syzkaller login: [  279.933135][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  279.976691][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  280.014083][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  280.049149][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  288.455197][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
Warning: Permanently added '[localhost]:31435' (ECDSA) to the list of known hosts.
1970/01/01 00:05:58 fuzzer started
1970/01/01 00:06:11 dialing manager at localhost:35669
[  376.867372][ T2032] cgroup: Unknown subsys name 'net'
[  377.954607][ T2032] cgroup: Unknown subsys name 'rlimit'
1970/01/01 00:06:17 syscalls: 2918
1970/01/01 00:06:17 code coverage: enabled
1970/01/01 00:06:17 comparison tracing: enabled
1970/01/01 00:06:17 extra coverage: enabled
1970/01/01 00:06:17 delay kcov mmap: mmap returned an invalid pointer
1970/01/01 00:06:17 setuid sandbox: enabled
1970/01/01 00:06:17 namespace sandbox: enabled
1970/01/01 00:06:17 Android sandbox: /sys/fs/selinux/policy does not exist
1970/01/01 00:06:17 fault injection: enabled
1970/01/01 00:06:17 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
1970/01/01 00:06:17 net packet injection: enabled
1970/01/01 00:06:17 net device setup: enabled
1970/01/01 00:06:17 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
1970/01/01 00:06:17 devlink PCI setup: PCI device 0000:00:10.0 is not available
1970/01/01 00:06:17 NIC VF setup: PCI device 0000:00:11.0 is not available
1970/01/01 00:06:17 USB emulation: enabled
1970/01/01 00:06:17 hci packet injection: /dev/vhci does not exist
1970/01/01 00:06:17 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist
1970/01/01 00:06:17 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist
1970/01/01 00:06:18 fetching corpus: 0, signal 0/2000 (executing program)
1970/01/01 00:06:22 fetching corpus: 49, signal 31458/35035 (executing program)
1970/01/01 00:06:25 fetching corpus: 98, signal 46658/51695 (executing program)
1970/01/01 00:06:29 fetching corpus: 148, signal 54452/60935 (executing program)
1970/01/01 00:06:31 fetching corpus: 197, signal 58815/66758 (executing program)
1970/01/01 00:06:33 fetching corpus: 247, signal 65394/74644 (executing program)
1970/01/01 00:06:35 fetching corpus: 297, signal 69925/80488 (executing program)
1970/01/01 00:06:37 fetching corpus: 346, signal 73930/85783 (executing program)
1970/01/01 00:06:40 fetching corpus: 396, signal 81364/94244 (executing program)
1970/01/01 00:06:43 fetching corpus: 446, signal 85235/99240 (executing program)
1970/01/01 00:06:46 fetching corpus: 496, signal 87352/102582 (executing program)
1970/01/01 00:06:48 fetching corpus: 546, signal 89766/106179 (executing program)
1970/01/01 00:06:51 fetching corpus: 596, signal 92937/110412 (executing program)
1970/01/01 00:06:54 fetching corpus: 644, signal 96445/114906 (executing program)
1970/01/01 00:06:56 fetching corpus: 694, signal 100234/119594 (executing program)
1970/01/01 00:06:59 fetching corpus: 744, signal 102150/122576 (executing program)
1970/01/01 00:07:01 fetching corpus: 794, signal 105329/126612 (executing program)
1970/01/01 00:07:05 fetching corpus: 844, signal 107891/130151 (executing program)
1970/01/01 00:07:07 fetching corpus: 893, signal 110394/133574 (executing program)
1970/01/01 00:07:10 fetching corpus: 942, signal 112304/136473 (executing program)
1970/01/01 00:07:12 fetching corpus: 992, signal 115175/140110 (executing program)
1970/01/01 00:07:15 fetching corpus: 1042, signal 117004/142827 (executing program)
1970/01/01 00:07:17 fetching corpus: 1092, signal 118477/145218 (executing program)
1970/01/01 00:07:19 fetching corpus: 1142, signal 120554/148104 (executing program)
1970/01/01 00:07:21 fetching corpus: 1192, signal 122652/151009 (executing program)
1970/01/01 00:07:23 fetching corpus: 1242, signal 125159/154203 (executing program)
1970/01/01 00:07:25 fetching corpus: 1292, signal 126579/156416 (executing program)
1970/01/01 00:07:27 fetching corpus: 1342, signal 128162/158808 (executing program)
1970/01/01 00:07:30 fetching corpus: 1392, signal 130220/161523 (executing program)
1970/01/01 00:07:32 fetching corpus: 1441, signal 131622/163678 (executing program)
1970/01/01 00:07:34 fetching corpus: 1491, signal 133674/166312 (executing program)
1970/01/01 00:07:36 fetching corpus: 1540, signal 134719/168169 (executing program)
1970/01/01 00:07:39 fetching corpus: 1590, signal 136112/170311 (executing program)
1970/01/01 00:07:41 fetching corpus: 1640, signal 137306/172225 (executing program)
1970/01/01 00:07:43 fetching corpus: 1689, signal 138654/174276 (executing program)
1970/01/01 00:07:46 fetching corpus: 1739, signal 139587/175980 (executing program)
1970/01/01 00:07:49 fetching corpus: 1789, signal 141672/178557 (executing program)
1970/01/01 00:07:53 fetching corpus: 1839, signal 143194/180693 (executing program)
1970/01/01 00:07:56 fetching corpus: 1889, signal 144569/182667 (executing program)
1970/01/01 00:07:58 fetching corpus: 1938, signal 145981/184660 (executing program)
1970/01/01 00:08:00 fetching corpus: 1988, signal 147465/186691 (executing program)
1970/01/01 00:08:01 fetching corpus: 2038, signal 148818/188621 (executing program)
1970/01/01 00:08:04 fetching corpus: 2087, signal 150178/190507 (executing program)
1970/01/01 00:08:06 fetching corpus: 2136, signal 151188/192169 (executing program)
1970/01/01 00:08:09 fetching corpus: 2186, signal 152502/194042 (executing program)
1970/01/01 00:08:10 fetching corpus: 2236, signal 153902/195901 (executing program)
1970/01/01 00:08:12 fetching corpus: 2286, signal 154788/197402 (executing program)
1970/01/01 00:08:16 fetching corpus: 2335, signal 155890/198984 (executing program)
1970/01/01 00:08:18 fetching corpus: 2383, signal 156516/200285 (executing program)
1970/01/01 00:08:21 fetching corpus: 2433, signal 157779/201923 (executing program)
1970/01/01 00:08:24 fetching corpus: 2483, signal 159418/203883 (executing program)
1970/01/01 00:08:26 fetching corpus: 2533, signal 160665/205512 (executing program)
1970/01/01 00:08:29 fetching corpus: 2583, signal 162452/207497 (executing program)
1970/01/01 00:08:31 fetching corpus: 2633, signal 163659/209115 (executing program)
1970/01/01 00:08:33 fetching corpus: 2683, signal 164493/210453 (executing program)
1970/01/01 00:08:35 fetching corpus: 2732, signal 165184/211712 (executing program)
1970/01/01 00:08:38 fetching corpus: 2781, signal 165889/212951 (executing program)
1970/01/01 00:08:42 fetching corpus: 2830, signal 166668/214218 (executing program)
1970/01/01 00:08:45 fetching corpus: 2877, signal 167809/215711 (executing program)
1970/01/01 00:08:47 fetching corpus: 2926, signal 168804/217087 (executing program)
1970/01/01 00:08:51 fetching corpus: 2974, signal 170039/218579 (executing program)
1970/01/01 00:08:52 fetching corpus: 3024, signal 170847/219811 (executing program)
1970/01/01 00:08:54 fetching corpus: 3073, signal 171974/221247 (executing program)
1970/01/01 00:08:58 fetching corpus: 3122, signal 173088/222593 (executing program)
1970/01/01 00:09:00 fetching corpus: 3171, signal 173884/223825 (executing program)
1970/01/01 00:09:02 fetching corpus: 3221, signal 174780/225052 (executing program)
1970/01/01 00:09:04 fetching corpus: 3270, signal 175485/226233 (executing program)
1970/01/01 00:09:06 fetching corpus: 3320, signal 176421/227483 (executing program)
1970/01/01 00:09:09 fetching corpus: 3369, signal 177164/228573 (executing program)
1970/01/01 00:09:11 fetching corpus: 3419, signal 178961/230231 (executing program)
1970/01/01 00:09:13 fetching corpus: 3468, signal 179602/231272 (executing program)
1970/01/01 00:09:15 fetching corpus: 3518, signal 180641/232485 (executing program)
1970/01/01 00:09:17 fetching corpus: 3568, signal 181368/233542 (executing program)
1970/01/01 00:09:20 fetching corpus: 3618, signal 182401/234730 (executing program)
1970/01/01 00:09:21 fetching corpus: 3667, signal 183293/235865 (executing program)
1970/01/01 00:09:23 fetching corpus: 3717, signal 183959/236857 (executing program)
1970/01/01 00:09:25 fetching corpus: 3767, signal 184507/237818 (executing program)
1970/01/01 00:09:28 fetching corpus: 3817, signal 185635/239033 (executing program)
1970/01/01 00:09:30 fetching corpus: 3866, signal 187357/240428 (executing program)
1970/01/01 00:09:32 fetching corpus: 3916, signal 188273/241502 (executing program)
1970/01/01 00:09:35 fetching corpus: 3966, signal 188900/242432 (executing program)
1970/01/01 00:09:37 fetching corpus: 4015, signal 189491/243308 (executing program)
1970/01/01 00:09:39 fetching corpus: 4064, signal 190328/244303 (executing program)
1970/01/01 00:09:42 fetching corpus: 4113, signal 190881/245150 (executing program)
1970/01/01 00:09:45 fetching corpus: 4163, signal 191713/246090 (executing program)
1970/01/01 00:09:47 fetching corpus: 4212, signal 192522/247032 (executing program)
