last executing test programs:

9.256849278s ago: executing program 0 (id=1040):
r0 = socket$inet6(0xa, 0x6, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
recvfrom$inet_nvme(0xffffffffffffffff, &(0x7f0000000300)=""/247, 0xf7, 0x10002, &(0x7f0000000440)=@generic={0xc4a89ffae796ea5a, "10bb5716412d2db716e10be3d0bc1b9d34f9daded1374468a4090493269eb670c90695b37a0c2ee7a130c319621757fa35ba598e92bcaa6e69181616077129bf4f6f13c0c6e927c2da5669543cb08953deced18ef0762cbe1e7cb248b35a6c42f6c5944ed71986a6a0b87781b763d01011f2c880bf56163299df0aa74965"}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket(0x11, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r6=>0x0})
bind$packet(r4, &(0x7f0000000180)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @dev}, 0x14)
sendmsg$netlink(r4, &(0x7f0000002ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40001}, 0x4095)
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x5452, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r7 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r7, 0x5412, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r0, 0x5)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10)
sendmmsg(r8, &(0x7f0000002980), 0x400000000000239, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

8.804784241s ago: executing program 2 (id=1042):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000040)={'wlan1\x00', {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x33}}})
msgsnd(0x0, 0x0, 0x4000, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000000)={0x3, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x6, @ipv4={'\x00', '\xff\xff', @local}}}}, 0x108)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r9, &(0x7f00000000c0), 0x12)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, r8, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x78}, @void, @void}}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x1, 0x2b}}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r9}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x4}}]}, 0x44}, 0x1, 0x0, 0x0, 0x400c080}, 0xc000)
getsockopt$inet6_buf(r7, 0x29, 0x30, 0x0, &(0x7f0000001000))
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f00000002c0)=ANY=[])
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x6, 0x1b, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x145, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r9}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0x4}, @ldst={0x0, 0x0, 0x1, 0xa, 0x2, 0x10, 0x4}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xb}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x7b7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0xb2, &(0x7f0000000540)=""/178, 0x41100, 0x74, '\x00', 0x0, @xdp, r9, 0x8, 0x0, 0x0, 0x10, &(0x7f00000008c0)={0x2, 0x5, 0x9, 0x1}, 0x10, 0x0, r9, 0xa, &(0x7f0000000940)=[0xffffffffffffffff], &(0x7f0000000980)=[{0x0, 0x2, 0x0, 0xc}, {0x2, 0x3, 0x7, 0x2}, {0x4, 0x4, 0xc, 0x2}, {0x2, 0x2, 0xf, 0xb}, {0x3, 0x5, 0x3, 0x4}, {0x4, 0x5, 0x1, 0x1}, {0x4, 0x5, 0xe, 0x1}, {0x2, 0x5, 0xc, 0xb}, {0x1, 0x4, 0x3, 0x9}, {0x2, 0x3, 0x4, 0x3}], 0x10, 0x7, @void, @value}, 0x94)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4048aecb, &(0x7f0000000000))

8.257413949s ago: executing program 0 (id=1044):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000040)={'wlan1\x00', {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x33}}})
msgsnd(0x0, 0x0, 0x4000, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xd, 0x0, 0x0)
r5 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r8, 0x29, 0x2e, &(0x7f0000000000)={0x3, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x6, @ipv4={'\x00', '\xff\xff', @local}}}}, 0x108)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r10, &(0x7f00000000c0), 0x12)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, r9, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x78}, @void, @void}}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x1, 0x2b}}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r10}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x4}}]}, 0x44}, 0x1, 0x0, 0x0, 0x400c080}, 0xc000)
getsockopt$inet6_buf(r8, 0x29, 0x30, 0x0, &(0x7f0000001000))
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f00000002c0)=ANY=[])
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x6, 0x1b, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x145, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r10}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0x4}, @ldst={0x0, 0x0, 0x1, 0xa, 0x2, 0x10, 0x4}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xb}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x7b7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0xb2, &(0x7f0000000540)=""/178, 0x41100, 0x74, '\x00', 0x0, @xdp, r10, 0x8, 0x0, 0x0, 0x10, &(0x7f00000008c0)={0x2, 0x5, 0x9, 0x1}, 0x10, 0x0, r10, 0xa, &(0x7f0000000940)=[0xffffffffffffffff], &(0x7f0000000980)=[{0x0, 0x2, 0x0, 0xc}, {0x2, 0x3, 0x7, 0x2}, {0x4, 0x4, 0xc, 0x2}, {0x2, 0x2, 0xf, 0xb}, {0x3, 0x5, 0x3, 0x4}, {0x4, 0x5, 0x1, 0x1}, {0x4, 0x5, 0xe, 0x1}, {0x2, 0x5, 0xc, 0xb}, {0x1, 0x4, 0x3, 0x9}, {0x2, 0x3, 0x4, 0x3}], 0x10, 0x7, @void, @value}, 0x94)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4048aecb, &(0x7f0000000000))

7.554572254s ago: executing program 3 (id=1046):
r0 = socket$inet6(0xa, 0x6, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
recvfrom$inet_nvme(0xffffffffffffffff, &(0x7f0000000300)=""/247, 0xf7, 0x10002, &(0x7f0000000440)=@generic={0xc4a89ffae796ea5a, "10bb5716412d2db716e10be3d0bc1b9d34f9daded1374468a4090493269eb670c90695b37a0c2ee7a130c319621757fa35ba598e92bcaa6e69181616077129bf4f6f13c0c6e927c2da5669543cb08953deced18ef0762cbe1e7cb248b35a6c42f6c5944ed71986a6a0b87781b763d01011f2c880bf56163299df0aa74965"}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket(0x11, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r6=>0x0})
bind$packet(r4, &(0x7f0000000180)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @dev}, 0x14)
sendmsg$netlink(r4, &(0x7f0000002ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40001}, 0x4095)
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x5452, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r7 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r7, 0x5412, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r0, 0x5)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10)
sendmmsg(r8, &(0x7f0000002980), 0x400000000000239, 0x0)

7.455956599s ago: executing program 2 (id=1047):
socket$inet_dccp(0x2, 0x6, 0x0)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000040), 0xc)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xd625, 0x0, 0x7, 0x1e1}, &(0x7f0000000940)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r2, 0x4d90, 0xbd09, 0x9, 0x0, 0x0)
io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0)
read(r0, &(0x7f0000000180)=""/119, 0x77)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0x1, 0x4000}, 0xc)
writev(r1, &(0x7f0000000340)=[{&(0x7f0000000080)='~', 0x1}], 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd74)
r7 = syz_io_uring_setup(0x2b3b, 0x0, &(0x7f0000000240), &(0x7f0000000480))
syz_io_uring_setup(0x917, &(0x7f0000000500)={0x0, 0x3fc, 0x4000, 0xffffff, 0x3d7, 0x0, r7}, &(0x7f0000000100), &(0x7f00000004c0))
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r8 = socket(0x2000000000000021, 0xa, 0x10000000000002)
r9 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r9, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, &(0x7f0000000380)="af6626a6f7113a42ea06b7e8e25772329e0000000000000064f97dd07514bee789ffd631a1563a4a387b8abdf6234bd2961edbceb5be7c42e5c3135f5f39056fd717db498eda2fd33e2eb54960a7cc484b8a6b5c42b4710316f8807a6b9bbbe1f103d3cd2871ac9e99dfa2a300"/120, 0x78)
accept4(r9, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000080))
openat$procfs(0xffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x0, 0x0)

6.773859387s ago: executing program 3 (id=1048):
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000700)=@newtaction={0x1e64, 0x30, 0x9, 0x0, 0x0, {}, [{0x84, 0x1, [@m_bpf={0x80, 0x1, 0x0, 0x0, {{0x8}, {0x58, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {0x35, 0x0, 0x5}, {}, {0x0, 0xfe}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0xfffffffc}, {}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}, {0x2b4, 0x1, [@m_ife={0x180, 0x17, 0x0, 0x0, {{0x8}, {0x64, 0x2, 0x0, 0x1, [@TCA_IFE_METALST={0x14, 0x6, [@IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}]}, @TCA_IFE_METALST={0x20, 0x6, [@IFE_META_PRIO={0x8, 0x3, @val=0x3}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x5}, @IFE_META_TCINDEX={0x6, 0x5, @val=0x4}, @IFE_META_TCINDEX={0x4, 0x5, @void}]}, @TCA_IFE_METALST={0x10, 0x6, [@IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_PRIO={0x8, 0x3, @val=0x9}]}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x8, 0x7, 0x7, 0x8, 0x3}}}]}, {0xf6, 0x6, "f80e3b2bb13bc02671c3293d385b39812c701c1855f02ef04e1ff7e2c53b2b2d0117873305bb7c0d48ec0e995169d113d994d620429202d8d88ae581fd5365b479efd9ccfb34da1b4086b44f92093cf6e6cd5951b47f4a2e67db809d9d2c7523a58073c3a8a85318427d1af065f522978451a11f9bb610be2a0b3a9b06f36ed123003bfe3513a9bf49014c4674a1ea4cb1a5307262a2df1967228a65b0b55f9a8995eae0783fb49b8c96793381d94e2f97e9353f5bf9bab6967ed505a236b0e7eb8d21fa84805193a9ff43fb818caee130075b007005d7aaab7fe098fb6f59be4e5f031bda65b7f3fbda9b7c46d2624a2da2"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1}}}}, @m_gact={0x130, 0x19, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x0, 0x1645, 0x20000000}}, @TCA_GACT_PARMS={0x18, 0x2, {0xf, 0x7, 0x5, 0x1, 0x10000}}]}, {0xdf, 0x6, "a860e35ddfae49fee487c8a9b0ca4c36f79b867e58ea79cfa48d93e6b5364c176cbb2056bd5a31f4e1a8654c01868470f28ac52ad0957cad665959ae955e6363cc6751da857bcc0a0d04682621d10cdaca1a544ecb3dc1a233e5fee20eefc1065e4662908ea76c1b2f36fe3a4b35eccbbdb350aad9e4b028012579db88c57527e84b1586aeb6e180735e0879aca2007ee0cabb5fb0c123c4858d2458aac7cfbadedd196a314a747eac5841b033fde103a35cadfb0c00c740f4f94dfa9f13adf3a82a1cb3d00fa11f6e5592217791c2467fb73dbf09b5102278aa79"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}, {0x3cc, 0x1, [@m_nat={0x70, 0xe, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x19a, 0x6, 0x5, 0x5, 0x3}, @loopback, @broadcast, 0x0, 0x1}}]}, {0x1d, 0x6, "cb4bb4ec4c7228635746b8222dda1c0156e877a5e1e758b7cf"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_connmark={0x130, 0x12, 0x0, 0x0, {{0xd}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x68, 0x100, 0x4, 0x4, 0x1000}, 0x7}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8, 0x600000, 0x5, 0x0, 0xfffffff2}, 0x7ff}}]}, {0xc5, 0x6, "e0415737ee8d65df710971297d1475b7d25b7498a68e68d259d10dd5bbb8c33cc960bb14d78255f44a8023af936a305799f082111667a576845f92177ab018a5b62c728fc67056a9ca1358672f6ea4281d16391f594fbf89c32824cc24deddb452a82d3446650674fc3892593eef3866afb3f84719df1157c293c61d9788b67784d43a0395c32005c445386618a7f7d82457d3ce296887d26c830f45bb0ab3713555996a41cf1cc627024a32636dd5c625acabe7619b40deb372e995dbe7e59317"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_sample={0xe4, 0x1f, 0x0, 0x0, {{0xb}, {0x7c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x9}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x7}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x401, 0x91f3875, 0x5, 0x8, 0x6}}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x10, 0x5289, 0x20000000, 0x9, 0x7}}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0xc00, 0x5, 0x0, 0x400, 0x401}}, @TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x74457aba}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x8, 0x7db, 0x0, 0xb46e, 0x3}}]}, {0x3e, 0x6, "b180309285714e2864eff155cce5aeca30cbc47129bcce6d3dd1db6245837b2f10bf3f78f69c4de7b30716ca2f4efd14c0b019f084c7258115c1"}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}, @m_skbmod={0xf4, 0x12, 0x0, 0x0, {{0xb}, {0x8c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_SMAC={0xa, 0x4, @link_local}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x8, 0x2, 0x20000000, 0x81, 0x9}, 0xb}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @random="835eaaa74bb0"}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x6, 0x2, 0x2, 0x0, 0x1f6}, 0x10}}, @TCA_SKBMOD_SMAC={0xa, 0x4, @local}, @TCA_SKBMOD_SMAC={0xa, 0x4, @random="dae690caacd7"}, @TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}, @TCA_SKBMOD_DMAC={0xa, 0x3, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x43}}]}, {0x3d, 0x6, "1569401d7d996773704f4468c555ea575f3b58cc6457c8ba4fecd531d7eb8c14bd7aabc2631cd8f9f8b78fc2436a766434a034bce2dec4b886"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_connmark={0x50, 0xc, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x6cab, 0x1, 0x5, 0x8, 0x1}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}]}, {0x1104, 0x1, [@m_sample={0x1038, 0x12, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x33e}]}, {0x1004, 0x6, "20f5e62a514b15a1c16a07798ff2e0ba121bd94382bde5c23e9edbbf4ff5dbcd03608bb4710b78c25c3377acdf0765d68d3f1b0608af6bf92822a71ff1b8ecc4e9b91a05b2e6bbf9998ea7ddfe22b6b4e98af8afd1e1deec466a124ba9355d39399b40767a1dbe2fa2d2be2a3f67e356608dced7b98cf8172281b079850344d4b1aa8e79a0129baa8e8ba23c0dc9dba9c47c1b0622e2276acc5329dc8ee972b86704b3997f36622394fd9202139922b3d6c095fbc8ef7a2803bda1eb6470723ff9c404286a477165410db3eb2b2466009f9b9e502bcce94cc73a711e05677ee721d04e0c991bb508a0a2ded0374a211205353e805527f0dc186722e98097ed675b72fc7b68e9b2e89009397783252c3413e1615b5a7fea75251f15aec540e5c3488673170f76a4822a16f353b60e58d7555f603a43829d097a48938f0491a287c396f9c41d503daa0b37c9ee75cc9e7d8e9691d3625dccff4e71d80d9a42617365887926fed4146cf77181d884be9e9e57b734a8eaeb6d02986728a8829ea33b23c5e497910878cd48fa6d3d8d437df09714c6667399c92a6dd1f519a0416a1065a65bdfbea974fd1771fd6fa9c24a2bbddd9d47849cbca90abf43ecfc41be75d02c4a8f6e6dc4d3748d514e635473539da69fa69b59078fc9ac3f1b82506cb40be77f0881f94b55c29cb190616fd16eda0a3594eaf58a3184e1ee6c46c5a27d066126830ab97385539a204b8515540b1fac58c59e8586b637304079fe4d430b16de260f7571505f3ae950ee249f0c686611149ef2c93f0a0f87d31320c8336ea00986bad7cccb9b0863d0c4618f917f43b37adf746f002c566433343724f1bf7275c0e21e77fe8d6955ea68ff7bfc738f3eccfce3e397530ad230d1cd608ca2fee26ba6b362adca36101407b0e775307b3ecbed47fc01a1f0f01a5ef57a0866aab219784d2e9263b915aff33b56f6539b5e552dc09d95ba672abda6a407fb84c6fd54176543cc5f7cc8e98253df971f029f03041b6684e6542506d751a82924fd2b2040b93604951a6be84ce45efa313127eda1eaa86318a8eb784079d42839728da4b4cb4d181e2e16e302066979783e9b5cee7385e17743f48684bcf8554ecf24d5c30d10eac7c4eb1c6b9d654ee3a7b42e52db5fbd179aac085656a3862e38b51dadb9a8d1e0acee580b5e41da39a3df89dbe2c7a8e3022b4c515b4ef6edf23f2ee3c82758913590dcb659635804a0d4d11b6209ed23ad7e04b0a9e53e44fa0255dc728865c16afe25e7df2537e1015f1daf28516c2812ca9f1899526e39c67503e83d84a70dd8b9de8f2b94f797fc3b857cd51a2ee1d4912249359cca5bdc15845401d5098c2ce902426543a5523bfaa63e02d24665c6a5716b21f61bbae4e737950d9434cde1c162931bcf98c039c39193d9836072671084888d4f6f5fd78c07ac4a5fa67b8aa55b2102c4ffe51710d5285088f722de7103e043c5df4aa5892bcb5b375855049443e9d82f4cf2f46fcb701c149fb47403069ebc0a195aca26bdaf4b27b480b44b3d6ac5281161396d4908a344d955c19a5a9fd000bfe09aca639494564dfc7e2377d266b05a16994a05cd694edd8fc1760ada049d6e6ee2c6e3468db369280dfd6d2850b54da4560ea148a5b29275493d1246af1394d8eb881af57cf3ed748be28e00a82bd1b1ec415478583eb0fe710bed15b31c536a0cbd1da4f4d4a89737bffa22c432105a9aa91167379829145f5cbbd0a2f2e5a335a7a15aa1b09c7c75dbac2153972797f9afd57e910f3524bdfb20580d24354273533cdfc26ce719871604c0df84a30abd2db9c849e0190ea5484c0028fe49c5e36b283a6b1ce873ebc7f457bfdae4e2eaa98d4731e01ead7a0a6c95910154491d15af84a620aaba1f5c50ebfdb63b4a81b8c7a858af405c6b2c8cb63fed6284efdd221555bb62076ca59c61084a78fd7cf7b9d71a76cd90f104a733cabcfe293b6e0e12dd5416a27bdde2a73f538015231118bfa64bcb03d41653c4cbd6e3865974bc5bf076933e63a14970888a4c38b87563fcbc25d7ef9fd734ea4f9e19c4f11a251d9fb0d0e68e4dc247790b20f33eddd97fade2f855163b70a30703770a5df08584ef9d5a931384449bf5dad3e6035357caab0dd9af4614f44574c1d0ee0cfc981202381c0ede9b8a4bed05bb327df9d012f9f04dbcabaa603a5da9e07f1f4181bb9e536c45f7a88ab143ce5084c089a92b0db181ae185c33164edb95c8ca213e9adb66adff6fdd9e886429c28e0dafa98908079312caa4e4de3a6c1613d789641207ff2aca02c74e8f7b3ed37994c406729e4cdd40797085e026e8951e86a7c2140f73ccd12534ee806317aef39906df2a277d088aa6817c9fb259ad4a3ce0c064e65bcb7f4f118119ecdd381cf4a37c5f9fc9cc55d9be401970476be6021b09f8520a21561317a99b9aa9b5b20ff6e88e6c7d3f925d9828c7e4e87a02ba22246632170a05528364c05955a7ce19fe382a378213a4d125cbf4ae8ab2bf6f1d48d3be98816592d5159c714573bc2f6175f051b3378e19cbb13e67406fc8f09b9ec4e6a188847ba6cc246c6e047a2831a9b954c768cba2b3782ca42872862c62e44bdca92ef68ac57e86ae75728e789fa0cfaa108b6afb8f36acac9a6c36e2498e6bf5ef201b29cf65c362de77d4409151aef3200dd0134ec7778dc404b7e4bcfe728f86c0c9086ec745ba0aca7fc714eef3f52d2046dc92c97f82b860cc08498b854bd23728e6f66d7a55eea32f020489191427b736abdbc8c0074e6227fa16b9d21a01d138fb761f4964e945e7ddbbf2236f209b125bbb4a745799d3f0211d09c5e3821fbb703f40681a64fe9d14d3e2cbb2fd1adf1ca6482f973ddb0142d55928a1cac076461a95537efbc26a34d31a05f89688213dc6bf643b8a0a65d7547e15a0229ac6dcdc132a498834aea6ca1b4ca6def69ebfec4ad428e479616aaeb59956af5a7b50e74e6e06770f75d9832c8f58b559740b7e0bf2487e637f8b11b2a208c71e690585da23b167cce930b25b875c42abccc58909c36d435d9715c24def025f6605789d000a45de49c5418ee70b241135d9253c84152050d395a105afca5aa22d8f247b1a2da845466e7bb2d2948cdee402cdcbd4a8e66c017bb8671690183ff2bafef96b44ffdac8f6eb0089581ff8424aa981564532f907cb8f9fd001973bf1c146493bae8b058c6cf700483142ec0dc63decdef3c1c7af3a7ed538c9267d7c69f19dc0340dcf5ad0a5bf35f8f16d2099348734069be9e2c5863ecc6d1019ec9b38e7615a0df03d195cbfe3eb92e0b4f85f04a3f712c38befd1cb314d63b1e4492223aca329cfb2925fa2d8ed1b69532ca01bdbfdf8b9377e932256ea28da1aeb4a201a7c38bc3b93e00102045640563835b6c342642130bd85cf764228e4c7277292ae763171be86c8bf7ba1b66a2b09b8f1c9a432b765752725d9c4b55208bf9ea4c3328b93de4c3441d559dbe50c281f5b27c6c7147c29b7091dc883adfa0dd2338f37865e40410c091609b1250f0509c571f8090491acb3ea7318dfdfc14bb870c6104ffd79cee07e93c62fb782ce5310c8be67ecd195b5838694037a15f4bcaa6734e165f7b23e07ee4cf0deb42845ba5dc7836ff755e65e9150fac2a61b0f53d199efe0d1c08179623b8dab2c4856835cb8f3e0e05e366585c76db29b2437a06dbd5c10619fc2b496e34b7e9000ef6a5344e105d1f468b8cb79b8dce09946366f59f9bb246b51ad284e80b1fc58b109855506422113e85f16a326f106321548e10dcb98d0d687a01b1d201f838713bc67d65aaad228357e58d25011e57cf0075fd01c422d3ef854b532790ec7133ea9960cb1ee126a5de7e4de20f94e12aefa7ed92e94feaddb13917a0b2e79bf97dbf6fc7ae4f5560459f91869182b88a209cfb6d752c9d33b9bf6972a15b8e7883d86e76023921bd48f49ee685c47a7496d3d7104ae5a4c4788171273e77de2bf91524ea1e2e0b0195598078ce299b222b0fe5ca14b66e35570b7b1493d0d4f9c65990392f7ac6160527af9767f6d73919232e8be804dd85f7e96c8b37b78d81116932e850c4adf74fa7dbd60c8e7819daf9f61133bd576b49db1bde7d87615217b3c0a43db81aaa91d1b38686d4d353f12649346435b7dd3cb4aa883dae96537b940f3d15687a2a1b8ee7fce0568a5abc06090a60c3d32cb0d6c743ca43d8698cb04588953c1c0614e3fdd0d94fa11345825cfc8ed82f36b5feb3b1e763284c9723ce2fb5e52837c5155b95ed256ec524551276e386bbe157ffbaf839521e3796cae026e3cc7f1f8155face932d5578b4b6f117b3f6fc65ca9e824d3748566027134058680d7125665509ac06df54f154fc8d9ace124ecb9305e492d9ce7a27793a9086033f819cdc88996900a89c6bf6376e9000cc68ce0f418aab0f84dc0835a5199d48f15025be6129a43c86f3583784b74937dbe88e762476d9b14f12d3cfb7622d10b91bbd546eeab808df48569f2142ceb159b03240c59a8e495b6a3b89bcb577427a292e35892b85b1fff2105a4769c0332f54a56389c39fd5e055710ff0441957701a5eb978724501c3e84bc0725fd14aebf136e899dc08e09ecab1ab9ae2c12e9016a528202112c24a947ccaa80077bcb35da24976e76d9e15a69a8b91babd14161a03d6e524cc1691111ead93ccb449b7bc046ad48d9bbb0461300225721008daacdae4187081d22873460804a6299842eb225e7df5cc9392c8c2a0c4c43bda2372846b248c86158248aac474a815a2a0733b5c460b3ac49f21103454bd70c92279a1b29e28107f89f962ec1cc55472fdc5d8b72f98581c0ab2fc6d6c6ec57732dd8dd7f6ad35034c713dd3b58186e37eee72c8cf737e98ddc91eb02f5a7239877fc569f05cf2751084836eb8389d7c1ff021079214634d3f8103899d3fca94e126945d3f5fc02e5e0a307af60187d6aedb6439c546efdc6325ffff91269d99659693089c1052edc3f2bbe7e4df46f6d66d4369d2b86ec168ae0000d9d515e026dd69312163d7b4187052a094ac1b80f742daea9e38ef0feefa9ddef32c61f055cdc0e858b556db5c27a6b26f1200f8280162c997ca67f50a650a69d6345c1ec08aa037ba13e2f20257fd17c33ba7c28614da84262cb5d833b9ef65b49b9bd221cff49157049e681a07e5d7357c6177b598444044db5f68c5ea20762c652d61e4133c3db0db9f37710c17e8faf73ce7c60e7083cc9976f38d73ea78743b94c6751bbafb523874272539cf462ebf5b3ea2457f06f49b6c874118ba288845719edc45ae82313640ea3097c89840e667a67d7facc8c419111f3121c9f7ed231230e26c3fc3148d4fcf14c9b511326fd7f75997d758a32a59be47ff8c68ad6c11b12ff492dc85686a6eb378f8577aaa184534dc40f2f4c149b819997042e4bdf38bab45fc435cd33ab2e83acb003ed4674de19cb65ac461a5f5a61dd341a52030910ecd3982faaa9ca289873fa26a5de11f6c62c4272f27a1f8989ce39ed2805fcddc99ebbfa8e23356f95267833268e5539e262ad91ee2bfa2c94a1a0b5945753c14907c5cb0c6bd77dc0bf2252c560d704d0671ba238d7f31f043bcdcad26c1505a5a79a51052bef94c28385f1089de3549a07800f68cfd1348356e2403af787db844080d2f050ae680b404d6fdecc87f64b4fcde2a99525bad3cf52507065daa740b47a376092c6d806f057f797416911f5524ff3693261d882389d46ba4995f671f0"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3}}}}, @m_bpf={0xc8, 0xc, 0x0, 0x0, {{0x8}, {0x44, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x1}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_NAME={0x5, 0x6, '\x00'}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x3}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x1}, @TCA_ACT_BPF_OPS={0xc, 0x4, [{0x53e5, 0xb, 0x8, 0x4a06}]}]}, {0x60, 0x6, "e1bca700c791d5a4d9d4d876a042718cbb7dcd675c8598874cdfafd4e3bce067f7199fd6b701854e9577534de9fc1d63ae2b33b9decfabc6c0ff53e41cf0594e5071b2e0c939065173e15fc844ce88e6dd0d0a13a313c1b4ebc8290e"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2}}}}]}, {0x648, 0x1, [@m_mpls={0x108, 0x8, 0x0, 0x0, {{0x9}, {0x50, 0x2, 0x0, 0x1, [@TCA_MPLS_TTL={0x5, 0x7, 0x1}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x9, 0x200, 0xffffffffffffffff, 0x9, 0x1000}, 0x2}}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_TTL={0x5, 0x7, 0xc}, @TCA_MPLS_TTL={0x5, 0x7, 0x7}, @TCA_MPLS_TC={0x5, 0x6, 0x3}]}, {0x8f, 0x6, "6d4bef553e93e22362e79bc9cfd0ad16d234ada5d1c97504f06e23ad7d7b9d2e5346b64299dc1a1a95deb4c6a771a54beb3cb453f1c88e0164aa7e120cf147d53700f081e8d8c3df06812c5f150f48772052d24351abec055d00ffa26201750a1c537ae51252955e905a13bce8259451395f639ecc2d66687498b9bc3044b163b28ebc1171481d316ed945"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_simple={0xb4, 0x1f, 0x0, 0x0, {{0xb}, {0x10, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x9, 0x3, '!.\\]\x00'}]}, {0x7c, 0x6, "bcb65c007ccdc3396093774f793e7f1525511657e1ae6668372ee1c3f0842d7997bee0c644e9827e60fa51a5fd7e680de7857d299414c0dbe1b4d966c814f586f92aecac0e0bc1cce952e1cd123a29778ce2cbcd3b6bf7d3a24fa24ae43d62f55e28dd074f99e818355ce2ab91beec7160060545294b6c4b"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}, @m_mpls={0x140, 0x18, 0x0, 0x0, {{0x9}, {0x5c, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x80000001, 0x3, 0x10000000, 0x1, 0x6}, 0x2}}, @TCA_MPLS_LABEL={0x8, 0x5, 0x41f38}, @TCA_MPLS_PROTO={0x6, 0x4, 0xf6}, @TCA_MPLS_LABEL={0x8, 0x5, 0xacc97}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x9, 0x400, 0x8, 0x10, 0x9}, 0x1}}, @TCA_MPLS_LABEL={0x8, 0x5, 0xb7cf1}]}, {0xbb, 0x6, "30d65dd8d453439248cef9942b17a86ed3855bd8e83892bc2c9034ab095024ac6366a71e43460a2c603a443304c94b469bf68d9ce85b633978d1e59e3521193aaf8ece1591d51c9933b9c3535404988bdc2291a626d109378c809b71c3de73e905b54fe064bf4db5c31aca97f4c301d3487d97293aee281e4311456ef01e250a020dfd44158548dc88159c918817620e63a4fdc594c2edf0813d88dac2e0400b356c32615f1fd306636e5195cbfd901191e031d97f8826"}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}, @m_xt={0x1a4, 0x15, 0x0, 0x0, {{0x7}, {0x10c, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'security\x00'}, @TCA_IPT_TARG={0xda, 0x6, {0x7, 'security\x00', 0xfc, 0x7, "dd20e7b030d1e868c7dbf752b4bd1014fd8199cb916d20530d9cd7938960e0929fc8c8f261a4f8d2048fdd3f561701615ea21d149801e5b0c7fd7c84f9a2fcecce13ef1ca24a9e33dcf59d8cd040e334a85e145e751f4f7a345078254fd7ebbe38d5f7dd73cbcb420fdf6dbd5a2eeb61b8569a6e9a1d5a5fa14453efbc1f83baec895e0213c9c4cd0d8efab399964f451ecbcaada842c81fb23538ef462b29f9c4bca3ea3c70923d1f002e81588ced0c"}}, @TCA_IPT_INDEX={0x8, 0x3, 0x40}]}, {0x72, 0x6, "1ee44cee35c9563129e51377ecff8ced4a46c97cdf4692d7e85064ca805a3e423e6518e6fef1d6a004394ac9f32ee5cbdedce83da0009e5cc7dca7c4dd0b8442102673154964e1eebec6ea194e47459f0dd7316d59c22aa71b028821f071731d54a02fffbeb51e0a2de8256992b9"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_skbmod={0x12c, 0x17, 0x0, 0x0, {{0xb}, {0x38, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x2}, @TCA_SKBMOD_ETYPE={0x6}, @TCA_SKBMOD_SMAC={0xa, 0x4, @multicast}, @TCA_SKBMOD_SMAC={0xa, 0x4, @remote}]}, {0xc9, 0x6, "ec40d50e16efa388335348091f673eebcd6dd867f6164af804e90a93593e7ca14ed281f07ee9fd46250153122b576ebb2cdc88ccb505938c0f8e58645ff555838e78a270b7b44d3919af86d1ac1b9bf73ada81ad7f377e6afcd93d25c55ad5baadd2404bf5f3fc1e74b3220134d4115d9a99ba24c966df4cc58d3524762db66d928f2a11760dcf5c4498e91677f53c26132143806a8854dd091b063c513790062f3302fb7362237221d48ae19bb8840c79442a146f6fd0cc1a8f61a483d9b604eb6dbb6fc3"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_skbmod={0x78, 0x18, 0x0, 0x0, {{0xb}, {0x4}, {0x49, 0x6, "8085b4b357909c2e864914995290c200e7c622afef84b404f7bf8f3dc2dd29dfc02b7df17be51404cabb0e500d10552ba86d243884c8a9b6a2f126be3f2954e1dbb9f0cd96"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x1e64}}, 0x0)
syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff2f, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x21}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r3 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r4 = openat$binfmt(0xffffffffffffff9c, r3, 0x42, 0x1ff)
close(r4)
execveat$binfmt(0xffffffffffffff9c, r3, 0x0, 0x0, 0x0)
r5 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsmount(r5, 0x0, 0x0)
r6 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x0)
symlinkat(&(0x7f0000000080)='./file1\x00', r7, &(0x7f0000000140)='./file0\x00')

