last executing test programs:

1m30.658668604s ago: executing program 1 (id=115):
syz_init_net_socket$netrom(0x6, 0x5, 0x0)

1m30.582926226s ago: executing program 1 (id=116):
r0 = socket$kcm(0x10, 0x2, 0x4)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x4, 0x101180)
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000001c0)={0x0, 0x0, <r2=>0x0, 0x0, 0x0, 0x5, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0]})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f0000000240)={0x0, 0xffffff3d, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000000203030000000000000001000100001f"], 0x1c}, 0x1, 0x0, 0x0, 0x400c010}, 0x0) (async)
sendmsg$NFQNL_MSG_VERDICT(r3, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f00000000c0)=ANY=[@ANYRES8=r1], 0x20}}, 0x24000800)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f0000000280)={<r4=>0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r5, &(0x7f0000000180)=ANY=[@ANYBLOB="7f454c46032400950280bb8a3533b2b7fc4a3e0001010000940200000000000018fcffffffffffff4d02000000000000faffffff000038000100fdff7f000808030000000400000007000000000000000a000000000000000101000000000000060000000000000007000000000000007fffffffffffffffdb55a3354ca6d746db00abec7dc7bab5a753e28de04049bfa713bf4cef51bb53d0ad"], 0x9a)
close(r5) (async)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0) (async)
r6 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r6, &(0x7f0000000100)={&(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev}, 0x1c, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="6000000000000000290000000b0000000008000000000000c910fe8000000000000000000000000000bbc9100000000000000000000000000000000107200000000006000000bb2c0000000000000000000000000000000000000000000000001800000000000000290000000400000000000000000000000801"], 0x180}, 0x0)
ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, &(0x7f00000002c0)={0x0, <r7=>0x0})
ioctl$DRM_IOCTL_MODE_ADDFB2(r1, 0xc06864b8, &(0x7f0000000300)={r2, 0x0, 0x2, 0x4, 0x3, [r4, 0x0, r7], [0x1, 0xfffffffa, 0x7, 0xba], [0x6, 0x4, 0x1, 0x1], [0x1ff, 0x2, 0x57, 0xfffffffffffffbff]}) (async)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="5c00000014006b00c84e21000af32c6e020675f8002500024001080000000000000024eab582949a36c23d3b48dfd8cdbf9367b498fa51f60a64c9f4d4938037e786a6d0bdd70000b6c0504bb9081139343d0189594c952e805fffa1", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x14084)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r8 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000380), 0x400, 0x0) (async)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000600)={&(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000540)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000580)=[<r9=>0x0, 0x0, 0x0], &(0x7f0000000740)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8, 0x4, 0x3, 0x8}) (async)
r10 = syz_open_dev$dri(&(0x7f00000005c0), 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r10, 0xc04064a0, &(0x7f0000000400)={0x0, &(0x7f0000000340)=[<r11=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r10, 0xc06864a1, &(0x7f0000002f00)={0x0, 0x0, r11})
ioctl$DRM_IOCTL_MODE_SETCRTC(r8, 0xc06864a2, &(0x7f0000000680)={&(0x7f0000000640)=[r9, r2], 0x2, r11, r2, 0x3, 0x8, 0x4, 0x1, {0x8cf, 0xdbe8, 0x6, 0x8, 0x4, 0x9, 0x4, 0x5, 0x6, 0x6, 0x3, 0x760f, 0x0, 0x4, "a5c73b4f2d4f1fc5dbccf97df16e9139e3dedff2ea4dfd12ea02cd0dd064a298"}}) (async)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000840)='debugfs\x00', 0x1210040, 0x0) (async)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) (async, rerun: 32)
r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (rerun: 32)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r13, 0xae60)
r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r14, 0x4400ae8f, &(0x7f0000000400)={"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"})

1m30.582710632s ago: executing program 1 (id=117):
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = syz_open_dev$video(&(0x7f0000000040), 0x7f, 0x0)
ioctl$VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x3, 0x40000043, 0x32315852, 0x8, 0x0, 0xfffffff3, 0xc, 0xfeedcafe, 0x2, 0x6, 0x2, 0x1}})
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0xc}, @hci_ev_le_remote_feat_complete={{}, {0x0, 0xc9, "d7adf184a30e7193"}}}}, 0xf)
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = socket(0x10, 0x803, 0x0)
getsockopt$inet6_int(r2, 0x29, 0xb, &(0x7f0000000080), &(0x7f0000000100)=0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r3)
getsockname$packet(r3, &(0x7f0000000180)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=@newlink={0x40, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x50483}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x3}, @IFLA_GRE_LOCAL={0x8, 0x6, @dev={0xac, 0x14, 0x14, 0x26}}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
sendmmsg$inet(r2, &(0x7f0000000880)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @empty, @multicast1}}}], 0x20}}], 0x1, 0x4880)
bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x58)

1m30.476048958s ago: executing program 1 (id=119):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000002, 0x200000005c832, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000000)=0xa0, 0x4)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000))
symlinkat(&(0x7f0000000200)='./file0/file0\x00', r0, &(0x7f0000000240)='./file0\x00')
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000002580)=ANY=[@ANYBLOB='@ \x00\x00', @ANYRES16=r2, @ANYBLOB="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"], 0x2040}}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r1)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0xc21, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000000)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x38}}, 0x10)

1m30.421694832s ago: executing program 1 (id=121):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000040)={'batadv_slave_1\x00', {0x2, 0x0, @loopback=0x7f000000}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$gtp(&(0x7f0000000300), r1)
r3 = socket(0x10, 0x803, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r4, &(0x7f0000000700)=ANY=[@ANYBLOB="00008914ff3565e2590a5aa457160ae7ffffffffff00000000000008004500001c00640000fc2f9078ac141437e0"], 0x2e)
r6 = memfd_secret(0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r6, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, r3, {0xfffffff9}}, './file0\x00'})
sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f00000005c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000580)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="400000001000370400000000fcdbdf2500000000", @ANYRES32=r7, @ANYBLOB="890c04000000000020001280080001006774700014000280050005"], 0x40}}, 0x0)
sendmsg$GTP_CMD_DELPDP(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002cbd7000ffdbdf250100000008000200010000ef08000100", @ANYRES32=r7, @ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0x8004}, 0x4)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r10, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000140)="c744240004000000c74424020c000000c7442406000000000f011c2466b8d6008ed0c4e38d4858000066baf80cb8feff0282ef66bafc0cecc4c2a9dde066ba400066ed670f18c60f00170f236d640f2286", 0x51}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r9, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x891c, &(0x7f0000000540)={'batadv_slave_1\x00', {0x2, 0x0, @empty}})
r11 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r11, 0xc10c5541, &(0x7f00000004c0)={0x8, 0x1f, 0x1})
ioctl$TUNGETSNDBUF(r4, 0x800454d3, &(0x7f0000000100))

1m30.141858533s ago: executing program 1 (id=130):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, 0x0)
r2 = syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r2)
r4 = socket$inet(0x10, 0x4, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, 0x0, 0x0)
readv(r3, 0x0, 0x0)
close(0xffffffffffffffff)
r6 = openat$audio(0xffffffffffffff9c, 0x0, 0xa2442, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000004, 0x5d032, 0xffffffffffffffff, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0xeeef0000, 0x10e000})
close(r3)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$UFFDIO_ZEROPAGE(r6, 0xc020aa04, 0x0)
getpeername(0xffffffffffffffff, 0x0, 0x0)
r8 = syz_open_dev$sndpcmp(0x0, 0x0, 0xa2c65)
arch_prctl$ARCH_SHSTK_LOCK(0x5003, 0x1)
write$dsp(r6, 0x0, 0x0)
write$snddsp(r8, 0x0, 0x0)
syz_emit_ethernet(0x66, 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r8, 0xc0884113, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f000049e000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)

1m30.014575977s ago: executing program 32 (id=130):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, 0x0)
r2 = syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r2)
r4 = socket$inet(0x10, 0x4, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, 0x0, 0x0)
readv(r3, 0x0, 0x0)
close(0xffffffffffffffff)
r6 = openat$audio(0xffffffffffffff9c, 0x0, 0xa2442, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000004, 0x5d032, 0xffffffffffffffff, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0xeeef0000, 0x10e000})
close(r3)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$UFFDIO_ZEROPAGE(r6, 0xc020aa04, 0x0)
getpeername(0xffffffffffffffff, 0x0, 0x0)
r8 = syz_open_dev$sndpcmp(0x0, 0x0, 0xa2c65)
arch_prctl$ARCH_SHSTK_LOCK(0x5003, 0x1)
write$dsp(r6, 0x0, 0x0)
write$snddsp(r8, 0x0, 0x0)
syz_emit_ethernet(0x66, 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r8, 0xc0884113, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f000049e000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)

1m12.002572428s ago: executing program 0 (id=461):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mount(&(0x7f0000000040)=@sr0, &(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)='vfat\x00', 0x81, &(0x7f0000000100)='nfs\x00')
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$9p_virtio(&(0x7f0000000100), &(0x7f0000000140)='./bus\x00', &(0x7f0000000180), 0x102401, &(0x7f0000000280)={'trans=virtio,', {[{@directio}], [{@obj_role={'obj_role', 0x3d, '\x03\x00\x00\x00\x05\x00\x00\x00\x00\x00\x00'}}]}})

1m11.913059137s ago: executing program 0 (id=464):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000300)=0x8)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, r3)
prctl$PR_SET_PTRACER(0x59616d61, r3)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000003c0)={r2, 0xfff9, 0x2, 0x0, 0xe, 0x2}, &(0x7f0000000400)=0x14)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, 0x0) (async)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8) (async)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
prctl$PR_SET_PTRACER(0x59616d61, r3) (async)
prctl$PR_SET_PTRACER(0x59616d61, r3) (async)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000003c0)={r2, 0xfff9, 0x2, 0x0, 0xe, 0x2}, &(0x7f0000000400)=0x14) (async)

1m11.812713134s ago: executing program 0 (id=465):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="cfaa0008b44cc787053b76e293162f008a10f550b6ffed8f713db25422d3b8e65355c1055da0ecf9cda62180f3e20ea2d4fc8d07a7f3a66987739329d8e1caa55a9bb605b252270b974fcc3126e0bf3b9d25e7e727698df63b60f18e5d56b295588e57db13f19c946d3b6ac281cbe8a846016c64c857714b295f8fb46cfd440c384e6a2df4b09acc554d11c438b6", @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007", @ANYBLOB="817019236ecb2daec40df668b63f9260fe77020d5668210a3060d87ff78dd71249203da758de7f342611d9b08d66e2baff8d699ac8ed2d3cdf25eaec49d753c6587b8226ba8d9a520a453c"], 0x6c}}, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000800), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
open(&(0x7f0000000380)='./file0\x00', 0x6ec58fa5834dfb19, 0xdb)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000004}, 0x4)

1m10.941470843s ago: executing program 0 (id=482):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000000), 0x0)
getuid()
ioctl$SIOCAX25ADDUID(0xffffffffffffffff, 0x89e1, 0x0)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0) (async)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) (async)
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f00000001c0)='./file1\x00')
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f00000000c0)='./file1\x00', r2, &(0x7f0000000100)='./file0\x00')
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x40049366, &(0x7f0000000180)) (async)
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x40049366, &(0x7f0000000180))
ioctl$sock_SIOCADDRT(r0, 0x890b, 0x0)
quotactl_fd$Q_SYNC(r0, 0x7fffffffc0000082, 0x0, 0x0) (async)
quotactl_fd$Q_SYNC(r0, 0x7fffffffc0000082, 0x0, 0x0)
ioctl$EVIOCREVOKE(0xffffffffffffffff, 0x40044591, 0x0) (async)
ioctl$EVIOCREVOKE(0xffffffffffffffff, 0x40044591, 0x0)
syz_clone(0x8890a400, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
syz_clone(0x8890a400, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
openat$selinux_user(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000002580)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0xa}, @hci_rp_pin_code_reply={{0xff}, {0x8, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}}}}, 0xd)
bind$l2tp6(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_CAP_X2APIC_API(0xffffffffffffffff, 0x4068aea3, &(0x7f0000002940)={0x81, 0x0, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, @fallback=0x17}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, @fallback=0x17}, 0x94)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80000001b00010000000000fdfffffffc000000000000000000000000000000200100000000000000000000000000004e240000000000010000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000ffffffffffffff7ffcffffffffffffff04000000000000000000000000000000fdffffffffffffff00000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000006fcffff00000000000003000000000000000000000000000c0008"], 0xd8}}, 0x20008004)
socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106) (async)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
recvmsg(r4, &(0x7f0000000b40)={0x0, 0x0, 0x0}, 0x20000004)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'bond0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00'})

1m10.859435492s ago: executing program 0 (id=483):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001440)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x48}}, 0x44000)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000280)={'syztnl0\x00', &(0x7f00000015c0)={'ip_vti0\x00', <r0=>0x0, 0x40, 0x40, 0x1, 0x6, {{0x27, 0x4, 0x0, 0x36, 0x9c, 0x64, 0x0, 0x2, 0x2f, 0x0, @loopback, @multicast2, {[@cipso={0x86, 0x13, 0x2, [{0x6, 0x6, "bb0776da"}, {0x6, 0x7, "1b784daa14"}]}, @timestamp={0x44, 0x24, 0xa6, 0x0, 0x0, [0x1, 0x3, 0x4, 0x4, 0x1, 0x4, 0x80, 0x3]}, @ra={0x94, 0x4}, @timestamp_addr={0x44, 0x4c, 0x2e, 0x1, 0xf, [{@local, 0x8}, {@multicast1, 0x1}, {@empty}, {@broadcast, 0x7}, {@empty, 0x2}, {@private=0xa010100, 0x6}, {@local}, {@empty, 0x6}, {@remote, 0x2}]}]}}}}})
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001180)=[{{&(0x7f0000000040)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000180)="ebfcfa9465807b7ffc4ad1f2b5ae1627d2879b3eb8afd6b649ca6b06223ac414c8a4ff86a82817335a5c9f8b5d46eb13d23ef92f994733cb26d6f26f59310864f39cb5ffc67acf1322d0155fe45c02d3f235a3792a73904110c009a8c79d8b352f3e413bfd9bb14ff760008d66e1c6201b1d2f1ee613e06622e3183f1a3eced0841c8ab600c062f4b85d1da9eed992f2a68d5f0c442ae33b8ac5840327", 0x9d}, {&(0x7f0000000340)="e3df2bd551fe72c6b861655a28e242831eeeadac00dbbf2a2a7daf58b505429f84209a19a2728230f59723a01390d835a416beb9d64d71919c13f0865d5ee4d76609fe08c9b622082fb7599f5e27753db0a5e36fff544565b52d307755cdac1655992488bb40d88337bfd6cabfc13a251741cf30d3b865f3509d632d79110141f35efffb5242d7", 0x87}, {&(0x7f00000000c0)="ec91c310", 0x4}, {&(0x7f0000000100)="f2f058b1daf9ae37a790074c5e1d029976", 0x11}, {&(0x7f00000004c0)="6904034b909909e5c2a176c47de4e6bbd88c59937946f6a5e0a352a1c4a3a8dd9f4a500c4688d9d29931e2d38d63697596a8ca0104333627812c371b69e85201f5136d19143c19706c071cfceb8cf821197c25f9ce61e846979fb881628a13315f900567a136c4b06fbe0140e1d4cdcd2713c79df2beafaa36aa554b632220f6ab4fc54b4e81b14524a414268ebfa2359867dbbd21c33ea44da34691c4", 0x9d}, {&(0x7f0000000240)="7b5600a7fe5aed0da5a605c528f2bf20d33900571957e22ecb1c1f5a5caf20d3494c8cd9b1ef07eaaafc5736b859ce", 0x2f}], 0x6, &(0x7f0000000640)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0xd}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r0, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010102}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xd}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xff}}], 0x68}}, {{0x0, 0x0, &(0x7f00000006c0), 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="640000000000000000000000070000000100862500000002010c4c053a04faf303d1e10b050b84ef8d3a5dfce64fe705083a83ed020155890b41ffffffffac1414aa070b76ac1414bbffffffff891798ac1414aa64010101ffffffffffffffff640101000000000011000000000000000000010000001000000000000000"], 0x80}}, {{&(0x7f0000000780)={0x2, 0x4e21, @multicast1}, 0x10, &(0x7f0000000cc0)=[{&(0x7f00000007c0)="b7a9dcf09a152d74e1fe36eb9e380ccbdd156a58ecef94789d97a72aff4ac0193c05d326e99a0c5591ccb955d111ade64e4a1c97941e797ba2eb92681049780f5bd5a8a6bda872305bce83fe48442b87e57cfe08f730f115bda866dae0bd86ee9bc41049b6efc1ac5f0401138a181e82fbf0b2f1e4ed6e6bb9bdcb6ad15a38e4206c1eb56fc79a9e3028ff5b4b57bfc58c3a4fc9b2416f0f37740794a8960a26fe439f41a61773cf3b11", 0xaa}, {&(0x7f0000000880)="7ce0824a7b4703a2eb15108f11d373477ff854dbcf31cd7198a076bfe2e8d1caa9934b8a2be5c6ddfd469f7ecfc79d875333f2926609cb08a60c11ff73f98ceaa8c85b27a5945d8e3a4fa5aa3194eea9fb1e643c360d192524d56575a20319cbf92f8571cba3d68224f2343b18d6054b9156522abdccceb77a62548ae7fedf8288ee258538aa8e2d60754959ed246caa662d2533f95fb2468ea54c8fae7e203313701a9fec52bb3abc1e88c9dd68b8bf8288370b7bc777d9f2e9a300101b56077fb3941ce20a59b447dde588148bc3b42bdf90ccf9", 0xd5}, {&(0x7f0000000980)="d22df0878b264be1db82d76545fd8f0c363a1520395cd76dbd012254282a63bedb732054f7d79f21c8d0e5f1b15ad681f0ec649fef0c9538b6410b83cca034302dd0050ed3cf650d39e0b6c75b94a21caca6a87f6ede7a4540b41c552e3812105e7518717a1082ea8c8e38ed8669daad13724d6504f275c56e98569684a17aad76d6a1584a40128fe47e0c663e8b865f3e34977afd2020", 0x97}, {&(0x7f0000000a40)="52808dac4ae56949f3c4bd8f8758e3434a62495fbe582f49a44370eaca0a2aaff5b76b45518b28354e81af8b54f7abfe362f43b519a9067c1d785494095c34bd28c37cddecd068310087ffc906f0cc4e654c75d3b4666e6b873ba83a1aa0c798ef99ef09f3f4c19d6eb241695dd562112ddbe891e70c104ecfdc1af4369459eadeac0decbb387f6695e4a438a41b9844e69f52", 0x93}, {&(0x7f0000000b00)="b0f031c9bbd1b85da7b66baa02fb11c6439d4b68a10397ae57383dfc36be85229e9889c3da3ea1c0451e0123e5110469b64ad6d17fca2ad104064057a4f8ea54806dac8c780eb819f4b38d7c8cc710f220e2ad5fe886c7f1a5f0e2d1dd874466c28666b22bbd889188385adc980bfc1effb5f37a62ceeac965b01e7d66548a482c09c7c38c5b17da8cd6d6b06c15676565404817", 0xf3}, {&(0x7f0000000bc0)="73d386d79b4bc8d38bdbcde080159e354f160f3a6c3c5cda3e7e6bf1bf7b6d5f028bba2ef366525f11c29d6c185d051498471e782319448b2ec8c2f66e3987bda38eed1d28447e3754690af65bd7ae14c3028845273a9ad776b25cdd7e5a3a274905738acbffc8267857072f734c5cf827a3cf506266ca0a157d53f141e411d837103cd24eb45bb058a4282660f364b8c28de705374e2455574f8f2015ea251f7d421d834720751e3aa3cc6b102d5637e8d2275a688208b6c6c7a0c2a364172f80e9daa43ed6634900df84829d6c7dbf7d33b174", 0xd4}], 0x6}}, {{&(0x7f0000000d40)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10, &(0x7f0000000f40)=[{&(0x7f0000000d80)="6158dc142a7d81054db67864e8bd447a41d30e45a369c5c35c1a47c27ad8b2a54d0ab2c1420b291c5b3cc67649617d262ac0282d", 0x34}, {&(0x7f0000000dc0)="7678f7c2bc197215e5eedf9b3fc496dd3abca0b138c95ab6612aa8e45df8dc9181c282", 0x23}, {&(0x7f0000000e00)="786d0566590492e85384a4886d95095f89b88ca5e72ba6bfc238b788dc5343ddf2d0d5311264965b072d3706a8eb988fa9578e2e3c524dc475091cc6351b307980058e997bffb2a0cf00d5c257a85071f612db68c951391ad4bbc2edc9353065a51f6c3b0920b9796820c99133dcae9da039b10f48d271d02db9c6ad9aa49c66b6f86a7e751c75d6365584a63ae82a8c9e2bed23a1032c17b671adaa6cf734570abf8b6f78245211e07461e6c675a3def49b79b42b83ae1930be", 0xba}, {&(0x7f0000000ec0)="a1cce45669d0f24f8b283a57f7414f242a3ae35d85128dd4d1a46733eefbfae3802c38d0c82f52e849b9b65328ff0e84f4e0bbce658f47bcca65a575b45ba1102af964d221", 0x45}], 0x4, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"], 0x78}}, {{&(0x7f0000001000)={0x2, 0x4e24, @empty}, 0x10, &(0x7f0000001140)=[{&(0x7f0000001040)="a2418dec2919408efcb97cec6eb216dd143ca219e3fc88a1abe3c2839dc775316abeedf2ebc9595a5405a5d0adfd6b40fa15a07d1b2d77a5ba", 0x39}, {&(0x7f0000001080)="394f904d53861209a33901ea40ceb5c48be08859c6bafebca9fccec24f83e62ad4759497a1942e64bb825be4af47ab5faba70b636b81408a265ab3fb679385190c350a7f0b1114fb3618b26e2b1968df237f0b934fd718a89d6d0c9cf262006502b2e3b40a2cf453de7148ac9da56403c7e823d1f4e3267b0211197412b6a84c634cfccb6329af910f5c359a6414b5a10e8ff52470838e8b865cb7c78b82625495fac9723749e045", 0xa8}], 0x2}}], 0x5, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r3, 0xae03, 0x4a)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="f000000010000100000002000000000000000000000000000000000000000000fe80000000000000000000000000007c4c58f48dc5cf2b69bb0000fff7200000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="64010102000000000000000000000000000004d56c000000fe8000000000000000000000000000aa00000000000000000000000000000000000000000000000000000000000000000300000000000000000000020000000000000000000000000900000000000000000000000000000004000000000000000000004000000000fcffffffffffffff40000000000000000000000000000000000000000a000201e000000000000000"], 0xf0}, 0x1, 0x0, 0x0, 0x801}, 0x4810)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000580)={0x0, 0x18, &(0x7f0000000000)={&(0x7f0000001680)=ANY=[@ANYRES32=r1, @ANYRES32=0x0, @ANYRES8=r5], 0x48}}, 0x0)
sendmmsg$inet(r1, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000940)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5", 0x4)
accept4(r6, 0x0, 0x0, 0x800)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x0)
r7 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r7, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix={0x5, 0x4, 0x34324258, 0x2, 0x6, 0x46, 0x2, 0x3, 0x1, 0x7, 0x0, 0x7}})
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$inet6(0xa, 0x5, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0xfffffffffffffdd6, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="5c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000420000003c00128008000100677470003000028008000200", @ANYRES32=r9], 0x5c}, 0x1, 0xba01}, 0x0)
io_uring_register$IORING_UNREGISTER_EVENTFD(0xffffffffffffffff, 0x5, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0xc)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000006c0)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