1970/01/01 00:09:49 fetching corpus: 4261, signal 193043/247851 (executing program)
1970/01/01 00:09:51 fetching corpus: 4311, signal 194025/248770 (executing program)
1970/01/01 00:09:53 fetching corpus: 4361, signal 194790/249660 (executing program)
1970/01/01 00:09:56 fetching corpus: 4411, signal 195471/250518 (executing program)
1970/01/01 00:09:59 fetching corpus: 4459, signal 195984/251338 (executing program)
1970/01/01 00:10:01 fetching corpus: 4509, signal 196528/252140 (executing program)
1970/01/01 00:10:04 fetching corpus: 4558, signal 197253/252995 (executing program)
1970/01/01 00:10:06 fetching corpus: 4607, signal 197703/253747 (executing program)
1970/01/01 00:10:11 fetching corpus: 4657, signal 198143/254487 (executing program)
1970/01/01 00:10:12 fetching corpus: 4707, signal 198688/255233 (executing program)
1970/01/01 00:10:15 fetching corpus: 4756, signal 199496/256047 (executing program)
1970/01/01 00:10:16 fetching corpus: 4806, signal 199961/256787 (executing program)
1970/01/01 00:10:19 fetching corpus: 4856, signal 200751/257586 (executing program)
1970/01/01 00:10:22 fetching corpus: 4905, signal 201405/258367 (executing program)
1970/01/01 00:10:24 fetching corpus: 4955, signal 202007/259074 (executing program)
1970/01/01 00:10:26 fetching corpus: 5004, signal 202487/259803 (executing program)
1970/01/01 00:10:28 fetching corpus: 5054, signal 203119/260489 (executing program)
1970/01/01 00:10:30 fetching corpus: 5104, signal 203612/261144 (executing program)
1970/01/01 00:10:33 fetching corpus: 5154, signal 204043/261839 (executing program)
1970/01/01 00:10:35 fetching corpus: 5204, signal 204896/262553 (executing program)
1970/01/01 00:10:37 fetching corpus: 5253, signal 205817/263306 (executing program)
1970/01/01 00:10:39 fetching corpus: 5303, signal 206428/263989 (executing program)
1970/01/01 00:10:41 fetching corpus: 5352, signal 206982/264659 (executing program)
1970/01/01 00:10:44 fetching corpus: 5402, signal 207847/265354 (executing program)
1970/01/01 00:10:47 fetching corpus: 5452, signal 208577/266013 (executing program)
1970/01/01 00:10:49 fetching corpus: 5502, signal 209214/266654 (executing program)
1970/01/01 00:10:51 fetching corpus: 5552, signal 209954/267311 (executing program)
1970/01/01 00:10:53 fetching corpus: 5601, signal 210283/267846 (executing program)
1970/01/01 00:10:56 fetching corpus: 5651, signal 210750/268451 (executing program)
1970/01/01 00:10:59 fetching corpus: 5701, signal 211219/269046 (executing program)
1970/01/01 00:11:01 fetching corpus: 5751, signal 211992/269711 (executing program)
1970/01/01 00:11:03 fetching corpus: 5800, signal 212653/270316 (executing program)
1970/01/01 00:11:07 fetching corpus: 5850, signal 213194/270922 (executing program)
1970/01/01 00:11:12 fetching corpus: 5898, signal 213814/271502 (executing program)
1970/01/01 00:11:15 fetching corpus: 5944, signal 214527/272071 (executing program)
1970/01/01 00:11:18 fetching corpus: 5994, signal 215083/272634 (executing program)
1970/01/01 00:11:20 fetching corpus: 6043, signal 215568/273175 (executing program)
1970/01/01 00:11:24 fetching corpus: 6092, signal 216251/273716 (executing program)
1970/01/01 00:11:27 fetching corpus: 6139, signal 216749/274240 (executing program)
1970/01/01 00:11:30 fetching corpus: 6188, signal 217274/274766 (executing program)
1970/01/01 00:11:32 fetching corpus: 6237, signal 218025/275302 (executing program)
1970/01/01 00:11:34 fetching corpus: 6287, signal 218496/275807 (executing program)
1970/01/01 00:11:36 fetching corpus: 6337, signal 218920/276271 (executing program)
1970/01/01 00:11:38 fetching corpus: 6385, signal 219435/276768 (executing program)
1970/01/01 00:11:39 fetching corpus: 6434, signal 219831/277226 (executing program)
1970/01/01 00:11:42 fetching corpus: 6484, signal 220136/277671 (executing program)
1970/01/01 00:11:45 fetching corpus: 6534, signal 220588/278119 (executing program)
1970/01/01 00:11:48 fetching corpus: 6584, signal 221011/278650 (executing program)
1970/01/01 00:11:50 fetching corpus: 6634, signal 221372/279105 (executing program)
1970/01/01 00:11:52 fetching corpus: 6682, signal 221810/279543 (executing program)
1970/01/01 00:11:54 fetching corpus: 6732, signal 222344/279963 (executing program)
1970/01/01 00:11:56 fetching corpus: 6781, signal 222719/280391 (executing program)
1970/01/01 00:11:58 fetching corpus: 6831, signal 223114/280796 (executing program)
1970/01/01 00:12:01 fetching corpus: 6881, signal 223661/281228 (executing program)
1970/01/01 00:12:03 fetching corpus: 6930, signal 224115/281537 (executing program)
1970/01/01 00:12:05 fetching corpus: 6980, signal 224508/281538 (executing program)
1970/01/01 00:12:06 fetching corpus: 7029, signal 224864/281553 (executing program)
1970/01/01 00:12:08 fetching corpus: 7078, signal 225332/281553 (executing program)
1970/01/01 00:12:10 fetching corpus: 7128, signal 225797/281556 (executing program)
1970/01/01 00:12:13 fetching corpus: 7177, signal 226427/281556 (executing program)
1970/01/01 00:12:16 fetching corpus: 7226, signal 226999/281561 (executing program)
1970/01/01 00:12:19 fetching corpus: 7276, signal 227418/281569 (executing program)
1970/01/01 00:12:22 fetching corpus: 7324, signal 227969/281573 (executing program)
1970/01/01 00:12:25 fetching corpus: 7373, signal 228527/281575 (executing program)
1970/01/01 00:12:27 fetching corpus: 7422, signal 228984/281580 (executing program)
1970/01/01 00:12:30 fetching corpus: 7472, signal 229466/281580 (executing program)
1970/01/01 00:12:33 fetching corpus: 7522, signal 229942/281585 (executing program)
1970/01/01 00:12:36 fetching corpus: 7572, signal 230585/281585 (executing program)
1970/01/01 00:12:38 fetching corpus: 7620, signal 230993/281585 (executing program)
1970/01/01 00:12:40 fetching corpus: 7669, signal 231581/281585 (executing program)
1970/01/01 00:12:42 fetching corpus: 7719, signal 231893/281585 (executing program)
1970/01/01 00:12:44 fetching corpus: 7769, signal 232325/281591 (executing program)
1970/01/01 00:12:46 fetching corpus: 7819, signal 232932/281591 (executing program)
1970/01/01 00:12:50 fetching corpus: 7867, signal 233458/281591 (executing program)
1970/01/01 00:12:52 fetching corpus: 7916, signal 233847/281592 (executing program)
1970/01/01 00:12:54 fetching corpus: 7965, signal 234262/281598 (executing program)
1970/01/01 00:12:56 fetching corpus: 8015, signal 234790/281598 (executing program)
1970/01/01 00:12:57 fetching corpus: 8065, signal 235417/281598 (executing program)
1970/01/01 00:12:59 fetching corpus: 8115, signal 235820/281598 (executing program)
1970/01/01 00:13:02 fetching corpus: 8164, signal 236184/281599 (executing program)
1970/01/01 00:13:05 fetching corpus: 8213, signal 236568/281602 (executing program)
1970/01/01 00:13:07 fetching corpus: 8262, signal 236961/281602 (executing program)
1970/01/01 00:13:09 fetching corpus: 8311, signal 237297/281611 (executing program)
1970/01/01 00:13:11 fetching corpus: 8360, signal 237719/281618 (executing program)
1970/01/01 00:13:13 fetching corpus: 8409, signal 238279/281624 (executing program)
1970/01/01 00:13:16 fetching corpus: 8459, signal 238674/281624 (executing program)
1970/01/01 00:13:18 fetching corpus: 8508, signal 239026/281626 (executing program)
1970/01/01 00:13:20 fetching corpus: 8557, signal 239337/281626 (executing program)
1970/01/01 00:13:22 fetching corpus: 8607, signal 239635/281634 (executing program)
1970/01/01 00:13:24 fetching corpus: 8657, signal 240213/281634 (executing program)
1970/01/01 00:13:26 fetching corpus: 8706, signal 240576/281634 (executing program)
1970/01/01 00:13:28 fetching corpus: 8755, signal 241083/281637 (executing program)
1970/01/01 00:13:30 fetching corpus: 8805, signal 241469/281637 (executing program)
1970/01/01 00:13:32 fetching corpus: 8855, signal 241743/281637 (executing program)
1970/01/01 00:13:36 fetching corpus: 8904, signal 242243/281637 (executing program)
1970/01/01 00:13:38 fetching corpus: 8952, signal 242875/281644 (executing program)
1970/01/01 00:13:40 fetching corpus: 9002, signal 243255/281646 (executing program)
1970/01/01 00:13:42 fetching corpus: 9050, signal 243628/281646 (executing program)
1970/01/01 00:13:44 fetching corpus: 9099, signal 244138/281649 (executing program)
1970/01/01 00:13:47 fetching corpus: 9149, signal 244426/281652 (executing program)
1970/01/01 00:13:49 fetching corpus: 9197, signal 244847/281652 (executing program)
1970/01/01 00:13:51 fetching corpus: 9247, signal 245166/281652 (executing program)
1970/01/01 00:13:53 fetching corpus: 9295, signal 245539/281655 (executing program)
1970/01/01 00:13:55 fetching corpus: 9345, signal 245928/281657 (executing program)
1970/01/01 00:13:58 fetching corpus: 9394, signal 246359/281668 (executing program)
1970/01/01 00:14:00 fetching corpus: 9444, signal 247228/281668 (executing program)
1970/01/01 00:14:02 fetching corpus: 9493, signal 247718/281668 (executing program)