6.515782409s ago: executing program 2 (id=1049):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000040)={'wlan1\x00', {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x33}}})
msgsnd(0x0, 0x0, 0x4000, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xd, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000000)={0x3, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x6, @ipv4={'\x00', '\xff\xff', @local}}}}, 0x108)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r9, &(0x7f00000000c0), 0x12)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, r8, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x78}, @void, @void}}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x1, 0x2b}}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r9}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x4}}]}, 0x44}, 0x1, 0x0, 0x0, 0x400c080}, 0xc000)
getsockopt$inet6_buf(r7, 0x29, 0x30, 0x0, &(0x7f0000001000))
ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f00000002c0)=ANY=[])
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x6, 0x1b, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x145, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r9}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0x4}, @ldst={0x0, 0x0, 0x1, 0xa, 0x2, 0x10, 0x4}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xb}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x7b7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0xb2, &(0x7f0000000540)=""/178, 0x41100, 0x74, '\x00', 0x0, @xdp, r9, 0x8, 0x0, 0x0, 0x10, &(0x7f00000008c0)={0x2, 0x5, 0x9, 0x1}, 0x10, 0x0, r9, 0xa, &(0x7f0000000940)=[0xffffffffffffffff], &(0x7f0000000980)=[{0x0, 0x2, 0x0, 0xc}, {0x2, 0x3, 0x7, 0x2}, {0x4, 0x4, 0xc, 0x2}, {0x2, 0x2, 0xf, 0xb}, {0x3, 0x5, 0x3, 0x4}, {0x4, 0x5, 0x1, 0x1}, {0x4, 0x5, 0xe, 0x1}, {0x2, 0x5, 0xc, 0xb}, {0x1, 0x4, 0x3, 0x9}, {0x2, 0x3, 0x4, 0x3}], 0x10, 0x7, @void, @value}, 0x94)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4048aecb, &(0x7f0000000000))

5.574133615s ago: executing program 3 (id=1050):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0)
ioctl$EVIOCSMASK(r3, 0x40104593, &(0x7f0000000080)={0x17, 0x0, 0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}}, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000880)='ns\x00')
fchdir(r4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000002c0)={0x1, &(0x7f0000000280)=[{0x6}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000008c0)={0x22c, r1, 0x5, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_TX_RATES={0x204, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x4}, @NL80211_BAND_60GHZ={0x30, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_LEGACY={0x24, 0x1, [0x48, 0x6c, 0x5, 0x1b, 0x12, 0x3, 0x2c, 0x1b, 0x48, 0x16, 0x24, 0xb, 0x9, 0x6c, 0x36, 0x12, 0x1f, 0x30, 0x9, 0xc, 0x6, 0x9, 0x1, 0xb, 0x30, 0x60, 0x48, 0x30, 0x4, 0x2, 0x2, 0x48]}]}, @NL80211_BAND_5GHZ={0x48, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x0, 0x1000, 0x8, 0x1, 0x6, 0x3, 0x9, 0x7f]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x7a8, 0xfffc, 0x0, 0x200, 0x8, 0x5, 0x3c2f, 0x2f]}}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x56a3, 0x4, 0x0, 0xd, 0x8, 0x400, 0x9, 0x2]}}]}, @NL80211_BAND_5GHZ={0x9c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x455, 0x4, 0x6, 0x5, 0x2, 0xfa, 0x7, 0x7]}}, @NL80211_TXRATE_HT={0x36, 0x2, [{0x1, 0x6}, {0x2}, {0x6, 0x3}, {0x1, 0x2}, {0x2, 0x2}, {0x7}, {0x0, 0x7}, {0x5, 0xa}, {0x7, 0x2}, {0x2, 0x4}, {0x2, 0x6}, {0x7}, {0x4, 0x8}, {0x0, 0x6}, {0x1, 0x6}, {0x4, 0x9}, {0x5, 0x3}, {0x6}, {0x3, 0x6}, {0x3, 0x5}, {0x2, 0x6}, {0x5}, {0x1, 0xa}, {0x4, 0x4}, {0x2, 0xa}, {0x3, 0x5}, {0x7, 0x5}, {0x5, 0x6}, {0x4, 0x8}, {0x7, 0x1}, {0x1}, {0x2, 0x3}, {0x1, 0x8}, {0x7, 0x6}, {0x7, 0xa}, {0x0, 0x3}, {0x0, 0xa}, {0x0, 0x5}, {0x7}, {0x3, 0x5}, {0x5, 0x8}, {0x0, 0x4}, {0x1, 0x7}, {0x1, 0x7}, {0x5, 0x8}, {0x3, 0x6}, {0x1, 0x9}, {0x1, 0x4}, {0x2, 0x1}, {0x5, 0x9}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x7, 0xf, 0x3, 0x7ff, 0x22, 0x2, 0x200, 0x1]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0xfff7, 0x2, 0x5, 0x97c, 0x2, 0x9, 0x400]}}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x5, 0x9, 0x6, 0x0, 0x5, 0xffff, 0x5]}}, @NL80211_TXRATE_HE_GI={0x5}]}, @NL80211_BAND_5GHZ={0x68, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0xe, 0x1, [0x6c, 0x1, 0xc, 0x66, 0x12, 0x6, 0x2f, 0xb, 0xc, 0x18]}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x0, 0x5fc6, 0x9, 0x1, 0x6, 0x1, 0x9, 0x1]}}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xffff, 0x9, 0x8, 0x81, 0x8267, 0x5, 0x1, 0x12f]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xbe49, 0x7, 0x200, 0xe, 0xea, 0x4, 0xd, 0xb77]}}]}, @NL80211_BAND_60GHZ={0x80, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x14, 0x1, [0x36, 0x1b, 0x6c, 0x60, 0x1, 0x36, 0x1b, 0xb, 0x1, 0x36, 0x1, 0x48, 0x18, 0x48, 0x18, 0x60]}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0xb, 0x60, 0x1b, 0x24, 0x0, 0x60, 0x1b, 0xb6452ce9919c1de6, 0x30, 0x4, 0x9, 0x16, 0x4, 0x3, 0x4, 0x9]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x15, 0x2, [{0x3, 0x4}, {0x6, 0x1}, {0x0, 0xa}, {0x3, 0x1}, {0x4, 0x8}, {0x4, 0x2}, {0x2, 0x5}, {0x3}, {0x6, 0x9}, {}, {0x0, 0x2}, {0x1, 0x1}, {0x5, 0x6}, {0x3, 0x1}, {0x1, 0xa}, {0x6, 0x9}, {0x2, 0x6}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0xfffb, 0x4388, 0x80, 0x9, 0x7, 0x6, 0x2]}}, @NL80211_TXRATE_LEGACY={0xf, 0x1, [0x24, 0x36, 0x1, 0x5, 0x60, 0xe09dd82e3aecea40, 0x24, 0x3, 0x6, 0x60, 0x30]}, @NL80211_TXRATE_HT={0x4}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x4}]}]}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x22c}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r5=>0xffffffffffffffff})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r6, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000000)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="cf0400000000000000001300000008000300", @ANYRES32=r8, @ANYBLOB="0500130092848b000a00060008021100000100000600100080050000060012"], 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000700)={'wlan1\x00'})
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r12=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r11, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)={0xf8, r11, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r12}, @void}}, [@NL80211_ATTR_KEYS={0xd4, 0x51, 0x0, 0x1, [{0x78, 0x0, 0x0, 0x1, [@NL80211_KEY_DATA_WEP40={0x9, 0x1, "46652c878e"}, @NL80211_KEY_SEQ={0x6, 0x4, "95bc"}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "d0e20fb19f8b0bb61c0f253390"}, @NL80211_KEY_SEQ={0xf, 0x4, "4bec458604dd1dd63925ab"}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_DEFAULT_TYPES={0x1c, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_KEY_SEQ={0x6, 0x4, "3084"}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "51b1d8220db2b5c59f4268dec8"}]}, {0x58, 0x0, 0x0, 0x1, [@NL80211_KEY_SEQ={0xe, 0x4, "db0093cb418856e07d31"}, @NL80211_KEY_SEQ={0x6, 0x4, "8e12"}, @NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}, @NL80211_KEY_DEFAULT_TYPES={0x14, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "baf64ea0a0713b21d6bca3da5c"}]}]}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0xf8}, 0x1, 0x0, 0x0, 0x800}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @initial, {0x0, 0xff8}}, 0x0, @random=0x101, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x1, [{0x12}]}, @void, @val={0x4, 0x6, {0xdc, 0x6, 0x20b, 0x6}}, @void, @void, @void, @void}, 0x37)
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=@mgmt_frame=@auth={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e)
r13 = syz_init_net_socket$ax25(0x3, 0x3, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r13, 0x8933, 0x0)

