last executing test programs:

4m0.87916743s ago: executing program 1 (id=2209):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xd, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}, 0x1, 0x0, 0x0, 0x20000004}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000004}, 0x0)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
close(r3)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000880)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32=r6, @ANYBLOB="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"], 0x270}}, 0x0)
sendmmsg(r4, &(0x7f0000000000), 0x4000000000001f2, 0xfc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r7 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x80007, 0x20002f7})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000080)={'veth0_vlan\x00', &(0x7f0000000000)=@ethtool_coalesce={0x26, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x400000}})
io_uring_enter(r7, 0x2219, 0x7721, 0x16, 0x0, 0x0)
r8 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r8, &(0x7f0000025300)=""/102392, 0x18ff8)
r9 = getpgrp(0x0)
prlimit64(r9, 0x6, 0x0, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000002c0), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r10)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)

3m59.944673888s ago: executing program 1 (id=2214):
r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f00000008c0)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$sierra_net(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, &(0x7f00000002c0)={0x2c, &(0x7f0000000180)={0x40, 0xe}, 0x0, 0x0, 0x0, 0x0})

3m57.118355791s ago: executing program 1 (id=2230):
kexec_load(0x3, 0x7, &(0x7f00000005c0)=[{&(0x7f0000000000)="6509534a17aa723cba21a9d63c6a556b30b910a580cb50d65e9fab1ed59a7eb00a7109e4a355bed417bce60d6a5baab4bbecc5b2faaf2eba28c331345b612f1f4cbfdfa7bcb9bd2a0fbc8d7786bb68cff61167b98ef0adfbb79545bbb2c409be3adb3b54846920f1b194db5258279e8d06b863d51c0f90cd79ecb1f5ed3c44eb6353c0b451fe3f9b118422addd3f936d8cd5562d6ce55bf378ee8c0d0fc56a4a866c499b", 0xa4, 0x5, 0xd7}, {&(0x7f0000000100)="047715ac7141c111fab2fcda5de4dc8b278029bcb1bd17524f177856cac105f463c77e2d2ab44d875217dc82baa911f236f959fb9227524d4fe6b621a19823457d04c399283edbac755852623c82f7206d26e918a2981c8f68476969bf8c4bcd37ba24e4ba1683339879a11b854a7478f898805f327af12eaab8ac918c201b7f932e124796f1aba03e031312bd7e67403651abac282b310f420dbcdea31d52854783d6952a2a7b10f3e45715203107f8ce516d99c8c7db918e0989ef123cc524fa8ae0af5c952de542a268179439f62e20fb410df0a4c2e54ec355436d7cf998", 0xe0, 0x5, 0xffffffff}, {0x0, 0x0, 0x5, 0x4}, {&(0x7f0000000340)="8c4e55be8948c65379def4df90ce301f71e7d4e4921490b3aacd4082ccf6531bb82dbd4d13dbfbeb16dd11b3c041c780b7caed488a35c2", 0x37, 0x100, 0x9}, {0x0, 0x0, 0x7, 0x2}, {0x0, 0x0, 0x2, 0xfffffffffffffffa}, {&(0x7f0000000880)="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", 0x17e, 0x5, 0x6}], 0x0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r1, 0x7b1, &(0x7f0000001880)={0x0, 0x6, 0x0, 0x8})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)=@gettaction={0x60, 0x32, 0x20, 0x70bd28, 0x25dfdbfe, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x8}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x28, 0x1, [{0xc, 0x18, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}, {0xc, 0x8, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}, {0xc, 0x5, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x10, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348", 0xf}], 0x2, 0x0, 0x0, 0x10}, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)=0x5, 0x12)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x20000, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

3m55.938995215s ago: executing program 1 (id=2232):
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}, {&(0x7f0000001480)="d1", 0x1}], 0x2)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000200)='.\x00', 0x0, 0x8b7840, 0x0)
mkdir(&(0x7f0000000100)='./file0/../file0\x00', 0x189)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x43, &(0x7f00000000c0)=0x7, 0x4)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0\x00', 0x0, 0x80004, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x2042, 0x0)
syz_open_dev$sndmidi(&(0x7f00000000c0), 0x8, 0x800)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x40)
r1 = userfaultfd(0x80800)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$UFFDIO_WRITEPROTECT(r1, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f000040a000/0x800000)=nil, 0x800000}, 0x1})
umount2(&(0x7f0000000040)='.\x00', 0x2)
syz_open_dev$sg(&(0x7f00000060c0), 0x8000, 0x8002)
syz_clone3(&(0x7f0000000740)={0x8180080, 0x0, 0x0, 0x0, {0x39}, 0x0, 0x80000, 0x0, &(0x7f00000005c0)=[0xffffffffffffffff], 0x1}, 0x58)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
r2 = signalfd4(0xffffffffffffffff, &(0x7f00000008c0)={[0x8]}, 0x8, 0x800)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB='\x00\x00', @ANYRES64=0x0, @ANYRESDEC, @ANYRESHEX=0x0])
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x2]}, 0x8, 0x80000)
read$FUSE(r3, &(0x7f0000003b80)={0x2020}, 0x2020)
timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(r4, 0x1, &(0x7f0000000140)={{0x0, 0x989680}, {0x77359400}}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x2000)=nil, 0x8000000, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)

3m53.875547051s ago: executing program 1 (id=2244):
lstat(&(0x7f0000000280)='./file0\x00', &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000001180)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES64, @ANYRES16=r0], 0x48)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
socket$inet6(0x10, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x210143, 0x0)
socket(0x10, 0x803, 0x0)
prlimit64(0xffffffffffffffff, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r1 = syz_open_dev$MSR(&(0x7f0000000140), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
gettid()
timer_create(0x0, 0x0, 0x0)
clock_gettime(0x0, 0x0)
timer_settime(0x0, 0x1, 0x0, 0x0)
mknod$loop(&(0x7f00000001c0)='./file0\x00', 0x6000, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0xa2)
r3 = dup2(r2, r2)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000240)={'\x00', 0x3, 0xa9a, 0x1, 0x7, 0x80000008, <r4=>0x0})
ioctl$BLKTRACESTART(r3, 0x1274, 0x0)
r5 = syz_open_procfs(r4, &(0x7f0000000180)='environ\x00')
socket$nl_route(0x10, 0x3, 0x0)
read$FUSE(r5, 0x0, 0x0)

3m52.934781182s ago: executing program 1 (id=2249):
r0 = syz_usb_connect$hid(0x2, 0x3f, &(0x7f0000000800)=ANY=[@ANYBLOB="1201000000000040ac05240300000000000109022d00010000e80b0904000001030082000921fd7f000122e30109058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r1, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r2, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_REPLACE(r1, 0x3ba0, &(0x7f00000002c0)={0x48, 0xa, r3, 0x0, r2})
unshare(0x2a020400)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000691000/0x1000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$RDMA_NLDEV_CMD_RES_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x20040810)
write$P9_RXATTRWALK(0xffffffffffffffff, &(0x7f0000000100)={0xf, 0x1f, 0x2, 0x2}, 0x51)
prlimit64(0x0, 0x1, &(0x7f0000000140)={0x0, 0x4}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r4 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0x0, 0xd, 0x0, &(0x7f0000000540)="00000000000000008a7e84d67a", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02080000040000000100000009000100000000", @ANYRES32, @ANYBLOB='\x00\x00'], 0x48)
io_uring_enter(r4, 0x2219, 0x7721, 0x16, 0x0, 0x0)
syz_usb_control_io$uac3(0xffffffffffffffff, &(0x7f00000003c0)={0x14, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="00032c0004002c03cdd4db04b814b84dd4141de294830a9af34d9059ab215111e9d04d614ca7af43514f7729"]}, &(0x7f00000006c0)={0x44, 0x0, &(0x7f00000004c0)={0x0, 0xa, 0x1, 0x8}, 0x0, &(0x7f0000000540)={0x20, 0x81, 0x2, "6db1"}, &(0x7f0000000580)={0x20, 0x82, 0x2, "258b"}, &(0x7f00000005c0)={0x20, 0x83, 0x3, "3ae988"}, &(0x7f0000000640)={0x20, 0x84, 0x2, "b002"}, &(0x7f0000000680)={0x20, 0x85, 0x3, "c9f762"}})

3m52.934477003s ago: executing program 32 (id=2249):
r0 = syz_usb_connect$hid(0x2, 0x3f, &(0x7f0000000800)=ANY=[@ANYBLOB="1201000000000040ac05240300000000000109022d00010000e80b0904000001030082000921fd7f000122e30109058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r1, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r2, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_REPLACE(r1, 0x3ba0, &(0x7f00000002c0)={0x48, 0xa, r3, 0x0, r2})
unshare(0x2a020400)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000691000/0x1000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$RDMA_NLDEV_CMD_RES_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x20040810)
write$P9_RXATTRWALK(0xffffffffffffffff, &(0x7f0000000100)={0xf, 0x1f, 0x2, 0x2}, 0x51)
prlimit64(0x0, 0x1, &(0x7f0000000140)={0x0, 0x4}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r4 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0x0, 0xd, 0x0, &(0x7f0000000540)="00000000000000008a7e84d67a", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02080000040000000100000009000100000000", @ANYRES32, @ANYBLOB='\x00\x00'], 0x48)
io_uring_enter(r4, 0x2219, 0x7721, 0x16, 0x0, 0x0)
syz_usb_control_io$uac3(0xffffffffffffffff, &(0x7f00000003c0)={0x14, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="00032c0004002c03cdd4db04b814b84dd4141de294830a9af34d9059ab215111e9d04d614ca7af43514f7729"]}, &(0x7f00000006c0)={0x44, 0x0, &(0x7f00000004c0)={0x0, 0xa, 0x1, 0x8}, 0x0, &(0x7f0000000540)={0x20, 0x81, 0x2, "6db1"}, &(0x7f0000000580)={0x20, 0x82, 0x2, "258b"}, &(0x7f00000005c0)={0x20, 0x83, 0x3, "3ae988"}, &(0x7f0000000640)={0x20, 0x84, 0x2, "b002"}, &(0x7f0000000680)={0x20, 0x85, 0x3, "c9f762"}})

25.806816213s ago: executing program 0 (id=3035):
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x101e01, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000140)=0x15)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000002c0)=0x7e)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000540)=0x9)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000180)=0xef)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000001c0)=0x40)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x18)
ioctl$UFFDIO_CONTINUE(0xffffffffffffffff, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000100), r2)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0x7e)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
mount_setattr(0xffffffffffffff9c, 0x0, 0x8000, &(0x7f0000001dc0)={0x2000, 0x72, 0x80000}, 0x20)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mdstat\x00', 0x0, 0x0)
pread64(r5, &(0x7f0000000380)=""/224, 0xf9, 0xd)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=@ipv4_newroute={0x38, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x4}, @RTA_ENCAP={0x14, 0x16, 0x0, 0x1, @LWTUNNEL_IP_OPTS={0x10, 0x8, 0x0, 0x1, @LWTUNNEL_IP_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, @LWTUNNEL_IP_OPT_VXLAN_GBP={0x8}}}}]}, 0x38}}, 0x0)
pwritev(r0, &(0x7f0000000480)=[{&(0x7f0000000600)="10250b6c22", 0x5}], 0x1, 0x80002, 0x7f)
bpf$MAP_CREATE(0x200000000000001d, &(0x7f0000000b00)=@base={0x6, 0x4, 0x70be, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)

18.214145658s ago: executing program 0 (id=3064):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=@setlink={0x3c, 0x13, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2a82}, [@IFLA_MASTER={0x8, 0xa, r2}, @IFLA_ALT_IFNAME={0x14, 0x35, 'bridge_slave_0\x00'}]}, 0x3c}}, 0x0)
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$kvm(0xffffffffffffff9c, 0x0, 0xb0f01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_role_change={{0x12, 0x8}, {0xcb, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x8}}}, 0xb)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000001a40)=""/102392, 0x18ff8)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r4 = fsopen(&(0x7f0000000040)='sockfs\x00', 0x1)
r5 = syz_io_uring_setup(0x6cf2, &(0x7f0000000280)={0x0, 0x10008cc8, 0x10100, 0x6, 0x10e}, &(0x7f0000000080), &(0x7f0000000100), &(0x7f0000000240))
io_uring_enter(r5, 0x7a98, 0x0, 0x0, 0x0, 0xfffffffffffffc76)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000180)='rootcontext', &(0x7f0000000440)='5\xfd\x04\xc6\xc9]\v\xd6S9q\x0f#\x93\x9d\xeb\x00\xcf\xb2~9*\xa9\x1d:\x06u46N\xd93\xe1\xa2\x05\x83Z\xbc\xbeT\x16\xab\xfb=4\xa6\x10,\"\xee\xf8o+\x02\xd8\xaft_\r\x1d\"\xc8\\k\xcc4\x96\xdbA\x02[\x16\xb4\xca\xa5n\x87\xdb\xb3\x1f\xbb\xc0\x9f\xc2\x9e\t[\xba\x9e\xfd\xc76#\x8f\xc6\xe7\x11\x8fL\xd97<cAZR\n w\xe6\x1c\xf0(\x96H\x88\x00\xd3\x1c\x16cj\x10\xd8\x92\xc9ad\xc0aR\x12\xd3\xc2J\xcb\x9a\xa5\xce#{e\xd3\x11\xc5]\xb4F1\xfb\xe6\xd4T\v\x87\x04\xcf\b.\xcaO\x04\x0f\x062\xcaL\x81\xa6\xbbp\xd3\xc6$4t (W\x92nr\xbe,\b\xdb\x7f[', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r6 = getpgid(0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r8, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000140)=@secondary)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000004000a5012bbd700000000000047c00000400c2800c0001800600060008"], 0x2c}, 0x1, 0x0, 0x0, 0x4048011}, 0x44000)
clock_adjtime(0x3, &(0x7f0000004dc0)={0xb, 0x400000000045, 0xffffffff80000000, 0x880006, 0x8000000000000001, 0x7cca, 0x6, 0x5, 0xffffffffffffffc0, 0x4, 0xd, 0x7, 0xf, 0x8c, 0x400000d01, 0x0, 0x4, 0x4, 0xffffffffffffffff, 0x8000, 0x2, 0x2, 0x1, 0x624a, 0x11, 0x8000008})
rt_sigqueueinfo(r6, 0x31, &(0x7f0000000380)={0x17, 0x8001, 0x80000000})

12.76381838s ago: executing program 0 (id=3088):
kexec_load(0x3, 0x6, &(0x7f00000005c0)=[{&(0x7f0000000000)="6509534a17aa723cba21a9d63c6a556b30b910a580cb50d65e9fab1ed59a7eb00a7109e4a355bed417bce60d6a5baab4bbecc5b2faaf2eba28c331345b612f1f4cbfdfa7bcb9bd2a0fbc8d7786bb68cff61167b98ef0adfbb79545bbb2c409be3adb3b54846920f1b194db5258279e8d06b863d51c0f90cd79ecb1f5ed3c44eb6353c0b451fe3f9b118422addd3f936d8cd5562d6ce55bf378ee", 0x9a, 0x5, 0xd7}, {&(0x7f0000000100)="047715ac7141c111fab2fcda5de4dc8b278029bcb1bd17524f177856cac105f463c77e2d2ab44d875217dc82baa911f236f959fb9227524d4fe6b621a19823457d04c399283edbac755852623c82f7206d26e918a2981c8f68476969bf8c4bcd37ba24e4ba1683339879a11b854a7478f898805f327af12eaab8ac918c201b7f932e124796f1aba03e031312bd7e67403651abac282b310f420dbcdea31d52854783d6952a2a7b10f3e45715203107f8ce516d99c8c7db918e0989ef123cc524fa8ae0af5c952de542a268179439f62e20fb410df0a4c2e54ec355436d7cf998", 0xe0, 0x5, 0xffffffff}, {0x0, 0x0, 0x5, 0x4}, {&(0x7f0000000340)="8c4e55be8948c65379def4df90ce301f71e7d4e4921490b3aacd4082ccf6531bb82dbd4d13dbfbeb16dd11b3c041c780b7caed488a35c2a00906fbd0e2fa", 0x3e, 0x100, 0x9}, {0x0, 0x0, 0x7, 0x2}, {0x0, 0x0, 0x2, 0xfffffffffffffffa}], 0x0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r1, 0x7b1, &(0x7f0000001880)={0x0, 0x6, 0x0, 0x8})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)=@gettaction={0x60, 0x32, 0x20, 0x70bd28, 0x25dfdbfe, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x8}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x28, 0x1, [{0xc, 0x18, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}, {0xc, 0x8, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}, {0xc, 0x5, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x10, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348", 0xf}], 0x2, 0x0, 0x0, 0x10}, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)=0x5, 0x12)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x20000, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

10.879269912s ago: executing program 0 (id=3093):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x7, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004080}, 0x48810)
recvmsg(r0, &(0x7f000000c1c0), 0x0) (fail_nth: 2)

10.408780857s ago: executing program 0 (id=3097):
kexec_load(0x3, 0x4, &(0x7f00000005c0)=[{&(0x7f0000000000), 0x0, 0x5, 0xd7}, {&(0x7f0000000100)="047715ac7141c111fab2fcda5de4dc8b278029bcb1bd17524f177856cac105f463c77e2d2ab44d875217dc82baa911f236f959fb9227524d4fe6b621a19823457d04c399283edbac755852623c82f7206d26e918a2981c8f68476969bf8c4bcd37ba24e4ba1683339879a11b854a7478f898805f327af12eaab8ac918c201b7f932e124796f1aba03e031312bd7e67403651abac282b310f420dbcdea31d52854783d6952a2a7b10f3e45715203107f8ce516d99c8c7db918e0989ef123cc524fa8ae0af5c952de542a268179439f62e20fb410df0a4c2e54ec355436d7cf998", 0xe0, 0x5, 0xffffffff}, {0x0, 0x0, 0x7, 0x2}, {0x0, 0x0, 0x2, 0xfffffffffffffffa}], 0x0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r1, 0x7b1, &(0x7f0000001880)={0x0, 0x6, 0x0, 0x8})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)=@gettaction={0x50, 0x32, 0x20, 0x70bd28, 0x25dfdbfe, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x8}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x28, 0x1, [{0xc, 0x18, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}, {0xc, 0x8, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}, {0xc, 0x5, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)=0x5, 0x12)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x20000, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be521634", 0xc}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

9.761158147s ago: executing program 0 (id=3100):
r0 = socket$nl_route(0x10, 0x3, 0x0)
shutdown(r0, 0x1)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000540), 0x200000b1, 0x8a681)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='fd\x00')
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r3}, &(0x7f0000000000), &(0x7f00000000c0)=r3}, 0x20)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0xa82, 0x0)
mkdir(0x0, 0x21)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000050000000900010073797a30000000002c000000030a05000000000000000000050000000900010073797a30000000000900030073797a30000000005c000000060a010400040000000000000500000008000b40000000000900010073797a300000000034000480300001800b00010074617267657400002000028008000300d614404208000240000000010c0001004e"], 0xd0}}, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x3)
ioctl$vim2m_VIDIOC_G_FMT(0xffffffffffffffff, 0xc0d05604, &(0x7f0000000080)={0x1, @raw_data="e2713a787c2fa96c68eecfb6effe5f1291bdc4f0c000fae6961f1606d1fedf218381a14c7a5a7c78073e1abe4ff13ac1f2419d6af2e372cf7a7b2b280fde213f7df01f0896d81346f6d0b8e46f0c22c22e7db8ba30a82747bab1a5e82f3e217caee4997a7886da11a75d7ae3de3ca9f7f45dbac849d457c9008504d0eea695085713776f2cdf66b6aeda9722c8678bb2a6dcea05a0639723a18d7f8b313b3873e304ab2b163618aaf2b1cf287579751a1034d52e8d7ff8148db72cc21375746466808148306ab0e3"})
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000001a40)=""/102392, 0x18ff8)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r7 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r8 = fcntl$dupfd(r7, 0x0, r7)
write$sndseq(r8, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick=0x320, {0xc}, {}, @quote={{0x3, 0x8}, 0x7e59}}, {0x0, 0x0, 0x0, 0x0, @tick=0x9, {}, {}, @quote}], 0x38)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000040)={'wlan1\x00', &(0x7f0000000340)=@ethtool_wolinfo={0x5, 0x2, 0xffffffd9, "1676e8f1be06"}})
socket$nl_route(0x10, 0x3, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0x985, 0x12)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001100)={r1, 0x0, {0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x1c, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "244333791f045158d97405000000000000040000000100", [0xfffffffffeff7ffc]}})
ioctl$BTRFS_IOC_SPACE_INFO(r2, 0x4c08, 0x0)
acct(&(0x7f00000001c0)='./file0\x00')
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))

8.643371159s ago: executing program 5 (id=3106):
openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x90d8404}}, './file0\x00'})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
socket(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'vxcan0\x00'})
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x40840)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000100)={0x2, 0xe, 0x4, 0x2, 0xc})
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
r3 = openat$comedi(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$COMEDI_DEVCONFIG(r3, 0x40946400, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x94}, 0x24000000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4044050}, 0x4000000)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
r4 = io_uring_setup(0x44dc, &(0x7f0000000000)={0x0, 0xbfffeffb, 0x1000, 0x1000b, 0x2})
r5 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r5, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x7, 0x28, &(0x7f0000000840)=@framed={{0x18, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x200006}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @btf_id={0x18, 0x7, 0x3, 0x0, 0x1}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, @fallback=0x21, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$inet_msfilter(r5, 0x0, 0x29, 0x0, 0x57)
r6 = syz_open_procfs(0x0, &(0x7f0000000600)='net/mcfilter\x00')
socket$inet_mptcp(0x2, 0x1, 0x106)
preadv(r6, &(0x7f0000001b80)=[{&(0x7f00000000c0)=""/92, 0x84}], 0x1, 0x62, 0xfd4c)
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x24, &(0x7f00000002c0), 0x0)
syz_pidfd_open(0x0, 0x0)
io_setup(0x5, &(0x7f0000000140)=<r7=>0x0)
r8 = eventfd2(0x48, 0x0)
io_submit(r7, 0x1, &(0x7f0000000280)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x1, r8}])
close(r8)
shutdown(r1, 0x0)

8.528483166s ago: executing program 5 (id=3107):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$FS_IOC_GETFSUUID(r0, 0x80111500, &(0x7f0000000000))
r1 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r1, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
sendmsg$inet(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x40)
getsockopt(r1, 0x200000000114, 0x2715, 0x0, &(0x7f0000000400))
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000000)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x80, 0x40, 0x4, 0x8001, {{0x5, 0x4, 0x0, 0x1, 0x14, 0x465, 0x0, 0x8, 0x29, 0x0, @local, @empty}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f3, &(0x7f0000000940)={'syztnl0\x00', &(0x7f0000000240)={'gre0\x00', 0x0, 0x80, 0x20, 0x0, 0x2, {{0x5, 0x4, 0x0, 0x25, 0x14, 0x0, 0x0, 0x1, 0x0, 0x0, @dev={0xac, 0x14, 0x14, 0x11}, @empty}}}})
setsockopt$packet_int(r0, 0x107, 0x9, 0x0, 0x0)

