last executing test programs:

41.584909033s ago: executing program 3 (id=4):
socket$nl_route(0x10, 0x3, 0x0) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, r2, {0x0, 0xffe0}, {0xffff, 0xffff}, {0xd}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0xf, 0x3, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x51}, 0x20040000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={0xffffffffffffffff, 0xe0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x3, &(0x7f0000000080)=[0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0], 0x0, 0xc8, &(0x7f0000000100)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000200), &(0x7f0000000240), 0x8, 0x29, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={0xffffffffffffffff, 0xe0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x3, &(0x7f0000000080)=[0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0], <r3=>0x0, 0xc8, &(0x7f0000000100)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000200), &(0x7f0000000240), 0x8, 0x29, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f0000000cc0)=ANY=[@ANYBLOB="b7020000f7ffffffbfa70000000000002402000020fe29817a0af0fff8ffffff69a4f0ff00000000b70600000018d1fe2d6405000000000075040000000000400704000000000000b7040000100000206a0700fe000000008500000005000000b70000000a00000095000000000000000000c2c62f6004ad13aa957e2af5e49a53c2868f0399d909a63796c113a80c19aab9d607000000b6c9483be3f0d3253730e714c46cc4f79fd2b316da4f0de8163f6242fa7323f1740637c48468766af540439fce41f144631ac262dcae18c3d1a1fbe96dc86035b44174f7c0620254ab6d285e6b343185089a0f119e31975e551558050800000000000000125d67857f290870093f38153608561a2128a79cce912d1f05de330800a9f5422bee8ca49166f6a587f2f593775afcd071efc5a972f757521b7b38ec273c2ad3e406f8c124f7dc1c4553229a69df4b2780e6da4420d71489fe383e0b5ce08b750502f2b8add8d2dddde19ac050537e973782b4053150580035fb2c579e1b2100000033d1ee8cab6d236f05b1f7b9f78fd5abfe033eb79f7a0b498366f5edfe311258016fbf47d9c85bf5325bf61419372be377022433e20900a262b20bb8b36de7b0e6c5ebfc5baec1ebe58d4af587d33e2935ad68da6e0fea5c21301f5d002b51a5b60fc741cb2c5d4cd5e896774f9293a6435558795043404ac6eafc8310fbcacca7f971b260fd06d4590ded8429fcd1c9a8dbbdedb32675388df363c0bc536e00448208b72405ebf27ddb402e5a2d675aaad92e183cef1eadc1661140fb567b55c72907a1aca75277a5f0022b1e957ba737f10f1161c5ae6e2cc64072ff3b4e76084922242e63d4b7806e30f786cff147e4bc819060678319a0e5534f5a0db52526c30000000000000000000000a63705b1a60525620acca06d57c055059df7651768310c9085c5f86be6ab819506961ad51f18b35fdc3fd4d0a0dbbdcd494ef168931f27748787bee95d739fef7ee67dd21c34647de82707e41d7db6d981a4fcf0bbd3d38ebb7a2489e28c6b28c0f70092ffb016b7766399555f3e6b538c2c862d17e53eaeb2036f9f0ab6e95e71bda4b5bbf53344264ad93bac1207b31d6e9c78181c7fe204c0b7582d1c762857f2a2e0c60f4a4855591a4f70f94df9629e470701103c40c8f6d3a3068091d62b58999e0a046f9509cb8ddc2a9ad4e0f1f85e5f076218b4b931acdff0c34fc5bdbad17ec481f1c9b17727c14e053e315d0d8d03c24ddaba65c5ce5b1aa04d1f767e25662b155d49460ec720d54044ac2856c11407835f341e2614bcae270000000001000000df7f736aab5d713240b2f40ec7be8251eba969686b2670ddc1a84df6ab12ab3e0cf8747837062233935704ebbd943ef0c5fef29513c7c1d6d2611796dccb45bdfd9e6533ad3574be5b9ea70e0c3b41a32067c03f5f8ed147cd0655c90d656f66eaed18a3c284c4f19417b5d91431759356db5d45ea40c9866957105b6252b0c028c672049ce163126f143f5758faf2a43f4c4f45a69b4e9113f85ae531085c11c75edbdee5af454757cdaff396c15ab9b210c202ffaea96d1bac60c6d6c56a4babc659858789bd479334e13e1c7876f95429431e61400815788c1397b260600d78e7513c58d9ac9474d392cc06f789753e1e7ebf5f1b55e2a64b9150c6580bf48e7bff763034801cccf403108d127b959ffc425a563ea2b90fbe779fd7d2ebfe94", @ANYRESOCT=r0], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', r2, @fallback=0x1d, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r3}, 0x94)

41.499702757s ago: executing program 3 (id=8):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r2, &(0x7f00000002c0)={0x1, 0x4}, 0x2)
write$USERIO_CMD_REGISTER(r2, &(0x7f00000000c0), 0x2)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_CATATONIC(r3, 0x9362, 0x0)

41.410336079s ago: executing program 3 (id=13):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000080), 0x80042, 0x0)
pwritev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="9c", 0x1}], 0x300, 0x300000, 0x0)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, r0)

39.542323564s ago: executing program 3 (id=39):
bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/5, 0x214000, 0x800}, 0x20)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000001c0)=0x800, 0x4)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000040)=0x20000, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000400)={'dummy0\x00', <r2=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x0, r2}, 0x10)
pipe2$9p(&(0x7f0000000240)={<r3=>0xffffffffffffffff}, 0x80000)
r4 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0)
lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x20002, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, 0xee00}}], [{@euid_lt={'euid<', r5}}, {@dont_hash}, {@obj_user={'obj_user', 0x3d, '*['}}, {@smackfsdef={'smackfsdef', 0x3d, 'dummy0\x00'}}]}})
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'dummy0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8954, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r7}}, 0x24}, 0x1, 0x0, 0x0, 0x4000091}, 0x0)

39.512710314s ago: executing program 32 (id=39):
bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/5, 0x214000, 0x800}, 0x20)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000001c0)=0x800, 0x4)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000040)=0x20000, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000400)={'dummy0\x00', <r2=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x0, r2}, 0x10)
pipe2$9p(&(0x7f0000000240)={<r3=>0xffffffffffffffff}, 0x80000)
r4 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0)
lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x20002, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, 0xee00}}], [{@euid_lt={'euid<', r5}}, {@dont_hash}, {@obj_user={'obj_user', 0x3d, '*['}}, {@smackfsdef={'smackfsdef', 0x3d, 'dummy0\x00'}}]}})
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'dummy0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8954, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r7}}, 0x24}, 0x1, 0x0, 0x0, 0x4000091}, 0x0)

37.241854893s ago: executing program 1 (id=78):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0900000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0b000000000000000000c98945618082682c000000000000000000003b21c9"], 0x48)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/3\x00')
read$FUSE(r1, &(0x7f00000020c0)={0x2020}, 0x2020)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000f209dfeccd13eaf2a589031dcac87e0102c108360a0731a40e322e9c5645cc4473e38e3d23b6af6423f3f5ad51f3d0f87c470b371cea85193a0b1ff480723e6a24f35f57fd1d0f734471061cc2b75aa71f139a11739d39ed595d286cda127288c61d9357dedb4c4e903c9156ee39d94fde2c6b90fffc1be6ce7451d18b7f29735ba58e8a5dbb084e34ab09", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r2}, 0x10)
r3 = socket$inet6(0x2d, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=ANY=[@ANYBLOB="4800000010000305000000000000000000cf0000", @ANYRES32=0x0, @ANYBLOB="03000000000000002000128008000100677265001400028008000600ac14142408000700e000030a08000a00", @ANYRES32], 0x48}}, 0x0)
recvmmsg(r3, &(0x7f0000000dc0)=[{{0x0, 0x0, 0x0}, 0xffff}], 0x1, 0x40, 0x0)
r5 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00', <r6=>0x0})
connect$vsock_stream(r5, &(0x7f0000000080)={0x28, 0x0, 0x2711}, 0x10)
socket$kcm(0x29, 0x0, 0x0)
r7 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_mtu_probing\x00', 0x1, 0x0)
pwritev(r7, &(0x7f0000000140)=[{&(0x7f0000000080)="4c108416b9c57b", 0x7}], 0x1, 0x7, 0xb0)
sendmsg$nl_route_sched(r5, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x4c, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r6, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@dellink={0x3c, 0x10, 0xc03, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_LIMIT={0xfffffffffffffe3e, 0x6, 0x9}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0xbae39e06f45a5b8c}, 0x0)

36.789377333s ago: executing program 1 (id=83):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/3\x00')
ioctl$UI_SET_ABSBIT(r1, 0x40045567, 0x2)
read$FUSE(r1, &(0x7f0000000400)={0x2020}, 0x2020)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="c0020000100063d10000000000000000fe8000000000000000000000000000bbfe8000000000000000000000000000aa0000000000000000000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc01000000000000000000000000000000000000330000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000b000000000000000000000000000000ffffffffffffffff000000000000000003000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001600000000020000000000000000000000bf010100636d61632861657329"], 0x2c0}, 0x1, 0x0, 0x0, 0x40000}, 0x4004)
write$uinput_user_dev(r0, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [0x80000000, 0x3, 0x3ff, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x2, 0xa9a, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xf5b1, 0xffffffff, 0x10000000, 0x99, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffe, 0x0, 0x0, 0x1], [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xedc0, 0x0, 0x5ee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffff8, 0x2, 0x0, 0x2000079, 0x400, 0x800, 0x0, 0x10000, 0x40000, 0x0, 0xc0800000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0xfffffffc, 0xfffffffc, 0x0, 0x4771], [0x0, 0x7f, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffff, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x4000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0xfffffffc, 0x4], [0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x0, 0x0, 0x0, 0x3, 0xfffffffc, 0x4, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x10, 0x5, 0xfffffffd, 0x0, 0x0, 0x0, 0x8001, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x4, 0x0, 0x0, 0x0, 0xffffe, 0xe2]}, 0x45c)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x5)
ioctl$UI_SET_SWBIT(r0, 0x4004556d, 0x3)
ioctl$UI_DEV_CREATE(r0, 0x5501)

36.661387238s ago: executing program 1 (id=84):
futex(&(0x7f0000000080)=0x1, 0x4, 0x1, &(0x7f00000000c0)={0x77359400}, &(0x7f0000000100), 0x101)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x20201)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000100))
clock_gettime(0x6, &(0x7f0000000880))
r2 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r2, 0x80045017, 0x0)
r3 = syz_open_dev$sndpcmp(&(0x7f0000001200), 0x0, 0xa2c65)
r4 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x7f, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x7, 0x8, 0x0, 0x5, 0x24, 0x1, 0x7, 0x3c5b, 0x1, 0x24, 0x6, 0x5, 0x5, 0xffffffff, 0xe661, 0x8004, 0x7, 0x5, 0x8, 0x4c74, 0x80000000, 0x40000, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x407, 0x5, 0x3e, 0x8f, 0x4006, 0x6, 0x0, 0x0, 0x4, 0x8, 0x400, 0x80, 0x0, 0x5, 0x7, 0x8, 0x4, 0xfffffffe, 0x40], [0x10000007, 0xf0000000, 0x8000012f, 0x8004, 0x5, 0x6, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0xd, 0xea4, 0xffffffff, 0x4, 0xb, 0x7fff, 0x5a7c, 0x420, 0x401, 0x6, 0x0, 0xff, 0x1, 0x1000005, 0x5f31, 0xf, 0x4e0, 0x400002, 0x80000004, 0xb, 0x4, 0x9, 0x8, 0x9, 0x9, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0xfffffffe, 0x7, 0x9, 0x5, 0x3, 0x9, 0x1, 0x3, 0x6c0, 0xbc45, 0x48c93690, 0x42, 0x3], [0x2, 0x408, 0x8004, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x0, 0x7fff, 0x0, 0x5, 0x8, 0x4, 0xa, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x10000, 0x3, 0x5, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x1, 0x800003, 0x1ff, 0x80, 0x3, 0x4, 0x2950bfaf, 0xffe, 0xa2, 0x7, 0xa9, 0x5, 0x9, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xfffffffa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb30, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x9, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x0, 0x7fff, 0xffff, 0x2000a620, 0x2, 0x5, 0x1, 0x7, 0x5, 0xe7, 0x1, 0x16, 0xffffffff, 0x80000003, 0x5, 0x4, 0xc8, 0x9, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1a, 0x20000d7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
r5 = openat$cuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
read$FUSE(r5, &(0x7f0000001900)={0x2020}, 0x2020)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r4, 0xc0884113, &(0x7f0000000240)={0x1, 0x1, 0x200, 0xfffe, 0x2, 0x8, 0x200000000000002f, 0x200, 0x1, 0x2c, 0x7})
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT32(r3, 0xc06c4124, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
ioctl$EVIOCSMASK(0xffffffffffffffff, 0x40104593, &(0x7f0000000240)={0x0, 0x48, &(0x7f00000002c0)="9b2bd3bd29f9aa132cb14ae6ea9bd7931e119ac5dd86ddd0e71b1bd71dacd286dc22a79c11b0aa3256f27d1fbf85300c05030e2524ce10511da7321042342f89eecd256792f63249"})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'netdevsim0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r6)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000003e000701fcfffff7fddbdff6037c0000040036800c000180060006000806"], 0x24}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x4, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_ARP_ALL_TARGETS={0x8, 0x1e}]}}}]}, 0x3c}, 0x1, 0x2000000000000000}, 0x0)
r9 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_SECURITY(r9, 0x0, 0x1, &(0x7f0000000240)=0x2, 0x4)
sendmsg$802154_dgram(r9, &(0x7f00000003c0)={&(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0302}}}, 0x14, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x24044800}, 0x4000010)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS_OLD(r3, 0xc1004111, &(0x7f00000008c0)={0x6, [0xd0c, 0x3, 0x494], [{0x1, 0xfffffffd, 0x0, 0x1, 0x1, 0x1}, {0xfffffffd, 0x1, 0x1}, {0x3, 0x401, 0x1, 0x1, 0x1, 0x1}, {0xfc8c, 0x7ff, 0x0, 0x0, 0x1, 0x1}, {0x4d, 0xfffffff8, 0x1, 0x0, 0x1}, {0x200, 0x4, 0x1, 0x1, 0x1}, {0x86, 0x8, 0x0, 0x1, 0x0, 0x1}, {0xc4, 0xa00000, 0x1}, {0x8, 0xe514, 0x0, 0x0, 0x0, 0x1}, {0xab3b, 0x10000, 0x0, 0x0, 0x0, 0x1}, {0x7, 0x336, 0x1, 0x0, 0x0, 0x1}, {0x0, 0x4e8b, 0x0, 0x1, 0x0, 0x1}], 0x3})
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x88, 0x6, 0xa, 0xc0a, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_SREG={0x8, 0x7, 0x1, 0x0, 0xa}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x2}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x17}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x2}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x2}]}], {0x14}}, 0xb0}}, 0x0)
getsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000140), &(0x7f0000000180)=0x8)

36.524644732s ago: executing program 1 (id=86):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0)
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01f71800000000000000240000002400000002000000000000000000000400000003000000000000000000000000000000000000000d0200000000000006"], 0xffffffffffffffff, 0x3e, 0x0, 0xa}, 0x28)
r2 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f0000000340)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, @empty, @empty, 0x40, 0x20, 0x2, 0x2}})
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtaction={0x48, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x4, {0x3}}}}]}]}, 0x48}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="680000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000400012800c0001006d6163766c616e0030000280080006"], 0x68}}, 0x0)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003f000b05d25a806c8c6394f90324fc60100002000a000300053582c137153e3704020180fc0b09000c00", 0x33fe0}], 0x1}, 0x0)
ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0)

