T16431]  ? selinux_file_ioctl+0xb4/0x290
[  378.020777][T16431]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  378.020794][T16431]  __x64_sys_ioctl+0x18e/0x210
[  378.020812][T16431]  do_syscall_64+0x106/0xf80
[  378.020826][T16431]  ? clear_bhb_loop+0x40/0x90
[  378.020841][T16431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.020852][T16431] RIP: 0033:0x7f9fc4b9c799
[  378.020863][T16431] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  378.020873][T16431] RSP: 002b:00007f9fc59fb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  378.020884][T16431] RAX: ffffffffffffffda RBX: 00007f9fc4e15fa0 RCX: 00007f9fc4b9c799
[  378.020891][T16431] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  378.020897][T16431] RBP: 00007f9fc59fb090 R08: 0000000000000000 R09: 0000000000000000
[  378.020904][T16431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  378.020910][T16431] R13: 00007f9fc4e16038 R14: 00007f9fc4e15fa0 R15: 00007ffe6f659338
[  378.020925][T16431]  </TASK>
[  378.138840][T16434] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  378.231870][T16444] syzkaller0: entered promiscuous mode
[  378.233739][T16444] syzkaller0: entered allmulticast mode
[  378.403630][T16455] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3634'.
[  378.431212][T16457] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  378.677446][T16472] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3640'.
[  378.772263][T16476] bond4: entered promiscuous mode
[  378.774122][T16476] bond4: entered allmulticast mode
[  378.776263][T16476] 8021q: adding VLAN 0 to HW filter on device bond4
[  379.134487][T16491] syzkaller0: entered promiscuous mode
[  379.313982][T16493] FAULT_INJECTION: forcing a failure.
[  379.313982][T16493] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  379.319765][T16493] CPU: 2 UID: 0 PID: 16493 Comm: syz.1.3648 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  379.319796][T16493] Tainted: [L]=SOFTLOCKUP
[  379.319801][T16493] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  379.319810][T16493] Call Trace:
[  379.319816][T16493]  <TASK>
[  379.319821][T16493]  dump_stack_lvl+0x100/0x190
[  379.319843][T16493]  should_fail_ex.cold+0x5/0xa
[  379.319856][T16493]  ? prepare_alloc_pages+0x16d/0x5f0
[  379.319870][T16493]  should_fail_alloc_page+0xeb/0x140
[  379.319883][T16493]  prepare_alloc_pages+0x1f0/0x5f0
[  379.319897][T16493]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  379.319914][T16493]  ? stack_trace_consume_entry+0x131/0x170
[  379.319933][T16493]  ? stack_depot_save_flags+0x27/0x9d0
[  379.319945][T16493]  ? stack_depot_save_flags+0x27/0x9d0
[  379.319959][T16493]  ? kasan_save_stack+0x3f/0x50
[  379.319975][T16493]  ? kasan_save_stack+0x30/0x50
[  379.319991][T16493]  ? kasan_save_track+0x14/0x30
[  379.320007][T16493]  ? __kasan_kmalloc+0xaa/0xb0
[  379.320022][T16493]  ? __kvmalloc_node_noprof+0x360/0xa00
[  379.320039][T16493]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  379.320056][T16493]  ? mmu_topup_memory_caches+0xbc/0x170
[  379.320068][T16493]  ? kvm_mmu_load+0xd6/0x23e0
[  379.320078][T16493]  ? vcpu_run+0x39f4/0x5ca0
[  379.320089][T16493]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  379.320103][T16493]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  379.320119][T16493]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.320141][T16493]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  379.320158][T16493]  ? policy_nodemask+0xed/0x4f0
[  379.320170][T16493]  alloc_pages_mpol+0x1fb/0x550
[  379.320182][T16493]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  379.320194][T16493]  ? __kasan_kmalloc+0xaa/0xb0