8.434526706s ago: executing program 5 (id=3108):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x4c)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d05c164a534308", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000004c00)=[{{0x0, 0x0, &(0x7f0000000240)}, 0x2ca998c3}], 0x4000032, 0x40000021, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000240)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x4051}, 0x20008001)
recvmsg$can_raw(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000340)=""/197, 0xc5}], 0x1}, 0x1)
r2 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x9, 0x8000)
r3 = syz_io_uring_setup(0x3b1a, &(0x7f0000000100)={0x0, 0x103f28, 0x2, 0x0, 0x2fb}, &(0x7f0000000000), &(0x7f0000000200), &(0x7f0000000000))
io_uring_enter(r3, 0xf3, 0x80ffff, 0x49, 0x0, 0x40)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r2, 0x40045532, &(0x7f0000000100)=0x3)
r4 = syz_usb_connect(0x5, 0x36, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, &(0x7f0000000440)={0x44, &(0x7f0000000240)=ANY=[@ANYBLOB="40010400000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r5, 0xc0205647, &(0x7f0000000180)={0xf000000, 0x280, 0xfffffffe, 0xffffffffffffffff, 0x0, 0x0})
syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
syz_clone3(&(0x7f0000000400)={0x40ba1f183c32d04e, 0x0, &(0x7f0000000080), &(0x7f00000000c0), {0x24}, &(0x7f0000000200)=""/230, 0xe6, 0x0, &(0x7f00000003c0)}, 0x58)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x5, 0xa, 0xbd6)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r6 = syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0)
r7 = socket(0x400000000010, 0x3, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
sendmsg$nl_route_sched(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=@newtfilter={0x24, 0x2c, 0xf3f, 0x30bd2b, 0x25dfdffd, {0x0, 0x0, 0x0, 0x0, {0xb, 0xfff3}, {0x0, 0x1}, {0xfff3, 0x10}}}, 0x24}, 0x1, 0x0, 0x0, 0x20041090}, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)

5.411666208s ago: executing program 2 (id=3121):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e25}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @remote}, 0x321}}}, 0x108)
r4 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
preadv(r4, &(0x7f0000000000)=[{&(0x7f0000001bc0)=""/126, 0x7e}], 0x1, 0x111, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
r5 = socket(0x40000000015, 0x5, 0x0)
recvmmsg(r5, &(0x7f0000000b40)=[{{0x0, 0x38, 0x0, 0x0, &(0x7f0000000280)=""/11, 0xb}}], 0x5df, 0x2001, 0x0)
ppoll(&(0x7f0000000080)=[{r5}], 0x1, 0x0, 0x0, 0x0)

4.082243301s ago: executing program 2 (id=3122):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0xff05, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x4a00, 0x0, 0x2000, 0x20042}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_SNOOPING={0x5}]}}}]}, 0x3c}}, 0x0)

3.991359372s ago: executing program 2 (id=3123):
socket(0x21, 0x800, 0x0)
r0 = socket(0x2b, 0x1, 0x1)
setsockopt$RDS_GET_MR_FOR_DEST(r0, 0x29, 0x7, 0x0, 0x0)

3.783173881s ago: executing program 2 (id=3125):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_CLEAR_RESOLV_LIST={{0xbc}, 0xff}}}, 0x7)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), r3)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000016c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="3f9d000180000000000008000000080003", @ANYRES32=r4], 0x3c}, 0x1, 0x0, 0x0, 0x24000000}, 0x2004c0c4)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000340), r6)
sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)={0x20, r7, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
sendmsg$NL802154_CMD_SET_CHANNEL(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)={0x1c, r7, 0x10, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}]}, 0x1c}}, 0x40000)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000000)="d8000000180081064e81f782db44b904021d080400007c09e8fe55a10a0015c005001c2603600e1208000f0000000401a8001600a4000140000000007fffffffb94dcf5c0461c1d6900094007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x20004000)

3.588283111s ago: executing program 2 (id=3127):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
mmap$dsp(&(0x7f0000f3b000/0xc000)=nil, 0xc000, 0x2000000, 0x13, r0, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000540), r1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[], 0x48}}, 0x0)
socket(0x400000000010, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000080)={'vxcan1\x00'})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x6, 0x8, 0x3, 0x0, 0x9, 0x1, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffcffffff, 0x20031, 0xffffffffffffffff, 0xbe9f5000)
r6 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r6, 0xc05064a7, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7})
syz_genetlink_get_family_id$devlink(&(0x7f0000008280), 0xffffffffffffffff)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x4e20, 0x7, @mcast2}, 0xffffffffffffffff, 0xffffffff}}, 0x48)
write$RDMA_USER_CM_CMD_DESTROY_ID(0xffffffffffffffff, &(0x7f0000000380)={0x1, 0x10, 0xfa00, {&(0x7f0000000340)}}, 0x18)
fsetxattr$trusted_overlay_redirect(r5, 0x0, 0x0, 0x0, 0x1)
socket$inet_mptcp(0x2, 0x1, 0x106)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x12, 0xffffffffffffffff, 0x2000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17)

2.948014727s ago: executing program 3 (id=3130):
kexec_load(0x3, 0x6, &(0x7f00000005c0)=[{&(0x7f0000000000)="6509534a17aa723cba21a9d63c6a556b30b910a580cb50d65e9fab1ed59a7eb00a7109e4a355bed417bce60d6a5baab4bbecc5b2faaf2eba28c331345b612f1f4cbfdfa7bcb9bd2a0fbc8d7786bb68cff61167b98ef0adfbb79545bbb2c409be3adb3b54846920f1b194db5258279e8d06b863d51c0f90cd79ecb1f5ed3c44eb6353c0b451fe3f9b118422addd3f936d8cd5562d6ce55bf378ee8c0d0fc56a", 0x9f, 0x5, 0xd7}, {&(0x7f0000000100)="047715ac7141c111fab2fcda5de4dc8b278029bcb1bd17524f177856cac105f463c77e2d2ab44d875217dc82baa911f236f959fb9227524d4fe6b621a19823457d04c399283edbac755852623c82f7206d26e918a2981c8f68476969bf8c4bcd37ba24e4ba1683339879a11b854a7478f898805f327af12eaab8ac918c201b7f932e124796f1aba03e031312bd7e67403651abac282b310f420dbcdea31d52854783d6952a2a7b10f3e45715203107f8ce516d99c8c7db918e0989ef123cc524fa8ae0af5c952de542a268179439f62e20fb410df0a4c2e54ec355436d7cf998", 0xe0, 0x5, 0xffffffff}, {0x0, 0x0, 0x5, 0x4}, {&(0x7f0000000340)="8c4e55be8948c65379def4df90ce301f71e7d4e4921490b3aacd4082ccf6531bb82dbd4d13dbfbeb16dd11b3c041c780b7caed488a35c2a00906fbd0e2fa", 0x3e, 0x100, 0x9}, {0x0, 0x0, 0x7, 0x2}, {0x0, 0x0, 0x2, 0xfffffffffffffffa}], 0x0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r1, 0x7b1, &(0x7f0000001880)={0x0, 0x6, 0x0, 0x8})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)=@gettaction={0x60, 0x32, 0x20, 0x70bd28, 0x25dfdbfe, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x8}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x28, 0x1, [{0xc, 0x18, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}, {0xc, 0x8, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}, {0xc, 0x5, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x10, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348", 0xf}], 0x2, 0x0, 0x0, 0x10}, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)=0x5, 0x12)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x20000, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

2.569080223s ago: executing program 3 (id=3131):
r0 = gettid()
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000040)={'batadv0\x00', &(0x7f0000000100)=@ethtool_drvinfo={0x3, "87f824ddfb091e3922ba3b10ff3174505f1e3befee028a65a72b34dac9f1bfef", "8b5f57a8bfaaf1a650589b6e518470734ff0ab151c6c76068144ab7a52f3b1c0", "191753f6ff335b9b07fa69af8e7818e258a2929043aab4abc7cccd8c8342c7d5", "f5666f74246fedea5c50a62e58e749e73b49b0070be75967c7ba6bd1ce539197", "85b68d82818f51982d5c739ed70130e117f82cca46ceb6521b4a12fb663b66a6", "d5491d19e74dab3c2d4d5d6d", 0x3, 0x8, 0x99c8, 0x40}})
prctl$PR_SCHED_CORE(0x3e, 0x2, r0, 0x1, &(0x7f0000000000))
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x8031, 0xffffffffffffffff, 0x24000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
process_vm_writev(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000640)=0x40000)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x3af0c0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000180)="f7790066baa00066b86b42460f22c7d466ba420000b8e20066ef0f29902cbb0000c4e2b1ba8c88d90000006666f6440f386b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x4b}], 0x1, 0x58, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000200)="98c4e141ef1b0f18090f1c44fb540f21d1b91e0a0000b800880000ba000000000f3066baf80cb81a42a586ef66bafc0c66b8010066ef650f32f018ae48c4d8323e360ff19f1f000000"}], 0x1, 0x38, 0x0, 0xfffffffffffffee3)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r5, 0x29, 0x44, &(0x7f0000000280)={'ipvs\x00'}, &(0x7f00000002c0)=0x1e)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
r8 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETSW(r8, 0x5403, &(0x7f0000000100)={0x68e6, 0x89, 0x7fffffff, 0x0, 0x1, "1b10b9ad000600aacdbd289300"})
getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r7, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4)
sendmsg$nl_route(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000006800e97800000000000000000a00000000000000131d0400"], 0x1c}}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0)
sendmsg$nl_route(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="3000000068000100030000000000008000000700000000000000020000000300000004000b00"], 0x30}}, 0x4000)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$SNDCTL_DSP_SYNC(0xffffffffffffffff, 0x5001, 0x0)
socket(0x2, 0x80805, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

1.94330256s ago: executing program 3 (id=3133):
kexec_load(0x3, 0x5, &(0x7f00000005c0)=[{&(0x7f0000000000)="6509534a17aa723cba21a9d63c6a556b30b910a580cb50d65e9fab1ed59a7eb00a7109e4a355bed417bce60d6a5baab4bbecc5b2faaf2eba28c331345b612f1f4cbfdfa7bcb9bd2a0fbc8d7786bb68cff61167b98ef0adfbb79545bbb2c409be3adb3b54846920f1b194db5258279e8d06b863d51c0f90cd79ecb1f5ed3c44eb6353c0b451fe3f9b118422addd3f936d8cd5562d6ce55bf378ee8c0d0fc56a4a866c499b", 0xa4, 0x5, 0xd7}, {0x0, 0x0, 0x5, 0x4}, {&(0x7f0000000340)="8c4e55be8948c65379def4df90ce301f71e7d4e4921490b3aacd4082ccf6531bb82dbd4d13dbfbeb16dd11b3c041c780b7caed488a35c2a00906fbd0e2fa", 0x3e, 0x100, 0x9}, {0x0, 0x0, 0x7, 0x2}, {0x0, 0x0, 0x2, 0xfffffffffffffffa}], 0x0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r1, 0x7b1, &(0x7f0000001880)={0x0, 0x6, 0x0, 0x8})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)=@gettaction={0x60, 0x32, 0x20, 0x70bd28, 0x25dfdbfe, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x8}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x28, 0x1, [{0xc, 0x18, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}, {0xc, 0x8, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}, {0xc, 0x5, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x10, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348", 0xf}], 0x2, 0x0, 0x0, 0x10}, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x20000, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

1.843736526s ago: executing program 2 (id=3135):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r0, &(0x7f0000000280)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
listen(r0, 0x1)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x8, 0x94, 0x7fff0000}]})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/devices.allow\x00', 0x2, 0x48)
write$cgroup_devices(r2, &(0x7f0000000400)={'b', ' *:* ', 'rwm\x00'}, 0xa)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r3, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000001500)={0x28, 0x4000, 0x0, @my=0x1}, 0x10)
bind$vsock_stream(r2, &(0x7f00000002c0)={0x28, 0x0, 0x2710}, 0x10)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r4, 0x28, 0x2, &(0x7f0000000000)=0x3, 0x8)
syz_usb_connect$uac1(0x1, 0x0, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
r5 = geteuid()
quotactl_fd$Q_GETFMT(r1, 0x1, r5, &(0x7f0000000040))
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETFLOWTABLE(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x2c, 0x17, 0xa, 0x801, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x44000}, 0x8094)
r8 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@enum={0x0, 0x0, 0x0, 0x13}, @volatile={0x0, 0x0, 0x0, 0x9, 0x1}, @struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x0, 0x2}]}]}}, 0x0, 0x4a}, 0x20)
ioctl$FE_GET_PROPERTY(r8, 0x80106f53, &(0x7f00000001c0)={0x2, &(0x7f00000000c0)=[{0x44, '\x00', @st={0x4, [{0x3}, {0x1, @svalue}, {0x1, @svalue=0x8000000000000001}, {0x1, @svalue=0x7}]}, 0x8}, {0x37, '\x00', @buffer={"8f01000000000090d1a01e8300", 0x20}, 0x1c}]})

1.755316883s ago: executing program 5 (id=3136):
syz_usb_connect(0x0, 0x24, &(0x7f0000006740)={{0x12, 0x1, 0x200, 0xa7, 0x87, 0x1d, 0x40, 0x1039, 0x2121, 0x862e, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x7, 0x0, 0x90, 0x0, "", [{{0x9, 0x4, 0x3f, 0x7, 0x0, 0xc7, 0xc4, 0x57, 0x8e}}]}}]}}, 0x0)

1.676094768s ago: executing program 3 (id=3137):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_CLEAR_RESOLV_LIST={{0xbc}, 0xff}}}, 0x7)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), r3)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000016c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="3f9d000180000000000008000000080003", @ANYRES32=r4], 0x3c}, 0x1, 0x0, 0x0, 0x24000000}, 0x2004c0c4)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000340), r6)
sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)={0x20, r7, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
sendmsg$NL802154_CMD_SET_CHANNEL(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)={0x1c, r7, 0x10, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}]}, 0x1c}}, 0x40000)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000000)="d8000000180081064e81f782db44b904021d080400007c09e8fe55a10a0015c005001c2603600e1208000f0000000401a8001600a4000140000000007fffffffb94dcf5c0461c1d6900094007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x20004000)

1.447731796s ago: executing program 4 (id=3139):
kexec_load(0x3, 0x3, &(0x7f00000005c0)=[{&(0x7f0000000100)="047715ac7141c111fab2fcda5de4dc8b278029bcb1bd17524f177856cac105f463c77e2d2ab44d875217dc82baa911f236f959fb9227524d4fe6b621a19823457d04c399283edbac755852623c82f7206d26e918a2981c8f68476969bf8c4bcd37ba24e4ba1683339879a11b854a7478f898805f327af12eaab8ac918c201b7f932e124796f1aba03e031312bd7e67403651abac282b310f420dbcdea31d52854783d6952a2a7b10f3e45715203107f8ce516d99c8c7db918e0989ef123cc524fa8ae0af5c952de542a268", 0xcb, 0x5, 0xffffffff}, {0x0, 0x0, 0x5, 0x4}, {0x0, 0x0, 0x7, 0x2}], 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002840)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x20}, 0x1c, 0x0}}], 0x1, 0x14018891)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000500)}, {0x0}, {0x0}, {&(0x7f0000000740)="747516464293f8e8eec3ccb7dd473a382a0d368ad8a1242abe3b11d915f3eb582e10ff9b8afa9a3d6fa9075032a573688f84e342bf19f200379d5291489fa5151a46ed483044e784cb8f430cbcd5a6145d72a2d2b2b6aa78add2ab0812de906e5545585d6aadca938d5a62632604101886bd45bc15550815c5dcec420b547b43f88b56489e54d47307371d68817c7eca00a16bce0ea9", 0x96}], 0x4}, 0x41)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48001}, 0x4044050)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348092734fe1863473bbce6798a60e9", 0x1d}], 0x2, 0x0, 0x0, 0x10}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0xc0400)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.445638986s ago: executing program 3 (id=3140):
r0 = syz_usb_connect$lan78xx(0x2, 0x3f, &(0x7f0000000240)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x424, 0x7850, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000200)={'batadv0\x00', <r3=>0x0})
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f00000000c0), 0x8, &(0x7f00000002c0)={[{@grpquota}]})
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000ec0)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21, 0x20}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8}, @IFLA_HSR_SLAVE2={0x8, 0x2, r3}, @IFLA_HSR_PROTOCOL={0x5, 0x7, 0x1}]}}}]}, 0x48}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000001300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x2e}, 0x28)
socket(0xa, 0x5, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181000b00000000010000000000000e000a000f000000028002002d1f", 0x2e}], 0x1}, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000680)={0x34, &(0x7f0000000440)={0x20, 0x6, 0xbc, "54f31dc56b9b9f319f7215482b2fade90b5dd25052d8d5f5935ea4c4718a26ab13c79c9840ae9f1f67ef99426b87787dd2842f5baba5fbbe04e6695e607447c5a37843f93fa9a4f02d7b5b5f25c6dbd97904ec3c91659c6a6c4d46844c9f6708c3d3233ee0f4526513acec539dfb93c1ca6d7427d6b735281a3b0624066d30c453a85992b0f9559aafb391587515a2370e8429077a8a8b4056b8be59541c25aed6d4da7588ca24a6a7d6132083697ff5d2c3f50c4c482a220f347b62"}, &(0x7f0000000540)={0x0, 0xa, 0x1, 0x2}, &(0x7f0000000580)={0x0, 0x8, 0x1}, &(0x7f00000005c0)={0xc0, 0xa1, 0x4}, &(0x7f0000000600)={0x40, 0xa0, 0x4, 0x7}, &(0x7f0000000640)={0xc0, 0xa2, 0x2f, "39b7d2c87a7468e34fbd0b6f4cea68a9fb1915541e7387de8b916c9430c0da0f8a66b5b56aa934f6c85f644dcd814e"}})
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r5)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000000340)={'wpan0\x00', <r8=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000009c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="4d7e00000000000000002a00000008002f000000000005003600000000000c0005000000000200000000050037000000000008000200", @ANYRES32=r8, @ANYBLOB="060006000300000006000400feff"], 0x50}, 0x4, 0x700000000000000}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='\v\x00\x00\x00\a@B', @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'batadv_slave_1\x00'})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000007c0)={'syztnl1\x00', &(0x7f0000000740)={'gre0\x00', 0x0, 0x8, 0x8, 0x0, 0x5, {{0xf, 0x4, 0x1, 0x29, 0x3c, 0x67, 0x0, 0x3, 0x4, 0x0, @dev={0xac, 0x14, 0x14, 0xa}, @local, {[@timestamp={0x44, 0x28, 0x8f, 0x0, 0x0, [0x72957a31, 0x3, 0x8, 0x5, 0x7, 0x0, 0x3, 0x0, 0x628]}]}}}}})
sendmsg$nl_route_sched(r1, &(0x7f0000002b80)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000002b40)={&(0x7f00000014c0)=@deltfilter={0x634, 0x2d, 0x4, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x6, 0x1}, {0xc, 0x6578e6cffde92601}, {0xa, 0x8}}, [@filter_kind_options=@f_flow={{0x9}, {0x4ec, 0x2, [@TCA_FLOW_PERTURB={0x8, 0xc, 0xdeb}, @TCA_FLOW_ACT={0x4d8, 0x9, 0x0, 0x1, [@m_simple={0x148, 0x17, 0x0, 0x0, {{0xb}, {0x30, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x5, 0x3, '\x00'}, @TCA_DEF_DATA={0xa, 0x3, 'bond0\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x3, 0xc0, 0xffffffffffffffff, 0xff, 0x67a}}]}, {0xed, 0x6, "e8dc30ee6f6d8e20d6dabaa08013f1c40ae8173316f218a45a88ce5f2ea116c6a1d5a0b7f9b7e389668e60f858868d355b36dd0fbca867ba0fe86840619397a70b66f97ff25cd923610d0b1bbe9f4b56d4979ca02b45070d84cec2de8f74edea4d5c6ab9b7a4f1590fabf895a8363ef78f0d4e09089cdd91045c09550762c5d2654bd879b9ed24beca77d96f68956c6b3f58592793a8e4cad817a9f42cf6231529be7c54059eea66bb363a0daa7369744446c69c059a5e02d72da62eb83d60be32322b7815815a5da6644a163cdbd09f219f37cdb72b21697a34ab7a41ab590378c766c66465690285"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_tunnel_key={0xdc, 0x2, 0x0, 0x0, {{0xf}, {0xc, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_NO_CSUM={0x5, 0xa, 0x1}]}, {0xa4, 0x6, "47befcb5d27f926b3c46e611cf311f0668a65a80b75b88003a3b55c8cf1437b750f331134922be76534fbef808754a7a7bf582b0732c660507d5a35bbf6ae930e7cfce7f28fb546695b4a6839b8566d5f106ff492853656deaf4767e103348d75807221b37fce69a4be6be941288b2128a4ec200338cb954fbd9c956b4a60a1f036fb38112f8b76aacf17bca251e3f71ec5e191d5b38c41c5e59fee3cee6753d"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_simple={0xd4, 0x1d, 0x0, 0x0, {{0xb}, {0x48, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x13, 0x3, 'batadv_slave_1\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x7, 0xfffffffd, 0x20000000, 0x5, 0x3}}, @TCA_DEF_PARMS={0x18, 0x2, {0x8001, 0x1ff, 0x4, 0x0, 0xe}}]}, {0x62, 0x6, "eae11f21ccab37aa8fafc13d6e0189360fee691a07e39994caed467c5edbf4dcd5dbc1d941a06826470562c718fe21aeec991e3bec4f1cad7b6857b6cd9467cdfce24d9f4467c5df8a278fb6634ffdf50816332d723ceb85f2a60277c77a"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_skbedit={0xcc, 0x1d, 0x0, 0x0, {{0xc}, {0x94, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0xfff7}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x2}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x4}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x161, 0x80000000, 0x3, 0x600, 0xa}}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x2, 0x8, 0x3, 0x2, 0x200}}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x8}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x3ff}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0xbf04, 0x8, 0x1, 0x0, 0x1000}}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x5}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x70, 0x3, 0x20000000, 0x800, 0x31}}]}, {0xe, 0x6, "818bf0e702647bb10aba"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1}}}}, @m_vlan={0x30, 0x12, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_csum={0xe0, 0x12, 0x0, 0x0, {{0x9}, {0x90, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0xffff, 0xf, 0x2, 0x1, 0xa3}, 0x61}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x7ff, 0x7, 0x8, 0x6, 0x8000}, 0x2b}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x664a, 0xc21, 0x8, 0x9000000, 0x4}, 0x2f}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x9, 0x3, 0xffffffffffffffff, 0x1, 0x8}, 0x68}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0xa54d, 0x8001, 0x7, 0xc9e, 0xffffffff}, 0x38}}]}, {0x25, 0x6, "4b6c8633a03ede93b0ae5785df3742b63553d7584a3ea01a79b21652213fe2dae8"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}, @TCA_FLOW_DIVISOR={0x8, 0x8, 0xffffffff}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x3c}}, @filter_kind_options=@f_matchall={{0xd}, {0x4}}, @TCA_CHAIN={0x8, 0xb, 0x1}, @filter_kind_options=@f_route={{0xa}, {0xb4, 0x2, [@TCA_ROUTE4_POLICE={0xb0, 0x5, [@TCA_POLICE_TBF={0x3c, 0x1, {0x80000000, 0x0, 0x2, 0x608b, 0x0, {0x0, 0x1, 0x3b44, 0x7, 0x100}, {0x8, 0x3, 0x6, 0x4, 0x80, 0x5}, 0xffffffff, 0x81, 0x4}}, @TCA_POLICE_TBF={0x3c, 0x1, {0x8, 0x3, 0x3, 0x800, 0x56d, {0x8, 0x1, 0x4, 0x6, 0x1, 0x100}, {0x36, 0x2, 0x6, 0x8, 0x0, 0x1ff}, 0x1, 0x6, 0xfffffffa}}, @TCA_POLICE_RATE64={0xc, 0x8, 0x10001}, @TCA_POLICE_RESULT={0x8, 0x5, 0xb}, @TCA_POLICE_AVRATE={0x8, 0x4, 0xfffffff8}, @TCA_POLICE_RATE64={0xc, 0x8, 0x5}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3}]}]}}, @filter_kind_options=@f_u32={{0x8}, {0x1c, 0x2, [@TCA_U32_FLAGS={0x8, 0xb, 0x3}, @TCA_U32_DIVISOR={0x8, 0x4, 0x7c}, @TCA_U32_DIVISOR={0x8, 0x4, 0x8e}]}}, @TCA_CHAIN={0x8}, @TCA_CHAIN={0x8, 0xb, 0x7}]}, 0x634}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000)
syz_emit_ethernet(0xba, &(0x7f0000000000)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @tipc={{0x1a, 0x4, 0x1, 0x8, 0xac, 0x67, 0x0, 0x70, 0x6, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@cipso={0x86, 0x10, 0xffffffffffffffff, [{0x0, 0xa, "4c69a33a3336aee1"}]}, @generic={0xcb, 0x10, "b1d168e4539467c9bb8ebf1929fc"}, @ra={0x94, 0x4}, @rr={0x7, 0x3, 0xd1}, @timestamp_prespec={0x44, 0x2c, 0xb1, 0x3, 0x9, [{@local, 0x642c}, {@multicast1, 0x41}, {@loopback, 0x7}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0xa7f}, {@rand_addr=0x64010102, 0xf}]}]}}, @name_distributor={{0x44, 0x0, 0x0, 0x0, 0x1, 0xa, 0xb, 0x2, 0x6, 0x0, 0x0, 0x9, 0x3, 0x3, 0x4e21, 0x4e22, 0x4, 0x3}, [{0x3, 0x8000, 0xc, 0xf1ce, 0x5, 0x5, 0x1, 0xffffff8}]}}}}}, 0x0)