1970/01/01 00:14:03 fetching corpus: 9543, signal 248120/281679 (executing program)
1970/01/01 00:14:07 fetching corpus: 9592, signal 248605/281679 (executing program)
1970/01/01 00:14:09 fetching corpus: 9642, signal 248994/281679 (executing program)
1970/01/01 00:14:12 fetching corpus: 9691, signal 249336/281683 (executing program)
1970/01/01 00:14:14 fetching corpus: 9739, signal 249661/281692 (executing program)
1970/01/01 00:14:16 fetching corpus: 9789, signal 250110/281695 (executing program)
1970/01/01 00:14:18 fetching corpus: 9839, signal 250415/281695 (executing program)
1970/01/01 00:14:20 fetching corpus: 9888, signal 250836/281695 (executing program)
1970/01/01 00:14:22 fetching corpus: 9938, signal 251356/281695 (executing program)
1970/01/01 00:14:27 fetching corpus: 9986, signal 251778/281697 (executing program)
1970/01/01 00:14:30 fetching corpus: 10032, signal 252076/281697 (executing program)
1970/01/01 00:14:33 fetching corpus: 10082, signal 252400/281697 (executing program)
1970/01/01 00:14:36 fetching corpus: 10132, signal 252789/281699 (executing program)
1970/01/01 00:14:39 fetching corpus: 10182, signal 253169/281703 (executing program)
1970/01/01 00:14:41 fetching corpus: 10230, signal 253529/281711 (executing program)
1970/01/01 00:14:43 fetching corpus: 10279, signal 253850/281718 (executing program)
1970/01/01 00:14:45 fetching corpus: 10328, signal 254090/281718 (executing program)
1970/01/01 00:14:47 fetching corpus: 10377, signal 254601/281718 (executing program)
1970/01/01 00:14:50 fetching corpus: 10426, signal 254861/281722 (executing program)
1970/01/01 00:14:52 fetching corpus: 10476, signal 255340/281731 (executing program)
1970/01/01 00:14:54 fetching corpus: 10523, signal 255741/281731 (executing program)
1970/01/01 00:14:57 fetching corpus: 10572, signal 256128/281733 (executing program)
1970/01/01 00:14:59 fetching corpus: 10621, signal 256484/281733 (executing program)
1970/01/01 00:15:01 fetching corpus: 10671, signal 256877/281733 (executing program)
1970/01/01 00:15:02 fetching corpus: 10720, signal 257254/281733 (executing program)
1970/01/01 00:15:05 fetching corpus: 10770, signal 257802/281742 (executing program)
1970/01/01 00:15:08 fetching corpus: 10819, signal 258069/281743 (executing program)
1970/01/01 00:15:10 fetching corpus: 10869, signal 258339/281747 (executing program)
1970/01/01 00:15:13 fetching corpus: 10917, signal 258799/281747 (executing program)
1970/01/01 00:15:15 fetching corpus: 10967, signal 259135/281748 (executing program)
1970/01/01 00:15:17 fetching corpus: 11016, signal 259401/281748 (executing program)
1970/01/01 00:15:19 fetching corpus: 11066, signal 259795/281748 (executing program)
1970/01/01 00:15:20 fetching corpus: 11116, signal 260088/281748 (executing program)
1970/01/01 00:15:22 fetching corpus: 11166, signal 260450/281748 (executing program)
1970/01/01 00:15:23 fetching corpus: 11216, signal 260749/281751 (executing program)
1970/01/01 00:15:26 fetching corpus: 11264, signal 260993/281751 (executing program)
1970/01/01 00:15:29 fetching corpus: 11314, signal 261210/281751 (executing program)
1970/01/01 00:15:32 fetching corpus: 11361, signal 261580/281755 (executing program)
1970/01/01 00:15:34 fetching corpus: 11410, signal 261895/281756 (executing program)
1970/01/01 00:15:36 fetching corpus: 11460, signal 262189/281764 (executing program)
1970/01/01 00:15:38 fetching corpus: 11509, signal 262594/281764 (executing program)
1970/01/01 00:15:41 fetching corpus: 11558, signal 262883/281764 (executing program)
1970/01/01 00:15:44 fetching corpus: 11606, signal 263118/281764 (executing program)
1970/01/01 00:15:47 fetching corpus: 11655, signal 263430/281765 (executing program)
1970/01/01 00:15:49 fetching corpus: 11704, signal 263768/281765 (executing program)
1970/01/01 00:15:53 fetching corpus: 11754, signal 264095/281769 (executing program)
1970/01/01 00:15:55 fetching corpus: 11803, signal 264389/281774 (executing program)
1970/01/01 00:15:57 fetching corpus: 11853, signal 264594/281774 (executing program)
1970/01/01 00:15:59 fetching corpus: 11903, signal 264900/281774 (executing program)
1970/01/01 00:16:01 fetching corpus: 11951, signal 265355/281775 (executing program)
1970/01/01 00:16:03 fetching corpus: 11999, signal 265613/281783 (executing program)
1970/01/01 00:16:05 fetching corpus: 12048, signal 265993/281783 (executing program)
1970/01/01 00:16:07 fetching corpus: 12098, signal 266565/281783 (executing program)
1970/01/01 00:16:09 fetching corpus: 12146, signal 266845/281796 (executing program)
1970/01/01 00:16:12 fetching corpus: 12196, signal 267161/281796 (executing program)
1970/01/01 00:16:16 fetching corpus: 12245, signal 267442/281796 (executing program)
1970/01/01 00:16:17 fetching corpus: 12292, signal 267679/281796 (executing program)
1970/01/01 00:16:19 fetching corpus: 12341, signal 267995/281814 (executing program)
1970/01/01 00:16:22 fetching corpus: 12391, signal 268253/281816 (executing program)
1970/01/01 00:16:24 fetching corpus: 12441, signal 268685/281816 (executing program)
1970/01/01 00:16:25 fetching corpus: 12488, signal 268990/281820 (executing program)
1970/01/01 00:16:27 fetching corpus: 12537, signal 269215/281820 (executing program)
1970/01/01 00:16:29 fetching corpus: 12586, signal 269528/281825 (executing program)
1970/01/01 00:16:31 fetching corpus: 12636, signal 269792/281825 (executing program)
1970/01/01 00:16:34 fetching corpus: 12685, signal 269991/281826 (executing program)
1970/01/01 00:16:37 fetching corpus: 12733, signal 270313/281836 (executing program)
1970/01/01 00:16:40 fetching corpus: 12782, signal 270663/281846 (executing program)
1970/01/01 00:16:42 fetching corpus: 12831, signal 270881/281846 (executing program)
1970/01/01 00:16:45 fetching corpus: 12881, signal 271220/281849 (executing program)
1970/01/01 00:16:47 fetching corpus: 12931, signal 271475/281851 (executing program)
1970/01/01 00:16:50 fetching corpus: 12980, signal 271700/281851 (executing program)
1970/01/01 00:16:53 fetching corpus: 13030, signal 272020/281851 (executing program)
1970/01/01 00:16:55 fetching corpus: 13078, signal 272272/281854 (executing program)
1970/01/01 00:16:58 fetching corpus: 13128, signal 272570/281854 (executing program)
1970/01/01 00:17:00 fetching corpus: 13177, signal 272805/281854 (executing program)
1970/01/01 00:17:03 fetching corpus: 13226, signal 273089/281856 (executing program)
1970/01/01 00:17:05 fetching corpus: 13275, signal 273282/281862 (executing program)
1970/01/01 00:17:08 fetching corpus: 13325, signal 273648/281862 (executing program)
1970/01/01 00:17:10 fetching corpus: 13373, signal 273947/281862 (executing program)
1970/01/01 00:17:12 fetching corpus: 13421, signal 274175/281863 (executing program)
1970/01/01 00:17:14 fetching corpus: 13469, signal 274423/281863 (executing program)
1970/01/01 00:17:17 fetching corpus: 13519, signal 274794/281865 (executing program)
1970/01/01 00:17:19 fetching corpus: 13569, signal 275053/281865 (executing program)
1970/01/01 00:17:23 fetching corpus: 13618, signal 275303/281871 (executing program)
1970/01/01 00:17:25 fetching corpus: 13667, signal 275633/281877 (executing program)
1970/01/01 00:17:27 fetching corpus: 13717, signal 275852/281877 (executing program)
1970/01/01 00:17:30 fetching corpus: 13767, signal 276136/281877 (executing program)
1970/01/01 00:17:32 fetching corpus: 13815, signal 276429/281877 (executing program)
1970/01/01 00:17:34 fetching corpus: 13864, signal 276725/281877 (executing program)
1970/01/01 00:17:36 fetching corpus: 13913, signal 276971/281877 (executing program)
1970/01/01 00:17:38 fetching corpus: 13963, signal 277343/281883 (executing program)
1970/01/01 00:17:40 fetching corpus: 14013, signal 277717/281883 (executing program)
1970/01/01 00:17:44 fetching corpus: 14062, signal 277979/281886 (executing program)
1970/01/01 00:17:47 fetching corpus: 14111, signal 278241/281886 (executing program)
1970/01/01 00:17:50 fetching corpus: 14161, signal 278636/281886 (executing program)
1970/01/01 00:17:52 fetching corpus: 14210, signal 278927/281886 (executing program)
1970/01/01 00:17:54 fetching corpus: 14260, signal 279255/281886 (executing program)
1970/01/01 00:17:56 fetching corpus: 14309, signal 279590/281886 (executing program)
1970/01/01 00:17:58 fetching corpus: 14359, signal 279933/281886 (executing program)
1970/01/01 00:17:59 fetching corpus: 14372, signal 280043/281896 (executing program)
1970/01/01 00:17:59 fetching corpus: 14372, signal 280043/281896 (executing program)
1970/01/01 00:19:56 starting 2 fuzzer processes
00:19:56 executing program 0:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$UI_BEGIN_FF_UPLOAD(r0, 0x4004556b, &(0x7f00000015c0)={0x0, 0x0, {0x0, 0x0, 0x0, {}, {}, @rumble}, {0x0, 0x0, 0x0, {}, {}, @period={0x0, 0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0}}})