36.392116935s ago: executing program 1 (id=89):
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)={0x0, <r0=>0x0})
ptrace(0x11, r0)
r1 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0)
ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000000)={0x1, 0x1, [0x6, 0x1, 0x1, 0x451, 0x4, 0x80000000, 0xffffffff, 0xe]})
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r2, &(0x7f0000000040)=[{&(0x7f0000001180)=""/4113, 0x1011}], 0x1, 0x16, 0xfffffff9)
openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)

30.227039814s ago: executing program 1 (id=110):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x2})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000540)={0x10, 0x0, &(0x7f0000000440)=[@request_death={0x400c6313}], 0x0, 0x1000000, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000140)="d2"})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x400c6314}], 0x0, 0x0, 0x0})
getdents64(r2, &(0x7f0000000040)=""/19, 0x13)

30.154957278s ago: executing program 33 (id=110):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x2})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000540)={0x10, 0x0, &(0x7f0000000440)=[@request_death={0x400c6313}], 0x0, 0x1000000, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000140)="d2"})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x400c6314}], 0x0, 0x0, 0x0})
getdents64(r2, &(0x7f0000000040)=""/19, 0x13)

18.772160006s ago: executing program 0 (id=267):
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0)
r1 = socket(0x1e, 0x805, 0x0)
connect$tipc(r1, &(0x7f0000000000)=@id, 0x10)
recvmsg$can_j1939(r1, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000180)=""/8, 0x8}], 0x1}, 0x160)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r1)
sendmsg$TIPC_CMD_GET_NODES(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40002004}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r2, 0x2, 0x70bd2c, 0x7, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x48800)
write$sndseq(r0, &(0x7f0000001380)=[{0x6, 0x0, 0x0, 0x0, @tick, {0xff}, {}, @note={0x9, 0x3, 0x2, 0x7, 0xffffffff}}, {0x0, 0x0, 0x0, 0x0, @time={0xffff, 0x6aaf}, {}, {0x2}, @connect={{0x2, 0x83}, {0x3}}}, {0x0, 0x0, 0x2, 0x0, @time={0x2, 0x2}, {0x0, 0x8}, {}, @control={0x80}}, {0x0, 0x0, 0x1, 0x0, @time={0x3}, {}, {0x0, 0xfc}, @connect={{}, {0x0, 0x5}}}], 0x70)

18.771900599s ago: executing program 0 (id=268):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010700000000000000002e"], 0x3c}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r3, 0xc1105511, &(0x7f0000000040)={0x1, 0x0, 0x40, 0x10000, 'syz1\x00', 0x4000000})
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0xc1105511, &(0x7f0000000040))
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, &(0x7f0000000000)={@local})
ioctl$IOCTL_VMCI_CTX_ADD_NOTIFICATION(r4, 0x7af, &(0x7f0000000080)={@hyper})
r5 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f0000000240)={@hyper})
close_range(r2, 0xffffffffffffffff, 0x0)

18.692095075s ago: executing program 0 (id=269):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x20902, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_TSC_KHZ_cpu(r2, 0xaea3)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = gettid()
process_vm_writev(r4, &(0x7f0000000000)=[{&(0x7f0000000080)=""/110, 0x6e}, {&(0x7f0000000180)=""/77, 0x4d}], 0x2, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=@newlink={0x30, 0x10, 0x20, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x200, 0x8000}, [@IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0xcc8}, @IFLA_NET_NS_PID={0xffffffffffffffc3, 0x13, r4}]}, 0x30}}, 0x8000)

18.600468041s ago: executing program 0 (id=270):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x103000, 0x8d)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000001440)=""/126, 0x7e, 0x41)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$COMEDI_CMD(0xffffffffffffffff, 0x80506409, &(0x7f0000000100)={0x5, 0x20, 0x80, 0x6de, 0x0, 0x4, 0x2, 0xd, 0xffffff6f, 0xa7fa, 0x100, 0x8008, 0x0, 0x0, 0x0})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000040000000200"], 0x0, 0x34}, 0x28)
pipe2$watch_queue(&(0x7f0000001180)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80)
r5 = add_key(0x0, 0x0, &(0x7f0000000080)="f8", 0x1, 0xfffffffffffffffe)
landlock_restrict_self(0xffffffffffffffff, 0x4)
pipe2$watch_queue(0x0, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r5, 0xffffffffffffffff, 0x0)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r4, 0x5760, 0x8)
syz_open_dev$vim2m(&(0x7f0000000000), 0x2, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x1000d, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3c}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r6 = socket$nl_route(0x10, 0x3, 0x0)
connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x100, 0x2, 0x10, {0x2, 0x4000, @empty}}, 0x24)
ioctl(r6, 0x8b1a, &(0x7f0000000040))
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r7 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r3, &(0x7f0000000500)=ANY=[@ANYBLOB="00000000bbbbbbbbfbbbaaaaaaaaaa3088a84d00655866"], 0x52)

18.521742513s ago: executing program 0 (id=271):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="340000001800f3d200000000000000000200100200000007000000001000160f58c37f44f910f600", @ANYRES32, @ANYBLOB="0600150006000000"], 0x34}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
r2 = socket$inet(0x2, 0x1, 0x0) (rerun: 64)
setsockopt$inet_mreqn(r2, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) (async)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xf, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600000, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0xb, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x74, 0x1, 0x0, 0x0, {{0x7}, {0x4c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x0, 0x8}}, @TCA_CT_ACTION={0x6, 0x3, 0x19}, @TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @mcast1}, @TCA_CT_NAT_IPV6_MAX={0x14, 0xc, @private0={0xfc, 0x0, '\x00', 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

18.242031631s ago: executing program 0 (id=279):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f00000014c0)=0xfffffffffffffffd)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921d2c59d5, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000000)={0x6, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x2, 'lblcr\x00'}, 0x2c)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x48f, &(0x7f0000000000)={0x11, @private, 0x0, 0x0, 'lc\x00'}, 0x2c)
chdir(&(0x7f00000000c0)='./file0\x00')
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r2, 0x0)
setpgid(0x0, r2)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0)
r3 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_CATATONIC(r3, 0x9362, 0x0)

18.163094636s ago: executing program 34 (id=279):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f00000014c0)=0xfffffffffffffffd)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921d2c59d5, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000000)={0x6, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x2, 'lblcr\x00'}, 0x2c)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x48f, &(0x7f0000000000)={0x11, @private, 0x0, 0x0, 'lc\x00'}, 0x2c)
chdir(&(0x7f00000000c0)='./file0\x00')
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r2, 0x0)
setpgid(0x0, r2)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0)
r3 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_CATATONIC(r3, 0x9362, 0x0)

1.881483175s ago: executing program 6 (id=550):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x288, 0x24, 0xf0b, 0x3, 0x25dfdbfc, {0x60, 0x0, 0x0, 0x0, {0xfff3, 0xffff}, {0xfff3, 0x6}, {0x4, 0xffff}}, [@qdisc_kind_options=@q_red={{0x8}, {0x25c, 0x2, [@TCA_RED_EARLY_DROP_BLOCK={0x8, 0x5, 0x7ff}, @TCA_RED_STAB={0x104, 0x2, "8625d04fd7c14e6560ee5b0c189fcefbf356e03452f3bd75825e1c20de53c63758bebf283711fa67323ea010917192f2b4fb2be365f892a6d93e677c8dcd902d28388ca864b4b4b73bce021fa6c67b67a1dd2a9e9836c85e5760fce8053bbd1b1d0ffc9c1648cbaa564e5ec9edab18a76ca1c5c67241eec6db7eef8a8b4b8efc9769b805df45a40422b2c3fee29d23a9ad51843bee14d8cf0107d40776c9d5a9a9dd13f09748d0107bf3a91821f32fb636256506e803c051aa377c6f9f8925a9f436d99c8752c720fc8d8d0ba2472914838aeab2ce412a8a378772fdf698ee59dae41a4dd09c23a25527d2f5a94b5419478cf3d25a8b5db2e26df47c6243dc95"}, @TCA_RED_STAB={0x104, 0x2, "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"}, @TCA_RED_MAX_P={0x8, 0x3, 0x2}, @TCA_RED_MAX_P={0x8, 0x3, 0x6}, @TCA_RED_PARMS={0x14, 0x1, {0x80000001, 0xfffffffb, 0x8, 0x4, 0x15, 0xd, 0x8}}, @TCA_RED_EARLY_DROP_BLOCK={0x8}, @TCA_RED_MAX_P={0x8, 0x3, 0xb2c}, @TCA_RED_FLAGS={0xc, 0x4, {0x7, 0x7}}, @TCA_RED_EARLY_DROP_BLOCK={0x8, 0x5, 0xffffffff}]}}]}, 0x288}, 0x1, 0x0, 0x0, 0x44045}, 0xc090)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ff8000/0x4000)=nil)
shmat(r2, &(0x7f0000ffd000/0x2000)=nil, 0x6000)
shmctl$IPC_RMID(r2, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x15)
read(r1, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000480)=ANY=[@ANYBLOB="14000000070c5a853fe2dccc6dbb56d7a8ced614110664cde104fcdbdf2501000000dd955a5e0c6e62c627ef47468243307279b175b241bcca5c84d06f1ca971658346e030e8091a6f74d0b5bbb947f58184d0d3b70f05bc2ab9eb09e4282d9f71019bbbd9e931d7fd21b34d68efb55f7cc3eda14bc79261b34e471cbe3ed88239"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x4004)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)

1.828722953s ago: executing program 6 (id=553):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r5 = landlock_create_ruleset(&(0x7f0000000040)={0x4a02, 0x3}, 0xb, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
syz_usb_connect(0x0, 0x2d, 0x0, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r6)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r7, 0x0)
r8 = socket$inet_mptcp(0x2, 0x1, 0x106)
accept(r6, 0x0, 0x0)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_auth_complete={{0x6, 0x3}, {0x9, 0xc9}}}, 0x6)
connect$inet(r8, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r9, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="0100000000000000000001000000280001801400040000000000000000000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
landlock_restrict_self(r5, 0x0)
setreuid(0xee01, 0xffffffffffffffff)
faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000100)={0x34, r4, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r3}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x980}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}], @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x10001}]]}, 0x34}}, 0x10)
wait4(r0, &(0x7f0000000080), 0x80000000, 0x0)

1.772022081s ago: executing program 2 (id=555):
unshare(0x42000000)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000006c0)=0x16)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9}, {}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x691, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x100, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x8c0}, 0x0)
r2 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000005580)='/sys/kernel/vmcoreinfo', 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0})
sendfile(r2, r3, 0x0, 0x8)
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x4e20, @remote}, 0x10)
ioctl$HIDIOCGRDESC(r3, 0x90044802, &(0x7f0000000840)={0x5b1, "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"})

1.660018472s ago: executing program 2 (id=559):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00')
ioctl$KVM_HYPERV_EVENTFD(r1, 0x400caed0, &(0x7f0000000180)={0x2, r2, 0xffffffff})
r3 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
shutdown(r3, 0x1)
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYRES64=0x0, @ANYRES64=r1, @ANYRESDEC, @ANYRES16=r3, @ANYRESOCT=r0, @ANYRESOCT=0x0, @ANYRES8=r2])

1.581618687s ago: executing program 5 (id=563):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x42, 0x0, 0x0)
ioctl$DRM_IOCTL_AGP_ACQUIRE(r2, 0x6430)
r4 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card2/oss_mixer\x00', 0x6bfea9cae973bd8, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r5=>0x0})
r6 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r6, 0x402c5639, &(0x7f0000000040)={0x0, 0x2, 0x100f})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r5})
read$proc_mixer(r4, &(0x7f00000002c0)=""/254, 0xfe)

1.502118637s ago: executing program 2 (id=564):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$TCSETA(0xffffffffffffffff, 0x8924, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "4feda26323b172e0"})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x77359400}, 0x0)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r1, &(0x7f0000000540)={0x0, {'syz0\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000240)=""/17, 0x11, 0x2, 0x4, 0x9, 0x4, 0xc08}}, 0x120)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x7}}, {{@in=@dev={0xac, 0x14, 0x14, 0x1d}, 0x0, 0x6c}, 0x0, @in6=@dev, 0x20000000}}, 0xe8)
syz_emit_ethernet(0x3e, &(0x7f0000000180)={@local, @random="f368656e065b", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @redirect={0x5, 0x1, 0x0, @multicast2, {0x5, 0x4, 0x1, 0x6, 0x2, 0x66, 0x40, 0xd, 0x4, 0xc, @loopback, @empty}}}}}}, 0x0)
read$FUSE(r1, &(0x7f0000006b40)={0x2020}, 0x2020)
write$UHID_DESTROY(r1, &(0x7f0000000180), 0x4)

1.452164143s ago: executing program 2 (id=565):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd(0x8c66)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000040)={0xfffffffffffffc04, 0x0, 0x1, r2, 0x4})

1.361247138s ago: executing program 5 (id=568):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000b80)=0x5, 0x4)
getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000c40), &(0x7f0000000c80)=0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000140)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x5a}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "f900f5", 0x18, 0x6, 0x0, @local, @local, {[], {{0xfffe, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x2, 0x0, 0x0, 0x200, {[@fastopen={0x1e, 0x3, '5'}]}}}}}}}}, 0x0)

1.350018335s ago: executing program 5 (id=570):
r0 = socket(0x8, 0x800, 0x9)
r1 = syz_clone(0x80842111, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_pidfd_open(r1, 0x0)
ioctl$F2FS_IOC_GET_FEATURES(r2, 0xff06, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f00000007c0)=[{{&(0x7f0000000500)={0x2, 0x4e21, @local}, 0x10, 0x0}}], 0x1, 0x4000000)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r3, 0x0, 0x48b, &(0x7f0000001200)={0x1, 'geneve0\x00', 0x3}, 0x18)

1.281435291s ago: executing program 5 (id=572):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xd)
ioctl$KVM_CAP_VM_DISABLE_NX_HUGE_PAGES(r1, 0x4068aea3, &(0x7f0000000480))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x42, 0x4, 0x1398, 0xffffffff, 0x11d8, 0x10f8, 0x0, 0xffffffff, 0xffffffff, 0x1300, 0x1300, 0x1300, 0xffffffff, 0x4, 0x0, {[{{@ip={@rand_addr, @multicast1, 0x0, 0x0, 'veth0_to_batadv\x00', 'wlan0\x00'}, 0x0, 0x10d0, 0x10f8, 0x0, {0x100000000000000}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x2, 0x0, 0x7}}, @common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0x0, 0x0, './cgroup.net/syz1\x00'}}]}, @REJECT={0x28}}, {{@ip={@loopback, @broadcast, 0x0, 0x0, 'batadv_slave_1\x00', 'macvtap0\x00'}, 0x0, 0xa0, 0xe0, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@ip={@loopback, @loopback, 0x0, 0x0, 'erspan0\x00', 'ip6erspan0\x00'}, 0x0, 0xe0, 0x128, 0x0, {}, [@common=@osf={{0x50}, {'syz0\x00'}}, @common=@socket0={{0x20}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x143b)
setsockopt$X25_QBITINCL(r3, 0x106, 0x1, &(0x7f00000001c0)=0x1, 0x4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000000c0)={0x38, r7, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x974f, 0x10}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1478}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}]]}, 0x38}}, 0x10)
r8 = socket$alg(0x26, 0x5, 0x0)
unshare(0x22020600)
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r9, &(0x7f0000000340)={0x2020}, 0xcb0a)
bind$alg(r8, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha12\x00'}, 0x58)
r10 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r10, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'cbcmac(des3_ede-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r10, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r11 = accept4$alg(r10, 0x0, 0x0, 0x0)
sendmsg$alg(r11, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000880)="53c0534c8cec", 0x6}], 0x1, 0x0, 0x0, 0x4000014}, 0x4000000)
setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, &(0x7f0000000340)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x20)
r12 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$bt_hci(r12, 0x0, 0x1, 0x0, &(0x7f0000006940))
r13 = accept4$alg(r8, 0x0, 0x0, 0x0)
r14 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r14, 0x29, 0x40, &(0x7f0000001f00)=@raw={'raw\x00', 0x3c1, 0x3, 0x468, 0x268, 0x5802, 0x294, 0x268, 0x294, 0x398, 0x325, 0x378, 0x398, 0x378, 0x3, 0x0, {[{{@ipv6={@loopback, @empty, [], [], 'pimreg0\x00', 'macsec0\x00'}, 0x0, 0x240, 0x268, 0x52020000, {}, [@common=@inet=@hashlimit2={{0x150}, {'gre0\x00', {0x0, 0x4, 0x0, 0x6, 0x0, 0x1, 0x7fffffff}}}, @common=@dst={{0x48}, {0x1000, 0x5, 0x0, [0x1003, 0x6, 0x9000, 0x5, 0x8, 0x7f, 0x2, 0x5, 0x5e7, 0xc85, 0x5e4, 0xd, 0x5, 0xfff9, 0x0, 0x9], 0x2}}]}, @common=@unspec=@NFQUEUE1={0x28}}, {{@uncond, 0x0, 0x108, 0x130, 0x0, {}, [@common=@ah={{0x30}, {[], 0xfffffffe}}, @common=@frag={{0x30}, {[], 0x800000, 0x1}}]}, @common=@unspec=@NFQUEUE0={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4c8)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r13)

