syzkaller login: [   65.373063][   T37] audit: type=1400 audit(1575094635.284:41): avc:  denied  { map } for  pid=7872 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '[localhost]:20039' (ECDSA) to the list of known hosts.
[   67.173939][   T37] audit: type=1400 audit(1575094637.084:42): avc:  denied  { map } for  pid=7882 comm="syz-fuzzer" path="/syz-fuzzer" dev="sda1" ino=16526 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1
2019/11/30 06:17:17 fuzzer started
2019/11/30 06:17:17 dialing manager at 10.0.2.10:40921
2019/11/30 06:17:17 syscalls: 2533
2019/11/30 06:17:17 code coverage: enabled
2019/11/30 06:17:17 comparison tracing: enabled
2019/11/30 06:17:17 extra coverage: extra coverage is not supported by the kernel
2019/11/30 06:17:17 setuid sandbox: enabled
2019/11/30 06:17:17 namespace sandbox: enabled
2019/11/30 06:17:17 Android sandbox: /sys/fs/selinux/policy does not exist
2019/11/30 06:17:17 fault injection: enabled
2019/11/30 06:17:17 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/11/30 06:17:17 net packet injection: enabled
2019/11/30 06:17:17 net device setup: enabled
2019/11/30 06:17:17 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2019/11/30 06:17:17 devlink PCI setup: PCI device 0000:00:10.0 is not available
06:17:28 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18)
clone(0x2102201ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r2 = dup(r1)
execveat(r2, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

[   78.920367][   T37] audit: type=1400 audit(1575094648.834:43): avc:  denied  { map } for  pid=7904 comm="syz-executor.0" path="/sys/kernel/debug/kcov" dev="debugfs" ino=2059 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1
06:17:28 executing program 1:

[   79.087985][ T7905] IPVS: ftp: loaded support on port[0] = 21
[   79.122825][ T7907] IPVS: ftp: loaded support on port[0] = 21
[   79.181404][ T7905] chnl_net:caif_netlink_parms(): no params data found
[   79.211677][ T7905] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.219231][ T7905] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.227163][ T7905] device bridge_slave_0 entered promiscuous mode
[   79.237191][ T7905] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.244687][ T7905] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.252850][ T7905] device bridge_slave_1 entered promiscuous mode
[   79.290118][ T7905] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.303493][ T7905] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.320189][ T7907] chnl_net:caif_netlink_parms(): no params data found
[   79.337069][ T7905] team0: Port device team_slave_0 added
[   79.346618][ T7905] team0: Port device team_slave_1 added
[   79.373577][ T7907] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.381016][ T7907] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.388910][ T7907] device bridge_slave_0 entered promiscuous mode
[   79.440189][ T7905] device hsr_slave_0 entered promiscuous mode
[   79.498178][ T7905] device hsr_slave_1 entered promiscuous mode
[   79.568752][ T7907] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.575979][ T7907] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.583818][ T7907] device bridge_slave_1 entered promiscuous mode
[   79.601396][ T7907] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.612389][ T7907] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.637183][ T7907] team0: Port device team_slave_0 added
[   79.647042][ T7907] team0: Port device team_slave_1 added
[   79.661178][   T37] audit: type=1400 audit(1575094649.574:44): avc:  denied  { create } for  pid=7905 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[   79.687863][   T37] audit: type=1400 audit(1575094649.574:45): avc:  denied  { write } for  pid=7905 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[   79.712148][   T37] audit: type=1400 audit(1575094649.574:46): avc:  denied  { read } for  pid=7905 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[   79.739996][ T7905] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   79.853836][ T7905] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   79.989897][ T7907] device hsr_slave_0 entered promiscuous mode
[   80.048056][ T7907] device hsr_slave_1 entered promiscuous mode
[   80.107918][ T7907] debugfs: Directory 'hsr0' with parent '/' already present!
[   80.115576][ T7905] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   80.189618][ T7905] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   80.240729][ T7907] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   80.296252][ T7907] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   80.400051][ T7907] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   80.459672][ T7907] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   80.567154][ T7905] 8021q: adding VLAN 0 to HW filter on device bond0
[   80.581618][ T1113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   80.590010][ T1113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   80.601701][ T7905] 8021q: adding VLAN 0 to HW filter on device team0
[   80.612425][ T3073] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   80.621179][ T3073] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   80.629862][ T3073] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.637046][ T3073] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.645809][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   80.661985][ T7907] 8021q: adding VLAN 0 to HW filter on device bond0
[   80.669569][ T3858] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   80.679071][ T3858] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   80.688407][ T3858] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.695599][ T3858] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.716387][ T7905] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   80.727414][ T7905] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   80.740764][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   80.749371][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   80.758136][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   80.768385][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   80.776991][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   80.786184][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   80.794816][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   80.803522][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   80.812349][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   80.820473][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   80.828920][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   80.836758][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   80.852890][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   80.860740][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   80.869815][ T7907] 8021q: adding VLAN 0 to HW filter on device team0
[   80.880908][ T3339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   80.889569][ T3339] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   80.898399][ T3339] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.905499][ T3339] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.915956][ T1113] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   80.926162][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   80.933869][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   80.941445][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   80.950392][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   80.958792][   T18] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.965908][   T18] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.977425][ T7905] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.989269][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   80.990294][   T37] audit: type=1400 audit(1575094650.904:47): avc:  denied  { associate } for  pid=7905 comm="syz-executor.0" name="syz0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1
[   81.008233][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   81.030381][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   81.038799][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   81.047118][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   81.056029][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   81.064247][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   81.072895][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   81.080988][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   81.089379][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   81.098270][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   81.108207][ T7907] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   81.124753][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   81.132770][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   81.145177][ T7907] 8021q: adding VLAN 0 to HW filter on device batadv0
06:17:31 executing program 1:

06:17:31 executing program 1:

06:17:31 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r1, 0x0)
gettid()

06:17:31 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18)
clone(0x2102201ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r2 = dup(r1)
execveat(r2, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

[   81.428091][   T37] audit: type=1400 audit(1575094651.334:48): avc:  denied  { open } for  pid=7926 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=perf_event permissive=1
[   81.498633][   T37] audit: type=1400 audit(1575094651.414:49): avc:  denied  { map } for  pid=7926 comm="syz-executor.1" path="socket:[31507]" dev="sockfs" ino=31507 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=packet_socket permissive=1
06:17:31 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18)
clone(0x2102201ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r2 = dup(r1)
execveat(r2, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:31 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r1, 0x0)
gettid()

06:17:31 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18)
clone(0x2102201ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r2 = dup(r1)
execveat(r2, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:31 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18)
clone(0x2102201ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:31 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r1, 0x0)
gettid()

06:17:31 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18)
clone(0x2102201ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:31 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r1, 0x0)
gettid()

06:17:32 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18)
clone(0x2102201ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:32 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r1, 0x0)

06:17:32 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18)
clone(0x2102201ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = dup(0xffffffffffffffff)
execveat(r1, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:32 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18)
clone(0x2102201ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = dup(0xffffffffffffffff)
execveat(r1, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:32 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
r1 = socket$packet(0x11, 0x3, 0x300)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r1, 0x0)

06:17:32 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18)
clone(0x2102201ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = dup(0xffffffffffffffff)
execveat(r1, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:32 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
r1 = socket$packet(0x11, 0x3, 0x300)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r1, 0x0)

06:17:32 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
r1 = socket$packet(0x11, 0x3, 0x300)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r1, 0x0)

06:17:32 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18)
r1 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r2 = dup(r1)
execveat(r2, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:32 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, 0xffffffffffffffff, 0x0)

06:17:32 executing program 0:
syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x2)
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r1 = dup(r0)
execveat(r1, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:32 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, 0xffffffffffffffff, 0x0)

06:17:32 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, 0xffffffffffffffff, 0x0)

06:17:32 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r1 = dup(r0)
execveat(r1, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:32 executing program 0:
r0 = memfd_create(0x0, 0x0)
r1 = dup(r0)
execveat(r1, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:32 executing program 0:
r0 = memfd_create(0x0, 0x0)
r1 = dup(r0)
execveat(r1, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:32 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r1, 0x0)