00:19:56 executing program 1:
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0xc)

[ 1226.486110][ T2053] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1227.036537][ T2053] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1227.154954][ T2052] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1227.688346][ T2052] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1240.004367][ T2052] device hsr_slave_0 entered promiscuous mode
[ 1240.039735][ T2052] device hsr_slave_1 entered promiscuous mode
[ 1240.297202][ T2053] device hsr_slave_0 entered promiscuous mode
[ 1240.336027][ T2053] device hsr_slave_1 entered promiscuous mode
[ 1240.355897][ T2053] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1240.361764][ T2053] Cannot create hsr debugfs directory
[ 1250.207697][ T2053] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1250.507075][ T2053] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1250.959388][ T2053] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1251.433988][ T2053] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1252.878137][ T2052] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1253.356635][ T2052] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1253.737168][ T2052] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1254.169147][ T2052] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1269.273045][ T2053] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1270.539418][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1270.627234][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1273.634680][ T2052] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1274.538065][ T2034] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1274.628370][ T2034] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1282.288080][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1282.383653][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1282.691244][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1282.768418][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1283.153810][ T2034] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1283.729803][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1285.288665][ T2034] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1285.354740][ T2034] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1285.465773][ T2034] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1285.582937][ T2034] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1285.893288][ T2053] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1288.267795][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1288.375859][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1290.093887][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1290.168025][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1290.224174][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1290.388590][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1291.232202][  T830] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1291.363374][  T830] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1292.003069][ T2668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1292.037220][ T2668] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1295.334547][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1295.339143][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1300.983124][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1300.986332][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1313.419074][ T2675] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1313.459602][ T2675] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1317.192814][  T830] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1317.242373][  T830] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1320.670407][ T2668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1320.748897][ T2668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1320.918504][  T830] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1320.947373][  T830] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1320.981663][ T2053] device veth0_vlan entered promiscuous mode
[ 1321.445768][ T2053] device veth1_vlan entered promiscuous mode
[ 1323.099725][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1323.168061][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1323.336540][ T2053] device veth0_macvtap entered promiscuous mode
[ 1323.664591][ T2053] device veth1_macvtap entered promiscuous mode
[ 1324.368547][ T2668] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1324.613442][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1324.654683][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1324.817219][ T2668] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1324.858807][ T2668] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1324.908616][ T2668] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1324.928318][ T2668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1324.989105][ T2052] device veth0_vlan entered promiscuous mode
[ 1325.248002][ T2217] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1325.341854][ T2217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1325.580085][ T2053] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1325.586263][ T2053] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1325.588041][ T2053] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1325.589768][ T2053] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1325.923115][ T2052] device veth1_vlan entered promiscuous mode
[ 1328.561570][ T2217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1328.657265][ T2217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1328.948019][ T2052] device veth0_macvtap entered promiscuous mode
[ 1329.350144][ T2052] device veth1_macvtap entered promiscuous mode
[ 1329.653681][ T2217] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1330.266765][ T2217] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1330.368401][ T2217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1330.866851][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1330.895520][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1331.186593][ T2052] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1331.202444][ T2052] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1331.204209][ T2052] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1331.205893][ T2052] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
00:22:14 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x78)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000000)={@cgroup=r2, r1, 0x12, 0x2}, 0x14)
unlinkat(r2, &(0x7f0000000000)='./cgroup\x00', 0x200)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r0, 0xffffffffffffffff, 0x12}, 0x10)