1.280986161s ago: executing program 2 (id=573):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CAP_X86_APIC_BUS_CYCLES_NS(r1, 0x4068aea3, &(0x7f0000000040)={0xed, 0x0, 0x100000000}) (async)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=@bridge_getvlan={0x17, 0x72, 0x301, 0x0, 0x0, {}, [@BRIDGE_VLANDB_DUMP_FLAGS={0x8, 0x1, 0x12}]}, 0x20}, 0x1, 0xf00}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, 0x0}], 0xaaaacb1, 0x0, 0x0, 0x0)
fchdir(r3) (async)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000001c0)={{0x0, 0xdddd0000, 0xe, 0xf0, 0x40, 0xfd, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x7}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0x8, 0x5, 0xf, 0x3, 0x10}, {0xeeee0000, 0x1000, 0xb, 0x0, 0x2, 0x7, 0x4, 0x1, 0xc, 0x0, 0x6, 0x5}, {0xeeef0000, 0x3000, 0x8, 0xf, 0x3, 0x46, 0x2, 0xd, 0x6, 0x3, 0x0, 0x1}, {0x100000, 0x0, 0x3, 0x1, 0x3, 0x9, 0x9, 0x7, 0xd, 0x4, 0xe, 0x4b}, {0x2, 0xd000, 0x9, 0x7, 0x3, 0x6e, 0x1, 0xff, 0x4, 0x80, 0x1, 0xfc}, {0x6000, 0x1000, 0xf, 0x9d, 0x3, 0x0, 0x1, 0x3, 0x5, 0x7, 0x0, 0xf8}, {0x3000, 0x8000000, 0xd, 0x5, 0x3, 0x3, 0xa, 0x9, 0x54, 0x6, 0x2, 0x7}, {0xeeef0000, 0x5}, {0x2, 0x9}, 0x40010000, 0x0, 0xf000, 0x300, 0x5, 0x400, 0x10000, [0xffffffffffffff47, 0x401, 0x7, 0xc5]}) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.151292449s ago: executing program 4 (id=576):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0) (async)
io_submit(0x0, 0x1, &(0x7f00000006c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x1010, 0xffffffffffffffff, 0x7b2e4000) (async)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r2, &(0x7f0000000080), 0x10)
sendmsg$can_bcm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB="0500"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000001"], 0x48}, 0x1, 0x0, 0x0, 0x48850}, 0x0) (async)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, 0x0, 0x0) (async)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x4000000, 0x0, 0x0)
sendmsg$can_bcm(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB='\a'], 0x48}, 0x1, 0x0, 0x0, 0xc4}, 0x0)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r1, 0xff01, 0x0)

1.150421648s ago: executing program 4 (id=577):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="660f388173ab0fc76fb4c4c3294abd26aaf3fb0066bad004b000f303c70fae6e2fc0c00f2d130f01f1260f01ca660f3881b4493c000000c4c2459d78ad", 0x3d}], 0x1, 0x51, 0x0, 0x0)
r3 = creat(&(0x7f0000000300)='./file0\x00', 0x28)
write$qrtrtun(r3, &(0x7f0000000900)="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", 0x45c)
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f0000000080)={0x0, 0x0, <r4=>0x0, 0x0, 0x0, 0x2, &(0x7f0000000000)=[0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f00000000c0)={0x0, 0x4, 0x9, 0x8, 0x0, [0x0, 0x0, <r5=>0x0], [0x3, 0x7, 0x4, 0xffff], [0x41, 0x8, 0x7], [0x7, 0xb0, 0x7151be0e, 0x1]})
r6 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
r7 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r7, 0xc02064b2, &(0x7f0000000280)={0xf5ac, 0x6, 0xff})
r8 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f0000000040)=[<r9=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r6, 0xc06864a1, &(0x7f0000000200)={0x0, 0x0, r9, <r10=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r8, 0xc06864ce, &(0x7f0000000100)={r10, 0x0, 0x6, 0x0, 0x0, [<r11=>0x0], [0x0, 0x4], [0x1, 0x0, 0x0, 0x40000], [0x0, 0x0, 0x1]})
ioctl$DRM_IOCTL_GEM_FLINK(r7, 0xc008640a, &(0x7f00000002c0)={r11})
r12 = syz_open_dev$dri(&(0x7f0000000040), 0x20000000, 0x40800)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r12, 0xc04064a0, &(0x7f0000000000)={0x0, &(0x7f00000001c0)=[<r13=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r12, 0xc06864a1, &(0x7f0000000240)={0x0, 0x0, r13, <r14=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r12, 0xc06864ce, &(0x7f0000000380)={r14, 0x0, 0x1ff, 0x0, 0x0, [<r15=>0x0], [0x9, 0x0, 0x0, 0x8], [0x3, 0x20000000, 0x100, 0xd], [0x1000010000000, 0x0, 0x7fffffffffffffff]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r12, 0xc00c642d, &(0x7f0000000080)={r15})
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000300)={0x0, 0xc, 0x3, 0xe44, 0x3, [0x0, <r16=>0x0], [0x7, 0x4, 0x3, 0x341], [0x1, 0x4332ccd0, 0x9, 0x473], [0x7fffffff, 0x7239, 0x800, 0x6]})
ioctl$DRM_IOCTL_MODE_ADDFB2(r3, 0xc06864b8, &(0x7f0000000380)={r4, 0x1, 0x0, 0x7, 0x0, [r5, r11, r15, r16], [0x800, 0x3, 0xff, 0x3], [0x10001, 0x4, 0x7, 0x5], [0x9, 0x401, 0x5, 0x1ce6]})
ioctl$KVM_SET_SREGS2(r2, 0x4140aecd, &(0x7f00000001c0)={{0xeeee0000, 0x8080000, 0xd, 0xb6, 0x2, 0x7, 0x60, 0x7, 0x5b, 0x7, 0x3, 0x80}, {0xeeef0000, 0x4, 0xd, 0xb, 0x7f, 0x4, 0x9, 0x32, 0x4, 0xb, 0xd, 0xe}, {0x80a0000, 0xeeee8000, 0xc, 0x7f, 0x8, 0x0, 0x0, 0x0, 0x9, 0x40, 0x7, 0x9}, {0xffff1000, 0xeeee8000, 0xd, 0x6, 0x5, 0x3, 0x7, 0x7, 0x10, 0x7, 0x7f, 0x8}, {0x10000, 0xeeee0000, 0xa, 0x3, 0x0, 0x1, 0x3, 0x68, 0x2, 0x2, 0x8, 0xe}, {0xe6e4f000, 0xdddd1000, 0xe, 0x90, 0x8, 0x9e, 0x7, 0x40, 0x31, 0x7, 0x4, 0x3}, {0x2000, 0x80a0000, 0xb, 0x2c, 0xfa, 0x8, 0x10, 0x8, 0x0, 0x2, 0x6, 0x8}, {0xeeee8000, 0x8080000, 0x10, 0xb, 0x6, 0x63, 0x6, 0x2, 0xd, 0x5, 0x5, 0x3}, {0xeeee0000, 0x14}, {0x3000, 0x7}, 0x8, 0x0, 0xdddd1000, 0x400440, 0xe, 0x800, 0xdddd1004, 0x1, [0x10001, 0x8f8, 0x611, 0x7f]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

1.071508786s ago: executing program 6 (id=578):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$MRT_ADD_MFC(0xffffffffffffffff, 0x0, 0xcc, &(0x7f00000001c0)={@broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, "455a936e29dce970f9495ce7c5993abb4736e49865037714c0dde0c23a7f5e32", 0x6, 0x24, 0xffffffff}, 0x3c)
r1 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$nl_route(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000340)={0x1f, 0x1, @none, 0x0, 0x1}, 0xe)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
close_range(r0, r0, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_FLUSH(r2, 0x0, 0xd4, &(0x7f0000000000)=0x1, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000022c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x4a)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001300)={r3, 0x18000000000002a0, 0xf, 0x0, &(0x7f0000000000)="b9ff03076844268cb8be14f088470f", 0x0, 0x20000005, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

370.911399ms ago: executing program 5 (id=579):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x24, r0, 0x300, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x24}}, 0x0) (async)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0xfffffffc, @empty}, 0x1c) (async)
ppoll(&(0x7f00000006c0)=[{}, {0xffffffffffffffff, 0x40a8}, {0xffffffffffffffff, 0x8048}, {0xffffffffffffffff, 0x1120}, {0xffffffffffffffff, 0xc02f}, {0xffffffffffffffff, 0xbc66a0fa5b6f9da4}, {0xffffffffffffffff, 0x8201}, {0xffffffffffffffff, 0x80}, {0xffffffffffffffff, 0x18ec}], 0x9, &(0x7f0000000740), &(0x7f00000007c0), 0xfffffffffffffee1)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0x34000, 0x600, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}}, 0x8, 0x0, 0x0, 0x0, 0x15}, 0x9c)

250.897572ms ago: executing program 5 (id=580):
sched_setaffinity(0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000003c0)='timerslack_ns\x00')
write$cgroup_int(r0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x0, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x20001, 0x0)
r1 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x6, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r2, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ec}, 0x94)
socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) (async)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r7, 0xc008ae88, &(0x7f00000000c0)={0x1, 0x0, [{0x40000071, 0x0, 0xffffffffffffff00}]})
ioctl$BTRFS_IOC_ADD_DEV(r3, 0x5000940a, &(0x7f0000000bc0)={{}, "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"}) (async)
ioctl$BTRFS_IOC_ADD_DEV(r3, 0x5000940a, &(0x7f0000000bc0)={{}, "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"})
r8 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r8, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r9=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0xe, 0xb}, {0x0, 0xfff2}}}, 0x24}}, 0x800) (async)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0xe, 0xb}, {0x0, 0xfff2}}}, 0x24}}, 0x800)

191.875671ms ago: executing program 6 (id=581):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) (async)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$TIPC_DEST_DROPPABLE(r1, 0x10f, 0x81, &(0x7f0000000480), 0x4)
recvmmsg(r1, &(0x7f0000002900)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000400)=""/79, 0x4f}], 0x1, &(0x7f0000000740)=""/210, 0xd2}, 0x3}], 0x1, 0x0, 0x0) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000740)=ANY=[@ANYBLOB="4000000010000104000000004000000000000000", @ANYRES32=0x0, @ANYBLOB="038000000000000004009a64080004003a010000140003006272696467655f736c6176655f31"], 0x40}}, 0x0) (async)
sendmsg$tipc(r1, &(0x7f0000000200)={&(0x7f0000000c00)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x4}}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000380)='[', 0x101d0}], 0x1}, 0x0) (async)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000000000120000000000000001"]) (async)
syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0x4a7c0) (async)
ioctl$KVM_INTERRUPT(r4, 0x4004ae86, &(0x7f0000000080)=0xfffffff8) (async)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001000)={&(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10, 0x0}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000440)=[@text64={0x40, &(0x7f0000000180)="66baa000ecc744240011000000c7442402b16e0000ff2c2443f466baf80cb8f2c96789ef66bafc0c66ed0f072e0f01c248b820450000000000000f23d00f21f835000000010f23f8c46289900cabb9f9080000b8c93c0000ba000000000f30c4816857a601000000", 0x68}], 0x1, 0x0, 0x0, 0x0) (async)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f00000045c0), 0x0, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000006, 0x12, r8, 0x2e1f0000) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000880)={0x1, 0x0, @pic={0x8, 0x7, 0x8, 0x14, 0x2, 0x1, 0xc5, 0x9, 0x28, 0x2, 0x1, 0x95, 0xb, 0x8, 0x8e, 0x7}}) (async)
ioctl$KVM_RUN(r7, 0xae80, 0x0) (async)
ioctl$KVM_KVMCLOCK_CTRL(r4, 0xaead)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

191.599238ms ago: executing program 4 (id=582):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd(0x8c66)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000040)={0xfffffffffffffc04, 0x0, 0x1, r2, 0x4})

121.554806ms ago: executing program 6 (id=583):
r0 = socket$unix(0x1, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000a40)={0x2020}, 0x2020)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = syz_open_dev$usbmon(&(0x7f0000000900), 0x0, 0x0)
ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0xdd218)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/pm_trace', 0x2, 0x0)
write$FUSE_NOTIFY_STORE(r3, &(0x7f00000002c0)=ANY=[@ANYBLOB='-', @ANYRESDEC], 0x28)
read$FUSE(0xffffffffffffffff, &(0x7f0000002a80)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000240)={0x50, 0xfffffffffffffff5, r4, {0x7, 0x2b, 0x400, 0x100004, 0x2, 0x6, 0x8, 0x3, 0x0, 0x0, 0x20, 0x5}}, 0x50)
setsockopt$packet_int(r2, 0x107, 0x13, &(0x7f0000000000)=0x8, 0x4)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000100)='./bus\x00', 0xe8)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
r5 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r5, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000000))

120.771506ms ago: executing program 2 (id=584):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) (async)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) (async)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r2 = userfaultfd(0x801)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280}) (async)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'geneve0\x00'})
ioctl$UFFDIO_WRITEPROTECT(r2, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f000040a000/0x800000)=nil, 0x800000}, 0x1})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x15)
r4 = eventfd2(0x8, 0x80801)
statx(r4, 0xfffffffffffffffd, 0x1000, 0x20, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r5) (async)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r5)
sendmsg$TIPC_CMD_ENABLE_BEARER(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) (async)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x305200, 0x0)
close(r7) (async)
close(r7)
socket$unix(0x1, 0x1, 0x0) (async)
r8 = socket$unix(0x1, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0xffffffff, {0x0, 0x0, 0x0, r10, {0x0, 0xb}, {0xffff, 0xffff}, {0xb}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0xa, 0x7f61, 0xfffffffd, 0xc5, 0xe23, 0x1, 0x1, 0x7fff, 0x1}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20008001}, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@newqdisc={0x50, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x80000, {0x0, 0x0, 0x0, r10, {0x0, 0xfff1}, {0xffe6, 0xb}, {0xffe0, 0xc}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x24, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x7ff, 0x8}}, @TCA_HTB_DIRECT_QLEN={0x8}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
ioctl$SIOCSIFHWADDR(r7, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