1.28610543s ago: executing program 4 (id=3141):
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x101e01, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000140)=0x15)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000002c0)=0x7e)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000540)=0x9)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000180)=0xef)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000001c0)=0x40)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x67, 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x18)
ioctl$UFFDIO_CONTINUE(0xffffffffffffffff, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000100), r2)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0x7e)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
mount_setattr(0xffffffffffffff9c, 0x0, 0x8000, &(0x7f0000001dc0)={0x2000, 0x72, 0x80000}, 0x20)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mdstat\x00', 0x0, 0x0)
pread64(r5, &(0x7f0000000380)=""/224, 0xf9, 0xd)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=@ipv4_newroute={0x38, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x4}, @RTA_ENCAP={0x14, 0x16, 0x0, 0x1, @LWTUNNEL_IP_OPTS={0x10, 0x8, 0x0, 0x1, @LWTUNNEL_IP_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, @LWTUNNEL_IP_OPT_VXLAN_GBP={0x8}}}}]}, 0x38}}, 0x0)
pwritev(r0, &(0x7f0000000480)=[{&(0x7f0000000600)="10250b6c22", 0x5}], 0x1, 0x80002, 0x7f)
bpf$MAP_CREATE(0x200000000000001d, &(0x7f0000000b00)=@base={0x6, 0x4, 0x70be, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)

1.213728738s ago: executing program 4 (id=3142):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0xfff, 0x4000000007}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x5, &(0x7f0000000540)=0x800, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = gettid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000000180)=0xffffffffffffffff)
fcntl$setsig(r3, 0xa, 0x12)
ppoll(&(0x7f0000000100)=[{r4}], 0x1, 0x0, &(0x7f0000000080)={[0x8001a0efffffff]}, 0x8)
dup2(r3, r4)
fcntl$setown(r4, 0x8, r2)
tkill(r2, 0x13)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'})
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r5, 0xc0c89425, &(0x7f00000001c0)={"a441f78b4c84aab11872aa47f71ec36d", 0x0, <r6=>0x0, {0x4bf, 0x7}, {0x100, 0x8}, 0x9, [0xa5, 0xf, 0x5, 0x6, 0x10001, 0xd046, 0x5, 0x2, 0x4, 0x6, 0x7, 0x10001, 0x4, 0x8, 0x4, 0x81]})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r3, 0x5000943f, &(0x7f0000000580)={{r3}, r6, 0x2, @inherit={0x58, &(0x7f0000000300)={0x0, 0x2, 0x8000, 0x9, {0x10, 0x6, 0x1, 0x81}, [0x2, 0xffffffffffff1f81]}}, @subvolid=0x8})
r7 = syz_open_dev$midi(&(0x7f0000000000), 0x2, 0x800)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r7, 0x40045730, &(0x7f0000000380))

790.878213ms ago: executing program 4 (id=3143):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="05000000041cabb3a90b0000020f000004"], 0x50)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYRESDEC=r0], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x20000080)
pipe2(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2c63616368653d667363616368652c63616368657461673d14e2c311e2cb86c82d4873c6af6ddc7bde3c511a1315e4f85948a98ae388123b56361ed3cc4c3e5523eb70372d09d6bc2f"])
faccessat2(r1, &(0x7f0000000040)='.\x00', 0x4, 0x300)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000a00)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000009c0)={&(0x7f00000007c0)={0x1d4, 0x1, 0x2, 0x301, 0x0, 0x0, {0xa, 0x0, 0x7}, [@CTA_EXPECT_MASTER={0xb8, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2441bea4e46317d4}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x90}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @broadcast}}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}]}, @CTA_EXPECT_NAT={0x44, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_TUPLE={0x28, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010101}, {0x8, 0x2, @remote}}}]}]}, @CTA_EXPECT_NAT={0xb4, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0x30, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}, @CTA_EXPECT_NAT_TUPLE={0x5c, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @local}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}]}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0x4}]}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x1}, @CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0xe7f}]}, 0x1d4}, 0x1, 0x0, 0x0, 0x40800}, 0x4000000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r7, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x0, 0xfffd, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=@newqdisc={0x38, 0x24, 0xd0f, 0x70bd2c, 0x25dfdbfb, {0x60, 0x0, 0x0, r7, {0x0, 0xc}, {0x8, 0xa}, {0xffe0, 0xe}}, [@qdisc_kind_options=@q_pie={{0x8}, {0xc, 0x2, [@TCA_PIE_LIMIT={0x8, 0x2, 0x1}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x55}, 0x8010)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x78, r3, 0x8, 0x70bd26, 0x25dfdbff, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7fb5f2702e0120b3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x4000}, 0x40040)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)=ANY=[@ANYBLOB="09040000", @ANYRES16=r8, @ANYBLOB="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"], 0x100}, 0x1, 0x0, 0x0, 0x40000}, 0x91)
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='sched\x00')
ioctl$KVM_CAP_VM_MOVE_ENC_CONTEXT_FROM(r2, 0x4068aea3, &(0x7f0000000680)={0xce, 0x0, r1})
writev(r9, &(0x7f0000002780)=[{&(0x7f0000000300)="d9", 0x1}], 0x1)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), r9)

658.767559ms ago: executing program 4 (id=3144):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c0000000306010400000000000000000200e704050001000700000030"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x20000080) (fail_nth: 2)

419.706894ms ago: executing program 4 (id=3145):
socket$inet6_sctp(0xa, 0x5, 0x84)
read$FUSE(0xffffffffffffffff, &(0x7f00000005c0)={0x2020}, 0x2020)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r1=>r0, {0x100}}, './file0\x00'})
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'team0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)=@gettfilter={0x34, 0x2e, 0x200, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r2, {0xffff, 0xb}, {0x8, 0x9}, {0x5, 0xb}}, [{0x8, 0xb, 0xffff3f10}, {0x8, 0xb, 0x59}]}, 0x34}, 0x1, 0x0, 0x0, 0x10000000}, 0x8800)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$RTC_WKALM_RD(0xffffffffffffffff, 0x80287010, &(0x7f0000000000))
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000340)={'netdevsim0\x00', &(0x7f0000000700)=@ethtool_flash={0x33, 0xea6, '.\x00'}})
unshare(0x2a020480)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0xd01, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000003740)={r5, 0x0, 0x40, 0x1000, &(0x7f00000000c0)="7dd53cbd3194ca5fdf819f26407baee211bc663e897588e401f0e4a0fb45b71d7774162147dbec7f16b9ad3ac658833ca3a65d0cce88271044d28f364b55ad3b", &(0x7f0000002600)=""/4096, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, 0x50)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r6, &(0x7f0000000240)={0x23, 0x30, 0x0, 0x4}, 0x10)
r7 = socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r7, &(0x7f0000000100)={0x23, 0x30}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

363.384373ms ago: executing program 5 (id=3146):
mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0xfffffff7)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000080), 0x2008800, &(0x7f00000010c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
mount_setattr(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)={0x200001, 0x81, 0x100000}, 0x20)

136.861088ms ago: executing program 5 (id=3147):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000540)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2d}, 0x90)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000004c0)={'syzkaller1\x00', <r4=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000200)={r2, r4, 0x25, 0x4, @void}, 0x10)
r5 = syz_open_dev$video(&(0x7f0000000000), 0x3, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r5, 0x4020565a, &(0x7f0000000040)={0x3, 0x980914, 0x3})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000001c0)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r7 = socket$netlink(0x10, 0x3, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x94)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r9, 0xae60)
syz_open_dev$sndpcmp(&(0x7f0000000040), 0x0, 0x0)
ioctl$sock_SIOCGIFBR(r7, 0x8940, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x4)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
write$tun(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="7000aaaaaaaabb03004500002c00000000002f9078ac364ac5a4f4722a9642171e0001e00000010000655800189078040000000000000086ff000000"], 0x3e)

0s ago: executing program 3 (id=3148):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=@setlink={0x3c, 0x13, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2a82}, [@IFLA_MASTER={0x8, 0xa, r2}, @IFLA_ALT_IFNAME={0x14, 0x35, 'bridge_slave_0\x00'}]}, 0x3c}}, 0x0)
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$kvm(0xffffffffffffff9c, 0x0, 0xb0f01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_role_change={{0x12, 0x8}, {0xcb, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x8}}}, 0xb)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000001a40)=""/102392, 0x18ff8)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r4 = fsopen(&(0x7f0000000040)='sockfs\x00', 0x1)
r5 = syz_io_uring_setup(0x6cf2, &(0x7f0000000280)={0x0, 0x10008cc8, 0x10100, 0x6, 0x10e}, &(0x7f0000000080), &(0x7f0000000100), &(0x7f0000000240))
io_uring_enter(r5, 0x7a98, 0x0, 0x0, 0x0, 0xfffffffffffffc76)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000180)='rootcontext', &(0x7f0000000440)='5\xfd\x04\xc6\xc9]\v\xd6S9q\x0f#\x93\x9d\xeb\x00\xcf\xb2~9*\xa9\x1d:\x06u46N\xd93\xe1\xa2\x05\x83Z\xbc\xbeT\x16\xab\xfb=4\xa6\x10,\"\xee\xf8o+\x02\xd8\xaft_\r\x1d\"\xc8\\k\xcc4\x96\xdbA\x02[\x16\xb4\xca\xa5n\x87\xdb\xb3\x1f\xbb\xc0\x9f\xc2\x9e\t[\xba\x9e\xfd\xc76#\x8f\xc6\xe7\x11\x8fL\xd97<cAZR\n w\xe6\x1c\xf0(\x96H\x88\x00\xd3\x1c\x16cj\x10\xd8\x92\xc9ad\xc0aR\x12\xd3\xc2J\xcb\x9a\xa5\xce#{e\xd3\x11\xc5]\xb4F1\xfb\xe6\xd4T\v\x87\x04\xcf\b.\xcaO\x04\x0f\x062\xcaL\x81\xa6\xbbp\xd3\xc6$4t (W\x92nr\xbe,\b\xdb\x7f[', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r6 = getpgid(0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000004000a5012bbd700000000000047c00000400c2800c0001800600060008"], 0x2c}, 0x1, 0x0, 0x0, 0x4048011}, 0x44000)
clock_adjtime(0x3, &(0x7f0000004dc0)={0xb, 0x400000000045, 0xffffffff80000000, 0x880006, 0x8000000000000001, 0x7cca, 0x6, 0x5, 0xffffffffffffffc0, 0x4, 0xd, 0x7, 0xf, 0x8c, 0x400000d01, 0x0, 0x4, 0x4, 0xffffffffffffffff, 0x8000, 0x2, 0x2, 0x1, 0x624a, 0x11, 0x8000008})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
rt_sigqueueinfo(r6, 0x31, &(0x7f0000000380)={0x17, 0x8001, 0x80000000})

kernel console output (not intermixed with test programs):