00:22:16 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x6, 0x4, 0x0, 0x2}, 0x48)

00:22:18 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x78)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000000)={@cgroup=r2, r1, 0x12, 0x2}, 0x14)
unlinkat(r2, &(0x7f0000000000)='./cgroup\x00', 0x200)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r0, 0xffffffffffffffff, 0x12}, 0x10)

00:22:20 executing program 1:
syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @timestamp}}}}, 0x0)

00:22:21 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x78)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000000)={@cgroup=r2, r1, 0x12, 0x2}, 0x14)
unlinkat(r2, &(0x7f0000000000)='./cgroup\x00', 0x200)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r0, 0xffffffffffffffff, 0x12}, 0x10)

00:22:23 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:22:24 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x78)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000000)={@cgroup=r2, r1, 0x12, 0x2}, 0x14)
unlinkat(r2, &(0x7f0000000000)='./cgroup\x00', 0x200)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r0, 0xffffffffffffffff, 0x12}, 0x10)

00:22:28 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:22:29 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:22:32 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:22:33 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:22:36 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:22:37 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:22:40 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:22:44 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:22:45 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:22:47 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:22:51 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:22:55 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="1483", 0x2, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000040)='<', 0x19ffe, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

00:23:01 executing program 0:
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x410003, 0x0)

00:23:03 executing program 1:
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = memfd_secret(0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})

00:23:04 executing program 0:
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x410003, 0x0)

00:23:05 executing program 1:
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = memfd_secret(0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})

00:23:07 executing program 0:
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x410003, 0x0)

00:23:08 executing program 1:
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = memfd_secret(0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})

00:23:10 executing program 0:
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x410003, 0x0)

00:23:11 executing program 1:
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = memfd_secret(0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})

00:23:14 executing program 0:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x7})

00:23:17 executing program 1:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000900), 0x82001, 0x0)
write$vga_arbiter(r0, &(0x7f0000000040)=@target={'target ', {'PCI:', 'b', ':', '1b', ':', '1b', '.', '5'}}, 0x15)

00:23:17 executing program 0:
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha1\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4$alg(r1, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/188, 0xbc}], 0x1}, 0x0)