119.770716ms ago: executing program 4 (id=585):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0x8}, [@ldst={0x6, 0x3}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0x80000}, 0x10}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {<r1=>r0}}, './file0\x00'})
getsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f00000000c0)={@remote, @local, @empty}, &(0x7f0000000100)=0xc)

61.964786ms ago: executing program 4 (id=586):
r0 = accept4$unix(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x1c00)
sendmsg$unix(r0, &(0x7f00000004c0)={&(0x7f0000000040)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000440)=[{&(0x7f00000000c0)="922ea986904643161db7cbae35a71ef81b74085b51966382a5cdf32d315d0d6f540e2aa32b57abae127c0cda525726488578bc887c89d91f259de22f9b967bbf6434b47b5205aab3d67939519d08e38592535772a30fc9b1f72c92b50ef4999ffe77620e3eba8b3ce9fff8e0ac7c0ba46ba2515df7f699f370a0a56af12b33e940096438b34d33aa0ca60cefd31ba580ba7667c462a206449e46d38201aa57ef518a6b99bbfa8d59ac88f91ca73ca396bb9817bb32e9d8f6e991d8c271e4a25a75722a24586380829a75e482492f0c363e29402446416ec08a666d21d275144d897952725598de73b770c350aa1c1fc068d0", 0xf2}, {&(0x7f00000001c0)="3c9f998b314ac14309b99c8aa1", 0xd}, {&(0x7f0000000200)="2fe990d95dde2e940b7c0570cd24005b2e0781871dfe9cc95c47caf9bfbac158cfcb4fcc34cfa78b005b5e8834bf7ee26448f8f7e5e9cacf8646fe10d7b5c1f31ea2ce6f243fae19e472bd029109f2ab9babc17e969c2253e2b04c12205fe8007951ebb2c0df5d5bd2cdbdd23d99a9cbe79011ac28c93dac0743e5a11f793b871e819feace05be0c8601eb468b2d325da21e7c53c7840177d637815864729322cabc7ffa8554bd33142f671c4209cd18", 0xb0}, {&(0x7f00000002c0)="cb546e4c13d8e58e09ab92eba05618f6fbf24603d6f67b0fa599012541f7c7d6c436ef891c0e07d6ad9a44daffb3a3e03bba3dd2f58abe78f38359a4b12842baa949a962bff4164b87c4fc41ca4b7da785ffb66243d8c9b7b5dece432c90ab24c457b0aa9a043683f4ce3497381e55636c62848658478b9fb83adda657f924f0d312439ca108c9805355eaf7383611324aae9cbea3d1e0", 0x97}, {&(0x7f0000000380)="dd4ca83a29e1f301090a45f0d604ebab189939eeb1c8794944d2c972dbcbc11a7cb17e64fbf7b8a5ed10bb694122ccfce0c5007795a38eb8021b94d24fc95d5ea7f6c5613da63ccdfea0548745651ffb067f380855f4f68c1922095a5ccad4afd616a2eb7cb3ac8d3b63b2ccb32ddf7e504888a3a63c97c4341bc81f7d50305b0989e1394a8996a15c372e09e0bb1809d2b57374a2d37cd0", 0x98}], 0x5, 0x0, 0x0, 0x4000000}, 0x8804)
recvfrom$unix(r0, &(0x7f0000000500)=""/158, 0x9e, 0x40000021, &(0x7f00000005c0)=@file={0x0, './file0\x00'}, 0x6e)
getsockopt(r0, 0xfcad, 0x81, &(0x7f0000000640)=""/222, &(0x7f0000000740)=0xde)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000840), 0x2, 0x0)
r2 = geteuid()
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000880)={{0x1, 0x1, 0x18, <r3=>r0, {<r4=>0x0, <r5=>0xee01}}, './file0\x00'})
mount$fuseblk(&(0x7f0000000780), &(0x7f00000007c0)='./file0\x00', &(0x7f0000000800), 0x1080010, &(0x7f00000008c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r5}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x1}}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x400}}, {@default_permissions}, {@blksize={'blksize', 0x3d, 0x1000}}, {@max_read={'max_read', 0x3d, 0x2}}, {@max_read={'max_read', 0x3d, 0x4}}], [{@smackfsdef={'smackfsdef', 0x3d, '\\'}}, {@fsname}, {@audit}, {@flag='nolazytime'}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@smackfsdef}]}})
r6 = creat(&(0x7f0000000a40)='./file0\x00', 0x1)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000b00)={r3, 0x58, &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000b40)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x5, '\x00', r7, r6, 0x0, 0x5}, 0x50)
r8 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000c40), 0x2, 0x0)
statx(r3, &(0x7f0000000c80)='./file0\x00', 0x1000, 0x10, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
mount$9p_fd(0x0, &(0x7f0000000bc0)='./file0\x00', &(0x7f0000000c00), 0x294050, &(0x7f0000000dc0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r8}, 0x2c, {[{@directio}, {@dfltuid={'dfltuid', 0x3d, r9}}, {@uname={'uname', 0x3d, 'smackfsdef'}}, {@access_client}, {@loose}, {@version_u}, {@privport}, {@ignoreqv}, {@aname={'aname', 0x3d, '/dev/loop0\x00'}}], [{@appraise}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@smackfstransmute={'smackfstransmute', 0x3d, ')[\'#]\xa4\''}}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@euid_lt={'euid<', 0xee01}}]}})
r10 = openat$null(0xffffffffffffff9c, &(0x7f0000000f00), 0x0, 0x0)
openat$cgroup_int(r10, &(0x7f0000000f40)='cpuset.memory_spread_page\x00', 0x2, 0x0)
r11 = accept$unix(r0, 0x0, &(0x7f0000000f80))
ioctl$sock_inet_SIOCGIFNETMASK(r11, 0x891b, &(0x7f0000000fc0)={'netpci0\x00', {0x2, 0x0, @loopback}})
ppoll(&(0x7f0000001000)=[{r1}, {r0, 0x684}, {r6, 0x8000}], 0x3, &(0x7f0000001040)={0x77359400}, &(0x7f0000001080)={[0x1]}, 0x8)
openat$adsp1(0xffffffffffffff9c, &(0x7f00000010c0), 0x480802, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(r10, 0xc0086420, &(0x7f0000001100))
r12 = openat$cuse(0xffffffffffffff9c, &(0x7f0000001140), 0x2, 0x0)
syz_io_uring_setup(0x1240, &(0x7f0000001180)={0x0, 0x6e69, 0x100, 0x3, 0x2fc, 0x0, r10}, &(0x7f0000001200)=<r13=>0x0, &(0x7f0000001240))
syz_io_uring_setup(0x2e75, &(0x7f0000001280)={0x0, 0xce21, 0x0, 0x0, 0x2e2}, &(0x7f0000001300), &(0x7f0000001340)=<r14=>0x0)
syz_io_uring_submit(r13, r14, &(0x7f0000001380)=@IORING_OP_NOP={0x0, 0x38})
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000014c0)={@fallback=<r15=>r6, 0x14, 0x1, 0x684, &(0x7f00000013c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7, 0x0, &(0x7f0000001400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000001440)=[0x0, 0x0], &(0x7f0000001480)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
readv(r11, &(0x7f0000003980)=[{&(0x7f0000001500)=""/219, 0xdb}, {&(0x7f0000001600)=""/200, 0xc8}, {&(0x7f0000001700)=""/225, 0xe1}, {&(0x7f0000001800)=""/103, 0x67}, {&(0x7f0000001880)=""/83, 0x53}, {&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f0000002900)=""/4096, 0x1000}, {&(0x7f0000003900)=""/117, 0x75}], 0x8)
mount$cgroup(0x0, &(0x7f0000003a00)='./file0/file0\x00', &(0x7f0000003a40), 0x4, &(0x7f0000003a80)={[{@subsystem='io'}, {@subsystem='io'}, {@name={'name', 0x3d, '/dev/video2\x00'}}], [{@euid_eq={'euid', 0x3d, r4}}, {@appraise_type}, {@dont_hash}, {@fsname}, {@obj_user={'obj_user', 0x3d, 'loose'}}]})
write$FUSE_NOTIFY_POLL(r12, &(0x7f0000003b00)={0x18, 0x1, 0x0, {0x81}}, 0x18)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(r15, 0xc01064c2, &(0x7f0000003b40)={0x0, 0x0, r10})

296.607µs ago: executing program 4 (id=587):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000000a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000040)=""/3, 0x3, 0x0, 0x4, 0x9, 0x4, 0xc08}}, 0x120)
readv(r0, &(0x7f0000000180)=[{&(0x7f0000000080)=""/155, 0x9b}], 0x1)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = openat$selinux_policy(0xffffff9c, &(0x7f0000000380), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r2, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x18)
setsockopt$inet6_int(r3, 0x29, 0x19, &(0x7f0000000040)=0xb0, 0x4)
syz_emit_ethernet(0xfed7, &(0x7f0000000400)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd6002adf700383a00fe880000000000000000000000000001ff02000000000000000000000000000102009078000000006000641a00003a00ff010000000000000000000000000001ff0100000000000000000000000000011e520b4c951ee12ed2b4ca11de2c7301070b32c18a1c2b6417a48364e7f4ad7df23bf038df42a302edf64e9dce3e4af67eeb68eafea334706556b8eacaf29bb40a1e53ebec2e54280d6854ef1fe608856b7d47096dfbeb97c13fd1dc1331e9a635c7bf8b44b7bcbc3593fde6129ef8a2b741d8200c955ad88731"], 0x0)
r6 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SCAUSEDIAG(r6, 0x89ec, &(0x7f0000000080)={0x4, 0x8})
symlink(&(0x7f00000003c0)='./file0/../file0/file1\x00', 0x0)
ioctl$SYNC_IOC_FILE_INFO(0xffffffffffffffff, 0xc0383e04, &(0x7f0000000240)={""/32, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000e00)=[{}, {}, {}]})
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000040)={0xf0f046, 0x100000})
ioctl$HIDIOCGPHYS(r2, 0x80404812, &(0x7f00000002c0))
write$selinux_load(r1, &(0x7f0000000000)=ANY=[], 0xffbd)
syz_emit_vhci(&(0x7f0000000200)=ANY=[@ANYRESHEX=r0], 0x7)
r7 = syz_open_procfs(0x0, &(0x7f0000000280)='fdinfo/4\x00')
preadv(r7, &(0x7f0000000140)=[{&(0x7f00000001c0)=""/51, 0x33}], 0x1, 0x2, 0xa)
close(r7)

0s ago: executing program 6 (id=588):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x1) (async)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
mprotect(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$qrtrtun(r0, &(0x7f0000000380)="ca091cc2e088", 0xffe3)
process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000001600)=""/4096, 0x1000}], 0x1, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=[0x7, 0x5], &(0x7f0000000240), 0x0, 0x2}}, 0x40)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="38000000480001002dbd7000ffdbdf250a000000", @ANYRES32=0x0, @ANYBLOB="09000000080002000000050014000100fe80000000000000000000000000002a785367d055ef735ecc4cacc2d25b7041c4cc31a4e3149cecc304f19ebb84d22b23a4ed2f3871a2a35d8ca3e17c1bfb07267a97ac74a8ba3e8ed7"], 0x38}, 0x1, 0x0, 0x0, 0x4000081}, 0x0)

kernel console output (not intermixed with test programs):