T16345]  tomoyo_path_number_perm+0x23c/0x580
[ 1141.550607][T16345]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1141.550631][T16345]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1141.550677][T16345]  ? find_held_lock+0x2b/0x80
[ 1141.550691][T16345]  ? __fget_files+0x215/0x3d0
[ 1141.550719][T16345]  ? hook_file_ioctl_common+0x149/0x410
[ 1141.550737][T16345]  ? __fget_files+0x215/0x3d0
[ 1141.550764][T16345]  ? __fget_files+0x21f/0x3d0
[ 1141.550788][T16345]  security_file_ioctl+0xd3/0x230
[ 1141.550813][T16345]  __x64_sys_ioctl+0xb7/0x210
[ 1141.550834][T16345]  do_syscall_64+0x115/0x870
[ 1141.550854][T16345]  ? clear_bhb_loop+0x40/0x90
[ 1141.550876][T16345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1141.550894][T16345] RIP: 0033:0x7f2daa39ce59
[ 1141.550909][T16345] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1141.550925][T16345] RSP: 002b:00007f2dab2a0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1141.550942][T16345] RAX: ffffffffffffffda RBX: 00007f2daa615fa0 RCX: 00007f2daa39ce59
[ 1141.550953][T16345] RDX: 0000200000000000 RSI: 00000000c0405602 RDI: 0000000000000003
[ 1141.550963][T16345] RBP: 00007f2dab2a0090 R08: 0000000000000000 R09: 0000000000000000
[ 1141.550974][T16345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1141.550984][T16345] R13: 00007f2daa616038 R14: 00007f2daa615fa0 R15: 00007ffc0ff4f4b8
[ 1141.551007][T16345]  </TASK>
[ 1141.551024][T16345] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1141.776247][  T805] usb usb6-port1: attempt power cycle
[ 1141.843733][ T5662] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[ 1142.411798][ T5662] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1142.440306][  T805] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[ 1142.450830][ T5662] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1142.524903][ T5662] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1142.555162][ T5662] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1142.660441][  T805] usb 6-1: device not accepting address 28, error -71
[ 1142.742114][ T5662] usb 3-1: config 0 descriptor??
[ 1143.657667][ T5662] usb 3-1: string descriptor 0 read error: -71
[ 1143.669798][T16377] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2863'.
[ 1143.681201][ T5662] uclogic 0003:256C:006D.001A: failed retrieving string descriptor #200: -71
[ 1143.696079][ T5662] uclogic 0003:256C:006D.001A: failed retrieving pen parameters: -71
[ 1143.704344][ T5662] uclogic 0003:256C:006D.001A: failed probing pen v2 parameters: -71
[ 1143.712985][ T5662] uclogic 0003:256C:006D.001A: failed probing parameters: -71
[ 1143.724707][T16380] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2863'.
[ 1143.734132][ T5662] uclogic 0003:256C:006D.001A: probe with driver uclogic failed with error -71
[ 1143.756937][T16382] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2864'.
[ 1143.915262][ T5662] usb 3-1: USB disconnect, device number 54
[ 1145.253424][   T29] audit: type=1400 audit(1780204069.290:553): avc:  denied  { setopt } for  pid=16397 comm="syz.4.2871" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[ 1145.451559][T16405] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1145.570379][T14067] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[ 1145.740626][T14067] usb 6-1: Using ep0 maxpacket: 32
[ 1145.751568][T14067] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1145.768367][T14067] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1145.806928][T14067] usb 6-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=d8.11
[ 1145.818941][T14067] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1145.827218][T14067] usb 6-1: Product: syz
[ 1145.835445][T14067] usb 6-1: Manufacturer: syz
[ 1145.841226][T14067] usb 6-1: SerialNumber: syz
[ 1145.852445][T14067] usb 6-1: config 0 descriptor??
[ 1146.286071][T16419] FAULT_INJECTION: forcing a failure.
[ 1146.286071][T16419] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1146.299197][T16419] CPU: 0 UID: 0 PID: 16419 Comm: syz.5.2872 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1146.299224][T16419] Tainted: [L]=SOFTLOCKUP
[ 1146.299231][T16419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1146.299241][T16419] Call Trace:
[ 1146.299248][T16419]  <TASK>
[ 1146.299256][T16419]  dump_stack_lvl+0x100/0x190
[ 1146.299280][T16419]  should_fail_ex.cold+0x5/0xa
[ 1146.299305][T16419]  _copy_from_user+0x2e/0xd0
[ 1146.299334][T16419]  copy_msghdr_from_user+0x9f/0x4f0
[ 1146.299358][T16419]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1146.299385][T16419]  ? __lock_acquire+0x4a5/0x2630
[ 1146.299413][T16419]  ___sys_sendmsg+0x106/0x1e0
[ 1146.299436][T16419]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1146.299459][T16419]  ? find_held_lock+0x2b/0x80
[ 1146.299501][T16419]  __sys_sendmsg+0x170/0x220
[ 1146.299529][T16419]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1146.299556][T16419]  ? __pfx___schedule+0x10/0x10
[ 1146.299583][T16419]  ? exit_to_user_mode_loop+0xf3/0x670
[ 1146.299607][T16419]  ? rcu_is_watching+0x12/0xc0
[ 1146.299636][T16419]  do_syscall_64+0x115/0x870
[ 1146.299658][T16419]  ? clear_bhb_loop+0x40/0x90
[ 1146.299680][T16419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1146.299699][T16419] RIP: 0033:0x7f22dad9ce59
[ 1146.299714][T16419] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1146.299731][T16419] RSP: 002b:00007f22dbb7f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1146.299749][T16419] RAX: ffffffffffffffda RBX: 00007f22db016180 RCX: 00007f22dad9ce59
[ 1146.299761][T16419] RDX: 0000000000000090 RSI: 00002000000001c0 RDI: 0000000000000007
[ 1146.299772][T16419] RBP: 00007f22dbb7f090 R08: 0000000000000000 R09: 0000000000000000
[ 1146.299783][T16419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1146.299793][T16419] R13: 00007f22db016218 R14: 00007f22db016180 R15: 00007ffdbc482ec8
[ 1146.299817][T16419]  </TASK>
[ 1146.521206][T16423] FAULT_INJECTION: forcing a failure.
[ 1146.521206][T16423] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1146.534448][T16423] CPU: 0 UID: 0 PID: 16423 Comm: syz.0.2873 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1146.534473][T16423] Tainted: [L]=SOFTLOCKUP
[ 1146.534479][T16423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1146.534489][T16423] Call Trace:
[ 1146.534495][T16423]  <TASK>
[ 1146.534501][T16423]  dump_stack_lvl+0x100/0x190
[ 1146.534523][T16423]  should_fail_ex.cold+0x5/0xa
[ 1146.534547][T16423]  _copy_from_user+0x2e/0xd0
[ 1146.534569][T16423]  move_addr_to_kernel+0x65/0x170
[ 1146.534592][T16423]  copy_msghdr_from_user+0x417/0x4f0
[ 1146.534613][T16423]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1146.534644][T16423]  ___sys_sendmsg+0x106/0x1e0
[ 1146.534665][T16423]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1146.534712][T16423]  __sys_sendmsg+0x170/0x220
[ 1146.534737][T16423]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1146.534772][T16423]  ? rcu_is_watching+0x12/0xc0
[ 1146.534799][T16423]  do_syscall_64+0x115/0x870
[ 1146.534820][T16423]  ? clear_bhb_loop+0x40/0x90
[ 1146.534842][T16423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1146.534859][T16423] RIP: 0033:0x7fb9d7b9ce59
[ 1146.534874][T16423] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1146.534889][T16423] RSP: 002b:00007fb9d5df6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1146.534906][T16423] RAX: ffffffffffffffda RBX: 00007fb9d7e15fa0 RCX: 00007fb9d7b9ce59
[ 1146.534917][T16423] RDX: 0000000000000004 RSI: 00002000000000c0 RDI: 0000000000000003
[ 1146.534927][T16423] RBP: 00007fb9d5df6090 R08: 0000000000000000 R09: 0000000000000000
[ 1146.534936][T16423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1146.534946][T16423] R13: 00007fb9d7e16038 R14: 00007fb9d7e15fa0 R15: 00007ffcd350a9d8
[ 1146.534968][T16423]  </TASK>
[ 1146.889858][T16432] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2878'.
[ 1146.903571][T16432] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2878'.
[ 1147.148542][ T5669] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1147.161358][ T5669] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1147.172746][ T5669] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1147.185241][ T5669] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1147.192841][ T5669] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1148.367519][T14067] usb 6-1: USB disconnect, device number 30
[ 1149.251318][T16477] virtio-fs: tag </dev/md0> not found
[ 1149.280655][T11379] Bluetooth: hci3: command tx timeout
[ 1149.327011][   T29] audit: type=1400 audit(1780204073.370:554): avc:  denied  { read } for  pid=16473 comm="syz.2.2889" dev="sockfs" ino=96904 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1149.904694][   T29] audit: type=1400 audit(1780204073.910:555): avc:  denied  { bind } for  pid=16457 comm="syz.5.2885" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1149.968350][   T29] audit: type=1400 audit(1780204073.910:556): avc:  denied  { name_bind } for  pid=16457 comm="syz.5.2885" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[ 1150.014548][   T29] audit: type=1400 audit(1780204073.910:557): avc:  denied  { node_bind } for  pid=16457 comm="syz.5.2885" saddr=100.1.1.0 src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[ 1150.222319][T16491] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1538 sclass=netlink_route_socket pid=16491 comm=syz.2.2890
[ 1150.287225][T13312] bond0: (slave syz_tun): Releasing backup interface
[ 1150.339509][T16486] syz_tun: left promiscuous mode
[ 1150.381150][  T198] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1150.388306][  T198] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1150.410082][T16434] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1150.418361][T16434] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1150.426114][T16434] bridge_slave_0: entered allmulticast mode
[ 1150.435053][T16434] bridge_slave_0: entered promiscuous mode
[ 1150.484207][T16434] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1150.500033][T16434] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1150.513037][T16434] bridge_slave_1: entered allmulticast mode
[ 1150.530987][T16434] bridge_slave_1: entered promiscuous mode
[ 1150.616143][T16434] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1150.659583][T16434] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1150.713585][   T29] audit: type=1326 audit(1780204074.750:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16489 comm="syz.2.2890" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f89a439ce59 code=0x0
[ 1150.781317][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1150.853237][T16434] team0: Port device team_slave_0 added
[ 1150.908115][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1150.931509][T16434] team0: Port device team_slave_1 added
[ 1151.039673][T16434] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1151.048921][T16434] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1151.077155][T16434] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1151.093396][T16434] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1151.100647][T16434] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1151.126836][T16434] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1151.175994][T16434] hsr_slave_0: entered promiscuous mode
[ 1151.182468][T16434] hsr_slave_1: entered promiscuous mode
[ 1151.188405][T16434] debugfs: 'hsr0' already exists in 'hsr'
[ 1151.195158][T16434] Cannot create hsr debugfs directory
[ 1151.219702][T16503] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1151.296692][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1151.360523][T11379] Bluetooth: hci3: command tx timeout
[ 1151.441434][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1151.808247][   T12] bridge_slave_1: left allmulticast mode
[ 1151.828865][   T12] bridge_slave_1: left promiscuous mode
[ 1151.839210][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1151.865362][   T12] bridge_slave_0: left allmulticast mode
[ 1151.871471][   T12] bridge_slave_0: left promiscuous mode
[ 1151.877487][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1152.061746][T16543] overlayfs: unescaped trailing colons in lowerdir mount option.
[ 1152.567585][   T29] audit: type=1400 audit(1780204076.610:559): avc:  denied  { write } for  pid=16526 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1152.591881][T16552] FAULT_INJECTION: forcing a failure.
[ 1152.591881][T16552] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1152.627369][T16552] CPU: 1 UID: 0 PID: 16552 Comm: syz.5.2904 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1152.627398][T16552] Tainted: [L]=SOFTLOCKUP
[ 1152.627405][T16552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1152.627415][T16552] Call Trace:
[ 1152.627421][T16552]  <TASK>
[ 1152.627428][T16552]  dump_stack_lvl+0x100/0x190
[ 1152.627454][T16552]  should_fail_ex.cold+0x5/0xa
[ 1152.627480][T16552]  _copy_to_user+0x32/0xd0
[ 1152.627503][T16552]  put_timespec64+0xb5/0x130
[ 1152.627524][T16552]  ? __pfx_put_timespec64+0x10/0x10
[ 1152.627541][T16552]  ? lockdep_hardirqs_on+0x78/0x100
[ 1152.627565][T16552]  ? ktime_get_ts64+0x318/0x420
[ 1152.627582][T16552]  ? ktime_get_ts64+0x257/0x420
[ 1152.627601][T16552]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1152.627622][T16552]  poll_select_finish+0x54b/0x670
[ 1152.627646][T16552]  ? __pfx_poll_select_finish+0x10/0x10
[ 1152.627669][T16552]  ? __pfx_set_user_sigmask+0x10/0x10
[ 1152.627694][T16552]  ? ktime_get_ts64+0x257/0x420
[ 1152.627720][T16552]  do_pselect.constprop.0+0x24c/0x270
[ 1152.627745][T16552]  ? __pfx_do_pselect.constprop.0+0x10/0x10
[ 1152.627772][T16552]  ? ksys_write+0x1ac/0x250
[ 1152.627795][T16552]  __x64_sys_pselect6+0x149/0x1c0
[ 1152.627820][T16552]  do_syscall_64+0x115/0x870
[ 1152.627841][T16552]  ? clear_bhb_loop+0x40/0x90
[ 1152.627863][T16552]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1152.627880][T16552] RIP: 0033:0x7f22dad9ce59
[ 1152.627895][T16552] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1152.627911][T16552] RSP: 002b:00007f22dbbc1028 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[ 1152.627929][T16552] RAX: ffffffffffffffda RBX: 00007f22db015fa0 RCX: 00007f22dad9ce59
[ 1152.627941][T16552] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1152.627952][T16552] RBP: 00007f22dbbc1090 R08: 0000200000000280 R09: 0000000000000000
[ 1152.627963][T16552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1152.627973][T16552] R13: 00007f22db016038 R14: 00007f22db015fa0 R15: 00007ffdbc482ec8
[ 1152.627997][T16552]  </TASK>
[ 1153.014848][   T29] audit: type=1400 audit(1780204077.060:560): avc:  denied  { write } for  pid=16556 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1153.113875][   T29] audit: type=1400 audit(1780204077.160:561): avc:  denied  { append } for  pid=16555 comm="syz.5.2905" name="sg0" dev="devtmpfs" ino=780 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[ 1153.204630][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1153.214773][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1153.225876][   T12] bond0 (unregistering): Released all slaves
[ 1153.253224][   T12] bond1 (unregistering): Released all slaves
[ 1153.361247][ T5277] 8021q: adding VLAN 0 to HW filter on device eth5
[ 1153.454882][T11379] Bluetooth: hci3: command tx timeout
[ 1154.033600][   T12] hsr_slave_0: left promiscuous mode
[ 1154.053101][   T12] hsr_slave_1: left promiscuous mode
[ 1154.062095][   T29] audit: type=1400 audit(1780204078.100:562): avc:  denied  { listen } for  pid=16582 comm="syz.3.2909" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1154.082986][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1154.090554][T16584] netlink: 'syz.3.2909': attribute type 2 has an invalid length.
[ 1154.109118][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1154.126290][   T29] audit: type=1400 audit(1780204078.160:563): avc:  denied  { connect } for  pid=16582 comm="syz.3.2909" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1154.147478][   T12] veth1_macvtap: left promiscuous mode
[ 1154.157617][   T12] veth0_macvtap: left promiscuous mode
[ 1154.407882][   T29] kauditd_printk_skb: 4 callbacks suppressed
[ 1154.407899][   T29] audit: type=1400 audit(1780204078.450:566): avc:  denied  { getopt } for  pid=16598 comm="syz.5.2912" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[ 1154.490319][   T29] audit: type=1400 audit(1780204078.500:567): avc:  denied  { write } for  pid=16597 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1154.517238][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 1154.533388][   T29] audit: type=1400 audit(1780204078.560:568): avc:  denied  { ioctl } for  pid=16573 comm="syz.0.2908" path="socket:[99565]" dev="sockfs" ino=99565 ioctlcmd=0xf50a scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1154.585206][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 1154.605364][T16604] netlink: 'syz.3.2913': attribute type 2 has an invalid length.
[ 1154.615515][T16574] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -2360, delta: 1
[ 1154.624221][T16574] ref_ctr increment failed for inode: 0xb1b offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff888033d2a4c0
[ 1154.635272][   T29] audit: type=1804 audit(1780204078.660:569): pid=16574 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.2908" name="/newroot/550/file0" dev="tmpfs" ino=2843 res=1 errno=0
[ 1154.660328][T16574] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -2360, delta: -1
[ 1154.669876][T16574] ref_ctr decrement failed for inode: 0xb1b offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff888033d2a4c0
[ 1154.680862][T16574] uprobe: syz.0.2908:16574 failed to unregister, leaking uprobe
[ 1154.690313][ T5662] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[ 1154.709071][   T29] audit: type=1400 audit(1780204078.750:570): avc:  denied  { map } for  pid=16603 comm="syz.3.2913" path="socket:[98972]" dev="sockfs" ino=98972 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[ 1154.854196][ T5662] usb 6-1: Using ep0 maxpacket: 32
[ 1154.871930][ T5662] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1154.912700][ T5662] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1154.945018][ T5662] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1154.986159][ T5662] usb 6-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[ 1155.027727][ T5662] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1155.058424][ T5662] usb 6-1: config 0 descriptor??
[ 1155.107341][T16434] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1155.142255][T16434] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1155.156821][T16434] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1155.180861][T16434] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1155.199734][T16434] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1155.219596][T16434] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1155.227977][T16434] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1155.244860][T16434] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1155.258852][   T12] IPVS: stop unused estimator thread 0...
[ 1155.391022][T16434] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1155.431837][   T12] bridge_slave_1: left allmulticast mode
[ 1155.437732][   T12] bridge_slave_1: left promiscuous mode
[ 1155.445125][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1155.471412][   T12] bridge_slave_0: left allmulticast mode
[ 1155.487077][   T12] bridge_slave_0: left promiscuous mode
[ 1155.493452][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1155.508255][ T5662] input: HID 0458:5011 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:0458:5011.001B/input/input54
[ 1155.520318][T11379] Bluetooth: hci3: command tx timeout
[ 1155.637361][   T29] audit: type=1400 audit(1780204079.680:571): avc:  denied  { write } for  pid=16611 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1155.692891][ T5662] input: HID 0458:5011 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:0458:5011.001B/input/input55
[ 1155.836550][ T5662] kye 0003:0458:5011.001B: input,hiddev0,hidraw0: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.5-1/input0
[ 1155.887974][   T29] audit: type=1400 audit(1780204079.930:572): avc:  denied  { write } for  pid=16636 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1155.899409][ T5662] usb 6-1: USB disconnect, device number 31
[ 1155.935279][T14075] usb 3-1: new full-speed USB device number 55 using dummy_hcd
[ 1156.081856][T16638] fido_id[16638]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/6-1/report_descriptor': No such file or directory
[ 1156.105350][T14075] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1157.072115][T14075] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1157.083425][T14075] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1157.093203][T14075] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1157.111418][T14075] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1157.509875][T14075] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1157.517959][T14075] usb 3-1: Manufacturer: syz
[ 1157.525255][T14075] usb 3-1: config 0 descriptor??
[ 1157.578894][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1157.609283][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1157.636792][   T12] bond0 (unregistering): Released all slaves
[ 1157.679153][   T29] audit: type=1400 audit(1780204081.720:573): avc:  denied  { write } for  pid=16648 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1157.759620][T16434] 8021q: adding VLAN 0 to HW filter on device team0
[ 1157.836009][ T5685] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1157.843172][ T5685] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1157.899806][   T29] audit: type=1400 audit(1780204081.940:574): avc:  denied  { create } for  pid=16662 comm="syz.3.2920" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[ 1157.927036][ T5685] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1157.934236][ T5685] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1157.995579][   T29] audit: type=1400 audit(1780204081.940:575): avc:  denied  { accept } for  pid=16662 comm="syz.3.2920" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[ 1158.150125][ T5837] usb 3-1: USB disconnect, device number 55
[ 1158.178806][T16671] FAULT_INJECTION: forcing a failure.
[ 1158.178806][T16671] name failslab, interval 1, probability 0, space 0, times 0
[ 1158.240950][T16671] CPU: 0 UID: 0 PID: 16671 Comm: syz.5.2921 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1158.240980][T16671] Tainted: [L]=SOFTLOCKUP
[ 1158.240986][T16671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1158.240996][T16671] Call Trace:
[ 1158.241002][T16671]  <TASK>
[ 1158.241008][T16671]  dump_stack_lvl+0x100/0x190
[ 1158.241033][T16671]  should_fail_ex.cold+0x5/0xa
[ 1158.241056][T16671]  ? tomoyo_encode2+0xfb/0x3c0
[ 1158.241081][T16671]  should_failslab+0xc2/0x120
[ 1158.241101][T16671]  __kmalloc_noprof+0xe0/0x850
[ 1158.241132][T16671]  tomoyo_encode2+0xfb/0x3c0
[ 1158.241169][T16671]  tomoyo_encode+0x29/0x50
[ 1158.241195][T16671]  tomoyo_realpath_from_path+0x18c/0x690
[ 1158.241228][T16671]  tomoyo_path_number_perm+0x23c/0x580
[ 1158.241250][T16671]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1158.241275][T16671]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1158.241317][T16671]  ? find_held_lock+0x2b/0x80
[ 1158.241331][T16671]  ? __fget_files+0x215/0x3d0
[ 1158.241351][T16671]  ? hook_file_ioctl_common+0x149/0x410
[ 1158.241368][T16671]  ? __fget_files+0x215/0x3d0
[ 1158.241393][T16671]  ? __fget_files+0x21f/0x3d0
[ 1158.241419][T16671]  security_file_ioctl+0xd3/0x230
[ 1158.241445][T16671]  __x64_sys_ioctl+0xb7/0x210
[ 1158.241466][T16671]  do_syscall_64+0x115/0x870
[ 1158.241488][T16671]  ? clear_bhb_loop+0x40/0x90
[ 1158.241510][T16671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1158.241527][T16671] RIP: 0033:0x7f22dad9ce59
[ 1158.241542][T16671] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1158.241559][T16671] RSP: 002b:00007f22dbbc1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1158.241576][T16671] RAX: ffffffffffffffda RBX: 00007f22db015fa0 RCX: 00007f22dad9ce59