06:17:32 executing program 0:
r0 = memfd_create(0x0, 0x0)
r1 = dup(r0)
execveat(r1, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:32 executing program 0:
memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r0 = dup(0xffffffffffffffff)
execveat(r0, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:32 executing program 0:
memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r0 = dup(0xffffffffffffffff)
execveat(r0, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:33 executing program 0:
memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r0 = dup(0xffffffffffffffff)
execveat(r0, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:33 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
mmap$xdp(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0x852, 0xffffffffffffffff, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r1, 0x0)

06:17:33 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
dup(r0)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:33 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
dup(r0)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:33 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
dup(r0)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x1000)

06:17:33 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r1 = dup(r0)
execveat(r1, 0x0, &(0x7f0000000140), 0x0, 0x1000)

06:17:33 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r1, 0x0)

06:17:33 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r1 = dup(r0)
execveat(r1, 0x0, &(0x7f0000000140), 0x0, 0x1000)

06:17:33 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r1 = dup(r0)
execveat(r1, 0x0, &(0x7f0000000140), 0x0, 0x1000)

06:17:33 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r1 = dup(r0)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

[   83.487568][ T8128] ERROR: Domain '<kernel> /sbin/init /sbin/init /etc/init.d/rc /sbin/startpar /etc/init.d/ssh /sbin/start-stop-daemon /usr/sbin/sshd /usr/sbin/sshd /bin/bash /syz-fuzzer /syz-executor.0 proc:/self/fd/4' not defined.
06:17:33 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r1 = dup(r0)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

06:17:33 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
dup2(0xffffffffffffffff, r0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r1, 0x0)

06:17:33 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r1 = dup(r0)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

06:17:33 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r1 = dup(r0)
execveat(r1, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x0)

06:17:33 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r1 = dup(r0)
execveat(r1, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x0)

06:17:33 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='\xab\x05\xae\xa8\x17\xe4\x93\xf4\xe4a\xa2(\t\x00\x81\xafu', 0x0)
r1 = dup(r0)
execveat(r1, &(0x7f0000000000)='\x00', &(0x7f0000000140), 0x0, 0x0)

06:17:33 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

06:17:33 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:33 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:33 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:33 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

06:17:33 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:33 executing program 0:
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:33 executing program 0:
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

06:17:34 executing program 0:
write$tun(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
write$tun(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
write$tun(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
r0 = open(0x0, 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

06:17:34 executing program 0:
r0 = open(0x0, 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
r0 = open(0x0, 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
open(0x0, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

06:17:34 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

06:17:34 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, 0x0, 0x0)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, 0x0, 0x0)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, 0x0, 0x0)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[], 0x0)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

06:17:34 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[], 0x0)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[], 0x0)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:34 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(0x0, 0x0)

06:17:35 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(0x0, 0x0)

06:17:35 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
socket$inet6(0xa, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

06:17:35 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(0x0, 0x0)

06:17:35 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:35 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:35 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[0x0], 0x1}, 0x50)

06:17:35 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

06:17:35 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

06:17:35 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

06:17:35 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

06:17:35 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)}, 0x50)

06:17:35 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
getpgrp(0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

06:17:35 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)}, 0x50)

06:17:35 executing program 0:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1)
clone3(&(0x7f00000007c0)={0x83802900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)}, 0x50)

06:17:35 executing program 0:
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
request_key(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz', 0x1}, &(0x7f0000000280)='\x00', 0xffffffffffffffff)

[   85.737795][    C1] hrtimer: interrupt took 49636 ns
06:17:35 executing program 1:
socket(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000280))
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x118)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