5.561556924s ago: executing program 0 (id=1058):
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000700)=@newtaction={0x1e64, 0x30, 0x9, 0x0, 0x0, {}, [{0x84, 0x1, [@m_bpf={0x80, 0x1, 0x0, 0x0, {{0x8}, {0x58, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {0x35, 0x0, 0x5}, {}, {0x0, 0xfe}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0xfffffffc}, {}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}, {0x2b4, 0x1, [@m_ife={0x180, 0x17, 0x0, 0x0, {{0x8}, {0x64, 0x2, 0x0, 0x1, [@TCA_IFE_METALST={0x14, 0x6, [@IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}]}, @TCA_IFE_METALST={0x20, 0x6, [@IFE_META_PRIO={0x8, 0x3, @val=0x3}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x5}, @IFE_META_TCINDEX={0x6, 0x5, @val=0x4}, @IFE_META_TCINDEX={0x4, 0x5, @void}]}, @TCA_IFE_METALST={0x10, 0x6, [@IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_PRIO={0x8, 0x3, @val=0x9}]}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x8, 0x7, 0x7, 0x8, 0x3}}}]}, {0xf6, 0x6, "f80e3b2bb13bc02671c3293d385b39812c701c1855f02ef04e1ff7e2c53b2b2d0117873305bb7c0d48ec0e995169d113d994d620429202d8d88ae581fd5365b479efd9ccfb34da1b4086b44f92093cf6e6cd5951b47f4a2e67db809d9d2c7523a58073c3a8a85318427d1af065f522978451a11f9bb610be2a0b3a9b06f36ed123003bfe3513a9bf49014c4674a1ea4cb1a5307262a2df1967228a65b0b55f9a8995eae0783fb49b8c96793381d94e2f97e9353f5bf9bab6967ed505a236b0e7eb8d21fa84805193a9ff43fb818caee130075b007005d7aaab7fe098fb6f59be4e5f031bda65b7f3fbda9b7c46d2624a2da2"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1}}}}, @m_gact={0x130, 0x19, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x0, 0x1645, 0x20000000}}, @TCA_GACT_PARMS={0x18, 0x2, {0xf, 0x7, 0x5, 0x1, 0x10000}}]}, {0xdf, 0x6, "a860e35ddfae49fee487c8a9b0ca4c36f79b867e58ea79cfa48d93e6b5364c176cbb2056bd5a31f4e1a8654c01868470f28ac52ad0957cad665959ae955e6363cc6751da857bcc0a0d04682621d10cdaca1a544ecb3dc1a233e5fee20eefc1065e4662908ea76c1b2f36fe3a4b35eccbbdb350aad9e4b028012579db88c57527e84b1586aeb6e180735e0879aca2007ee0cabb5fb0c123c4858d2458aac7cfbadedd196a314a747eac5841b033fde103a35cadfb0c00c740f4f94dfa9f13adf3a82a1cb3d00fa11f6e5592217791c2467fb73dbf09b5102278aa79"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}, {0x3cc, 0x1, [@m_nat={0x70, 0xe, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x19a, 0x6, 0x5, 0x5, 0x3}, @loopback, @broadcast, 0x0, 0x1}}]}, {0x1d, 0x6, "cb4bb4ec4c7228635746b8222dda1c0156e877a5e1e758b7cf"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_connmark={0x130, 0x12, 0x0, 0x0, {{0xd}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x68, 0x100, 0x4, 0x4, 0x1000}, 0x7}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8, 0x600000, 0x5, 0x0, 0xfffffff2}, 0x7ff}}]}, {0xc5, 0x6, "e0415737ee8d65df710971297d1475b7d25b7498a68e68d259d10dd5bbb8c33cc960bb14d78255f44a8023af936a305799f082111667a576845f92177ab018a5b62c728fc67056a9ca1358672f6ea4281d16391f594fbf89c32824cc24deddb452a82d3446650674fc3892593eef3866afb3f84719df1157c293c61d9788b67784d43a0395c32005c445386618a7f7d82457d3ce296887d26c830f45bb0ab3713555996a41cf1cc627024a32636dd5c625acabe7619b40deb372e995dbe7e59317"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_sample={0xe4, 0x1f, 0x0, 0x0, {{0xb}, {0x7c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x9}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x7}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x401, 0x91f3875, 0x5, 0x8, 0x6}}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x10, 0x5289, 0x20000000, 0x9, 0x7}}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0xc00, 0x5, 0x0, 0x400, 0x401}}, @TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x74457aba}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x8, 0x7db, 0x0, 0xb46e, 0x3}}]}, {0x3e, 0x6, "b180309285714e2864eff155cce5aeca30cbc47129bcce6d3dd1db6245837b2f10bf3f78f69c4de7b30716ca2f4efd14c0b019f084c7258115c1"}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}, @m_skbmod={0xf4, 0x12, 0x0, 0x0, {{0xb}, {0x8c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_SMAC={0xa, 0x4, @link_local}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x8, 0x2, 0x20000000, 0x81, 0x9}, 0xb}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @random="835eaaa74bb0"}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x6, 0x2, 0x2, 0x0, 0x1f6}, 0x10}}, @TCA_SKBMOD_SMAC={0xa, 0x4, @local}, @TCA_SKBMOD_SMAC={0xa, 0x4, @random="dae690caacd7"}, @TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}, @TCA_SKBMOD_DMAC={0xa, 0x3, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x43}}]}, {0x3d, 0x6, "1569401d7d996773704f4468c555ea575f3b58cc6457c8ba4fecd531d7eb8c14bd7aabc2631cd8f9f8b78fc2436a766434a034bce2dec4b886"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_connmark={0x50, 0xc, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x6cab, 0x1, 0x5, 0x8, 0x1}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}]}, {0x1104, 0x1, [@m_sample={0x1038, 0x12, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x33e}]}, {0x1004, 0x6, "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"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3}}}}, @m_bpf={0xc8, 0xc, 0x0, 0x0, {{0x8}, {0x44, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x1}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_NAME={0x5, 0x6, '\x00'}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x3}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x1}, @TCA_ACT_BPF_OPS={0xc, 0x4, [{0x53e5, 0xb, 0x8, 0x4a06}]}]}, {0x60, 0x6, "e1bca700c791d5a4d9d4d876a042718cbb7dcd675c8598874cdfafd4e3bce067f7199fd6b701854e9577534de9fc1d63ae2b33b9decfabc6c0ff53e41cf0594e5071b2e0c939065173e15fc844ce88e6dd0d0a13a313c1b4ebc8290e"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2}}}}]}, {0x648, 0x1, [@m_mpls={0x108, 0x8, 0x0, 0x0, {{0x9}, {0x50, 0x2, 0x0, 0x1, [@TCA_MPLS_TTL={0x5, 0x7, 0x1}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x9, 0x200, 0xffffffffffffffff, 0x9, 0x1000}, 0x2}}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_TTL={0x5, 0x7, 0xc}, @TCA_MPLS_TTL={0x5, 0x7, 0x7}, @TCA_MPLS_TC={0x5, 0x6, 0x3}]}, {0x8f, 0x6, "6d4bef553e93e22362e79bc9cfd0ad16d234ada5d1c97504f06e23ad7d7b9d2e5346b64299dc1a1a95deb4c6a771a54beb3cb453f1c88e0164aa7e120cf147d53700f081e8d8c3df06812c5f150f48772052d24351abec055d00ffa26201750a1c537ae51252955e905a13bce8259451395f639ecc2d66687498b9bc3044b163b28ebc1171481d316ed945"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_simple={0xb4, 0x1f, 0x0, 0x0, {{0xb}, {0x10, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x9, 0x3, '!.\\]\x00'}]}, {0x7c, 0x6, "bcb65c007ccdc3396093774f793e7f1525511657e1ae6668372ee1c3f0842d7997bee0c644e9827e60fa51a5fd7e680de7857d299414c0dbe1b4d966c814f586f92aecac0e0bc1cce952e1cd123a29778ce2cbcd3b6bf7d3a24fa24ae43d62f55e28dd074f99e818355ce2ab91beec7160060545294b6c4b"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}, @m_mpls={0x140, 0x18, 0x0, 0x0, {{0x9}, {0x5c, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x80000001, 0x3, 0x10000000, 0x1, 0x6}, 0x2}}, @TCA_MPLS_LABEL={0x8, 0x5, 0x41f38}, @TCA_MPLS_PROTO={0x6, 0x4, 0xf6}, @TCA_MPLS_LABEL={0x8, 0x5, 0xacc97}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x9, 0x400, 0x8, 0x10, 0x9}, 0x1}}, @TCA_MPLS_LABEL={0x8, 0x5, 0xb7cf1}]}, {0xbb, 0x6, "30d65dd8d453439248cef9942b17a86ed3855bd8e83892bc2c9034ab095024ac6366a71e43460a2c603a443304c94b469bf68d9ce85b633978d1e59e3521193aaf8ece1591d51c9933b9c3535404988bdc2291a626d109378c809b71c3de73e905b54fe064bf4db5c31aca97f4c301d3487d97293aee281e4311456ef01e250a020dfd44158548dc88159c918817620e63a4fdc594c2edf0813d88dac2e0400b356c32615f1fd306636e5195cbfd901191e031d97f8826"}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}, @m_xt={0x1a4, 0x15, 0x0, 0x0, {{0x7}, {0x10c, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'security\x00'}, @TCA_IPT_TARG={0xda, 0x6, {0x7, 'security\x00', 0xfc, 0x7, "dd20e7b030d1e868c7dbf752b4bd1014fd8199cb916d20530d9cd7938960e0929fc8c8f261a4f8d2048fdd3f561701615ea21d149801e5b0c7fd7c84f9a2fcecce13ef1ca24a9e33dcf59d8cd040e334a85e145e751f4f7a345078254fd7ebbe38d5f7dd73cbcb420fdf6dbd5a2eeb61b8569a6e9a1d5a5fa14453efbc1f83baec895e0213c9c4cd0d8efab399964f451ecbcaada842c81fb23538ef462b29f9c4bca3ea3c70923d1f002e81588ced0c"}}, @TCA_IPT_INDEX={0x8, 0x3, 0x40}]}, {0x72, 0x6, "1ee44cee35c9563129e51377ecff8ced4a46c97cdf4692d7e85064ca805a3e423e6518e6fef1d6a004394ac9f32ee5cbdedce83da0009e5cc7dca7c4dd0b8442102673154964e1eebec6ea194e47459f0dd7316d59c22aa71b028821f071731d54a02fffbeb51e0a2de8256992b9"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_skbmod={0x12c, 0x17, 0x0, 0x0, {{0xb}, {0x38, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x2}, @TCA_SKBMOD_ETYPE={0x6}, @TCA_SKBMOD_SMAC={0xa, 0x4, @multicast}, @TCA_SKBMOD_SMAC={0xa, 0x4, @remote}]}, {0xc9, 0x6, "ec40d50e16efa388335348091f673eebcd6dd867f6164af804e90a93593e7ca14ed281f07ee9fd46250153122b576ebb2cdc88ccb505938c0f8e58645ff555838e78a270b7b44d3919af86d1ac1b9bf73ada81ad7f377e6afcd93d25c55ad5baadd2404bf5f3fc1e74b3220134d4115d9a99ba24c966df4cc58d3524762db66d928f2a11760dcf5c4498e91677f53c26132143806a8854dd091b063c513790062f3302fb7362237221d48ae19bb8840c79442a146f6fd0cc1a8f61a483d9b604eb6dbb6fc3"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_skbmod={0x78, 0x18, 0x0, 0x0, {{0xb}, {0x4}, {0x49, 0x6, "8085b4b357909c2e864914995290c200e7c622afef84b404f7bf8f3dc2dd29dfc02b7df17be51404cabb0e500d10552ba86d243884c8a9b6a2f126be3f2954e1dbb9f0cd96"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x1e64}}, 0x0)
syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff2f, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x21}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r3 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r4 = openat$binfmt(0xffffffffffffff9c, r3, 0x42, 0x1ff)
close(r4)
execveat$binfmt(0xffffffffffffff9c, r3, 0x0, 0x0, 0x0)
r5 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsmount(r5, 0x0, 0x0)
r6 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x0)
symlinkat(&(0x7f0000000080)='./file1\x00', r7, &(0x7f0000000140)='./file0\x00')

5.394248737s ago: executing program 1 (id=1051):
fsopen(&(0x7f0000000180)='proc\x00', 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x80002, 0x0)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r4, 0x84, 0x6d, &(0x7f0000000340)={0x0, 0x39, "4e413ac5de383471d4b95ee036b2c6994a94196027f0adf33c940f07f4782795d3d76db3f743f2d40069d01220a782e6e369cd469b0ec55c75"}, &(0x7f00000003c0)=0x41)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x12, r6, 0x0)
syz_clone3(&(0x7f00000006c0)={0xb0000000, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58)
connect$bt_sco(r5, &(0x7f0000000280), 0x8)
sendmmsg$inet6(r4, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2)

4.189288255s ago: executing program 0 (id=1052):
r0 = socket$inet6(0xa, 0x6, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
recvfrom$inet_nvme(0xffffffffffffffff, &(0x7f0000000300)=""/247, 0xf7, 0x10002, &(0x7f0000000440)=@generic={0xc4a89ffae796ea5a, "10bb5716412d2db716e10be3d0bc1b9d34f9daded1374468a4090493269eb670c90695b37a0c2ee7a130c319621757fa35ba598e92bcaa6e69181616077129bf4f6f13c0c6e927c2da5669543cb08953deced18ef0762cbe1e7cb248b35a6c42f6c5944ed71986a6a0b87781b763d01011f2c880bf56163299df0aa74965"}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket(0x11, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r6=>0x0})
bind$packet(r4, &(0x7f0000000180)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @dev}, 0x14)
sendmsg$netlink(r4, &(0x7f0000002ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40001}, 0x4095)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r7 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r7, 0x5412, 0x0)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r0, 0x5)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10)
sendmmsg(r8, &(0x7f0000002980), 0x400000000000239, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

3.917671329s ago: executing program 3 (id=1053):
syz_emit_ethernet(0x46, &(0x7f0000000000)={@random="91b882b09a5b", @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010101, @rand_addr=0x64010100}, "08000071ae9b1c43"}}}}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0x0, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)={0x34, 0x0, 0x1, 0x0, 0x0, {}, [@GTPA_LINK={0x8}, @GTPA_I_TEI={0x8}, @GTPA_O_TEI={0x8}, @GTPA_VERSION={0x8, 0x2, 0x1}]}, 0x34}}, 0x0)

3.835628426s ago: executing program 2 (id=1054):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0x6, 0x1, 0x5, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8f, 0x4006, 0x6, 0x0, 0x5, 0x4, 0x8, 0x400, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0xfffffffe, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0x6, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x9, 0x420, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x9, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x0, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x9, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x10000, 0x3, 0x5, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0xffe, 0xa2, 0x7, 0xa9, 0x5, 0x9, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0x0, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x9, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x4, 0x7fff, 0xffff, 0x2000a620, 0x2, 0x5, 0x1, 0x2, 0x5, 0xe7, 0x6, 0x16, 0xffffffff, 0x80000003, 0x5, 0x4, 0xc8, 0x9, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
ioctl$VIDIOC_QBUF(r0, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x7, 0x4, 0x0, 0x0, {}, {0x5, 0x0, 0x0, 0x0, 0x0, 0x8, "8000"}, 0x0, 0x2, {}, 0x20800})
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
mknod$loop(&(0x7f00000001c0)='./file0\x00', 0x2, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0)
r3 = syz_io_uring_setup(0x10d, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x181}, &(0x7f0000000140)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r6 = syz_io_uring_setup(0x7a2a, &(0x7f0000000300)={0x0, 0x2aee, 0x4, 0x1, 0x5f, 0x0, r3}, &(0x7f0000000880), &(0x7f00000008c0))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x2010, r6, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r3, 0x47f9, 0x0, 0x0, 0x0, 0x0)
clock_nanosleep(0x2, 0x1000000, &(0x7f0000000100)={0x77359400}, 0x0)
r7 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r7, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r7, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreq(r8, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
setsockopt$MRT_ADD_VIF(r7, 0x0, 0xca, &(0x7f0000000140)={0x1, 0x1, 0x4, 0x1a, @vifc_lcl_addr=@rand_addr=0x64010102, @dev={0xac, 0x14, 0x14, 0x37}}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb080045000000001ce00003000300907800fa000945f4fff600650005018800030a010102e000000100"/62], 0x0)
syz_init_net_socket$llc(0x1a, 0x3, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r7, 0x0, 0xd2, &(0x7f00000000c0)={@multicast1=0x1c, @empty=0xe0000300, 0x0, "8a79348df081496d0420922f45a71c1daa8b610468cd140526c41efcd3a4a422", 0x3, 0x1, 0x85}, 0x3c)

3.366857497s ago: executing program 3 (id=1055):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000040)={'wlan1\x00', {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x33}}})
msgsnd(0x0, 0x0, 0x4000, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000000)={0x3, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x6, @ipv4={'\x00', '\xff\xff', @local}}}}, 0x108)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r9, &(0x7f00000000c0), 0x12)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, r8, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x78}, @void, @void}}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x1, 0x2b}}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r9}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x4}}]}, 0x44}, 0x1, 0x0, 0x0, 0x400c080}, 0xc000)
getsockopt$inet6_buf(r7, 0x29, 0x30, 0x0, &(0x7f0000001000))
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f00000002c0)=ANY=[])
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x6, 0x1b, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x145, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r9}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0x4}, @ldst={0x0, 0x0, 0x1, 0xa, 0x2, 0x10, 0x4}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xb}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x7b7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0xb2, &(0x7f0000000540)=""/178, 0x41100, 0x74, '\x00', 0x0, @xdp, r9, 0x8, 0x0, 0x0, 0x10, &(0x7f00000008c0)={0x2, 0x5, 0x9, 0x1}, 0x10, 0x0, r9, 0xa, &(0x7f0000000940)=[0xffffffffffffffff], &(0x7f0000000980)=[{0x0, 0x2, 0x0, 0xc}, {0x2, 0x3, 0x7, 0x2}, {0x4, 0x4, 0xc, 0x2}, {0x2, 0x2, 0xf, 0xb}, {0x3, 0x5, 0x3, 0x4}, {0x4, 0x5, 0x1, 0x1}, {0x4, 0x5, 0xe, 0x1}, {0x2, 0x5, 0xc, 0xb}, {0x1, 0x4, 0x3, 0x9}, {0x2, 0x3, 0x4, 0x3}], 0x10, 0x7, @void, @value}, 0x94)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4048aecb, &(0x7f0000000000))

3.07259901s ago: executing program 1 (id=1056):
r0 = socket$inet6(0xa, 0x6, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
recvfrom$inet_nvme(0xffffffffffffffff, &(0x7f0000000300)=""/247, 0xf7, 0x10002, &(0x7f0000000440)=@generic={0xc4a89ffae796ea5a, "10bb5716412d2db716e10be3d0bc1b9d34f9daded1374468a4090493269eb670c90695b37a0c2ee7a130c319621757fa35ba598e92bcaa6e69181616077129bf4f6f13c0c6e927c2da5669543cb08953deced18ef0762cbe1e7cb248b35a6c42f6c5944ed71986a6a0b87781b763d01011f2c880bf56163299df0aa74965"}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket(0x11, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r6=>0x0})
bind$packet(r4, &(0x7f0000000180)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @dev}, 0x14)
sendmsg$netlink(r4, &(0x7f0000002ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40001}, 0x4095)
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x5452, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r7 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r7, 0x5412, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r0, 0x5)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10)
sendmmsg(r8, &(0x7f0000002980), 0x400000000000239, 0x0)

3.071785897s ago: executing program 0 (id=1057):
socket$inet_dccp(0x2, 0x6, 0x0)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000040), 0xc)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xd625, 0x0, 0x7, 0x1e1}, &(0x7f0000000940)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r2, 0x4d90, 0xbd09, 0x9, 0x0, 0x0)
io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0)
read(r0, &(0x7f0000000180)=""/119, 0x77)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0x1, 0x4000}, 0xc)
writev(r1, &(0x7f0000000340)=[{&(0x7f0000000080)='~', 0x1}], 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd74)
r7 = syz_io_uring_setup(0x2b3b, 0x0, &(0x7f0000000240), &(0x7f0000000480))
syz_io_uring_setup(0x917, &(0x7f0000000500)={0x0, 0x3fc, 0x4000, 0xffffff, 0x3d7, 0x0, r7}, &(0x7f0000000100), &(0x7f00000004c0))
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r8 = socket(0x2000000000000021, 0xa, 0x10000000000002)
r9 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r9, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, &(0x7f0000000380)="af6626a6f7113a42ea06b7e8e25772329e0000000000000064f97dd07514bee789ffd631a1563a4a387b8abdf6234bd2961edbceb5be7c42e5c3135f5f39056fd717db498eda2fd33e2eb54960a7cc484b8a6b5c42b4710316f8807a6b9bbbe1f103d3cd2871ac9e99dfa2a300"/120, 0x78)
accept4(r9, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000080))
openat$procfs(0xffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x0, 0x0)

2.077062633s ago: executing program 1 (id=1059):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x7, 0x1, 0x0, 0x0, 0x0, {0x7, 0x0, 0x6}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000100))
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x28, 0x0, 0x8, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0xfff, 0x67}}}}, ["", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4000004}, 0x20)
r3 = openat$dlm_plock(0xffffff9c, &(0x7f0000000280), 0x200240, 0x0)
ioctl$CDROMSTART(r3, 0x5308)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000300), 0xffffffffffffffff)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f0000000340)=<r6=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f0000000380)=<r7=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000003c0)=<r8=>0x0)
sendmsg$NFC_CMD_LLC_GET_PARAMS(r4, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x34, r5, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r7}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4001}, 0x20000881)
sendmsg$NFC_CMD_START_POLL(r4, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x34, r5, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x8}, @NFC_ATTR_TM_PROTOCOLS={0x8}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x40}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r8}]}, 0x34}, 0x1, 0x0, 0x0, 0x90}, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r3, 0xc0405610, &(0x7f00000005c0)={0x2, 0x1ff, 0x401, 0x0, <r9=>0xffffffffffffffff})
sendfile(r9, r1, 0x0, 0x1)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), r3)
sendmsg$NL80211_CMD_NEW_INTERFACE(r3, &(0x7f0000000800)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000007c0)={&(0x7f0000000680)={0x114, r10, 0x2, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller1\x00'}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'ip6gretap0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x5}, @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "75af1a35124e8c09ea54d3ec31fa8383590aa4073641d4f1"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "6b0b9bcc7bda00161ded1b32fc91ffcc44d21a0c317738cd"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}], @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x8, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "31f0116cce4328fb3fe8d3b61decb364ead2929fed36991e"}]]}, 0x114}, 0x1, 0x0, 0x0, 0x91}, 0x4000808)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000840), r11)
r12 = openat$ppp(0xffffff9c, &(0x7f0000000880), 0x119000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f00000008c0)={{0x1, 0x1, 0x18, <r13=>r12, {0x1}}, './file0\x00'})
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x9)
close_range(r0, r1, 0x0)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r13, &(0x7f0000000a00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0xa2000205}, 0xc, &(0x7f00000009c0)={&(0x7f0000000940)={0x7c, 0x2, 0x7, 0x201, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x7fffffffffffffff}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x9}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x7fffffffffffffff}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x8}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x10000}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x3}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x3}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4040014}, 0x4000004)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000c00)={r3, 0x58, &(0x7f0000000b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r14=>0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000fc0)={r1, 0xe0, &(0x7f0000000ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000cc0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x3, &(0x7f0000000d00)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000d40)=[0x0, 0x0, 0x0], <r15=>0x0, 0x81, &(0x7f0000000d80)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000e00), &(0x7f0000000e40), 0x8, 0xaa, 0x8, 0x8, &(0x7f0000000e80)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0x0, 0x7, &(0x7f0000000a40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1ff}, [@alu={0x4, 0x1, 0x8, 0x0, 0x0, 0xffffffffffffffff, 0x4}, @map_fd={0x18, 0x2, 0x1, 0x0, r3}, @exit]}, &(0x7f0000000a80)='GPL\x00', 0xfa, 0xac, &(0x7f0000000ac0)=""/172, 0x40f00, 0x0, '\x00', r14, @fallback=0x3c, r13, 0x8, &(0x7f0000000c40)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000c80)={0x1, 0x1, 0xfffffffc, 0x8713}, 0x10, r15, r13, 0x1, &(0x7f0000001040)=[0xffffffffffffffff, r3], &(0x7f0000001080)=[{0x4, 0x4, 0xa, 0x2}], 0x10, 0x9, @void, @value}, 0x94)

1.956946325s ago: executing program 0 (id=1060):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000040)={'wlan1\x00', {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x33}}})
msgsnd(0x0, 0x0, 0x4000, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xd, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000000)={0x3, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x6, @ipv4={'\x00', '\xff\xff', @local}}}}, 0x108)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r9, &(0x7f00000000c0), 0x12)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, r8, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x78}, @void, @void}}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x1, 0x2b}}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r9}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x4}}]}, 0x44}, 0x1, 0x0, 0x0, 0x400c080}, 0xc000)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f00000002c0)=ANY=[])
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x6, 0x1b, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x145, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r9}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0x4}, @ldst={0x0, 0x0, 0x1, 0xa, 0x2, 0x10, 0x4}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xb}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x7b7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0xb2, &(0x7f0000000540)=""/178, 0x41100, 0x74, '\x00', 0x0, @xdp, r9, 0x8, 0x0, 0x0, 0x10, &(0x7f00000008c0)={0x2, 0x5, 0x9, 0x1}, 0x10, 0x0, r9, 0xa, &(0x7f0000000940)=[0xffffffffffffffff], &(0x7f0000000980)=[{0x0, 0x2, 0x0, 0xc}, {0x2, 0x3, 0x7, 0x2}, {0x4, 0x4, 0xc, 0x2}, {0x2, 0x2, 0xf, 0xb}, {0x3, 0x5, 0x3, 0x4}, {0x4, 0x5, 0x1, 0x1}, {0x4, 0x5, 0xe, 0x1}, {0x2, 0x5, 0xc, 0xb}, {0x1, 0x4, 0x3, 0x9}, {0x2, 0x3, 0x4, 0x3}], 0x10, 0x7, @void, @value}, 0x94)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4048aecb, &(0x7f0000000000))