00:23:19 executing program 1:
syz_mount_image$tmpfs(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000004740)='./file0\x00', &(0x7f0000004780)='hugetlbfs\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000540)='./file0\x00', 0x0, 0x1000020, &(0x7f0000000140)={[{@nr_inodes={'nr_inodes', 0x3d, [0x37]}}, {@uid={'uid', 0x3d, 0xee00}}]})

00:23:21 executing program 0:
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha1\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4$alg(r1, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/188, 0xbc}], 0x1}, 0x0)

00:23:22 executing program 1:
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha1\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4$alg(r1, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/188, 0xbc}], 0x1}, 0x0)

00:23:26 executing program 0:
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha1\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4$alg(r1, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/188, 0xbc}], 0x1}, 0x0)

00:23:26 executing program 1:
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha1\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4$alg(r1, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/188, 0xbc}], 0x1}, 0x0)

00:23:29 executing program 0:
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha1\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4$alg(r1, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/188, 0xbc}], 0x1}, 0x0)

00:23:30 executing program 1:
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha1\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4$alg(r1, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/188, 0xbc}], 0x1}, 0x0)

00:23:34 executing program 0:
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha1\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4$alg(r1, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/188, 0xbc}], 0x1}, 0x0)

00:23:35 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x33)
r1 = accept(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000480)="e9", 0x1)
recvfrom$l2tp(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 1417.668195][ T2835] "syz-executor.1" (2835) uses obsolete ecb(arc4) skcipher
00:23:38 executing program 0:
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha1\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4$alg(r1, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/188, 0xbc}], 0x1}, 0x0)

00:23:38 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x33)
r1 = accept(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000480)="e9", 0x1)
recvfrom$l2tp(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 1420.684632][ T2839] "syz-executor.1" (2839) uses obsolete ecb(arc4) skcipher
00:23:40 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x33)
r1 = accept(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000480)="e9", 0x1)
recvfrom$l2tp(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

00:23:41 executing program 0:
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha1\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4$alg(r1, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/188, 0xbc}], 0x1}, 0x0)

[ 1423.660030][ T2841] "syz-executor.1" (2841) uses obsolete ecb(arc4) skcipher
00:23:44 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x33)
r1 = accept(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000480)="e9", 0x1)
recvfrom$l2tp(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 1426.846243][ T2845] "syz-executor.1" (2845) uses obsolete ecb(arc4) skcipher
00:23:47 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x33)
r1 = accept(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000480)="e9", 0x1)
recvfrom$l2tp(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

00:23:48 executing program 1:
keyctl$search(0xa, 0x0, &(0x7f0000000080)='.request_key_auth\x00', 0x0, 0x0)

[ 1430.029659][ T2847] "syz-executor.0" (2847) uses obsolete ecb(arc4) skcipher
00:23:50 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x33)
r1 = accept(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000480)="e9", 0x1)
recvfrom$l2tp(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

00:23:51 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x2, &(0x7f0000000140)=[{0x7c}, {0x6}]})

[ 1433.224035][ T2851] "syz-executor.0" (2851) uses obsolete ecb(arc4) skcipher
00:23:53 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x33)
r1 = accept(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000480)="e9", 0x1)
recvfrom$l2tp(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 1434.762648][   T26] audit: type=1326 audit(1433.670:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=2852 comm="syz-executor.1" exe="/syz-executor.1" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x3bc0e code=0x0
00:23:54 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x2, &(0x7f0000000140)=[{0x7c}, {0x6}]})

[ 1436.077251][ T2855] "syz-executor.0" (2855) uses obsolete ecb(arc4) skcipher
00:23:56 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x20)

[ 1438.461741][   T26] audit: type=1326 audit(1437.420:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=2856 comm="syz-executor.1" exe="/syz-executor.1" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x3bc0e code=0x0
00:23:58 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x2, &(0x7f0000000140)=[{0x7c}, {0x6}]})

00:23:59 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x20)

[ 1441.791666][   T26] audit: type=1326 audit(1440.750:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=2860 comm="syz-executor.1" exe="/syz-executor.1" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x3bc0e code=0x0
00:24:02 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x2, &(0x7f0000000140)=[{0x7c}, {0x6}]})

00:24:03 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x20)

[ 1444.935103][   T26] audit: type=1326 audit(1443.850:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=2864 comm="syz-executor.1" exe="/syz-executor.1" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x3bc0e code=0x0
00:24:07 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000300)=@bridge_getlink={0x28, 0x12, 0xa01, 0x0, 0x0, {}, [@IFLA_LINKMODE={0x5}]}, 0x28}}, 0x0)

00:24:07 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x20)

00:24:09 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x34, 0x14, 0x405, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x8, 0x2, @local}, @IFA_LABEL={0x14, 0x6, 'vlan0\x00'}]}, 0x34}}, 0x0)

00:24:10 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = dup(r0)
connect$can_bcm(r1, &(0x7f000000a640), 0x10)

00:24:12 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x42, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={[{@nr_inodes={'nr_inodes', 0x3d, [0x6b]}}]})

00:24:13 executing program 0:
futex_waitv(&(0x7f0000003940)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)

00:24:15 executing program 1:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = dup(r0)
ioctl$RTC_PIE_ON(r0, 0x7005)
read$dsp(r1, &(0x7f0000000040)=""/30, 0x1e)

00:24:16 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_delrule={0x24, 0x21, 0x1, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_L3MDEV={0x5, 0x18}]}, 0x24}}, 0x0)

00:24:20 executing program 1:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = dup(r0)
ioctl$RTC_PIE_ON(r0, 0x7005)
read$dsp(r1, &(0x7f0000000040)=""/30, 0x1e)

00:24:20 executing program 0:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = dup(r0)
ioctl$RTC_PIE_ON(r0, 0x7005)
read$dsp(r1, &(0x7f0000000040)=""/30, 0x1e)

00:24:24 executing program 1:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = dup(r0)
ioctl$RTC_PIE_ON(r0, 0x7005)
read$dsp(r1, &(0x7f0000000040)=""/30, 0x1e)

00:24:24 executing program 0:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = dup(r0)
ioctl$RTC_PIE_ON(r0, 0x7005)
read$dsp(r1, &(0x7f0000000040)=""/30, 0x1e)

00:24:28 executing program 0:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = dup(r0)
ioctl$RTC_PIE_ON(r0, 0x7005)
read$dsp(r1, &(0x7f0000000040)=""/30, 0x1e)

00:24:29 executing program 1:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = dup(r0)
ioctl$RTC_PIE_ON(r0, 0x7005)
read$dsp(r1, &(0x7f0000000040)=""/30, 0x1e)

00:24:32 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}]}]}, 0x34}}, 0x0)

00:24:32 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
sendto$inet6(r1, &(0x7f0000000480)="f9", 0x1, 0x400c8d4, 0x0, 0x0)
sendfile(r1, r0, 0x0, 0x80000000008002)

00:24:35 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
sendto$inet6(r1, &(0x7f0000000480)="f9", 0x1, 0x400c8d4, 0x0, 0x0)
sendfile(r1, r0, 0x0, 0x80000000008002)

00:24:35 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}]}]}, 0x34}}, 0x0)

00:24:39 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
sendto$inet6(r1, &(0x7f0000000480)="f9", 0x1, 0x400c8d4, 0x0, 0x0)
sendfile(r1, r0, 0x0, 0x80000000008002)