1m10.28163667s ago: executing program 0 (id=489):
r0 = syz_usb_connect(0x5, 0x24, &(0x7f0000000000)=ANY=[], 0x0)
syz_open_dev$midi(&(0x7f0000000080), 0x6, 0x60002)
r1 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f00000000c0)={0x80, 0x6, 0x2fe, 0x3ff, 0x0, 0x0, 0x0})
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi_and_pscan_mode={{0x22, 0x3d}, {0x4, [{@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x2, 0x6d, 0xd, "16dfae", 0xfff, 0x59}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x5, 0xb0, 0x9, "aa1791", 0x7a9, 0x40}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x9, 0x81, 0x2, "8d6838", 0x7, 0x1}, {@none, 0x9, 0xe, 0x2, '?W7', 0x1, 0x4}]}}}, 0x40)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
r2 = syz_open_dev$I2C(&(0x7f0000000040), 0x2, 0x402)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001800010600000000000000001c140000fe00c8"], 0x24}}, 0x0)
syz_emit_ethernet(0xda, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd602a1c9900071100b6af48b4000000000000000000000000ff020000000000000000000000000001000004000000000000000000009c90780100000000000000b0575c7b4df2bddabab59df4a56afe54ba6a5d5d0d170fca692c77733846860829accf2af44c0e1aaaaf532417a91cadd9e65f82310f80cf64f46c761191fda0a2503c8ce1b5c603debf9e05d8de03dc3d73abde0d5b3b904310b3bd00975f0a9f6cde9c5018586db672628c1415233979ba3df3d8a8490bce9cafc2ab6acde477"], 0x0)
ioctl$I2C_SMBUS(r2, 0x720, &(0x7f00000001c0)={0x1, 0x10, 0x8, &(0x7f0000000180)={0xf, "7f5a05e1d02652e078f56838adf7231de097546e849a4205586e2ebcf69cf740d3"}})

1m10.170648349s ago: executing program 33 (id=489):
r0 = syz_usb_connect(0x5, 0x24, &(0x7f0000000000)=ANY=[], 0x0)
syz_open_dev$midi(&(0x7f0000000080), 0x6, 0x60002)
r1 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f00000000c0)={0x80, 0x6, 0x2fe, 0x3ff, 0x0, 0x0, 0x0})
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi_and_pscan_mode={{0x22, 0x3d}, {0x4, [{@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x2, 0x6d, 0xd, "16dfae", 0xfff, 0x59}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x5, 0xb0, 0x9, "aa1791", 0x7a9, 0x40}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x9, 0x81, 0x2, "8d6838", 0x7, 0x1}, {@none, 0x9, 0xe, 0x2, '?W7', 0x1, 0x4}]}}}, 0x40)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
r2 = syz_open_dev$I2C(&(0x7f0000000040), 0x2, 0x402)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001800010600000000000000001c140000fe00c8"], 0x24}}, 0x0)
syz_emit_ethernet(0xda, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd602a1c9900071100b6af48b4000000000000000000000000ff020000000000000000000000000001000004000000000000000000009c90780100000000000000b0575c7b4df2bddabab59df4a56afe54ba6a5d5d0d170fca692c77733846860829accf2af44c0e1aaaaf532417a91cadd9e65f82310f80cf64f46c761191fda0a2503c8ce1b5c603debf9e05d8de03dc3d73abde0d5b3b904310b3bd00975f0a9f6cde9c5018586db672628c1415233979ba3df3d8a8490bce9cafc2ab6acde477"], 0x0)
ioctl$I2C_SMBUS(r2, 0x720, &(0x7f00000001c0)={0x1, 0x10, 0x8, &(0x7f0000000180)={0xf, "7f5a05e1d02652e078f56838adf7231de097546e849a4205586e2ebcf69cf740d3"}})

1m1.882779933s ago: executing program 2 (id=618):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3e, &(0x7f00000040c0)=0x5, 0x4)
sendmmsg$inet(r0, &(0x7f0000000c40)=[{{&(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x23, 0x0}}], 0x3284b164842c97f7, 0x8014) (fail_nth: 6)

1m1.751970748s ago: executing program 2 (id=626):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000280)='nv', 0x2)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000000))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0xe, 0xb, &(0x7f00000000c0)=@framed={{0x18, 0x4}, [@printk={@lli, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xb1}}]}, &(0x7f00000005c0)='GPL\x00'}, 0x90)

1m0.86262201s ago: executing program 2 (id=636):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x50, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x585d}, [@IFLA_IFNAME={0x14, 0x3, 'ipvlan1\x00'}, @IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPVLAN_FLAGS={0x6, 0x2, 0x1}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x40440c5}, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000040), 0x201, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11011, r1, 0x2000)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000010000d042dbd7000fcffff1f00000000", @ANYRES32=0x0, @ANYBLOB="46000400000000001cb750dcea5fdfbf4f5c06187c00128009000100626f6e64000000000c000280050015000100000052"], 0x3c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)

1m0.751172283s ago: executing program 2 (id=641):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x28a5291, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ab4000000060a01040000000000000000020000280900010073797a30000000000900020073797a320000000088000480100001800c000100636f756e7465720014000180090001006d6173710000000004000280600001800a0001006c696d6974000000500002800c000140000000000000000808000440000000010c00014000000000000080010c00024000000000000000090800034000000fba0c00024000000000000000000c000140000000000000000714000000110001"], 0xdc}}, 0x0)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="14000000190a0102"], 0x14}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a300000000030000000060a010400000000000000000100000008000b40000000000900010073797a3000000000050007400800000014000000110001"], 0xa4}, 0x1, 0x0, 0x0, 0x2004c899}, 0x0)
recvmmsg(r0, &(0x7f000000c2c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
mkdir(0x0, 0x10)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x3000005, 0x0)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
listen(r2, 0x4)
listen(r2, 0x5)
setxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x1015, 0x1)
umount2(&(0x7f0000000000)='./file0\x00', 0x0)

1m0.660350392s ago: executing program 2 (id=643):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x16, 0x4, &(0x7f00000001c0)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0xc4}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fallocate(r0, 0x74, 0xffffffffffffffff, 0x2)

1m0.522627954s ago: executing program 2 (id=649):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3e, &(0x7f0000000080)=0x5, 0x4)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000c40)=[{{&(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x10, 0x0}}], 0x1, 0x8014)
getpeername$llc(r0, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f00000000c0)=0x10)

1m0.458165177s ago: executing program 34 (id=649):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3e, &(0x7f0000000080)=0x5, 0x4)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000c40)=[{{&(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x10, 0x0}}], 0x1, 0x8014)
getpeername$llc(r0, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f00000000c0)=0x10)

20.401463619s ago: executing program 6 (id=1318):
ioctl$KVM_X86_SET_MSR_FILTER(0xffffffffffffffff, 0x4188aec6, &(0x7f0000002a40)={0x0, [{0x1, 0x0, 0x2, 0x0}, {0x2, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x5, 0x0}, {0x3, 0x10, 0x7049, &(0x7f0000000180)="06aa"}, {0x1, 0x0, 0x34, 0x0}, {0x3, 0x0, 0x2, 0x0}, {0x1, 0x0, 0x1, 0x0}, {0x1, 0x0, 0x4, 0x0}, {0x2, 0x0, 0x5, 0x0}, {0x3, 0x0, 0x8000, 0x0}, {0x3, 0x0, 0x7, 0x0}, {0x1, 0x0, 0x3, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x2, 0xfffffffffffffea0, 0xf19, 0x0}, {0x3, 0x0, 0xffff8040, 0x0}, {0x1, 0x0, 0x6, 0x0}]}) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$BLKZEROOUT(r2, 0x127f, &(0x7f0000000240)={0x2000, 0x1000000})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x58, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000540)={0x2, 0x3, 0x0, 0x3, 0xe, 0x0, 0x700, 0x0, [@sadb_key={0x4, 0x9, 0xa0, 0x0, "53bb467d04f14562c5f463273ef4a720564f485a"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x1000, @private}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x6, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x70}, 0x1, 0x7}, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x1, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r4, 0xc0045005, &(0x7f0000000040)=0xfffffffd) (async)
mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000b, 0x8012, r4, 0x0) (async)
r5 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r5, 0xc0045005, &(0x7f0000001180)=0x2000000)
mmap$dsp(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x12, r5, 0x0) (async)
r6 = socket$alg(0x26, 0x5, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000000140)={0xa, 0x4e26, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0x80000000}, 0x1c)
listen(r7, 0x0) (async)
syz_emit_ethernet(0x4a, &(0x7f00000004c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) (async)
syz_emit_ethernet(0x4a, &(0x7f0000000b80)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "4d0500", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2, 0x0, 0x0, 0x4}}}}}}}, 0x0)
bind$alg(r6, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sm3)\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, 0x0, 0x0) (async)
r8 = accept4(r6, 0x0, 0x0, 0x80800)
sendmsg$IPVS_CMD_FLUSH(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="0401dbdf2511000036000000000000"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0) (async)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r8, 0x84, 0x66, &(0x7f0000000380)={<r9=>0x0}, &(0x7f00000003c0)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r8, 0x84, 0x7b, &(0x7f0000000400)={r9, 0x6}, 0x8)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000000), &(0x7f00000001c0)=0x8)

20.14101051s ago: executing program 6 (id=1319):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x1}}, './file0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000240)='rpcgss_context\x00', r3, 0x0, 0xfe9}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCL_SETSEL(r4, 0x5452, &(0x7f0000000100))
close_range(r4, 0xffffffffffffffff, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="a4280400000000001400350064756d6d79300000000000000000000008000a00", @ANYRES32=r2, @ANYBLOB="ebcd2e38816e1290e44a1bb0945a3500a948bbfbd33d7765f5d7f4b9932a585d93fa5ecd5efd9eec2474"], 0x3c}}, 0x8000)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000680)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014020d000a00000000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d00d00000000000000bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

20.020531377s ago: executing program 6 (id=1320):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3a0, 0x170, 0xc8, 0x8, 0x170, 0x5803, 0x2d0, 0x2e8, 0x2e8, 0x2d0, 0x2e8, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast1, [0x0, 0xff], [], 'lo\x00', 'geneve1\x00', {}, {}, 0x0, 0x0, 0x0, 0x55}, 0x0, 0x108, 0x170, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@connbytes={{0x38}, {[{0x14}, {0xc000400000000001}], 0x1, 0x2}}, @common=@hl={{0x28}, {0x2, 0x5}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x12, 0x6, 0x8, 0x401, 'pptp\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x1}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x10, 0x0, 0x7, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x400)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
lsetxattr$trusted_overlay_nlink(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540), &(0x7f0000000580)={'U+', 0x7}, 0x16, 0x2)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e23, 0x2, @rand_addr=' \x01\x00', 0xffffffff}, 0x1c)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x24, &(0x7f0000000000)=0x7e, 0x4)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x3c, 0x0, 0x1, 0x201, 0x0, 0x0, {0x5, 0x0, 0x5}, [@CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x7}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x5}, @CTA_HELP={0x10, 0x5, 0x0, 0x1, {0x9, 0x1, 'syz0\x00'}}]}, 0x3c}}, 0x4044090)

20.020279407s ago: executing program 6 (id=1321):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e21, @empty}, 0x10)
sendto$inet(r0, &(0x7f00000026c0)='?', 0xd0b9, 0x0, 0x0, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
listen(r1, 0x3)

19.092105097s ago: executing program 6 (id=1330):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000080)={0x8})
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x1002, 0x0, {0xa, 0x0, 0x1000000, @private2}}}, 0x32)
prlimit64(0x0, 0xb, &(0x7f0000000000), 0x0)
r3 = gettid()
rt_sigqueueinfo(r3, 0x21, &(0x7f00000002c0))
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x180204}], 0x1)

18.892059479s ago: executing program 6 (id=1336):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x5}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x9c}}, 0x0)

3.353508684s ago: executing program 35 (id=1336):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x5}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x9c}}, 0x0)

1.952450221s ago: executing program 4 (id=1537):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000140)={0x10000, 0x0, 0x2a}, 0x18)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', &(0x7f0000000140)={0x474082, 0x5c, 0x8}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000600), r0)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYRESDEC=r0, @ANYRES64=r1, @ANYBLOB="010000000000001f0000540000000e0001006e657464657673696d0000000f0002"], 0x34}}, 0x0)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="0100002000000000000054000000"], 0x14}}, 0x0)

1.840681749s ago: executing program 4 (id=1538):
r0 = socket(0x10, 0x3, 0x0)
pipe(&(0x7f0000000040))
r1 = syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x88c02)
syz_usb_disconnect(r1)
write(r0, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)

622.42766ms ago: executing program 3 (id=1553):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0xf)
ioctl$KVM_GET_DIRTY_LOG(r0, 0x4010ae42, &(0x7f00000000c0)={0x2710, 0x0, &(0x7f0000ffd000/0x2000)=nil})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) (async)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
socket(0x27, 0x1, 0xffffffff) (async)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_skbprio={{0xc}, {0x8, 0x2, 0x2}}]}, 0x38}, 0x1, 0x0, 0x0, 0x880}, 0x24040884) (async)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r5, {0x6}, {0xffff, 0xffff}, {0xc, 0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x0) (async)
sendmsg$nl_route(r2, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=@dellink={0x28, 0x11, 0x0, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r5, 0x4000, 0x21080}, [@IFLA_CARRIER={0x5, 0x21, 0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x5ffae158f4bf4c26}, 0x40001)

563.254786ms ago: executing program 7 (id=1533):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_STATS_FD_cpu(r2, 0xaece)
close_range(r0, r2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_GET_STATS_FD_cpu(r2, 0xaece) (async)
close_range(r0, r2, 0x0) (async)

433.320086ms ago: executing program 4 (id=1554):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000700)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x2, 0xf}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x9f, 0x8}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850)
sendmsg$nl_route_sched(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@newtfilter={0x48, 0x2c, 0xd3f, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r2, {0xfff3, 0xfff6}, {}, {0xb, 0xfff2}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_MPLS_TTL={0x5, 0x43, 0x30}, @TCA_FLOWER_KEY_ETH_DST={0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x22}}]}}]}, 0x48}, 0x1, 0x0, 0x7300000000000000, 0x4}, 0x20000800)

433.075411ms ago: executing program 3 (id=1555):
r0 = socket$kcm(0x10, 0x2, 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x16)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$SNAPSHOT_FREE(0xffffffffffffffff, 0x3305)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
ioctl$UFFDIO_WRITEPROTECT(r1, 0xc018aa06, &(0x7f0000000140)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x6000001, 0x3032, 0xffffffffffffffff, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="d8000000180081054e81f782db44b904021d005c06007c09e8fe55a10a0015400600142603600e1208000b0000000401a8001600a400014009000200036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360d070100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SYS_GET(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)=ANY=[@ANYBLOB="18000000061401"], 0x18}}, 0x0)

432.236025ms ago: executing program 4 (id=1556):
r0 = syz_io_uring_setup(0x44cd, &(0x7f00000004c0)={0x0, 0x5331, 0x10100, 0x1000006, 0xfffefffe}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140))
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
getsockopt$inet6_tcp_buf(r2, 0x6, 0x11, &(0x7f0000000040)=""/30, &(0x7f00000001c0)=0x1e)
r3 = syz_io_uring_setup(0x8bd, &(0x7f0000000240)={0x0, 0x3a6e, 0x8000, 0x3, 0x3d4, 0x0, r2}, &(0x7f00000002c0), &(0x7f0000000300)=<r4=>0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x581, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x4d014}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_DOWNDELAY={0x8, 0x1f, 0x7fffffff}, @IFLA_BOND_ARP_INTERVAL={0x8, 0x7, 0x8}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x20004002}, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000340)=@IORING_OP_FILES_UPDATE={0x14, 0x22, 0x0, 0x0, 0x3, &(0x7f0000000380)=[r3, r0, r5], 0x3, 0x0, 0x1})
io_uring_enter(r0, 0x2d3e, 0xec84, 0x0, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000fc0)=@raw={'raw\x00', 0x3c1, 0x3, 0x3a0, 0x0, 0x111, 0x4b4, 0x1c0, 0xd4feffff, 0x2d0, 0x20a, 0x278, 0x2d0, 0x278, 0x3, 0x0, {[{{@ipv6={@empty, @empty, [0x0, 0xffffff00], [], 'ipvlan0\x00', 'team_slave_0\x00', {}, {}, 0x6, 0xfe}, 0x0, 0x198, 0x1c0, 0x0, {}, [@common=@inet=@tcp={{0x30}, {[], [], 0x0, 0x0, 0x2, 0xe}}, @common=@unspec=@string={{0xc0}, {0x0, 0xfffd, 'bm\x00', "6d93eb04697dfa39de04767f46614613a407abbf4ed2e83a63b484dbb3bf6b2a850e79009e2905d2f98ba19f91f3c9faee6d3686e9bee067f4e77d9ad66238750c4100d7ee97ec7646259d90edece6e9787a97bc956c01754c34c5c9518c46178ed5f9194454980e579c80eca35a58dc47d1d5e4ff6e216c724e88c702448587", 0x28}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@ipv6={@loopback, @mcast2, [], [], 'veth1_to_hsr\x00', 'pim6reg1\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x400)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_SIOCOUTQNSD(r6, 0x894b, &(0x7f0000000840))
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x191280)

431.272316ms ago: executing program 7 (id=1558):
mkdirat(0xffffffffffffff9c, 0x0, 0x1d0)
mount$afs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f00000002c0), 0x5, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
mount$afs(0x0, &(0x7f000009df40)='.\x00', &(0x7f000009df80), 0x14000, &(0x7f000009dfc0)={[{@dyn}]})

370.716417ms ago: executing program 5 (id=1559):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=@getchain={0x24, 0x66, 0x0, 0x0, 0x2000}, 0x24}}, 0x0)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000002c0), 0x2441, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/asound/timers\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000004ec0)=[{&(0x7f0000000180)=""/79, 0x4f}], 0x1, 0xfffffffc, 0x0)
getsockname$packet(r0, &(0x7f0000000400)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newlink={0x50, 0x10, 0x401, 0x0, 0x3, {0x0, 0x0, 0x0, r3}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @private1}, @IFLA_IPTUN_FWMARK={0x8, 0x14, 0x5}]}}}]}, 0x50}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@newlink={0x34, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x100, 0xac}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40001}, 0x20004090)

369.336529ms ago: executing program 4 (id=1560):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCXONC(r0, 0x4b45, 0x3)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000980)=ANY=[@ANYBLOB="440000001a00010028bd7000fedbdf2481808000000000000000000014000100fc020000000000000000000000000000140002"], 0x44}}, 0x884)
r3 = landlock_create_ruleset(&(0x7f0000000080)={0xc97a, 0x1, 0x3}, 0x18, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3000004, 0x3032, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="480000000008010800000000000a00000805000300060000000900010073797a30000000000100000086dd00000400020000000000000000000c00ffffffffffffffffffff0000000fb4283aadea15873ab507d4fafed126b88b6e4190770312cc9057173cfba9807faa7d26cab6553ca6841dcb854cbcd3e4016527e816193940821cc54e7ece0f6962644da927edc36bbb25b724be7604542750083899008aa1"], 0x48}}, 0x80)
landlock_restrict_self(r3, 0x0)
listen(r1, 0xa)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
r6 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25GCAUSEDIAG(r6, 0x89e6, &(0x7f0000000a80)={0xc0})
write$binfmt_script(r5, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
preadv(r5, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r5, r5, &(0x7f0000499000/0x18000)=nil, &(0x7f0000000240)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x2a7, 0x0, 0x0, 0x41100, 0x24, '\x00', 0x0, 0x0, r5, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff}, 0x94)
landlock_restrict_self(r5, 0x4)
listen(r1, 0x0)

361.034722ms ago: executing program 3 (id=1561):
preadv(0xffffffffffffffff, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/216, 0xd8}], 0x1, 0xa3, 0xd)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
r1 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r1, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r1, 0xfffffffd) (async)
ioctl$int_in(r1, 0x5452, &(0x7f0000000340)=0xf) (async)
syz_emit_ethernet(0xca, &(0x7f0000000240)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xbc, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, @dest_unreach={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, {0x28, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @multicast2, @local, {[@noop, @generic={0x0, 0xd, "ee0dd9de36ed4bcc5b4e23"}, @timestamp_prespec={0x44, 0xc, 0x0, 0x3, 0x0, [{@private}]}, @ssrr={0x89, 0xf, 0x0, [@private, @broadcast, @broadcast]}, @timestamp_addr={0x44, 0x4c, 0x0, 0x1, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}}, {@private}, {}, {@local}, {@loopback}, {@private}, {@multicast2}, {@broadcast}, {@broadcast}]}, @timestamp={0x44, 0x14, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0]}]}}}}}}}, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000002c0)={0x3, 0x1, 0x2, 0x3, 0x5, 0x0, 0x1, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2, 0x20}, 0xe) (async, rerun: 64)
syslog(0x2, &(0x7f00000004c0)=""/164, 0xa4) (rerun: 64)
r3 = openat$cgroup_int(r0, &(0x7f00000002c0)='blkio.throttle.write_iops_device\x00', 0x2, 0x0) (async)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0) (async)
r5 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r4, 0x4004af07, &(0x7f0000000240)=r5)
close_range(r4, r4, 0x0) (async)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc) (async)
syz_usb_connect(0x3, 0x24, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000070961c40e90f55dbfb690102c9030902120001000000000904"], 0x0) (async)
r7 = syz_open_dev$I2C(&(0x7f0000000040), 0x2, 0x402)
ioctl$I2C_RDWR(r7, 0x707, &(0x7f0000000080)={&(0x7f0000000000)=[{0x0, 0x2010, 0x70, &(0x7f0000000480)="2474d231f17b5eb95e36fd16302fe85b8b7e9bcd156ff4139f69735ef5e085a54fc814526e6a37fae0aadbfa5004876bb387d307df3a8f74b327386b339c54a7b8e4cdabb9c53db191e84f310c08f951a270e8e92432c97aa07c9bd35e2b23b7189c0e12bb5a097fa4776d566d76f1e8"}], 0x1}) (async)
sendmsg$NFT_BATCH(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000002e0efc247520d20060f0"], 0x54}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) (async)
write$cgroup_subtree(r3, &(0x7f00000000c0)=ANY=[], 0x6a)