[ 1158.241588][T16671] RDX: 00002000000000c0 RSI: 000000004040ae77 RDI: 0000000000000004
[ 1158.241599][T16671] RBP: 00007f22dbbc1090 R08: 0000000000000000 R09: 0000000000000000
[ 1158.241610][T16671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1158.241620][T16671] R13: 00007f22db016038 R14: 00007f22db015fa0 R15: 00007ffdbc482ec8
[ 1158.241645][T16671]  </TASK>
[ 1158.241661][T16671] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1158.565520][   T12] hsr_slave_0: left promiscuous mode
[ 1158.590740][   T12] hsr_slave_1: left promiscuous mode
[ 1158.629637][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1158.682638][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1159.056320][T16705] overlayfs: unescaped trailing colons in lowerdir mount option.
[ 1161.896323][   T29] kauditd_printk_skb: 2 callbacks suppressed
[ 1161.896340][   T29] audit: type=1400 audit(1780204085.920:578): avc:  denied  { write } for  pid=16704 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1161.984780][T16717] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2926'.
[ 1161.994080][T16717] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2926'.
[ 1162.038356][T16718] netlink: 14 bytes leftover after parsing attributes in process `syz.3.2926'.
[ 1162.958589][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 1163.015855][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 1163.138014][T16728] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1165.075855][T16718] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1165.086765][T16718] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1165.097054][T16718] bond0 (unregistering): (slave syz_tun): Releasing backup interface
[ 1165.106339][T16718] bond0 (unregistering): Released all slaves
[ 1165.470969][T16434] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1165.596623][   T29] audit: type=1400 audit(1780204089.640:579): avc:  denied  { lock } for  pid=16756 comm="syz.5.2935" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 1165.620306][ T5837] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[ 1165.921500][ T5837] usb 3-1: Using ep0 maxpacket: 16
[ 1165.959841][ T5837] usb 3-1: config 0 has an invalid interface number: 66 but max is 0
[ 1166.097687][ T5837] usb 3-1: config 0 has no interface number 0
[ 1166.132725][ T5837] usb 3-1: config 0 interface 66 has no altsetting 0
[ 1166.194173][ T5837] usb 3-1: New USB device found, idVendor=13d8, idProduct=0022, bcdDevice=eb.aa
[ 1166.203433][ T5837] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1166.221477][ T5837] usb 3-1: Product: syz
[ 1166.226388][ T5837] usb 3-1: Manufacturer: syz
[ 1166.231324][ T5837] usb 3-1: SerialNumber: syz
[ 1166.251729][ T5837] usb 3-1: config 0 descriptor??
[ 1166.300575][   T12] IPVS: stop unused estimator thread 0...
[ 1166.405724][T16434] veth0_vlan: entered promiscuous mode
[ 1166.429192][T16434] veth1_vlan: entered promiscuous mode
[ 1166.450324][ T5662] usb 6-1: new low-speed USB device number 32 using dummy_hcd
[ 1166.478143][T16744] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1166.496430][T16434] veth0_macvtap: entered promiscuous mode
[ 1166.508708][T16744] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1166.523348][T16434] veth1_macvtap: entered promiscuous mode
[ 1166.541232][T16744] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1166.553605][T16744] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1166.575262][T16434] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1166.607731][ T5837] usb 3-1: selecting invalid altsetting 3
[ 1166.614360][ T5837] comedi comedi5: could not set alternate setting 3 in high speed
[ 1166.627619][ T5837] usbduxsigma 3-1:0.66: driver 'usbduxsigma' failed to auto-configure device.
[ 1166.646870][ T5837] usbduxsigma 3-1:0.66: probe with driver usbduxsigma failed with error -22
[ 1166.651080][T16434] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1166.669155][ T5837] usb 3-1: USB disconnect, device number 56
[ 1166.699125][ T5677] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1166.743760][ T5677] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1166.785545][ T5677] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1166.801946][ T5677] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1167.927314][ T5677] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1167.968339][ T5677] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1168.048083][T16783] sg_write: data in/out 764/8 bytes for SCSI command 0xd6-- guessing data in;
[ 1168.048083][T16783]    program syz.2.2937 not setting count and/or reply_len properly
[ 1168.091437][ T5677] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1168.107767][ T5677] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1168.520320][ T5779] usb 4-1: new high-speed USB device number 62 using dummy_hcd
[ 1168.697904][ T5779] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1168.756298][ T5779] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1168.810154][ T5779] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1168.838609][ T5779] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1168.876376][ T5779] usb 4-1: config 0 descriptor??
[ 1169.407650][T16783] loop9: detected capacity change from 0 to 524287936
[ 1169.444785][T16783] Dev loop9: unable to read RDB block 8
[ 1169.455991][T16783]  loop9: unable to read partition table
[ 1169.462592][   T29] audit: type=1400 audit(1780204093.500:580): avc:  denied  { write } for  pid=16807 comm="syz.5.2944" lport=33873 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[ 1169.496700][T16783] loop_reread_partitions: partition scan of loop9 (3�����) failed (rc=-5)
[ 1169.516307][   T29] audit: type=1400 audit(1780204093.500:581): avc:  denied  { setopt } for  pid=16807 comm="syz.5.2944" lport=33873 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[ 1169.634308][T16783] Process accounting resumed
[ 1169.693321][ T5779] usb 4-1: string descriptor 0 read error: -71
[ 1169.710329][ T5779] uclogic 0003:256C:006D.001C: failed retrieving string descriptor #200: -71
[ 1169.852291][ T5779] uclogic 0003:256C:006D.001C: failed retrieving pen parameters: -71
[ 1169.860833][ T5779] uclogic 0003:256C:006D.001C: failed probing pen v2 parameters: -71
[ 1169.868936][ T5779] uclogic 0003:256C:006D.001C: failed probing parameters: -71
[ 1169.876505][ T5779] uclogic 0003:256C:006D.001C: probe with driver uclogic failed with error -71
[ 1169.889153][ T5779] usb 4-1: USB disconnect, device number 62
[ 1170.265352][T16820] sg_write: data in/out 764/8 bytes for SCSI command 0xd6-- guessing data in;
[ 1170.265352][T16820]    program syz.4.2947 not setting count and/or reply_len properly
[ 1170.412896][T16824] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2948'.
[ 1170.480323][   T29] audit: type=1400 audit(1780204094.420:582): avc:  denied  { read } for  pid=16819 comm="syz.5.2948" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1171.413140][T16820] loop9: detected capacity change from 0 to 524287936
[ 1171.681811][ T1311] ieee802154 phy1 wpan1: encryption failed: -22
[ 1171.944959][ T5669] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1171.975015][ T5669] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1171.988019][ T5669] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1172.000781][ T5669] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1172.011278][ T5669] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1172.090618][ T5662] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[ 1172.916911][T16839] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2952'.
[ 1172.925965][T16839] openvswitch: netlink: Tunnel attr 0 has unexpected len 4 expected 8
[ 1173.400288][ T5662] usb 3-1: Using ep0 maxpacket: 32
[ 1173.414787][ T5662] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[ 1173.423045][ T5662] usb 3-1: config 0 has no interface number 0
[ 1173.429165][ T5662] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1173.440178][ T5662] usb 3-1: config 0 interface 85 has no altsetting 0
[ 1173.449590][ T5662] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 1173.460764][ T5662] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1173.468767][ T5662] usb 3-1: Product: syz
[ 1173.475990][ T5662] usb 3-1: Manufacturer: syz
[ 1173.480764][ T5662] usb 3-1: SerialNumber: syz
[ 1173.509122][ T5662] usb 3-1: config 0 descriptor??
[ 1173.754973][T16827] FAULT_INJECTION: forcing a failure.
[ 1173.754973][T16827] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1173.789422][T16827] CPU: 0 UID: 0 PID: 16827 Comm: syz.2.2949 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1173.789452][T16827] Tainted: [L]=SOFTLOCKUP
[ 1173.789459][T16827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1173.789470][T16827] Call Trace:
[ 1173.789476][T16827]  <TASK>
[ 1173.789484][T16827]  dump_stack_lvl+0x100/0x190
[ 1173.789512][T16827]  should_fail_ex.cold+0x5/0xa
[ 1173.789538][T16827]  _copy_from_user+0x2e/0xd0
[ 1173.789561][T16827]  copy_msghdr_from_user+0x9f/0x4f0
[ 1173.789585][T16827]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1173.789619][T16827]  ___sys_sendmsg+0x106/0x1e0
[ 1173.789642][T16827]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1173.789690][T16827]  __sys_sendmsg+0x170/0x220
[ 1173.789716][T16827]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1173.789741][T16827]  ? vfs_write+0x464/0x1070
[ 1173.789769][T16827]  ? rcu_is_watching+0x12/0xc0
[ 1173.789799][T16827]  do_syscall_64+0x115/0x870
[ 1173.789819][T16827]  ? clear_bhb_loop+0x40/0x90
[ 1173.789840][T16827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1173.789858][T16827] RIP: 0033:0x7f89a439ce59
[ 1173.789873][T16827] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1173.789890][T16827] RSP: 002b:00007f89a52e3028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1173.789907][T16827] RAX: ffffffffffffffda RBX: 00007f89a4615fa0 RCX: 00007f89a439ce59
[ 1173.789918][T16827] RDX: 0000000000000844 RSI: 00002000000015c0 RDI: 0000000000000006
[ 1173.789928][T16827] RBP: 00007f89a52e3090 R08: 0000000000000000 R09: 0000000000000000
[ 1173.789938][T16827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1173.789954][T16827] R13: 00007f89a4616038 R14: 00007f89a4615fa0 R15: 00007ffda270f258
[ 1173.789978][T16827]  </TASK>
[ 1174.025504][ T5662] appletouch 3-1:0.85: Failed to read mode from device.
[ 1174.032647][ T5662] appletouch 3-1:0.85: probe with driver appletouch failed with error -5
[ 1174.042785][T16854] bridge_slave_0: left allmulticast mode
[ 1174.044693][ T5662] usb 3-1: USB disconnect, device number 57
[ 1174.067871][T16854] bridge_slave_0: left promiscuous mode
[ 1174.075635][T16854] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1174.084634][T11379] Bluetooth: hci0: command tx timeout
[ 1174.132787][T16854] batman_adv: batadv0: Adding interface: bridge_slave_0
[ 1174.139767][T16854] batman_adv: batadv0: The MTU of interface bridge_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1174.180362][T16854] batman_adv: batadv0: Interface activated: bridge_slave_0
[ 1174.447126][T16854] SELinux: security_context_str_to_sid (5���]�S9q#���) failed with errno=-22
[ 1174.565538][T16854] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2954'.
[ 1174.574454][T16854] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1174.671377][   T29] audit: type=1400 audit(1780204098.720:583): avc:  denied  { create } for  pid=16863 comm="syz.2.2957" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[ 1174.696762][T16864] netlink: 'syz.2.2957': attribute type 39 has an invalid length.
[ 1174.707347][   T29] audit: type=1400 audit(1780204098.740:584): avc:  denied  { write } for  pid=16863 comm="syz.2.2957" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[ 1175.464664][ T5679] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1175.518183][   T29] audit: type=1400 audit(1780204099.560:585): avc:  denied  { mount } for  pid=16880 comm="syz.0.2960" name="/" dev="autofs" ino=101143 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[ 1175.876462][T16892] audit: audit_lost=6 audit_rate_limit=0 audit_backlog_limit=64
[ 1175.884388][ T5679] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1175.896111][T16887] sg_write: data in/out 764/8 bytes for SCSI command 0xd6-- guessing data in;
[ 1175.896111][T16887]    program syz.4.2962 not setting count and/or reply_len properly
[ 1175.913003][T16892] audit: out of memory in audit_log_start
[ 1175.955215][T16893] loop9: detected capacity change from 0 to 524287936
[ 1176.162016][T11379] Bluetooth: hci0: command tx timeout
[ 1176.621658][ T5679] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1176.710122][T16881] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1176.719951][T16883] syzkaller0: entered promiscuous mode
[ 1176.727498][T16883] syzkaller0: entered allmulticast mode
[ 1176.771991][T16833] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1176.781906][T16833] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1176.789016][T16833] bridge_slave_0: entered allmulticast mode
[ 1176.796509][T16833] bridge_slave_0: entered promiscuous mode
[ 1176.875058][ T5679] netdevsim netdevsim3 netdevsim0 (unregistering): left allmulticast mode
[ 1176.884026][ T5679] netdevsim netdevsim3 netdevsim0 (unregistering): left promiscuous mode
[ 1176.893918][ T5679] bridge0: port 3(netdevsim0) entered disabled state
[ 1176.919374][ T5679] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1176.948053][T16833] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1176.956233][T16833] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1176.964798][T16833] bridge_slave_1: entered allmulticast mode
[ 1176.973361][T16833] bridge_slave_1: entered promiscuous mode
[ 1177.000303][ T5841] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[ 1177.004837][T16833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1177.031872][T16883] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2960'.
[ 1177.042041][   T29] audit: type=1400 audit(1780204101.080:586): avc:  denied  { read } for  pid=16880 comm="syz.0.2960" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[ 1177.068791][   T29] audit: type=1400 audit(1780204101.110:587): avc:  denied  { open } for  pid=16880 comm="syz.0.2960" path="/dev/autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[ 1177.132996][T16905] tipc: Resetting bearer <eth:syzkaller0>
[ 1177.146487][T16833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1177.181727][ T5841] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1177.192393][ T5841] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1177.203862][ T5841] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1177.213111][T16833] team0: Port device team_slave_0 added
[ 1177.219341][T16833] team0: Port device team_slave_1 added
[ 1177.222273][ T5841] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1177.235294][ T5841] usb 3-1: SerialNumber: syz
[ 1177.282554][T16833] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1177.289640][T16833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1177.316453][T16833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1177.345813][T16833] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1177.353138][T16833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1177.381779][T16833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1177.471288][   T29] audit: type=1400 audit(1780204101.520:588): avc:  denied  { ioctl } for  pid=16901 comm="syz.2.2965" path="socket:[101692]" dev="sockfs" ino=101692 ioctlcmd=0xaebd scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[ 1177.522779][T16833] hsr_slave_0: entered promiscuous mode
[ 1177.524637][ T5841] usb 3-1: invalid UAC_HEADER (v1)
[ 1177.566992][T16833] hsr_slave_1: entered promiscuous mode
[ 1177.635708][T16880] tipc: Resetting bearer <eth:syzkaller0>
[ 1177.704990][ T5841] snd-usb-audio 3-1:1.0: probe with driver snd-usb-audio failed with error -22
[ 1177.749495][ T5841] usb 3-1: USB disconnect, device number 58
[ 1177.767502][ T6924] udevd[6924]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1177.915176][T16880] tipc: Disabling bearer <eth:syzkaller0>
[ 1178.163357][T16920] SELinux: syz.4.2969 (16920) wrote to user. This is no longer supported.
[ 1178.240331][T11379] Bluetooth: hci0: command tx timeout
[ 1178.254824][ T5679] bridge_slave_1: left allmulticast mode
[ 1178.261323][ T5679] bridge_slave_1: left promiscuous mode
[ 1178.272170][ T5679] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1178.411575][ T5679] bridge_slave_0: left allmulticast mode
[ 1178.422125][ T5679] bridge_slave_0: left promiscuous mode
[ 1178.432636][ T5679] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1178.470316][T10520] usb 6-1: new full-speed USB device number 33 using dummy_hcd
[ 1178.501641][   T29] audit: type=1400 audit(1780204102.540:589): avc:  denied  { write } for  pid=16917 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1178.609085][   T29] audit: type=1400 audit(1780204102.650:590): avc:  denied  { write } for  pid=16937 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1178.671811][T10520] usb 6-1: config 0 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[ 1178.700256][T10520] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1178.707193][T10520] usb 6-1: New USB device found, idVendor=28de, idProduct=1205, bcdDevice= 0.00
[ 1178.724784][T10520] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1178.758830][T10520] usb 6-1: config 0 descriptor??
[ 1178.776661][T16922] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1179.068977][T16942] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2972'.
[ 1179.424392][T16948] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2972'.
[ 1179.830171][ T5277] 8021q: adding VLAN 0 to HW filter on device eth5
[ 1180.081857][T10520] hid_parser_main: 439 callbacks suppressed
[ 1180.081900][T10520] hid-steam 0003:28DE:1205.001D: unknown main item tag 0x3
[ 1180.109932][T10520] hid-steam 0003:28DE:1205.001D: unknown main item tag 0x0
[ 1180.117302][T10520] hid-steam 0003:28DE:1205.001D: unknown main item tag 0x0
[ 1180.124563][T10520] hid-steam 0003:28DE:1205.001D: unknown main item tag 0x0
[ 1180.322489][T11379] Bluetooth: hci0: command tx timeout
[ 1180.533140][T10520] hid-steam 0003:28DE:1205.001D: unknown main item tag 0x0
[ 1180.548996][T10520] hid-steam 0003:28DE:1205.001D: unknown main item tag 0x0
[ 1180.559399][T10520] hid-steam 0003:28DE:1205.001D: unknown main item tag 0x0
[ 1180.566659][T10520] hid-steam 0003:28DE:1205.001D: unknown main item tag 0x0
[ 1180.574724][T10520] hid-steam 0003:28DE:1205.001D: : USB HID v0.04 Device [HID 28de:1205] on usb-dummy_hcd.5-1/input0
[ 1180.939261][T10520] hid-steam 0003:28DE:1205.001D: Steam Controller 'XXXXXXXXXX' connected
[ 1181.638154][T10520] input: Steam Deck as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:28DE:1205.001D/input/input57
[ 1181.681856][T16969] openvswitch: netlink: Message has 628 unknown bytes.
[ 1181.714299][T10520] input: Steam Deck Motion Sensors as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:28DE:1205.001D/input/input58
[ 1181.761839][T16971] FAULT_INJECTION: forcing a failure.
[ 1181.761839][T16971] name failslab, interval 1, probability 0, space 0, times 0
[ 1181.782272][T16971] CPU: 0 UID: 0 PID: 16971 Comm: syz.4.2978 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1181.782300][T16971] Tainted: [L]=SOFTLOCKUP
[ 1181.782306][T16971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1181.782316][T16971] Call Trace:
[ 1181.782323][T16971]  <TASK>
[ 1181.782331][T16971]  dump_stack_lvl+0x100/0x190
[ 1181.782357][T16971]  should_fail_ex.cold+0x5/0xa
[ 1181.782382][T16971]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1181.782410][T16971]  should_failslab+0xc2/0x120
[ 1181.782431][T16971]  __kmalloc_noprof+0xe0/0x850
[ 1181.782456][T16971]  ? kfree+0x1dd/0x6c0
[ 1181.782484][T16971]  tomoyo_realpath_from_path+0xb6/0x690
[ 1181.782517][T16971]  tomoyo_path_number_perm+0x23c/0x580
[ 1181.782540][T16971]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1181.782566][T16971]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1181.782615][T16971]  ? find_held_lock+0x2b/0x80
[ 1181.782632][T16971]  ? __fget_files+0x215/0x3d0
[ 1181.782653][T16971]  ? hook_file_ioctl_common+0x149/0x410
[ 1181.782671][T16971]  ? __fget_files+0x215/0x3d0
[ 1181.782698][T16971]  ? __fget_files+0x21f/0x3d0
[ 1181.782724][T16971]  security_file_ioctl+0xd3/0x230
[ 1181.782752][T16971]  __x64_sys_ioctl+0xb7/0x210
[ 1181.782773][T16971]  do_syscall_64+0x115/0x870
[ 1181.782796][T16971]  ? clear_bhb_loop+0x40/0x90
[ 1181.782822][T16971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1181.782840][T16971] RIP: 0033:0x7f6c6cb9ce59
[ 1181.782855][T16971] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1181.782873][T16971] RSP: 002b:00007f6c6db2e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1181.782891][T16971] RAX: ffffffffffffffda RBX: 00007f6c6ce15fa0 RCX: 00007f6c6cb9ce59
[ 1181.782901][T16971] RDX: 0000200000000040 RSI: 00000000c008561c RDI: 0000000000000003
[ 1181.782912][T16971] RBP: 00007f6c6db2e090 R08: 0000000000000000 R09: 0000000000000000
[ 1181.782923][T16971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1181.782933][T16971] R13: 00007f6c6ce16038 R14: 00007f6c6ce15fa0 R15: 00007ffeb757a8c8
[ 1181.782958][T16971]  </TASK>
[ 1181.782974][T16971] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1182.109605][T10520] hid-steam 0003:28DE:1205.001E: unknown main item tag 0x3
[ 1182.128646][T10520] hid-steam 0003:28DE:1205.001E: unknown main item tag 0x0
[ 1182.158931][T10520] hid-steam 0003:28DE:1205.001E: hidraw0: USB HID v0.04 Device [HID 28de:1205] on usb-dummy_hcd.5-1/input0
[ 1182.175316][T10520] usb 6-1: USB disconnect, device number 33
[ 1182.429456][T10520] hid-steam 0003:28DE:1205.001D: Steam Controller 'XXXXXXXXXX' disconnected
[ 1182.451347][ T5679] hsr_slave_0: left promiscuous mode
[ 1182.465998][T16974] fido_id[16974]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/6-1/report_descriptor': No such file or directory
[ 1182.506428][   T29] kauditd_printk_skb: 1 callbacks suppressed
[ 1182.506442][   T29] audit: type=1400 audit(1780204106.550:592): avc:  denied  { connect } for  pid=16983 comm="syz.2.2981" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1182.535140][ T5679] hsr_slave_1: left promiscuous mode
[ 1182.549697][ T5679] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1182.556881][   T29] audit: type=1400 audit(1780204106.560:593): avc:  denied  { write } for  pid=16952 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1182.604137][   T29] audit: type=1400 audit(1780204106.650:594): avc:  denied  { map } for  pid=16983 comm="syz.2.2981" path="socket:[101921]" dev="sockfs" ino=101921 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1182.609645][ T5679] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1182.639110][   T29] audit: type=1400 audit(1780204106.650:595): avc:  denied  { accept } for  pid=16983 comm="syz.2.2981" path="socket:[101921]" dev="sockfs" ino=101921 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1182.707156][ T5679] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1182.724633][ T5679] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1182.746355][   T29] audit: type=1400 audit(1780204106.790:596): avc:  denied  { write } for  pid=16992 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1182.800683][ T5679] veth1_macvtap: left promiscuous mode
[ 1182.813040][ T5679] veth0_macvtap: left promiscuous mode
[ 1182.826034][ T5679] veth1_vlan: left promiscuous mode
[ 1182.826459][   T29] audit: type=1400 audit(1780204106.840:597): avc:  denied  { watch watch_reads } for  pid=16983 comm="syz.2.2981" path="pipe:[94403]" dev="pipefs" ino=94403 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[ 1182.855523][ T5679] veth0_vlan: left promiscuous mode
[ 1183.013718][T16999] FAULT_INJECTION: forcing a failure.
[ 1183.013718][T16999] name failslab, interval 1, probability 0, space 0, times 0
[ 1183.030485][T16999] CPU: 0 UID: 0 PID: 16999 Comm: syz.5.2983 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1183.030513][T16999] Tainted: [L]=SOFTLOCKUP