00:24:39 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}]}]}, 0x34}}, 0x0)

00:24:42 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}]}]}, 0x34}}, 0x0)

00:24:43 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
sendto$inet6(r1, &(0x7f0000000480)="f9", 0x1, 0x400c8d4, 0x0, 0x0)
sendfile(r1, r0, 0x0, 0x80000000008002)

00:24:47 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
sendto$inet6(r1, &(0x7f0000000480)="f9", 0x1, 0x400c8d4, 0x0, 0x0)
sendfile(r1, r0, 0x0, 0x80000000008002)

00:24:49 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
listen(r0, 0x4bbe)
accept4(r0, 0x0, 0x0, 0x0)

00:24:51 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
sendto$inet6(r1, &(0x7f0000000480)="f9", 0x1, 0x400c8d4, 0x0, 0x0)
sendfile(r1, r0, 0x0, 0x80000000008002)

[ 1494.104682][ T2915] sctp: failed to load transform for md5: -2
00:24:56 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x7, 0x1, 0x301}, 0x14}}, 0x0)

00:24:58 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
sendto$inet6(r1, &(0x7f0000000480)="f9", 0x1, 0x400c8d4, 0x0, 0x0)
sendfile(r1, r0, 0x0, 0x80000000008002)

00:25:01 executing program 0:
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000044c0), 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40186f40, &(0x7f00000000c0)=0xf1030000)

00:25:04 executing program 1:
bpf$MAP_CREATE(0x1c, &(0x7f0000000140), 0x48)

00:25:05 executing program 0:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000003600)={0x5, 0x0, [{0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}]})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000040))

00:25:07 executing program 1:
bpf$MAP_CREATE(0x1c, &(0x7f0000000140), 0x48)

00:25:09 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x42, 0x0, 0x0)

00:25:09 executing program 1:
bpf$MAP_CREATE(0x1c, &(0x7f0000000140), 0x48)

00:25:11 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=@ipv4_newnexthop={0x24, 0x68, 0x1, 0x0, 0x0, {}, [@NHA_OIF={0x8}, @NHA_BLACKHOLE={0x4}]}, 0x24}}, 0x0)

00:25:12 executing program 1:
bpf$MAP_CREATE(0x1c, &(0x7f0000000140), 0x48)

00:25:14 executing program 0:
futex(&(0x7f0000000680), 0x8, 0x0, 0x0, 0x0, 0x0)

00:25:15 executing program 1:
personality(0x5000007)
ppoll(0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)

00:25:17 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$dlm_monitor(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x540f, 0xea007)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=@newlink={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, 0x0)
read$FUSE(r1, 0x0, 0x0)
ppoll(0x0, 0x0, 0x0, &(0x7f0000000380), 0x8)
socket$inet_sctp(0x2, 0x1, 0x84)

00:25:18 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x4d, 0x0, 0x390)

[ 1520.694785][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1520.817566][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1520.843751][ T2951] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
00:25:22 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x4d, 0x0, 0x390)

00:25:24 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$dlm_monitor(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x540f, 0xea007)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=@newlink={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, 0x0)
read$FUSE(r1, 0x0, 0x0)
ppoll(0x0, 0x0, 0x0, &(0x7f0000000380), 0x8)
socket$inet_sctp(0x2, 0x1, 0x84)

00:25:25 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x4d, 0x0, 0x390)

[ 1528.093609][ T2959] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1528.159272][ T2959] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1528.174124][ T2959] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
00:25:29 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x4d, 0x0, 0x390)

00:25:31 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$dlm_monitor(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x540f, 0xea007)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=@newlink={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, 0x0)
read$FUSE(r1, 0x0, 0x0)
ppoll(0x0, 0x0, 0x0, &(0x7f0000000380), 0x8)
socket$inet_sctp(0x2, 0x1, 0x84)