359.919657ms ago: executing program 7 (id=1562):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000180)={'dummy0\x00', &(0x7f00000000c0)=@ethtool_perm_addr={0x4b, 0x39, "43720705000000004786b89e6fb2be5c3f000800a69e082547188598b36294ed4e30bcbcd24e148596cd598284cb05fc4ff1224f2d0359e58d"}})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r3, 0x0, 0x8, &(0x7f0000000000)='S', 0x1)
getsockopt$inet_opts(r3, 0x0, 0x9, &(0x7f0000000100)=""/19, &(0x7f0000000080)=0x13)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f0000000380)={0x12800180, 0x0, 0x0, 0x0, {0x16}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x58)

355.418006ms ago: executing program 5 (id=1563):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r1=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000340)={0x5, 0x0, 0x1, 0x4, r1}, &(0x7f0000000380)=0x10)
setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x5, &(0x7f0000000000)={r1, @in6={{0xa, 0x4e23, 0x7, @mcast2, 0x7}}}, 0x84)
r2 = socket(0x10, 0x3, 0x0)
write(r2, &(0x7f0000000200)="240000001a005f0400f9f407000904018020200000000000000000000800010000000000", 0x24)

263.027603ms ago: executing program 7 (id=1564):
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x1f, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18090000000000000000000000000000850000008800000095"], &(0x7f0000000140)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x10}, 0x90)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r3, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xd}}, 0x2}}, 0x2e)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
getsockopt(r2, 0x111, 0x3, 0x0, &(0x7f0000000080))
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$PPPIOCGDEBUG(r4, 0x80047441, &(0x7f0000000080))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r7, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$sock_attach_bpf(r5, 0x1, 0x4c, &(0x7f0000000300), 0x4)
write$binfmt_elf64(r6, &(0x7f0000000580)=ANY=[], 0x78)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_COALESCE(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000b40)={0x2c, r8, 0x1, 0x70bd27, 0x0, {{0x2}, {@void, @val={0xc, 0x99, {0x1, 0x1}}}}, [@NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0xc, 0x3, 0x0, 0x1, [{0x8, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0x4}}]}]}, 0x2c}}, 0x2c008040)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018200000", @ANYRES32, @ANYRESDEC=r1], 0x0}, 0x94)
r10 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r10, &(0x7f0000000040)={0x18, 0x0, {0x1, @remote, 'ip6gre0\x00'}}, 0x1e)
ioctl$PPPOEIOCSFWD(r10, 0x80047453, &(0x7f00000000c0)={0x18, 0x0, {0x1, @remote, 'veth0_to_team\x00'}})
recvmmsg(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/8, 0xc}}], 0x4b, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001800128008000100707070000c00028008000100", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRES64=r0], 0x40}}, 0x0)
r11 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r11, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
r12 = syz_genetlink_get_family_id$devlink(&(0x7f0000000280), r0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r0, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x36c0956a638f3dfa}, 0xc, &(0x7f00000002c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="9f59464018b9c9d850e9d7f028ca95aa845c3388629d1f6c9bc7d1f62dedbd77047a75b6b20e0bc685d723f9915744bb7de68b9bc9d8f174e37f5b28f8c0519c1622d957d2ca1e908bd847dad197a299f5af33101c905bfe9b7dcc1b09f01455cd5b771544633597b672731d49c24446ba6fba764fdb9233c1d7e1a6fbacabf56d7f4db28e9cd9ba03d5494594b8df076369a2", @ANYRES16=r12, @ANYBLOB="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"], 0x1c0}, 0x1, 0x0, 0x0, 0x4}, 0x8000)
close(0x3)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r13=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000140)={r13, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x10)

261.833763ms ago: executing program 5 (id=1565):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000700)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x2, 0xf}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x9f, 0x8}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850)
sendmsg$nl_route_sched(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@newtfilter={0x48, 0x2c, 0xd3f, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r2, {0xfff3, 0xfff6}, {}, {0xb, 0xfff2}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_MPLS_TTL={0x5, 0x43, 0x30}, @TCA_FLOWER_KEY_ETH_DST={0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x22}}]}}]}, 0x48}, 0x1, 0x0, 0x8035000000000000, 0x4}, 0x20000800)

201.064477ms ago: executing program 5 (id=1566):
syz_emit_ethernet(0x3e, &(0x7f00000010c0)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0x8, 0x0, 0x0, @private2, @local, {[@hopopts={0x6c}]}}}}}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@mpls_delroute={0x28, 0x18, 0x9, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_MULTIPATH={0xc, 0x9, {0x8, 0x34, 0x1}}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x0)

200.102403ms ago: executing program 3 (id=1567):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080c30000000e8fe55a1190015000600142603600e120900400000000401a80016000a0004400a080000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x4) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)={0x5c, 0x2, 0x9, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x10}, @NFCTH_QUEUE_NUM={0x8}, @NFCTH_TUPLE={0x38, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)

141.902616ms ago: executing program 5 (id=1568):
r0 = syz_io_uring_setup(0x45f2, &(0x7f0000000600)={0x0, 0xca65, 0x4, 0x2}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000300)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x40, 0x0, 0x0, 0x0, 0x23456})
io_uring_enter(r0, 0x3516, 0xc2de, 0x8, 0x0, 0x0)
r3 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
r5 = openat$cgroup_pressure(r4, &(0x7f0000000140)='cpu.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r5, &(0x7f0000000040)={'full', 0x20, 0x0, 0x20, 0x100002}, 0x2f)
r6 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
read$FUSE(r6, &(0x7f0000006380)={0x2020}, 0x2020)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r7=>0x0})
sendmsg$kcm(r6, &(0x7f0000000200)={&(0x7f0000000080)=@can={0x1d, r7}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000400)="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", 0xfe}, {&(0x7f0000000500)="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", 0xfb}, {&(0x7f0000000100)}], 0x3}, 0x1)
syz_emit_ethernet(0x7e, &(0x7f0000000240)={@multicast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x48, 0x3a, 0x0, @rand_addr=' \x01\x00', @mcast2, {[], @dest_unreach={0x1, 0x3, 0x0, 0x7f, '\x00', {0x0, 0x6, "e1f588", 0x7, 0x0, 0xff, @mcast2, @mcast2, [@fragment={0x2f, 0x0, 0xf, 0x0, 0x0, 0x0, 0x65}, @hopopts={0xbe}], "7bf354a4d44f873e"}}}}}}}, 0x0)

141.489126ms ago: executing program 3 (id=1569):
r0 = creat(&(0x7f0000000340)='./file0\x00', 0x0)
stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040))
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)

71.504172ms ago: executing program 5 (id=1570):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
ioctl$TIOCL_SETVESABLANK(r1, 0x560e, &(0x7f0000000140))
ioctl$TIOCL_BLANKSCREEN(r1, 0x541c, &(0x7f0000000040))
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040), 0x482180, 0x0)

69.805691ms ago: executing program 7 (id=1571):
mkdirat(0xffffffffffffff9c, 0x0, 0x1d0)
mount$afs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f00000002c0), 0x5, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
mount$afs(0x0, &(0x7f000009df40)='.\x00', &(0x7f000009df80), 0x14000, &(0x7f000009dfc0)={[{@dyn}]})

69.618061ms ago: executing program 3 (id=1572):
syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x5b1})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000100)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000013000/0x4000)=nil, 0x3000, 0x3})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x14)

68.643902ms ago: executing program 4 (id=1573):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
r1 = socket$kcm(0x10, 0x100000000002, 0x4)
sendmsg$kcm(r1, &(0x7f00000039c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000240)="39000000140081ae00002c000500015601618575e285af0100d41f215c0000883795c04a310000010000000000d3440c6942cb76cab3000000", 0x39}, {&(0x7f0000000180)="ed369d72f44e6643d9369b794d3732f0f08ca942e8d0b0b73784f3dbcc81caf3ec683bebd70766a19ed32954dacd3d2d4da181f4"}, {&(0x7f0000000280)="746f27470627cf6eb00bd3278e245f6037f6034d7eb6c3bed3b0"}], 0x1, 0x0, 0xffffffffffffff8a, 0xc00e}, 0x4000c10)
r2 = socket$netlink(0x10, 0x3, 0x0)
unshare(0x2a020400)
r3 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
r5 = openat$cgroup_pressure(r4, &(0x7f0000000200)='cpu.pressure\x00', 0x2, 0x0)
read(r5, &(0x7f0000000040)=""/252, 0xfc)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="38000000540001000000000000c4000007008209", @ANYRES32, @ANYBLOB="20000100", @ANYRESHEX=0x0], 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r6, 0x400448e1, &(0x7f0000000400)="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")
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x4, 0x10, r0, 0x6e080000)

0s ago: executing program 7 (id=1574):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r2, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000b00)=@newtfilter={0x58, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xffe0, 0xfff3}, {}, {0x7, 0x4}}, [@filter_kind_options=@f_fw={{0x7}, {0x2c, 0x2, [@TCA_FW_CLASSID={0x8, 0x1, {0xfff2, 0x9}}, @TCA_FW_ACT={0x4}, @TCA_FW_INDEV={0x14, 0x3, 'wlan0\x00'}, @TCA_FW_MASK={0x8, 0x5, 0x7}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20041090}, 0x0)
setsockopt$MRT6_DEL_MFC(r1, 0x29, 0xcd, &(0x7f0000000100)={{0xa, 0x4e20, 0x0, @private0, 0xf1}, {0xa, 0x4e21, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x10}, 0xffffffffffffffff, {[0x6, 0x6, 0x100, 0x98e, 0x9, 0x1, 0xfffffffb, 0xfffff56a]}}, 0x5c)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000100), &(0x7f0000000340)=[<r3=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000080)=[r3, 0x0, r3, r3], 0x4})
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="e90c610faca2ffffffffffff0800451400240000e00003119085000000000000000000800000001091"], 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000002000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f0000000040)="0f01cb650f741065666765f36f0f330f09660f3a0cb9000000752066b9800000c00f326635004000000f300f01d7ba4100ed", 0x32}], 0x1, 0x4498bda7e2139f51, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x8000, 0x40, 0x0, 0x0, 0x2004cb, 0x0, 0xfffffffffffffffe, 0x5, 0x7fff, 0x1000200004, 0x4, 0x2, 0x0, 0x1], 0x8080000})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(r0, 0xc01064c7, &(0x7f00000002c0)={0x0, 0x0, 0x0})
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) (async)
socket(0x400000000010, 0x3, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00'}) (async)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r2, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000b00)=@newtfilter={0x58, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xffe0, 0xfff3}, {}, {0x7, 0x4}}, [@filter_kind_options=@f_fw={{0x7}, {0x2c, 0x2, [@TCA_FW_CLASSID={0x8, 0x1, {0xfff2, 0x9}}, @TCA_FW_ACT={0x4}, @TCA_FW_INDEV={0x14, 0x3, 'wlan0\x00'}, @TCA_FW_MASK={0x8, 0x5, 0x7}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20041090}, 0x0) (async)
setsockopt$MRT6_DEL_MFC(r1, 0x29, 0xcd, &(0x7f0000000100)={{0xa, 0x4e20, 0x0, @private0, 0xf1}, {0xa, 0x4e21, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x10}, 0xffffffffffffffff, {[0x6, 0x6, 0x100, 0x98e, 0x9, 0x1, 0xfffffffb, 0xfffff56a]}}, 0x5c) (async)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000100), &(0x7f0000000340)=[0x0], 0x0, 0x0, 0x0, 0x1}) (async)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000080)=[r3, 0x0, r3, r3], 0x4}) (async)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="e90c610faca2ffffffffffff0800451400240000e00003119085000000000000000000800000001091"], 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000002000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f0000000040)="0f01cb650f741065666765f36f0f330f09660f3a0cb9000000752066b9800000c00f326635004000000f300f01d7ba4100ed", 0x32}], 0x1, 0x4498bda7e2139f51, 0x0, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x8000, 0x40, 0x0, 0x0, 0x2004cb, 0x0, 0xfffffffffffffffe, 0x5, 0x7fff, 0x1000200004, 0x4, 0x2, 0x0, 0x1], 0x8080000}) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(r0, 0xc01064c7, &(0x7f00000002c0)={0x0, 0x0, 0x0}) (async)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, 0x0, 0x0) (async)

0s ago: executing program 5 (id=1576):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newqdisc={0x44, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {0xffff, 0x8}, {0x2}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x1, 0x9, 0x2}}]}}]}, 0x44}}, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000140)={@ethernet={0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x26}}, {&(0x7f0000000040)=""/18, 0x12}, &(0x7f0000000080), 0x66}, 0xa0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001340)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4c0000001800010d00000000000000850a000000000000000500000014000500200100000000000000000100000000001c00090008"], 0x4c}}, 0x40000)
syz_emit_ethernet(0x3e, &(0x7f0000000500)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x68, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @dest_unreach={0x3, 0x5, 0x0, 0x0, 0x0, 0x3a3, {0x5, 0x4, 0x1, 0x3d, 0x9, 0x68, 0x1c, 0x8, 0x33, 0x8, @empty, @remote}}}}}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0xfc)

kernel console output (not intermixed with test programs):

iled (rc=-5)
[  112.840662][   T54] usb 10-1: USB disconnect, device number 6
[  112.855781][ T9069] faux_driver vgem: [drm] Unknown color mode 127; guessing buffer size.
[  113.132857][ T9074] x_tables: ip6_tables: cgroup match: used from hooks PREROUTING, but only valid from INPUT/OUTPUT/POSTROUTING
[  113.235042][ T9081] befs: (nbd4): unable to read superblock
[  113.262261][ T9081] syzkaller0: entered promiscuous mode
[  113.264953][ T9081] syzkaller0: entered allmulticast mode
[  113.274299][ T9081] [U] V�3��Fپ"S��/��4:�XTZ�W�T��LW��=
[  113.278430][ T9080] [U] J"�E:��"