1.954868204s ago: executing program 1 (id=1061):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140))
syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000000)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x20, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f000000d380))
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
clock_gettime(0x0, &(0x7f00000000c0)={<r5=>0x0, <r6=>0x0})
clock_gettime(0x0, &(0x7f0000000180)={<r7=>0x0, <r8=>0x0})
timer_settime(r4, 0x1, &(0x7f00000001c0)={{r5, r6+10000000}, {r7, r8+60000000}}, 0x0)
ioprio_set$pid(0x3, 0x0, 0x0)
r9 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r10, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x0)
write$FUSE_CREATE_OPEN(r9, 0x0, 0x0)
mount(&(0x7f0000000100)=@nullb, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='iso9660\x00', 0x0, 0x0)

1.322107711s ago: executing program 3 (id=1062):
r0 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000240), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000800)=ANY=[@ANYBLOB="84010000", @ANYRES16=r2, @ANYBLOB="01000000000000000000010000030400048008000200010000000800010000000000040008"], 0x184}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r4, 0x6, 0x19, &(0x7f0000000000)=0xa, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_rdma(0x10, 0x3, 0x14)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r7, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r7, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r7, 0x84, 0x13, 0x0, 0x0)
sendto$inet6(r7, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0xffe4, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0x8c, 0x30, 0xb, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x74, 0x1, 0x0, 0x0, {{0x7}, {0x4c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}, @TCA_CT_ACTION={0x6, 0x3, 0x19}, @TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @TCA_CT_NAT_IPV6_MAX={0x14, 0xc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}}, 0x0)

1.309273088s ago: executing program 2 (id=1070):
r0 = socket$key(0xf, 0x3, 0x2)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000000740)=[{0x0}], 0x1}}, {{0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f00000008c0)="0e", 0x1}], 0x1}}], 0x2, 0x0)
recvmmsg(r0, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)

1.125172517s ago: executing program 2 (id=1063):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000040)={'wlan1\x00', {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x33}}})
msgsnd(0x0, 0x0, 0x4000, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xd, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000000)={0x3, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x6, @ipv4={'\x00', '\xff\xff', @local}}}}, 0x108)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r9, &(0x7f00000000c0), 0x12)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, r8, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x78}, @void, @void}}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x1, 0x2b}}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r9}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x4}}]}, 0x44}, 0x1, 0x0, 0x0, 0x400c080}, 0xc000)
getsockopt$inet6_buf(r7, 0x29, 0x30, 0x0, &(0x7f0000001000))
ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f00000002c0)=ANY=[])
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x6, 0x1b, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x145, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r9}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0x4}, @ldst={0x0, 0x0, 0x1, 0xa, 0x2, 0x10, 0x4}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xb}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x7b7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0xb2, &(0x7f0000000540)=""/178, 0x41100, 0x74, '\x00', 0x0, @xdp, r9, 0x8, 0x0, 0x0, 0x10, &(0x7f00000008c0)={0x2, 0x5, 0x9, 0x1}, 0x10, 0x0, r9, 0xa, &(0x7f0000000940)=[0xffffffffffffffff], &(0x7f0000000980)=[{0x0, 0x2, 0x0, 0xc}, {0x2, 0x3, 0x7, 0x2}, {0x4, 0x4, 0xc, 0x2}, {0x2, 0x2, 0xf, 0xb}, {0x3, 0x5, 0x3, 0x4}, {0x4, 0x5, 0x1, 0x1}, {0x4, 0x5, 0xe, 0x1}, {0x2, 0x5, 0xc, 0xb}, {0x1, 0x4, 0x3, 0x9}, {0x2, 0x3, 0x4, 0x3}], 0x10, 0x7, @void, @value}, 0x94)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4048aecb, &(0x7f0000000000))

237.388579ms ago: executing program 1 (id=1064):
syz_emit_ethernet(0x46, &(0x7f0000000000)={@random="91b882b09a5b", @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010101, @rand_addr=0x64010100}, "08000071ae9b1c43"}}}}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0x0, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)={0x34, 0x0, 0x1, 0x0, 0x0, {}, [@GTPA_LINK={0x8}, @GTPA_I_TEI={0x8}, @GTPA_O_TEI={0x8}, @GTPA_VERSION={0x8, 0x2, 0x1}]}, 0x34}}, 0x0)

0s ago: executing program 1 (id=1065):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x941c1, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r2)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r3 = syz_open_procfs(r1, &(0x7f0000000280)='attr/sockcreate\x00')
syz_usb_disconnect(0xffffffffffffffff)
preadv(r3, &(0x7f0000000440)=[{&(0x7f00000041c0)=""/4096, 0x1000}], 0x1, 0x1e, 0x20704593)
r4 = socket(0x1d, 0x2, 0x8)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
mkdirat(0xffffffffffffff9c, 0x0, 0x110)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = syz_open_procfs$pagemap(r1, &(0x7f0000000240))
ioctl$PAGEMAP_SCAN(r6, 0xc0606610, &(0x7f00000001c0)={0x60, 0x1, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0})
mount$9p_virtio(&(0x7f00000001c0), 0x0, &(0x7f00000004c0), 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYRES16=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x1f, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(xtea-generic)\x00'}, 0xffffffffffffff2b)
accept4(r8, 0x0, 0x0, 0x800)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000500)={0x0, 0x1, 0x20000000000000, 0x2000, &(0x7f0000000000/0x2000)=nil})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r7}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
syz_open_procfs(0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0)

kernel console output (not intermixed with test programs):