[  238.568136][ T1114] INFO: task syz-executor.1:8350 blocked for more than 143 seconds.
[  238.578856][ T1114]       Not tainted 5.4.0-syzkaller #0
[  238.586024][ T1114] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  238.597370][ T1114] syz-executor.1  D28800  8350   7907 0x00000004
[  238.605864][ T1114] Call Trace:
[  238.610821][ T1114]  __schedule+0x8e1/0x1f30
[  238.616734][ T1114]  ? __sched_text_start+0x8/0x8
[  238.623293][ T1114]  ? __kasan_check_read+0x11/0x20
[  238.631328][ T1114]  ? __lock_acquire+0x16f2/0x4a00
[  238.638909][ T1114]  schedule+0xdc/0x2b0
[  238.644727][ T1114]  schedule_timeout+0x717/0xc50
[  238.651370][ T1114]  ? __kasan_check_read+0x11/0x20
[  238.658482][ T1114]  ? usleep_range+0x170/0x170
[  238.664578][ T1114]  ? mark_held_locks+0xa4/0xf0
[  238.670799][ T1114]  ? _raw_spin_unlock_irq+0x23/0x80
[  238.677965][ T1114]  ? wait_for_completion+0x294/0x440
[  238.684975][ T1114]  ? _raw_spin_unlock_irq+0x23/0x80
[  238.692060][ T1114]  ? lockdep_hardirqs_on+0x421/0x5e0
[  238.699184][ T1114]  ? trace_hardirqs_on+0x67/0x240
[  238.706080][ T1114]  wait_for_completion+0x29c/0x440
[  238.713235][ T1114]  ? wait_for_completion_interruptible+0x470/0x470
[  238.721973][ T1114]  ? wake_up_q+0x140/0x140
[  238.727904][ T1114]  __wait_rcu_gp+0x225/0x2f0
[  238.732690][ T1114]  synchronize_rcu.part.0+0xcf/0xe0
[  238.738069][ T1114]  ? synchronize_rcu_expedited+0x5f0/0x5f0
[  238.744312][ T1114]  ? __call_rcu+0x740/0x740
[  238.748995][ T1114]  ? rcu_gp_is_expedited+0x70/0x70
[  238.754736][ T1114]  synchronize_rcu+0x27/0xa0
[  238.759662][ T1114]  synchronize_net+0x4d/0x60
[  238.764522][ T1114]  packet_set_ring+0x23c/0x1b60
[  238.769593][ T1114]  ? packet_sendmsg_spkt+0x14b0/0x14b0
[  238.775264][ T1114]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  238.782249][ T1114]  ? _copy_from_user+0x12c/0x1a0
[  238.787285][ T1114]  packet_setsockopt+0x530/0x2df0
[  238.792596][ T1114]  ? sock_has_perm+0x214/0x2b0
[  238.797648][ T1114]  ? packet_release+0xdd0/0xdd0
[  238.802797][ T1114]  ? selinux_netlbl_sock_rcv_skb+0x4f0/0x4f0
[  238.808962][ T1114]  ? selinux_socket_setsockopt+0x6f/0x90
[  238.814963][ T1114]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  238.821506][ T1114]  __sys_setsockopt+0x261/0x4c0
[  238.826483][ T1114]  ? sock_create_kern+0x50/0x50
[  238.831750][ T1114]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  238.837383][ T1114]  ? do_syscall_64+0x26/0x790
[  238.842344][ T1114]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  238.848731][ T1114]  ? do_syscall_64+0x26/0x790
[  238.853655][ T1114]  __x64_sys_setsockopt+0xbe/0x150
[  238.859114][ T1114]  do_syscall_64+0xfa/0x790
[  238.863944][ T1114]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  238.870080][ T1114] RIP: 0033:0x45a759
[  238.874083][ T1114] Code: 8b 6c 24 20 48 83 c4 28 c3 48 8b 1d e1 67 67 01 48 8d 0c 19 48 8d 49 ff 48 ff cb 48 f7 d3 48 21 d9 e9 0c ff ff ff 48 8b 6c 24 <20> 48 83 c4 28 c3 48 89 d8 b9 00 00 40 00 e8 14 4f 00 00 4c 89 c0
[  238.895248][ T1114] RSP: 002b:00007f8148baac88 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  238.904185][ T1114] RAX: ffffffffffffffda RBX: 000000000071bf00 RCX: 000000000045a759
[  238.912496][ T1114] RDX: 000000000000000d RSI: 0000000000000107 RDI: 0000000000000003
[  238.921196][ T1114] RBP: 0000000000000005 R08: 0000000000000118 R09: 0000000000000000