dv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.466881][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.469486][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.478299][ T5945] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.499138][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.502165][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.511264][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.548793][ T5958] team0: Port device team_slave_0 added
[   46.554943][ T5954] hsr_slave_0: entered promiscuous mode
[   46.557907][ T5954] hsr_slave_1: entered promiscuous mode
[   46.561631][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.563775][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.571846][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.582835][ T5958] team0: Port device team_slave_1 added
[   46.661514][ T5944] hsr_slave_0: entered promiscuous mode
[   46.666480][ T5944] hsr_slave_1: entered promiscuous mode
[   46.669136][ T5944] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.672234][ T5944] Cannot create hsr debugfs directory
[   46.688005][ T5958] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.690180][ T5958] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.697937][ T5958] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.750244][ T5945] hsr_slave_0: entered promiscuous mode
[   46.752891][ T5945] hsr_slave_1: entered promiscuous mode
[   46.755830][ T5945] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.759096][ T5945] Cannot create hsr debugfs directory
[   46.761753][ T5958] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.763995][ T5958] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.772098][ T5958] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.903996][ T5958] hsr_slave_0: entered promiscuous mode
[   46.906298][ T5958] hsr_slave_1: entered promiscuous mode
[   46.908452][ T5958] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.910821][ T5958] Cannot create hsr debugfs directory
[   47.208817][ T5954] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   47.214431][ T5954] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   47.223227][ T5954] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   47.227836][ T5954] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   47.254654][ T5945] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   47.260278][ T5945] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   47.273910][ T5945] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   47.278634][ T5945] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   47.314971][ T5962] Bluetooth: hci0: command tx timeout
[   47.314976][ T5956] Bluetooth: hci2: command tx timeout
[   47.314979][ T5951] Bluetooth: hci1: command tx timeout
[   47.323159][ T5944] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   47.334852][ T5944] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   47.345219][ T5944] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   47.361853][ T5944] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   47.394449][ T5951] Bluetooth: hci3: command tx timeout
[   47.397741][ T5958] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   47.406243][ T5958] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   47.410900][ T5958] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   47.415504][ T5958] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   47.450666][ T5954] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.471172][ T5954] 8021q: adding VLAN 0 to HW filter on device team0
[   47.484691][ T5945] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.493786][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.496063][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.505904][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.508064][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.528574][ T5945] 8021q: adding VLAN 0 to HW filter on device team0
[   47.535852][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.551647][   T77] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.553846][   T77] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.562352][ T5954] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   47.566664][ T5954] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   47.587490][ T5944] 8021q: adding VLAN 0 to HW filter on device team0
[   47.596200][   T77] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.598550][   T77] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.598881][   T40] audit: type=1400 audit(1753732336.731:89): avc:  denied  { sys_module } for  pid=5954 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   47.603273][   T77] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.610062][   T77] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.614195][   T77] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.616478][   T77] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.654673][ T5958] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.674717][ T5958] 8021q: adding VLAN 0 to HW filter on device team0
[   47.681792][  T167] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.684130][  T167] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.696484][  T167] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.699162][  T167] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.713505][ T5954] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.767319][ T5954] veth0_vlan: entered promiscuous mode
[   47.772403][ T5954] veth1_vlan: entered promiscuous mode
[   47.807582][ T5954] veth0_macvtap: entered promiscuous mode
[   47.814337][ T5954] veth1_macvtap: entered promiscuous mode
[   47.827699][ T5945] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.833505][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.841344][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.848621][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.852596][ T5954] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.856668][ T5954] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.859884][ T5954] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.863487][ T5954] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.909446][ T5945] veth0_vlan: entered promiscuous mode
[   47.916482][ T5958] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.922481][ T5944] veth0_vlan: entered promiscuous mode
[   47.930731][ T5944] veth1_vlan: entered promiscuous mode
[   47.937202][ T5945] veth1_vlan: entered promiscuous mode
[   47.959606][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.962385][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.983885][  T167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.987910][  T167] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.996805][ T5944] veth0_macvtap: entered promiscuous mode
[   48.000998][ T5958] veth0_vlan: entered promiscuous mode
[   48.013211][ T5944] veth1_macvtap: entered promiscuous mode
[   48.019224][ T5954] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   48.021054][ T5945] veth0_macvtap: entered promiscuous mode
[   48.028778][ T5958] veth1_vlan: entered promiscuous mode
[   48.036193][ T5945] veth1_macvtap: entered promiscuous mode
[   48.044149][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.055095][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.059148][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.063705][ T5944] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.066953][ T5944] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.069660][ T5944] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.072349][ T5944] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.079031][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.090886][ T5945] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.098688][ T5945] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.102423][ T5945] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.106433][ T5945] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.120596][ T5958] veth0_macvtap: entered promiscuous mode
[   48.132859][ T5958] veth1_macvtap: entered promiscuous mode
[   48.134777][ T6036] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   48.139253][ T6036] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   48.175749][ T5958] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.179882][ T1170] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.183155][ T1170] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.197843][ T5958] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.213438][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.217569][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.223383][ T5958] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.229450][ T5958] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.233106][ T5958] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.237450][ T5958] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.265077][   T77] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.267889][   T77] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.275015][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.277794][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.300280][  T167] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.302825][  T167] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.328963][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.331979][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.338171][ T6042] binder: 6041:6042 ioctl c0502100 200000000280 returned -22
[   48.342077][ T6042] binder: 6041:6042 ioctl 40182103 200000000240 returned -22
[   48.386186][ T6049] FAULT_INJECTION: forcing a failure.
[   48.386186][ T6049] name failslab, interval 1, probability 0, space 0, times 1
[   48.390016][ T6049] CPU: 2 UID: 0 PID: 6049 Comm: syz.1.2 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   48.390029][ T6049] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   48.390035][ T6049] Call Trace:
[   48.390039][ T6049]  <TASK>
[   48.390043][ T6049]  dump_stack_lvl+0x16c/0x1f0
[   48.390062][ T6049]  should_fail_ex+0x512/0x640
[   48.390079][ T6049]  ? fs_reclaim_acquire+0xae/0x150
[   48.390093][ T6049]  ? tomoyo_encode2+0x100/0x3e0
[   48.390102][ T6049]  should_failslab+0xc2/0x120
[   48.390112][ T6049]  __kmalloc_noprof+0xd2/0x510
[   48.390127][ T6049]  ? d_absolute_path+0x136/0x1a0
[   48.390143][ T6049]  tomoyo_encode2+0x100/0x3e0
[   48.390154][ T6049]  tomoyo_encode+0x29/0x50
[   48.390163][ T6049]  tomoyo_realpath_from_path+0x18f/0x6e0
[   48.390177][ T6049]  tomoyo_path_number_perm+0x245/0x580
[   48.390191][ T6049]  ? tomoyo_path_number_perm+0x237/0x580
[   48.390206][ T6049]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   48.390222][ T6049]  ? find_held_lock+0x2b/0x80
[   48.390246][ T6049]  ? find_held_lock+0x2b/0x80
[   48.390258][ T6049]  ? hook_file_ioctl_common+0x145/0x410
[   48.390272][ T6049]  ? __fget_files+0x20e/0x3c0
[   48.390284][ T6049]  security_file_ioctl+0x9b/0x240
[   48.390295][ T6049]  __x64_sys_ioctl+0xb7/0x210
[   48.390309][ T6049]  do_syscall_64+0xcd/0x4c0
[   48.390333][ T6049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.390344][ T6049] RIP: 0033:0x7fd40778e9a9
[   48.390353][ T6049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.390362][ T6049] RSP: 002b:00007fd40861d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   48.390372][ T6049] RAX: ffffffffffffffda RBX: 00007fd4079b5fa0 RCX: 00007fd40778e9a9
[   48.390378][ T6049] RDX: 00002000000000c0 RSI: 00000000c0306201 RDI: 0000000000000003
[   48.390384][ T6049] RBP: 00007fd40861d090 R08: 0000000000000000 R09: 0000000000000000
[   48.390390][ T6049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.390395][ T6049] R13: 0000000000000000 R14: 00007fd4079b5fa0 R15: 00007fff7dbee3a8
[   48.390408][ T6049]  </TASK>
[   48.390432][ T6049] ERROR: Out of memory at tomoyo_realpath_from_path.
[   48.424904][   T61] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   48.466958][ T6053] block nbd2: shutting down sockets
[   48.583584][ T6067] Zero length message leads to an empty skb
[   48.756159][   T61] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   48.906391][ T6082] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   48.952541][ T6086] FAULT_INJECTION: forcing a failure.
[   48.952541][ T6086] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   48.956881][ T6086] CPU: 2 UID: 0 PID: 6086 Comm: syz.2.19 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   48.956894][ T6086] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   48.956900][ T6086] Call Trace:
[   48.956904][ T6086]  <TASK>
[   48.956907][ T6086]  dump_stack_lvl+0x16c/0x1f0
[   48.956927][ T6086]  should_fail_ex+0x512/0x640
[   48.956946][ T6086]  _copy_from_user+0x2e/0xd0
[   48.956957][ T6086]  binder_ioctl+0x57a/0x72c0
[   48.956976][ T6086]  ? tomoyo_path_number_perm+0x18d/0x580
[   48.956993][ T6086]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   48.957007][ T6086]  ? __pfx_binder_ioctl+0x10/0x10
[   48.957018][ T6086]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   48.957035][ T6086]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[   48.957046][ T6086]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[   48.957056][ T6086]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   48.957070][ T6086]  ? hook_file_ioctl_common+0x145/0x410
[   48.957085][ T6086]  ? selinux_file_ioctl+0x180/0x270
[   48.957094][ T6086]  ? selinux_file_ioctl+0xb4/0x270
[   48.957104][ T6086]  ? __pfx_binder_ioctl+0x10/0x10
[   48.957116][ T6086]  __x64_sys_ioctl+0x18e/0x210
[   48.957130][ T6086]  do_syscall_64+0xcd/0x4c0
[   48.957141][ T6086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.957152][ T6086] RIP: 0033:0x7f6963f8e9a9
[   48.957160][ T6086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.957188][ T6086] RSP: 002b:00007f6964d42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   48.957203][ T6086] RAX: ffffffffffffffda RBX: 00007f69641b5fa0 RCX: 00007f6963f8e9a9
[   48.957211][ T6086] RDX: 00002000000000c0 RSI: 00000000c0306201 RDI: 0000000000000003
[   48.957219][ T6086] RBP: 00007f6964d42090 R08: 0000000000000000 R09: 0000000000000000
[   48.957227][ T6086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.957236][ T6086] R13: 0000000000000000 R14: 00007f69641b5fa0 R15: 00007fff903f6b08
[   48.957251][ T6086]  </TASK>
[   48.957255][ T6086] binder: 6085:6086 ioctl c0306201 2000000000c0 returned -14
[   49.081065][ T6091] XFS (nullb0): Invalid superblock magic number
[   49.090007][ T6091] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[   49.092687][ T6091] overlayfs: missing 'lowerdir'
[   49.154719][ T6032] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   49.157453][   T53] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   49.166557][ T6101] binder: BINDER_SET_CONTEXT_MGR already set
[   49.169267][ T6101] binder: 6100:6101 ioctl 4018620d 200000000040 returned -16
[   49.195773][ T6098] block nbd0: shutting down sockets
[   49.395141][ T5951] Bluetooth: hci0: command tx timeout
[   49.395214][ T5962] Bluetooth: hci2: command tx timeout
[   49.434837][ T6117] netlink: 28 bytes leftover after parsing attributes in process `syz.0.28'.
[   49.475180][   T77] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   49.477982][   T77] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   49.484684][ T5962] Bluetooth: hci3: command tx timeout
[   49.584886][ T6101] syz.2.23 (6101): drop_caches: 2
[   49.754540][  T926] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   49.864233][ T6130] netlink: 4 bytes leftover after parsing attributes in process `syz.2.30'.
[   49.944137][ T6135] FAULT_INJECTION: forcing a failure.
[   49.944137][ T6135] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.950545][ T6135] CPU: 3 UID: 0 PID: 6135 Comm: syz.2.31 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   49.950560][ T6135] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   49.950566][ T6135] Call Trace:
[   49.950570][ T6135]  <TASK>
[   49.950574][ T6135]  dump_stack_lvl+0x16c/0x1f0
[   49.950596][ T6135]  should_fail_ex+0x512/0x640
[   49.950614][ T6135]  _copy_to_user+0x32/0xd0
[   49.950625][ T6135]  binder_ioctl+0x265e/0x72c0
[   49.950649][ T6135]  ? __pfx_binder_ioctl+0x10/0x10
[   49.950665][ T6135]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[   49.950676][ T6135]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[   49.950687][ T6135]  ? __pfx_autoremove_wake_function+0x10/0x10
[   49.950706][ T6135]  ? hook_file_ioctl_common+0x145/0x410
[   49.950721][ T6135]  ? selinux_file_ioctl+0x180/0x270
[   49.950730][ T6135]  ? selinux_file_ioctl+0xb4/0x270
[   49.950740][ T6135]  ? __pfx_binder_ioctl+0x10/0x10
[   49.950752][ T6135]  __x64_sys_ioctl+0x18e/0x210
[   49.950767][ T6135]  do_syscall_64+0xcd/0x4c0
[   49.950778][ T6135]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.950788][ T6135] RIP: 0033:0x7f6963f8e9a9
[   49.950797][ T6135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.950807][ T6135] RSP: 002b:00007f6964d42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   49.950817][ T6135] RAX: ffffffffffffffda RBX: 00007f69641b5fa0 RCX: 00007f6963f8e9a9
[   49.950823][ T6135] RDX: 00002000000000c0 RSI: 00000000c0306201 RDI: 0000000000000003
[   49.950829][ T6135] RBP: 00007f6964d42090 R08: 0000000000000000 R09: 0000000000000000
[   49.950834][ T6135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.950840][ T6135] R13: 0000000000000000 R14: 00007f69641b5fa0 R15: 00007fff903f6b08
[   49.950852][ T6135]  </TASK>
[   49.950856][ T6135] binder: 6134:6135 ioctl c0306201 2000000000c0 returned -14
[   50.085094][ T6138] block nbd2: NBD_DISCONNECT
[   50.087850][ T6138] block nbd2: Disconnected due to user request.
[   50.090954][ T6138] block nbd2: shutting down sockets
[   50.154107][   T40] kauditd_printk_skb: 105 callbacks suppressed
[   50.154122][   T40] audit: type=1400 audit(1753732339.281:195): avc:  denied  { create } for  pid=6141 comm="syz.2.34" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   50.165319][   T40] audit: type=1400 audit(1753732339.291:196): avc:  denied  { read } for  pid=6141 comm="syz.2.34" path="socket:[8769]" dev="sockfs" ino=8769 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   50.174782][   T40] audit: type=1400 audit(1753732339.291:197): avc:  denied  { write } for  pid=6141 comm="syz.2.34" path="socket:[8770]" dev="sockfs" ino=8770 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   50.185073][ T6144] nfs4: Bad value for 'source'
[   50.187088][   T40] audit: type=1400 audit(1753732339.321:198): avc:  denied  { name_bind } for  pid=6143 comm="syz.2.35" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   50.196691][   T40] audit: type=1400 audit(1753732339.321:199): avc:  denied  { node_bind } for  pid=6143 comm="syz.2.35" saddr=255.255.255.255 src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   50.203579][   T53] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   50.204422][   T40] audit: type=1400 audit(1753732339.321:200): avc:  denied  { setattr } for  pid=6143 comm="syz.2.35" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   50.277987][ T6149] binder: BINDER_SET_CONTEXT_MGR already set
[   50.281139][ T6149] binder: 6148:6149 ioctl 4018620d 200000000040 returned -16
[   50.324817][   T40] audit: type=1400 audit(1753732339.451:201): avc:  denied  { unmount } for  pid=5958 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   50.376857][   T13] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.395032][ T6149] syz.2.37 (6149): drop_caches: 2
[   50.423256][   T40] audit: type=1400 audit(1753732339.551:202): avc:  denied  { ioctl } for  pid=6155 comm="syz.0.41" path="cgroup:[4026532884]" dev="nsfs" ino=4026532884 ioctlcmd=0xb701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   50.487408][ T6171] block nbd1: NBD_DISCONNECT
[   50.488964][ T6171] block nbd1: Disconnected due to user request.
[   50.496649][ T6171] block nbd1: shutting down sockets
[   50.529767][ T5951] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   50.535022][ T5951] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   50.542463][ T5951] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   50.549012][ T5951] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   50.552275][ T5951] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   50.608426][ T6181] SELinux:  Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped).
[   50.610676][ T6187] binder: BINDER_SET_CONTEXT_MGR already set
[   50.611790][   T40] audit: type=1400 audit(1753732339.741:203): avc:  denied  { relabelto } for  pid=6179 comm="syz.0.49" name="13" dev="tmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[   50.613597][ T6187] binder: 6184:6187 ioctl 4018620d 200000000040 returned -16
[   50.619187][ T6187] syz.2.51 (6187): drop_caches: 2
[   50.621674][   T40] audit: type=1400 audit(1753732339.741:204): avc:  denied  { associate } for  pid=6179 comm="syz.0.49" name="13" dev="tmpfs" ino=87 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:crond_var_run_t:s0"
[   50.698755][ T6197] FAULT_INJECTION: forcing a failure.