[ 1183.030520][T16999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1183.030530][T16999] Call Trace:
[ 1183.030537][T16999]  <TASK>
[ 1183.030544][T16999]  dump_stack_lvl+0x100/0x190
[ 1183.030566][T16999]  should_fail_ex.cold+0x5/0xa
[ 1183.030585][T16999]  should_failslab+0xc2/0x120
[ 1183.030601][T16999]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1183.030620][T16999]  ? alloc_pipe_info+0x10e/0x590
[ 1183.030642][T16999]  alloc_pipe_info+0x10e/0x590
[ 1183.030661][T16999]  splice_direct_to_actor+0x78f/0xa30
[ 1183.030681][T16999]  ? __lock_acquire+0x4a5/0x2630
[ 1183.030697][T16999]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1183.030719][T16999]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1183.030743][T16999]  do_splice_direct+0x174/0x240
[ 1183.030762][T16999]  ? __pfx_do_splice_direct+0x10/0x10
[ 1183.030779][T16999]  ? avc_policy_seqno+0x9/0x20
[ 1183.030795][T16999]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1183.030821][T16999]  ? rw_verify_area+0xce/0x6d0
[ 1183.030836][T16999]  do_sendfile+0xadc/0xe20
[ 1183.030853][T16999]  ? __pfx_do_sendfile+0x10/0x10
[ 1183.030867][T16999]  ? __fget_files+0x21f/0x3d0
[ 1183.030890][T16999]  __x64_sys_sendfile64+0x1d8/0x220
[ 1183.030910][T16999]  ? ksys_write+0x1ac/0x250
[ 1183.030924][T16999]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1183.030945][T16999]  ? rcu_is_watching+0x12/0xc0
[ 1183.030968][T16999]  do_syscall_64+0x115/0x870
[ 1183.030985][T16999]  ? clear_bhb_loop+0x40/0x90
[ 1183.031002][T16999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1183.031016][T16999] RIP: 0033:0x7f22dad9ce59
[ 1183.031029][T16999] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1183.031043][T16999] RSP: 002b:00007f22dbba0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1183.031057][T16999] RAX: ffffffffffffffda RBX: 00007f22db016090 RCX: 00007f22dad9ce59
[ 1183.031067][T16999] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 1183.031075][T16999] RBP: 00007f22dbba0090 R08: 0000000000000000 R09: 0000000000000000
[ 1183.031084][T16999] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000000001
[ 1183.031092][T16999] R13: 00007f22db016128 R14: 00007f22db016090 R15: 00007ffdbc482ec8
[ 1183.031111][T16999]  </TASK>
[ 1183.880455][T17006] sg_write: data in/out 764/8 bytes for SCSI command 0xd6-- guessing data in;
[ 1183.880455][T17006]    program syz.4.2985 not setting count and/or reply_len properly
[ 1183.917508][T17006] loop9: detected capacity change from 0 to 524287936
[ 1184.059214][ T5679] team0 (unregistering): Port device team_slave_1 removed
[ 1184.105151][ T5679] team0 (unregistering): Port device team_slave_0 removed
[ 1184.462536][ T5277] 8021q: adding VLAN 0 to HW filter on device eth6
[ 1184.651069][T14075] usb 5-1: new high-speed USB device number 59 using dummy_hcd
[ 1184.820253][T14075] usb 5-1: Using ep0 maxpacket: 32
[ 1184.829287][T14075] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[ 1184.845623][T14075] usb 5-1: config 0 has no interface number 0
[ 1184.868861][T14075] usb 5-1: config 0 interface 12 has no altsetting 0
[ 1184.888475][T14075] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[ 1184.905598][T14075] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1184.922343][T14075] usb 5-1: Product: syz
[ 1184.930251][T14075] usb 5-1: Manufacturer: syz
[ 1184.944208][T14075] usb 5-1: SerialNumber: syz
[ 1184.961585][T14075] usb 5-1: config 0 descriptor??
[ 1184.999331][ T5679] IPVS: stop unused estimator thread 0...
[ 1185.024294][ T5837] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[ 1185.051302][   T29] audit: type=1400 audit(1780204109.100:598): avc:  denied  { write } for  pid=17025 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1185.195014][ T5837] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1185.232139][ T5837] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1185.250912][   T29] audit: type=1400 audit(1780204109.290:599): avc:  denied  { write } for  pid=17041 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1185.273798][ T5837] usb 6-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1185.286734][ T5837] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1185.312150][ T5837] usb 6-1: config 0 descriptor??
[ 1185.380514][T17047] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1185.570236][   T35] Bluetooth: hci2: Frame reassembly failed (-84)
[ 1185.594528][T16833] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1185.635263][T16833] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1185.656470][T16833] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1185.681745][T16833] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1185.699621][T16833] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1185.734065][T16833] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1185.762024][T16833] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1185.789581][T16833] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1185.868809][T14075] f81534 5-1:0.12: f81534_set_register: reg: 1002 data: 3 failed: -71
[ 1185.894794][T14075] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[ 1185.919174][T14075] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[ 1185.923363][T16833] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1185.947176][T14075] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[ 1185.948809][T16833] 8021q: adding VLAN 0 to HW filter on device team0
[ 1185.980330][T14075] usb 5-1: USB disconnect, device number 59
[ 1185.987832][ T6082] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1185.995009][ T6082] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1186.042353][ T6082] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1186.049497][ T6082] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1186.147075][ T5837] usb 6-1: string descriptor 0 read error: -71
[ 1186.164558][ T5837] uclogic 0003:256C:006D.001F: failed retrieving string descriptor #200: -71
[ 1186.175735][ T5837] uclogic 0003:256C:006D.001F: failed retrieving pen parameters: -71
[ 1186.184375][ T5837] uclogic 0003:256C:006D.001F: failed probing pen v2 parameters: -71
[ 1186.204863][ T5837] uclogic 0003:256C:006D.001F: failed probing parameters: -71
[ 1186.212672][   T29] audit: type=1400 audit(1780204110.250:600): avc:  denied  { write } for  pid=17054 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1186.250400][ T5837] uclogic 0003:256C:006D.001F: probe with driver uclogic failed with error -71
[ 1186.264216][ T5837] usb 6-1: USB disconnect, device number 34
[ 1186.336039][   T29] audit: type=1400 audit(1780204110.380:601): avc:  denied  { write } for  pid=17076 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1186.788151][T16833] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1186.899291][T16833] veth0_vlan: entered promiscuous mode
[ 1186.936493][T16833] veth1_vlan: entered promiscuous mode
[ 1186.999001][T16833] veth0_macvtap: entered promiscuous mode
[ 1187.050293][T16833] veth1_macvtap: entered promiscuous mode
[ 1187.208902][T16833] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1187.236183][T16833] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1187.260146][ T5679] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1187.276857][ T5679] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1187.313512][ T5679] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1187.347156][ T5679] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1187.588270][ T5809] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1187.600432][T11379] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1187.632279][ T5809] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1187.749362][ T6082] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1187.795695][ T6082] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1187.813021][   T29] kauditd_printk_skb: 2 callbacks suppressed
[ 1187.813034][   T29] audit: type=1400 audit(1780204111.850:604): avc:  denied  { write } for  pid=17110 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1188.103012][   T29] audit: type=1400 audit(1780204112.150:605): avc:  denied  { write } for  pid=17134 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1188.257906][T17143] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2951'.
[ 1188.277265][T17143] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2951'.
[ 1189.237014][   T29] audit: type=1400 audit(1780204113.280:606): avc:  denied  { ioctl } for  pid=17147 comm="syz.5.3005" path="socket:[104508]" dev="sockfs" ino=104508 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[ 1189.980275][T14067] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[ 1189.987959][T14075] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[ 1190.121886][T17164] SELinux: syz.2.3008 (17164) wrote to checkreqprot. This is no longer supported.
[ 1190.145318][T17164] input: syz1 as /devices/virtual/input/input59
[ 1190.152644][T14075] usb 6-1: Using ep0 maxpacket: 8
[ 1190.164480][T14067] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1190.178645][T14075] usb 6-1: unable to get BOS descriptor set
[ 1190.190766][T14067] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1190.203950][T14075] usb 6-1: config 0 has no interfaces?
[ 1190.221611][T14075] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1190.230822][T14067] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1190.244935][T14075] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1190.256091][T14067] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1190.266759][   T29] audit: type=1326 audit(1780204114.310:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17163 comm="syz.2.3008" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f89a439ce59 code=0x0
[ 1190.295333][T14075] usb 6-1: Product: syz
[ 1190.300942][T14075] usb 6-1: Manufacturer: syz
[ 1190.306183][T14075] usb 6-1: SerialNumber: syz
[ 1190.311411][T14067] usb 5-1: config 0 descriptor??
[ 1190.326407][T14075] usb 6-1: config 0 descriptor??
[ 1190.562769][ T5662] usb 6-1: USB disconnect, device number 35
[ 1192.018306][    C1] raw-gadget.0 gadget.4: ignoring, device is not running
[ 1192.026045][T14067] usb 5-1: string descriptor 0 read error: -71
[ 1192.032750][T14067] uclogic 0003:256C:006D.0020: failed retrieving string descriptor #200: -71
[ 1192.595011][T14067] uclogic 0003:256C:006D.0020: failed retrieving pen parameters: -71
[ 1192.603787][T14067] uclogic 0003:256C:006D.0020: failed probing pen v2 parameters: -71
[ 1192.612140][T14067] uclogic 0003:256C:006D.0020: failed probing parameters: -71
[ 1192.621097][T14067] uclogic 0003:256C:006D.0020: probe with driver uclogic failed with error -71
[ 1192.633674][T14067] usb 5-1: USB disconnect, device number 60
[ 1192.876707][   T29] audit: type=1400 audit(1780204116.920:608): avc:  denied  { lock } for  pid=17187 comm="syz.4.3015" path="socket:[104748]" dev="sockfs" ino=104748 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[ 1192.927309][   T29] audit: type=1326 audit(1780204116.960:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.5.3014" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1192.974333][   T29] audit: type=1326 audit(1780204117.000:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.5.3014" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1193.073731][   T29] audit: type=1326 audit(1780204117.000:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.5.3014" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1193.102246][   T29] audit: type=1326 audit(1780204117.000:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.5.3014" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1193.129081][   T29] audit: type=1326 audit(1780204117.000:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.5.3014" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1193.161353][ T5765] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[ 1193.172632][   T29] audit: type=1326 audit(1780204117.000:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.5.3014" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1193.219689][   T29] audit: type=1326 audit(1780204117.000:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.5.3014" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1193.249246][   T29] audit: type=1326 audit(1780204117.000:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.5.3014" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1193.279780][   T29] audit: type=1326 audit(1780204117.000:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17191 comm="syz.5.3014" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1193.320339][ T5765] usb 5-1: Using ep0 maxpacket: 32
[ 1193.331726][ T5765] usb 5-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[ 1193.341014][ T5765] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1193.349856][ T5765] usb 5-1: Product: syz
[ 1193.357206][ T5765] usb 5-1: Manufacturer: syz
[ 1193.362349][ T5765] usb 5-1: SerialNumber: syz
[ 1193.381276][ T5765] usb 5-1: config 0 descriptor??
[ 1193.649828][ T5765] RobotFuzz Open Source InterFace, OSIF 5-1:0.0: version d4.15 found at bus 005 address 061
[ 1193.843366][T17189] FAULT_INJECTION: forcing a failure.
[ 1193.843366][T17189] name failslab, interval 1, probability 0, space 0, times 0
[ 1193.882715][T17189] CPU: 0 UID: 0 PID: 17189 Comm: syz.4.3015 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1193.882744][T17189] Tainted: [L]=SOFTLOCKUP
[ 1193.882750][T17189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1193.882761][T17189] Call Trace:
[ 1193.882767][T17189]  <TASK>
[ 1193.882774][T17189]  dump_stack_lvl+0x100/0x190
[ 1193.882800][T17189]  should_fail_ex.cold+0x5/0xa
[ 1193.882825][T17189]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1193.882852][T17189]  should_failslab+0xc2/0x120
[ 1193.882874][T17189]  __kmalloc_noprof+0xe0/0x850
[ 1193.882900][T17189]  ? kfree+0x1dd/0x6c0
[ 1193.882933][T17189]  tomoyo_realpath_from_path+0xb6/0x690
[ 1193.882966][T17189]  tomoyo_path_number_perm+0x23c/0x580
[ 1193.882989][T17189]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1193.883015][T17189]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1193.883064][T17189]  ? find_held_lock+0x2b/0x80
[ 1193.883081][T17189]  ? __fget_files+0x215/0x3d0
[ 1193.883103][T17189]  ? hook_file_ioctl_common+0x149/0x410
[ 1193.883122][T17189]  ? __fget_files+0x215/0x3d0
[ 1193.883149][T17189]  ? __fget_files+0x21f/0x3d0
[ 1193.883175][T17189]  security_file_ioctl+0xd3/0x230
[ 1193.883201][T17189]  __x64_sys_ioctl+0xb7/0x210
[ 1193.883222][T17189]  do_syscall_64+0x115/0x870
[ 1193.883245][T17189]  ? clear_bhb_loop+0x40/0x90
[ 1193.883271][T17189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1193.883290][T17189] RIP: 0033:0x7f6c6cb9ce59
[ 1193.883306][T17189] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1193.883322][T17189] RSP: 002b:00007f6c6db2e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1193.883339][T17189] RAX: ffffffffffffffda RBX: 00007f6c6ce15fa0 RCX: 00007f6c6cb9ce59
[ 1193.883351][T17189] RDX: 0000200000000280 RSI: 0000000000000720 RDI: 0000000000000008
[ 1193.883361][T17189] RBP: 00007f6c6db2e090 R08: 0000000000000000 R09: 0000000000000000
[ 1193.883372][T17189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1193.883382][T17189] R13: 00007f6c6ce16038 R14: 00007f6c6ce15fa0 R15: 00007ffeb757a8c8
[ 1193.883408][T17189]  </TASK>
[ 1193.883423][T17189] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1194.196622][T17224] sg_write: data in/out 764/8 bytes for SCSI command 0xd6-- guessing data in;
[ 1194.196622][T17224]    program syz.3.3022 not setting count and/or reply_len properly
[ 1194.217010][T17226] bridge_slave_0: left allmulticast mode
[ 1194.223757][T17224] loop9: detected capacity change from 0 to 524287936
[ 1194.228303][T17226] bridge_slave_0: left promiscuous mode
[ 1194.237105][T17226] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1194.299035][T17226] batman_adv: batadv0: Adding interface: bridge_slave_0
[ 1194.309101][T17226] batman_adv: batadv0: The MTU of interface bridge_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1194.336463][T17226] batman_adv: batadv0: Interface activated: bridge_slave_0
[ 1194.736146][T17224] Process accounting resumed
[ 1194.784748][T17232] loop7: detected capacity change from 0 to 7
[ 1194.875924][T17232] Dev loop7: unable to read RDB block 7
[ 1194.881754][T17232]  loop7: unable to read partition table
[ 1194.888052][T17232] loop7: partition table beyond EOD, truncated
[ 1194.894667][T17232] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[ 1195.222030][T17226] SELinux: security_context_str_to_sid (5���]�S9q#���) failed with errno=-22
[ 1195.245373][T17226] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3023'.
[ 1195.259401][T17226] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1195.362497][T14075] usb 4-1: new high-speed USB device number 63 using dummy_hcd
[ 1195.527233][T14075] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1195.557161][T14075] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1195.591698][T14075] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1195.612256][T14075] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1195.635479][T14075] usb 4-1: config 0 descriptor??
[ 1196.187409][T17189] i2c i2c-1: failure writing data
[ 1196.245934][ T5765] usb 5-1: USB disconnect, device number 61
[ 1196.507846][T14075] usb 4-1: string descriptor 0 read error: -71
[ 1196.517236][T14075] uclogic 0003:256C:006D.0021: failed retrieving string descriptor #200: -71
[ 1196.570532][T14075] uclogic 0003:256C:006D.0021: failed retrieving pen parameters: -71
[ 1196.608686][T14075] uclogic 0003:256C:006D.0021: failed probing pen v2 parameters: -71
[ 1196.643017][T14075] uclogic 0003:256C:006D.0021: failed probing parameters: -71
[ 1196.677726][T14075] uclogic 0003:256C:006D.0021: probe with driver uclogic failed with error -71
[ 1196.731422][T14075] usb 4-1: USB disconnect, device number 63
[ 1198.061444][T17278] sg_write: data in/out 764/8 bytes for SCSI command 0xd6-- guessing data in;
[ 1198.061444][T17278]    program syz.5.3037 not setting count and/or reply_len properly
[ 1198.200430][ T5841] usb 4-1: new full-speed USB device number 64 using dummy_hcd
[ 1198.659303][T17280] loop9: detected capacity change from 0 to 524287936
[ 1198.741365][T17284] netlink: 'syz.3.3038': attribute type 10 has an invalid length.
[ 1198.867339][T17284] syz_tun: entered promiscuous mode
[ 1198.902457][T17284] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[ 1199.122603][ T5841] usb 4-1: unable to read config index 0 descriptor/start: -71
[ 1199.164558][ T5841] usb 4-1: can't read configurations, error -71
[ 1199.590136][T17275] Process accounting resumed
[ 1199.891470][T17313] sg_write: data in/out 764/8 bytes for SCSI command 0xd6-- guessing data in;
[ 1199.891470][T17313]    program syz.2.3048 not setting count and/or reply_len properly
[ 1199.900280][ T5837] usb 6-1: new full-speed USB device number 36 using dummy_hcd
[ 1199.930120][ T5780] usb 5-1: new full-speed USB device number 62 using dummy_hcd
[ 1200.013489][T17313] loop9: detected capacity change from 0 to 524287936
[ 1200.102504][ T5837] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1200.138351][ T5837] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 1200.170212][T17305] netlink: 'syz.4.3046': attribute type 10 has an invalid length.
[ 1200.187823][ T5837] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[ 1200.227662][ T5837] usb 6-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[ 1200.246180][ T5837] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1200.272868][ T5837] usb 6-1: Product: syz
[ 1200.286577][ T5837] usb 6-1: Manufacturer: syz
[ 1200.300135][ T5837] usb 6-1: SerialNumber: syz
[ 1200.333026][ T5837] usb 6-1: config 0 descriptor??
[ 1200.359252][T17303] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1200.501108][ T5837] rc_core: IR keymap rc-streamzap not found
[ 1200.528639][ T5837] Registered IR keymap rc-empty
[ 1200.558778][ T5837] rc rc0: Streamzap PC Remote Infrared Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0
[ 1200.612775][ T5837] input: Streamzap PC Remote Infrared Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input60
[ 1200.692433][ T5837] usb 6-1: USB disconnect, device number 36
[ 1200.845755][T17308] Process accounting resumed
[ 1200.909860][T17305] syz_tun: entered promiscuous mode
[ 1200.948515][T17305] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[ 1200.962632][T17322] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3049'.
[ 1200.978456][ T5780] usb 5-1: unable to read config index 0 descriptor/start: -71
[ 1200.993038][ T5780] usb 5-1: can't read configurations, error -71
[ 1201.219153][T17328] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1201.253429][T17328] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[ 1201.263801][T17328] overlayfs: failed to look up (tracing) for ino (-66)
[ 1201.286174][T17328] bridge1: port 1(dummy0) entered blocking state
[ 1201.292610][T17328] bridge1: port 1(dummy0) entered disabled state
[ 1201.299041][T17328] dummy0: entered allmulticast mode
[ 1201.305879][T17328] dummy0: entered promiscuous mode
[ 1201.319437][T17328] netlink: 'syz.2.3049': attribute type 10 has an invalid length.
[ 1201.327271][T17328] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3049'.
[ 1201.338650][T17328] bridge1: port 1(dummy0) entered blocking state
[ 1201.346541][T17328] bridge1: port 1(dummy0) entered forwarding state
[ 1201.355040][T17328] dummy0: left allmulticast mode
[ 1201.360867][T17328] bridge1: port 1(dummy0) entered disabled state
[ 1201.383289][   T29] kauditd_printk_skb: 231 callbacks suppressed
[ 1201.383303][   T29] audit: type=1400 audit(1780204125.260:849): avc:  denied  { mount } for  pid=17321 comm="syz.2.3049" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[ 1201.439338][T17329] netlink: 'syz.5.3051': attribute type 1 has an invalid length.
[ 1201.457418][T17329] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3051'.
[ 1201.485342][T17329] netlink: 1 bytes leftover after parsing attributes in process `syz.5.3051'.
[ 1201.501697][T17332] loop7: detected capacity change from 0 to 7
[ 1201.535588][T17329] netlink: 'syz.5.3051': attribute type 1 has an invalid length.
[ 1201.586111][T17329] netlink: 'syz.5.3051': attribute type 8 has an invalid length.
[ 1201.639685][T17332] Dev loop7: unable to read RDB block 7
[ 1201.654133][T17329] netlink: 606 bytes leftover after parsing attributes in process `syz.5.3051'.
[ 1201.674698][T17332]  loop7: unable to read partition table
[ 1201.694346][T17332] loop7: partition table beyond EOD, truncated
[ 1201.724908][T17332] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[ 1202.039812][   T29] audit: type=1326 audit(1780204126.080:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17339 comm="syz.5.3056" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1202.088475][   T29] audit: type=1326 audit(1780204126.080:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17339 comm="syz.5.3056" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1202.164681][   T29] audit: type=1326 audit(1780204126.110:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17339 comm="syz.5.3056" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1202.197236][T17346] FAULT_INJECTION: forcing a failure.
[ 1202.197236][T17346] name failslab, interval 1, probability 0, space 0, times 0
[ 1202.210901][T17346] CPU: 0 UID: 0 PID: 17346 Comm: syz.5.3057 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1202.210929][T17346] Tainted: [L]=SOFTLOCKUP
[ 1202.210934][T17346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1202.210945][T17346] Call Trace:
[ 1202.210951][T17346]  <TASK>
[ 1202.210958][T17346]  dump_stack_lvl+0x100/0x190
[ 1202.210982][T17346]  should_fail_ex.cold+0x5/0xa
[ 1202.211006][T17346]  should_failslab+0xc2/0x120
[ 1202.211027][T17346]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[ 1202.211054][T17346]  ? __alloc_skb+0x140/0x710
[ 1202.211076][T17346]  ? __alloc_skb+0x5b7/0x710
[ 1202.211104][T17346]  __alloc_skb+0x140/0x710
[ 1202.211127][T17346]  ? __alloc_skb+0x5b7/0x710
[ 1202.211151][T17346]  ? __pfx___alloc_skb+0x10/0x10