 audit: type=1326 audit(1743893623.436:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6913 comm="syz.2.208" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  100.485962][   T40] audit: type=1326 audit(1743893623.436:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6913 comm="syz.2.208" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  100.514448][   T40] audit: type=1326 audit(1743893623.436:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6913 comm="syz.2.208" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  100.530537][   T40] audit: type=1326 audit(1743893623.436:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6913 comm="syz.2.208" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  100.548063][   T40] audit: type=1326 audit(1743893623.436:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6913 comm="syz.2.208" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  101.867006][    C3] vkms_vblank_simulate: vblank timer overrun
[  102.362104][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  103.586173][ T6953] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  103.592310][ T6953] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  103.718171][    C3] vkms_vblank_simulate: vblank timer overrun
[  104.018889][    C3] vkms_vblank_simulate: vblank timer overrun
[  104.050824][    C3] vkms_vblank_simulate: vblank timer overrun
[  104.126566][    C3] vkms_vblank_simulate: vblank timer overrun
[  104.223998][    C3] vkms_vblank_simulate: vblank timer overrun
[  104.238449][ T6951] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  104.315693][ T6959] RDS: rds_bind could not find a transport for fe88::1, load rds_tcp or rds_rdma?
[  105.082213][    C3] vkms_vblank_simulate: vblank timer overrun
[  105.476237][ T6956] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  105.482098][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  107.138044][ T6996] netlink: 12 bytes leftover after parsing attributes in process `syz.0.228'.
[  107.141960][ T6996] netlink: 12 bytes leftover after parsing attributes in process `syz.0.228'.
[  107.582868][    C3] vkms_vblank_simulate: vblank timer overrun
[  108.109761][ T7003] FAULT_INJECTION: forcing a failure.
[  108.109761][ T7003] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  108.115718][ T7003] CPU: 3 UID: 0 PID: 7003 Comm: syz.1.230 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  108.115742][ T7003] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.115752][ T7003] Call Trace:
[  108.115757][ T7003]  <TASK>
[  108.115899][ T7003]  dump_stack_lvl+0x16c/0x1f0
[  108.115932][ T7003]  should_fail_ex+0x512/0x640
[  108.115956][ T7003]  _copy_from_user+0x2e/0xd0
[  108.115978][ T7003]  mmc_ioctl_cdrom_read_data+0x11b/0x7a0
[  108.116007][ T7003]  ? __pfx_mmc_ioctl_cdrom_read_data+0x10/0x10
[  108.116030][ T7003]  ? __lock_acquire+0xaa4/0x1ba0
[  108.116055][ T7003]  cdrom_ioctl+0x25e7/0x3190
[  108.116092][ T7003]  ? __pfx_cdrom_ioctl+0x10/0x10
[  108.116116][ T7003]  ? rpm_resume+0x80c/0x1310
[  108.116139][ T7003]  ? rcu_is_watching+0x12/0xc0
[  108.116159][ T7003]  ? rpm_resume+0x80c/0x1310
[  108.116178][ T7003]  ? trace_rpm_return_int+0x196/0x220
[  108.116200][ T7003]  ? rpm_resume+0x811/0x1310
[  108.116228][ T7003]  ? __pfx_rpm_resume+0x10/0x10
[  108.116247][ T7003]  ? do_raw_spin_lock+0x12c/0x2b0
[  108.116265][ T7003]  ? find_held_lock+0x2b/0x80
[  108.116288][ T7003]  ? lockdep_hardirqs_on+0x7c/0x110
[  108.116310][ T7003]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  108.116331][ T7003]  ? __pm_runtime_resume+0xc3/0x170
[  108.116357][ T7003]  sr_block_ioctl+0x1b0/0x250
[  108.116383][ T7003]  ? __pfx_sr_block_ioctl+0x10/0x10
[  108.116405][ T7003]  blkdev_compat_ptr_ioctl+0x9c/0xe0
[  108.116431][ T7003]  ? __pfx_blkdev_compat_ptr_ioctl+0x10/0x10
[  108.116455][ T7003]  compat_blkdev_ioctl+0x2eb/0x7a0
[  108.116483][ T7003]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  108.116511][ T7003]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  108.116537][ T7003]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  108.116557][ T7003]  __do_fast_syscall_32+0x73/0x120
[  108.116581][ T7003]  do_fast_syscall_32+0x32/0x80
[  108.116603][ T7003]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  108.116622][ T7003] RIP: 0023:0xf7f82579
[  108.116636][ T7003] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  108.116650][ T7003] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  108.116667][ T7003] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000530d
[  108.116677][ T7003] RDX: 00000000800002c0 RSI: 0000000000000000 RDI: 0000000000000000
[  108.116686][ T7003] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  108.116695][ T7003] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  108.116704][ T7003] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  108.116726][ T7003]  </TASK>
[  108.343487][    C3] vkms_vblank_simulate: vblank timer overrun
[  109.186846][    C3] vkms_vblank_simulate: vblank timer overrun
[  109.466863][    C3] vkms_vblank_simulate: vblank timer overrun
[  111.105513][ T7027] netlink: 64 bytes leftover after parsing attributes in process `syz.3.237'.
[  111.694806][    C3] vkms_vblank_simulate: vblank timer overrun
[  111.755646][  T836] IPVS: starting estimator thread 0...
[  111.866853][    C3] vkms_vblank_simulate: vblank timer overrun
[  111.872261][ T7042] IPVS: using max 26 ests per chain, 62400 per kthread
[  112.574636][ T7060] tmpfs: Bad value for 'mpol'
[  112.704804][ T7062] sg_write: data in/out 512/10 bytes for SCSI command 0xb7-- guessing data in;
[  112.704804][ T7062]    program syz.1.244 not setting count and/or reply_len properly
[  112.731576][    C3] vkms_vblank_simulate: vblank timer overrun
[  113.914842][    C3] vkms_vblank_simulate: vblank timer overrun
[  114.198823][    C3] vkms_vblank_simulate: vblank timer overrun
[  114.882151][    C3] vkms_vblank_simulate: vblank timer overrun
[  114.958291][    C3] vkms_vblank_simulate: vblank timer overrun
[  117.022316][ T7105] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  117.257232][ T7111] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  117.271998][   T40] audit: type=1400 audit(1743893640.336:150): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7109 comm="syz.2.256"
[  117.347277][ T6013] hid-generic 0005:0B57:05DF.0004: item fetching failed at offset 0/1
[  117.355022][ T6013] hid-generic 0005:0B57:05DF.0004: probe with driver hid-generic failed with error -22
[  117.946872][   T40] audit: type=1326 audit(1743893641.026:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.2.256" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  118.755126][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  118.758169][ T5953] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  120.421314][ T7148] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  120.842605][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  120.844944][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  121.271528][ T7158] RDS: rds_bind could not find a transport for fe88::2, load rds_tcp or rds_rdma?
[  121.314867][    C2] vkms_vblank_simulate: vblank timer overrun
[  121.546389][    C2] vkms_vblank_simulate: vblank timer overrun
[  121.615507][    C2] vkms_vblank_simulate: vblank timer overrun
[  121.671575][ T7152] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  121.756504][ T7165] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  121.774996][   T40] audit: type=1400 audit(1743893644.836:152): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7161 comm="syz.0.269"
[  121.826346][    C2] vkms_vblank_simulate: vblank timer overrun
[  121.851335][   T24] hid-generic 0005:0B57:05DF.0005: item fetching failed at offset 0/1
[  121.872996][   T24] hid-generic 0005:0B57:05DF.0005: probe with driver hid-generic failed with error -22
[  122.323079][    C2] vkms_vblank_simulate: vblank timer overrun
[  122.550382][   T40] audit: type=1326 audit(1743893645.606:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7161 comm="syz.0.269" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  122.912520][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  123.326359][    C2] vkms_vblank_simulate: vblank timer overrun
[  123.629248][    C2] vkms_vblank_simulate: vblank timer overrun
[  123.786688][    C2] vkms_vblank_simulate: vblank timer overrun
[  124.094995][    C2] vkms_vblank_simulate: vblank timer overrun
[  124.144608][    C2] vkms_vblank_simulate: vblank timer overrun
[  124.187840][ T7189] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  124.224580][    C2] vkms_vblank_simulate: vblank timer overrun
[  124.326385][    C2] vkms_vblank_simulate: vblank timer overrun
[  124.466694][    C2] vkms_vblank_simulate: vblank timer overrun
[  124.878760][    C2] vkms_vblank_simulate: vblank timer overrun
[  125.218644][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  125.221708][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  125.243961][   T40] audit: type=1400 audit(1743893648.296:154): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7203 comm="syz.1.279"
[  125.278235][    C2] vkms_vblank_simulate: vblank timer overrun
[  125.797780][ T7210] RDS: rds_bind could not find a transport for fe88::3, load rds_tcp or rds_rdma?
[  125.980670][   T40] audit: type=1326 audit(1743893649.026:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.1.279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  126.132618][ T7216] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  126.137018][ T7216] overlayfs: failed to set xattr on upper
[  126.143953][ T7216] overlayfs: ...falling back to redirect_dir=nofollow.
[  126.148319][ T7216] overlayfs: ...falling back to metacopy=off.
[  126.153027][ T7216] overlayfs: ...falling back to index=off.
[  126.157082][ T7216] overlayfs: ...falling back to uuid=null.
[  126.161658][ T7216] overlayfs: maximum fs stacking depth exceeded
[  126.424019][ T7207] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  127.242076][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  129.338628][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  129.925963][   T40] audit: type=1400 audit(1743893652.936:156): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7251 comm="syz.2.290"
[  129.996217][ T6009] hid-generic 0005:0B57:05DF.0006: item fetching failed at offset 0/1
[  130.001524][ T6009] hid-generic 0005:0B57:05DF.0006: probe with driver hid-generic failed with error -22
[  130.592426][   T40] audit: type=1326 audit(1743893653.656:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7251 comm="syz.2.290" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  130.788118][ T7268] netlink: 12 bytes leftover after parsing attributes in process `syz.0.294'.
[  130.804740][ T7268] netlink: 12 bytes leftover after parsing attributes in process `syz.0.294'.
[  131.027985][ T7271] netlink: 12 bytes leftover after parsing attributes in process `syz.2.293'.
[  131.087281][ T7271] ref_ctr_offset mismatch. inode: 0x18c offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xa
[  131.130148][ T7273] dccp_invalid_packet: P.Data Offset(10) too large
[  132.259700][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  132.267939][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  133.723705][ T7297] lo speed is unknown, defaulting to 1000
[  133.726218][ T7297] lo speed is unknown, defaulting to 1000
[  133.730021][ T7297] lo speed is unknown, defaulting to 1000
[  133.745890][ T7297] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  133.767878][ T7297] lo speed is unknown, defaulting to 1000
[  133.777476][ T7297] lo speed is unknown, defaulting to 1000
[  133.783396][ T7297] lo speed is unknown, defaulting to 1000
[  133.794111][ T7297] lo speed is unknown, defaulting to 1000
[  133.978591][    C0] vkms_vblank_simulate: vblank timer overrun
[  134.154532][    C0] vkms_vblank_simulate: vblank timer overrun
[  134.693073][ T7316] FAULT_INJECTION: forcing a failure.
[  134.693073][ T7316] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.723651][ T7316] CPU: 0 UID: 0 PID: 7316 Comm: syz.2.305 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  134.723676][ T7316] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.723685][ T7316] Call Trace:
[  134.723691][ T7316]  <TASK>
[  134.723698][ T7316]  dump_stack_lvl+0x16c/0x1f0
[  134.723725][ T7316]  should_fail_ex+0x512/0x640
[  134.723746][ T7316]  _copy_from_user+0x2e/0xd0
[  134.723765][ T7316]  ia32_restore_sigcontext+0xc3/0x630
[  134.723784][ T7316]  ? __pfx_ia32_restore_sigcontext+0x10/0x10
[  134.723806][ T7316]  ? rcu_is_watching+0x12/0xc0
[  134.723823][ T7316]  ? _raw_spin_unlock_irq+0x23/0x50
[  134.723842][ T7316]  ? lockdep_hardirqs_on+0x7c/0x110
[  134.723864][ T7316]  __do_compat_sys_sigreturn+0x14a/0x200
[  134.723882][ T7316]  ? __pfx___do_compat_sys_sigreturn+0x10/0x10
[  134.723905][ T7316]  do_int80_emulation+0x104/0x200
[  134.723928][ T7316]  asm_int80_emulation+0x1a/0x20
[  134.723942][ T7316] RIP: 0023:0xf73fe598
[  134.723955][ T7316] Code: 00 00 51 52 55 89 e5 0f 34 cd 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 90 58 b8 77 00 00 00 cd 80 <90> 8d b4 26 00 00 00 00 b8 ad 00 00 00 cd 80 90 90 90 90 90 90 90
[  134.723968][ T7316] RSP: 002b:00000000f5085774 EFLAGS: 00000296 ORIG_RAX: 0000000000000077
[  134.723983][ T7316] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  134.723992][ T7316] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  134.724000][ T7316] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  134.724008][ T7316] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  134.724016][ T7316] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  134.724032][ T7316]  </TASK>
[  134.833243][    C0] vkms_vblank_simulate: vblank timer overrun
[  134.874569][    C0] vkms_vblank_simulate: vblank timer overrun
[  135.570675][    C0] vkms_vblank_simulate: vblank timer overrun
[  136.580964][ T7343] Zero length message leads to an empty skb
[  136.861561][ T7348] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  137.522570][    C0] vkms_vblank_simulate: vblank timer overrun
[  138.058689][    C0] vkms_vblank_simulate: vblank timer overrun
[  138.471243][    C0] vkms_vblank_simulate: vblank timer overrun
[  138.609952][    C0] vkms_vblank_simulate: vblank timer overrun
[  138.636829][    C0] vkms_vblank_simulate: vblank timer overrun
[  138.698627][    C0] vkms_vblank_simulate: vblank timer overrun
[  139.223406][    C0] vkms_vblank_simulate: vblank timer overrun
[  139.326674][    C0] vkms_vblank_simulate: vblank timer overrun
[  139.362805][    C0] vkms_vblank_simulate: vblank timer overrun
[  139.518356][    C0] vkms_vblank_simulate: vblank timer overrun
[  140.516960][    C0] vkms_vblank_simulate: vblank timer overrun
[  142.182160][   T63] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  142.404996][   T63] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  142.408260][   T63] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  142.417914][   T63] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  142.421274][   T63] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  142.426737][   T63] usb 8-1: Manufacturer: syz
[  142.445827][   T63] usb 8-1: config 0 descriptor??
[  142.572149][   T63] rc_core: IR keymap rc-hauppauge not found
[  142.574648][   T63] Registered IR keymap rc-empty
[  142.584884][   T63] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  142.598324][   T63] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input7
[  143.957057][    C3] vkms_vblank_simulate: vblank timer overrun
[  143.994533][ T7394] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  144.108044][    C3] vkms_vblank_simulate: vblank timer overrun
[  145.069386][   T65] usb 8-1: USB disconnect, device number 2
[  145.738508][    C3] vkms_vblank_simulate: vblank timer overrun
[  145.790477][    C3] vkms_vblank_simulate: vblank timer overrun
[  145.846469][    C3] vkms_vblank_simulate: vblank timer overrun
[  145.955891][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  145.958365][ T5953] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  146.105244][    C3] vkms_vblank_simulate: vblank timer overrun
[  146.190546][    C3] vkms_vblank_simulate: vblank timer overrun
[  146.741414][   T34] IPVS: starting estimator thread 0...
[  146.838803][    C3] vkms_vblank_simulate: vblank timer overrun
[  146.854812][ T7434] IPVS: using max 32 ests per chain, 76800 per kthread
[  146.930571][    C3] vkms_vblank_simulate: vblank timer overrun
[  147.155215][ T7437] FAULT_INJECTION: forcing a failure.
[  147.155215][ T7437] name failslab, interval 1, probability 0, space 0, times 1
[  147.179748][ T7437] CPU: 3 UID: 0 PID: 7437 Comm: syz.1.334 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  147.179770][ T7437] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.179779][ T7437] Call Trace:
[  147.179784][ T7437]  <TASK>
[  147.179790][ T7437]  dump_stack_lvl+0x16c/0x1f0
[  147.179816][ T7437]  should_fail_ex+0x512/0x640
[  147.179832][ T7437]  ? __kmalloc_noprof+0xbf/0x510
[  147.179854][ T7437]  ? inotify_handle_inode_event+0x1cf/0x6f0
[  147.179869][ T7437]  should_failslab+0xc2/0x120
[  147.179883][ T7437]  __kmalloc_noprof+0xd2/0x510
[  147.179909][ T7437]  inotify_handle_inode_event+0x1cf/0x6f0
[  147.179925][ T7437]  inotify_ignored_and_remove_idr+0x28/0x70
[  147.179940][ T7437]  ? __pfx_inotify_freeing_mark+0x10/0x10
[  147.179953][ T7437]  fsnotify_free_mark+0xe9/0x140
[  147.179975][ T7437]  fsnotify_destroy_marks+0x24f/0x3c0
[  147.179999][ T7437]  ? __pfx_fsnotify_destroy_marks+0x10/0x10
[  147.180021][ T7437]  ? fsnotify_sb_delete+0x187/0x780
[  147.180038][ T7437]  ? iput+0x1a/0x880
[  147.180056][ T7437]  fsnotify_sb_delete+0x289/0x780
[  147.180077][ T7437]  ? __pfx_fsnotify_sb_delete+0x10/0x10
[  147.180097][ T7437]  ? __pfx_evict_inodes+0x10/0x10
[  147.180114][ T7437]  ? shrink_dcache_for_umount+0x1a6/0x3e0
[  147.180136][ T7437]  generic_shutdown_super+0xba/0x390
[  147.180166][ T7437]  kill_anon_super+0x3a/0x60
[  147.180183][ T7437]  deactivate_locked_super+0xbe/0x1a0
[  147.180203][ T7437]  deactivate_super+0xde/0x100
[  147.180222][ T7437]  cleanup_mnt+0x225/0x450
[  147.180244][ T7437]  task_work_run+0x14d/0x240
[  147.180262][ T7437]  ? __pfx_task_work_run+0x10/0x10
[  147.180278][ T7437]  ? __pfx___ia32_sys_umount+0x10/0x10
[  147.180303][ T7437]  syscall_exit_to_user_mode+0x27b/0x2a0
[  147.180325][ T7437]  __do_fast_syscall_32+0x80/0x120
[  147.180347][ T7437]  do_fast_syscall_32+0x32/0x80
[  147.180367][ T7437]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  147.180389][ T7437] RIP: 0023:0xf7f82579
[  147.180403][ T7437] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  147.180416][ T7437] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000034
[  147.180430][ T7437] RAX: 0000000000000000 RBX: 0000000080000000 RCX: 0000000000000000
[  147.180438][ T7437] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  147.180447][ T7437] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  147.180455][ T7437] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  147.180464][ T7437] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  147.180483][ T7437]  </TASK>
[  147.351729][    C3] vkms_vblank_simulate: vblank timer overrun
[  147.453534][ T7441] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  147.734841][ T7453] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  147.751496][   T40] audit: type=1400 audit(1743893670.806:158): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7450 comm="syz.0.339"
[  147.754021][ T6010] hid-generic 0005:0B57:05DF.0007: item fetching failed at offset 0/1
[  147.776472][ T6010] hid-generic 0005:0B57:05DF.0007: probe with driver hid-generic failed with error -22
[  148.143303][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  148.146341][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  148.463965][   T40] audit: type=1326 audit(1743893671.536:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7450 comm="syz.0.339" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  149.685446][ T7475] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  150.026557][    C3] vkms_vblank_simulate: vblank timer overrun
[  150.238593][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  150.246479][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  150.292082][   T10] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  150.463854][   T10] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  150.468179][   T10] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  150.490503][    C3] vkms_vblank_simulate: vblank timer overrun
[  150.503581][   T10] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  150.523017][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.530461][ T7485] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  150.564993][   T10] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  150.641604][ T7496] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  150.662327][   T40] audit: type=1400 audit(1743893673.736:160): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7494 comm="syz.3.351"
[  150.762043][   T10] usb 7-1: USB disconnect, device number 2
[  150.892015][    C3] vkms_vblank_simulate: vblank timer overrun
[  151.075420][ T7499] udevd[7499]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  151.371932][   T40] audit: type=1326 audit(1743893674.436:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7494 comm="syz.3.351" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  151.687354][    C3] vkms_vblank_simulate: vblank timer overrun
[  152.223363][ T7514] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  152.271979][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  152.292210][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  152.792405][ T7532] 9pnet_fd: Insufficient options for proto=fd
[  153.210411][ T7539] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  153.221606][   T40] audit: type=1400 audit(1743893676.286:162): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7536 comm="syz.0.360"
[  153.257570][   T34] hid-generic 0005:0B57:05DF.0008: item fetching failed at offset 0/1
[  153.274402][   T34] hid-generic 0005:0B57:05DF.0008: probe with driver hid-generic failed with error -22
[  153.365151][    C3] vkms_vblank_simulate: vblank timer overrun
[  153.944885][   T40] audit: type=1326 audit(1743893677.006:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7536 comm="syz.0.360" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  153.976162][    C3] vkms_vblank_simulate: vblank timer overrun
[  154.207468][    C3] vkms_vblank_simulate: vblank timer overrun
[  154.440447][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  155.304300][    C3] vkms_vblank_simulate: vblank timer overrun
[  156.379523][   T40] audit: type=1400 audit(1743893679.446:164): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=7548 comm="syz.0.362"
[  156.522315][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  156.527402][ T7564] Bluetooth: hci0: Opcode 0x0401 failed: -110
[  156.607175][    C3] vkms_vblank_simulate: vblank timer overrun
[  156.638478][    C3] vkms_vblank_simulate: vblank timer overrun
[  157.097722][ T7583] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  157.115949][   T40] audit: type=1400 audit(1743893680.146:165): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7576 comm="syz.0.370"
[  157.336013][ T7592] siw: device registration error -23
[  157.363448][    C3] vkms_vblank_simulate: vblank timer overrun
[  157.821245][   T40] audit: type=1326 audit(1743893680.886:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.0.370" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  158.441963][    C3] vkms_vblank_simulate: vblank timer overrun
[  158.482405][    C3] vkms_vblank_simulate: vblank timer overrun
[  158.557395][    C3] vkms_vblank_simulate: vblank timer overrun
[  158.612230][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  158.617289][ T7599] Bluetooth: hci0: Opcode 0x0401 failed: -110
[  158.674415][    C3] vkms_vblank_simulate: vblank timer overrun
[  158.710399][    C3] vkms_vblank_simulate: vblank timer overrun
[  159.151206][ T6013] IPVS: starting estimator thread 0...
[  159.251985][ T7612] IPVS: using max 34 ests per chain, 81600 per kthread
[  159.810356][    C3] vkms_vblank_simulate: vblank timer overrun
[  160.066939][    C3] vkms_vblank_simulate: vblank timer overrun
[  160.340863][ T7632] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  160.420589][   T40] audit: type=1400 audit(1743893683.466:167): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7625 comm="syz.2.383"
[  160.506352][    C3] vkms_vblank_simulate: vblank timer overrun
[  160.510526][ T7633] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  160.531078][   T34] hid-generic 0005:0B57:05DF.0009: item fetching failed at offset 0/1
[  160.550787][   T34] hid-generic 0005:0B57:05DF.0009: probe with driver hid-generic failed with error -22
[  160.627299][    C3] vkms_vblank_simulate: vblank timer overrun
[  160.671958][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  160.681925][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  160.757380][    C3] vkms_vblank_simulate: vblank timer overrun
[  161.020053][   T40] audit: type=1326 audit(1743893684.076:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  161.051989][   T40] audit: type=1326 audit(1743893684.076:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.383" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf73fe579 code=0x7fc00000
[  161.061515][   T40] audit: type=1326 audit(1743893684.076:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  161.081560][ T7648] RDS: rds_bind could not find a transport for fe88::4, load rds_tcp or rds_rdma?
[  161.091307][   T40] audit: type=1326 audit(1743893684.076:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  161.179876][   T40] audit: type=1326 audit(1743893684.076:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  161.198863][   T40] audit: type=1326 audit(1743893684.076:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  161.212554][   T40] audit: type=1326 audit(1743893684.076:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  161.226106][   T40] audit: type=1326 audit(1743893684.076:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  161.253178][   T40] audit: type=1326 audit(1743893684.076:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.2.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  161.372749][    C3] vkms_vblank_simulate: vblank timer overrun
[  161.518930][ T7642] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  161.527828][ T7641] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  162.323728][    C3] vkms_vblank_simulate: vblank timer overrun
[  162.762013][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  162.874328][    C3] vkms_vblank_simulate: vblank timer overrun
[  163.006352][    C3] vkms_vblank_simulate: vblank timer overrun
[  163.037013][ T7676] FAULT_INJECTION: forcing a failure.
[  163.037013][ T7676] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.051346][ T7676] CPU: 2 UID: 0 PID: 7676 Comm: syz.1.397 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  163.051370][ T7676] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.051379][ T7676] Call Trace:
[  163.051385][ T7676]  <TASK>
[  163.051392][ T7676]  dump_stack_lvl+0x16c/0x1f0
[  163.051421][ T7676]  should_fail_ex+0x512/0x640
[  163.051443][ T7676]  _copy_from_user+0x2e/0xd0
[  163.051465][ T7676]  drm_ioctl+0x4fb/0xc30
[  163.051492][ T7676]  ? __pfx_drm_mode_getconnector+0x10/0x10
[  163.051515][ T7676]  ? __pfx_drm_ioctl+0x10/0x10
[  163.051554][ T7676]  drm_compat_ioctl+0x327/0x460
[  163.051574][ T7676]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  163.051591][ T7676]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  163.051615][ T7676]  __do_fast_syscall_32+0x73/0x120
[  163.051641][ T7676]  do_fast_syscall_32+0x32/0x80
[  163.051664][ T7676]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  163.051684][ T7676] RIP: 0023:0xf7f82579
[  163.051697][ T7676] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  163.051712][ T7676] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  163.051727][ T7676] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c05064a7
[  163.051737][ T7676] RDX: 0000000080000200 RSI: 0000000000000000 RDI: 0000000000000000
[  163.051746][ T7676] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  163.051754][ T7676] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  163.051763][ T7676] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  163.051784][ T7676]  </TASK>
[  163.432336][ T7681] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  164.204505][ T5953] Bluetooth: hci3: command 0x0401 tx timeout
[  164.590365][    C3] vkms_vblank_simulate: vblank timer overrun
[  164.843093][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  165.405969][    C3] vkms_vblank_simulate: vblank timer overrun
[  165.967573][ T7704] RDS: rds_bind could not find a transport for fe88::2, load rds_tcp or rds_rdma?
[  166.186725][    C3] vkms_vblank_simulate: vblank timer overrun
[  166.339745][ T7703] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  166.564882][ T7717] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  166.579045][   T40] kauditd_printk_skb: 45 callbacks suppressed
[  166.579060][   T40] audit: type=1400 audit(1743893689.646:222): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7715 comm="syz.3.407"
[  166.604582][    C3] vkms_vblank_simulate: vblank timer overrun
[  166.636626][    C3] vkms_vblank_simulate: vblank timer overrun
[  166.715145][   T65] hid-generic 0005:0B57:05DF.000A: item fetching failed at offset 0/1
[  166.719181][   T65] hid-generic 0005:0B57:05DF.000A: probe with driver hid-generic failed with error -22
[  166.912050][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  167.270145][   T40] audit: type=1326 audit(1743893690.336:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7715 comm="syz.3.407" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  167.522447][    C3] vkms_vblank_simulate: vblank timer overrun
[  168.379509][    C3] vkms_vblank_simulate: vblank timer overrun
[  168.832675][ T7753] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  168.857945][   T40] audit: type=1400 audit(1743893691.906:224): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7748 comm="syz.1.417"
[  169.271060][    C3] vkms_vblank_simulate: vblank timer overrun
[  169.490557][    C3] vkms_vblank_simulate: vblank timer overrun
[  169.502504][ T5955] Bluetooth: hci0: command 0x0419 tx timeout
[  169.561312][   T40] audit: type=1326 audit(1743893692.636:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.1.417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  169.735985][    C3] vkms_vblank_simulate: vblank timer overrun
[  170.356608][ T5957] Bluetooth: hci2: command 0x0406 tx timeout
[  170.360084][ T5957] Bluetooth: hci1: command 0x0406 tx timeout
[  170.775012][    C3] vkms_vblank_simulate: vblank timer overrun
[  171.557731][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  171.613563][ T5953] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  171.701773][ T7788] FAULT_INJECTION: forcing a failure.
[  171.701773][ T7788] name failslab, interval 1, probability 0, space 0, times 0
[  171.709478][ T7788] CPU: 0 UID: 0 PID: 7788 Comm: syz.3.429 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  171.709499][ T7788] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  171.709508][ T7788] Call Trace:
[  171.709516][ T7788]  <TASK>
[  171.709522][ T7788]  dump_stack_lvl+0x16c/0x1f0
[  171.709548][ T7788]  should_fail_ex+0x512/0x640
[  171.709566][ T7788]  ? fs_reclaim_acquire+0xae/0x150
[  171.709586][ T7788]  ? tomoyo_encode2+0x100/0x3e0
[  171.709605][ T7788]  should_failslab+0xc2/0x120
[  171.709619][ T7788]  __kmalloc_noprof+0xd2/0x510
[  171.709639][ T7788]  ? d_absolute_path+0x136/0x1a0
[  171.709659][ T7788]  tomoyo_encode2+0x100/0x3e0
[  171.709680][ T7788]  tomoyo_encode+0x29/0x50
[  171.709699][ T7788]  tomoyo_realpath_from_path+0x18f/0x6e0
[  171.709725][ T7788]  tomoyo_path_number_perm+0x245/0x580
[  171.709742][ T7788]  ? tomoyo_path_number_perm+0x237/0x580
[  171.709762][ T7788]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  171.709780][ T7788]  ? find_held_lock+0x2b/0x80
[  171.709818][ T7788]  ? find_held_lock+0x2b/0x80
[  171.709835][ T7788]  ? hook_file_ioctl_common+0x145/0x410
[  171.709857][ T7788]  ? __fget_files+0x20e/0x3c0
[  171.709882][ T7788]  security_file_ioctl_compat+0x9b/0x240
[  171.709902][ T7788]  __do_compat_sys_ioctl+0x4e/0x2c0
[  171.709924][ T7788]  __do_fast_syscall_32+0x73/0x120
[  171.709948][ T7788]  do_fast_syscall_32+0x32/0x80
[  171.709969][ T7788]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  171.709987][ T7788] RIP: 0023:0xf7f64579
[  171.709998][ T7788] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  171.710010][ T7788] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  171.710025][ T7788] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000127e
[  171.710034][ T7788] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  171.710042][ T7788] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  171.710051][ T7788] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  171.710059][ T7788] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  171.710079][ T7788]  </TASK>
[  171.710100][ T7788] ERROR: Out of memory at tomoyo_realpath_from_path.
[  172.322425][    C3] vkms_vblank_simulate: vblank timer overrun
[  172.402529][    C3] vkms_vblank_simulate: vblank timer overrun
[  173.186230][    C3] vkms_vblank_simulate: vblank timer overrun
[  173.632331][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  173.970405][    C3] vkms_vblank_simulate: vblank timer overrun
[  174.146397][    C3] vkms_vblank_simulate: vblank timer overrun
[  174.886270][    C3] vkms_vblank_simulate: vblank timer overrun
[  174.926189][    C3] vkms_vblank_simulate: vblank timer overrun
[  175.206252][    C3] vkms_vblank_simulate: vblank timer overrun
[  175.323002][    C3] vkms_vblank_simulate: vblank timer overrun
[  175.712177][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  175.718520][ T5953] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  176.545282][ T7842] 9pnet_fd: Insufficient options for proto=fd
[  177.814426][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  180.123842][ T7868] RDS: rds_bind could not find a transport for fe88::1, load rds_tcp or rds_rdma?
[  180.452102][ T7858] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  182.322032][ T7897] 9pnet_fd: Insufficient options for proto=fd
[  186.037621][ T7930] RDS: rds_bind could not find a transport for fe88::1, load rds_tcp or rds_rdma?
[  186.603332][ T7928] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  187.078134][    C1] vkms_vblank_simulate: vblank timer overrun
[  187.103242][ T7939] netlink: 12 bytes leftover after parsing attributes in process `syz.1.466'.
[  187.110709][ T7939] netlink: 12 bytes leftover after parsing attributes in process `syz.1.466'.
[  187.158205][ T7942] netlink: 12 bytes leftover after parsing attributes in process `syz.3.467'.
[  187.163545][ T7942] netlink: 12 bytes leftover after parsing attributes in process `syz.3.467'.
[  187.592112][    C1] vkms_vblank_simulate: vblank timer overrun
[  187.618545][ T7953] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  187.636896][   T40] audit: type=1400 audit(1743893710.676:226): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7949 comm="syz.2.470"
[  187.692017][ T6013] hid-generic 0005:0B57:05DF.000B: item fetching failed at offset 0/1
[  187.711370][ T6013] hid-generic 0005:0B57:05DF.000B: probe with driver hid-generic failed with error -22
[  187.744118][ T7957] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  187.756536][   T40] audit: type=1400 audit(1743893710.806:227): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7955 comm="syz.0.471"
[  188.326453][   T40] audit: type=1326 audit(1743893711.396:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7949 comm="syz.2.470" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  188.494131][    C1] vkms_vblank_simulate: vblank timer overrun
[  188.524773][   T40] audit: type=1326 audit(1743893711.586:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7955 comm="syz.0.471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  188.803664][    C1] vkms_vblank_simulate: vblank timer overrun