[  113.401954][ T9083] netlink: 8 bytes leftover after parsing attributes in process `syz.4.857'.
[  113.405609][ T9083] netlink: 'syz.4.857': attribute type 30 has an invalid length.
[  113.408199][ T9083] netlink: 4 bytes leftover after parsing attributes in process `syz.4.857'.
[  114.477931][   T40] kauditd_printk_skb: 17 callbacks suppressed
[  114.477949][   T40] audit: type=1400 audit(1768808464.313:35372): avc:  denied  { setattr } for  pid=9140 comm="syz.5.860" name="video7" dev="devtmpfs" ino=974 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  114.539019][ T9153] netlink: 36 bytes leftover after parsing attributes in process `syz.5.863'.
[  114.540635][ T9154] netlink: 'syz.4.864': attribute type 9 has an invalid length.
[  114.545892][ T9154] netlink: 212400 bytes leftover after parsing attributes in process `syz.4.864'.
[  114.546247][ T9153] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.552663][ T9153] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.609871][ T9160] netlink: 68 bytes leftover after parsing attributes in process `syz.5.867'.
[  114.649110][   T40] audit: type=1400 audit(1768808464.493:35373): avc:  denied  { bind } for  pid=9164 comm="syz.5.869" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  114.661218][   T40] audit: type=1400 audit(1768808464.493:35374): avc:  denied  { read write } for  pid=9164 comm="syz.5.869" dev="sockfs" ino=28602 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  114.667086][ T9168] FAULT_INJECTION: forcing a failure.
[  114.667086][ T9168] name failslab, interval 1, probability 0, space 0, times 0
[  114.669527][ T9162] netlink: 'syz.4.868': attribute type 1 has an invalid length.
[  114.673840][ T9168] CPU: 3 UID: 0 PID: 9168 Comm: syz.6.865 Not tainted syzkaller #0 PREEMPT(full) 
[  114.673863][ T9168] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  114.673873][ T9168] Call Trace:
[  114.673879][ T9168]  <TASK>
[  114.673887][ T9168]  dump_stack_lvl+0x16c/0x1f0
[  114.673915][ T9168]  should_fail_ex+0x512/0x640
[  114.673931][ T9168]  ? kmem_cache_alloc_noprof+0x62/0x770
[  114.673952][ T9168]  should_failslab+0xc2/0x120
[  114.673974][ T9168]  kmem_cache_alloc_noprof+0x83/0x770
[  114.673991][ T9168]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  114.674007][ T9168]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  114.674029][ T9168]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  114.674044][ T9168]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  114.674067][ T9168]  mmu_topup_memory_caches+0x25/0x170
[  114.674089][ T9168]  kvm_mmu_load+0xd6/0x2390
[  114.674108][ T9168]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  114.674132][ T9168]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  114.674160][ T9168]  ? __pfx_kvm_mmu_load+0x10/0x10
[  114.674178][ T9168]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  114.674195][ T9168]  ? kvm_check_and_inject_events+0x63d/0x1050
[  114.674222][ T9168]  vcpu_run+0x39d2/0x5a80
[  114.674254][ T9168]  ? __pfx_vcpu_run+0x10/0x10
[  114.674284][ T9168]  ? rcu_is_watching+0x12/0xc0
[  114.674304][ T9168]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[  114.674324][ T9168]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[  114.674352][ T9168]  kvm_vcpu_ioctl+0x76d/0x16d0
[  114.674381][ T9168]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  114.674406][ T9168]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  114.674428][ T9168]  ? do_vfs_ioctl+0x128/0x14f0
[  114.674448][ T9168]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  114.674467][ T9168]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  114.674498][ T9168]  ? hook_file_ioctl_common+0x144/0x410
[  114.674522][ T9168]  ? selinux_file_ioctl+0x180/0x270
[  114.674543][ T9168]  ? selinux_file_ioctl+0xb4/0x270
[  114.674566][ T9168]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  114.674593][ T9168]  __x64_sys_ioctl+0x18e/0x210
[  114.674615][ T9168]  do_syscall_64+0xcd/0xf80
[  114.674641][ T9168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.674657][ T9168] RIP: 0033:0x7fa7fdd8f7c9
[  114.674672][ T9168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.674687][ T9168] RSP: 002b:00007fa7febd4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  114.674705][ T9168] RAX: ffffffffffffffda RBX: 00007fa7fdfe6090 RCX: 00007fa7fdd8f7c9
[  114.674715][ T9168] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  114.674724][ T9168] RBP: 00007fa7febd4090 R08: 0000000000000000 R09: 0000000000000000
[  114.674734][ T9168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.674743][ T9168] R13: 00007fa7fdfe6128 R14: 00007fa7fdfe6090 R15: 00007fff7849a128
[  114.674768][ T9168]  </TASK>
[  114.776833][ T9162] netlink: 232 bytes leftover after parsing attributes in process `syz.4.868'.
[  114.845297][ T9175] loop6: detected capacity change from 0 to 7
[  114.850928][ T9175] Dev loop6: unable to read RDB block 7
[  114.853439][ T9175]  loop6: unable to read partition table
[  114.855980][ T9175] loop6: partition table beyond EOD, truncated
[  114.858970][ T9175] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  114.960514][ T9187] netdevsim netdevsim4: Direct firmware load for . failed with error -2
[  114.963738][ T9187] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  114.963778][   T40] audit: type=1400 audit(1768808464.803:35375): avc:  denied  { firmware_load } for  pid=9186 comm="syz.4.876" scontext=system_u:system_r:kernel_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  115.018039][ T9189] geneve1: entered allmulticast mode
[  115.146032][   T40] audit: type=1400 audit(1768808464.983:35376): avc:  denied  { connect } for  pid=9190 comm="syz.5.877" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  115.168908][   T40] audit: type=1400 audit(1768808464.983:35377): avc:  denied  { read } for  pid=9190 comm="syz.5.877" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  115.783901][   T40] audit: type=1400 audit(1768808465.623:35378): avc:  denied  { setopt } for  pid=9205 comm="syz.6.878" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  115.797010][ T9206] netlink: 'syz.6.878': attribute type 1 has an invalid length.
[  115.800580][ T9206] netlink: 96 bytes leftover after parsing attributes in process `syz.6.878'.
[  115.804084][ T9206] netlink: 658 bytes leftover after parsing attributes in process `syz.6.878'.
[  115.807680][ T9206] netlink: 1 bytes leftover after parsing attributes in process `syz.6.878'.
[  115.844382][ T9208] netlink: 27 bytes leftover after parsing attributes in process `syz.4.879'.
[  115.914746][ T9211] FAULT_INJECTION: forcing a failure.
[  115.914746][ T9211] name failslab, interval 1, probability 0, space 0, times 0
[  115.918451][ T9211] CPU: 0 UID: 0 PID: 9211 Comm: syz.4.881 Not tainted syzkaller #0 PREEMPT(full) 
[  115.918467][ T9211] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.918473][ T9211] Call Trace:
[  115.918478][ T9211]  <TASK>
[  115.918483][ T9211]  dump_stack_lvl+0x16c/0x1f0
[  115.918502][ T9211]  should_fail_ex+0x512/0x640
[  115.918512][ T9211]  ? kmem_cache_alloc_noprof+0x62/0x770
[  115.918524][ T9211]  should_failslab+0xc2/0x120
[  115.918539][ T9211]  kmem_cache_alloc_noprof+0x83/0x770
[  115.918549][ T9211]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  115.918559][ T9211]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  115.918572][ T9211]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  115.918581][ T9211]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  115.918595][ T9211]  mmu_topup_memory_caches+0x25/0x170
[  115.918609][ T9211]  kvm_mmu_load+0xd6/0x2390
[  115.918621][ T9211]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  115.918637][ T9211]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  115.918654][ T9211]  ? __pfx_kvm_mmu_load+0x10/0x10
[  115.918665][ T9211]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  115.918675][ T9211]  ? kvm_check_and_inject_events+0x63d/0x1050
[  115.918691][ T9211]  vcpu_run+0x39d2/0x5a80
[  115.918709][ T9211]  ? __pfx_vcpu_run+0x10/0x10
[  115.918726][ T9211]  ? rcu_is_watching+0x12/0xc0
[  115.918739][ T9211]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[  115.918750][ T9211]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[  115.918768][ T9211]  kvm_vcpu_ioctl+0x76d/0x16d0
[  115.918799][ T9211]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  115.918816][ T9211]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  115.918829][ T9211]  ? do_vfs_ioctl+0x128/0x14f0
[  115.918842][ T9211]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  115.918854][ T9211]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  115.918873][ T9211]  ? hook_file_ioctl_common+0x144/0x410
[  115.918888][ T9211]  ? selinux_file_ioctl+0x180/0x270
[  115.918901][ T9211]  ? selinux_file_ioctl+0xb4/0x270
[  115.918915][ T9211]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  115.918932][ T9211]  __x64_sys_ioctl+0x18e/0x210
[  115.918945][ T9211]  do_syscall_64+0xcd/0xf80
[  115.918965][ T9211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.918975][ T9211] RIP: 0033:0x7fd44d18f7c9
[  115.918984][ T9211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.918994][ T9211] RSP: 002b:00007fd44e024038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  115.919004][ T9211] RAX: ffffffffffffffda RBX: 00007fd44d3e5fa0 RCX: 00007fd44d18f7c9
[  115.919010][ T9211] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  115.919015][ T9211] RBP: 00007fd44e024090 R08: 0000000000000000 R09: 0000000000000000
[  115.919021][ T9211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.919027][ T9211] R13: 00007fd44d3e6038 R14: 00007fd44d3e5fa0 R15: 00007ffd5407fc38
[  115.919041][ T9211]  </TASK>
[  116.027918][ T9219] netlink: 8 bytes leftover after parsing attributes in process `syz.6.880'.
[  116.042880][ T9219] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=56 sclass=netlink_route_socket pid=9219 comm=syz.6.880
[  116.075891][ T9225] overlayfs: option "workdir=./file1/file0" is useless in a non-upper mount, ignore
[  116.079204][ T5294] Bluetooth: hci3: ACL packet for unknown connection handle 2499
[  116.079427][ T9228] /dev/sg0: Can't lookup blockdev
[  116.084825][ T9225] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  116.124590][ T9231] netlink: 'syz.6.886': attribute type 1 has an invalid length.
[  116.127072][ T9231] netlink: 224 bytes leftover after parsing attributes in process `syz.6.886'.
[  116.130105][ T9231] NCSI netlink: No device for ifindex 0
[  116.149272][   T40] audit: type=1400 audit(1768808465.993:35379): avc:  denied  { ioctl } for  pid=9230 comm="syz.6.886" path="socket:[30906]" dev="sockfs" ino=30906 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sock_file permissive=1
[  116.388893][   T54] usb 11-1: new high-speed USB device number 3 using dummy_hcd
[  116.538995][   T54] usb 11-1: Using ep0 maxpacket: 8
[  116.543032][   T54] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  116.547317][   T54] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  116.550902][   T54] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  116.554199][   T54] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  116.558446][   T54] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  116.562189][   T54] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.675256][   T40] audit: type=1400 audit(1768808466.513:35380): avc:  denied  { load_policy } for  pid=9251 comm="syz.4.894" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  116.675739][ T9252] SELinux:  policydb magic number 0x4 does not match expected magic number 0xf97cff8c
[  116.687061][ T9252] SELinux: failed to load policy
[  116.771296][   T54] usb 11-1: GET_CAPABILITIES returned 0
[  116.773145][   T54] usbtmc 11-1:16.0: can't read capabilities
[  116.784211][ T9259] FAULT_INJECTION: forcing a failure.
[  116.784211][ T9259] name failslab, interval 1, probability 0, space 0, times 0
[  116.789966][ T9259] CPU: 1 UID: 0 PID: 9259 Comm: syz.3.896 Not tainted syzkaller #0 PREEMPT(full) 
[  116.789983][ T9259] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.789989][ T9259] Call Trace:
[  116.789993][ T9259]  <TASK>
[  116.789997][ T9259]  dump_stack_lvl+0x16c/0x1f0
[  116.790038][ T9259]  should_fail_ex+0x512/0x640
[  116.790055][ T9259]  ? kmem_cache_alloc_noprof+0x62/0x770
[  116.790068][ T9259]  should_failslab+0xc2/0x120
[  116.790082][ T9259]  kmem_cache_alloc_noprof+0x83/0x770
[  116.790092][ T9259]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  116.790102][ T9259]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  116.790115][ T9259]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  116.790124][ T9259]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  116.790138][ T9259]  mmu_topup_memory_caches+0x25/0x170
[  116.790152][ T9259]  kvm_mmu_load+0xd6/0x2390
[  116.790163][ T9259]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  116.790178][ T9259]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  116.790195][ T9259]  ? __pfx_kvm_mmu_load+0x10/0x10
[  116.790206][ T9259]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  116.790216][ T9259]  ? kvm_check_and_inject_events+0x63d/0x1050
[  116.790232][ T9259]  vcpu_run+0x39d2/0x5a80
[  116.790250][ T9259]  ? __pfx_vcpu_run+0x10/0x10
[  116.790267][ T9259]  ? rcu_is_watching+0x12/0xc0
[  116.790279][ T9259]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[  116.790292][ T9259]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[  116.790308][ T9259]  kvm_vcpu_ioctl+0x76d/0x16d0
[  116.790325][ T9259]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  116.790341][ T9259]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  116.790354][ T9259]  ? do_vfs_ioctl+0x128/0x14f0
[  116.790367][ T9259]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  116.790379][ T9259]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  116.790399][ T9259]  ? hook_file_ioctl_common+0x144/0x410
[  116.790412][ T9259]  ? selinux_file_ioctl+0x180/0x270
[  116.790426][ T9259]  ? selinux_file_ioctl+0xb4/0x270
[  116.790440][ T9259]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  116.790456][ T9259]  __x64_sys_ioctl+0x18e/0x210
[  116.790469][ T9259]  do_syscall_64+0xcd/0xf80
[  116.790485][ T9259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.790495][ T9259] RIP: 0033:0x7f1cfb38f7c9
[  116.790504][ T9259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.790514][ T9259] RSP: 002b:00007f1cfc146038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  116.790525][ T9259] RAX: ffffffffffffffda RBX: 00007f1cfb5e6090 RCX: 00007f1cfb38f7c9
[  116.790531][ T9259] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  116.790536][ T9259] RBP: 00007f1cfc146090 R08: 0000000000000000 R09: 0000000000000000
[  116.790542][ T9259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  116.790548][ T9259] R13: 00007f1cfb5e6128 R14: 00007f1cfb5e6090 R15: 00007ffe3c1992d8
[  116.790561][ T9259]  </TASK>
[  116.912165][ T7605] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  116.973597][   T40] audit: type=1400 audit(1768808466.813:35381): avc:  denied  { connect } for  pid=9230 comm="syz.6.886" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  116.977548][   T54] usb 11-1: USB disconnect, device number 3
[  117.760002][ T7978] usb 11-1: new high-speed USB device number 4 using dummy_hcd
[  117.860378][ T9282] FAULT_INJECTION: forcing a failure.
[  117.860378][ T9282] name failslab, interval 1, probability 0, space 0, times 0
[  117.866243][ T9282] CPU: 3 UID: 0 PID: 9282 Comm: syz.4.905 Not tainted syzkaller #0 PREEMPT(full) 
[  117.866267][ T9282] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  117.866278][ T9282] Call Trace:
[  117.866286][ T9282]  <TASK>
[  117.866293][ T9282]  dump_stack_lvl+0x16c/0x1f0
[  117.866322][ T9282]  should_fail_ex+0x512/0x640
[  117.866338][ T9282]  ? __kmalloc_noprof+0xca/0x910
[  117.866357][ T9282]  should_failslab+0xc2/0x120
[  117.866379][ T9282]  __kmalloc_noprof+0xeb/0x910
[  117.866395][ T9282]  ? lsm_blob_alloc+0x68/0x90
[  117.866416][ T9282]  ? lsm_blob_alloc+0x68/0x90
[  117.866430][ T9282]  lsm_blob_alloc+0x68/0x90
[  117.866448][ T9282]  security_task_alloc+0x2c/0x260
[  117.866473][ T9282]  copy_process+0x2456/0x7430
[  117.866501][ T9282]  ? __pfx_copy_process+0x10/0x10
[  117.866522][ T9282]  ? lockdep_init_map_type+0x5c/0x270
[  117.866542][ T9282]  ? lockdep_init_map_type+0x5c/0x270
[  117.866563][ T9282]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  117.866591][ T9282]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  117.866615][ T9282]  vhost_task_create+0x1d2/0x370
[  117.866637][ T9282]  ? __pfx_vhost_task_create+0x10/0x10
[  117.866666][ T9282]  ? __pfx_vhost_task_fn+0x10/0x10
[  117.866691][ T9282]  ? __pfx___mutex_lock+0x10/0x10
[  117.866721][ T9282]  kvm_mmu_post_init_vm+0x1b7/0x380
[  117.866744][ T9282]  kvm_arch_vcpu_ioctl_run+0x66/0x1860
[  117.866764][ T9282]  ? kvm_vcpu_ioctl+0x14f8/0x16d0
[  117.866792][ T9282]  kvm_vcpu_ioctl+0x76d/0x16d0
[  117.866819][ T9282]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  117.866844][ T9282]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  117.866867][ T9282]  ? do_vfs_ioctl+0x128/0x14f0
[  117.866887][ T9282]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  117.866906][ T9282]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  117.866938][ T9282]  ? hook_file_ioctl_common+0x144/0x410
[  117.866961][ T9282]  ? selinux_file_ioctl+0x180/0x270
[  117.866982][ T9282]  ? selinux_file_ioctl+0xb4/0x270
[  117.867005][ T9282]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  117.867031][ T9282]  __x64_sys_ioctl+0x18e/0x210
[  117.867059][ T9282]  do_syscall_64+0xcd/0xf80
[  117.867083][ T9282]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.867100][ T9282] RIP: 0033:0x7fd44d18f7c9
[  117.867114][ T9282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.867130][ T9282] RSP: 002b:00007fd44e003038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  117.867147][ T9282] RAX: ffffffffffffffda RBX: 00007fd44d3e6090 RCX: 00007fd44d18f7c9
[  117.867158][ T9282] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  117.867168][ T9282] RBP: 00007fd44e003090 R08: 0000000000000000 R09: 0000000000000000
[  117.867176][ T9282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  117.867186][ T9282] R13: 00007fd44d3e6128 R14: 00007fd44d3e6090 R15: 00007ffd5407fc38
[  117.867210][ T9282]  </TASK>
[  117.990134][ T7978] usb 11-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  117.993761][ T7978] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  118.008669][ T7978] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  118.013743][ T7978] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  118.021560][ T7978] usb 11-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  118.025155][ T7978] usb 11-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  118.028728][ T7978] usb 11-1: Manufacturer: syz
[  118.063883][ T7978] usb 11-1: config 0 descriptor??
[  118.284589][ T9303] netlink: 'syz.4.913': attribute type 10 has an invalid length.
[  118.290153][ T9303] bond0: (slave dummy0): Releasing backup interface
[  118.295477][ T9303] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  118.298304][ T9303] team0: Failed to send options change via netlink (err -105)
[  118.301970][ T9303] team0: Port device dummy0 added
[  118.310984][ T9303] netlink: 'syz.4.913': attribute type 10 has an invalid length.
[  118.315244][ T9303] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  118.326976][ T9303] team0: Failed to send options change via netlink (err -105)
[  118.330516][ T9303] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  118.334447][ T9303] team0: Port device dummy0 removed
[  118.339813][ T9303] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  118.353738][ T9303] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9303 comm=syz.4.913
[  118.358391][ T9303] netlink: 'syz.4.913': attribute type 1 has an invalid length.
[  118.363486][ T9303] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=272 sclass=netlink_route_socket pid=9303 comm=syz.4.913
[  118.397189][ T5294] Bluetooth: hci2: Malformed LE Event: 0x1b
[  118.397235][ T9303] netlink: 52 bytes leftover after parsing attributes in process `syz.4.913'.
[  118.450478][ T9305] bond0: (slave dummy0): Releasing backup interface
[  118.456472][ T9305] bridge_slave_0: left allmulticast mode
[  118.458312][ T9305] bridge_slave_0: left promiscuous mode
[  118.460835][ T9305] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.466455][ T9305] bond0: (slave bridge_slave_1): Releasing backup interface
[  118.475396][ T9305] bond0: (slave bond_slave_0): Releasing backup interface
[  118.477261][ T7978] appleir 0003:05AC:8243.0003: unknown main item tag 0x0
[  118.485384][ T9305] bond0: (slave bond_slave_1): Releasing backup interface
[  118.489875][ T7978] appleir 0003:05AC:8243.0003: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.6-1/input0
[  118.495304][ T9305] team0: Port device team_slave_0 removed
[  118.504826][ T9305] team0: Port device team_slave_1 removed
[  118.507157][ T9305] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  118.510495][ T9305] batman_adv: batadv0: Removing interface: batadv_slave_0
[  118.518863][ T9305] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  118.521248][ T9305] batman_adv: batadv0: Removing interface: batadv_slave_1