[ 1202.211174][T17346]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[ 1202.211207][T17346]  netlink_alloc_large_skb+0x69/0x150
[ 1202.211232][T17346]  netlink_sendmsg+0x680/0xda0
[ 1202.211259][T17346]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1202.211279][T17346]  ? __might_fault+0x60/0x140
[ 1202.211314][T17346]  ____sys_sendmsg+0x9e1/0xb70
[ 1202.211334][T17346]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1202.211358][T17346]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1202.211390][T17346]  ___sys_sendmsg+0x190/0x1e0
[ 1202.211414][T17346]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1202.211469][T17346]  __sys_sendmsg+0x170/0x220
[ 1202.211496][T17346]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1202.211532][T17346]  ? rcu_is_watching+0x12/0xc0
[ 1202.211562][T17346]  do_syscall_64+0x115/0x870
[ 1202.211582][T17346]  ? clear_bhb_loop+0x40/0x90
[ 1202.211605][T17346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1202.211623][T17346] RIP: 0033:0x7f22dad9ce59
[ 1202.211639][T17346] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1202.211656][T17346] RSP: 002b:00007f22dbbc1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1202.211673][T17346] RAX: ffffffffffffffda RBX: 00007f22db015fa0 RCX: 00007f22dad9ce59
[ 1202.211685][T17346] RDX: 0000000024000000 RSI: 0000200000000040 RDI: 0000000000000003
[ 1202.211696][T17346] RBP: 00007f22dbbc1090 R08: 0000000000000000 R09: 0000000000000000
[ 1202.211706][T17346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1202.211717][T17346] R13: 00007f22db016038 R14: 00007f22db015fa0 R15: 00007ffdbc482ec8
[ 1202.211741][T17346]  </TASK>
[ 1202.219803][   T29] audit: type=1326 audit(1780204126.110:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17339 comm="syz.5.3056" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1202.670277][   T29] audit: type=1326 audit(1780204126.110:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17339 comm="syz.5.3056" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1202.823463][   T29] audit: type=1326 audit(1780204126.120:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17339 comm="syz.5.3056" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1202.942353][   T29] audit: type=1326 audit(1780204126.120:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17339 comm="syz.5.3056" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1202.999554][   T29] audit: type=1326 audit(1780204126.120:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17339 comm="syz.5.3056" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1203.056566][T17355] FAULT_INJECTION: forcing a failure.
[ 1203.056566][T17355] name failslab, interval 1, probability 0, space 0, times 0
[ 1203.085383][   T29] audit: type=1326 audit(1780204126.120:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17339 comm="syz.5.3056" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=301 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1203.120571][T17355] CPU: 0 UID: 0 PID: 17355 Comm: syz.5.3059 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1203.120589][T17355] Tainted: [L]=SOFTLOCKUP
[ 1203.120593][T17355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1203.120600][T17355] Call Trace:
[ 1203.120604][T17355]  <TASK>
[ 1203.120609][T17355]  dump_stack_lvl+0x100/0x190
[ 1203.120625][T17355]  should_fail_ex.cold+0x5/0xa
[ 1203.120641][T17355]  ? tomoyo_encode2+0xfb/0x3c0
[ 1203.120657][T17355]  should_failslab+0xc2/0x120
[ 1203.120670][T17355]  __kmalloc_noprof+0xe0/0x850
[ 1203.120689][T17355]  tomoyo_encode2+0xfb/0x3c0
[ 1203.120707][T17355]  tomoyo_encode+0x29/0x50
[ 1203.120723][T17355]  tomoyo_realpath_from_path+0x18c/0x690
[ 1203.120743][T17355]  tomoyo_path_number_perm+0x23c/0x580
[ 1203.120757][T17355]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1203.120772][T17355]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1203.120801][T17355]  ? find_held_lock+0x2b/0x80
[ 1203.120813][T17355]  ? __fget_files+0x215/0x3d0
[ 1203.120826][T17355]  ? hook_file_ioctl_common+0x149/0x410
[ 1203.120837][T17355]  ? __fget_files+0x215/0x3d0
[ 1203.120852][T17355]  ? __fget_files+0x21f/0x3d0
[ 1203.120867][T17355]  security_file_ioctl+0xd3/0x230
[ 1203.120884][T17355]  __x64_sys_ioctl+0xb7/0x210
[ 1203.120897][T17355]  do_syscall_64+0x115/0x870
[ 1203.120911][T17355]  ? clear_bhb_loop+0x40/0x90
[ 1203.120924][T17355]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1203.120935][T17355] RIP: 0033:0x7f22dad9ce59
[ 1203.120945][T17355] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1203.120955][T17355] RSP: 002b:00007f22dbbc1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1203.120966][T17355] RAX: ffffffffffffffda RBX: 00007f22db015fa0 RCX: 00007f22dad9ce59
[ 1203.120973][T17355] RDX: 0000200000000080 RSI: 0000000040a0ae49 RDI: 0000000000000004
[ 1203.120979][T17355] RBP: 00007f22dbbc1090 R08: 0000000000000000 R09: 0000000000000000
[ 1203.120985][T17355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1203.120992][T17355] R13: 00007f22db016038 R14: 00007f22db015fa0 R15: 00007ffdbc482ec8
[ 1203.121005][T17355]  </TASK>
[ 1203.121016][T17355] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1203.613508][T17363] FAULT_INJECTION: forcing a failure.
[ 1203.613508][T17363] name failslab, interval 1, probability 0, space 0, times 0
[ 1203.626230][T17363] CPU: 1 UID: 0 PID: 17363 Comm: syz.4.3062 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1203.626256][T17363] Tainted: [L]=SOFTLOCKUP
[ 1203.626262][T17363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1203.626269][T17363] Call Trace:
[ 1203.626274][T17363]  <TASK>
[ 1203.626278][T17363]  dump_stack_lvl+0x100/0x190
[ 1203.626295][T17363]  should_fail_ex.cold+0x5/0xa
[ 1203.626310][T17363]  ? tomoyo_encode2+0xfb/0x3c0
[ 1203.626326][T17363]  should_failslab+0xc2/0x120
[ 1203.626338][T17363]  __kmalloc_noprof+0xe0/0x850
[ 1203.626357][T17363]  tomoyo_encode2+0xfb/0x3c0
[ 1203.626375][T17363]  tomoyo_encode+0x29/0x50
[ 1203.626391][T17363]  tomoyo_realpath_from_path+0x18c/0x690
[ 1203.626411][T17363]  tomoyo_path_number_perm+0x23c/0x580
[ 1203.626425][T17363]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1203.626440][T17363]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1203.626468][T17363]  ? find_held_lock+0x2b/0x80
[ 1203.626478][T17363]  ? __fget_files+0x215/0x3d0
[ 1203.626491][T17363]  ? hook_file_ioctl_common+0x149/0x410
[ 1203.626501][T17363]  ? __fget_files+0x215/0x3d0
[ 1203.626517][T17363]  ? __fget_files+0x21f/0x3d0
[ 1203.626532][T17363]  security_file_ioctl+0xd3/0x230
[ 1203.626550][T17363]  __x64_sys_ioctl+0xb7/0x210
[ 1203.626563][T17363]  do_syscall_64+0x115/0x870
[ 1203.626576][T17363]  ? clear_bhb_loop+0x40/0x90
[ 1203.626589][T17363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1203.626600][T17363] RIP: 0033:0x7f6c6cb9ce59
[ 1203.626610][T17363] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1203.626620][T17363] RSP: 002b:00007f6c6db2e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1203.626631][T17363] RAX: ffffffffffffffda RBX: 00007f6c6ce15fa0 RCX: 00007f6c6cb9ce59
[ 1203.626638][T17363] RDX: 0000200000000040 RSI: 0000000000008946 RDI: 0000000000000004
[ 1203.626645][T17363] RBP: 00007f6c6db2e090 R08: 0000000000000000 R09: 0000000000000000
[ 1203.626651][T17363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1203.626657][T17363] R13: 00007f6c6ce16038 R14: 00007f6c6ce15fa0 R15: 00007ffeb757a8c8
[ 1203.626672][T17363]  </TASK>
[ 1203.680875][T17363] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1204.026320][T17370] bridge_slave_0: left allmulticast mode
[ 1204.063470][T17370] bridge_slave_0: left promiscuous mode
[ 1204.123483][T17371] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3063'.
[ 1205.065612][T17370] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1205.273415][T17384] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3067'.
[ 1205.429299][T17370] batman_adv: batadv0: Adding interface: bridge_slave_0
[ 1205.429318][T17370] batman_adv: batadv0: The MTU of interface bridge_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1205.429909][T17370] batman_adv: batadv0: Interface activated: bridge_slave_0
[ 1205.458976][ T5841] usb 3-1: new full-speed USB device number 59 using dummy_hcd
[ 1205.503295][T17393] netlink: 'syz.3.3069': attribute type 21 has an invalid length.
[ 1205.714830][T17395] netlink: 'syz.2.3065': attribute type 10 has an invalid length.
[ 1205.917149][ T5841] usb 3-1: unable to read config index 0 descriptor/start: -71
[ 1205.944116][ T5841] usb 3-1: can't read configurations, error -71
[ 1206.080618][T14075] usb 5-1: new high-speed USB device number 64 using dummy_hcd
[ 1206.120484][ T5837] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[ 1206.183511][T17370] SELinux: security_context_str_to_sid (5���]�S9q#���) failed with errno=-22
[ 1206.195126][T17370] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3064'.
[ 1206.207397][T17370] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1206.240782][T14075] usb 5-1: Using ep0 maxpacket: 32
[ 1206.251560][T14075] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA6, changing to 0x86
[ 1206.267476][T14075] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7
[ 1206.267807][T17409] FAULT_INJECTION: forcing a failure.
[ 1206.267807][T17409] name failslab, interval 1, probability 0, space 0, times 0
[ 1206.292344][T17409] CPU: 0 UID: 0 PID: 17409 Comm: syz.3.3075 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1206.292372][T17409] Tainted: [L]=SOFTLOCKUP
[ 1206.292379][T17409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1206.292390][T17409] Call Trace:
[ 1206.292396][T17409]  <TASK>
[ 1206.292404][T17409]  dump_stack_lvl+0x100/0x190
[ 1206.292428][T17409]  should_fail_ex.cold+0x5/0xa
[ 1206.292452][T17409]  ? sock_kmalloc+0x111/0x170
[ 1206.292469][T17409]  should_failslab+0xc2/0x120
[ 1206.292488][T17409]  __kmalloc_noprof+0xe0/0x850
[ 1206.292505][ T5837] usb 6-1: Using ep0 maxpacket: 32
[ 1206.292520][T17409]  ? __might_fault+0xc5/0x140
[ 1206.292550][T17409]  sock_kmalloc+0x111/0x170
[ 1206.292568][T17409]  ____sys_sendmsg+0x569/0xb70
[ 1206.292587][T17409]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1206.292614][T17409]  ___sys_sendmsg+0x190/0x1e0
[ 1206.292634][T17409]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1206.292677][T17409]  __sys_sendmsg+0x170/0x220
[ 1206.292700][T17409]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1206.292731][T17409]  ? rcu_is_watching+0x12/0xc0
[ 1206.292756][T17409]  do_syscall_64+0x115/0x870
[ 1206.292775][T17409]  ? clear_bhb_loop+0x40/0x90
[ 1206.292798][T17409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1206.292814][T17409] RIP: 0033:0x7fa87fb9ce59
[ 1206.292828][T17409] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1206.292843][T17409] RSP: 002b:00007fa8809cf028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1206.292858][T17409] RAX: ffffffffffffffda RBX: 00007fa87fe15fa0 RCX: 00007fa87fb9ce59
[ 1206.292869][T17409] RDX: 0000000000000010 RSI: 0000200000000780 RDI: 0000000000000004
[ 1206.292878][T17409] RBP: 00007fa8809cf090 R08: 0000000000000000 R09: 0000000000000000
[ 1206.292887][T17409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1206.292896][T17409] R13: 00007fa87fe16038 R14: 00007fa87fe15fa0 R15: 00007ffe46c2d758
[ 1206.292917][T17409]  </TASK>
[ 1206.491961][T14075] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0
[ 1206.502110][T14075] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x7 has an invalid bInterval 255, changing to 11
[ 1206.513266][T14075] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid maxpacket 59391, setting to 1024
[ 1206.526398][T14075] usb 5-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[ 1206.535499][T14075] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1206.543875][T14075] usb 5-1: Product: syz
[ 1206.548428][T14075] usb 5-1: Manufacturer: syz
[ 1206.553729][T14075] usb 5-1: SerialNumber: syz
[ 1206.564129][ T5837] usb 6-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[ 1206.574223][T14075] usb 5-1: config 0 descriptor??
[ 1206.581767][ T5837] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1206.614871][ T5837] usb 6-1: Product: syz
[ 1206.619080][ T5837] usb 6-1: Manufacturer: syz
[ 1206.623974][ T5837] usb 6-1: SerialNumber: syz
[ 1206.639934][ T5837] usb 6-1: config 0 descriptor??
[ 1206.823377][T17386] smc: net device vcan0 applied user defined pnetid SYZ1
[ 1206.832302][T17386] smc: net device syz_tun applied user defined pnetid SYZ1
[ 1206.847785][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1206.854232][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1206.867404][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1206.880720][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1206.896270][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1206.912022][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1206.928037][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1206.943384][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1206.960906][ T5837] RobotFuzz Open Source InterFace, OSIF 6-1:0.0: version d4.15 found at bus 006 address 037
[ 1206.971735][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1206.980163][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1206.993931][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1207.001791][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1207.010735][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1207.019376][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1207.025917][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1207.032868][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1207.041944][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1207.048272][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1207.054648][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1207.061177][T14075] iforce 5-1:0.0: usb_submit_urb failed: -71
[ 1207.067194][T14075] input input61: Timeout waiting for response from device.
[ 1207.084134][T14075] usb 5-1: USB disconnect, device number 64
[ 1207.244148][ T5837] usb 6-1: USB disconnect, device number 37
[ 1207.618165][T17427] bridge_slave_0: left allmulticast mode
[ 1207.624364][T17427] bridge_slave_0: left promiscuous mode
[ 1207.630147][T17427] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1207.939289][T17427] batman_adv: batadv0: Adding interface: bridge_slave_0
[ 1207.948785][T17427] batman_adv: batadv0: The MTU of interface bridge_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1207.958555][T17430] loop7: detected capacity change from 0 to 7
[ 1207.988979][T17427] batman_adv: batadv0: Interface activated: bridge_slave_0
[ 1208.286542][ T9903] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1208.382004][T17430] Dev loop7: unable to read RDB block 7
[ 1208.387923][T17430]  loop7: unable to read partition table
[ 1208.394846][T17430] loop7: partition table beyond EOD, truncated
[ 1208.406466][   T29] kauditd_printk_skb: 7 callbacks suppressed
[ 1208.406475][   T29] audit: type=1400 audit(1780204132.450:866): avc:  denied  { read } for  pid=17435 comm="syz.3.3083" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[ 1208.437682][T17430] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[ 1208.464237][T17427] SELinux: security_context_str_to_sid (5���]�S9q#���) failed with errno=-22
[ 1208.481281][T17439] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1208.491367][   T29] audit: type=1400 audit(1780204132.480:867): avc:  denied  { open } for  pid=17435 comm="syz.3.3083" path="/23/file0/file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[ 1208.519347][T17439] block device autoloading is deprecated and will be removed.
[ 1208.527978][T17427] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3081'.
[ 1208.562223][T17427] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1208.964075][T17451] SELinux: security_context_str_to_sid (5���]�S9q#���) failed with errno=-22
[ 1208.966030][T17447] FAULT_INJECTION: forcing a failure.
[ 1208.966030][T17447] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1208.992093][T17447] CPU: 1 UID: 0 PID: 17447 Comm: syz.4.3086 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1208.992123][T17447] Tainted: [L]=SOFTLOCKUP
[ 1208.992129][T17447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1208.992141][T17447] Call Trace:
[ 1208.992147][T17447]  <TASK>
[ 1208.992155][T17447]  dump_stack_lvl+0x100/0x190
[ 1208.992182][T17447]  should_fail_ex.cold+0x5/0xa
[ 1208.992208][T17447]  _copy_to_user+0x32/0xd0
[ 1208.992232][T17447]  simple_read_from_buffer+0xcb/0x170
[ 1208.992257][T17447]  proc_fail_nth_read+0x1af/0x230
[ 1208.992278][T17447]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1208.992299][T17447]  ? rw_verify_area+0xce/0x6d0
[ 1208.992316][T17447]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1208.992335][T17447]  vfs_read+0x1e4/0xb30
[ 1208.992357][T17447]  ? __pfx_vfs_read+0x10/0x10
[ 1208.992375][T17447]  ? __fget_files+0x215/0x3d0
[ 1208.992403][T17447]  ? __fget_files+0x21f/0x3d0
[ 1208.992431][T17447]  ksys_read+0x12a/0x250
[ 1208.992450][T17447]  ? __pfx_ksys_read+0x10/0x10
[ 1208.992475][T17447]  ? rcu_is_watching+0x12/0xc0
[ 1208.992504][T17447]  do_syscall_64+0x115/0x870
[ 1208.992527][T17447]  ? clear_bhb_loop+0x40/0x90
[ 1208.992549][T17447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1208.992571][T17447] RIP: 0033:0x7f6c6cb5d68e
[ 1208.992587][T17447] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1208.992604][T17447] RSP: 002b:00007f6c6db2dfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1208.992621][T17447] RAX: ffffffffffffffda RBX: 00007f6c6db2e6c0 RCX: 00007f6c6cb5d68e
[ 1208.992632][T17447] RDX: 000000000000000f RSI: 00007f6c6db2e0a0 RDI: 0000000000000004
[ 1208.992642][T17447] RBP: 00007f6c6db2e090 R08: 0000000000000000 R09: 0000000000000000
[ 1208.992652][T17447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1208.992662][T17447] R13: 00007f6c6ce16038 R14: 00007f6c6ce15fa0 R15: 00007ffeb757a8c8
[ 1208.992686][T17447]  </TASK>
[ 1209.024129][T17450] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3085'.
[ 1209.171842][T14075] psmouse serio2: Failed to reset mouse on : -5
[ 1209.191802][T17450] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1209.670987][ T5837] usb 3-1: new full-speed USB device number 61 using dummy_hcd
[ 1209.934752][T17464] sg_write: data in/out 764/8 bytes for SCSI command 0xd6-- guessing data in;
[ 1209.934752][T17464]    program syz.3.3090 not setting count and/or reply_len properly
[ 1210.671597][T17454] netlink: 'syz.2.3087': attribute type 10 has an invalid length.
[ 1210.866678][ T5837] usb 3-1: unable to read config index 0 descriptor/start: -71
[ 1210.892361][   T29] audit: type=1326 audit(1780204134.940:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17470 comm="syz.5.3091" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1210.922272][ T5837] usb 3-1: can't read configurations, error -71
[ 1210.940282][   T29] audit: type=1326 audit(1780204134.940:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17470 comm="syz.5.3091" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1210.968529][   T29] audit: type=1326 audit(1780204134.970:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17470 comm="syz.5.3091" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1210.995365][   T29] audit: type=1326 audit(1780204134.970:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17470 comm="syz.5.3091" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1211.026013][   T29] audit: type=1326 audit(1780204134.970:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17470 comm="syz.5.3091" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1211.053269][   T29] audit: type=1326 audit(1780204134.970:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17470 comm="syz.5.3091" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1211.082709][   T29] audit: type=1326 audit(1780204134.970:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17470 comm="syz.5.3091" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1211.110482][   T29] audit: type=1326 audit(1780204134.970:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17470 comm="syz.5.3091" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22dad9ce59 code=0x7ffc0000
[ 1211.593815][T17483] FAULT_INJECTION: forcing a failure.
[ 1211.593815][T17483] name failslab, interval 1, probability 0, space 0, times 0
[ 1211.610259][T17483] CPU: 0 UID: 0 PID: 17483 Comm: syz.5.3096 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1211.610278][T17483] Tainted: [L]=SOFTLOCKUP
[ 1211.610282][T17483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1211.610288][T17483] Call Trace:
[ 1211.610292][T17483]  <TASK>
[ 1211.610297][T17483]  dump_stack_lvl+0x100/0x190
[ 1211.610314][T17483]  should_fail_ex.cold+0x5/0xa
[ 1211.610329][T17483]  ? tomoyo_encode2+0xfb/0x3c0
[ 1211.610345][T17483]  should_failslab+0xc2/0x120
[ 1211.610357][T17483]  __kmalloc_noprof+0xe0/0x850
[ 1211.610376][T17483]  tomoyo_encode2+0xfb/0x3c0
[ 1211.610395][T17483]  tomoyo_encode+0x29/0x50
[ 1211.610410][T17483]  tomoyo_realpath_from_path+0x18c/0x690
[ 1211.610430][T17483]  tomoyo_path_number_perm+0x23c/0x580
[ 1211.610444][T17483]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1211.610460][T17483]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1211.610487][T17483]  ? find_held_lock+0x2b/0x80
[ 1211.610497][T17483]  ? __fget_files+0x215/0x3d0
[ 1211.610510][T17483]  ? hook_file_ioctl_common+0x149/0x410
[ 1211.610521][T17483]  ? __fget_files+0x215/0x3d0
[ 1211.610536][T17483]  ? __fget_files+0x21f/0x3d0
[ 1211.610551][T17483]  security_file_ioctl+0xd3/0x230
[ 1211.610568][T17483]  __x64_sys_ioctl+0xb7/0x210
[ 1211.610580][T17483]  do_syscall_64+0x115/0x870
[ 1211.610594][T17483]  ? clear_bhb_loop+0x40/0x90
[ 1211.610607][T17483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1211.610618][T17483] RIP: 0033:0x7f22dad9ce59
[ 1211.610628][T17483] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1211.610638][T17483] RSP: 002b:00007f22dbbc1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1211.610649][T17483] RAX: ffffffffffffffda RBX: 00007f22db015fa0 RCX: 00007f22dad9ce59
[ 1211.610656][T17483] RDX: 0000200000000340 RSI: 000000004008ae89 RDI: 0000000000000005
[ 1211.610663][T17483] RBP: 00007f22dbbc1090 R08: 0000000000000000 R09: 0000000000000000
[ 1211.610669][T17483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1211.610675][T17483] R13: 00007f22db016038 R14: 00007f22db015fa0 R15: 00007ffdbc482ec8
[ 1211.610689][T17483]  </TASK>
[ 1211.610699][T17483] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1211.616413][T17462] Process accounting resumed
[ 1211.872578][T17487] FAULT_INJECTION: forcing a failure.
[ 1211.872578][T17487] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1211.890400][ T5837] usb 3-1: new high-speed USB device number 62 using dummy_hcd
[ 1211.900455][T17487] CPU: 0 UID: 0 PID: 17487 Comm: syz.3.3098 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1211.900480][T17487] Tainted: [L]=SOFTLOCKUP
[ 1211.900486][T17487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1211.900497][T17487] Call Trace:
[ 1211.900504][T17487]  <TASK>
[ 1211.900510][T17487]  dump_stack_lvl+0x100/0x190
[ 1211.900535][T17487]  should_fail_ex.cold+0x5/0xa
[ 1211.900559][T17487]  _copy_to_user+0x32/0xd0
[ 1211.900582][T17487]  copy_siginfo_to_user+0x27/0xc0
[ 1211.900601][T17487]  x64_setup_rt_frame+0xa03/0xce0
[ 1211.900621][T17487]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[ 1211.900638][T17487]  ? __pfx_vfs_read+0x10/0x10
[ 1211.900649][T17487]  ? find_held_lock+0x2b/0x80
[ 1211.900660][T17487]  arch_do_signal_or_restart+0x5ee/0x7e0
[ 1211.900677][T17487]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1211.900697][T17487]  ? fput+0x79/0x100
[ 1211.900717][T17487]  ? rcu_is_watching+0x12/0xc0
[ 1211.900735][T17487]  exit_to_user_mode_loop+0x98/0x670
[ 1211.900748][T17487]  ? rcu_is_watching+0x12/0xc0
[ 1211.900764][T17487]  do_syscall_64+0x666/0x870
[ 1211.900778][T17487]  ? clear_bhb_loop+0x40/0x90
[ 1211.900791][T17487]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1211.900802][T17487] RIP: 0033:0x7fa87fb9ce57