[  379.320213][T16493]  alloc_pages_noprof+0x131/0x390
[  379.320225][T16493]  get_free_pages_noprof+0x10/0xb0
[  379.320243][T16493]  __kvm_mmu_topup_memory_cache+0x278/0x5f0
[  379.320265][T16493]  mmu_topup_memory_caches+0xbc/0x170
[  379.320278][T16493]  kvm_mmu_load+0xd6/0x23e0
[  379.320289][T16493]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  379.320307][T16493]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  379.320325][T16493]  ? __pfx_kvm_mmu_load+0x10/0x10
[  379.320336][T16493]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  379.320354][T16493]  ? kvm_check_and_inject_events+0x961/0x10c0
[  379.320366][T16493]  ? record_steal_time+0x370/0xbe0
[  379.320384][T16493]  vcpu_run+0x39f4/0x5ca0
[  379.320402][T16493]  ? __pfx_vcpu_run+0x10/0x10
[  379.320420][T16493]  ? rcu_is_watching+0x12/0xc0
[  379.320436][T16493]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  379.320449][T16493]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  379.320466][T16493]  kvm_vcpu_ioctl+0x730/0x1730
[  379.320484][T16493]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  379.320501][T16493]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  379.320517][T16493]  ? do_vfs_ioctl+0x226/0x13e0
[  379.320534][T16493]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  379.320551][T16493]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  379.320572][T16493]  ? __fget_files+0x215/0x3d0
[  379.320583][T16493]  ? hook_file_ioctl_common+0x146/0x410
[  379.320605][T16493]  ? selinux_file_ioctl+0x139/0x290
[  379.320620][T16493]  ? selinux_file_ioctl+0xb4/0x290
[  379.320636][T16493]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  379.320653][T16493]  __x64_sys_ioctl+0x18e/0x210
[  379.320671][T16493]  do_syscall_64+0x106/0xf80
[  379.320686][T16493]  ? clear_bhb_loop+0x40/0x90
[  379.320700][T16493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.320711][T16493] RIP: 0033:0x7fa58359c799
[  379.320721][T16493] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  379.320732][T16493] RSP: 002b:00007fa5844bd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  379.320744][T16493] RAX: ffffffffffffffda RBX: 00007fa583815fa0 RCX: 00007fa58359c799
[  379.320751][T16493] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  379.320757][T16493] RBP: 00007fa5844bd090 R08: 0000000000000000 R09: 0000000000000000
[  379.320763][T16493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  379.320770][T16493] R13: 00007fa583816038 R14: 00007fa583815fa0 R15: 00007fff01ec13b8
[  379.320785][T16493]  </TASK>
[  379.420805][ T9178] ------------[ cut here ]------------
[  379.448992][   T40] kauditd_printk_skb: 58 callbacks suppressed
[  379.449010][   T40] audit: type=1400 audit(2000000279.533:4203): avc:  denied  { sqpoll } for  pid=16495 comm="syz.5.3649" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  379.450775][ T9178] [CRTC:37:crtc-0] vblank wait timed out
[  379.478012][ T9178] WARNING: drivers/gpu/drm/drm_atomic_helper.c:1921 at drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0, CPU#1: kworker/1:8/9178
[  379.483243][ T9178] Modules linked in:
[  379.484978][ T9178] CPU: 1 UID: 0 PID: 9178 Comm: kworker/1:8 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  379.488937][ T9178] Tainted: [L]=SOFTLOCKUP
[  379.490772][ T9178] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  379.494497][ T9178] Workqueue: events drm_fb_helper_damage_work
[  379.496985][ T9178] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  379.499552][ T9178] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 44 01 00 00 48 8d 3d e8 32 41 0b 8b b3 d8 00 00 00 <67> 48 0f b9 3a e9 e1 fc ff ff e8 13 60 65 fc e9 7c fe ff ff e8 99