[  118.524854][ T9305] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  118.691259][ T9318] veth0_to_bridge: entered promiscuous mode
[  118.841347][ T9317] veth0_to_bridge: left promiscuous mode
[  118.898087][ T9323] xt_HMARK: spi-set and port-set can't be combined
[  119.004456][ T9325] netlink: 12 bytes leftover after parsing attributes in process `syz.4.918'.
[  119.008164][ T9325] openvswitch: netlink: Flow actions attr not present in new flow.
[  119.025835][ T9331] tmpfs: Bad value for 'mpol'
[  119.048131][ T5294] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  119.092584][ T9342] loop6: detected capacity change from 0 to 7
[  119.095519][ T5946] Dev loop6: unable to read RDB block 7
[  119.097419][ T5946]  loop6: unable to read partition table
[  119.101201][ T5946] loop6: partition table beyond EOD, truncated
[  119.111652][ T9342] Dev loop6: unable to read RDB block 7
[  119.113488][ T9342]  loop6: unable to read partition table
[  119.115381][ T9342] loop6: partition table beyond EOD, truncated
[  119.118882][ T9342] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  119.177079][ T9348] netlink: 892 bytes leftover after parsing attributes in process `syz.4.925'.
[  119.291652][ T9355] netlink: 8 bytes leftover after parsing attributes in process `syz.4.929'.
[  119.297536][ T9355] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1551 sclass=netlink_route_socket pid=9355 comm=syz.4.929
[  119.365148][ T5305] usb 11-1: USB disconnect, device number 4
[  119.369750][ T6108] af_packet: tpacket_rcv: packet too big, clamped from 96 to 4294967272. macoff=96
[  119.473275][ T9365] loop6: detected capacity change from 0 to 7
[  119.476567][ T5946] Dev loop6: unable to read RDB block 7
[  119.478495][ T5946]  loop6: unable to read partition table
[  119.480466][ T5946] loop6: partition table beyond EOD, truncated
[  119.483282][ T9365] Dev loop6: unable to read RDB block 7
[  119.485470][ T9365]  loop6: unable to read partition table
[  119.487545][ T9365] loop6: partition table beyond EOD, truncated
[  119.490852][ T9365] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  119.626791][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  119.626806][   T40] audit: type=1400 audit(1768808469.463:35388): avc:  denied  { create } for  pid=9374 comm="syz.4.936" name="file7" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  119.640870][   T40] audit: type=1400 audit(1768808469.463:35389): avc:  denied  { create } for  pid=9374 comm="syz.4.936" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  119.648030][   T40] audit: type=1400 audit(1768808469.463:35390): avc:  denied  { bind } for  pid=9374 comm="syz.4.936" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  119.656564][   T40] audit: type=1400 audit(1768808469.463:35391): avc:  denied  { accept } for  pid=9374 comm="syz.4.936" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  119.663958][   T40] audit: type=1400 audit(1768808469.473:35392): avc:  denied  { setopt } for  pid=9374 comm="syz.4.936" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  119.671134][   T40] audit: type=1400 audit(1768808469.473:35393): avc:  denied  { write } for  pid=9374 comm="syz.4.936" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  119.680882][   T40] audit: type=1400 audit(1768808469.523:35394): avc:  denied  { read } for  pid=9374 comm="syz.4.936" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  119.771503][   T40] audit: type=1400 audit(1768808469.613:35395): avc:  denied  { create } for  pid=9379 comm="syz.3.938" anonclass=[userfaultfd] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  119.780401][   T40] audit: type=1400 audit(1768808469.623:35396): avc:  denied  { ioctl } for  pid=9379 comm="syz.3.938" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=31943 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  119.908486][ T9387] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  120.087115][ T9353] 9pnet_fd: p9_fd_create_tcp (9353): problem connecting socket to 127.0.0.1
[  120.094985][ T9394] loop6: detected capacity change from 0 to 7
[  120.098230][ T5946] Dev loop6: unable to read RDB block 7
[  120.101969][ T5946]  loop6: unable to read partition table
[  120.104015][ T5946] loop6: partition table beyond EOD, truncated
[  120.108528][ T9394] Dev loop6: unable to read RDB block 7
[  120.111172][ T9394]  loop6: unable to read partition table
[  120.113284][ T9394] loop6: partition table beyond EOD, truncated
[  120.117516][ T9394] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  120.181819][ T9399] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9399 comm=syz.6.945
[  120.191057][ T9399] netlink: 'syz.6.945': attribute type 1 has an invalid length.
[  120.207807][ T9399] 8021q: adding VLAN 0 to HW filter on device bond1
[  120.217216][ T9399] bond1: (slave dummy0): making interface the new active one
[  120.221145][ T9399] bond1: (slave dummy0): Enslaving as an active interface with an up link
[  120.593062][   T40] audit: type=1404 audit(1768808470.433:35397): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  120.621165][ T9430] FAULT_INJECTION: forcing a failure.
[  120.621165][ T9430] name failslab, interval 1, probability 0, space 0, times 0
[  120.626256][ T9430] CPU: 0 UID: 0 PID: 9430 Comm: syz.6.954 Not tainted syzkaller #0 PREEMPT(full) 
[  120.626281][ T9430] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.626290][ T9430] Call Trace:
[  120.626296][ T9430]  <TASK>
[  120.626303][ T9430]  dump_stack_lvl+0x16c/0x1f0
[  120.626329][ T9430]  should_fail_ex+0x512/0x640
[  120.626344][ T9430]  ? kmem_cache_alloc_noprof+0x62/0x770
[  120.626362][ T9430]  should_failslab+0xc2/0x120
[  120.626381][ T9430]  kmem_cache_alloc_noprof+0x83/0x770
[  120.626395][ T9430]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  120.626409][ T9430]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  120.626428][ T9430]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  120.626442][ T9430]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  120.626464][ T9430]  mmu_topup_memory_caches+0x25/0x170
[  120.626483][ T9430]  kvm_mmu_load+0xd6/0x2390
[  120.626500][ T9430]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  120.626520][ T9430]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  120.626544][ T9430]  ? __pfx_kvm_mmu_load+0x10/0x10
[  120.626559][ T9430]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  120.626574][ T9430]  ? kvm_check_and_inject_events+0x63d/0x1050
[  120.626597][ T9430]  vcpu_run+0x39d2/0x5a80
[  120.626625][ T9430]  ? __pfx_vcpu_run+0x10/0x10
[  120.626651][ T9430]  ? rcu_is_watching+0x12/0xc0
[  120.626669][ T9430]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[  120.626694][ T9430]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[  120.626718][ T9430]  kvm_vcpu_ioctl+0x76d/0x16d0
[  120.626742][ T9430]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  120.626764][ T9430]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  120.626783][ T9430]  ? do_vfs_ioctl+0x128/0x14f0
[  120.626801][ T9430]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  120.626817][ T9430]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  120.626847][ T9430]  ? hook_file_ioctl_common+0x144/0x410
[  120.626868][ T9430]  ? selinux_file_ioctl+0x180/0x270
[  120.626886][ T9430]  ? selinux_file_ioctl+0xb4/0x270
[  120.626905][ T9430]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  120.626928][ T9430]  __x64_sys_ioctl+0x18e/0x210
[  120.626947][ T9430]  do_syscall_64+0xcd/0xf80
[  120.626969][ T9430]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.626983][ T9430] RIP: 0033:0x7fa7fdd8f7c9
[  120.626996][ T9430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.627010][ T9430] RSP: 002b:00007fa7febf5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  120.627026][ T9430] RAX: ffffffffffffffda RBX: 00007fa7fdfe5fa0 RCX: 00007fa7fdd8f7c9
[  120.627036][ T9430] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  120.627045][ T9430] RBP: 00007fa7febf5090 R08: 0000000000000000 R09: 0000000000000000
[  120.627054][ T9430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  120.627062][ T9430] R13: 00007fa7fdfe6038 R14: 00007fa7fdfe5fa0 R15: 00007fff7849a128
[  120.627085][ T9430]  </TASK>
[  120.837971][ T9456] QAT: failed to copy from user cfg_data.
[  120.892328][ T9463] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9463 comm=syz.4.964
[  120.922148][ T9465] __nla_validate_parse: 6 callbacks suppressed
[  120.922159][ T9465] netlink: 4 bytes leftover after parsing attributes in process `syz.6.965'.
[  120.927050][ T9465] openvswitch: netlink: Flow actions attr not present in new flow.
[  120.983612][ T9470] netlink: 32 bytes leftover after parsing attributes in process `syz.6.967'.
[  121.035601][ T9477] netlink: 'syz.5.968': attribute type 64 has an invalid length.
[  121.038963][ T9477] netlink: 'syz.5.968': attribute type 4 has an invalid length.
[  121.042274][ T9477] netlink: 152 bytes leftover after parsing attributes in process `syz.5.968'.
[  121.050252][ T9477] binder: BINDER_SET_CONTEXT_MGR already set
[  121.053304][ T9477] binder: 9476:9477 ioctl 4018620d 2000000002c0 returned -16
[  121.165181][ T9482] FAULT_INJECTION: forcing a failure.
[  121.165181][ T9482] name failslab, interval 1, probability 0, space 0, times 0
[  121.170637][ T9482] CPU: 0 UID: 0 PID: 9482 Comm: syz.5.971 Not tainted syzkaller #0 PREEMPT(full) 
[  121.170659][ T9482] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  121.170665][ T9482] Call Trace:
[  121.170670][ T9482]  <TASK>
[  121.170674][ T9482]  dump_stack_lvl+0x16c/0x1f0
[  121.170693][ T9482]  should_fail_ex+0x512/0x640
[  121.170703][ T9482]  ? kmem_cache_alloc_noprof+0x62/0x770
[  121.170715][ T9482]  should_failslab+0xc2/0x120
[  121.170730][ T9482]  kmem_cache_alloc_noprof+0x83/0x770
[  121.170740][ T9482]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[  121.170750][ T9482]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  121.170766][ T9482]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  121.170779][ T9482]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  121.170800][ T9482]  mmu_topup_memory_caches+0x25/0x170
[  121.170820][ T9482]  kvm_mmu_load+0xd6/0x2390
[  121.170836][ T9482]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  121.170860][ T9482]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  121.170886][ T9482]  ? __pfx_kvm_mmu_load+0x10/0x10
[  121.170903][ T9482]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  121.170919][ T9482]  ? kvm_check_and_inject_events+0x63d/0x1050
[  121.170943][ T9482]  vcpu_run+0x39d2/0x5a80
[  121.170972][ T9482]  ? __pfx_vcpu_run+0x10/0x10
[  121.171000][ T9482]  ? rcu_is_watching+0x12/0xc0
[  121.171026][ T9482]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[  121.171043][ T9482]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[  121.171069][ T9482]  kvm_vcpu_ioctl+0x76d/0x16d0
[  121.171096][ T9482]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  121.171139][ T9482]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  121.171160][ T9482]  ? do_vfs_ioctl+0x128/0x14f0
[  121.171180][ T9482]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  121.171199][ T9482]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  121.171232][ T9482]  ? hook_file_ioctl_common+0x144/0x410
[  121.171255][ T9482]  ? selinux_file_ioctl+0x180/0x270
[  121.171276][ T9482]  ? selinux_file_ioctl+0xb4/0x270
[  121.171300][ T9482]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  121.171326][ T9482]  __x64_sys_ioctl+0x18e/0x210
[  121.171348][ T9482]  do_syscall_64+0xcd/0xf80
[  121.171381][ T9482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.171398][ T9482] RIP: 0033:0x7fc02358f7c9
[  121.171412][ T9482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.171428][ T9482] RSP: 002b:00007fc0244fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  121.171444][ T9482] RAX: ffffffffffffffda RBX: 00007fc0237e5fa0 RCX: 00007fc02358f7c9
[  121.171454][ T9482] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  121.171463][ T9482] RBP: 00007fc0244fc090 R08: 0000000000000000 R09: 0000000000000000
[  121.171473][ T9482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  121.171482][ T9482] R13: 00007fc0237e6038 R14: 00007fc0237e5fa0 R15: 00007ffe758c3c38
[  121.171506][ T9482]  </TASK>
[  121.329014][   T34] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  121.474089][ T9493] loop6: detected capacity change from 0 to 7
[  121.477453][ T9493] Dev loop6: unable to read RDB block 7
[  121.481646][ T9493]  loop6: unable to read partition table
[  121.484135][ T9493] loop6: partition table beyond EOD, truncated
[  121.486724][ T9493] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  121.499124][   T34] usb 9-1: Using ep0 maxpacket: 8
[  121.504442][   T34] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  121.512125][   T34] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  121.518984][   T34] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  121.527762][   T34] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  121.534123][   T34] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  121.539590][   T34] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  121.542748][   T34] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.755442][   T34] usb 9-1: usb_control_msg returned -32
[  121.757486][   T34] usbtmc 9-1:16.0: can't read capabilities
[  121.769071][   T54] usb 11-1: new high-speed USB device number 5 using dummy_hcd
[  121.922200][   T54] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  121.925923][   T54] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  121.929374][   T54] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  121.932551][   T54] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.937141][ T9497] raw-gadget.2 gadget.6: fail, usb_ep_enable returned -22
[  121.941287][   T54] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  122.116666][ T9500] usbtmc 9-1:16.0: control status returned 0
[  122.145417][ T9502] netlink: 12 bytes leftover after parsing attributes in process `syz.5.978'.
[  122.148262][   T54] usb 11-1: USB disconnect, device number 5
[  122.169626][ T9502] 8021q: adding VLAN 0 to HW filter on device bond2
[  122.317884][ T6009] usb 9-1: USB disconnect, device number 6
[  122.516211][    C3] hrtimer: interrupt took 49899 ns
[  122.902058][ T9530] SELinux: failed to load policy
[  122.929325][ T9532] binder: 9531:9532 ioctl c0306201 2000000004c0 returned -22
[  123.090583][ T9548] netlink: 'syz.6.986': attribute type 1 has an invalid length.
[  123.094062][ T9548] netlink: 'syz.6.986': attribute type 1 has an invalid length.
[  123.202599][ T9556] netlink: 'syz.6.990': attribute type 1 has an invalid length.
[  123.222220][ T9556] bond2: entered promiscuous mode
[  123.224471][ T9556] 8021q: adding VLAN 0 to HW filter on device bond2
[  123.260762][ T9567] bond2: (slave bridge1): making interface the new active one
[  123.263787][ T9567] bridge1: entered promiscuous mode
[  123.266892][ T9567] bond2: (slave bridge1): Enslaving as an active interface with an up link
[  123.305957][ T9575] netlink: 'syz.4.995': attribute type 1 has an invalid length.
[  123.311119][ T9575] netlink: 'syz.4.995': attribute type 2 has an invalid length.
[  123.311735][ T9571] loop5: detected capacity change from 0 to 7
[  123.320835][ T5946] Dev loop5: unable to read RDB block 7
[  123.323221][ T5946]  loop5: unable to read partition table
[  123.325738][ T5946] loop5: partition table beyond EOD, truncated
[  123.340830][ T9571] Dev loop5: unable to read RDB block 7
[  123.343199][ T9571]  loop5: unable to read partition table
[  123.349548][ T9571] loop5: partition table beyond EOD, truncated
[  123.352594][ T9571] loop_reread_partitions: partition scan of loop5 (�被x������ ) failed (rc=-5)
[  123.426036][ T9577] netlink: 'syz.4.996': attribute type 178 has an invalid length.
[  123.473383][ T9585] netlink: 'syz.3.997': attribute type 10 has an invalid length.
[  123.484544][ T9587] netlink: 28 bytes leftover after parsing attributes in process `syz.4.998'.
[  123.487721][ T9587] netlink: 28 bytes leftover after parsing attributes in process `syz.4.998'.
[  123.498509][ T9587] gretap0: entered promiscuous mode
[  123.502476][ T9579] netlink: 2 bytes leftover after parsing attributes in process `syz.3.997'.
[  123.503371][ T9587] gretap0: left promiscuous mode
[  123.547329][ T9588] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9588 comm=syz.4.998
[  123.898970][ T9600] netlink: 5 bytes leftover after parsing attributes in process `syz.4.1000'.
[  123.902008][ T9600] openvswitch: netlink: IP tunnel attribute has 1026 unknown bytes.
[  124.030263][ T9607] loop6: detected capacity change from 0 to 7
[  124.034403][ T9607] Dev loop6: unable to read RDB block 7
[  124.036805][ T9607]  loop6: unable to read partition table
[  124.041058][ T9607] loop6: partition table beyond EOD, truncated
[  124.044280][ T9607] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  124.108324][ T9619] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1006'.
[  124.118866][ T9619] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1006'.
[  124.624121][ T9647] loop6: detected capacity change from 0 to 7
[  124.627369][ T5946] Dev loop6: unable to read RDB block 7
[  124.629907][ T5946]  loop6: unable to read partition table
[  124.632408][ T5946] loop6: partition table beyond EOD, truncated
[  124.637324][ T9647] Dev loop6: unable to read RDB block 7
[  124.639388][ T9647]  loop6: unable to read partition table
[  124.641598][ T9647] loop6: partition table beyond EOD, truncated
[  124.644340][ T9647] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  124.696274][   T40] kauditd_printk_skb: 121 callbacks suppressed
[  124.696291][   T40] audit: type=1400 audit(1768808730.541:35519): avc:  denied  { write } for  pid=9648 comm="syz.5.1015" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  124.708918][   T40] audit: type=1400 audit(1768808730.541:35520): avc:  denied  { append } for  pid=9648 comm="syz.5.1015" name="video1" dev="devtmpfs" ino=956 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  124.718020][   T40] audit: type=1400 audit(1768808730.541:35521): avc:  denied  { ioctl } for  pid=9648 comm="syz.5.1015" path="socket:[31346]" dev="sockfs" ino=31346 ioctlcmd=0xf508 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  124.729429][   T40] audit: type=1400 audit(1768808730.541:35522): avc:  denied  { ioctl } for  pid=9648 comm="syz.5.1015" path="/dev/video1" dev="devtmpfs" ino=956 ioctlcmd=0x940e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  124.739968][   T40] audit: type=1400 audit(1768808730.591:35523): avc:  denied  { mounton } for  pid=9652 comm="syz.5.1016" path="/121/file0" dev="tmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  125.104136][   T40] audit: type=1400 audit(1768808730.951:35524): avc:  denied  { append } for  pid=9661 comm="syz.3.1020" name="loop9" dev="devtmpfs" ino=667 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  125.164107][   T40] audit: type=1400 audit(1768808731.011:35525): avc:  denied  { write } for  pid=9661 comm="syz.3.1020" name="ptp0" dev="devtmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  125.186461][   T40] audit: type=1400 audit(1768808731.031:35526): avc:  denied  { append } for  pid=9668 comm="syz.6.1021" name="cec6" dev="devtmpfs" ino=1012 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  125.239143][ T9673] loop6: detected capacity change from 0 to 7
[  125.242698][ T9673] Dev loop6: unable to read RDB block 7
[  125.244527][ T9673]  loop6: unable to read partition table
[  125.246964][ T9673] loop6: partition table beyond EOD, truncated
[  125.251257][ T9673] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  125.302573][   T40] audit: type=1400 audit(1768808731.151:35527): avc:  denied  { setopt } for  pid=9676 comm="syz.3.1025" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  125.307543][ T9677] overlayfs: only single ':' or double '::' sequences of unescaped colons in lowerdir mount option allowed.
[  125.310416][   T40] audit: type=1400 audit(1768808731.151:35528): avc:  denied  { mounton } for  pid=9676 comm="syz.3.1025" path="/215/file0" dev="tmpfs" ino=1158 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  125.330674][ T9675] syzkaller0: entered promiscuous mode
[  125.332806][ T9675] syzkaller0: entered allmulticast mode
[  125.358885][ T6009] usb 9-1: new full-speed USB device number 7 using dummy_hcd
[  125.530916][ T6009] usb 9-1: config 0 has no interfaces?
[  125.535826][ T6009] usb 9-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  125.539692][ T6009] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.543068][ T6009] usb 9-1: Product: syz
[  125.544485][ T6009] usb 9-1: Manufacturer: syz
[  125.546396][ T6009] usb 9-1: SerialNumber: syz
[  125.559812][ T6009] usb 9-1: config 0 descriptor??
[  125.579522][ T9680] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  125.579522][ T9680] The task syz.6.1026 (9680) triggered the difference, watch for misbehavior.
[  125.974779][ T9664] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  125.979177][ T9664] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  125.983479][ T9664] f2fs: Unknown parameter 'barrier����p