[   50.698755][ T6197] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   50.702938][ T6197] CPU: 0 UID: 0 PID: 6197 Comm: syz.1.55 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   50.702952][ T6197] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.702957][ T6197] Call Trace:
[   50.702961][ T6197]  <TASK>
[   50.702965][ T6197]  dump_stack_lvl+0x16c/0x1f0
[   50.702985][ T6197]  should_fail_ex+0x512/0x640
[   50.703003][ T6197]  should_fail_alloc_page+0xe7/0x130
[   50.703015][ T6197]  prepare_alloc_pages+0x3c2/0x610
[   50.703028][ T6197]  ? __lock_acquire+0x622/0x1c90
[   50.703039][ T6197]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[   50.703059][ T6197]  ? find_held_lock+0x2b/0x80
[   50.703071][ T6197]  ? mtree_load+0x309/0xa40
[   50.703086][ T6197]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   50.703103][ T6197]  ? mtree_load+0x325/0xa40
[   50.703121][ T6197]  ? __up_read+0x1f8/0x750
[   50.703132][ T6197]  ? __pfx___up_read+0x10/0x10
[   50.703142][ T6197]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   50.703155][ T6197]  ? policy_nodemask+0xea/0x4e0
[   50.703166][ T6197]  alloc_pages_mpol+0x1fb/0x550
[   50.703176][ T6197]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   50.703186][ T6197]  ? do_raw_spin_lock+0x12c/0x2b0
[   50.703197][ T6197]  ? __pfx___access_remote_vm+0x10/0x10
[   50.703209][ T6197]  alloc_pages_noprof+0x131/0x390
[   50.703219][ T6197]  get_free_pages_noprof+0x10/0xb0
[   50.703229][ T6197]  proc_pid_cmdline_read+0x46d/0x900
[   50.703246][ T6197]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[   50.703262][ T6197]  ? rw_verify_area+0xcf/0x680
[   50.703276][ T6197]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[   50.703290][ T6197]  vfs_readv+0x5be/0x8b0
[   50.703306][ T6197]  ? __pfx_vfs_readv+0x10/0x10
[   50.703320][ T6197]  ? find_held_lock+0x2b/0x80
[   50.703344][ T6197]  ? __fget_files+0x20e/0x3c0
[   50.703356][ T6197]  ? do_preadv+0x1a6/0x270
[   50.703369][ T6197]  do_preadv+0x1a6/0x270
[   50.703382][ T6197]  ? __pfx_do_preadv+0x10/0x10
[   50.703399][ T6197]  do_syscall_64+0xcd/0x4c0
[   50.703410][ T6197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.703420][ T6197] RIP: 0033:0x7fd40778e9a9
[   50.703429][ T6197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.703438][ T6197] RSP: 002b:00007fd40861d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   50.703448][ T6197] RAX: ffffffffffffffda RBX: 00007fd4079b5fa0 RCX: 00007fd40778e9a9
[   50.703454][ T6197] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000003
[   50.703459][ T6197] RBP: 00007fd40861d090 R08: 00000000fffffff9 R09: 0000000000000000
[   50.703465][ T6197] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000001
[   50.703471][ T6197] R13: 0000000000000000 R14: 00007fd4079b5fa0 R15: 00007fff7dbee3a8
[   50.703483][ T6197]  </TASK>
[   50.736227][ T6173] chnl_net:caif_netlink_parms(): no params data found
[   50.835064][ T6203] block nbd2: NBD_DISCONNECT
[   50.836938][ T6203] block nbd2: Disconnected due to user request.
[   50.839117][ T6203] block nbd2: shutting down sockets
[   50.864419][   T29] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   50.881695][ T6173] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.886729][ T6173] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.889011][ T6173] bridge_slave_0: entered allmulticast mode
[   50.892359][ T6173] bridge_slave_0: entered promiscuous mode
[   50.897903][ T6173] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.901575][ T6173] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.904905][ T6173] bridge_slave_1: entered allmulticast mode
[   50.908892][ T6173] bridge_slave_1: entered promiscuous mode
[   50.912035][ T6210] syz.2.58 uses obsolete (PF_INET,SOCK_PACKET)
[   50.940461][ T6173] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   50.945859][ T6173] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   51.005384][   T29] usb 5-1: device descriptor read/64, error -71
[   51.007784][ T6208] binder: 6201:6208 ioctl c0306201 200000000640 returned -22
[   51.009731][ T6173] team0: Port device team_slave_0 added
[   51.013737][ T6173] team0: Port device team_slave_1 added
[   51.050149][ T6173] batman_adv: batadv0: Adding interface: batadv_slave_0
[   51.052337][ T6173] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.060844][ T6173] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   51.065263][ T6173] batman_adv: batadv0: Adding interface: batadv_slave_1
[   51.067436][ T6173] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.076017][ T6173] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   51.116012][ T6173] hsr_slave_0: entered promiscuous mode
[   51.118434][ T6173] hsr_slave_1: entered promiscuous mode
[   51.120579][ T6173] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   51.123068][ T6173] Cannot create hsr debugfs directory
[   51.254467][   T29] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   51.264896][ T6173] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   51.269118][ T6173] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   51.273273][ T6173] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   51.278798][ T6173] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   51.294236][ T6173] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.296700][ T6173] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.299361][ T6173] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.301539][ T6173] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.329793][ T6173] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.338686][  T167] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.341715][  T167] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.350032][ T6173] 8021q: adding VLAN 0 to HW filter on device team0
[   51.357454][   T77] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.360057][   T77] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.365686][   T61] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.367967][   T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.395404][   T29] usb 5-1: device descriptor read/64, error -71
[   51.476021][ T5951] Bluetooth: hci0: command tx timeout
[   51.484427][ T5951] Bluetooth: hci2: command tx timeout
[   51.500220][ T6173] 8021q: adding VLAN 0 to HW filter on device batadv0
[   51.515036][   T29] usb usb5-port1: attempt power cycle
[   51.554462][ T5951] Bluetooth: hci3: command tx timeout
[   51.642855][ T6239] syz.1.61 (6239): drop_caches: 2
[   51.643051][ T6173] veth0_vlan: entered promiscuous mode
[   51.649865][ T6173] veth1_vlan: entered promiscuous mode
[   51.671048][ T6173] veth0_macvtap: entered promiscuous mode
[   51.675027][ T6173] veth1_macvtap: entered promiscuous mode
[   51.682916][ T6173] batman_adv: batadv0: Interface activated: batadv_slave_0
[   51.690406][ T6173] batman_adv: batadv0: Interface activated: batadv_slave_1
[   51.697956][ T6173] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   51.700896][ T6173] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   51.703583][ T6173] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   51.706340][ T6173] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   51.733287][ T6245] FAULT_INJECTION: forcing a failure.
[   51.733287][ T6245] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   51.737310][ T6245] CPU: 3 UID: 0 PID: 6245 Comm: syz.1.64 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   51.737324][ T6245] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   51.737330][ T6245] Call Trace:
[   51.737338][ T6245]  <TASK>
[   51.737342][ T6245]  dump_stack_lvl+0x16c/0x1f0
[   51.737362][ T6245]  should_fail_ex+0x512/0x640
[   51.737380][ T6245]  _copy_to_user+0x32/0xd0
[   51.737391][ T6245]  proc_pid_cmdline_read+0x51b/0x900
[   51.737408][ T6245]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[   51.737424][ T6245]  ? rw_verify_area+0xcf/0x680
[   51.737438][ T6245]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[   51.737453][ T6245]  vfs_readv+0x5be/0x8b0
[   51.737469][ T6245]  ? __pfx_vfs_readv+0x10/0x10
[   51.737483][ T6245]  ? find_held_lock+0x2b/0x80
[   51.737503][ T6245]  ? __fget_files+0x20e/0x3c0
[   51.737515][ T6245]  ? do_preadv+0x1a6/0x270
[   51.737527][ T6245]  do_preadv+0x1a6/0x270
[   51.737541][ T6245]  ? __pfx_do_preadv+0x10/0x10
[   51.737558][ T6245]  do_syscall_64+0xcd/0x4c0
[   51.737569][ T6245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.737579][ T6245] RIP: 0033:0x7fd40778e9a9
[   51.737588][ T6245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.737597][ T6245] RSP: 002b:00007fd40861d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   51.737607][ T6245] RAX: ffffffffffffffda RBX: 00007fd4079b5fa0 RCX: 00007fd40778e9a9
[   51.737613][ T6245] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000003
[   51.737619][ T6245] RBP: 00007fd40861d090 R08: 00000000fffffff9 R09: 0000000000000000
[   51.737624][ T6245] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000001
[   51.737630][ T6245] R13: 0000000000000000 R14: 00007fd4079b5fa0 R15: 00007fff7dbee3a8
[   51.737642][ T6245]  </TASK>
[   51.820455][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   51.822912][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   51.847328][  T167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   51.849778][  T167] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   51.857589][   T29] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   51.866201][ T6247] block nbd1: NBD_DISCONNECT
[   51.868230][ T6247] block nbd1: Disconnected due to user request.
[   51.870244][ T6247] block nbd1: shutting down sockets
[   51.889511][   T29] usb 5-1: device descriptor read/8, error -71
[   52.020714][   T13] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.117404][ T6258] openvswitch: netlink: IPv6 tunnel dst address is zero
[   52.121136][ T6258] netlink: 12 bytes leftover after parsing attributes in process `syz.4.67'.
[   52.135584][   T29] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   52.152028][   T13] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.164892][   T29] usb 5-1: device descriptor read/8, error -71
[   52.213965][ T6263] syz.4.70 (6263): drop_caches: 2
[   52.222458][ T6259] SELinux: failed to load policy
[   52.227957][   T13] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.275291][   T29] usb usb5-port1: unable to enumerate USB device
[   52.300284][ T6272] FAULT_INJECTION: forcing a failure.
[   52.300284][ T6272] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   52.306198][ T6272] CPU: 0 UID: 0 PID: 6272 Comm: syz.1.73 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   52.306231][ T6272] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   52.306240][ T6272] Call Trace:
[   52.306246][ T6272]  <TASK>
[   52.306251][ T6272]  dump_stack_lvl+0x16c/0x1f0
[   52.306280][ T6272]  should_fail_ex+0x512/0x640
[   52.306308][ T6272]  should_fail_alloc_page+0xe7/0x130
[   52.306326][ T6272]  prepare_alloc_pages+0x3c2/0x610
[   52.306350][ T6272]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[   52.306381][ T6272]  ? find_held_lock+0x2b/0x80
[   52.306408][ T6272]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   52.306434][ T6272]  ? __lock_acquire+0x622/0x1c90
[   52.306459][ T6272]  ? lock_acquire+0x179/0x350
[   52.306475][ T6272]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   52.306496][ T6272]  ? policy_nodemask+0xea/0x4e0
[   52.306515][ T6272]  alloc_pages_mpol+0x1fb/0x550
[   52.306533][ T6272]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   52.306557][ T6272]  folio_alloc_mpol_noprof+0x36/0x2f0
[   52.306579][ T6272]  vma_alloc_folio_noprof+0xed/0x1e0
[   52.306598][ T6272]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   52.306618][ T6272]  ? rcu_read_unlock+0x2d/0xb0
[   52.306652][ T6272]  do_wp_page+0x1136/0x4f20
[   52.306680][ T6272]  ? __pfx_do_wp_page+0x10/0x10
[   52.306702][ T6272]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   52.306730][ T6272]  __handle_mm_fault+0x2223/0x5490
[   52.306762][ T6272]  ? __pfx___handle_mm_fault+0x10/0x10
[   52.306783][ T6272]  ? __pfx_mt_find+0x10/0x10
[   52.306815][ T6272]  ? find_vma+0xbf/0x140
[   52.306832][ T6272]  ? __pfx_find_vma+0x10/0x10
[   52.306852][ T6272]  handle_mm_fault+0x589/0xd10
[   52.306876][ T6272]  ? __pkru_allows_pkey+0x51/0xb0
[   52.306902][ T6272]  do_user_addr_fault+0x7a6/0x1370
[   52.306929][ T6272]  ? rcu_is_watching+0x12/0xc0
[   52.306953][ T6272]  exc_page_fault+0x5c/0xb0
[   52.306979][ T6272]  asm_exc_page_fault+0x26/0x30
[   52.306995][ T6272] RIP: 0010:_copy_to_user+0xb6/0xd0
[   52.307013][ T6272] Code: 89 ee 48 89 ef e8 0a e3 e0 fc 4d 85 ff 75 a8 e8 50 e8 e0 fc 89 de 4c 89 e7 e8 c6 43 46 fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00
[   52.307028][ T6272] RSP: 0018:ffffc900058c7b88 EFLAGS: 00050246
[   52.307042][ T6272] RAX: 0000000000000001 RBX: 0000000000000fea RCX: 0000000000000fea
[   52.307052][ T6272] RDX: ffffed10066b17fe RSI: ffff88803358b000 RDI: 0000200000001180
[   52.307062][ T6272] RBP: 0000200000001180 R08: 0000000000000000 R09: ffffed10066b17fd
[   52.307072][ T6272] R10: ffff88803358bfe9 R11: 0000000000000000 R12: ffff88803358b000
[   52.307082][ T6272] R13: 000020000000216a R14: 00007ffffffff000 R15: 0000000000000000
[   52.307108][ T6272]  ? _copy_to_user+0xaa/0xd0
[   52.307126][ T6272]  proc_pid_cmdline_read+0x51b/0x900
[   52.307156][ T6272]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[   52.307184][ T6272]  ? rw_verify_area+0xcf/0x680
[   52.307207][ T6272]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[   52.307244][ T6272]  vfs_readv+0x5be/0x8b0
[   52.307275][ T6272]  ? __pfx_vfs_readv+0x10/0x10
[   52.307299][ T6272]  ? find_held_lock+0x2b/0x80
[   52.307338][ T6272]  ? __fget_files+0x20e/0x3c0
[   52.307360][ T6272]  ? do_preadv+0x1a6/0x270
[   52.307381][ T6272]  do_preadv+0x1a6/0x270
[   52.307404][ T6272]  ? __pfx_do_preadv+0x10/0x10
[   52.307435][ T6272]  do_syscall_64+0xcd/0x4c0
[   52.307454][ T6272]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.307469][ T6272] RIP: 0033:0x7fd40778e9a9
[   52.307482][ T6272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.307496][ T6272] RSP: 002b:00007fd40861d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   52.307511][ T6272] RAX: ffffffffffffffda RBX: 00007fd4079b5fa0 RCX: 00007fd40778e9a9
[   52.307521][ T6272] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000003
[   52.307530][ T6272] RBP: 00007fd40861d090 R08: 00000000fffffff9 R09: 0000000000000000
[   52.307540][ T6272] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000001
[   52.307549][ T6272] R13: 0000000000000000 R14: 00007fd4079b5fa0 R15: 00007fff7dbee3a8
[   52.307571][ T6272]  </TASK>
[   52.551495][   T13] bridge_slave_1: left allmulticast mode
[   52.553392][   T13] bridge_slave_1: left promiscuous mode
[   52.559413][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.576237][   T13] bridge_slave_0: left allmulticast mode
[   52.578062][   T13] bridge_slave_0: left promiscuous mode
[   52.580304][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.604991][ T6284] block nbd1: NBD_DISCONNECT
[   52.606782][ T6284] block nbd1: Disconnected due to user request.
[   52.609408][ T6284] block nbd1: shutting down sockets
[   52.611695][ T5951] Bluetooth: hci1: command tx timeout
[   52.620029][ T6277] netlink: 8 bytes leftover after parsing attributes in process `syz.2.69'.
[   52.622877][ T6277] netlink: 12 bytes leftover after parsing attributes in process `syz.2.69'.
[   52.626758][ T6291] netlink: 32 bytes leftover after parsing attributes in process `syz.4.77'.
[   52.679526][ T6280] binder: 6276:6280 ioctl c0306201 200000000540 returned -22
[   52.734073][ T6300] binder: 6276:6300 ioctl c0306201 200000000640 returned -22
[   52.776454][ T6301] netlink: 8 bytes leftover after parsing attributes in process `syz.1.78'.
[   52.814152][ T6303] syz.4.79 (6303): drop_caches: 2
[   52.897511][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   52.904003][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   52.909593][   T13] bond0 (unregistering): Released all slaves
[   52.929520][ T6309] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   53.100484][ T6319] netlink: 16 bytes leftover after parsing attributes in process `syz.1.83'.
[   53.159345][ T6324] input: syz0 as /devices/virtual/input/input5
[   53.239015][ T6328] openvswitch: netlink: Missing key (keys=40, expected=2000)
[   53.241646][ T6328] netlink: 'syz.1.84': attribute type 30 has an invalid length.
[   53.244195][ T6328] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0)
[   53.248590][ T6328] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255
[   53.257609][ T6331] FAULT_INJECTION: forcing a failure.
[   53.257609][ T6331] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.261827][ T6331] CPU: 2 UID: 0 PID: 6331 Comm: syz.4.85 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   53.261840][ T6331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.261846][ T6331] Call Trace:
[   53.261850][ T6331]  <TASK>
[   53.261854][ T6331]  dump_stack_lvl+0x16c/0x1f0
[   53.261874][ T6331]  should_fail_ex+0x512/0x640
[   53.261892][ T6331]  _copy_to_user+0x32/0xd0
[   53.261904][ T6331]  proc_pid_cmdline_read+0x51b/0x900
[   53.261921][ T6331]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[   53.261937][ T6331]  ? rw_verify_area+0xcf/0x680
[   53.261951][ T6331]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[   53.261965][ T6331]  vfs_readv+0x5be/0x8b0
[   53.261981][ T6331]  ? __pfx_vfs_readv+0x10/0x10
[   53.261995][ T6331]  ? find_held_lock+0x2b/0x80
[   53.262015][ T6331]  ? __fget_files+0x20e/0x3c0
[   53.262027][ T6331]  ? do_preadv+0x1a6/0x270
[   53.262040][ T6331]  do_preadv+0x1a6/0x270
[   53.262053][ T6331]  ? __pfx_do_preadv+0x10/0x10
[   53.262070][ T6331]  do_syscall_64+0xcd/0x4c0
[   53.262081][ T6331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.262092][ T6331] RIP: 0033:0x7f3cd838e9a9
[   53.262101][ T6331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.262110][ T6331] RSP: 002b:00007f3cd91f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   53.262120][ T6331] RAX: ffffffffffffffda RBX: 00007f3cd85b5fa0 RCX: 00007f3cd838e9a9
[   53.262126][ T6331] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000003
[   53.262132][ T6331] RBP: 00007f3cd91f6090 R08: 00000000fffffff9 R09: 0000000000000000
[   53.262137][ T6331] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000001
[   53.262143][ T6331] R13: 0000000000000000 R14: 00007f3cd85b5fa0 R15: 00007ffcd3d6e928
[   53.262155][ T6331]  </TASK>
[   53.434734][ T6343] block nbd2: NBD_DISCONNECT
[   53.436600][ T6343] block nbd2: Disconnected due to user request.
[   53.439042][ T6343] block nbd2: shutting down sockets
[   53.446436][ T6345] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.86'.
[   53.554778][ T5951] Bluetooth: hci2: command tx timeout
[   53.555312][ T5962] Bluetooth: hci0: command tx timeout
[   53.628040][ T6358] macvlan2: entered promiscuous mode
[   53.630306][ T6358] macvlan2: entered allmulticast mode
[   53.731507][ T6369] FAULT_INJECTION: forcing a failure.
[   53.731507][ T6369] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.737757][ T6369] CPU: 2 UID: 0 PID: 6369 Comm: syz.2.96 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   53.737772][ T6369] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.737778][ T6369] Call Trace:
[   53.737781][ T6369]  <TASK>
[   53.737786][ T6369]  dump_stack_lvl+0x16c/0x1f0
[   53.737806][ T6369]  should_fail_ex+0x512/0x640
[   53.737824][ T6369]  _copy_to_user+0x32/0xd0
[   53.737836][ T6369]  simple_read_from_buffer+0xcb/0x170
[   53.737852][ T6369]  proc_fail_nth_read+0x197/0x270
[   53.737867][ T6369]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   53.737883][ T6369]  ? rw_verify_area+0xcf/0x680
[   53.737896][ T6369]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   53.737910][ T6369]  vfs_read+0x1e1/0xc60
[   53.737927][ T6369]  ? __pfx___mutex_lock+0x10/0x10
[   53.737937][ T6369]  ? __pfx_vfs_read+0x10/0x10
[   53.737954][ T6369]  ? __fget_files+0x20e/0x3c0
[   53.737967][ T6369]  ksys_read+0x12a/0x250
[   53.737981][ T6369]  ? __pfx_ksys_read+0x10/0x10
[   53.737999][ T6369]  do_syscall_64+0xcd/0x4c0
[   53.738010][ T6369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.738021][ T6369] RIP: 0033:0x7f6963f8d3bc
[   53.738030][ T6369] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   53.738039][ T6369] RSP: 002b:00007f6964d42030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   53.738049][ T6369] RAX: ffffffffffffffda RBX: 00007f69641b5fa0 RCX: 00007f6963f8d3bc
[   53.738055][ T6369] RDX: 000000000000000f RSI: 00007f6964d420a0 RDI: 0000000000000004
[   53.738061][ T6369] RBP: 00007f6964d42090 R08: 0000000000000000 R09: 0000000000000000
[   53.738067][ T6369] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000001
[   53.738072][ T6369] R13: 0000000000000000 R14: 00007f69641b5fa0 R15: 00007fff903f6b08
[   53.738085][ T6369]  </TASK>
[   53.843979][ T6376] binder: 6372:6376 ioctl c0306201 200000000540 returned -22