[  238.929427][ T1114] R10: 0000000020000040 R11: 0000000000000246 R12: 00007f8148bab6d4
[  238.937752][ T1114] R13: 00000000004b0a00 R14: 00000000006f5470 R15: 00000000ffffffff
[  238.946678][ T1114] 
[  238.946678][ T1114] Showing all locks held in the system:
[  238.954968][ T1114] 1 lock held by khungtaskd/1114:
[  238.960307][ T1114]  #0: ffffffff895a4080 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x279
[  238.970125][ T1114] 2 locks held by rsyslogd/7728:
[  238.975181][ T1114]  #0: ffff8880279908e0 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xee/0x110
[  238.984105][ T1114]  #1: ffff88802cc01818 (&(&parent->list_lock)->rlock){-.-.}, at: __might_fault+0xfb/0x1e0
[  238.994506][ T1114] 2 locks held by getty/7852:
[  238.999505][ T1114]  #0: ffff8880267ef090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  239.008855][ T1114]  #1: ffffc900026de2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  239.018849][ T1114] 2 locks held by getty/7853:
[  239.023625][ T1114]  #0: ffff88802aac5090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  239.033183][ T1114]  #1: ffffc900026fe2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  239.043246][ T1114] 2 locks held by getty/7854:
[  239.048284][ T1114]  #0: ffff88802c474090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  239.057411][ T1114]  #1: ffffc900026f62e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  239.067520][ T1114] 2 locks held by getty/7855:
[  239.072393][ T1114]  #0: ffff88802a3d0090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  239.081821][ T1114]  #1: ffffc900026fa2e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  239.091674][ T1114] 2 locks held by getty/7856:
[  239.096546][ T1114]  #0: ffff8880267ed090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  239.106570][ T1114]  #1: ffffc900040022e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  239.116456][ T1114] 2 locks held by getty/7857:
[  239.121247][ T1114]  #0: ffff88802b5f4090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  239.130317][ T1114]  #1: ffffc900026e62e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  239.140176][ T1114] 2 locks held by getty/7858:
[  239.144829][ T1114]  #0: ffff88802a577090 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[  239.153852][ T1114]  #1: ffffc900026d22e0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1c10
[  239.163581][ T1114] 3 locks held by syz-executor.0/8346:
[  239.169347][ T1114] 1 lock held by syz-executor.1/8350:
[  239.174900][ T1114]  #0: ffff88802b7a6110 (sk_lock-AF_PACKET){+.+.}, at: packet_setsockopt+0x447/0x2df0
[  239.184608][ T1114] 
[  239.187006][ T1114] =============================================
[  239.187006][ T1114] 
[  239.195765][ T1114] NMI backtrace for cpu 1
[  239.200215][ T1114] CPU: 1 PID: 1114 Comm: khungtaskd Not tainted 5.4.0-syzkaller #0
[  239.207922][ T1114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014
[  239.210154][ T1114] Call Trace:
[  239.210154][ T1114]  dump_stack+0x197/0x210
[  239.210154][ T1114]  nmi_cpu_backtrace.cold+0x70/0xb2
[  239.210154][ T1114]  ? vprintk_func+0x86/0x189
[  239.210154][ T1114]  ? lapic_can_unplug_cpu.cold+0x3a/0x3a
[  239.210154][ T1114]  nmi_trigger_cpumask_backtrace+0x23b/0x28b
[  239.210154][ T1114]  arch_trigger_cpumask_backtrace+0x14/0x20