[ 1211.900812][T17487] Code: 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89
[ 1211.900823][T17487] RSP: 002b:00007fa8809cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1211.900834][T17487] RAX: 0000000000000000 RBX: 00007fa87fe15fa0 RCX: 00007fa87fb9ce59
[ 1211.900841][T17487] RDX: 0000000000002020 RSI: 0000200000006e80 RDI: 0000000000000004
[ 1211.900848][T17487] RBP: 00007fa8809cf090 R08: 0000000000000000 R09: 0000000000000000
[ 1211.900854][T17487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1211.900860][T17487] R13: 00007fa87fe16038 R14: 00007fa87fe15fa0 R15: 00007ffe46c2d758
[ 1211.900873][T17487]  </TASK>
[ 1212.125022][ T5837] usb 3-1: New USB device found, idVendor=0582, idProduct=007a, bcdDevice= 0.40
[ 1212.134312][ T5837] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1212.142938][ T5837] usb 3-1: Product: І
[ 1212.147661][ T5837] usb 3-1: Manufacturer: ᙊ驡蕄ᗷ囜渇〽蠷뙵캭䔯咁쬩ᡴ䒑聩쪚맾럁썦﬍函㳱燚鋗점䣕䍆媇埽릛ꎣ銴ꢨ틝酭돉ﰨ䡯㢊朝ᬩ刡䕈㫾宯ᦫ鑋ࠏ弩蠥ꦔ䲿鯺躲柃俇辋吠싱
[ 1212.170232][ T5837] usb 3-1: SerialNumber: ᠁
[ 1212.402385][ T5837] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[ 1212.420043][ T5837] usb 3-1: MIDIStreaming interface descriptor not found
[ 1212.548508][ T5837] usb 3-1: USB disconnect, device number 62
[ 1213.150297][T14075] misc userio: Buffer overflowed, userio client isn't keeping up
[ 1213.552288][ T5662] usb 3-1: new full-speed USB device number 63 using dummy_hcd
[ 1213.732922][T17508] netlink: 'syz.2.3104': attribute type 10 has an invalid length.
[ 1213.972466][ T5662] usb 3-1: unable to read config index 0 descriptor/start: -71
[ 1214.010106][   T29] kauditd_printk_skb: 70 callbacks suppressed
[ 1214.010122][   T29] audit: type=1400 audit(1780204138.050:946): avc:  denied  { create } for  pid=17519 comm="syz.5.3108" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[ 1214.037497][ T5662] usb 3-1: can't read configurations, error -71
[ 1214.276862][T14075] input: PS/2 Generic Mouse as /devices/serio2/input/input62
[ 1214.448371][T17531] FAULT_INJECTION: forcing a failure.
[ 1214.448371][T17531] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1214.465433][T17531] CPU: 0 UID: 0 PID: 17531 Comm: syz.3.3109 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1214.465461][T17531] Tainted: [L]=SOFTLOCKUP
[ 1214.465472][T17531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1214.465482][T17531] Call Trace:
[ 1214.465489][T17531]  <TASK>
[ 1214.465496][T17531]  dump_stack_lvl+0x100/0x190
[ 1214.465524][T17531]  should_fail_ex.cold+0x5/0xa
[ 1214.465550][T17531]  _copy_to_user+0x32/0xd0
[ 1214.465574][T17531]  simple_read_from_buffer+0xcb/0x170
[ 1214.465600][T17531]  proc_fail_nth_read+0x1af/0x230
[ 1214.465620][T17531]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1214.465640][T17531]  ? rw_verify_area+0xce/0x6d0
[ 1214.465656][T17531]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1214.465676][T17531]  vfs_read+0x1e4/0xb30
[ 1214.465698][T17531]  ? __pfx_vfs_read+0x10/0x10
[ 1214.465717][T17531]  ? __fget_files+0x215/0x3d0
[ 1214.465745][T17531]  ? __fget_files+0x21f/0x3d0
[ 1214.465775][T17531]  ksys_read+0x12a/0x250
[ 1214.465793][T17531]  ? __pfx_ksys_read+0x10/0x10
[ 1214.465815][T17531]  ? rcu_is_watching+0x12/0xc0
[ 1214.465845][T17531]  do_syscall_64+0x115/0x870
[ 1214.465867][T17531]  ? clear_bhb_loop+0x40/0x90
[ 1214.465890][T17531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1214.465908][T17531] RIP: 0033:0x7fa87fb5d68e
[ 1214.465924][T17531] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1214.465941][T17531] RSP: 002b:00007fa8809cefe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1214.465958][T17531] RAX: ffffffffffffffda RBX: 00007fa8809cf6c0 RCX: 00007fa87fb5d68e
[ 1214.465970][T17531] RDX: 000000000000000f RSI: 00007fa8809cf0a0 RDI: 0000000000000004
[ 1214.465981][T17531] RBP: 00007fa8809cf090 R08: 0000000000000000 R09: 0000000000000000
[ 1214.465991][T17531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1214.466002][T17531] R13: 00007fa87fe16038 R14: 00007fa87fe15fa0 R15: 00007ffe46c2d758
[ 1214.466026][T17531]  </TASK>
[ 1214.663469][T14075] psmouse serio2: Failed to enable mouse on 
[ 1215.026183][T17546] FAULT_INJECTION: forcing a failure.
[ 1215.026183][T17546] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1215.028019][T17540] sg_write: data in/out 764/8 bytes for SCSI command 0xd6-- guessing data in;
[ 1215.028019][T17540]    program syz.4.3113 not setting count and/or reply_len properly
[ 1215.070254][T17546] CPU: 1 UID: 0 PID: 17546 Comm: syz.2.3114 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1215.070282][T17546] Tainted: [L]=SOFTLOCKUP
[ 1215.070288][T17546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1215.070299][T17546] Call Trace:
[ 1215.070305][T17546]  <TASK>
[ 1215.070312][T17546]  dump_stack_lvl+0x100/0x190
[ 1215.070337][T17546]  should_fail_ex.cold+0x5/0xa
[ 1215.070363][T17546]  _copy_from_user+0x2e/0xd0
[ 1215.070385][T17546]  sctp_setsockopt+0x8cc/0xb370
[ 1215.070413][T17546]  ? __pfx_sctp_setsockopt+0x10/0x10
[ 1215.070434][T17546]  ? __fget_files+0x215/0x3d0
[ 1215.070461][T17546]  ? selinux_socket_setsockopt+0x6a/0x80
[ 1215.070485][T17546]  ? sock_common_setsockopt+0x2e/0xf0
[ 1215.070503][T17546]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1215.070526][T17546]  do_sock_setsockopt+0xf3/0x1d0
[ 1215.070548][T17546]  __sys_setsockopt+0x195/0x220
[ 1215.070579][T17546]  __x64_sys_setsockopt+0xbd/0x160
[ 1215.070604][T17546]  ? do_syscall_64+0x90/0x870
[ 1215.070632][T17546]  ? lockdep_hardirqs_on+0x78/0x100
[ 1215.070655][T17546]  do_syscall_64+0x115/0x870
[ 1215.070676][T17546]  ? clear_bhb_loop+0x40/0x90
[ 1215.070699][T17546]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1215.070717][T17546] RIP: 0033:0x7f89a439ce59
[ 1215.070732][T17546] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1215.070749][T17546] RSP: 002b:00007f89a52e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1215.070766][T17546] RAX: ffffffffffffffda RBX: 00007f89a4615fa0 RCX: 00007f89a439ce59
[ 1215.070778][T17546] RDX: 0000000000000064 RSI: 0000000000000084 RDI: 0000000000000003
[ 1215.070789][T17546] RBP: 00007f89a52e3090 R08: 000000000000001c R09: 0000000000000000
[ 1215.070799][T17546] R10: 00002000000003c0 R11: 0000000000000246 R12: 0000000000000001
[ 1215.070810][T17546] R13: 00007f89a4616038 R14: 00007f89a4615fa0 R15: 00007ffda270f258
[ 1215.070834][T17546]  </TASK>
[ 1215.292818][T17540] loop9: detected capacity change from 0 to 524287936
[ 1215.556656][T17551] FAULT_INJECTION: forcing a failure.
[ 1215.556656][T17551] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1215.569998][T17551] CPU: 1 UID: 0 PID: 17551 Comm: syz.2.3115 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1215.570025][T17551] Tainted: [L]=SOFTLOCKUP
[ 1215.570032][T17551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1215.570043][T17551] Call Trace:
[ 1215.570049][T17551]  <TASK>
[ 1215.570056][T17551]  dump_stack_lvl+0x100/0x190
[ 1215.570082][T17551]  should_fail_ex.cold+0x5/0xa
[ 1215.570107][T17551]  _copy_from_user+0x2e/0xd0
[ 1215.570130][T17551]  copy_msghdr_from_user+0x9f/0x4f0
[ 1215.570154][T17551]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1215.570185][T17551]  ? kvm_sched_clock_read+0x11/0x20
[ 1215.570213][T17551]  ___sys_sendmsg+0x106/0x1e0
[ 1215.570237][T17551]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1215.570259][T17551]  ? finish_task_switch.isra.0+0x2cb/0x1010
[ 1215.570298][T17551]  ? find_held_lock+0x2b/0x80
[ 1215.570330][T17551]  __sys_sendmmsg+0x205/0x430
[ 1215.570361][T17551]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1215.570385][T17551]  ? irqentry_exit+0x24d/0x970
[ 1215.570426][T17551]  ? fput+0x79/0x100
[ 1215.570450][T17551]  ? ksys_write+0x1ac/0x250
[ 1215.570470][T17551]  ? __pfx_ksys_write+0x10/0x10
[ 1215.570488][T17551]  ? trace_irq_enable.constprop.0+0x31/0x160
[ 1215.570516][T17551]  __x64_sys_sendmmsg+0x9c/0x100
[ 1215.570543][T17551]  ? lockdep_hardirqs_on+0x78/0x100
[ 1215.570565][T17551]  do_syscall_64+0x115/0x870
[ 1215.570587][T17551]  ? clear_bhb_loop+0x40/0x90
[ 1215.570609][T17551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1215.570632][T17551] RIP: 0033:0x7f89a439ce59
[ 1215.570647][T17551] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1215.570665][T17551] RSP: 002b:00007f89a52a1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1215.570683][T17551] RAX: ffffffffffffffda RBX: 00007f89a4616180 RCX: 00007f89a439ce59
[ 1215.570695][T17551] RDX: 000000000800001d RSI: 0000200000007fc0 RDI: 0000000000000007
[ 1215.570706][T17551] RBP: 00007f89a52a1090 R08: 0000000000000000 R09: 0000000000000000
[ 1215.570717][T17551] R10: 0000000000000810 R11: 0000000000000246 R12: 0000000000000001
[ 1215.570728][T17551] R13: 00007f89a4616218 R14: 00007f89a4616180 R15: 00007ffda270f258
[ 1215.570752][T17551]  </TASK>
[ 1216.043678][T17558] bridge_slave_0: left allmulticast mode
[ 1216.054645][T17558] bridge_slave_0: left promiscuous mode
[ 1216.060804][T17558] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1216.076888][T17558] batman_adv: batadv0: Adding interface: bridge_slave_0
[ 1216.088548][T17558] batman_adv: batadv0: The MTU of interface bridge_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1216.120774][T17558] batman_adv: batadv0: Interface activated: bridge_slave_0
[ 1216.445315][T17558] SELinux: security_context_str_to_sid (5���]�S9q#���) failed with errno=-22
[ 1216.531716][T17558] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3117'.
[ 1216.550892][T17558] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1216.583502][T17556] sg_write: data in/out 764/8 bytes for SCSI command 0xd6-- guessing data in;
[ 1216.583502][T17556]    program syz.0.3100 not setting count and/or reply_len properly
[ 1216.814248][T17565] loop9: detected capacity change from 0 to 524287936
[ 1218.000518][ T5662] usb 4-1: new full-speed USB device number 66 using dummy_hcd
[ 1218.260715][T17543] Process accounting resumed
[ 1218.283407][T17569] netlink: 'syz.3.3120': attribute type 10 has an invalid length.
[ 1218.491883][ T5662] usb 4-1: unable to read config index 0 descriptor/start: -71
[ 1218.514680][ T5662] usb 4-1: can't read configurations, error -71
[ 1218.527651][T17584] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3125'.
[ 1218.567830][T17584] netlink: 'syz.2.3125': attribute type 21 has an invalid length.
[ 1219.183267][T17594] SELinux: security_context_str_to_sid (5���]�S9q#���) failed with errno=-22
[ 1219.268984][T17598] tipc: Started in network mode
[ 1219.286028][T17598] tipc: Node identity ae58dafc6912, cluster identity 4711
[ 1219.332164][T17598] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1219.354465][T17601] syzkaller0: entered promiscuous mode
[ 1219.379324][T17601] syzkaller0: entered allmulticast mode
[ 1219.422705][T17598] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3129'.
[ 1219.468681][T17598] tipc: Resetting bearer <eth:syzkaller0>
[ 1219.587006][T17597] tipc: Resetting bearer <eth:syzkaller0>
[ 1219.655619][T17597] tipc: Disabling bearer <eth:syzkaller0>
[ 1219.831826][T17605] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3131'.
[ 1220.037666][T17608] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1220.104612][T17605] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3131'.
[ 1220.491820][   T29] audit: type=1400 audit(1780204144.540:947): avc:  denied  { setopt } for  pid=17617 comm="syz.2.3135" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1220.661320][ T5841] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[ 1220.676014][T17634] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3137'.
[ 1220.729332][T17627] netlink: 'syz.3.3137': attribute type 21 has an invalid length.
[ 1220.831591][ T5841] usb 6-1: config 7 has an invalid interface number: 63 but max is 0
[ 1220.839861][ T5841] usb 6-1: config 7 has no interface number 0
[ 1220.846565][ T5841] usb 6-1: config 7 interface 63 has no altsetting 0
[ 1220.856092][ T5841] usb 6-1: New USB device found, idVendor=1039, idProduct=2121, bcdDevice=86.2e
[ 1220.872229][ T5841] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1220.880711][ T5841] usb 6-1: Product: syz
[ 1220.884903][ T5841] usb 6-1: Manufacturer: syz
[ 1220.889487][ T5841] usb 6-1: SerialNumber: syz
[ 1221.103513][ T5765] usb 4-1: new full-speed USB device number 68 using dummy_hcd
[ 1221.109511][ T5841] usb 6-1: [ueagle-atm] ADSL device founded vid (0X1039) pid (0X2121) Rev (0X862E): Eagle II
[ 1221.354011][T17640] netlink: 'syz.3.3140': attribute type 10 has an invalid length.
[ 1221.448718][ T5765] usb 4-1: unable to read config index 0 descriptor/start: -71
[ 1221.458880][ T5765] usb 4-1: can't read configurations, error -71
[ 1221.470942][T17653] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1221.568674][T17655] FAULT_INJECTION: forcing a failure.
[ 1221.568674][T17655] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1221.582697][T17655] CPU: 1 UID: 0 PID: 17655 Comm: syz.4.3144 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1221.582720][T17655] Tainted: [L]=SOFTLOCKUP
[ 1221.582724][T17655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1221.582731][T17655] Call Trace:
[ 1221.582735][T17655]  <TASK>
[ 1221.582739][T17655]  dump_stack_lvl+0x100/0x190
[ 1221.582756][T17655]  should_fail_ex.cold+0x5/0xa
[ 1221.582771][T17655]  _copy_from_user+0x2e/0xd0
[ 1221.582784][T17655]  move_addr_to_kernel+0x65/0x170
[ 1221.582798][T17655]  copy_msghdr_from_user+0x417/0x4f0
[ 1221.582812][T17655]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1221.582831][T17655]  ___sys_sendmsg+0x106/0x1e0
[ 1221.582845][T17655]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1221.582874][T17655]  __sys_sendmsg+0x170/0x220
[ 1221.582890][T17655]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1221.582912][T17655]  ? rcu_is_watching+0x12/0xc0
[ 1221.582930][T17655]  do_syscall_64+0x115/0x870
[ 1221.582944][T17655]  ? clear_bhb_loop+0x40/0x90
[ 1221.582956][T17655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1221.582967][T17655] RIP: 0033:0x7f6c6cb9ce59
[ 1221.582977][T17655] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1221.582987][T17655] RSP: 002b:00007f6c6db2e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1221.582998][T17655] RAX: ffffffffffffffda RBX: 00007f6c6ce15fa0 RCX: 00007f6c6cb9ce59
[ 1221.583005][T17655] RDX: 0000000020000080 RSI: 00002000000001c0 RDI: 0000000000000003
[ 1221.583012][T17655] RBP: 00007f6c6db2e090 R08: 0000000000000000 R09: 0000000000000000
[ 1221.583018][T17655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1221.583025][T17655] R13: 00007f6c6ce16038 R14: 00007f6c6ce15fa0 R15: 00007ffeb757a8c8
[ 1221.583038][T17655]  </TASK>
[ 1221.899950][T17660] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[ 1221.908453][T17660] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[ 1221.926024][T17660] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[ 1221.967518][   T29] audit: type=1400 audit(1780204145.970:948): avc:  denied  { firmware_load } for  pid=17656 comm="syz.4.3145" scontext=system_u:system_r:kernel_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[ 1222.028452][   T29] audit: type=1400 audit(1780204145.990:949): avc:  denied  { append } for  pid=17656 comm="syz.4.3145" name="hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[ 1222.211012][ T5841] usb 6-1: [ueagle-atm] pre-firmware device, uploading firmware
[ 1222.308472][   T29] audit: type=1400 audit(1780204146.000:950): avc:  denied  { bind } for  pid=17656 comm="syz.4.3145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1222.452027][   T29] audit: type=1400 audit(1780204146.000:951): avc:  denied  { mounton } for  pid=17658 comm="syz.5.3146" path="/202/file0" dev="tmpfs" ino=1049 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[ 1222.751057][ T5841] usb 6-1: [ueagle-atm] loading firmware ueagle-atm/eagleII.fw
[ 1222.763809][T14075] usb 6-1: Direct firmware load for ueagle-atm/eagleII.fw failed with error -2
[ 1222.775743][ T5841] usb 6-1: USB disconnect, device number 38
[ 1222.781836][T14075] usb 6-1: Falling back to sysfs fallback for: ueagle-atm/eagleII.fw
[ 1223.027074][T17671] SELinux: security_context_str_to_sid (5���]�S9q#���) failed with errno=-22
[ 1223.027416][T14075] ------------[ cut here ]------------
[ 1223.038500][T17671] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3148'.
[ 1223.042384][T14075] !atomic_read(&kn->count)
[ 1223.051346][T14075] WARNING: fs/kernfs/dir.c:560 at kernfs_get.part.0+0x6e/0x80, CPU#1: kworker/1:7/14075
[ 1223.051532][T17671] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1223.056013][T14075] Modules linked in:
[ 1223.056071][T14075] CPU: 1 UID: 0 PID: 14075 Comm: kworker/1:7 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1223.056098][T14075] Tainted: [L]=SOFTLOCKUP
[ 1223.056107][T14075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1223.056120][T14075] Workqueue: events request_firmware_work_func
[ 1223.056165][T14075] RIP: 0010:kernfs_get.part.0+0x6e/0x80
[ 1223.116468][T14075] Code: 18 5d 4f ff 85 ed 74 1c e8 5f 62 4f ff be 04 00 00 00 48 89 df e8 12 4b bd ff f0 ff 03 5b 5d e9 c8 4e d3 08 e8 43 62 4f ff 90 <0f> 0b 90 eb d9 48 89 df e8 25 45 bd ff eb c0 0f 1f 00 90 90 90 90
[ 1223.136270][T14075] RSP: 0018:ffffc90004d3f7c8 EFLAGS: 00010293
[ 1223.142535][T14075] RAX: 0000000000000000 RBX: ffff888057908d20 RCX: ffffffff82b92df8
[ 1223.150660][T14075] RDX: ffff88808a6ba540 RSI: ffffffff82b92e1d RDI: ffff88808a6ba540
[ 1223.158723][T14075] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 1223.166700][T14075] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1223.174684][T14075] R13: ffff88807836c038 R14: 0000000000000000 R15: ffff88807836c030
[ 1223.182660][T14075] FS:  0000000000000000(0000) GS:ffff888124483000(0000) knlGS:0000000000000000
[ 1223.191617][T14075] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1223.198205][T14075] CR2: 000000110c3c17e2 CR3: 0000000036f91000 CR4: 00000000003526f0
[ 1223.206205][T14075] Call Trace:
[ 1223.209474][T14075]  <TASK>
[ 1223.212415][T14075]  kernfs_get+0x1f/0x30
[ 1223.216578][T14075]  kobject_add_internal+0x359/0x930
[ 1223.221786][T14075]  kobject_add+0x16a/0x1e0
[ 1223.226198][T14075]  ? __pfx_kobject_add+0x10/0x10
[ 1223.231145][T14075]  ? device_add+0x253/0x1950
[ 1223.235731][T14075]  ? device_add+0x253/0x1950
[ 1223.240326][T14075]  device_add+0x294/0x1950
[ 1223.244740][T14075]  ? __pfx_device_add+0x10/0x10
[ 1223.249730][T14075]  ? __init_waitqueue_head+0xca/0x150
[ 1223.255214][T14075]  firmware_fallback_sysfs+0x2e2/0xc20
[ 1223.260708][T14075]  _request_firmware+0xfd7/0x13c0
[ 1223.265731][T14075]  ? __pfx__request_firmware+0x10/0x10
[ 1223.271188][T14075]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1223.276383][T14075]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1223.282248][T14075]  ? debug_object_deactivate+0x2e4/0x3b0
[ 1223.287883][T14075]  request_firmware_work_func+0xea/0x250
[ 1223.293536][T14075]  ? __pfx_request_firmware_work_func+0x10/0x10
[ 1223.299785][T14075]  ? rcu_is_watching+0x12/0xc0
[ 1223.304559][T14075]  process_one_work+0xa0e/0x1980
[ 1223.309497][T14075]  ? __pfx_process_one_work+0x10/0x10
[ 1223.314882][T14075]  ? __pfx_request_firmware_work_func+0x10/0x10
[ 1223.321130][T14075]  worker_thread+0x5ef/0xe50
[ 1223.325718][T14075]  ? __pfx_worker_thread+0x10/0x10
[ 1223.330841][T14075]  ? kthread+0x13a/0x450
[ 1223.335081][T14075]  ? __pfx_worker_thread+0x10/0x10
[ 1223.340197][T14075]  kthread+0x370/0x450
[ 1223.344268][T14075]  ? __pfx_kthread+0x10/0x10
[ 1223.348863][T14075]  ret_from_fork+0x72b/0xd50
[ 1223.353593][T14075]  ? __pfx_ret_from_fork+0x10/0x10
[ 1223.358792][T14075]  ? __switch_to+0x800/0x1100
[ 1223.363514][T14075]  ? __pfx_kthread+0x10/0x10
[ 1223.368096][T14075]  ret_from_fork_asm+0x1a/0x30
[ 1223.372873][T14075]  </TASK>
[ 1223.375878][T14075] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1223.383129][T14075] CPU: 1 UID: 0 PID: 14075 Comm: kworker/1:7 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1223.394116][T14075] Tainted: [L]=SOFTLOCKUP
[ 1223.398412][T14075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1223.408446][T14075] Workqueue: events request_firmware_work_func
[ 1223.414579][T14075] Call Trace:
[ 1223.417828][T14075]  <TASK>
[ 1223.420732][T14075]  dump_stack_lvl+0x100/0x190
[ 1223.425380][T14075]  vpanic+0x552/0x970
[ 1223.429330][T14075]  ? __pfx_vpanic+0x10/0x10
[ 1223.433805][T14075]  panic+0xd1/0xe0
[ 1223.437495][T14075]  ? __pfx_panic+0x10/0x10
[ 1223.441885][T14075]  ? check_panic_on_warn+0x1f/0x90
[ 1223.446970][T14075]  check_panic_on_warn.cold+0x19/0x34
[ 1223.452313][T14075]  ? kernfs_get.part.0+0x6e/0x80
[ 1223.457224][T14075]  __warn.cold+0x191/0x328
[ 1223.461612][T14075]  __report_bug+0x296/0x3d0
[ 1223.466086][T14075]  ? kernfs_get.part.0+0x6e/0x80
[ 1223.470998][T14075]  ? __pfx___report_bug+0x10/0x10
[ 1223.475993][T14075]  ? find_held_lock+0x2b/0x80
[ 1223.480638][T14075]  ? kernfs_add_one+0x583/0x850
[ 1223.485462][T14075]  ? kernfs_add_one+0x583/0x850
[ 1223.490291][T14075]  ? up_write+0x28c/0x4f0
[ 1223.494592][T14075]  ? kernfs_root+0xf8/0x2a0
[ 1223.499077][T14075]  ? kernfs_get.part.0+0x6e/0x80
[ 1223.503986][T14075]  report_bug+0xb2/0x220
[ 1223.508199][T14075]  ? kernfs_get.part.0+0x6e/0x80
[ 1223.513106][T14075]  handle_bug+0x16a/0x2a0
[ 1223.517411][T14075]  exc_invalid_op+0x17/0x50
[ 1223.521888][T14075]  asm_exc_invalid_op+0x1a/0x20
[ 1223.526710][T14075] RIP: 0010:kernfs_get.part.0+0x6e/0x80
[ 1223.532239][T14075] Code: 18 5d 4f ff 85 ed 74 1c e8 5f 62 4f ff be 04 00 00 00 48 89 df e8 12 4b bd ff f0 ff 03 5b 5d e9 c8 4e d3 08 e8 43 62 4f ff 90 <0f> 0b 90 eb d9 48 89 df e8 25 45 bd ff eb c0 0f 1f 00 90 90 90 90
[ 1223.551817][T14075] RSP: 0018:ffffc90004d3f7c8 EFLAGS: 00010293
[ 1223.557853][T14075] RAX: 0000000000000000 RBX: ffff888057908d20 RCX: ffffffff82b92df8
[ 1223.565794][T14075] RDX: ffff88808a6ba540 RSI: ffffffff82b92e1d RDI: ffff88808a6ba540
[ 1223.573736][T14075] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 1223.581675][T14075] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1223.589616][T14075] R13: ffff88807836c038 R14: 0000000000000000 R15: ffff88807836c030
[ 1223.597561][T14075]  ? kernfs_get.part.0+0x48/0x80
[ 1223.602485][T14075]  ? kernfs_get.part.0+0x6d/0x80
[ 1223.607396][T14075]  ? kernfs_get.part.0+0x6d/0x80
[ 1223.612306][T14075]  kernfs_get+0x1f/0x30
[ 1223.616437][T14075]  kobject_add_internal+0x359/0x930
[ 1223.621612][T14075]  kobject_add+0x16a/0x1e0
[ 1223.626012][T14075]  ? __pfx_kobject_add+0x10/0x10
[ 1223.630926][T14075]  ? device_add+0x253/0x1950
[ 1223.635489][T14075]  ? device_add+0x253/0x1950
[ 1223.640052][T14075]  device_add+0x294/0x1950
[ 1223.644446][T14075]  ? __pfx_device_add+0x10/0x10
[ 1223.649271][T14075]  ? __init_waitqueue_head+0xca/0x150
[ 1223.654624][T14075]  firmware_fallback_sysfs+0x2e2/0xc20
[ 1223.660061][T14075]  _request_firmware+0xfd7/0x13c0
[ 1223.665062][T14075]  ? __pfx__request_firmware+0x10/0x10
[ 1223.670494][T14075]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1223.675667][T14075]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1223.681444][T14075]  ? debug_object_deactivate+0x2e4/0x3b0
[ 1223.687050][T14075]  request_firmware_work_func+0xea/0x250
[ 1223.692653][T14075]  ? __pfx_request_firmware_work_func+0x10/0x10
[ 1223.698866][T14075]  ? rcu_is_watching+0x12/0xc0
[ 1223.703605][T14075]  process_one_work+0xa0e/0x1980
[ 1223.708523][T14075]  ? __pfx_process_one_work+0x10/0x10
[ 1223.713868][T14075]  ? __pfx_request_firmware_work_func+0x10/0x10
[ 1223.720081][T14075]  worker_thread+0x5ef/0xe50
[ 1223.724646][T14075]  ? __pfx_worker_thread+0x10/0x10
[ 1223.729728][T14075]  ? kthread+0x13a/0x450
[ 1223.733939][T14075]  ? __pfx_worker_thread+0x10/0x10
[ 1223.739020][T14075]  kthread+0x370/0x450
[ 1223.743061][T14075]  ? __pfx_kthread+0x10/0x10
[ 1223.747622][T14075]  ret_from_fork+0x72b/0xd50
[ 1223.752186][T14075]  ? __pfx_ret_from_fork+0x10/0x10
[ 1223.757271][T14075]  ? __switch_to+0x800/0x1100
[ 1223.761936][T14075]  ? __pfx_kthread+0x10/0x10
[ 1223.766513][T14075]  ret_from_fork_asm+0x1a/0x30
[ 1223.771256][T14075]  </TASK>
[ 1223.774537][T14075] Kernel Offset: disabled
[ 1223.778884][T14075] Rebooting in 86400 seconds..