[  189.209244][    C1] vkms_vblank_simulate: vblank timer overrun
[  189.645095][ T7967] RDS: rds_bind could not find a transport for fe88::1, load rds_tcp or rds_rdma?
[  190.335591][ T7960] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  190.458260][    C1] vkms_vblank_simulate: vblank timer overrun
[  190.658179][    C1] vkms_vblank_simulate: vblank timer overrun
[  190.696088][    C1] vkms_vblank_simulate: vblank timer overrun
[  190.760119][    C1] vkms_vblank_simulate: vblank timer overrun
[  191.922233][    C1] vkms_vblank_simulate: vblank timer overrun
[  193.242002][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  193.244513][ T5953] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  193.678884][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  193.682020][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  193.756094][    C3] vkms_vblank_simulate: vblank timer overrun
[  195.182108][    C3] vkms_vblank_simulate: vblank timer overrun
[  195.922848][    C3] vkms_vblank_simulate: vblank timer overrun
[  196.292078][    C3] vkms_vblank_simulate: vblank timer overrun
[  196.322939][    C3] vkms_vblank_simulate: vblank timer overrun
[  196.574029][    C3] vkms_vblank_simulate: vblank timer overrun
[  196.745536][ T8020] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  196.753394][   T40] audit: type=1400 audit(1743893719.826:230): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8016 comm="syz.0.488"
[  196.817165][ T6010] hid-generic 0005:0B57:05DF.000C: item fetching failed at offset 0/1
[  196.820842][ T6010] hid-generic 0005:0B57:05DF.000C: probe with driver hid-generic failed with error -22
[  197.411297][   T40] audit: type=1326 audit(1743893720.476:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8016 comm="syz.0.488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  197.826124][    C3] vkms_vblank_simulate: vblank timer overrun
[  198.634119][    C3] vkms_vblank_simulate: vblank timer overrun
[  199.325981][    C3] vkms_vblank_simulate: vblank timer overrun
[  199.406050][    C3] vkms_vblank_simulate: vblank timer overrun
[  199.854957][ T8051] netlink: 344 bytes leftover after parsing attributes in process `syz.0.496'.
[  201.242782][    C3] vkms_vblank_simulate: vblank timer overrun
[  201.468772][ T8065] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  201.495970][   T40] audit: type=1400 audit(1743893724.556:232): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8060 comm="syz.1.498"
[  201.575386][  T835] hid-generic 0005:0B57:05DF.000D: item fetching failed at offset 0/1
[  201.581232][  T835] hid-generic 0005:0B57:05DF.000D: probe with driver hid-generic failed with error -22
[  202.156808][   T40] audit: type=1326 audit(1743893725.226:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8060 comm="syz.1.498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  203.305977][    C3] vkms_vblank_simulate: vblank timer overrun
[  203.409981][    C3] vkms_vblank_simulate: vblank timer overrun
[  203.470058][    C3] vkms_vblank_simulate: vblank timer overrun
[  203.741958][    C3] vkms_vblank_simulate: vblank timer overrun
[  203.778005][    C3] vkms_vblank_simulate: vblank timer overrun
[  204.756939][    C3] vkms_vblank_simulate: vblank timer overrun
[  205.511973][    C3] vkms_vblank_simulate: vblank timer overrun
[  207.636985][ T8125] netlink: 344 bytes leftover after parsing attributes in process `syz.1.513'.
[  208.094594][    C1] vkms_vblank_simulate: vblank timer overrun
[  208.158968][    C1] vkms_vblank_simulate: vblank timer overrun
[  208.450680][    C1] vkms_vblank_simulate: vblank timer overrun
[  208.812058][    C1] vkms_vblank_simulate: vblank timer overrun
[  208.916169][    C1] vkms_vblank_simulate: vblank timer overrun
[  209.050209][ T8138] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  209.076047][   T40] audit: type=1400 audit(1743893732.136:234): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8135 comm="syz.0.516"
[  209.130610][   T34] hid-generic 0005:0B57:05DF.000E: item fetching failed at offset 0/1
[  209.134710][   T34] hid-generic 0005:0B57:05DF.000E: probe with driver hid-generic failed with error -22
[  209.821984][   T40] audit: type=1326 audit(1743893732.886:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.516" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  210.764811][    C1] vkms_vblank_simulate: vblank timer overrun
[  210.849994][    C1] vkms_vblank_simulate: vblank timer overrun
[  210.919605][    C1] vkms_vblank_simulate: vblank timer overrun
[  211.462436][    C1] vkms_vblank_simulate: vblank timer overrun
[  211.677914][    C1] vkms_vblank_simulate: vblank timer overrun
[  213.523042][ T8184] netlink: 344 bytes leftover after parsing attributes in process `syz.2.527'.
[  213.708729][ T8189] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  213.734579][   T40] audit: type=1400 audit(1743893736.786:236): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8187 comm="syz.3.528"
[  213.740890][   T24] hid-generic 0005:0B57:05DF.000F: item fetching failed at offset 0/1
[  213.771260][   T24] hid-generic 0005:0B57:05DF.000F: probe with driver hid-generic failed with error -22
[  213.880096][    C1] vkms_vblank_simulate: vblank timer overrun
[  214.521948][   T40] audit: type=1326 audit(1743893737.516:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8187 comm="syz.3.528" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  216.264714][ T8211] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  216.288154][   T40] audit: type=1400 audit(1743893739.366:238): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8209 comm="syz.2.533"
[  216.457899][    C1] vkms_vblank_simulate: vblank timer overrun
[  216.493879][    C1] vkms_vblank_simulate: vblank timer overrun
[  216.992653][   T40] audit: type=1326 audit(1743893739.986:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8209 comm="syz.2.533" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  217.305837][    C1] vkms_vblank_simulate: vblank timer overrun
[  217.749852][    C1] vkms_vblank_simulate: vblank timer overrun
[  219.355077][ T8253] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  219.372992][   T40] audit: type=1400 audit(1743893742.436:240): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8250 comm="syz.1.540"
[  219.419767][   T24] hid-generic 0005:0B57:05DF.0010: item fetching failed at offset 0/1
[  219.431749][   T24] hid-generic 0005:0B57:05DF.0010: probe with driver hid-generic failed with error -22
[  219.706472][ T8259] netlink: 344 bytes leftover after parsing attributes in process `syz.3.542'.
[  220.096246][   T40] audit: type=1326 audit(1743893743.166:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8250 comm="syz.1.540" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  220.885296][ T5953] Bluetooth: hci3: link tx timeout
[  220.887300][ T5953] Bluetooth: hci3: killing stalled connection 10:aa:aa:aa:aa:aa
[  220.893507][ T5953] Bluetooth: hci3: link tx timeout
[  220.900160][ T5953] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  221.817879][    C1] vkms_vblank_simulate: vblank timer overrun
[  222.145791][    C1] vkms_vblank_simulate: vblank timer overrun
[  222.427308][    C1] vkms_vblank_simulate: vblank timer overrun
[  222.699134][ T5953] Bluetooth: hci3: link tx timeout
[  222.701351][ T5953] Bluetooth: hci3: killing stalled connection 10:aa:aa:aa:aa:aa
[  222.704849][ T5953] Bluetooth: hci3: link tx timeout
[  222.707234][ T5953] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  222.777785][    C1] vkms_vblank_simulate: vblank timer overrun
[  222.913763][    C1] vkms_vblank_simulate: vblank timer overrun
[  222.992812][ T5953] Bluetooth: hci3: command 0x0401 tx timeout
[  223.422411][ T8304] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  223.430832][   T40] audit: type=1400 audit(1743893746.486:242): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8299 comm="syz.0.555"
[  223.534237][    C1] vkms_vblank_simulate: vblank timer overrun
[  223.652944][    C1] vkms_vblank_simulate: vblank timer overrun
[  223.725768][    C1] vkms_vblank_simulate: vblank timer overrun
[  224.202693][   T40] audit: type=1326 audit(1743893747.276:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8299 comm="syz.0.555" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  224.510592][ T8313] netlink: 344 bytes leftover after parsing attributes in process `syz.0.557'.
[  224.869838][    C1] vkms_vblank_simulate: vblank timer overrun
[  225.158217][ T5953] Bluetooth: hci3: command 0x0401 tx timeout
[  225.200561][    C1] vkms_vblank_simulate: vblank timer overrun
[  225.238711][    C1] vkms_vblank_simulate: vblank timer overrun
[  225.893770][    C1] vkms_vblank_simulate: vblank timer overrun
[  226.537799][    C1] vkms_vblank_simulate: vblank timer overrun
[  226.650841][    C1] vkms_vblank_simulate: vblank timer overrun
[  227.393760][    C1] vkms_vblank_simulate: vblank timer overrun
[  228.247751][ T8346] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  228.254995][   T40] audit: type=1400 audit(1743893751.336:244): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8342 comm="syz.1.567"
[  228.533752][    C1] vkms_vblank_simulate: vblank timer overrun
[  228.597895][    C1] vkms_vblank_simulate: vblank timer overrun
[  228.878940][   T40] audit: type=1326 audit(1743893751.936:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8342 comm="syz.1.567" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  229.369838][    C1] vkms_vblank_simulate: vblank timer overrun
[  230.365879][ T5953] Bluetooth: hci3: command 0x0401 tx timeout
[  230.857059][ T8380] netlink: 344 bytes leftover after parsing attributes in process `syz.2.576'.
[  231.006962][    C1] vkms_vblank_simulate: vblank timer overrun
[  231.257765][    C1] vkms_vblank_simulate: vblank timer overrun
[  231.278275][ T8387] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  231.332443][   T40] audit: type=1400 audit(1743893754.386:246): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8384 comm="syz.3.578"
[  231.543663][    C1] vkms_vblank_simulate: vblank timer overrun
[  231.975416][    C1] vkms_vblank_simulate: vblank timer overrun
[  232.008496][   T40] audit: type=1326 audit(1743893755.076:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8384 comm="syz.3.578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  232.092954][   T40] audit: type=1326 audit(1743893755.076:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8384 comm="syz.3.578" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f64579 code=0x7fc00000
[  232.169574][   T40] audit: type=1326 audit(1743893755.076:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8384 comm="syz.3.578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  233.107873][    C1] vkms_vblank_simulate: vblank timer overrun
[  233.317849][    C1] vkms_vblank_simulate: vblank timer overrun
[  233.585799][    C1] vkms_vblank_simulate: vblank timer overrun
[  233.689753][    C1] vkms_vblank_simulate: vblank timer overrun
[  233.729743][    C1] vkms_vblank_simulate: vblank timer overrun
[  234.079439][    C1] vkms_vblank_simulate: vblank timer overrun
[  234.817076][ T8425] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  234.833072][   T40] audit: type=1400 audit(1743893757.896:250): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8423 comm="syz.0.588"
[  235.392027][    C1] vkms_vblank_simulate: vblank timer overrun
[  235.552612][   T40] audit: type=1326 audit(1743893758.626:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8423 comm="syz.0.588" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  235.981700][    C1] vkms_vblank_simulate: vblank timer overrun
[  236.039860][    C1] vkms_vblank_simulate: vblank timer overrun
[  236.146256][    C1] vkms_vblank_simulate: vblank timer overrun
[  236.874228][    C1] vkms_vblank_simulate: vblank timer overrun
[  236.905672][    C1] vkms_vblank_simulate: vblank timer overrun
[  236.962220][    C1] vkms_vblank_simulate: vblank timer overrun
[  237.009882][    C1] vkms_vblank_simulate: vblank timer overrun
[  237.269848][ T8445] netlink: 344 bytes leftover after parsing attributes in process `syz.3.593'.
[  237.519129][ T5957] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  237.782754][    C1] vkms_vblank_simulate: vblank timer overrun
[  238.425652][    C1] vkms_vblank_simulate: vblank timer overrun
[  238.461753][    C1] vkms_vblank_simulate: vblank timer overrun
[  238.513680][    C1] vkms_vblank_simulate: vblank timer overrun
[  238.657708][    C1] vkms_vblank_simulate: vblank timer overrun
[  239.045672][    C1] vkms_vblank_simulate: vblank timer overrun
[  239.611166][ T8470] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  239.639960][   T40] audit: type=1400 audit(1743893762.706:252): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8465 comm="syz.1.599"
[  239.773643][    C1] vkms_vblank_simulate: vblank timer overrun
[  239.989599][    C1] vkms_vblank_simulate: vblank timer overrun
[  240.136095][    C1] vkms_vblank_simulate: vblank timer overrun
[  240.173647][    C1] vkms_vblank_simulate: vblank timer overrun
[  240.277589][    C1] vkms_vblank_simulate: vblank timer overrun
[  240.323530][   T40] audit: type=1326 audit(1743893763.396:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8465 comm="syz.1.599" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  240.417987][    C1] vkms_vblank_simulate: vblank timer overrun
[  240.657653][    C1] vkms_vblank_simulate: vblank timer overrun
[  240.717622][    C1] vkms_vblank_simulate: vblank timer overrun
[  241.169598][    C1] vkms_vblank_simulate: vblank timer overrun
[  241.252089][    C1] vkms_vblank_simulate: vblank timer overrun
[  241.285643][    C1] vkms_vblank_simulate: vblank timer overrun
[  241.621738][    C1] vkms_vblank_simulate: vblank timer overrun
[  241.653968][    C1] vkms_vblank_simulate: vblank timer overrun
[  242.441640][    C1] vkms_vblank_simulate: vblank timer overrun
[  242.501830][    C1] vkms_vblank_simulate: vblank timer overrun
[  242.597608][    C1] vkms_vblank_simulate: vblank timer overrun
[  242.624499][ T5957] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  242.906184][ T8493] netlink: 344 bytes leftover after parsing attributes in process `syz.0.606'.
[  243.421636][    C1] vkms_vblank_simulate: vblank timer overrun
[  244.417641][    C1] vkms_vblank_simulate: vblank timer overrun
[  244.558399][ T8511] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  244.578971][   T40] audit: type=1400 audit(1743893767.656:254): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8509 comm="syz.2.610"
[  245.248504][   T40] audit: type=1326 audit(1743893768.316:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8509 comm="syz.2.610" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  245.312823][    C1] vkms_vblank_simulate: vblank timer overrun
[  245.381190][   T40] audit: type=1326 audit(1743893768.316:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8509 comm="syz.2.610" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73fe579 code=0x7fc00000
[  245.443024][   T40] audit: type=1326 audit(1743893768.316:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8509 comm="syz.2.610" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  245.461981][   T40] audit: type=1326 audit(1743893768.316:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8509 comm="syz.2.610" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  245.469578][   T40] audit: type=1326 audit(1743893768.316:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8509 comm="syz.2.610" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  246.008508][ T5957] Bluetooth: hci1: link tx timeout
[  246.013457][ T5957] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  246.777510][    C1] vkms_vblank_simulate: vblank timer overrun
[  247.097543][    C1] vkms_vblank_simulate: vblank timer overrun
[  247.362743][    C1] vkms_vblank_simulate: vblank timer overrun
[  247.981552][    C1] vkms_vblank_simulate: vblank timer overrun
[  248.034117][ T5951] Bluetooth: hci1: command 0x0406 tx timeout
[  248.893636][ T8549] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  248.904264][   T40] audit: type=1400 audit(1743893771.976:260): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8546 comm="syz.0.621"
[  249.627039][   T40] audit: type=1326 audit(1743893772.696:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8546 comm="syz.0.621" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  249.651886][    C1] vkms_vblank_simulate: vblank timer overrun
[  249.967082][ T5957] Bluetooth: hci2: link tx timeout
[  249.970506][ T5957] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[  251.222166][    C1] vkms_vblank_simulate: vblank timer overrun
[  251.683727][    C1] vkms_vblank_simulate: vblank timer overrun
[  251.765572][    C1] vkms_vblank_simulate: vblank timer overrun
[  252.050077][ T5953] Bluetooth: hci2: command 0x0406 tx timeout
[  252.194251][    C1] vkms_vblank_simulate: vblank timer overrun
[  252.217582][ T8582] netlink: 344 bytes leftover after parsing attributes in process `syz.2.630'.
[  252.716427][    C1] vkms_vblank_simulate: vblank timer overrun
[  252.749691][    C1] vkms_vblank_simulate: vblank timer overrun
[  253.774775][    C1] vkms_vblank_simulate: vblank timer overrun
[  254.001859][    C1] vkms_vblank_simulate: vblank timer overrun
[  254.102064][    C1] vkms_vblank_simulate: vblank timer overrun
[  254.293528][ T8597] netlink: 356 bytes leftover after parsing attributes in process `syz.3.633'.
[  255.039742][    C1] vkms_vblank_simulate: vblank timer overrun
[  255.075031][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  255.077347][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  255.170903][ T8606] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  255.179517][   T40] audit: type=1400 audit(1743893778.256:262): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8605 comm="syz.2.635"
[  255.333546][    C1] vkms_vblank_simulate: vblank timer overrun
[  255.384127][    C1] vkms_vblank_simulate: vblank timer overrun
[  255.960483][ T5957] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  257.117527][    C1] vkms_vblank_simulate: vblank timer overrun
[  257.625461][    C1] vkms_vblank_simulate: vblank timer overrun
[  258.160383][ T8637] netlink: 12 bytes leftover after parsing attributes in process `syz.1.644'.
[  258.166306][ T8637] netlink: 12 bytes leftover after parsing attributes in process `syz.1.644'.
[  258.467504][    C1] vkms_vblank_simulate: vblank timer overrun
[  258.849852][    C1] vkms_vblank_simulate: vblank timer overrun
[  258.921500][    C1] vkms_vblank_simulate: vblank timer overrun
[  259.001512][    C1] vkms_vblank_simulate: vblank timer overrun
[  259.213481][    C1] vkms_vblank_simulate: vblank timer overrun
[  259.469518][    C1] vkms_vblank_simulate: vblank timer overrun
[  259.552044][    C1] vkms_vblank_simulate: vblank timer overrun
[  259.942216][    C1] vkms_vblank_simulate: vblank timer overrun
[  260.033433][    C1] vkms_vblank_simulate: vblank timer overrun
[  260.327677][    C1] vkms_vblank_simulate: vblank timer overrun
[  260.403876][    C1] vkms_vblank_simulate: vblank timer overrun
[  260.569688][ T8653] RDS: rds_bind could not find a transport for fe88::3, load rds_tcp or rds_rdma?
[  261.069681][ T8659] netlink: 344 bytes leftover after parsing attributes in process `syz.0.648'.
[  261.220572][ T8652] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  261.286297][ T8662] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  261.316127][   T40] audit: type=1400 audit(1743893784.386:263): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8661 comm="syz.1.649"
[  261.384100][    C1] vkms_vblank_simulate: vblank timer overrun
[  261.433447][    C1] vkms_vblank_simulate: vblank timer overrun
[  263.177449][    C1] vkms_vblank_simulate: vblank timer overrun
[  263.473436][    C1] vkms_vblank_simulate: vblank timer overrun
[  263.602588][ T5957] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  264.717871][    C1] vkms_vblank_simulate: vblank timer overrun
[  264.751757][    C1] vkms_vblank_simulate: vblank timer overrun
[  264.956077][ T8701] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  264.968979][   T40] audit: type=1400 audit(1743893788.036:264): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8700 comm="syz.1.660"
[  265.782259][    C1] vkms_vblank_simulate: vblank timer overrun
[  266.434684][    C1] vkms_vblank_simulate: vblank timer overrun
[  266.465419][    C1] vkms_vblank_simulate: vblank timer overrun
[  266.501391][    C1] vkms_vblank_simulate: vblank timer overrun
[  266.775309][    C1] vkms_vblank_simulate: vblank timer overrun
[  266.820475][    C1] vkms_vblank_simulate: vblank timer overrun
[  266.981732][    C1] vkms_vblank_simulate: vblank timer overrun
[  267.027268][    C1] vkms_vblank_simulate: vblank timer overrun
[  267.367245][ T8724] netlink: 348 bytes leftover after parsing attributes in process `syz.1.667'.
[  267.585064][    C1] vkms_vblank_simulate: vblank timer overrun
[  268.045357][    C1] vkms_vblank_simulate: vblank timer overrun
[  268.148871][    C1] vkms_vblank_simulate: vblank timer overrun
[  268.207317][    C1] vkms_vblank_simulate: vblank timer overrun
[  268.248446][    C1] vkms_vblank_simulate: vblank timer overrun
[  268.297455][    C1] vkms_vblank_simulate: vblank timer overrun
[  268.449370][    C1] vkms_vblank_simulate: vblank timer overrun
[  268.565415][    C1] vkms_vblank_simulate: vblank timer overrun
[  268.765394][    C1] vkms_vblank_simulate: vblank timer overrun
[  269.201416][    C1] vkms_vblank_simulate: vblank timer overrun
[  269.231410][    C1] vkms_vblank_simulate: vblank timer overrun
[  269.984118][ T8744] netlink: 344 bytes leftover after parsing attributes in process `syz.2.671'.
[  271.151668][ T8756] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  271.167082][   T40] audit: type=1400 audit(1743893794.236:265): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8754 comm="syz.1.673"
[  271.789264][    C1] vkms_vblank_simulate: vblank timer overrun
[  272.342056][    C1] vkms_vblank_simulate: vblank timer overrun
[  272.758441][    C1] vkms_vblank_simulate: vblank timer overrun
[  273.081337][    C1] vkms_vblank_simulate: vblank timer overrun
[  273.125349][    C1] vkms_vblank_simulate: vblank timer overrun
[  273.157702][    C1] vkms_vblank_simulate: vblank timer overrun
[  273.193562][    C1] vkms_vblank_simulate: vblank timer overrun
[  273.234985][    C1] vkms_vblank_simulate: vblank timer overrun
[  273.482106][ T5957] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  273.781700][    C1] vkms_vblank_simulate: vblank timer overrun
[  273.809316][    C1] vkms_vblank_simulate: vblank timer overrun
[  274.077330][    C1] vkms_vblank_simulate: vblank timer overrun
[  274.161942][    C1] vkms_vblank_simulate: vblank timer overrun
[  274.809329][    C1] vkms_vblank_simulate: vblank timer overrun
[  275.207805][    C1] vkms_vblank_simulate: vblank timer overrun
[  275.309332][    C1] vkms_vblank_simulate: vblank timer overrun
[  275.361305][    C1] vkms_vblank_simulate: vblank timer overrun
[  275.461293][    C1] vkms_vblank_simulate: vblank timer overrun
[  275.493293][    C1] vkms_vblank_simulate: vblank timer overrun
[  275.854412][ T8805] netlink: 344 bytes leftover after parsing attributes in process `syz.3.684'.
[  276.293471][    C1] vkms_vblank_simulate: vblank timer overrun
[  277.698849][ T8814] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  277.731012][   T40] audit: type=1400 audit(1743893800.776:266): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8813 comm="syz.0.686"
[  278.373249][    C1] vkms_vblank_simulate: vblank timer overrun
[  278.493379][    C1] vkms_vblank_simulate: vblank timer overrun
[  279.284943][    C1] vkms_vblank_simulate: vblank timer overrun
[  279.529645][ T5957] Bluetooth: hci0: link tx timeout
[  279.532221][ T5957] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa
[  280.589308][    C1] vkms_vblank_simulate: vblank timer overrun
[  280.825834][ T8848] netlink: 344 bytes leftover after parsing attributes in process `syz.0.695'.
[  281.277233][    C1] vkms_vblank_simulate: vblank timer overrun
[  281.317311][    C1] vkms_vblank_simulate: vblank timer overrun
[  281.431201][ T8856] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  281.517302][    C1] vkms_vblank_simulate: vblank timer overrun
[  281.522580][   T40] audit: type=1400 audit(1743893804.546:267): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8855 comm="syz.3.698"
[  281.642239][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  282.306153][    C1] vkms_vblank_simulate: vblank timer overrun
[  282.493251][    C1] vkms_vblank_simulate: vblank timer overrun
[  282.808486][ T5957] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  283.249255][    C1] vkms_vblank_simulate: vblank timer overrun
[  283.370624][    C1] vkms_vblank_simulate: vblank timer overrun
[  283.485483][    C1] vkms_vblank_simulate: vblank timer overrun
[  283.817305][    C1] vkms_vblank_simulate: vblank timer overrun
[  283.885763][    C1] vkms_vblank_simulate: vblank timer overrun
[  284.993296][    C1] vkms_vblank_simulate: vblank timer overrun
[  285.051993][    C1] vkms_vblank_simulate: vblank timer overrun
[  285.215047][ T8893] netlink: 344 bytes leftover after parsing attributes in process `syz.2.707'.
[  285.308367][ T8895] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  285.346256][   T40] audit: type=1400 audit(1743893808.416:268): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8894 comm="syz.0.708"
[  286.169236][    C1] vkms_vblank_simulate: vblank timer overrun
[  286.313861][ T5957] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  287.369228][    C1] vkms_vblank_simulate: vblank timer overrun
[  287.620650][ T8924] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  287.629506][   T40] audit: type=1400 audit(1743893810.696:269): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8922 comm="syz.3.716"
[  288.141146][    C1] vkms_vblank_simulate: vblank timer overrun
[  288.301185][    C1] vkms_vblank_simulate: vblank timer overrun
[  288.361471][   T40] audit: type=1326 audit(1743893811.426:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8922 comm="syz.3.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  288.370341][   T40] audit: type=1326 audit(1743893811.426:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8922 comm="syz.3.716" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f64579 code=0x7fc00000
[  288.474541][ T8932] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  288.633223][    C1] vkms_vblank_simulate: vblank timer overrun
[  288.650743][   T40] audit: type=1400 audit(1743893811.616:272): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8931 comm="syz.3.719"
[  288.861192][    C1] vkms_vblank_simulate: vblank timer overrun
[  289.017167][    C1] vkms_vblank_simulate: vblank timer overrun
[  289.157316][    C1] vkms_vblank_simulate: vblank timer overrun
[  289.179407][ T5957] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  289.201202][    C1] vkms_vblank_simulate: vblank timer overrun
[  289.409198][    C1] vkms_vblank_simulate: vblank timer overrun
[  290.689052][    C1] vkms_vblank_simulate: vblank timer overrun
[  292.469183][    C1] vkms_vblank_simulate: vblank timer overrun
[  294.442970][ T8988] netlink: 344 bytes leftover after parsing attributes in process `syz.0.732'.
[  294.556528][ T5957] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  294.572302][ T8991] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  294.613743][   T40] audit: type=1400 audit(1743893817.646:273): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8990 comm="syz.3.733"
[  294.893149][    C1] vkms_vblank_simulate: vblank timer overrun
[  296.051935][    C1] vkms_vblank_simulate: vblank timer overrun
[  298.942360][ T5957] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  299.087757][ T9033] netlink: 348 bytes leftover after parsing attributes in process `syz.2.746'.
[  299.190270][ T9035] netlink: 344 bytes leftover after parsing attributes in process `syz.3.747'.
[  301.028093][ T9044] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  301.167350][   T40] audit: type=1400 audit(1743893824.226:274): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=9043 comm="syz.3.749"
[  303.930004][ T9056] RDS: rds_bind could not find a transport for fe88::4, load rds_tcp or rds_rdma?
[  304.085594][ T5957] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  304.363709][ T9072] netlink: 344 bytes leftover after parsing attributes in process `syz.0.757'.
[  305.722095][ T9052] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  306.250760][ T9080] netlink: 344 bytes leftover after parsing attributes in process `syz.0.767'.
[  308.196949][ T9093] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  308.242024][   T40] audit: type=1400 audit(1743893831.286:275): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=9092 comm="syz.1.760"
[  309.354561][    C3] vkms_vblank_simulate: vblank timer overrun
[  309.773036][    C3] vkms_vblank_simulate: vblank timer overrun
[  309.871634][    C3] vkms_vblank_simulate: vblank timer overrun
[  309.921534][    C3] vkms_vblank_simulate: vblank timer overrun
[  310.383877][ T9121] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  310.400065][   T40] audit: type=1400 audit(1743893833.466:276): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=9118 comm="syz.1.768"
[  311.006123][   T40] audit: type=1326 audit(1743893834.076:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.1.768" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  311.191116][    C3] vkms_vblank_simulate: vblank timer overrun
[  311.223669][ T9125] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  311.774606][    C3] vkms_vblank_simulate: vblank timer overrun
[  311.838915][ T9133] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  311.843014][ T9133] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  312.061058][    C3] vkms_vblank_simulate: vblank timer overrun
[  312.118293][    C3] vkms_vblank_simulate: vblank timer overrun
[  312.290412][    C3] vkms_vblank_simulate: vblank timer overrun
[  312.928370][ T9145] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  312.953331][   T40] audit: type=1400 audit(1743893836.006:278): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=9144 comm="syz.3.775"
[  312.983714][    C3] vkms_vblank_simulate: vblank timer overrun
[  313.159204][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  313.185758][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  313.210837][ T9130] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  313.244816][    C3] vkms_vblank_simulate: vblank timer overrun
[  313.370555][ T5953] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  313.613008][    C3] vkms_vblank_simulate: vblank timer overrun
[  315.244861][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  316.558964][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  316.561269][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  317.221676][ T5953] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  317.312149][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  318.064044][ T9200] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  318.088966][    C1] vkms_vblank_simulate: vblank timer overrun
[  318.101078][   T40] audit: type=1400 audit(1743893841.136:279): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=9196 comm="syz.1.789"
[  318.124932][    C1] vkms_vblank_simulate: vblank timer overrun
[  318.520926][    C1] vkms_vblank_simulate: vblank timer overrun
[  318.809815][   T40] audit: type=1326 audit(1743893841.846:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.1.789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  319.390572][ T9217] netlink: 344 bytes leftover after parsing attributes in process `syz.3.794'.
[  319.520903][    C1] vkms_vblank_simulate: vblank timer overrun
[  319.660880][    C1] vkms_vblank_simulate: vblank timer overrun
[  319.721767][    C1] vkms_vblank_simulate: vblank timer overrun
[  319.756874][    C1] vkms_vblank_simulate: vblank timer overrun
[  319.792876][    C1] vkms_vblank_simulate: vblank timer overrun
[  320.007964][    C1] vkms_vblank_simulate: vblank timer overrun
[  320.856192][    C1] vkms_vblank_simulate: vblank timer overrun
[  321.124990][    C1] vkms_vblank_simulate: vblank timer overrun
[  321.324694][    C1] vkms_vblank_simulate: vblank timer overrun
[  321.391048][    C1] vkms_vblank_simulate: vblank timer overrun
[  322.438871][    C1] vkms_vblank_simulate: vblank timer overrun
[  322.766296][    C1] vkms_vblank_simulate: vblank timer overrun
[  323.121687][    C1] vkms_vblank_simulate: vblank timer overrun
[  323.230881][ T9252] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  323.464102][    C1] vkms_vblank_simulate: vblank timer overrun
[  325.232019][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  325.234069][ T5953] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  326.146207][    C1] vkms_vblank_simulate: vblank timer overrun
[  326.360868][    C1] vkms_vblank_simulate: vblank timer overrun
[  326.995562][    C1] vkms_vblank_simulate: vblank timer overrun
[  327.020935][    C1] vkms_vblank_simulate: vblank timer overrun
[  327.401930][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  332.268852][ T9328] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  333.937529][    C1] vkms_vblank_simulate: vblank timer overrun
[  334.028741][    C1] vkms_vblank_simulate: vblank timer overrun
[  334.282374][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  334.285103][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  334.448791][    C1] vkms_vblank_simulate: vblank timer overrun
[  334.509501][    C1] vkms_vblank_simulate: vblank timer overrun
[  334.854830][    C1] vkms_vblank_simulate: vblank timer overrun
[  335.348859][    C1] vkms_vblank_simulate: vblank timer overrun
[  335.468782][    C1] vkms_vblank_simulate: vblank timer overrun
[  335.517714][ T9367] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  335.868767][    C1] vkms_vblank_simulate: vblank timer overrun
[  336.357401][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  336.364160][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  336.592455][ T9384] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  336.600460][   T40] audit: type=1400 audit(1743893859.666:281): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=9381 comm="syz.0.835"
[  337.344477][   T40] audit: type=1326 audit(1743893860.416:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9381 comm="syz.0.835" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  337.700809][    C1] vkms_vblank_simulate: vblank timer overrun
[  338.259010][    C1] vkms_vblank_simulate: vblank timer overrun
[  338.370858][    C1] vkms_vblank_simulate: vblank timer overrun
[  338.440817][    C1] vkms_vblank_simulate: vblank timer overrun
[  338.479465][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  338.846205][ T9405] RDS: rds_bind could not find a transport for fe88::3, load rds_tcp or rds_rdma?
[  339.484806][    C1] vkms_vblank_simulate: vblank timer overrun
[  339.604763][    C1] vkms_vblank_simulate: vblank timer overrun
[  339.920866][    C1] vkms_vblank_simulate: vblank timer overrun
[  339.984817][ T9403] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  340.532026][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  340.972669][    C1] vkms_vblank_simulate: vblank timer overrun
[  341.680832][    C1] vkms_vblank_simulate: vblank timer overrun
[  343.532725][    C1] vkms_vblank_simulate: vblank timer overrun
[  343.560692][    C1] vkms_vblank_simulate: vblank timer overrun
[  343.664654][    C1] vkms_vblank_simulate: vblank timer overrun
[  343.716642][    C1] vkms_vblank_simulate: vblank timer overrun
[  344.540364][ T9470] RDS: rds_bind could not find a transport for fe88::2, load rds_tcp or rds_rdma?
[  344.598394][    C1] vkms_vblank_simulate: vblank timer overrun
[  344.626857][    C1] hrtimer: interrupt took 57872891 ns
[  344.696227][    C1] vkms_vblank_simulate: vblank timer overrun
[  345.142096][    C1] vkms_vblank_simulate: vblank timer overrun
[  345.274698][    C1] vkms_vblank_simulate: vblank timer overrun
[  345.415460][    C1] vkms_vblank_simulate: vblank timer overrun
[  345.609491][ T9481] netlink: 344 bytes leftover after parsing attributes in process `syz.2.856'.
[  346.452320][ T9464] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  346.844640][    C1] vkms_vblank_simulate: vblank timer overrun