	'
[  125.986706][ T1344] usb 9-1: USB disconnect, device number 7
[  126.222469][ T9725] validate_nla: 4 callbacks suppressed
[  126.222485][ T9725] netlink: 'syz.3.1034': attribute type 3 has an invalid length.
[  126.228208][ T9725] netlink: 'syz.3.1034': attribute type 1 has an invalid length.
[  126.232306][ T9725] __nla_validate_parse: 1 callbacks suppressed
[  126.232319][ T9725] netlink: 216 bytes leftover after parsing attributes in process `syz.3.1034'.
[  126.345824][ T9733] netlink: 'syz.3.1036': attribute type 10 has an invalid length.
[  126.354779][ T9733] netlink: 'syz.3.1036': attribute type 10 has an invalid length.
[  126.362958][ T9733] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1036'.
[  126.393382][ T9741] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1038'.
[  126.396520][ T9742] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1038'.
[  126.439863][ T9739] binder: 9737:9739 ioctl c0306201 200000000180 returned -14
[  126.499569][ T9751] binder: BINDER_SET_CONTEXT_MGR already set
[  126.504474][ T9751] binder: 9749:9751 ioctl 4018620d 200000000100 returned -16
[  126.508263][ T9751] binder: 9749:9751 ioctl c0306201 200000000080 returned -11
[  126.632262][ T9747] netlink: 2028 bytes leftover after parsing attributes in process `syz.3.1039'.
[  126.637482][ T9747] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1039'.
[  126.723806][ T9767] tmpfs: Bad value for 'mpol'
[  126.799057][ T6009] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  126.810449][ T9773] loop6: detected capacity change from 0 to 7
[  126.814131][ T5946] Dev loop6: unable to read RDB block 7
[  126.816856][ T5946]  loop6: unable to read partition table
[  126.820306][ T5946] loop6: partition table beyond EOD, truncated
[  126.824191][ T9773] Dev loop6: unable to read RDB block 7
[  126.826594][ T9773]  loop6: unable to read partition table
[  126.830777][ T9773] loop6: partition table beyond EOD, truncated
[  126.833510][ T9773] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  126.886158][ T9775] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1048'.
[  126.892675][ T9775] openvswitch: netlink: Flow key attr not present in new flow.
[  126.947291][ T9781] tmpfs: Bad value for 'mpol'
[  126.952135][ T9781] netlink: 170832 bytes leftover after parsing attributes in process `syz.3.1050'.
[  126.959808][ T6009] usb 9-1: Using ep0 maxpacket: 8
[  126.964847][ T6009] usb 9-1: config 106 has an invalid interface number: 120 but max is 1
[  126.967597][ T6009] usb 9-1: config 106 contains an unexpected descriptor of type 0x2, skipping
[  126.972354][ T6009] usb 9-1: config 106 has an invalid interface number: 226 but max is 1
[  126.975953][ T6009] usb 9-1: config 106 contains an unexpected descriptor of type 0x1, skipping
[  126.981280][ T6009] usb 9-1: config 106 has an invalid interface descriptor of length 6, skipping
[  126.984793][ T6009] usb 9-1: config 106 has an invalid descriptor of length 246, skipping remainder of the config
[  126.988099][ T6009] usb 9-1: config 106 has no interface number 0
[  126.990846][ T6009] usb 9-1: config 106 has no interface number 1
[  126.992779][ T6009] usb 9-1: config 106 interface 120 altsetting 64 endpoint 0x1 has invalid maxpacket 1024, setting to 64
[  126.996244][ T6009] usb 9-1: config 106 interface 120 altsetting 64 endpoint 0x4 has invalid maxpacket 1024, setting to 64
[  127.000508][ T6009] usb 9-1: config 106 interface 120 altsetting 64 has an invalid descriptor for endpoint zero, skipping
[  127.003892][ T6009] usb 9-1: config 106 interface 120 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  127.007379][ T6009] usb 9-1: config 106 interface 120 altsetting 64 has a duplicate endpoint with address 0x1, skipping
[  127.011161][ T6009] usb 9-1: config 106 interface 120 altsetting 64 has a duplicate endpoint with address 0x4, skipping
[  127.014462][ T6009] usb 9-1: config 106 interface 226 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  127.018460][ T6009] usb 9-1: config 106 interface 120 has no altsetting 0
[  127.021570][ T6009] usb 9-1: config 106 interface 226 has no altsetting 0
[  127.025720][ T6009] usb 9-1: Dual-Role OTG device on HNP port
[  127.027786][ T6009] usb 9-1: New USB device found, idVendor=0572, idProduct=1340, bcdDevice=26.88
[  127.030915][ T6009] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.033381][ T6009] usb 9-1: Product: syz
[  127.034837][ T6009] usb 9-1: Manufacturer: ሷ뵑눢裗柉줤⚎꜂띹ﾪ纘ᠹ띎篸둳ᥭ볹멷觪罳垲Ꚓ䋀ꐧ懑ﷃ熏偧ȕ倷ޘ臘㩶ऀ鯱磋璱볘Չ乡쫚昁⫿咦ꏚ飋ᥔ웮ϝ┭暞鰁앁횺䏿纱ӫ윭諬瘉Ἡꀋ擨䐨쟿觻쒢ଁ䐾杷ྥ급涯叐鈷Ꭓ啢噀驊맗`뻃퍵䙈粺䀡ö䈢弲雚豺
[  127.047148][ T6009] usb 9-1: SerialNumber: syz
[  127.054366][ T9789] input: syz1 as /devices/virtual/input/input11
[  127.298900][ T7978] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  127.423252][ T6009] usb 9-1: USB disconnect, device number 8
[  127.440257][ T9804] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1056'.
[  127.449433][ T7978] usb 10-1: Using ep0 maxpacket: 8
[  127.451833][ T9804] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1056'.
[  127.453653][ T7978] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  127.458422][ T7978] usb 10-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  127.468607][ T7978] usb 10-1: New USB device found, idVendor=2087, idProduct=0703, bcdDevice= 0.40
[  127.472041][ T7978] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.476823][ T7978] usb 10-1: Product: ᠉
[  127.478310][ T7978] usb 10-1: Manufacturer: І
[  127.481043][ T7978] usb 10-1: SerialNumber: ӿ
[  127.611853][ T9819] use of bytesused == 0 is deprecated and will be removed in the future,
[  127.615296][ T9819] use the actual size instead.
[  127.680145][ T9823] loop6: detected capacity change from 0 to 7
[  127.683291][ T9823] Dev loop6: unable to read RDB block 7
[  127.685289][ T9823]  loop6: unable to read partition table
[  127.687544][ T9823] loop6: partition table beyond EOD, truncated
[  127.690513][ T9823] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  127.705462][ T7978] usbhid 10-1:1.0: can't add hid device: -71
[  127.707459][ T7978] usbhid 10-1:1.0: probe with driver usbhid failed with error -71
[  127.716388][ T7978] usb 10-1: USB disconnect, device number 7
[  127.877130][ T9840] netlink: 'syz.4.1070': attribute type 7 has an invalid length.
[  127.984686][ T9852] overlayfs: workdir and upperdir must be separate subtrees
[  128.042534][ T9854] syzkaller1: entered promiscuous mode
[  128.044684][ T9854] syzkaller1: entered allmulticast mode
[  128.234356][ T9857] overlayfs: statfs failed on './file0'
[  128.262116][ T7604] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  128.265968][ T7604] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  128.270836][ T7604] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  128.274542][ T7604] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  128.471244][ T9867] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  128.480294][ T9867] netlink: 'syz.5.1079': attribute type 4 has an invalid length.
[  128.483863][ T9867] MTD: Couldn't look up './bus': -15
[  128.897637][ T9883] deleting an unspecified loop device is not supported.
[  129.062876][ T9890] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  129.150539][ T9898] kAFS: Can only specify source 'none' with -o dyn
[  129.199552][ T9900] ata1.00: invalid multi_count 1 ignored
[  129.408015][ T5294] Bluetooth: hci1: Unknown advertising packet type: 0x76
[  129.408067][ T5294] Bluetooth: hci1: adv larger than maximum supported
[  129.414510][ T5294] Bluetooth: hci1: Malformed LE Event: 0x0d
[  129.493023][ T9934] hpfs: hpfs_map_sector(): read error
[  129.602279][ T9942] xt_CT: You must specify a L4 protocol and not use inversions on it
[  129.692624][ T9952] comedi comedi4: bad chanlist[0]=0x00000009 chan=9 range length=2
[  129.698145][ T5950] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  129.721094][ T5950] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  129.723517][ T5950] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  129.726073][ T5950] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  129.728405][ T5950] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  129.749313][ T5950] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  129.751783][ T5950] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  129.754209][ T5950] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  129.756564][ T5950] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  129.768913][ T5950] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  129.775584][ T5950] hid-generic 0003:0004:0000.0004: hidraw1: USB HID v0.00 Device [syz0] on syz0
[  129.886045][ T9963] loop6: detected capacity change from 0 to 7
[  129.891623][ T9963] Dev loop6: unable to read RDB block 7
[  129.893703][ T9963]  loop6: unable to read partition table
[  129.895620][ T9963] loop6: partition table beyond EOD, truncated
[  129.897894][ T9963] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  129.963684][ T9968] openvswitch: netlink: IP tunnel dst address not specified
[  130.023494][   T40] kauditd_printk_skb: 90 callbacks suppressed
[  130.023504][   T40] audit: type=1400 audit(1768808735.871:35619): avc:  denied  { watch } for  pid=9969 comm="syz.6.1113" path="/102" dev="tmpfs" ino=553 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  130.034111][   T40] audit: type=1400 audit(1768808735.881:35620): avc:  denied  { watch_sb watch_reads } for  pid=9969 comm="syz.6.1113" path="/102" dev="tmpfs" ino=553 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  130.177087][   T40] audit: type=1400 audit(1768808736.021:35621): avc:  denied  { nlmsg_read } for  pid=9987 comm="syz.4.1118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  130.219215][   T40] audit: type=1400 audit(1768808736.071:35622): avc:  denied  { append } for  pid=9991 comm="syz.4.1120" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  130.346071][ T9996] 8021q: adding VLAN 0 to HW filter on device bond3
[  130.417816][   T40] audit: type=1400 audit(1768808736.261:35623): avc:  denied  { setopt } for  pid=10000 comm="syz.5.1122" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  130.483817][   T40] audit: type=1400 audit(1768808736.331:35624): avc:  denied  { write } for  pid=10000 comm="syz.5.1122" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  130.500440][   T40] audit: type=1400 audit(1768808736.351:35625): avc:  denied  { watch_sb watch_reads } for  pid=10003 comm="syz.4.1123" path="/309/file0" dev="tmpfs" ino=1692 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  131.613866][T10038] netlink: 'syz.6.1132': attribute type 8 has an invalid length.
[  131.617464][T10038] __nla_validate_parse: 13 callbacks suppressed
[  131.617481][T10038] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1132'.
[  131.630982][T10038] bond0: entered promiscuous mode
[  131.633104][T10038] bond_slave_0: entered promiscuous mode
[  131.639638][T10038] bond_slave_1: entered promiscuous mode
[  131.643163][T10038] gretap0: entered promiscuous mode
[  131.647907][T10038] bond0: left promiscuous mode
[  131.658135][T10044] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  131.658294][T10038] bond_slave_0: left promiscuous mode
[  131.662799][   T40] audit: type=1400 audit(1768808737.511:35626): avc:  denied  { mount } for  pid=10043 comm="syz.5.1134" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  131.672768][T10038] bond_slave_1: left promiscuous mode
[  131.676041][T10038] gretap0: left promiscuous mode
[  131.770262][   T40] audit: type=1400 audit(1768808737.621:35627): avc:  denied  { unmount } for  pid=7826 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  131.814255][T10054] loop6: detected capacity change from 0 to 7
[  131.818581][ T5946] Dev loop6: unable to read RDB block 7
[  131.820820][ T5946]  loop6: unable to read partition table
[  131.823285][ T5946] loop6: partition table beyond EOD, truncated
[  131.826563][T10054] Dev loop6: unable to read RDB block 7
[  131.828334][T10054]  loop6: unable to read partition table
[  131.831566][T10054] loop6: partition table beyond EOD, truncated
[  131.833555][T10054] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  132.061171][   T40] audit: type=1400 audit(1768808737.911:35628): avc:  denied  { block_suspend } for  pid=10060 comm="syz.6.1140" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  132.088924][    T9] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  132.117563][T10068] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1143'.
[  132.122148][T10068] bridge_slave_1: left allmulticast mode
[  132.124028][T10068] bridge_slave_1: left promiscuous mode
[  132.126251][T10068] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.130455][T10068] bridge_slave_0: left allmulticast mode
[  132.132329][T10068] bridge_slave_0: left promiscuous mode
[  132.134497][T10068] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.238924][    T9] usb 10-1: Using ep0 maxpacket: 32
[  132.242454][    T9] usb 10-1: config 4 has an invalid interface number: 157 but max is 2
[  132.246275][    T9] usb 10-1: config 4 contains an unexpected descriptor of type 0x2, skipping
[  132.249220][    T9] usb 10-1: config 4 has an invalid interface number: 30 but max is 2
[  132.252359][    T9] usb 10-1: config 4 has an invalid interface number: 234 but max is 2
[  132.255628][    T9] usb 10-1: config 4 has 4 interfaces, different from the descriptor's value: 3
[  132.259658][    T9] usb 10-1: config 4 has no interface number 0
[  132.262208][    T9] usb 10-1: config 4 has no interface number 2
[  132.264712][    T9] usb 10-1: config 4 has no interface number 3
[  132.267262][    T9] usb 10-1: config 4 interface 157 altsetting 6 has an invalid descriptor for endpoint zero, skipping
[  132.271951][    T9] usb 10-1: config 4 interface 157 altsetting 6 has an invalid descriptor for endpoint zero, skipping
[  132.276230][    T9] usb 10-1: config 4 interface 157 altsetting 6 has an invalid descriptor for endpoint zero, skipping
[  132.281753][    T9] usb 10-1: config 4 interface 157 altsetting 6 endpoint 0xD has invalid maxpacket 1024, setting to 64
[  132.286154][    T9] usb 10-1: config 4 interface 157 altsetting 6 has an invalid descriptor for endpoint zero, skipping
[  132.290475][    T9] usb 10-1: config 4 interface 157 altsetting 6 has a duplicate endpoint with address 0x8, skipping
[  132.294627][    T9] usb 10-1: config 4 interface 157 altsetting 6 has a duplicate endpoint with address 0x8, skipping
[  132.298338][    T9] usb 10-1: config 4 interface 157 altsetting 6 has 12 endpoint descriptors, different from the interface descriptor's value: 14
[  132.303082][    T9] usb 10-1: too many endpoints for config 4 interface 30 altsetting 213: 38, using maximum allowed: 30
[  132.307166][    T9] usb 10-1: config 4 interface 30 altsetting 213 has an invalid descriptor for endpoint zero, skipping
[  132.310807][    T9] usb 10-1: config 4 interface 30 altsetting 213 has an invalid descriptor for endpoint zero, skipping
[  132.314481][    T9] usb 10-1: config 4 interface 30 altsetting 213 has 2 endpoint descriptors, different from the interface descriptor's value: 38
[  132.319029][    T9] usb 10-1: config 4 interface 1 altsetting 1 has a duplicate endpoint with address 0x8, skipping
[  132.323140][T10072] netlink: 207952 bytes leftover after parsing attributes in process `syz.4.1144'.
[  132.323260][    T9] usb 10-1: config 4 interface 1 altsetting 1 has an invalid descriptor for endpoint zero, skipping
[  132.323279][    T9] usb 10-1: config 4 interface 1 altsetting 1 has a duplicate endpoint with address 0x4, skipping
[  132.333769][    T9] usb 10-1: config 4 interface 1 altsetting 1 endpoint 0x9 has invalid maxpacket 1024, setting to 64
[  132.337265][    T9] usb 10-1: config 4 interface 1 altsetting 1 has an invalid descriptor for endpoint zero, skipping
[  132.339109][T10074] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1024 sclass=netlink_route_socket pid=10074 comm=syz.6.1145
[  132.341327][    T9] usb 10-1: config 4 interface 1 altsetting 1 has a duplicate endpoint with address 0x9, skipping
[  132.346626][T10074] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1145'.
[  132.350954][    T9] usb 10-1: config 4 interface 234 altsetting 1 has a duplicate endpoint with address 0xA, skipping
[  132.357996][    T9] usb 10-1: config 4 interface 234 altsetting 1 has a duplicate endpoint with address 0x7, skipping
[  132.361870][    T9] usb 10-1: config 4 interface 234 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  132.363652][ T7609] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  132.363746][T10074] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1145'.
[  132.365840][    T9] usb 10-1: config 4 interface 234 altsetting 1 has a duplicate endpoint with address 0x9, skipping
[  132.368992][ T7609] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  132.371707][    T9] usb 10-1: config 4 interface 234 altsetting 1 has a duplicate endpoint with address 0x6, skipping
[  132.376410][ T7609] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  132.378529][    T9] usb 10-1: config 4 interface 234 altsetting 1 endpoint 0x5 has invalid maxpacket 512, setting to 64
[  132.383337][ T7609] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  132.385208][    T9] usb 10-1: config 4 interface 234 altsetting 1 has a duplicate endpoint with address 0xF, skipping
[  132.395027][    T9] usb 10-1: config 4 interface 234 altsetting 1 has a duplicate endpoint with address 0x6, skipping
[  132.398404][    T9] usb 10-1: config 4 interface 234 altsetting 1 has an endpoint descriptor with address 0xFB, changing to 0x8B
[  132.402400][    T9] usb 10-1: config 4 interface 234 altsetting 1 has a duplicate endpoint with address 0x8B, skipping
[  132.405975][    T9] usb 10-1: config 4 interface 234 altsetting 1 has an invalid descriptor for endpoint zero, skipping
[  132.409500][    T9] usb 10-1: config 4 interface 234 altsetting 1 has a duplicate endpoint with address 0x8, skipping
[  132.412954][    T9] usb 10-1: config 4 interface 234 altsetting 1 has a duplicate endpoint with address 0xE, skipping
[  132.416674][    T9] usb 10-1: config 4 interface 234 altsetting 1 has 13 endpoint descriptors, different from the interface descriptor's value: 12
[  132.421203][    T9] usb 10-1: config 4 interface 157 has no altsetting 0
[  132.423642][    T9] usb 10-1: config 4 interface 30 has no altsetting 0
[  132.426200][    T9] usb 10-1: config 4 interface 1 has no altsetting 0
[  132.428333][    T9] usb 10-1: config 4 interface 234 has no altsetting 0
[  132.431293][    T9] usb 10-1: language id specifier not provided by device, defaulting to English
[  132.435447][    T9] usb 10-1: Dual-Role OTG device on HNP port
[  132.437621][    T9] usb 10-1: New USB device found, idVendor=2184, idProduct=0030, bcdDevice=24.cb
[  132.440943][    T9] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  132.443840][    T9] usb 10-1: Product: 諁鮚嗧걍飈⨤麂鏺⑟䞯֦
[  132.446058][    T9] usb 10-1: Manufacturer: Ѕ
[  132.447562][    T9] usb 10-1: SerialNumber: syz
[  132.661123][    T9] cp210x 10-1:4.157: cp210x converter detected
[  132.666440][    T9] cp210x 10-1:4.157: failed to get vendor val 0x370b size 1: -71
[  132.670205][    T9] cp210x 10-1:4.157: querying part number failed
[  132.676724][    T9] usb 10-1: cp210x converter now attached to ttyUSB0
[  132.685301][    T9] cp210x 10-1:4.30: cp210x converter detected
[  132.687781][    T9] cp210x 10-1:4.30: failed to get vendor val 0x370b size 1: -71
[  132.690468][    T9] cp210x 10-1:4.30: querying part number failed
[  132.694477][    T9] usb 10-1: cp210x converter now attached to ttyUSB1
[  132.698991][    T9] cp210x 10-1:4.1: cp210x converter detected
[  132.701390][    T9] cp210x 10-1:4.1: failed to get vendor val 0x370b size 1: -71
[  132.703930][    T9] cp210x 10-1:4.1: querying part number failed
[  132.707611][    T9] usb 10-1: cp210x converter now attached to ttyUSB2
[  132.714660][    T9] cp210x 10-1:4.234: cp210x converter detected
[  132.717977][    T9] cp210x 10-1:4.234: failed to get vendor val 0x370b size 1: -71
[  132.722079][    T9] cp210x 10-1:4.234: querying part number failed
[  132.725765][    T9] usb 10-1: cp210x converter now attached to ttyUSB3
[  132.731881][    T9] usb 10-1: USB disconnect, device number 8
[  132.747184][    T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  132.751944][    T9] cp210x 10-1:4.157: device disconnected
[  132.762993][    T9] cp210x ttyUSB1: cp210x converter now disconnected from ttyUSB1
[  132.765953][    T9] cp210x 10-1:4.30: device disconnected
[  132.770306][    T9] cp210x ttyUSB2: cp210x converter now disconnected from ttyUSB2
[  132.773071][    T9] cp210x 10-1:4.1: device disconnected
[  132.777505][    T9] cp210x ttyUSB3: cp210x converter now disconnected from ttyUSB3
[  132.780862][    T9] cp210x 10-1:4.234: device disconnected
[  133.142782][T10113] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1159'.
[  133.151381][T10113] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  133.412446][T10134] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1164'.
[  133.439237][T10134] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  133.634138][T10139] loop6: detected capacity change from 0 to 7
[  133.636950][T10139] Dev loop6: unable to read RDB block 7
[  133.638878][T10139]  loop6: unable to read partition table
[  133.641615][T10139] loop6: partition table beyond EOD, truncated
[  133.643737][T10139] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  133.770315][T10160] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1173'.
[  133.775412][T10159] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1173'.
[  133.979878][T10167] vcan0: tx address claim with different name
[  133.999022][ T5950] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  134.042546][T10176] random: crng reseeded on system resumption
[  134.096955][T10178] befs: (nbd5): unable to read superblock
[  134.170738][ T5950] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  134.174242][ T5950] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  134.177452][ T5950] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  134.182309][ T5950] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.188018][T10157] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  134.194448][ T5950] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  134.201629][T10180] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65280 sclass=netlink_route_socket pid=10180 comm=syz.6.1181
[  134.235818][T10190] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  134.253495][T10189] [U] 
[  134.307683][T10197] mkiss: ax0: crc mode is auto.
[  134.393672][   T54] usb 9-1: USB disconnect, device number 9
[  134.545789][T10204] netlink: 'syz.6.1186': attribute type 1 has an invalid length.
[  134.548404][T10204] netlink: 228 bytes leftover after parsing attributes in process `syz.6.1186'.
[  135.146846][T10232] loop5: detected capacity change from 0 to 7
[  135.157448][T10232] Dev loop5: unable to read RDB block 7
[  135.157483][T10232]  loop5: unable to read partition table
[  135.157670][T10232] loop5: partition table beyond EOD, truncated
[  135.162763][T10232] loop_reread_partitions: partition scan of loop5 (�������g�C�j̖�P=��!MX���	���%��`�搘ȵ4FLQk݊5) failed (rc=-5)
[  135.382931][   T40] kauditd_printk_skb: 32 callbacks suppressed
[  135.382946][   T40] audit: type=1400 audit(1768808741.231:35661): avc:  denied  { setopt } for  pid=10239 comm="syz.5.1198" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  135.801368][   T40] audit: type=1400 audit(1768808741.651:35662): avc:  denied  { getopt } for  pid=10248 comm="syz.5.1201" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  135.810039][   T40] audit: type=1400 audit(1768808741.651:35663): avc:  denied  { getopt } for  pid=10248 comm="syz.5.1201" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  135.888865][   T40] audit: type=1400 audit(1768808741.731:35664): avc:  denied  { setopt } for  pid=10258 comm="syz.5.1205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  135.977495][T10255] xt_CT: No such helper "snmp_trap"
[  136.001595][ T6108] usb 11-1: new high-speed USB device number 6 using dummy_hcd
[  136.077853][   T40] audit: type=1400 audit(1768808741.921:35665): avc:  denied  { ioctl } for  pid=10264 comm="syz.3.1207" path="socket:[35325]" dev="sockfs" ino=35325 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  136.094868][   T40] audit: type=1400 audit(1768808741.941:35666): avc:  denied  { mount } for  pid=10264 comm="syz.3.1207" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  136.108976][   T40] audit: type=1400 audit(1768808741.951:35667): avc:  denied  { unmount } for  pid=5939 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  136.150313][ T6108] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  136.154887][ T6108] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  136.159086][ T6108] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  136.163205][ T6108] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.170797][T10253] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  136.184290][ T6108] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  136.227865][T10277] can0: slcan on ttyS3.
[  136.380622][   T54] usb 11-1: USB disconnect, device number 6
[  136.408711][   T40] audit: type=1800 audit(1768808742.251:35668): pid=10297 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.5.1215" name="bus" dev="overlay" ino=944 res=0 errno=0
[  136.420713][ T5294] Bluetooth: hci1: unexpected event for opcode 0x2028
[  136.462681][T10302] netlink: 'syz.5.1217': attribute type 4 has an invalid length.
[  136.527403][T10309] netlink: 'syz.5.1219': attribute type 4 has an invalid length.
[  136.561594][   T40] audit: type=1400 audit(1768808742.401:35669): avc:  denied  { read } for  pid=10308 comm="syz.5.1219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  136.614449][T10321] tipc: Started in network mode
[  136.616166][T10321] tipc: Node identity a26a7f07247b, cluster identity 4711
[  136.619926][   T40] audit: type=1400 audit(1768808742.471:35670): avc:  denied  { ioctl } for  pid=10308 comm="syz.5.1219" path="socket:[36649]" dev="sockfs" ino=36649 ioctlcmd=0xaeab scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  136.624052][T10321] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  136.635471][T10321] tipc: Disabling bearer <eth:syzkaller0>
[  136.816808][T10277] can0 (unregistered): slcan off ttyS3.
[  136.860021][T10360] __nla_validate_parse: 9 callbacks suppressed
[  136.860037][T10360] netlink: 212348 bytes leftover after parsing attributes in process `syz.4.1226'.
[  136.869011][T10360] netlink: Unknown conntrack attr (0)
[  136.912856][T10369] loop6: detected capacity change from 0 to 7
[  136.915795][ T5946] Dev loop6: unable to read RDB block 7
[  136.917920][ T5946]  loop6: unable to read partition table
[  136.921045][ T5946] loop6: partition table beyond EOD, truncated
[  136.928074][T10369] Dev loop6: unable to read RDB block 7
[  136.930518][T10366] xfrm1: entered promiscuous mode
[  136.932597][T10366] xfrm1: entered allmulticast mode
[  136.932599][T10369]  loop6: unable to read partition table
[  136.932690][T10369] loop6: partition table beyond EOD, truncated
[  136.942700][T10369] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  136.955647][ T5344] Dev loop6: unable to read RDB block 7
[  136.958009][ T5344]  loop6: unable to read partition table
[  136.965420][ T5344] loop6: partition table beyond EOD, truncated
[  137.107087][T10391] input: syz1 as /devices/virtual/input/input12
[  137.118418][T10387] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  137.122386][T10387] overlayfs: failed to set xattr on upper