[  239.210154][ T1114]  watchdog+0xb11/0x10c0
[  239.210154][ T1114]  kthread+0x361/0x430
[  239.210154][ T1114]  ? reset_hung_task_detector+0x30/0x30
[  239.210154][ T1114]  ? kthread_mod_delayed_work+0x1f0/0x1f0
[  239.210154][ T1114]  ret_from_fork+0x24/0x30
[  239.279205][ T1114] Sending NMI from CPU 1 to CPUs 0,2-3:
[  239.285036][    C3] NMI backtrace for cpu 3 skipped: idling at native_safe_halt+0xe/0x10
[  239.285049][    C2] NMI backtrace for cpu 2 skipped: idling at native_safe_halt+0xe/0x10
[  239.285769][    C0] NMI backtrace for cpu 0
[  239.285774][    C0] CPU: 0 PID: 8346 Comm: syz-executor.0 Not tainted 5.4.0-syzkaller #0
[  239.285779][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014
[  239.285782][    C0] RIP: 0010:__hrtimer_run_queues+0x2fb/0xe40
[  239.285790][    C0] Code: 28 48 8b b5 38 ff ff ff 48 8b bd 70 ff ff ff 48 89 85 48 ff ff ff e8 74 e4 54 06 0f 1f 44 00 00 e8 ba b4 0f 00 e8 b5 b4 0f 00 <65> 8b 1d e6 89 9c 7e bf 3f 00 00 00 89 de e8 22 b6 0f 00 83 fb 3f
[  239.285793][    C0] RSP: 0018:ffff88802d2097d8 EFLAGS: 00000006
[  239.285799][    C0] RAX: ffff8880298a8380 RBX: 0000000000000000 RCX: 0000000000000000
[  239.285802][    C0] RDX: 0000000000010100 RSI: ffffffff8165296b RDI: 0000000000000001
[  239.285806][    C0] RBP: ffff88802d2098c8 R08: ffff8880298a8380 R09: ffffed1005a45279
[  239.285809][    C0] R10: ffffed1005a45278 R11: ffff88802d2293c3 R12: 00000037a9368c77
[  239.285813][    C0] R13: ffff888021937160 R14: ffff88802d229440 R15: dffffc0000000000
[  239.285817][    C0] FS:  00007f4ab8318700(0000) GS:ffff88802d200000(0000) knlGS:0000000000000000
[  239.285820][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  239.285823][    C0] CR2: 000000c00187f000 CR3: 0000000072471000 CR4: 00000000003406f0
[  239.285827][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  239.285830][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  239.285832][    C0] Call Trace:
[  239.285834][    C0]  <IRQ>
[  239.285836][    C0]  ? __perf_event_overflow+0x370/0x370
[  239.285839][    C0]  ? hrtimer_init+0x330/0x330
[  239.285842][    C0]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  239.285844][    C0]  ? ktime_get_update_offsets_now+0x2ce/0x430
[  239.285847][    C0]  hrtimer_interrupt+0x314/0x770
[  239.285850][    C0]  smp_apic_timer_interrupt+0x160/0x610
[  239.285852][    C0]  apic_timer_interrupt+0xf/0x20
[  239.285855][    C0] RIP: 0010:memcg_kmem_put_cache+0x0/0x50
[  239.285862][    C0] Code: ff 4c 89 ff e8 01 50 f9 ff e9 17 fe ff ff 4c 89 f7 e8 f4 4f f9 ff e9 c4 fd ff ff 0f 1f 44 00 00 66 2e 0f 1f 84 00 00 00 00 00 <48> b8 00 00 00 00 00 fc ff df 55 48 89 e5 53 48 89 fb 48 83 ef 80
[  239.285865][    C0] RSP: 0018:ffff88802d209a78 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[  239.285871][    C0] RAX: ffff888016a08cc0 RBX: 0000000000000a20 RCX: 000000000000000b
[  239.285875][    C0] RDX: 0000000000000000 RSI: 000000000000000a RDI: ffff88807aad2000
[  239.285878][    C0] RBP: ffff88802d209af0 R08: 00000000c0cf729b R09: ffff8880298a8c10
[  239.285882][    C0] R10: fffffbfff146dba0 R11: ffffffff8a36dd07 R12: ffff88807aad2000
[  239.285885][    C0] R13: ffff88807aad2000 R14: ffff888016a08cc0 R15: 0000000000000282
[  239.285888][    C0]  ? apic_timer_interrupt+0xa/0x20
[  239.285890][    C0]  ? kmem_cache_alloc_node+0x280/0x740