[  379.505875][ T9178] RSP: 0018:ffffc9000c43f6f0 EFLAGS: 00010246
[  379.508006][ T9178] RAX: 0000000000000000 RBX: ffff888100be0040 RCX: 1ffff1102017c023
[  379.510633][ T9178] RDX: ffff8880282062e0 RSI: 0000000000000025 RDI: ffffffff90e49f40
[  379.513730][ T9178] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  379.516357][ T9178] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  379.519048][ T9178] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88805b055400
[  379.521608][ T9178] FS:  0000000000000000(0000) GS:ffff8880d6442000(0000) knlGS:0000000000000000
[  379.524554][ T9178] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  379.526716][ T9178] CR2: 00007fa58434da08 CR3: 0000000012d0c000 CR4: 0000000000352ef0
[  379.529899][ T9178] Call Trace:
[  379.531031][ T9178]  <TASK>
[  379.532025][ T9178]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  379.534778][ T9178]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  379.536687][ T9178]  ? lockdep_hardirqs_on+0x78/0x100
[  379.538625][ T9178]  ? __pfx_autoremove_wake_function+0x10/0x10
[  379.541111][ T9178]  ? drm_atomic_helper_commit_hw_done+0x36d/0x490
[  379.544240][ T9178]  drm_atomic_helper_commit_tail+0xff/0x130
[  379.546667][ T9178]  commit_tail+0x338/0x430
[  379.548571][ T9178]  drm_atomic_helper_commit+0x303/0x380
[  379.550941][ T9178]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  379.553456][ T9178]  drm_atomic_commit+0x230/0x300
[  379.555535][ T9178]  ? __pfx_drm_atomic_commit+0x10/0x10
[  379.557790][ T9178]  ? __pfx___drm_printfn_info+0x10/0x10
[  379.560628][ T9178]  ? modeset_lock+0x114/0x6d0
[  379.562612][ T9178]  drm_atomic_helper_dirtyfb+0x603/0x790
[  379.564923][ T9178]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  379.567477][ T9178]  ? do_raw_spin_lock+0x128/0x260
[  379.569630][ T9178]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  379.572355][ T9178]  drm_fbdev_shmem_helper_fb_dirty+0x1cc/0x310
[  379.575490][ T9178]  drm_fb_helper_damage_work+0x348/0x640
[  379.577797][ T9178]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  379.580356][ T9178]  ? rcu_is_watching+0x12/0xc0
[  379.582474][ T9178]  process_one_work+0xa23/0x19a0
[  379.584201][ T9178]  ? __pfx_process_one_work+0x10/0x10
[  379.586051][ T9178]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  379.588249][ T9178]  worker_thread+0x5ef/0xe50
[  379.590639][ T9178]  ? __pfx_worker_thread+0x10/0x10
[  379.592830][ T9178]  ? kthread+0x13a/0x450
[  379.594593][ T9178]  ? __pfx_worker_thread+0x10/0x10
[  379.596333][ T9178]  kthread+0x370/0x450
[  379.597676][ T9178]  ? __pfx_kthread+0x10/0x10
[  379.599236][ T9178]  ret_from_fork+0x754/0xd80
[  379.600917][ T9178]  ? __pfx_ret_from_fork+0x10/0x10
[  379.602859][ T9178]  ? __switch_to+0x7b4/0x1120
[  379.604272][ T9178]  ? __pfx_kthread+0x10/0x10
[  379.606670][ T9178]  ret_from_fork_asm+0x1a/0x30
[  379.608660][ T9178]  </TASK>
[  379.609960][ T9178] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  379.612950][ T9178] CPU: 1 UID: 0 PID: 9178 Comm: kworker/1:8 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  379.617375][ T9178] Tainted: [L]=SOFTLOCKUP
[  379.619190][ T9178] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  379.623200][ T9178] Workqueue: events drm_fb_helper_damage_work
[  379.625526][ T9178] Call Trace:
[  379.626926][ T9178]  <TASK>
[  379.628151][ T9178]  dump_stack_lvl+0x100/0x190
[  379.630115][ T9178]  vpanic+0x552/0x970
[  379.631763][ T9178]  ? __pfx_vpanic+0x10/0x10
[  379.633192][ T9178]  panic+0xd1/0xe0
[  379.634679][ T9178]  ? __pfx_panic+0x10/0x10
[  379.636565][ T9178]  ? check_panic_on_warn+0x1f/0x90