[   53.985306][ T6390] block nbd0: NBD_DISCONNECT
[   53.987718][ T6390] block nbd0: Disconnected due to user request.
[   53.990231][ T6390] block nbd0: shutting down sockets
[   54.030547][ T6376] binder: 6372:6376 ioctl c0306201 200000000640 returned -22
[   54.674466][ T5962] Bluetooth: hci1: command tx timeout
[   54.749432][ T6428] process 'syz.2.103' launched './file0' with NULL argv: empty string added
[   54.857560][ T6437] netlink: 24 bytes leftover after parsing attributes in process `syz.2.104'.
[   54.860423][ T6437] netlink: 24 bytes leftover after parsing attributes in process `syz.2.104'.
[   55.234542][ T5955] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[   55.237348][ T5955] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[   56.754508][ T5962] Bluetooth: hci1: command tx timeout
[   57.315024][ T5962] Bluetooth: hci2: command 0x0c1a tx timeout
[   57.317445][ T5955] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[   57.319894][ T5955] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[   58.834689][ T5962] Bluetooth: hci1: command tx timeout
[   59.394539][ T5955] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[   59.396498][ T5955] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[   59.465263][ T6478] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   59.481436][   T40] kauditd_printk_skb: 80 callbacks suppressed
[   59.481450][   T40] audit: type=1804 audit(1753732348.611:285): pid=6482 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.108" name="/newroot/18/file0" dev="tmpfs" ino=119 res=1 errno=0
[   59.493158][   T40] audit: type=1800 audit(1753732348.611:286): pid=6482 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.108" name="file0" dev="tmpfs" ino=119 res=0 errno=0
[   59.503641][   T13] hsr_slave_0: left promiscuous mode
[   59.510101][   T13] hsr_slave_1: left promiscuous mode
[   59.512148][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.514982][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[   59.533646][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.544374][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[   59.553257][   T40] audit: type=1804 audit(1753732348.681:287): pid=6482 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.0.108" name="/newroot/18/file0" dev="tmpfs" ino=119 res=1 errno=0
[   59.590395][   T13] veth1_macvtap: left promiscuous mode
[   59.592859][   T13] veth0_macvtap: left promiscuous mode
[   59.595392][   T13] veth1_vlan: left promiscuous mode
[   59.597755][   T13] veth0_vlan: left promiscuous mode
[   59.615300][ T6494] block nbd2: NBD_DISCONNECT
[   59.616850][ T6494] block nbd2: Disconnected due to user request.
[   59.618918][ T6494] block nbd2: shutting down sockets
[   59.627321][ T6479] netlink: 8 bytes leftover after parsing attributes in process `syz.4.106'.
[   59.660722][   T40] audit: type=1400 audit(1753732348.791:288): avc:  denied  { create } for  pid=6495 comm="syz.2.111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[   59.679486][   T40] audit: type=1400 audit(1753732348.811:289): avc:  denied  { write } for  pid=6495 comm="syz.2.111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[   59.688750][   T40] audit: type=1400 audit(1753732348.811:290): avc:  denied  { read } for  pid=6495 comm="syz.2.111" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   59.793558][   T40] audit: type=1400 audit(1753732348.921:291): avc:  denied  { ioctl } for  pid=6500 comm="syz.0.113" path="socket:[10568]" dev="sockfs" ino=10568 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   59.803478][   T40] audit: type=1400 audit(1753732348.931:292): avc:  denied  { lock } for  pid=6504 comm="syz.2.114" path="socket:[10571]" dev="sockfs" ino=10571 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   59.854993][ T6506] input: syz1 as /devices/virtual/input/input6
[   59.959473][ T5951] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   59.969913][ T5951] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   59.973626][ T5951] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   59.983745][ T5951] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   59.992195][ T5951] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   60.002718][ T5962] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   60.006649][ T5962] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   60.009966][ T5962] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   60.013841][ T5962] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   60.019698][ T5962] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   60.237471][   T13] team0 (unregistering): Port device team_slave_1 removed
[   60.283091][   T13] team0 (unregistering): Port device team_slave_0 removed
[   60.673421][ T6505] netlink: 8 bytes leftover after parsing attributes in process `syz.2.114'.
[   60.704578][   T40] audit: type=1400 audit(1753732349.831:293): avc:  denied  { write } for  pid=6513 comm="syz.2.117" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[   60.747763][   T40] audit: type=1400 audit(1753732349.881:294): avc:  denied  { setopt } for  pid=6516 comm="syz.4.116" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   60.791336][ T6524] netlink: 'syz.2.118': attribute type 21 has an invalid length.
[   60.810842][ T6524] netlink: 96 bytes leftover after parsing attributes in process `syz.2.118'.
[   60.813822][ T6524] netlink: 24 bytes leftover after parsing attributes in process `syz.2.118'.
[   60.894041][ T6536] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=127 sclass=netlink_route_socket pid=6536 comm=syz.2.121
[   60.895187][ T6508] chnl_net:caif_netlink_parms(): no params data found
[   60.957216][ T6542] netlink: 56 bytes leftover after parsing attributes in process `syz.4.123'.
[   61.078288][ T6554] =======================================================
[   61.078288][ T6554] WARNING: The mand mount option has been deprecated and
[   61.078288][ T6554]          and is ignored by this kernel. Remove the mand
[   61.078288][ T6554]          option from the mount to silence this warning.
[   61.078288][ T6554] =======================================================
[   61.092692][ T6554] devtmpfs: Unknown parameter 'usrquota_Šnode_har'
[   61.216344][ T6566] block nbd2: NBD_DISCONNECT
[   61.217181][ T6508] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.220768][ T6508] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.223787][ T6508] bridge_slave_0: entered allmulticast mode
[   61.224197][ T6566] block nbd2: Disconnected due to user request.
[   61.233790][ T6508] bridge_slave_0: entered promiscuous mode
[   61.234250][ T6566] block nbd2: shutting down sockets
[   61.241300][ T6568] netlink: 'syz.4.131': attribute type 10 has an invalid length.
[   61.243559][ T6508] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.247182][ T6508] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.249551][ T6508] bridge_slave_1: entered allmulticast mode
[   61.254653][ T6508] bridge_slave_1: entered promiscuous mode
[   61.256928][ T6568] team0: Device lo is loopback device. Loopback devices can't be added as a team port
[   61.260991][ T6568] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   61.315919][ T6570] can: request_module (can-proto-0) failed.
[   61.333950][ T6508] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   61.339084][ T6508] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   61.431637][ T6582] netlink: 12 bytes leftover after parsing attributes in process `syz.4.135'.
[   61.433316][ T6508] team0: Port device team_slave_0 added
[   61.436104][ T6582] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[   61.446451][ T6508] team0: Port device team_slave_1 added
[   61.490364][ T6589] openvswitch: netlink: Flow key attribute not present in set flow.
[   61.513976][ T6508] batman_adv: batadv0: Adding interface: batadv_slave_0
[   61.516622][ T6508] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.525529][ T6508] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   61.529401][ T6590] warning: `syz.0.137' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   61.536576][ T6508] batman_adv: batadv0: Adding interface: batadv_slave_1
[   61.539229][ T6508] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.550575][ T6508] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   61.625836][ T6508] hsr_slave_0: entered promiscuous mode
[   61.628127][ T6508] hsr_slave_1: entered promiscuous mode
[   61.630182][ T6508] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   61.632592][ T6508] Cannot create hsr debugfs directory
[   61.651249][   T13] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.652537][ T6605] netlink: 8 bytes leftover after parsing attributes in process `syz.4.139'.
[   61.688014][ T6605] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[   61.694636][ T6606] block nbd0: NBD_DISCONNECT
[   61.696214][ T6606] block nbd0: Disconnected due to user request.
[   61.696484][ T6605] netlink: 120 bytes leftover after parsing attributes in process `syz.4.139'.
[   61.698231][ T6606] block nbd0: shutting down sockets
[   61.727082][ T6608] netlink: 20 bytes leftover after parsing attributes in process `syz.4.141'.
[   61.738183][ T6612] syz.0.142: attempt to access beyond end of device
[   61.738183][ T6612] nbd0: rw=0, sector=64, nr_sectors = 8 limit=0
[   61.745822][ T6612] syz.0.142: attempt to access beyond end of device
[   61.745822][ T6612] nbd0: rw=0, sector=120, nr_sectors = 8 limit=0
[   61.750694][ T6612] Mount JFS Failure: -5
[   61.754408][ T6612] jfs_mount failed w/return code = -5
[   61.780610][   T13] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.827716][ T6608] netlink: 28 bytes leftover after parsing attributes in process `syz.4.141'.
[   61.831849][ T6608] netlink: 48 bytes leftover after parsing attributes in process `syz.4.141'.
[   61.861345][   T13] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.909652][ T6620] (unnamed net_device) (uninitialized): ARP target 9.0.0.0 is already present
[   61.912547][ T6620] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (9)
[   61.929833][   T13] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.948445][ T6508] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   61.953718][ T6508] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   61.959231][ T6508] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   61.964141][ T6508] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   62.036097][ T6508] 8021q: adding VLAN 0 to HW filter on device bond0
[   62.044457][ T5962] Bluetooth: hci3: command tx timeout
[   62.089936][ T6508] 8021q: adding VLAN 0 to HW filter on device team0
[   62.100668][   T13] bridge_slave_1: left allmulticast mode
[   62.102489][   T13] bridge_slave_1: left promiscuous mode
[   62.104981][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.109279][   T13] bridge_slave_0: left allmulticast mode
[   62.111032][   T13] bridge_slave_0: left promiscuous mode
[   62.112885][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.296618][ T6638] netlink: 'syz.4.148': attribute type 6 has an invalid length.
[   62.299462][ T6638] netlink: 'syz.4.148': attribute type 5 has an invalid length.
[   62.301845][ T6638] netlink: 'syz.4.148': attribute type 4 has an invalid length.
[   62.304967][ T6638] netlink: 'syz.4.148': attribute type 10 has an invalid length.
[   62.384180][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   62.390812][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   62.396028][   T13] bond0 (unregistering): Released all slaves
[   62.409469][   T13] bond1 (unregistering): Released all slaves
[   62.442577][ T6638] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[   62.445717][ T6638] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[   62.450205][ T6638] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check.
[   62.469304][ T1170] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.471670][ T1170] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.477625][ T1170] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.479880][ T1170] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.532853][ T6644] syzkaller0: entered promiscuous mode
[   62.535453][ T6644] syzkaller0: entered allmulticast mode
[   63.422903][ T6508] 8021q: adding VLAN 0 to HW filter on device batadv0
[   63.458000][   T13] hsr_slave_0: left promiscuous mode
[   63.461455][   T13] hsr_slave_1: left promiscuous mode
[   63.463478][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.466165][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[   63.468927][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.471184][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[   63.487663][   T13] veth1_macvtap: left promiscuous mode
[   63.489523][   T13] veth0_macvtap: left promiscuous mode
[   63.491307][   T13] veth1_vlan: left promiscuous mode
[   63.493694][   T13] veth0_vlan: left promiscuous mode
[   63.961403][   T13] team0 (unregistering): Port device team_slave_1 removed
[   64.008429][   T13] team0 (unregistering): Port device team_slave_0 removed
[   64.114399][ T5962] Bluetooth: hci3: command tx timeout
[   64.538614][ T6508] veth0_vlan: entered promiscuous mode
[   64.620374][   T40] kauditd_printk_skb: 46 callbacks suppressed
[   64.620385][   T40] audit: type=1400 audit(1753732353.751:341): avc:  denied  { setopt } for  pid=6725 comm="syz.0.165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   64.646792][ T6730] PKCS7: Unknown OID: [4] 5.25.43183(bad)
[   64.650345][ T6730] PKCS7: Only support pkcs7_signedData type
[   64.660287][ T6720] team0: Port device team_slave_0 removed
[   64.664995][ T6508] veth1_vlan: entered promiscuous mode
[   64.700975][ T6508] veth0_macvtap: entered promiscuous mode
[   64.710627][ T6508] veth1_macvtap: entered promiscuous mode
[   64.725390][ T6508] batman_adv: batadv0: Interface activated: batadv_slave_0
[   64.732041][ T6508] batman_adv: batadv0: Interface activated: batadv_slave_1
[   64.744155][ T6508] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.747410][ T6508] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.750429][ T6508] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.753229][ T6508] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   64.795349][   T77] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.800411][   T77] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.816156][ T1170] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.819180][ T1170] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.873930][ T6748] program syz.5.112 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   65.018306][   T40] audit: type=1400 audit(1753732354.151:342): avc:  denied  { map } for  pid=6759 comm="syz.5.171" path="socket:[13531]" dev="sockfs" ino=13531 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   65.027981][   T40] audit: type=1400 audit(1753732354.151:343): avc:  denied  { read } for  pid=6759 comm="syz.5.171" path="socket:[13531]" dev="sockfs" ino=13531 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   65.036914][   T40] audit: type=1400 audit(1753732354.151:344): avc:  denied  { write } for  pid=6759 comm="syz.5.171" path="socket:[13531]" dev="sockfs" ino=13531 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   65.114038][   T40] audit: type=1400 audit(1753732354.241:345): avc:  denied  { name_bind } for  pid=6765 comm="syz.5.172" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[   65.121162][   T40] audit: type=1400 audit(1753732354.241:346): avc:  denied  { node_bind } for  pid=6765 comm="syz.5.172" saddr=172.20.20.170 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[   65.171343][   T40] audit: type=1400 audit(1753732354.301:347): avc:  denied  { mount } for  pid=6769 comm="syz.5.173" name="/" dev="nfsd" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=filesystem permissive=1
[   65.189581][   T40] audit: type=1400 audit(1753732354.321:348): avc:  denied  { unmount } for  pid=6508 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=filesystem permissive=1
[   65.349334][   T40] audit: type=1400 audit(1753732354.481:349): avc:  denied  { create } for  pid=6783 comm="syz.5.175" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   65.387781][   T40] audit: type=1400 audit(1753732354.521:350): avc:  denied  { execmod } for  pid=6792 comm="syz.4.177" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=12800 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   65.415727][ T6796] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   65.984930][ T6844] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not 'ethtool'
[   66.078163][ T6854] __nla_validate_parse: 14 callbacks suppressed
[   66.078179][ T6854] netlink: 56 bytes leftover after parsing attributes in process `syz.4.191'.
[   66.194487][ T5962] Bluetooth: hci3: command tx timeout
[   66.312400][ T6870] netlink: 80 bytes leftover after parsing attributes in process `syz.4.193'.
[   66.342398][ T6876] netlink: 72 bytes leftover after parsing attributes in process `syz.4.195'.
[   66.730969][ T6914] netlink: 8 bytes leftover after parsing attributes in process `syz.4.200'.
[   66.818704][ T6914] kvm: kvm [6913]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0xc1) = 0xe0000011
[   66.819018][ T6914] kvm: kvm [6913]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0xc2) = 0xe0000011
[   66.849432][ T6914] kvm: kvm [6913]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x11e) = 0xe0000011
[   66.866643][ T6914] kvm: kvm [6913]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x186) = 0xe0000011
[   66.866935][ T6914] kvm: kvm [6913]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x187) = 0xe0000011
[   66.888414][ T6914] kvm_intel: kvm [6913]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x1d9) = 0xe0000011
[   66.993897][ T6941] netlink: 12 bytes leftover after parsing attributes in process `syz.4.204'.
[   67.031257][ T6941] 8021q: adding VLAN 0 to HW filter on device bond1
[   67.040275][ T6941] 9pnet_virtio: no channels available for device syz
[   67.041856][ T6941] netlink: 8 bytes leftover after parsing attributes in process `syz.4.204'.
[   67.047666][ T6941] netlink: 20 bytes leftover after parsing attributes in process `syz.4.204'.
[   67.182043][ T6959] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.282435][ T6959] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.404471][ T6959] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.467728][ T6959] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.537405][ T6959] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.545600][ T6959] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.557451][ T6959] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.566780][ T6959] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.867843][ T7016] netlink: 212376 bytes leftover after parsing attributes in process `syz.5.220'.
[   68.094569][ T7031] openvswitch: netlink: Missing key (keys=40, expected=2000)
[   68.274437][ T5962] Bluetooth: hci3: command tx timeout
[   68.597236][ T7088] x_tables: duplicate underflow at hook 1
[   68.657886][ T7092] 9pnet_fd: Insufficient options for proto=fd
[   68.714887][ T5955] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   68.726597][ T7095] netlink: 4 bytes leftover after parsing attributes in process `syz.4.241'.
[   68.864368][ T5955] usb 7-1: Using ep0 maxpacket: 32
[   68.868850][ T5955] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[   68.871628][ T5955] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   68.875799][ T5955] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[   68.884419][ T5955] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   68.887653][ T5955] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   68.890688][ T5955] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   68.901876][ T5955] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   68.904831][ T5955] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   68.921222][ T5955] usb 7-1: config 0 descriptor??
[   69.142049][ T5955] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   69.162936][ T5955] usb 7-1: USB disconnect, device number 2
[   69.178091][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.178772][ T5955] usblp0: removed