[  239.285893][    C0]  ? ipv6_get_lladdr+0x308/0x490
[  239.285895][    C0]  __alloc_skb+0xd5/0x5e0
[  239.285898][    C0]  ? __kmalloc_reserve.isra.0+0xf0/0xf0
[  239.285900][    C0]  ? __kasan_check_read+0x11/0x20
[  239.285902][    C0]  ndisc_alloc_skb+0x13c/0x340
[  239.285905][    C0]  ndisc_send_rs+0x39b/0x720
[  239.285907][    C0]  addrconf_rs_timer+0x30f/0x6e0
[  239.285910][    C0]  ? ipv6_get_lladdr+0x490/0x490
[  239.285912][    C0]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[  239.285915][    C0]  call_timer_fn+0x1ac/0x780
[  239.285917][    C0]  ? ipv6_get_lladdr+0x490/0x490
[  239.285920][    C0]  ? msleep_interruptible+0x150/0x150
[  239.285922][    C0]  ? run_timer_softirq+0x6b1/0x1790
[  239.285925][    C0]  ? trace_hardirqs_on+0x67/0x240
[  239.285927][    C0]  ? ipv6_get_lladdr+0x490/0x490
[  239.285930][    C0]  ? ipv6_get_lladdr+0x490/0x490
[  239.285932][    C0]  run_timer_softirq+0x6c3/0x1790
[  239.285934][    C0]  ? add_timer+0x930/0x930
[  239.285937][    C0]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  239.285940][    C0]  ? rcu_read_lock_sched_held+0x9c/0xd0
[  239.285943][    C0]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[  239.285945][    C0]  __do_softirq+0x262/0x98c
[  239.285947][    C0]  ? sched_clock_cpu+0x14e/0x1b0
[  239.285950][    C0]  irq_exit+0x19b/0x1e0
[  239.285952][    C0]  smp_apic_timer_interrupt+0x1a3/0x610
[  239.285955][    C0]  apic_timer_interrupt+0xf/0x20
[  239.285956][    C0]  </IRQ>
[  239.285959][    C0] RIP: 0010:_raw_spin_unlock_irq+0x4f/0x80
[  239.285967][    C0] Code: c0 68 34 53 89 48 ba 00 00 00 00 00 fc ff df 48 c1 e8 03 80 3c 10 00 75 33 48 83 3d 12 2a 99 01 00 74 20 fb 66 0f 1f 44 00 00 <bf> 01 00 00 00 e8 e7 6b 96 f9 65 8b 05 18 14 48 78 85 c0 74 06 41
[  239.285970][    C0] RSP: 0018:ffff88807053f8d8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[  239.285976][    C0] RAX: 1ffffffff12a668d RBX: ffff8880298a8380 RCX: 0000000000000006
[  239.285980][    C0] RDX: dffffc0000000000 RSI: 0000000000000008 RDI: ffff8880298a8c14
[  239.285983][    C0] RBP: ffff88807053f8e0 R08: 1ffffffff15d29b8 R09: fffffbfff15d29b9
[  239.285987][    C0] R10: fffffbfff15d29b8 R11: ffffffff8ae94dc7 R12: ffff88802d237380
[  239.286002][    C0] R13: ffffffff8947a1c0 R14: ffff888025be2f40 R15: 0000000000000000
[  239.286005][    C0]  ? _raw_spin_unlock_irq+0x23/0x80
[  239.286007][    C0]  finish_task_switch+0x147/0x750
[  239.286009][    C0]  ? finish_task_switch+0x119/0x750
[  239.286012][    C0]  __schedule+0x8e9/0x1f30
[  239.286014][    C0]  ? __sched_text_start+0x8/0x8
[  239.286016][    C0]  ? __this_cpu_preempt_check+0x35/0x190
[  239.286019][    C0]  ? retint_kernel+0x2b/0x2b
[  239.286021][    C0]  ? perf_duration_warn+0x40/0x40
[  239.286023][    C0]  ? preempt_schedule+0x4b/0x60
[  239.286026][    C0]  preempt_schedule_common+0x4f/0xe0
[  239.286028][    C0]  ? __perf_event_enable+0x930/0x930
[  239.286031][    C0]  preempt_schedule+0x4b/0x60
[  239.286033][    C0]  ___preempt_schedule+0x16/0x18
[  239.286036][    C0]  ? smp_call_function_single+0x40b/0x480
[  239.286038][    C0]  smp_call_function_single+0x410/0x480
[  239.286041][    C0]  ? perf_duration_warn+0x40/0x40
[  239.286043][    C0]  ? generic_exec_single+0x4c0/0x4c0
[  239.286046][    C0]  ? __do_sys_perf_event_open+0x174c/0x2c70