[  347.312016][    C1] vkms_vblank_simulate: vblank timer overrun
[  347.408631][    C1] vkms_vblank_simulate: vblank timer overrun
[  348.046928][    C1] vkms_vblank_simulate: vblank timer overrun
[  348.391610][    C1] vkms_vblank_simulate: vblank timer overrun
[  348.991449][    C1] vkms_vblank_simulate: vblank timer overrun
[  349.179575][ T9523] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  349.188354][   T40] audit: type=1400 audit(1743893872.256:283): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=9521 comm="syz.3.866"
[  349.504666][    C1] vkms_vblank_simulate: vblank timer overrun
[  349.757444][    C1] vkms_vblank_simulate: vblank timer overrun
[  349.845741][    C1] vkms_vblank_simulate: vblank timer overrun
[  349.896076][ T9530] netlink: 344 bytes leftover after parsing attributes in process `syz.1.868'.
[  349.960610][    C1] vkms_vblank_simulate: vblank timer overrun
[  350.127294][   T40] audit: type=1326 audit(1743893873.046:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9521 comm="syz.3.866" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  350.141426][    C1] vkms_vblank_simulate: vblank timer overrun
[  350.460655][    C1] vkms_vblank_simulate: vblank timer overrun
[  350.776008][    C1] vkms_vblank_simulate: vblank timer overrun
[  350.808628][    C1] vkms_vblank_simulate: vblank timer overrun
[  350.889780][ T9539] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  351.088809][    C1] vkms_vblank_simulate: vblank timer overrun
[  351.180625][    C1] vkms_vblank_simulate: vblank timer overrun
[  352.232599][    C1] vkms_vblank_simulate: vblank timer overrun
[  352.284622][    C1] vkms_vblank_simulate: vblank timer overrun
[  352.464695][    C1] vkms_vblank_simulate: vblank timer overrun
[  352.835626][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  352.841375][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  354.603427][    C1] vkms_vblank_simulate: vblank timer overrun
[  354.920999][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  354.954308][    C1] vkms_vblank_simulate: vblank timer overrun
[  355.315459][ T9587] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  355.372025][    C1] vkms_vblank_simulate: vblank timer overrun
[  355.404572][    C1] vkms_vblank_simulate: vblank timer overrun
[  355.555417][    C1] vkms_vblank_simulate: vblank timer overrun
[  355.836575][    C1] vkms_vblank_simulate: vblank timer overrun
[  356.840575][    C1] vkms_vblank_simulate: vblank timer overrun
[  357.072047][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  357.074796][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  357.198699][    C1] vkms_vblank_simulate: vblank timer overrun
[  357.380647][    C1] vkms_vblank_simulate: vblank timer overrun
[  357.543452][    C1] vkms_vblank_simulate: vblank timer overrun
[  358.098649][ T9625] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  358.294315][ T9632] FAULT_INJECTION: forcing a failure.
[  358.294315][ T9632] name failslab, interval 1, probability 0, space 0, times 0
[  358.300702][ T9632] CPU: 0 UID: 0 PID: 9632 Comm: syz.0.895 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  358.300725][ T9632] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  358.300734][ T9632] Call Trace:
[  358.300743][ T9632]  <TASK>
[  358.300751][ T9632]  dump_stack_lvl+0x16c/0x1f0
[  358.300779][ T9632]  should_fail_ex+0x512/0x640
[  358.300798][ T9632]  ? fs_reclaim_acquire+0xae/0x150
[  358.300818][ T9632]  ? tomoyo_encode2+0x100/0x3e0
[  358.300838][ T9632]  should_failslab+0xc2/0x120
[  358.300853][ T9632]  __kmalloc_noprof+0xd2/0x510
[  358.300883][ T9632]  tomoyo_encode2+0x100/0x3e0
[  358.300906][ T9632]  tomoyo_encode+0x29/0x50
[  358.301143][ T9632]  tomoyo_realpath_from_path+0x18f/0x6e0
[  358.301167][ T9632]  ? tomoyo_profile+0x47/0x60
[  358.301193][ T9632]  tomoyo_path_number_perm+0x245/0x580
[  358.301209][ T9632]  ? tomoyo_path_number_perm+0x237/0x580
[  358.301228][ T9632]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  358.301247][ T9632]  ? find_held_lock+0x2b/0x80
[  358.301295][ T9632]  ? find_held_lock+0x2b/0x80
[  358.301313][ T9632]  ? hook_file_ioctl_common+0x145/0x410
[  358.301333][ T9632]  ? __fget_files+0x20e/0x3c0
[  358.301357][ T9632]  security_file_ioctl_compat+0x9b/0x240
[  358.301376][ T9632]  __do_compat_sys_ioctl+0x4e/0x2c0
[  358.301398][ T9632]  __do_fast_syscall_32+0x73/0x120
[  358.301422][ T9632]  do_fast_syscall_32+0x32/0x80
[  358.301444][ T9632]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  358.301464][ T9632] RIP: 0023:0xf7f34579
[  358.301477][ T9632] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  358.301492][ T9632] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  358.301508][ T9632] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008955
[  358.301517][ T9632] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  358.301526][ T9632] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  358.301534][ T9632] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  358.301542][ T9632] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  358.301561][ T9632]  </TASK>
[  358.301582][ T9632] ERROR: Out of memory at tomoyo_realpath_from_path.
[  359.096552][    C1] vkms_vblank_simulate: vblank timer overrun
[  359.161565][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  359.169936][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  359.424324][    C1] vkms_vblank_simulate: vblank timer overrun
[  359.568371][ T9659] FAULT_INJECTION: forcing a failure.
[  359.568371][ T9659] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  359.586024][ T9659] CPU: 3 UID: 0 PID: 9659 Comm: syz.0.902 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  359.586052][ T9659] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.586063][ T9659] Call Trace:
[  359.586070][ T9659]  <TASK>
[  359.586077][ T9659]  dump_stack_lvl+0x16c/0x1f0
[  359.586108][ T9659]  should_fail_ex+0x512/0x640
[  359.586132][ T9659]  _copy_from_iter+0x2a4/0x15b0
[  359.586158][ T9659]  ? alloc_pages_mpol+0x25a/0x550
[  359.586175][ T9659]  ? __pfx__copy_from_iter+0x10/0x10
[  359.586195][ T9659]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  359.586210][ T9659]  ? trace_mm_page_alloc+0x11f/0x1a0
[  359.586249][ T9659]  copy_page_from_iter+0xa5/0x120
[  359.586273][ T9659]  tun_build_skb.constprop.0+0x292/0x1480
[  359.586306][ T9659]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[  359.586334][ T9659]  ? __lock_acquire+0x5ca/0x1ba0
[  359.586364][ T9659]  ? find_held_lock+0x2b/0x80
[  359.586389][ T9659]  tun_get_user+0x165f/0x3b10
[  359.586424][ T9659]  ? __pfx_tun_get_user+0x10/0x10
[  359.586447][ T9659]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  359.586476][ T9659]  ? find_held_lock+0x2b/0x80
[  359.586496][ T9659]  ? tun_get+0x191/0x370
[  359.586523][ T9659]  tun_chr_write_iter+0xdc/0x210
[  359.586549][ T9659]  vfs_write+0x5ba/0x1180
[  359.586591][ T9659]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  359.586618][ T9659]  ? __pfx_vfs_write+0x10/0x10
[  359.586639][ T9659]  ? find_held_lock+0x2b/0x80
[  359.586676][ T9659]  ksys_write+0x12a/0x240
[  359.586699][ T9659]  ? __pfx_ksys_write+0x10/0x10
[  359.586725][ T9659]  ? rcu_is_watching+0x12/0xc0
[  359.586749][ T9659]  __do_fast_syscall_32+0x73/0x120
[  359.586777][ T9659]  do_fast_syscall_32+0x32/0x80
[  359.586803][ T9659]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  359.586824][ T9659] RIP: 0023:0xf7f34579
[  359.586838][ T9659] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  359.586855][ T9659] RSP: 002b:00000000f5056520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  359.586872][ T9659] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000000
[  359.586883][ T9659] RDX: 0000000000000046 RSI: 00000000f73bcff4 RDI: 0000000000000000
[  359.586893][ T9659] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  359.586904][ T9659] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  359.586914][ T9659] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  359.586937][ T9659]  </TASK>
[  360.053734][ T9661] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  360.088368][    C1] vkms_vblank_simulate: vblank timer overrun
[  360.360504][    C1] vkms_vblank_simulate: vblank timer overrun
[  360.556526][    C1] vkms_vblank_simulate: vblank timer overrun
[  361.252578][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  361.255325][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  361.271738][    C1] vkms_vblank_simulate: vblank timer overrun
[  361.464577][    C1] vkms_vblank_simulate: vblank timer overrun
[  362.108509][    C1] vkms_vblank_simulate: vblank timer overrun
[  362.308471][    C1] vkms_vblank_simulate: vblank timer overrun
[  362.931015][    C1] vkms_vblank_simulate: vblank timer overrun
[  363.004476][    C1] vkms_vblank_simulate: vblank timer overrun
[  363.270745][    C1] vkms_vblank_simulate: vblank timer overrun
[  363.541031][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  363.631036][ T9714] netlink: 344 bytes leftover after parsing attributes in process `syz.2.915'.
[  363.956402][ T5957] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  365.562974][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  366.184830][ T9748] warning: `syz.0.924' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  366.924429][ T5957] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  366.982991][ T9757] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  366.991253][   T40] audit: type=1400 audit(1743893890.056:285): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=9753 comm="syz.3.926"
[  367.607937][ T9766] bridge0: entered promiscuous mode
[  367.624647][ T9766] macvlan2: entered promiscuous mode
[  367.638310][ T9766] bridge0: port 3(macvlan2) entered blocking state
[  367.640855][ T9766] bridge0: port 3(macvlan2) entered disabled state
[  367.642104][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  367.648768][ T9766] macvlan2: entered allmulticast mode
[  367.653559][ T9766] bridge0: entered allmulticast mode
[  367.661940][   T40] audit: type=1326 audit(1743893890.726:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9753 comm="syz.3.926" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  367.716116][ T9766] macvlan2: left allmulticast mode
[  367.718549][ T9766] bridge0: left allmulticast mode
[  367.725766][ T9766] bridge0: left promiscuous mode
[  367.744528][   T40] audit: type=1326 audit(1743893890.726:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9753 comm="syz.3.926" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f64579 code=0x7fc00000
[  367.763952][   T40] audit: type=1326 audit(1743893890.726:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9753 comm="syz.3.926" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  367.782972][   T40] audit: type=1326 audit(1743893890.726:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9753 comm="syz.3.926" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  367.795464][   T40] audit: type=1326 audit(1743893890.726:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9753 comm="syz.3.926" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  367.802862][   T40] audit: type=1326 audit(1743893890.726:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9753 comm="syz.3.926" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  367.811736][   T40] audit: type=1326 audit(1743893890.726:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9753 comm="syz.3.926" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  367.821356][   T40] audit: type=1326 audit(1743893890.726:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9753 comm="syz.3.926" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  367.838524][   T40] audit: type=1326 audit(1743893890.726:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9753 comm="syz.3.926" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  367.902671][ T9770] netlink: 344 bytes leftover after parsing attributes in process `syz.0.930'.
[  369.545851][ T5957] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  369.689289][ T9795] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  371.240075][ T9809] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  371.470819][ T9805] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  372.464623][ T5953] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  372.740549][ T9833] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  372.759449][   T40] kauditd_printk_skb: 71 callbacks suppressed
[  372.759462][   T40] audit: type=1400 audit(1743893895.826:366): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=9829 comm="syz.2.947"
[  373.251978][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  373.268787][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  373.442115][   T40] audit: type=1326 audit(1743893896.496:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9829 comm="syz.2.947" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7fc00000
[  373.698892][ T9843] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«=
[  373.918122][ T9837] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  374.576698][ T5953] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  374.868840][ T9866] FAULT_INJECTION: forcing a failure.
[  374.868840][ T9866] name failslab, interval 1, probability 0, space 0, times 0
[  374.882783][ T9866] CPU: 0 UID: 0 PID: 9866 Comm: syz.0.956 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  374.882818][ T9866] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  374.882829][ T9866] Call Trace:
[  374.882834][ T9866]  <TASK>
[  374.882840][ T9866]  dump_stack_lvl+0x16c/0x1f0
[  374.882868][ T9866]  should_fail_ex+0x512/0x640
[  374.882886][ T9866]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  374.882921][ T9866]  ? __pfx_hugetlb_vm_op_open+0x10/0x10
[  374.882945][ T9866]  should_failslab+0xc2/0x120
[  374.882961][ T9866]  __kmalloc_cache_noprof+0x6a/0x3e0
[  374.882982][ T9866]  ? hugetlb_vma_lock_alloc+0xbc/0x1f0
[  374.883006][ T9866]  ? __pfx_hugetlb_vm_op_open+0x10/0x10
[  374.883028][ T9866]  hugetlb_vma_lock_alloc+0xbc/0x1f0
[  374.883050][ T9866]  hugetlb_vm_op_open+0x26c/0x5b0
[  374.883073][ T9866]  ? __pfx_hugetlb_vm_op_open+0x10/0x10
[  374.883094][ T9866]  __split_vma+0x733/0x1030
[  374.883120][ T9866]  ? __pfx___split_vma+0x10/0x10
[  374.883148][ T9866]  ? ima_file_mprotect+0x1ba/0x690
[  374.883173][ T9866]  vma_modify+0x33f/0x410
[  374.883198][ T9866]  vma_modify_flags+0x212/0x2d0
[  374.883220][ T9866]  ? __pfx_vma_modify_flags+0x10/0x10
[  374.883259][ T9866]  mprotect_fixup+0x2b3/0xb10
[  374.883283][ T9866]  ? __pfx_mprotect_fixup+0x10/0x10
[  374.883314][ T9866]  do_mprotect_pkey+0x9ca/0xd50
[  374.883342][ T9866]  ? __pfx_do_mprotect_pkey+0x10/0x10
[  374.883372][ T9866]  ? __pfx___schedule+0x10/0x10
[  374.883391][ T9866]  ? __fget_files+0x20e/0x3c0
[  374.883429][ T9866]  __ia32_sys_mprotect+0x75/0xb0
[  374.883452][ T9866]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  374.883475][ T9866]  __do_fast_syscall_32+0x73/0x120
[  374.883500][ T9866]  do_fast_syscall_32+0x32/0x80
[  374.883522][ T9866]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  374.883542][ T9866] RIP: 0023:0xf7f34579
[  374.883555][ T9866] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  374.883570][ T9866] RSP: 002b:00000000f501455c EFLAGS: 00000296 ORIG_RAX: 000000000000007d
[  374.883585][ T9866] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000800000
[  374.883595][ T9866] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000000
[  374.883604][ T9866] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  374.883612][ T9866] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  374.883621][ T9866] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  374.883643][ T9866]  </TASK>
[  374.883692][ T9866] HugeTLB: unable to allocate vma specific lock
[  375.315507][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  375.846115][ T9875] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  375.880788][   T40] audit: type=1400 audit(1743893898.946:368): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=9873 comm="syz.0.959"
[  376.784542][ T9876] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  377.393700][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  377.769923][ T9902] netlink: 40 bytes leftover after parsing attributes in process `syz.1.967'.
[  377.955490][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  377.958569][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  377.974000][    C1] vkms_vblank_simulate: vblank timer overrun
[  378.016522][    C1] vkms_vblank_simulate: vblank timer overrun
[  378.240641][    C1] vkms_vblank_simulate: vblank timer overrun
[  379.456355][    C1] vkms_vblank_simulate: vblank timer overrun
[  379.826710][ T9925] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  380.240346][    C1] vkms_vblank_simulate: vblank timer overrun
[  380.472350][    C1] vkms_vblank_simulate: vblank timer overrun
[  380.620642][ T9936] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  380.784216][ T5957] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  380.860729][    C1] vkms_vblank_simulate: vblank timer overrun
[  381.080487][ T9938] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  381.081212][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  381.093524][ T5953] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  383.152327][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  383.542447][ T9976] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  383.827607][   T40] audit: type=1326 audit(1743893906.896:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9983 comm="syz.0.988" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x0
[  384.513846][ T9991] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.519794][ T9991] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.973218][ T5957] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  385.242103][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  385.244702][ T5953] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  385.969023][T10017] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  386.417754][T10014] FAULT_INJECTION: forcing a failure.
[  386.417754][T10014] name failslab, interval 1, probability 0, space 0, times 0
[  386.425737][T10014] CPU: 1 UID: 0 PID: 10014 Comm: syz.0.995 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  386.425759][T10014] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  386.425768][T10014] Call Trace:
[  386.425774][T10014]  <TASK>
[  386.425780][T10014]  dump_stack_lvl+0x16c/0x1f0
[  386.425805][T10014]  should_fail_ex+0x512/0x640
[  386.425823][T10014]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  386.425848][T10014]  should_failslab+0xc2/0x120
[  386.425863][T10014]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  386.425883][T10014]  ? find_held_lock+0x2b/0x80
[  386.425902][T10014]  ? alloc_inode+0xc3/0x240
[  386.425921][T10014]  alloc_inode+0xc3/0x240
[  386.425938][T10014]  alloc_anon_inode+0x28/0x3e0
[  386.425957][T10014]  ? alloc_fd+0x471/0x7d0
[  386.425978][T10014]  __anon_inode_getfile+0x1ea/0x370
[  386.426004][T10014]  new_userfaultfd+0x25e/0x3d0
[  386.426021][T10014]  __ia32_sys_userfaultfd+0x4b/0xb0
[  386.426039][T10014]  __do_fast_syscall_32+0x73/0x120
[  386.426062][T10014]  do_fast_syscall_32+0x32/0x80
[  386.426082][T10014]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  386.426101][T10014] RIP: 0023:0xf7f34579
[  386.426113][T10014] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  386.426127][T10014] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000176
[  386.426141][T10014] RAX: ffffffffffffffda RBX: 0000000000080001 RCX: 0000000000000000
[  386.426150][T10014] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  386.426159][T10014] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  386.426167][T10014] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  386.426175][T10014] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  386.426193][T10014]  </TASK>
[  386.976801][ T9999] lo speed is unknown, defaulting to 1000
[  387.066044][ T5957] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  387.336619][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  387.357141][ T5953] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  389.392041][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  389.738248][T10060] trusted_key: encrypted_key: insufficient parameters specified
[  390.711541][T10071] FAULT_INJECTION: forcing a failure.
[  390.711541][T10071] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  390.727961][T10071] CPU: 1 UID: 0 PID: 10071 Comm: syz.1.1009 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  390.728003][T10071] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  390.728012][T10071] Call Trace:
[  390.728018][T10071]  <TASK>
[  390.728024][T10071]  dump_stack_lvl+0x16c/0x1f0
[  390.728047][T10071]  should_fail_ex+0x512/0x640
[  390.728066][T10071]  strncpy_from_user+0x3b/0x2e0
[  390.728084][T10071]  __do_sys_add_key+0xce/0x470
[  390.728107][T10071]  ? __pfx___do_sys_add_key+0x10/0x10
[  390.728128][T10071]  ? ksys_write+0x1b9/0x240
[  390.728173][T10071]  ? rcu_is_watching+0x12/0xc0
[  390.728199][T10071]  __do_fast_syscall_32+0x73/0x120
[  390.728221][T10071]  do_fast_syscall_32+0x32/0x80
[  390.728242][T10071]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  390.728261][T10071] RIP: 0023:0xf7f82579
[  390.728273][T10071] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  390.728286][T10071] RSP: 002b:00000000f506455c EFLAGS: 00000296 ORIG_RAX: 000000000000011e
[  390.728302][T10071] RAX: ffffffffffffffda RBX: 0000000080000140 RCX: 0000000080000180
[  390.728312][T10071] RDX: 0000000080000100 RSI: 00000000000000ca RDI: 00000000fffffffe
[  390.728321][T10071] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  390.728329][T10071] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  390.728339][T10071] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  390.728359][T10071]  </TASK>
[  391.109992][T10072] syz_tun: entered allmulticast mode
[  391.145438][T10072] dvmrp1: entered allmulticast mode
[  391.483832][T10085] bond0: option ad_select: unable to set because the bond device is up
[  391.499954][T10068] syz_tun: left allmulticast mode
[  391.508050][T10068] dvmrp1: left allmulticast mode
[  391.511597][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  391.766506][T10090] FAULT_INJECTION: forcing a failure.
[  391.766506][T10090] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  391.771645][T10090] CPU: 2 UID: 0 PID: 10090 Comm: syz.1.1013 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  391.771669][T10090] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  391.771680][T10090] Call Trace:
[  391.771687][T10090]  <TASK>
[  391.771694][T10090]  dump_stack_lvl+0x16c/0x1f0
[  391.771724][T10090]  should_fail_ex+0x512/0x640
[  391.771751][T10090]  _copy_from_user+0x2e/0xd0
[  391.771775][T10090]  kstrtouint_from_user+0xd6/0x1d0
[  391.771803][T10090]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  391.771842][T10090]  ? __lock_acquire+0xaa4/0x1ba0
[  391.771870][T10090]  proc_fail_nth_write+0x83/0x250
[  391.771892][T10090]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  391.771927][T10090]  vfs_write+0x25c/0x1180
[  391.771947][T10090]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  391.771971][T10090]  ? __pfx___mutex_lock+0x10/0x10
[  391.771993][T10090]  ? __pfx_vfs_write+0x10/0x10
[  391.772020][T10090]  ? __fget_files+0x20e/0x3c0
[  391.772049][T10090]  ksys_write+0x12a/0x240
[  391.772070][T10090]  ? __pfx_ksys_write+0x10/0x10
[  391.772095][T10090]  ? rcu_is_watching+0x12/0xc0
[  391.772120][T10090]  __do_fast_syscall_32+0x73/0x120
[  391.772169][T10090]  do_fast_syscall_32+0x32/0x80
[  391.772194][T10090]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  391.772216][T10090] RIP: 0023:0xf7f82579
[  391.772231][T10090] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  391.772248][T10090] RSP: 002b:00000000f5085590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  391.772266][T10090] RAX: ffffffffffffffda RBX: 000000000000000f RCX: 00000000f5085620
[  391.772277][T10090] RDX: 0000000000000001 RSI: 00000000f740cff4 RDI: 0000000000000000
[  391.772287][T10090] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  391.772297][T10090] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  391.772307][T10090] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  391.772332][T10090]  </TASK>
[  393.505089][T10116] ucma_write: process 977 (syz.2.1020) changed security contexts after opening file descriptor, this is not allowed.
[  393.554494][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  393.847648][   T40] audit: type=1804 audit(1743893916.926:370): pid=10124 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1021" name="/newroot/270/file0" dev="tmpfs" ino=1403 res=1 errno=0
[  393.976778][T10124] dccp_invalid_packet: P.Data Offset(10) too large
[  393.981101][T10124] netlink: 'syz.0.1021': attribute type 1 has an invalid length.
[  393.985545][T10124] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1021'.
[  394.352947][    C1] vkms_vblank_simulate: vblank timer overrun
[  394.436266][    C1] vkms_vblank_simulate: vblank timer overrun
[  394.864228][   T40] audit: type=1400 audit(1743894173.944:371): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3AE2090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B007B717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=10149 comm="syz.0.1027"
[  394.955978][T10153] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  394.959581][T10134] lo speed is unknown, defaulting to 1000
[  395.020177][    C1] vkms_vblank_simulate: vblank timer overrun
[  395.492279][    C1] vkms_vblank_simulate: vblank timer overrun
[  395.612394][   T40] audit: type=1326 audit(1743894174.674:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.0.1027" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  395.620068][   T40] audit: type=1326 audit(1743894174.674:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.0.1027" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f34579 code=0x7fc00000
[  395.676672][   T40] audit: type=1326 audit(1743894174.674:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.0.1027" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  395.700917][   T40] audit: type=1326 audit(1743894174.674:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.0.1027" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  395.710549][   T40] audit: type=1326 audit(1743894174.674:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.0.1027" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  395.740759][   T40] audit: type=1326 audit(1743894174.674:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.0.1027" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  395.767445][   T40] audit: type=1326 audit(1743894174.674:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.0.1027" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  395.801971][   T40] audit: type=1326 audit(1743894174.674:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.0.1027" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7fc00000
[  396.008274][T10170] input: syz0 as /devices/virtual/input/input9
[  396.254505][T10174] netlink: 344 bytes leftover after parsing attributes in process `syz.1.1033'.
[  396.364204][    C1] vkms_vblank_simulate: vblank timer overrun
[  396.396908][    C1] vkms_vblank_simulate: vblank timer overrun
[  396.436216][    C1] vkms_vblank_simulate: vblank timer overrun
[  396.479914][T10178] netlink: 344 bytes leftover after parsing attributes in process `syz.2.1034'.
[  396.641956][    C1] vkms_vblank_simulate: vblank timer overrun
[  396.892233][    C1] vkms_vblank_simulate: vblank timer overrun
[  396.926089][ T5953] Bluetooth: hci0: command 0x0419 tx timeout
[  396.942381][ T5957] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  398.003825][    C1] vkms_vblank_simulate: vblank timer overrun
[  398.324298][ T6013] IPVS: starting estimator thread 0...
[  398.662132][T10195] IPVS: using max 31 ests per chain, 74400 per kthread
[  398.991973][ T5957] Bluetooth: hci0: command 0x0419 tx timeout
[  399.522164][T10206] bridge0: entered promiscuous mode
[  399.544800][T10206] macvlan2: entered promiscuous mode
[  399.556229][   T40] kauditd_printk_skb: 29 callbacks suppressed
[  399.556243][   T40] audit: type=1326 audit(1743894178.534:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10197 comm="syz.3.1039" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7fc00000
[  399.573252][T10206] bridge0: port 3(macvlan2) entered blocking state
[  399.585482][T10206] bridge0: port 3(macvlan2) entered disabled state
[  399.588560][T10206] macvlan2: entered allmulticast mode
[  399.593193][T10206] bridge0: entered allmulticast mode
[  399.650660][T10206] macvlan2: left allmulticast mode
[  399.652606][T10206] bridge0: left allmulticast mode
[  399.655020][T10206] bridge0: left promiscuous mode
[  402.950835][ T1197] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  402.955382][ T1197] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  402.966383][   T40] audit: type=1326 audit(1743894182.044:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10245 comm="syz.3.1050" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x0
[  403.009632][    C1] vkms_vblank_simulate: vblank timer overrun
[  403.060155][    C1] vkms_vblank_simulate: vblank timer overrun
[  403.176112][    C1] vkms_vblank_simulate: vblank timer overrun
[  403.329001][    C1] vkms_vblank_simulate: vblank timer overrun
[  403.540141][    C1] vkms_vblank_simulate: vblank timer overrun
[  403.675411][T10256] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  403.688916][T10256] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  403.963828][    C1] vkms_vblank_simulate: vblank timer overrun
[  404.207641][    C1] vkms_vblank_simulate: vblank timer overrun
[  404.600736][T10262] bridge0: entered promiscuous mode
[  404.606667][T10262] macvlan3: entered promiscuous mode
[  404.616444][T10262] bridge0: port 3(macvlan3) entered blocking state
[  404.622527][T10262] bridge0: port 3(macvlan3) entered disabled state
[  404.631424][T10262] macvlan3: entered allmulticast mode
[  404.637177][T10262] bridge0: entered allmulticast mode
[  404.814907][T10262] macvlan3: left allmulticast mode
[  404.819479][T10262] bridge0: left allmulticast mode
[  404.829882][T10262] bridge0: left promiscuous mode
[  404.925112][    C1] vkms_vblank_simulate: vblank timer overrun
[  405.415548][T10277] syz_tun: entered allmulticast mode
[  405.435853][T10277] dvmrp1: entered allmulticast mode
[  405.725619][T10266] syz_tun: left allmulticast mode
[  405.727276][T10266] dvmrp1: left allmulticast mode
[  405.954825][    C1] vkms_vblank_simulate: vblank timer overrun
[  406.115148][    C1] vkms_vblank_simulate: vblank timer overrun
[  406.232214][    C1] vkms_vblank_simulate: vblank timer overrun
[  407.240675][T10297] netlink: 344 bytes leftover after parsing attributes in process `syz.3.1062'.
[  407.440427][T10296] ISOFS: Unable to identify CD-ROM format.
[  408.229404][T10305] bridge0: entered promiscuous mode
[  408.238975][T10305] macvlan2: entered promiscuous mode
[  408.247698][T10305] bridge0: port 3(macvlan2) entered blocking state
[  408.251422][T10305] bridge0: port 3(macvlan2) entered disabled state
[  408.255383][T10305] macvlan2: entered allmulticast mode
[  408.258211][T10305] bridge0: entered allmulticast mode
[  408.263167][T10305] macvlan2: left allmulticast mode
[  408.266489][T10305] bridge0: left allmulticast mode
[  408.269325][T10305] bridge0: left promiscuous mode
[  408.547490][    C1] vkms_vblank_simulate: vblank timer overrun
[  408.580084][    C1] vkms_vblank_simulate: vblank timer overrun
[  408.755340][T10308] Oops: general protection fault, probably for non-canonical address 0xdffffc000000003c: 0000 [#1] SMP KASAN NOPTI
[  408.760201][T10308] KASAN: null-ptr-deref in range [0x00000000000001e0-0x00000000000001e7]
[  408.776103][T10308] CPU: 2 UID: 0 PID: 10308 Comm: syz.1.1065 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  408.781697][T10308] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  408.787379][T10308] RIP: 0010:kasan_byte_accessible+0x15/0x30
[  408.789960][T10308] Code: 00 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 b8 00 00 00 00 00 fc ff df 48 c1 ef 03 48 01 c7 <0f> b6 07 3c 07 0f 96 c0 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00
[  408.815042][T10308] RSP: 0018:ffffc9000369fb80 EFLAGS: 00010286
[  408.822199][T10308] RAX: dffffc0000000000 RBX: 00000000000001e0 RCX: 0000000000000001
[  408.825456][T10308] RDX: 0000000000000000 RSI: ffffffff8b71d0ce RDI: dffffc000000003c
[  408.832994][T10308] RBP: 00000000000001e0 R08: 0000000000000001 R09: 0000000000000000
[  408.842309][T10308] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff8b71d0ce
[  408.851822][T10308] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  408.856304][T10308] FS:  0000000000000000(0000) GS:ffff8880979b9000(0063) knlGS:00000000f50a6b40
[  408.861739][T10308] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  408.865778][T10308] CR2: 000000000c3747e7 CR3: 000000006f6d8000 CR4: 0000000000352ef0
[  408.869542][T10308] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  408.873341][T10308] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  408.877888][T10308] Call Trace:
[  408.879665][T10308]  <TASK>
[  408.881900][T10308]  __kasan_check_byte+0x13/0x50
[  408.895327][T10308]  lock_acquire+0xfc/0x350
[  408.898012][T10308]  ? __pfx___might_resched+0x10/0x10
[  408.901094][T10308]  down_read_killable+0x9e/0x4b0
[  408.914027][T10308]  ? do_pagemap_scan+0x691/0xd00
[  408.920595][T10308]  ? __might_fault+0x13b/0x190
[  408.923227][T10308]  ? __pfx_down_read_killable+0x10/0x10
[  408.925833][T10308]  do_pagemap_scan+0x691/0xd00
[  408.928443][T10308]  ? __pfx_do_pagemap_scan+0x10/0x10
[  408.931074][T10308]  ? __fget_files+0x20e/0x3c0
[  408.933544][T10308]  do_pagemap_cmd+0x58/0x80
[  408.935246][T10308]  ? __pfx_do_pagemap_cmd+0x10/0x10
[  408.937832][T10308]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  408.940389][T10308]  __do_fast_syscall_32+0x73/0x120
[  408.942868][T10308]  do_fast_syscall_32+0x32/0x80
[  408.945767][T10308]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  408.948650][T10308] RIP: 0023:0xf7f82579
[  408.950392][T10308] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  408.966714][T10308] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  408.974564][T10308] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000c0606610
[  408.979468][T10308] RDX: 00000000800001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  408.984286][T10308] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  408.989314][T10308] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  408.994177][T10308] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  409.001978][T10308]  </TASK>
[  409.007219][T10308] Modules linked in:
[  409.016182][T10308] ---[ end trace 0000000000000000 ]---
[  409.032136][T10308] RIP: 0010:kasan_byte_accessible+0x15/0x30
[  409.040273][T10308] Code: 00 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 b8 00 00 00 00 00 fc ff df 48 c1 ef 03 48 01 c7 <0f> b6 07 3c 07 0f 96 c0 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00
[  409.056572][T10308] RSP: 0018:ffffc9000369fb80 EFLAGS: 00010286
[  409.060749][T10308] RAX: dffffc0000000000 RBX: 00000000000001e0 RCX: 0000000000000001
[  409.066088][T10308] RDX: 0000000000000000 RSI: ffffffff8b71d0ce RDI: dffffc000000003c
[  409.070676][T10308] RBP: 00000000000001e0 R08: 0000000000000001 R09: 0000000000000000
[  409.075306][T10308] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff8b71d0ce
[  409.081425][T10308] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  409.086030][T10308] FS:  0000000000000000(0000) GS:ffff8880979b9000(0063) knlGS:00000000f50a6b40
[  409.091063][T10308] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  409.095875][T10308] CR2: 00007fdd5cd96000 CR3: 000000006f6d8000 CR4: 0000000000352ef0
[  409.100165][T10308] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  409.104600][T10308] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  409.109955][T10308] Kernel panic - not syncing: Fatal exception
[  409.120557][T10308] Kernel Offset: disabled
[  409.122227][T10308] Rebooting in 86400 seconds..