[  379.638705][ T9178]  check_panic_on_warn.cold+0x19/0x34
[  379.640925][ T9178]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0
[  379.643879][ T9178]  __warn.cold+0x191/0x348
[  379.645744][ T9178]  __report_bug+0x296/0x3d0
[  379.647649][ T9178]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0
[  379.650621][ T9178]  ? __pfx___report_bug+0x10/0x10
[  379.652685][ T9178]  ? lockdep_hardirqs_on+0x78/0x100
[  379.654863][ T9178]  report_bug_entry+0xe1/0x290
[  379.656682][ T9178]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  379.659059][ T9178]  handle_bug+0x1cd/0x2a0
[  379.660483][ T9178]  exc_invalid_op+0x17/0x50
[  379.661993][ T9178]  asm_exc_invalid_op+0x1a/0x20
[  379.664009][ T9178] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  379.667174][ T9178] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 44 01 00 00 48 8d 3d e8 32 41 0b 8b b3 d8 00 00 00 <67> 48 0f b9 3a e9 e1 fc ff ff e8 13 60 65 fc e9 7c fe ff ff e8 99
[  379.674640][ T9178] RSP: 0018:ffffc9000c43f6f0 EFLAGS: 00010246
[  379.677134][ T9178] RAX: 0000000000000000 RBX: ffff888100be0040 RCX: 1ffff1102017c023
[  379.680395][ T9178] RDX: ffff8880282062e0 RSI: 0000000000000025 RDI: ffffffff90e49f40
[  379.683369][ T9178] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  379.686623][ T9178] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  379.689216][ T9178] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88805b055400
[  379.691814][ T9178]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  379.694633][ T9178]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  379.697036][ T9178]  ? lockdep_hardirqs_on+0x78/0x100
[  379.699238][ T9178]  ? __pfx_autoremove_wake_function+0x10/0x10
[  379.701740][ T9178]  ? drm_atomic_helper_commit_hw_done+0x36d/0x490
[  379.704094][ T9178]  drm_atomic_helper_commit_tail+0xff/0x130
[  379.706051][ T9178]  commit_tail+0x338/0x430
[  379.707577][ T9178]  drm_atomic_helper_commit+0x303/0x380
[  379.709392][ T9178]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  379.711382][ T9178]  drm_atomic_commit+0x230/0x300
[  379.713036][ T9178]  ? __pfx_drm_atomic_commit+0x10/0x10
[  379.714819][ T9178]  ? __pfx___drm_printfn_info+0x10/0x10
[  379.716615][ T9178]  ? modeset_lock+0x114/0x6d0
[  379.718214][ T9178]  drm_atomic_helper_dirtyfb+0x603/0x790
[  379.720038][ T9178]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  379.722173][ T9178]  ? do_raw_spin_lock+0x128/0x260
[  379.723885][ T9178]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  379.725901][ T9178]  drm_fbdev_shmem_helper_fb_dirty+0x1cc/0x310
[  379.727955][ T9178]  drm_fb_helper_damage_work+0x348/0x640
[  379.729821][ T9178]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  379.731841][ T9178]  ? rcu_is_watching+0x12/0xc0
[  379.733437][ T9178]  process_one_work+0xa23/0x19a0
[  379.735074][ T9178]  ? __pfx_process_one_work+0x10/0x10
[  379.736834][ T9178]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  379.738893][ T9178]  worker_thread+0x5ef/0xe50
[  379.740432][ T9178]  ? __pfx_worker_thread+0x10/0x10
[  379.742124][ T9178]  ? kthread+0x13a/0x450
[  379.743518][ T9178]  ? __pfx_worker_thread+0x10/0x10
[  379.745202][ T9178]  kthread+0x370/0x450
[  379.746550][ T9178]  ? __pfx_kthread+0x10/0x10
[  379.748116][ T9178]  ret_from_fork+0x754/0xd80
[  379.749642][ T9178]  ? __pfx_ret_from_fork+0x10/0x10
[  379.751349][ T9178]  ? __switch_to+0x7b4/0x1120
[  379.752904][ T9178]  ? __pfx_kthread+0x10/0x10
[  379.754436][ T9178]  ret_from_fork_asm+0x1a/0x30
[  379.756012][ T9178]  </TASK>
[  379.757782][ T9178] Kernel Offset: disabled
[  379.759257][ T9178] Rebooting in 86400 seconds..