[  137.124313][T10387] overlayfs: ...falling back to redirect_dir=nofollow.
[  137.126565][T10387] overlayfs: ...falling back to index=off.
[  137.128443][T10387] overlayfs: ...falling back to uuid=null.
[  137.342946][T10407] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1241'.
[  137.382851][T10410] mkiss: ax0: crc mode is auto.
[  137.409798][T10407] CIFS mount error: No usable UNC path provided in device string!
[  137.409798][T10407] 
[  137.413054][T10407] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  137.458221][T10417] mkiss: ax0: crc mode is auto.
[  137.543000][T10420] mkiss: ax0: crc mode is auto.
[  137.668171][T10436] kAFS: unable to lookup cell 'syz0'
[  137.885817][ T5294] Bluetooth: hci2: unexpected event for opcode 0x080b
[  137.888962][ T5294] Bluetooth: hci2: unexpected event for opcode 0x080b
[  137.909070][    T9] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  138.071532][    T9] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  138.075695][    T9] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  138.079363][    T9] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  138.094107][    T9] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.104524][T10431] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  138.110675][    T9] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  138.164620][T10463] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10463 comm=syz.4.1260
[  138.243303][T10499] overlayfs: missing 'workdir'
[  138.277685][T10501] loop6: detected capacity change from 0 to 7
[  138.280648][ T5946] Dev loop6: unable to read RDB block 7
[  138.282470][ T5946]  loop6: unable to read partition table
[  138.284343][ T5946] loop6: partition table beyond EOD, truncated
[  138.287282][T10501] Dev loop6: unable to read RDB block 7
[  138.291263][T10501]  loop6: unable to read partition table
[  138.293684][T10501] loop6: partition table beyond EOD, truncated
[  138.297538][T10501] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  138.318382][T10505] netlink: 'syz.4.1273': attribute type 1 has an invalid length.
[  138.323350][T10505] netlink: 'syz.4.1273': attribute type 2 has an invalid length.
[  138.324597][ T7978] usb 10-1: USB disconnect, device number 9
[  138.429902][T10512] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1276'.
[  138.432165][T10524] x_tables: duplicate underflow at hook 2
[  138.432647][T10512] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1276'.
[  138.531517][T10533] tmpfs: Bad value for 'mpol'
[  138.592765][T10538] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  138.772144][T10550] /dev/sg0: Can't lookup blockdev
[  138.984236][T10553] loop6: detected capacity change from 0 to 7
[  138.990184][T10553] Dev loop6: unable to read RDB block 7
[  138.992585][T10553]  loop6: unable to read partition table
[  138.995142][T10553] loop6: partition table beyond EOD, truncated
[  139.010135][T10553] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  139.026079][T10555] Bluetooth: MGMT ver 1.23
[  139.030188][T10555] Bluetooth: hci1: expected 2178 bytes, got 2 bytes
[  139.050613][T10558] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  139.136171][T10566] tmpfs: Unknown parameter 'h��]�~�Ɵ'
[  139.259414][T10575] loop6: detected capacity change from 0 to 7
[  139.262354][ T8366] Dev loop6: unable to read RDB block 7
[  139.264165][ T8366]  loop6: unable to read partition table
[  139.266117][ T8366] loop6: partition table beyond EOD, truncated
[  139.269906][T10575] Dev loop6: unable to read RDB block 7
[  139.271731][T10575]  loop6: unable to read partition table
[  139.273661][T10575] loop6: partition table beyond EOD, truncated
[  139.275661][T10575] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  139.383815][T10582] binder: 10581:10582 ioctl c0306201 200000000240 returned -14
[  139.384551][T10587] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1298'.
[  139.435569][T10591] binder: Bad value for 'max'
[  139.444337][T10593] netlink: 'syz.4.1300': attribute type 3 has an invalid length.
[  139.447240][T10594] netlink: 'syz.4.1300': attribute type 3 has an invalid length.
[  139.497276][T10600] can0: slcan on ttynull.
[  139.560317][T10597] can0 (unregistered): slcan off ttynull.
[  139.869041][    T9] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  139.911047][T10622] loop6: detected capacity change from 0 to 7
[  139.914592][ T5946] Dev loop6: unable to read RDB block 7
[  139.916552][ T5946]  loop6: unable to read partition table
[  139.918740][ T5946] loop6: partition table beyond EOD, truncated
[  139.922512][T10622] Dev loop6: unable to read RDB block 7
[  139.925847][T10622]  loop6: unable to read partition table
[  139.928372][T10622] loop6: partition table beyond EOD, truncated
[  139.931406][T10622] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  140.035085][T10629] NILFS (nullb0): couldn't find nilfs on the device
[  140.043192][    T9] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  140.047376][    T9] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  140.047469][T10629] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=55 sclass=netlink_route_socket pid=10629 comm=syz.6.1307
[  140.050979][    T9] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  140.058756][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.068506][T10612] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  140.076178][    T9] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  140.219096][T10642] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1311'.
[  140.274733][ T1344] usb 9-1: USB disconnect, device number 10
[  140.362991][T10650] loop6: detected capacity change from 0 to 7
[  140.366412][ T5946] Dev loop6: unable to read RDB block 7
[  140.368432][ T5946]  loop6: unable to read partition table
[  140.370628][ T5946] loop6: partition table beyond EOD, truncated
[  140.375008][T10650] Dev loop6: unable to read RDB block 7
[  140.377460][T10650]  loop6: unable to read partition table
[  140.381262][T10650] loop6: partition table beyond EOD, truncated
[  140.383431][T10650] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  140.418411][   T40] kauditd_printk_skb: 38 callbacks suppressed
[  140.418422][   T40] audit: type=1400 audit(1768808746.261:35709): avc:  denied  { write } for  pid=10651 comm="syz.5.1315" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  140.479009][ T5953] Bluetooth: hci2: command 0x0405 tx timeout
[  140.480313][   T40] audit: type=1400 audit(1768808746.331:35710): avc:  denied  { append } for  pid=10654 comm="syz.5.1316" name="2:0:0:0" dev="devtmpfs" ino=728 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  140.481001][T10655] syz.5.1316: calling unsupported SCSI_IOCTL_SEND_COMMAND
[  140.646972][T10671] SELinux: syz.5.1317 (10671) set checkreqprot to 1. This is no longer supported.
[  140.646993][   T40] audit: type=1400 audit(1768808746.491:35711): avc:  denied  { setcheckreqprot } for  pid=10656 comm="syz.5.1317" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  140.763492][T10675] netlink: 'syz.6.1319': attribute type 1 has an invalid length.
[  140.776686][T10675] 8021q: adding VLAN 0 to HW filter on device bond4
[  140.800208][T10675] bond4: (slave veth3): Enslaving as an active interface with a down link
[  140.812776][T10675] bond1: (slave dummy0): Releasing active interface
[  140.820417][T10675] bond4: (slave dummy0): making interface the new active one
[  140.824476][T10675] dummy0: entered promiscuous mode
[  140.826879][T10675] bond4: (slave dummy0): Enslaving as an active interface with an up link
[  140.832678][T10675] netlink: 'syz.6.1319': attribute type 10 has an invalid length.
[  140.835959][T10675] netlink: 40 bytes leftover after parsing attributes in process `syz.6.1319'.
[  140.842678][T10675] bond4: (slave dummy0): Releasing active interface
[  140.886000][T10678] xt_connbytes: Forcing CT accounting to be enabled
[  140.888691][T10678] xt_CT: You must specify a L4 protocol and not use inversions on it
[  141.014181][T10683] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1322'.
[  141.041437][T10683] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10683 comm=syz.4.1322
[  141.100777][   T40] audit: type=1400 audit(1768808746.951:35712): avc:  denied  { getopt } for  pid=10685 comm="syz.4.1323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  141.930905][ T5953] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  141.932310][T10717] vlan2: entered promiscuous mode
[  141.933851][ T5953] Bluetooth: hci2: Injecting HCI hardware error event
[  141.945691][T10717] vlan2: entered allmulticast mode
[  141.951182][T10721] loop6: detected capacity change from 0 to 7
[  141.955702][ T5946] Dev loop6: unable to read RDB block 7
[  141.958184][ T5946]  loop6: unable to read partition table
[  141.964521][ T5946] loop6: partition table beyond EOD, truncated
[  141.967880][T10721] Dev loop6: unable to read RDB block 7
[  141.970223][   T40] audit: type=1400 audit(1768808747.821:35713): avc:  denied  { write } for  pid=10709 comm="syz.6.1330" path="socket:[39139]" dev="sockfs" ino=39139 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  141.970692][T10721]  loop6: unable to read partition table
[  141.980296][T10721] loop6: partition table beyond EOD, truncated
[  141.982468][T10721] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  142.019505][   T40] audit: type=1400 audit(1768808747.871:35714): avc:  denied  { setattr } for  pid=8366 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  142.066617][T10726] netlink: 'syz.5.1337': attribute type 5 has an invalid length.
[  142.070430][T10726] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1337'.
[  142.204104][T10738] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1340'.
[  142.207286][T10738] netlink: 'syz.5.1340': attribute type 7 has an invalid length.
[  142.210420][T10738] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1340'.
[  142.213968][T10738] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1340'.
[  142.217203][T10738] netlink: 'syz.5.1340': attribute type 7 has an invalid length.
[  142.221030][T10738] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1340'.
[  142.230629][T10741] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1341'.
[  142.294245][T10748] loop6: detected capacity change from 0 to 7
[  142.297122][ T5946] Dev loop6: unable to read RDB block 7
[  142.299413][ T5946]  loop6: unable to read partition table
[  142.301293][ T5946] loop6: partition table beyond EOD, truncated
[  142.305214][T10748] Dev loop6: unable to read RDB block 7
[  142.307181][T10748]  loop6: unable to read partition table
[  142.309781][T10748] loop6: partition table beyond EOD, truncated
[  142.311960][T10748] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  142.324710][ T5344] Dev loop6: unable to read RDB block 7
[  142.326550][ T5344]  loop6: unable to read partition table
[  142.328392][ T5344] loop6: partition table beyond EOD, truncated
[  142.332854][T10752] bridge_slave_0: entered allmulticast mode
[  142.341872][T10752] bridge_slave_0: entered promiscuous mode
[  142.350884][T10752] Cannot find add_set index 65532 as target
[  142.367689][T10752] bridge_slave_0: left promiscuous mode
[  142.521857][T10765] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  142.559421][ T5953] Bluetooth: hci2: command 0x0405 tx timeout
[  142.566963][ T5294] Bluetooth: hci2: hardware error 0x00
[  142.594364][T10771] bond2: Removing last arp target with arp_interval on
[  142.616767][T10775] erspan1: entered promiscuous mode
[  142.631237][T10778] loop6: detected capacity change from 0 to 7
[  142.634696][T10778] Dev loop6: unable to read RDB block 7
[  142.637012][T10778]  loop6: unable to read partition table
[  142.639404][T10778] loop6: partition table beyond EOD, truncated
[  142.641748][T10778] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  142.821508][T10788] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1360'.
[  142.824971][T10788] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1360'.
[  143.065219][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  143.067358][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  143.143883][T10801] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1364'.
[  143.202960][T10807] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1366'.
[  143.264527][T10814] loop6: detected capacity change from 0 to 7
[  143.272554][ T5946] Dev loop6: unable to read RDB block 7
[  143.275391][ T5946]  loop6: unable to read partition table
[  143.277953][ T5946] loop6: partition table beyond EOD, truncated
[  143.283514][T10814] Dev loop6: unable to read RDB block 7
[  143.285701][T10814]  loop6: unable to read partition table
[  143.287611][T10814] loop6: partition table beyond EOD, truncated
[  143.291283][T10814] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  143.392076][T10823] netlink: 'syz.4.1369': attribute type 7 has an invalid length.
[  143.396240][T10823] netlink: 'syz.4.1369': attribute type 8 has an invalid length.
[  143.871319][   T40] audit: type=1400 audit(1768808749.721:35715): avc:  denied  { module_load } for  pid=10838 comm="syz.3.1373" path="/sys/kernel/hardlockup_count" dev="sysfs" ino=70963 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  143.913809][   T40] audit: type=1400 audit(1768808749.761:35716): avc:  denied  { mount } for  pid=10842 comm="syz.3.1374" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  143.938895][   T40] audit: type=1400 audit(1768808749.761:35717): avc:  denied  { mounton } for  pid=10842 comm="syz.3.1374" path="/294/file0" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  143.947691][   T40] audit: type=1400 audit(1768808749.761:35718): avc:  denied  { read } for  pid=10842 comm="syz.3.1374" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  144.059398][T10850] random: crng reseeded on system resumption
[  144.071742][T10850] Restarting kernel threads ...
[  144.074773][T10850] Done restarting kernel threads.
[  144.638884][ T5294] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  144.875728][T10895] gfs2: gfs2 mount does not exist
[  145.031573][T10909] netlink: 'syz.3.1390': attribute type 1 has an invalid length.
[  145.049340][T10917] netlink: 'syz.4.1391': attribute type 1 has an invalid length.
[  145.084457][T10917] bond2: entered promiscuous mode
[  145.087221][T10917] 8021q: adding VLAN 0 to HW filter on device bond2
[  145.184597][T10980] tmpfs: Bad value for 'mpol'
[  145.202412][T10980] syzkaller1: entered promiscuous mode
[  145.204775][T10980] syzkaller1: entered allmulticast mode
[  145.509586][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  145.509598][   T40] audit: type=1400 audit(2000000000.950:35733): avc:  denied  { bind } for  pid=10993 comm="syz.4.1398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  145.536841][T11002] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11002 comm=syz.5.1399
[  146.018583][T11022] netlink: 'syz.3.1403': attribute type 11 has an invalid length.
[  146.098108][T11028] netlink: 'syz.3.1405': attribute type 4 has an invalid length.
[  146.134470][T11030] chnl_net:caif_netlink_parms(): no params data found
[  146.348144][   T40] audit: type=1400 audit(2000000001.780:35734): avc:  denied  { mounton } for  pid=11039 comm="syz.5.1409" path="/214/file0" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=dir permissive=1
[  146.399946][T11045] loop6: detected capacity change from 0 to 7
[  146.409075][T11045] Dev loop6: unable to read RDB block 7
[  146.410936][T11045]  loop6: unable to read partition table
[  146.412769][T11045] loop6: partition table beyond EOD, truncated
[  146.414732][T11045] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  146.521707][   T40] audit: type=1400 audit(2000000001.960:35735): avc:  denied  { bind } for  pid=11057 comm="syz.3.1413" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  146.527786][   T40] audit: type=1400 audit(2000000001.960:35736): avc:  denied  { listen } for  pid=11057 comm="syz.3.1413" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  146.578989][   T40] audit: type=1400 audit(2000000002.020:35737): avc:  denied  { accept } for  pid=11057 comm="syz.3.1413" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  146.672449][T11080] netlink: 'syz.3.1415': attribute type 2 has an invalid length.
[  146.743633][   T40] audit: type=1400 audit(2000000002.180:35738): avc:  denied  { create } for  pid=11089 comm="syz.5.1419" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  146.744247][T11091] fuse: Bad value for 'group_id'
[  146.753809][T11091] fuse: Bad value for 'group_id'
[  146.768784][   T40] audit: type=1400 audit(2000000002.180:35739): avc:  denied  { mounton } for  pid=11089 comm="syz.5.1419" path="/218/file0" dev="tmpfs" ino=1192 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  146.794710][T11095] loop6: detected capacity change from 0 to 7
[  146.799936][ T5946] Dev loop6: unable to read RDB block 7
[  146.801785][ T5946]  loop6: unable to read partition table
[  146.803727][ T5946] loop6: partition table beyond EOD, truncated
[  146.818340][T11095] Dev loop6: unable to read RDB block 7
[  146.823796][T11095]  loop6: unable to read partition table
[  146.826337][T11095] loop6: partition table beyond EOD, truncated
[  146.834772][T11095] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  146.835184][T11087] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.841310][ T5344] Dev loop6: unable to read RDB block 7
[  146.844232][ T5344]  loop6: unable to read partition table
[  146.846245][ T5344] loop6: partition table beyond EOD, truncated
[  146.912596][T11087] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.962282][T11087] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.050651][T11087] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.136638][  T222] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  147.145336][  T222] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  147.148770][ T6108] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  147.154393][  T222] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  147.164007][  T222] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  147.209943][   T40] audit: type=1400 audit(2000000002.650:35740): avc:  denied  { listen } for  pid=11130 comm="syz.3.1423" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  147.301078][ T6108] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  147.306674][ T6108] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  147.310038][ T6108] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  147.314002][ T6108] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.323014][T11111] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  147.326972][ T6108] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  147.533653][ T6009] usb 10-1: USB disconnect, device number 10
[  147.670157][T11184] loop6: detected capacity change from 0 to 7
[  147.672989][T11184] Dev loop6: unable to read RDB block 7
[  147.674824][T11184]  loop6: unable to read partition table
[  147.676782][T11184] loop6: partition table beyond EOD, truncated
[  147.686411][T11184] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  147.912257][ T7599] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  148.070144][T11199] SELinux:  Context system_u:object_r:var_log_t:s0 is not valid (left unmapped).
[  148.077863][   T40] audit: type=1400 audit(2000000003.510:35741): avc:  denied  { relabelto } for  pid=11198 comm="syz.5.1433" name="6lowpan_enable" dev="debugfs" ino=5402 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:var_log_t:s0"
[  148.108669][   T40] audit: type=1400 audit(2000000003.510:35742): avc:  denied  { associate } for  pid=11198 comm="syz.5.1433" name="6lowpan_enable" dev="debugfs" ino=5402 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:var_log_t:s0"
[  148.435345][T11231] pim6reg: entered allmulticast mode
[  148.666902][T11254] vivid-000: =================  START STATUS  =================
[  148.671151][T11254] vivid-000: Test Pattern: 75% Colorbar
[  148.673243][T11254] vivid-000: Fill Percentage of Frame: 100
[  148.675101][T11254] vivid-000: Horizontal Movement: No Movement
[  148.677081][T11254] vivid-000: Vertical Movement: Move Down Slow
[  148.679215][T11254] vivid-000: OSD Text Mode: All
[  148.680866][T11254] vivid-000: Show Border: false
[  148.682502][T11254] vivid-000: Show Square: false
[  148.684118][T11254] vivid-000: Sensor Flipped Horizontally: false
[  148.686139][T11254] vivid-000: Sensor Flipped Vertically: true
[  148.688274][T11254] vivid-000: Insert SAV Code in Image: false
[  148.691713][T11254] vivid-000: Insert EAV Code in Image: false
[  148.693740][T11254] vivid-000: Insert Video Guard Band: false
[  148.695725][T11254] vivid-000: Reduced Framerate: false
[  148.697524][T11254] vivid-000: HDMI 000-0 Is Connected To: Output HDMI 023-0
[  148.700218][T11254] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  148.703457][T11254] vivid-000: Enable Capture Cropping: true
[  148.705941][T11254] vivid-000: Enable Capture Composing: true
[  148.708342][T11254] vivid-000: Enable Capture Scaler: true
[  148.711119][T11254] vivid-000: Timestamp Source: End of Frame
[  148.713765][T11254] vivid-000: Colorspace: sRGB
[  148.715708][T11254] vivid-000: Transfer Function: Default
[  148.718846][T11254] vivid-000: Y'CbCr Encoding: Default
[  148.721200][T11254] vivid-000: HSV Encoding: Hue 0-256
[  148.723355][T11254] vivid-000: Quantization: Default
[  148.725295][T11254] vivid-000: Apply Alpha To Red Only: false
[  148.727452][T11254] vivid-000: Standard Aspect Ratio: 4x3
[  148.730061][T11254] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  148.733325][T11254] vivid-000: DV Timings: 640x480p59 inactive
[  148.735782][T11254] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  148.738445][T11254] vivid-000: Maximum EDID Blocks: 2
[  148.740542][T11254] vivid-000: Limited RGB Range (16-235): false
[  148.742711][T11254] vivid-000: Rx RGB Quantization Range: Automatic
[  148.745108][T11254] vivid-000: Power Present: 0x00000001
[  148.747097][T11254] tpg source WxH: 320x240 (Y'CbCr)
[  148.748631][   T54] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  148.748898][T11254] tpg field: 1
[  148.752983][T11254] tpg crop: (0,0)/320x240
[  148.754913][T11254] tpg compose: (0,0)/320x240
[  148.756880][T11254] tpg colorspace: 12
[  148.758629][T11254] tpg transfer function: 1/1
[  148.760637][T11254] tpg Y'CbCr encoding: 0/2
[  148.762665][T11254] tpg quantization: 2/2
[  148.764460][T11254] tpg RGB range: 0/2
[  148.766132][T11254] vivid-000: ==================  END STATUS  ==================
[  148.892593][ T5305] IPVS: starting estimator thread 0...
[  148.909863][   T54] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  148.913169][   T54] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  148.916149][   T54] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  148.919216][   T54] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.925642][T11243] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  148.929661][   T54] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  148.937360][T11276] __nla_validate_parse: 7 callbacks suppressed
[  148.937376][T11276] netlink: 212368 bytes leftover after parsing attributes in process `syz.5.1449'.
[  148.979489][T11277] IPVS: using max 43 ests per chain, 103200 per kthread
[  149.020672][T11294] netlink: 'syz.5.1450': attribute type 10 has an invalid length.
[  149.023886][T11294] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1450'.
[  149.027671][T11294] dummy0: entered promiscuous mode
[  149.034234][T11294] bridge0: port 3(dummy0) entered blocking state
[  149.037043][T11294] bridge0: port 3(dummy0) entered disabled state
[  149.040605][T11294] dummy0: entered allmulticast mode
[  149.134955][   T10] usb 9-1: USB disconnect, device number 11
[  149.214138][T11318] loop6: detected capacity change from 0 to 7
[  149.216815][T11318] Dev loop6: unable to read RDB block 7
[  149.219186][T11318]  loop6: unable to read partition table
[  149.221342][T11318] loop6: partition table beyond EOD, truncated
[  149.223567][T11318] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  149.727412][T11340] can0: slcan on ttyS3.
[  149.880244][T11353] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3 sclass=netlink_route_socket pid=11353 comm=syz.4.1459
[  149.892326][T11353] netlink: 360 bytes leftover after parsing attributes in process `syz.4.1459'.
[  149.897481][T11353] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11353 comm=syz.4.1459
[  150.264812][T11366] can0 (unregistered): slcan off ttyS3.
[  150.350076][T11385] netlink: 200 bytes leftover after parsing attributes in process `syz.5.1465'.
[  150.411992][T11390] netlink: 'syz.5.1466': attribute type 10 has an invalid length.
[  150.420356][T11391] can0: slcan on ttyS3.
[  150.420403][T11390] lo: entered promiscuous mode
[  150.425538][T11390] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  150.523155][T11405] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1469'.
[  150.526063][T11405] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1469'.
[  150.626194][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.631308][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.634262][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.637076][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.640998][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.645345][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.648953][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.652050][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.655060][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.658114][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.661925][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.665116][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.670611][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.673928][T11417] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  150.677723][T11414] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[  150.990484][T11391] can0 (unregistered): slcan off ttyS3.
[  151.060030][ T6009] usb 10-1: new low-speed USB device number 11 using dummy_hcd
[  151.209544][ T6009] usb 10-1: Invalid ep0 maxpacket: 64
[  151.300157][T11463] netlink: 'syz.3.1477': attribute type 13 has an invalid length.
[  151.305363][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  151.305373][   T40] audit: type=1400 audit(2000000006.740:35750): avc:  denied  { read } for  pid=11462 comm="syz.3.1477" name="msr" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  151.317294][   T40] audit: type=1400 audit(2000000006.750:35751): avc:  denied  { open } for  pid=11462 comm="syz.3.1477" path="/dev/cpu/3/msr" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  151.328358][   T40] audit: type=1400 audit(2000000006.760:35752): avc:  denied  { ioctl } for  pid=11462 comm="syz.3.1477" path="/dev/cpu/3/msr" dev="devtmpfs" ino=93 ioctlcmd=0x63a0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  151.339910][ T6009] usb 10-1: new low-speed USB device number 12 using dummy_hcd
[  151.377491][T11465] tmpfs: Unknown parameter '00000000000000000000005'
[  151.498743][ T6009] usb 10-1: Invalid ep0 maxpacket: 64
[  151.502380][ T6009] usb usb10-port1: attempt power cycle
[  151.587316][T11467] binder: 11466:11467 ioctl 89f3 200000000d40 returned -22
[  151.828503][ T5344]  loop8: [POWERTEC] p1 p2 p3 p4 p5 p6 p7 p8 p9 p10 p11 p12
[  151.831711][ T5344] loop8: p1 start 3199124342 is beyond EOD, truncated
[  151.838564][ T5344] loop8: p2 start 20667868 is beyond EOD, truncated