00:25:32 executing program 1:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000100)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'ip6erspan0\x00', 0x1})
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1534.785718][ T2967] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1535.053589][ T2967] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1535.057510][ T2967] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1536.882554][    C1] ==================================================================
[ 1536.883728][    C1] BUG: KASAN: use-after-free in __bfs+0x154/0x394
[ 1536.885368][    C1] Read of size 8 at addr ffffaf8025b43f30 by task syz-executor.0/2967
[ 1536.886413][    C1] 
[ 1536.887316][    C1] CPU: 1 PID: 2967 Comm: syz-executor.0 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0
[ 1536.889151][    C1] Hardware name: riscv-virtio,qemu (DT)
[ 1536.890539][    C1] Call Trace:
[ 1536.891610][    C1] [<ffffffff8000a228>] dump_backtrace+0x2e/0x3c
[ 1536.892686][    C1] [<ffffffff831668cc>] show_stack+0x34/0x40
[ 1536.893692][    C1] [<ffffffff831756ba>] dump_stack_lvl+0xe4/0x150
[ 1536.894796][    C1] [<ffffffff8047479e>] print_address_description.constprop.0+0x2a/0x330
[ 1536.896077][    C1] [<ffffffff80474d4c>] kasan_report+0x184/0x1e0
[ 1536.897770][    C1] [<ffffffff80475b20>] __asan_load8+0x6e/0x96
[ 1536.899016][    C1] [<ffffffff8010dd9a>] __bfs+0x154/0x394
[ 1536.900052][    C1] [<ffffffff8010e52a>] check_path.constprop.0+0x24/0x46
[ 1536.901567][    C1] [<ffffffff8010f95c>] check_noncircular+0x11a/0x1fe
[ 1536.903288][    C1] 
[ 1536.903848][    C1] The buggy address belongs to the page:
[ 1536.905124][    C1] page:ffffaf807b0e3ad8 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xa5d43
[ 1536.906584][    C1] flags: 0xa000000000(section=20|node=0|zone=0)
[ 1536.909181][    C1] raw: 000000a000000000 ffffaf807b0e5508 ffffaf807b0e3a98 0000000000000000
[ 1536.910368][    C1] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 1536.912134][    C1] raw: 00000000000007ff
[ 1536.913141][    C1] page dumped because: kasan: bad access detected
[ 1536.914194][    C1] page_owner info is not present (never set?)
[ 1536.915020][    C1] 
[ 1536.915545][    C1] Memory state around the buggy address:
[ 1536.916632][    C1]  ffffaf8025b43e00: 00 f3 f3 f3 ff ff ff ff ff ff ff ff ff ff ff ff
[ 1536.917824][    C1]  ffffaf8025b43e80: ff ff ff ff ff ff ff ff 00 00 00 00 f1 f1 f1 f1
[ 1536.919428][    C1] >ffffaf8025b43f00: 00 f2 f2 f2 ff ff ff ff 00 00 00 f3 f3 f3 f3 f3
[ 1536.920784][    C1]                                      ^
[ 1536.921624][    C1]  ffffaf8025b43f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 1536.923106][    C1]  ffffaf8025b44000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1536.925624][    C1] ==================================================================
[ 1536.928411][    C1] Disabling lock debugging due to kernel taint
[ 1536.932379][ T2967] Kernel panic - not syncing: corrupted stack end detected inside scheduler
[ 1536.933657][ T2967] CPU: 1 PID: 2967 Comm: syz-executor.0 Tainted: G    B             5.17.0-rc1-syzkaller-00002-g0966d385830d #0
[ 1536.935464][ T2967] Hardware name: riscv-virtio,qemu (DT)
[ 1536.936067][ T2967] Call Trace:
[ 1536.936635][ T2967] [<ffffffff8000a228>] dump_backtrace+0x2e/0x3c
[ 1536.937747][ T2967] [<ffffffff831668cc>] show_stack+0x34/0x40
[ 1536.939219][ T2967] [<ffffffff831756ba>] dump_stack_lvl+0xe4/0x150
[ 1536.940370][ T2967] [<ffffffff83175742>] dump_stack+0x1c/0x24
[ 1536.941384][ T2967] [<ffffffff83166fa8>] panic+0x24a/0x634
[ 1536.942303][ T2967] [<ffffffff831a688a>] schedule+0x0/0x14c
[ 1536.943278][ T2967] [<ffffffff831a6b00>] preempt_schedule_common+0x4e/0xde
[ 1536.944404][ T2967] [<ffffffff831a6bc4>] preempt_schedule+0x34/0x36
[ 1536.945484][ T2967] [<ffffffff831afd78>] _raw_spin_unlock_irqrestore+0x8c/0x98
[ 1536.946576][ T2967] [<ffffffff80b09fdc>] debug_check_no_obj_freed+0x14c/0x24a
[ 1536.947707][ T2967] [<ffffffff804697a6>] slab_free_freelist_hook+0xe4/0x1cc
[ 1536.948854][ T2967] [<ffffffff8046d302>] kfree+0xe0/0x3e4
[ 1536.949874][ T2967] [<ffffffff826f7010>] skb_release_data+0x3c2/0x3c4
[ 1536.950878][ T2967] [<ffffffff826fef30>] consume_skb+0x96/0x136
[ 1536.951767][ T2967] [<ffffffff82969a04>] netlink_broadcast+0x280/0xab6
[ 1536.952684][ T2967] [<ffffffff8296e110>] nlmsg_notify+0x78/0x22e
[ 1536.953633][ T2967] [<ffffffff82774a9a>] rtmsg_ifinfo+0xb6/0xb8
[ 1536.954700][ T2967] [<ffffffff82720028>] netdev_state_change+0x112/0x11c
[ 1536.956009][ T2967] [<ffffffff82769664>] do_setlink+0x1e24/0x21c4
[ 1536.957022][ T2967] [<ffffffff8276a798>] __rtnl_newlink+0xa94/0xfa0
[ 1536.958130][ T2967] [<ffffffff8276ad04>] rtnl_newlink+0x60/0x8c
[ 1536.959098][ T2967] [<ffffffff8276b46c>] rtnetlink_rcv_msg+0x338/0x9a0
[ 1536.960172][ T2967] [<ffffffff8296ded2>] netlink_rcv_skb+0xf8/0x2be
[ 1536.961205][ T2967] [<ffffffff827624f4>] rtnetlink_rcv+0x26/0x30
[ 1536.962285][ T2967] [<ffffffff8296cbcc>] netlink_unicast+0x40e/0x5fe
[ 1536.963275][ T2967] [<ffffffff8296d29c>] netlink_sendmsg+0x4e0/0x994
[ 1536.964301][ T2967] [<ffffffff826d264e>] sock_sendmsg+0xa0/0xc4
[ 1536.965358][ T2967] [<ffffffff826d4dd4>] ____sys_sendmsg+0x46e/0x484
[ 1536.966443][ T2967] [<ffffffff826d8bca>] ___sys_sendmsg+0x16c/0x1f6
[ 1536.967772][ T2967] [<ffffffff826d8e78>] __sys_sendmsg+0xba/0x150
[ 1536.969347][ T2967] [<ffffffff826d8f3a>] sys_sendmsg+0x2c/0x3a
[ 1536.970492][ T2967] [<ffffffff80005716>] ret_from_syscall+0x0/0x2
[ 1536.971774][ T2967] SMP: stopping secondary CPUs
[ 1536.986140][ T2967] Rebooting in 86400 seconds..

VM DIAGNOSIS:
09:47:44  Registers:
info registers vcpu 0
 pc       ffffffff80c2db06
 mhartid  0000000000000000
 mstatus  00000000000000a0
 mip      0000000000000000
 mie      00000000000002aa
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff800055d4
 mepc     ffffffff8000f97e
 sepc     ffffffff8000a0b4
 mcause   0000000000000009
 scause   8000000000000005
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffff80c2d9a4 x2/sp ffffaf8025b436d0 x3/gp ffffffff85863ac0
 x4/tp ffffaf800d800000 x5/t0 ffffffff86bcb657 x6/t1 fffff5ef04b68704 x7/t2 0000000000000000
 x8/s0 ffffaf8025b437c0 x9/s1 ffffaf8025b43a40 x10/a0 ffffaf8025b439e7 x11/a1 0000000000000000
 x12/a2 0000000000000504 x13/a3 ffffffff80120f64 x14/a4 0000000000000003 x15/a5 0000000000000000
 x16/a6 0000000000f00000 x17/a7 ffffaf8025b43827 x18/s2 ffffffffffffffff x19/s3 0000000000000061
 x20/s4 ffffaf8025b43860 x21/s5 ffffaf8025b43960 x22/s6 ffffaf8025b439a0 x23/s7 ffffaf8025b43c08
 x24/s8 ffffaf8025b43970 x25/s9 1ffff5f004b68724 x26/s10 ffffffff84a88a08 x27/s11 00000000ffffe335
 x28/t3 1ffff5f004b6876c x29/t4 fffffffef09534a2 x30/t5 fffffffef09534ad x31/t6 ffffaf8025b439e7
 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000
 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000
info registers vcpu 1
 pc       ffffffff800cf2d8
 mhartid  0000000000000001
 mstatus  00000000000000a0
 mip      0000000000000080
 mie      00000000000002aa
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff800055d4
 mepc     ffffffff8000f97e
 sepc     000000000005546c
 mcause   0000000000000009
 scause   0000000000000008
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffff800cf2d8 x2/sp ffffaf800f99f9b0 x3/gp ffffffff85863ac0
 x4/tp ffffaf800bed0000 x5/t0 ffffaf80107afcf0 x6/t1 da548854209c9800 x7/t2 00007fffc0eb41b7
 x8/s0 ffffaf800f99fa00 x9/s1 ffffaf800b6b8000 x10/a0 ffffaf800b6b8750 x11/a1 0000000000000003
 x12/a2 1ffff5f0016d70ea x13/a3 ffffffff800cf2d8 x14/a4 0000000000000000 x15/a5 ffffaf800b6b8750
 x16/a6 0000000000f00000 x17/a7 ffffffff800bdc7a x18/s2 ffffaf800b6b8750 x19/s3 ffffffff800bdc7a
 x20/s4 ffffaf800b6b8718 x21/s5 ffffaf800b6b8720 x22/s6 0000000000000001 x23/s7 ffffffff86c1a620
 x24/s8 ffffaf805a9d8c98 x25/s9 ffffaf800bb92400 x26/s10 ffffaf800bb92400 x27/s11 ffffaf805a9d9c80
 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f001f33ee4 x31/t6 0000000000040000
 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000
 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000