VM DIAGNOSIS:
22:58:51  Registers:
info registers vcpu 0

CPU#0
RAX=00000000002d9624 RBX=0000000000000000 RCX=ffffffff8b700439 RDX=ffffed10056465be
RSI=ffffffff8bf45100 RDI=ffffffff8191a841 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e10
R8 =0000000000000000 R9 =ffffed10056465bd R10=ffff88802b232deb R11=0000000000000001
R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff90867310 R15=0000000000000000
RIP=ffffffff8b6feccf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002fa0bffc CR3=000000006f616000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c400000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000010 RBX=0000000000000600 RCX=ffffc9000d803000 RDX=0000000000000000
RSI=ffffffff8ce15e60 RDI=0000000000000600 RBP=ffffffff8ce15e60 RSP=ffffc900237ef1c0
R8 =0000000000000003 R9 =0000000000000000 R10=0000000000000002 R11=ffff888077571138
R12=0000000000000600 R13=0000000000000000 R14=0000000000000002 R15=dffffc0000000000
RIP=ffffffff81bb3b46 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880978b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000002fa07ffc CR3=000000006f616000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000f000000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854bd545 RDI=ffffffff9ae12bc0 RBP=ffffffff9ae12b80 RSP=ffffc9000369f580
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=0000000000000065 R14=ffffffff9ae12b80 R15=ffffffff854bd4e0
RIP=ffffffff854bd56f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880979b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3747e7 CR3=000000006f6d8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffffc9000341f038 RBX=0000000000000001 RCX=ffffc9000341f098 RDX=ffffc9000341f038
RSI=ffffffff8bf45100 RDI=ffffc9000341f000 RBP=ffffc9000341f048 RSP=ffffc9000341ef40
R8 =0000000000000001 R9 =0000000000000000 R10=ffffc9000341f000 R11=00000000000069ff
R12=fffff52000683e02 R13=ffffc9000341f000 R14=ffffc9000341f000 R15=ffffc9000341f008
RIP=ffffffff8169d9a8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097ab9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f7239e50 CR3=0000000026246000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcfeff00 Opmask01=000000000000007f Opmask02=00000000fffeff7f Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 003d45444f4d5645 44003d524f4e494d
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff1350a600 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000 00ff000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4244fc71388665a0 737326e880f936c1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737373e2 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 722f766564752f62 696c2f7273752f00 534b4e494c564544 00454d414e564544
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4a414d003d454d 414e564544003d58 45444e494649003d 4550595456454400
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4a414d0018454d 414e564544001858 45444e4946490018 4550595456454400
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 31378f024bf516d3 0000559bf38bcc40 00000000000001c1 0000000000000039
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001e1 0000000000000000 303130302e464435 303a373542303a35
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7b27697a787c7a30 23333a3a38263342 4943213f395b2249 5a6e786b6e646b7e
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a263b383a3a263a 383a3a26493b3a3a 26483b3a3a264b3b 3a0a00307f617930
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000