[  151.841231][ T5344] loop8: p3 start 1135147739 is beyond EOD, truncated
[  151.843947][ T5344] loop8: p4 start 3162079919 is beyond EOD, truncated
[  151.846718][ T5344] loop8: p5 start 1377202111 is beyond EOD, truncated
[  151.859444][ T5344] loop8: p6 start 2997376130 is beyond EOD, truncated
[  151.862333][ T5344] loop8: p7 start 2903780680 is beyond EOD, truncated
[  151.862946][ T6009] usb 10-1: new low-speed USB device number 13 using dummy_hcd
[  151.865164][ T5344] loop8: p8 start 594585592 is beyond EOD, truncated
[  151.871256][ T5344] loop8: p9 start 389148163 is beyond EOD, truncated
[  151.874061][ T5344] loop8: p10 start 2387280917 is beyond EOD, truncated
[  151.876948][ T5344] loop8: p11 start 2644712506 is beyond EOD, truncated
[  151.880307][ T5344] loop8: p12 start 3394965712 is beyond EOD, truncated
[  151.898945][ T6009] usb 10-1: Invalid ep0 maxpacket: 64
[  151.972829][T11487] sp0: Synchronizing with TNC
[  151.982219][T11486] [U] �
[  152.039678][ T6009] usb 10-1: new low-speed USB device number 14 using dummy_hcd
[  152.078998][ T6009] usb 10-1: Invalid ep0 maxpacket: 64
[  152.083670][ T6009] usb usb10-port1: unable to enumerate USB device
[  152.154255][T11502] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1484'.
[  152.160127][T11502] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1484'.
[  152.172350][T11502] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1484'.
[  152.175592][T11502] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1484'.
[  152.196758][   T40] audit: type=1400 audit(2000000007.630:35753): avc:  denied  { append } for  pid=11501 comm="syz.3.1484" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  152.230014][   T40] audit: type=1800 audit(2000000007.670:35754): pid=11502 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1484" name="bus" dev="overlay" ino=1828 res=0 errno=0
[  153.101677][T11551] netlink: 'syz.3.1498': attribute type 21 has an invalid length.
[  153.148895][ T6009] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  153.227193][T11553] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  153.299878][ T6009] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  153.304312][ T6009] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  153.309691][ T6009] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  153.313417][ T6009] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.322432][T11542] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  153.337663][ T6009] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  153.529143][ T6009] usb 9-1: USB disconnect, device number 12
[  153.861665][   T40] audit: type=1400 audit(2000000009.300:35755): avc:  denied  { getopt } for  pid=11594 comm="syz.5.1502" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  153.870323][T11595] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=44058 sclass=netlink_route_socket pid=11595 comm=syz.5.1502
[  153.979973][T11604] __nla_validate_parse: 3 callbacks suppressed
[  153.979985][T11604] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1504'.
[  153.984794][T11604] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1504'.
[  154.025626][T11607] loop6: detected capacity change from 0 to 7
[  154.029594][T11607] Dev loop6: unable to read RDB block 7
[  154.031724][T11607]  loop6: unable to read partition table
[  154.033915][T11607] loop6: partition table beyond EOD, truncated
[  154.036192][T11607] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  154.197031][   T40] audit: type=1400 audit(2000000009.630:35756): avc:  denied  { map } for  pid=11619 comm="syz.5.1507" path="/dev/comedi2" dev="devtmpfs" ino=1304 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  154.204286][   T40] audit: type=1400 audit(2000000009.630:35757): avc:  denied  { execute } for  pid=11619 comm="syz.5.1507" path="/dev/comedi2" dev="devtmpfs" ino=1304 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  154.276895][T11629] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1510'.
[  154.282671][T11630] tmpfs: Cannot change global quota limit on remount
[  154.332517][ T7603] nci: nci_rx_work: unknown MT 0x6
[  154.342418][   T40] audit: type=1400 audit(2000000009.780:35758): avc:  denied  { create } for  pid=11625 comm="syz.3.1510" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  154.394477][   T40] audit: type=1400 audit(2000000009.830:35759): avc:  denied  { getopt } for  pid=11636 comm="syz.4.1512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  155.161972][T11650] loop6: detected capacity change from 0 to 7
[  155.165257][ T5946] Dev loop6: unable to read RDB block 7
[  155.167141][ T5946]  loop6: unable to read partition table
[  155.170790][ T5946] loop6: partition table beyond EOD, truncated
[  155.179728][T11650] Dev loop6: unable to read RDB block 7
[  155.182517][T11650]  loop6: unable to read partition table
[  155.185012][T11650] loop6: partition table beyond EOD, truncated
[  155.188992][T11650] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  155.339747][T11663] workqueue: name exceeds WQ_NAME_LEN. Truncating to: 4π!F���Vl�uc'f`�ކ�;��1�
[  155.499102][T11688] kvm: user requested TSC rate below hardware speed
[  155.503254][T11688] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3435572954 (219876669056 ns) > initial count (59054907904 ns). Using initial count to start timer.
[  155.658337][ T1344] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  155.811807][ T1344] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  155.817106][ T1344] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  155.821765][ T1344] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  155.825755][ T1344] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.836950][T11680] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  155.850038][ T1344] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  155.989947][T11740] loop6: detected capacity change from 0 to 7
[  155.994721][T11740] Dev loop6: unable to read RDB block 7
[  155.998757][T11740]  loop6: unable to read partition table
[  156.009116][T11740] loop6: partition table beyond EOD, truncated
[  156.011852][T11740] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  156.060481][    T9] usb 9-1: USB disconnect, device number 13
[  156.109858][T11765] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11765 comm=syz.5.1528
[  156.167524][T11772] netlink: 'syz.5.1528': attribute type 1 has an invalid length.
[  156.208914][T11772] bond3: (slave bridge5): making interface the new active one
[  156.213015][T11772] bond3: (slave bridge5): Enslaving as an active interface with an up link
[  156.972243][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  156.972342][   T40] audit: type=1400 audit(2000000012.410:35767): avc:  denied  { watch_mount } for  pid=11815 comm="syz.5.1531" path="/255" dev="tmpfs" ino=1383 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  157.038289][ T1344] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  157.208215][ T1344] usb 9-1: Using ep0 maxpacket: 16
[  157.212101][ T1344] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 23, changing to 8
[  157.216263][ T1344] usb 9-1: New USB device found, idVendor=28bd, idProduct=0075, bcdDevice= 0.00
[  157.222687][ T1344] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.233698][ T1344] usb 9-1: config 0 descriptor??
[  157.444580][ T1344] usbhid 9-1:0.0: can't add hid device: -71
[  157.446604][ T1344] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  157.451053][ T1344] usb 9-1: USB disconnect, device number 14
[  157.545653][   T40] audit: type=1400 audit(2000000012.980:35768): avc:  denied  { execute } for  pid=11831 comm="syz-executor" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  157.553003][   T40] audit: type=1400 audit(2000000012.980:35769): avc:  denied  { execute_no_trans } for  pid=11831 comm="syz-executor" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  157.598511][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  157.601259][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  157.608296][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  157.708990][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  157.762080][T11839] Invalid option length (1048180) for dns_resolver key
[  157.792063][ T5953] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  157.811534][ T5953] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  157.815351][ T5953] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  157.822015][ T5953] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  157.825564][ T5953] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  157.946185][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  157.958897][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  158.008458][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  158.013728][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  158.253378][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  158.330898][   T40] audit: type=1400 audit(2000000013.770:35770): avc:  denied  { mounton } for  pid=11835 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  158.507480][T11842] loop6: detected capacity change from 0 to 7
[  158.604688][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  158.618743][T11839] netdevsim netdevsim5 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  158.623592][T11839] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.640584][T11842] Dev loop6: unable to read RDB block 7
[  158.671441][T11842]  loop6: unable to read partition table
[  158.690871][T11842] loop6: partition table beyond EOD, truncated
[  158.707052][T11842] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  158.836709][T11839] netdevsim netdevsim5 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  158.841222][T11839] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.960027][T11839] netdevsim netdevsim5 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  158.964354][T11839] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.061279][T11835] chnl_net:caif_netlink_parms(): no params data found
[  159.090494][T11839] netdevsim netdevsim5 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  159.093718][T11839] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.189482][  T222] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  159.193272][  T222] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  159.203943][  T222] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  159.207179][  T222] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  159.270812][T10894] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  159.274318][T10894] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  159.280151][T11835] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.283314][T11835] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.286502][T11835] bridge_slave_0: entered allmulticast mode
[  159.290997][T11835] bridge_slave_0: entered promiscuous mode
[  159.295107][T10894] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  159.299451][T10894] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  159.303634][T11835] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.306903][T11835] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.311058][T11835] bridge_slave_1: entered allmulticast mode
[  159.315798][T11835] bridge_slave_1: entered promiscuous mode
[  159.319714][    T9] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  159.352315][T11835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  159.356846][T11835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  159.377410][T11835] team0: Port device team_slave_0 added
[  159.382182][T11835] team0: Port device team_slave_1 added
[  159.401040][T11835] batman_adv: batadv0: Adding interface: batadv_slave_0
[  159.403552][T11835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  159.414037][T11835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  159.430021][T11835] batman_adv: batadv0: Adding interface: batadv_slave_1
[  159.433002][T11835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  159.444798][T11835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  159.479501][    T9] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  159.484885][    T9] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  159.484890][T11835] hsr_slave_0: entered promiscuous mode
[  159.485677][T11835] hsr_slave_1: entered promiscuous mode
[  159.489044][    T9] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  159.491332][T11835] debugfs: 'hsr0' already exists in 'hsr'
[  159.492872][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.495886][T11835] Cannot create hsr debugfs directory
[  159.504171][T12071] loop6: detected capacity change from 0 to 7
[  159.511250][ T5946] Dev loop6: unable to read RDB block 7
[  159.513069][T11929] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  159.514135][ T5946]  loop6: unable to read partition table
[  159.518835][    T9] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  159.525228][ T5946] loop6: partition table beyond EOD, truncated
[  159.528952][T12071] Dev loop6: unable to read RDB block 7
[  159.531289][T12071]  loop6: unable to read partition table
[  159.534742][T12071] loop6: partition table beyond EOD, truncated
[  159.537365][T12071] loop_reread_partitions: partition scan of loop6 (�被x������ ) failed (rc=-5)
[  159.580142][   T40] audit: type=1400 audit(2000000015.020:35771): avc:  denied  { append } for  pid=12111 comm="syz.3.1544" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  159.633083][   T40] audit: type=1400 audit(2000000015.070:35772): avc:  denied  { map } for  pid=12111 comm="syz.3.1544" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  159.645375][   T40] audit: type=1400 audit(2000000015.070:35773): avc:  denied  { execute } for  pid=12111 comm="syz.3.1544" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  159.663906][   T40] audit: type=1400 audit(2000000015.100:35774): avc:  denied  { mounton } for  pid=12111 comm="syz.3.1544" path="/359/file0/file0" dev="9p" ino=71827687 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  159.663964][T12116] 9pnet_virtio: no channels available for device syz
[  159.720559][ T5943] usb 9-1: USB disconnect, device number 15
[  159.765494][T11835] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  159.773079][T11835] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  159.779687][T11835] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  159.784087][T11835] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  159.830726][T11835] 8021q: adding VLAN 0 to HW filter on device bond0
[  159.839726][T11835] 8021q: adding VLAN 0 to HW filter on device team0
[  159.844717][ T6716] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.847178][ T6716] bridge0: port 1(bridge_slave_0) entered forwarding state
[  159.853728][ T7603] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.855991][ T7603] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.980978][T11835] 8021q: adding VLAN 0 to HW filter on device batadv0
[  160.131659][T11835] veth0_vlan: entered promiscuous mode
[  160.143603][T11835] veth1_vlan: entered promiscuous mode
[  160.171538][T11835] veth0_macvtap: entered promiscuous mode
[  160.180157][T11835] veth1_macvtap: entered promiscuous mode
[  160.194617][T11835] batman_adv: batadv0: Interface activated: batadv_slave_0
[  160.205170][T11835] batman_adv: batadv0: Interface activated: batadv_slave_1
[  160.218274][T10889] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  160.222543][T10889] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  160.230043][ T6716] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  160.233683][ T6716] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  160.293878][ T6716] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  160.297123][ T6716] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.321835][ T5294] Bluetooth: hci4: command tx timeout
[  160.327747][T10889] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  160.333750][T10889] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.339752][   T40] audit: type=1400 audit(2000000015.780:35775): avc:  denied  { mounton } for  pid=11835 comm="syz-executor" path="/syzkaller.4LuUAv/syz-tmp" dev="sda1" ino=2041 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  160.347230][   T40] audit: type=1400 audit(2000000015.780:35776): avc:  denied  { mount } for  pid=11835 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  160.545406][T12272] netlink: 'syz.3.1555': attribute type 21 has an invalid length.
[  160.556416][T12272] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1555'.
[  160.687481][T12306] netlink: 'syz.7.1564': attribute type 3 has an invalid length.
[  160.719078][T12290] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1560'.
[  160.741032][T12318] netlink: 'syz.3.1567': attribute type 64 has an invalid length.
[  160.745561][T12318] netlink: 'syz.3.1567': attribute type 4 has an invalid length.
[  160.748441][T12319] netlink: 'syz.3.1567': attribute type 2 has an invalid length.
[  160.750925][T12318] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1567'.
[  160.753914][T12319] netlink: 'syz.3.1567': attribute type 2 has an invalid length.
[  160.768093][T12319] netlink: 'syz.3.1567': attribute type 2 has an invalid length.
[  160.980619][T12346] openvswitch: netlink: Tunnel attr 3 has unexpected len 8868 expected 1
[  160.980661][T12345] ------------[ cut here ]------------
[  160.985056][T12345] WARNING: drivers/net/netdevsim/fib.c:831 at nsim_fib_event_nb+0xb73/0xec0, CPU#2: syz.5.1576/12345
[  160.989192][T12345] Modules linked in:
[  160.991550][T12345] CPU: 2 UID: 0 PID: 12345 Comm: syz.5.1576 Not tainted syzkaller #0 PREEMPT(full) 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  160.995661][T12345] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.000787][T12345] RIP: 0010:nsim_fib_event_nb+0xb73/0xec0
[  161.002935][T12345] Code: 20 48 8b 5c 24 28 e8 ac 00 be fa e8 a7 00 be fa 44 89 ee 44 89 ff e8 7c fa bd fa 45 39 ef 0f 84 dd fd ff ff e8 8e 00 be fa 90 <0f> 0b 90 e9 cf fd ff ff e8 80 00 be fa 49 8d 7c 24 38 be 01 00 00
[  161.009256][T12345] RSP: 0018:ffffc9000465f130 EFLAGS: 00010287
[  161.011216][T12345] RAX: 000000000000091e RBX: 0000000000000001 RCX: ffffc9000cd81000
[  161.013905][T12345] RDX: 0000000000080000 RSI: ffffffff8700ff02 RDI: ffff88803385fc18
[  161.016914][T12345] RBP: ffffc9000465f280 R08: 0000000000000005 R09: 0000000000000000
[  161.023214][T12345] R10: 0000000000000001 R11: ffff88803fba8b30 R12: ffff88803d20c000
[  161.026623][T12345] R13: 0000000000000001 R14: ffff888030fc7580 R15: ffff88803385fc00
[  161.031506][T12345] FS:  00007fc0244fc6c0(0000) GS:ffff8880d6af1000(0000) knlGS:0000000000000000
[  161.035566][T12345] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  161.038996][T12345] CR2: 00007fc0244fbf98 CR3: 0000000056033000 CR4: 0000000000352ef0
[  161.042381][T12345] Call Trace:
[  161.043569][T12345]  <TASK>
[  161.044618][T12345]  notifier_call_chain+0xbc/0x3e0
[  161.046738][T12345]  ? __pfx_nsim_fib_event_nb+0x10/0x10
[  161.050244][T12345]  atomic_notifier_call_chain+0x71/0x1c0
[  161.052920][T12345]  call_fib_notifiers+0x33/0x70
[  161.055151][T12345]  call_fib6_multipath_entry_notifiers+0x112/0x170
[  161.057737][T12345]  ? __pfx_call_fib6_multipath_entry_notifiers+0x10/0x10
[  161.061397][T12345]  ? find_held_lock+0x2b/0x80
[  161.064845][T12345]  ? ip6_route_multipath_add+0xaa2/0x1c30
[  161.066709][T12345]  ip6_route_multipath_add+0xb4f/0x1c30
[  161.068523][T12345]  ? __pfx_ip6_route_multipath_add+0x10/0x10
[  161.070491][T12345]  ? avc_has_perm_noaudit+0x117/0x3b0
[  161.072203][T12345]  ? avc_has_perm_noaudit+0x149/0x3b0
[  161.073921][T12345]  ? inet6_rtm_newroute+0xe4/0x1a0
[  161.075531][T12345]  inet6_rtm_newroute+0xe4/0x1a0
[  161.077475][T12345]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  161.079446][T12345]  ? __lock_acquire+0x436/0x2890
[  161.081125][T12345]  ? find_held_lock+0x2b/0x80
[  161.082691][T12345]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  161.084589][T12345]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  161.086393][T12345]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  161.088251][T12345]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  161.090156][T12345]  rtnetlink_rcv_msg+0x95e/0xe90
[  161.091735][T12345]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  161.093526][T12345]  ? ref_tracker_free+0x37c/0x830
[  161.095265][T12345]  netlink_rcv_skb+0x158/0x420
[  161.097037][T12345]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  161.099202][T12345]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  161.101294][T12345]  ? netlink_deliver_tap+0x1ae/0xd30
[  161.103054][T12345]  netlink_unicast+0x5aa/0x870
[  161.104643][T12345]  ? __pfx_netlink_unicast+0x10/0x10
[  161.106419][T12345]  netlink_sendmsg+0x8c8/0xdd0
[  161.108103][T12345]  ? __pfx_netlink_sendmsg+0x10/0x10
[  161.109871][T12345]  ____sys_sendmsg+0xa5d/0xc30
[  161.111472][T12345]  ? copy_msghdr_from_user+0x10a/0x160
[  161.113209][T12345]  ? __pfx_____sys_sendmsg+0x10/0x10
[  161.114956][T12345]  ? __pfx_futex_wake_mark+0x10/0x10
[  161.116674][T12345]  ___sys_sendmsg+0x134/0x1d0
[  161.118585][T12345]  ? __pfx____sys_sendmsg+0x10/0x10
[  161.120487][T12345]  ? futex_private_hash_put+0x160/0x1b0
[  161.122260][T12345]  __sys_sendmsg+0x16d/0x220
[  161.123717][T12345]  ? __pfx___sys_sendmsg+0x10/0x10
[  161.125481][T12345]  ? __x64_sys_futex+0x1e0/0x4c0
[  161.127551][T12345]  do_syscall_64+0xcd/0xf80
[  161.129720][T12345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.132085][T12345] RIP: 0033:0x7fc02358f7c9
[  161.133735][T12345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.139993][T12345] RSP: 002b:00007fc0244fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  161.142710][T12345] RAX: ffffffffffffffda RBX: 00007fc0237e5fa0 RCX: 00007fc02358f7c9
[  161.145280][T12345] RDX: 0000000000040000 RSI: 0000200000000000 RDI: 0000000000000003
[  161.148135][T12345] RBP: 00007fc023613f91 R08: 0000000000000000 R09: 0000000000000000
[  161.150716][T12345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  161.153256][T12345] R13: 00007fc0237e6038 R14: 00007fc0237e5fa0 R15: 00007ffe758c3c38
[  161.156018][T12345]  </TASK>
[  161.157242][T12345] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  161.159599][T12345] CPU: 2 UID: 0 PID: 12345 Comm: syz.5.1576 Not tainted syzkaller #0 PREEMPT(full) 
[  161.162679][T12345] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.166425][T12345] Call Trace:
[  161.167489][T12345]  <TASK>
[  161.168401][T12345]  dump_stack_lvl+0x3d/0x1f0
[  161.169853][T12345]  vpanic+0x640/0x6f0
[  161.171080][T12345]  ? nsim_fib_event_nb+0xb73/0xec0
[  161.172674][T12345]  panic+0xca/0xd0
[  161.173909][T12345]  ? __pfx_panic+0x10/0x10
[  161.175397][T12345]  check_panic_on_warn+0xab/0xb0
[  161.177128][T12345]  __warn+0x108/0x3c0
[  161.178442][T12345]  __report_bug+0x2a0/0x520
[  161.179964][T12345]  ? nsim_fib_event_nb+0xb73/0xec0
[  161.181662][T12345]  ? __pfx___report_bug+0x10/0x10
[  161.183258][T12345]  ? nsim_fib_event_nb+0xb73/0xec0
[  161.185127][T12345]  report_bug+0xb2/0x220
[  161.186530][T12345]  ? nsim_fib_event_nb+0xb73/0xec0
[  161.188215][T12345]  handle_bug+0x127/0x260
[  161.189779][T12345]  exc_invalid_op+0x17/0x50
[  161.191241][T12345]  asm_exc_invalid_op+0x1a/0x20
[  161.192890][T12345] RIP: 0010:nsim_fib_event_nb+0xb73/0xec0
[  161.194803][T12345] Code: 20 48 8b 5c 24 28 e8 ac 00 be fa e8 a7 00 be fa 44 89 ee 44 89 ff e8 7c fa bd fa 45 39 ef 0f 84 dd fd ff ff e8 8e 00 be fa 90 <0f> 0b 90 e9 cf fd ff ff e8 80 00 be fa 49 8d 7c 24 38 be 01 00 00
[  161.201197][T12345] RSP: 0018:ffffc9000465f130 EFLAGS: 00010287
[  161.203141][T12345] RAX: 000000000000091e RBX: 0000000000000001 RCX: ffffc9000cd81000
[  161.205859][T12345] RDX: 0000000000080000 RSI: ffffffff8700ff02 RDI: ffff88803385fc18
[  161.208397][T12345] RBP: ffffc9000465f280 R08: 0000000000000005 R09: 0000000000000000
[  161.211116][T12345] R10: 0000000000000001 R11: ffff88803fba8b30 R12: ffff88803d20c000
[  161.213866][T12345] R13: 0000000000000001 R14: ffff888030fc7580 R15: ffff88803385fc00
[  161.216503][T12345]  ? nsim_fib_event_nb+0xb72/0xec0
[  161.218173][T12345]  notifier_call_chain+0xbc/0x3e0
[  161.219844][T12345]  ? __pfx_nsim_fib_event_nb+0x10/0x10
[  161.221801][T12345]  atomic_notifier_call_chain+0x71/0x1c0
[  161.223589][T12345]  call_fib_notifiers+0x33/0x70
[  161.225511][T12345]  call_fib6_multipath_entry_notifiers+0x112/0x170
[  161.227748][T12345]  ? __pfx_call_fib6_multipath_entry_notifiers+0x10/0x10
[  161.230070][T12345]  ? find_held_lock+0x2b/0x80
[  161.231736][T12345]  ? ip6_route_multipath_add+0xaa2/0x1c30
[  161.233593][T12345]  ip6_route_multipath_add+0xb4f/0x1c30
[  161.235812][T12345]  ? __pfx_ip6_route_multipath_add+0x10/0x10
[  161.238241][T12345]  ? avc_has_perm_noaudit+0x117/0x3b0
[  161.240403][T12345]  ? avc_has_perm_noaudit+0x149/0x3b0
[  161.242562][T12345]  ? inet6_rtm_newroute+0xe4/0x1a0
[  161.244589][T12345]  inet6_rtm_newroute+0xe4/0x1a0
[  161.246568][T12345]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  161.248769][T12345]  ? __lock_acquire+0x436/0x2890
[  161.250803][T12345]  ? find_held_lock+0x2b/0x80
[  161.252698][T12345]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  161.254917][T12345]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  161.257134][T12345]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  161.259184][T12345]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  161.261457][T12345]  rtnetlink_rcv_msg+0x95e/0xe90
[  161.263446][T12345]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  161.265303][T12345]  ? ref_tracker_free+0x37c/0x830
[  161.267084][T12345]  netlink_rcv_skb+0x158/0x420
[  161.268910][T12345]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  161.271056][T12345]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  161.273183][T12345]  ? netlink_deliver_tap+0x1ae/0xd30
[  161.275265][T12345]  netlink_unicast+0x5aa/0x870
[  161.277448][T12345]  ? __pfx_netlink_unicast+0x10/0x10
[  161.279340][T12345]  netlink_sendmsg+0x8c8/0xdd0
[  161.281152][T12345]  ? __pfx_netlink_sendmsg+0x10/0x10
[  161.283114][T12345]  ____sys_sendmsg+0xa5d/0xc30
[  161.285000][T12345]  ? copy_msghdr_from_user+0x10a/0x160
[  161.287024][T12345]  ? __pfx_____sys_sendmsg+0x10/0x10
[  161.289087][T12345]  ? __pfx_futex_wake_mark+0x10/0x10
[  161.291217][T12345]  ___sys_sendmsg+0x134/0x1d0
[  161.293103][T12345]  ? __pfx____sys_sendmsg+0x10/0x10
[  161.295022][T12345]  ? futex_private_hash_put+0x160/0x1b0
[  161.297064][T12345]  __sys_sendmsg+0x16d/0x220
[  161.298527][T12345]  ? __pfx___sys_sendmsg+0x10/0x10
[  161.300139][T12345]  ? __x64_sys_futex+0x1e0/0x4c0
[  161.301719][T12345]  do_syscall_64+0xcd/0xf80
[  161.303390][T12345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.305483][T12345] RIP: 0033:0x7fc02358f7c9
[  161.307242][T12345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.313916][T12345] RSP: 002b:00007fc0244fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  161.316523][T12345] RAX: ffffffffffffffda RBX: 00007fc0237e5fa0 RCX: 00007fc02358f7c9
[  161.319045][T12345] RDX: 0000000000040000 RSI: 0000200000000000 RDI: 0000000000000003
[  161.321582][T12345] RBP: 00007fc023613f91 R08: 0000000000000000 R09: 0000000000000000
[  161.324046][T12345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  161.326649][T12345] R13: 00007fc0237e6038 R14: 00007fc0237e5fa0 R15: 00007ffe758c3c38
[  161.329112][T12345]  </TASK>
[  161.330805][T12345] Kernel Offset: disabled
[  161.332173][T12345] Rebooting in 86400 seconds..