[  239.286048][    C0]  ? __perf_event_enable+0x930/0x930
[  239.286050][    C0]  task_function_call+0xe9/0x180
[  239.286053][    C0]  ? perf_event_addr_filters_exec+0x310/0x310
[  239.286056][    C0]  ? __do_sys_perf_event_open+0x174c/0x2c70
[  239.286058][    C0]  ? __perf_event_enable+0x930/0x930
[  239.286061][    C0]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  239.286064][    C0]  ? exclusive_event_installable+0x257/0x320
[  239.286066][    C0]  perf_install_in_context+0x308/0x5a0
[  239.286069][    C0]  ? list_add_event+0xed0/0xed0
[  239.286072][    C0]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  239.286074][    C0]  ? __perf_event_header_size.isra.0+0x166/0x1c0
[  239.286082][    C0]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  239.286084][    C0]  __do_sys_perf_event_open+0x1cbc/0x2c70
[  239.286087][    C0]  ? perf_event_set_output+0x4e0/0x4e0
[  239.286089][    C0]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  239.286092][    C0]  ? put_timespec64+0xda/0x140
[  239.286094][    C0]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  239.286097][    C0]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  239.286099][    C0]  ? do_syscall_64+0x26/0x790
[  239.286102][    C0]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  239.286104][    C0]  ? do_syscall_64+0x26/0x790
[  239.286107][    C0]  __x64_sys_perf_event_open+0xbe/0x150
[  239.286109][    C0]  do_syscall_64+0xfa/0x790
[  239.286111][    C0]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  239.286113][    C0] RIP: 0033:0x45a759
[  239.286121][    C0] Code: bd b1 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 8b b1 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  239.286123][    C0] RSP: 002b:00007f4ab8317c88 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  239.286129][    C0] RAX: ffffffffffffffda RBX: 000000000071bf00 RCX: 000000000045a759
[  239.286132][    C0] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000080
[  239.286136][    C0] RBP: 0000000000000005 R08: 0000000000000000 R09: 0000000000000000
[  239.286139][    C0] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f4ab83186d4
[  239.286143][    C0] R13: 00000000004aec2b R14: 00000000006f1ca8 R15: 00000000ffffffff
[  239.286207][ T1114] Kernel panic - not syncing: hung_task: blocked tasks
[  240.007892][ T1114] CPU: 1 PID: 1114 Comm: khungtaskd Not tainted 5.4.0-syzkaller #0
[  240.007892][ T1114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014
[  240.007892][ T1114] Call Trace:
[  240.007892][ T1114]  dump_stack+0x197/0x210
[  240.007892][ T1114]  panic+0x2e3/0x75c
[  240.007892][ T1114]  ? add_taint.cold+0x16/0x16
[  240.007892][ T1114]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  240.007892][ T1114]  ? printk_safe_flush+0xf2/0x140
[  240.007892][ T1114]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  240.007892][ T1114]  ? nmi_trigger_cpumask_backtrace+0x224/0x28b
[  240.007892][ T1114]  ? nmi_trigger_cpumask_backtrace+0x21b/0x28b
[  240.007892][ T1114]  watchdog+0xb22/0x10c0
[  240.007892][ T1114]  kthread+0x361/0x430
[  240.007892][ T1114]  ? reset_hung_task_detector+0x30/0x30
[  240.007892][ T1114]  ? kthread_mod_delayed_work+0x1f0/0x1f0
[  240.007892][ T1114]  ret_from_fork+0x24/0x30
[  240.007892][ T1114] Kernel Offset: disabled
[  240.007892][ T1114] Rebooting in 86400 seconds..