[   69.181414][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.190666][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.195528][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.198756][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.201676][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.204048][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.206791][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.209020][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.211312][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.213631][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.216371][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.218744][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.221115][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.223440][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.226082][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.228385][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.230690][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.233091][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.235561][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.237875][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.240183][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.242459][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.245001][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.247315][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.249615][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.251899][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.254227][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.256577][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.258778][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.261040][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.263371][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.265738][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.268099][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.270407][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.272744][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.275078][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.277407][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.279760][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.282064][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.284445][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.286730][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.289028][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.291407][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.293724][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.296100][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.298415][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.300669][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.303100][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.305457][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.307771][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.310059][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.312356][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.314789][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.317097][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.319436][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.321749][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.324043][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.326438][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.328732][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.331018][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.333364][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.335722][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.338101][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.340392][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.342740][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.345097][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.347399][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.349767][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.352075][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.354374][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.356612][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.358862][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.361017][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.363350][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.365717][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.368013][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.370260][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.372652][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.375008][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.377252][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.379562][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.381845][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.384226][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.386604][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.388889][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.391182][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.393508][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.395950][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.398266][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.400535][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.402850][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.405268][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.407629][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.409920][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.412209][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.414555][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.416680][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.419068][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.421391][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.423727][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.426138][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.428435][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.430809][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.433145][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.435487][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.437744][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.440023][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.442377][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.444745][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.447047][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.449342][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.451621][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.453922][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.456284][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.458579][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.460893][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.463204][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.465594][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.467923][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.470212][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.472520][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.474930][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.477284][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.479568][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.481854][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.484140][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.486535][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.488876][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.491177][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.493484][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.495842][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.498140][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.500503][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.502810][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.505152][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.507444][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.509730][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.512114][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.514560][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.517675][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.520012][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.522395][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.524756][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.527085][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.529401][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.531675][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.534041][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.536546][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.538876][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.541177][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.543531][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.546146][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.547684][ T7113] netlink: 'syz.4.245': attribute type 39 has an invalid length.
[   69.548841][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.555938][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.558335][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.560641][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.563000][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.567132][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.569656][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.571968][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.574198][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.576420][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.578720][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.581106][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.583431][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.585831][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.588169][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.590476][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.592914][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.595124][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.597418][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.599696][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.601980][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.604529][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.607431][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.610322][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.612630][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.615450][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.617783][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.620083][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.622396][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.624903][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.627379][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.629726][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.632026][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.634636][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.636945][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.639332][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.641708][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.644045][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.646444][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.648730][   T29] hid-generic 0002:0002:0006.0002: unknown main item tag 0x0
[   69.655198][   T29] hid-generic 0002:0002:0006.0002: hidraw1: <UNKNOWN> HID v0.0d Device [syz1] on syz0
[   69.675263][ T5955] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   69.701883][ T7115] fido_id[7115]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   69.744922][   T40] kauditd_printk_skb: 20 callbacks suppressed
[   69.744931][   T40] audit: type=1400 audit(1753732358.881:371): avc:  denied  { remount } for  pid=7116 comm="syz.0.246" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   69.787584][   T40] audit: type=1400 audit(1753732358.921:372): avc:  denied  { create } for  pid=7120 comm="syz.4.247" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   69.824906][ T5955] usb 7-1: Using ep0 maxpacket: 32
[   69.835837][ T5955] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[   69.838497][ T5955] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   69.841545][ T5955] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[   69.844950][ T5955] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   69.848972][ T5955] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   69.852171][ T5955] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   69.856893][ T5955] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   69.864560][ T5955] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   69.869735][ T5955] usb 7-1: config 0 descriptor??
[   69.873447][ T7130] syz.0.248 (7130): attempted to duplicate a private mapping with mremap.  This is not supported.
[   69.907778][   T40] audit: type=1400 audit(1753732359.041:373): avc:  denied  { append } for  pid=7131 comm="syz.4.250" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   70.064148][   T40] audit: type=1400 audit(1753732359.191:374): avc:  denied  { write } for  pid=7134 comm="syz.4.251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   70.081085][ T5955] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   70.114117][   T40] audit: type=1400 audit(1753732359.241:375): avc:  denied  { setopt } for  pid=7140 comm="syz.4.254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   70.221287][ T7155] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   70.225525][ T7155] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   70.280878][   T40] audit: type=1400 audit(1753732359.411:376): avc:  denied  { read write } for  pid=7075 comm="syz.2.235" name="lp0" dev="devtmpfs" ino=2876 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[   70.296876][   T40] audit: type=1400 audit(1753732359.411:377): avc:  denied  { open } for  pid=7075 comm="syz.2.235" path="/dev/usb/lp0" dev="devtmpfs" ino=2876 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[   70.307591][   T40] audit: type=1326 audit(1753732359.431:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7075 comm="syz.2.235" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6963f8e9a9 code=0x0
[   70.333167][ T7160] 9pnet_fd: Insufficient options for proto=fd
[   70.367718][   T40] audit: type=1400 audit(1753732359.501:379): avc:  denied  { listen } for  pid=7161 comm="syz.4.260" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   70.374074][   T40] audit: type=1400 audit(1753732359.501:380): avc:  denied  { write } for  pid=7161 comm="syz.4.260" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   70.492141][ T7168] netlink: 4 bytes leftover after parsing attributes in process `syz.4.262'.
[   71.069901][ T7179] binder: 7178:7179 ioctl c0306201 200000000640 returned -22
[   71.077614][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[   71.079857][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[   71.111321][ T7185] dlm: Unknown command passed to DLM device : 255
[   71.111321][ T7185] 
[   71.152916][ T7187] netlink: 40 bytes leftover after parsing attributes in process `syz.0.268'.
[   71.420925][ T1151] usb 7-1: USB disconnect, device number 3
[   71.431033][ T1151] usblp0: removed
[   71.444714][ T7197] mmap: syz.2.272 (7197) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   71.562395][ T7205] netlink: 'syz.4.276': attribute type 32 has an invalid length.
[   71.569017][ T7205] syz.4.276: attempt to access beyond end of device
[   71.569017][ T7205] loop4: rw=0, sector=0, nr_sectors = 1 limit=0
[   71.574027][ T7205] efs: cannot read volume header
[   71.619908][ T7210] netlink: 'syz.5.277': attribute type 7 has an invalid length.
[   71.636474][ T7210] : entered promiscuous mode
[   71.669674][   T61] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.746618][ T7206] binder: 7202:7206 ioctl c0306201 200000000640 returned -22
[   71.765300][   T61] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.781794][ T7218] netlink: 4 bytes leftover after parsing attributes in process `syz.5.282'.
[   71.842973][   T61] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.914643][ T5951] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   71.918895][ T5951] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   71.921960][ T5951] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   71.925695][ T5951] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   71.929357][ T5951] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   71.952456][   T61] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.208410][   T61] bridge_slave_1: left allmulticast mode
[   72.210239][   T61] bridge_slave_1: left promiscuous mode
[   72.212064][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.224913][   T61] bridge_slave_0: left allmulticast mode
[   72.226756][   T61] bridge_slave_0: left promiscuous mode
[   72.229631][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.347049][ T7257] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   72.353320][ T7257] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   72.384047][ T7261] netlink: 'syz.4.294': attribute type 10 has an invalid length.
[   72.503976][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   72.510015][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   72.515026][   T61] bond0 (unregistering): Released all slaves
[   72.545322][ T7261] team0: Device hsr_slave_0 failed to register rx_handler
[   72.564547][ T7223] chnl_net:caif_netlink_parms(): no params data found
[   72.614925][ T7277] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[   72.619552][ T7276] netlink: 4 bytes leftover after parsing attributes in process `syz.4.298'.
[   72.631193][ T7276] netlink: 4 bytes leftover after parsing attributes in process `syz.4.298'.
[   72.701765][ T7286] netlink: 'syz.5.299': attribute type 1 has an invalid length.
[   72.705288][ T7286] netlink: 224 bytes leftover after parsing attributes in process `syz.5.299'.
[   72.806719][ T7223] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.809038][ T7223] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.811324][ T7223] bridge_slave_0: entered allmulticast mode
[   72.816746][ T7223] bridge_slave_0: entered promiscuous mode
[   72.822298][ T7223] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.826699][ T7223] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.829954][ T7223] bridge_slave_1: entered allmulticast mode
[   72.834650][ T7223] bridge_slave_1: entered promiscuous mode
[   72.902947][ T7304] capability: warning: `syz.2.304' uses deprecated v2 capabilities in a way that may be insecure
[   72.915441][ T7223] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.924702][ T7223] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.976709][ T7310] binder: 7298:7310 ioctl c0306201 200000000640 returned -22
[   73.027991][   T61] hsr_slave_0: left promiscuous mode
[   73.030104][   T61] hsr_slave_1: left promiscuous mode
[   73.032085][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   73.034634][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[   73.037357][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   73.039707][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[   73.046589][ T7314] netlink: 228 bytes leftover after parsing attributes in process `syz.4.305'.
[   73.049691][ T7314] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   73.052333][ T7314] IPv6: NLM_F_CREATE should be set when creating new route
[   73.071360][   T61] veth1_macvtap: left promiscuous mode
[   73.073786][   T61] veth0_macvtap: left promiscuous mode
[   73.077171][   T61] veth1_vlan: left promiscuous mode
[   73.079527][   T61] veth0_vlan: left promiscuous mode
[   73.089087][ T7320] netlink: 12 bytes leftover after parsing attributes in process `syz.2.307'.
[   73.653428][   T61] team0 (unregistering): Port device team_slave_1 removed
[   73.740742][   T61] team0 (unregistering): Port device team_slave_0 removed
[   73.954467][ T5951] Bluetooth: hci2: command tx timeout
[   74.206578][ T7223] team0: Port device team_slave_0 added
[   74.214585][ T7223] team0: Port device team_slave_1 added
[   74.304570][ T7223] batman_adv: batadv0: Adding interface: batadv_slave_0
[   74.306766][ T7223] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.315330][ T7333] sp0: Synchronizing with TNC
[   74.323190][ T7223] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   74.328542][ T7223] batman_adv: batadv0: Adding interface: batadv_slave_1
[   74.330756][ T7223] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.342391][ T7223] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   74.370138][ T7341] netlink: 16 bytes leftover after parsing attributes in process `syz.5.311'.
[   74.375287][ T7344] netlink: 16 bytes leftover after parsing attributes in process `syz.5.311'.
[   74.466060][ T7223] hsr_slave_0: entered promiscuous mode
[   74.468855][ T7223] hsr_slave_1: entered promiscuous mode
[   74.657692][ T7374] No buffer was provided with the request
[   74.707543][ T7223] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   74.726051][ T7223] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   74.736014][ T7223] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   74.744162][ T7386] loop4: detected capacity change from 0 to 2560
[   74.750424][ T6288] Buffer I/O error on dev loop4, logical block 0, async page read
[   74.753250][ T6288] Buffer I/O error on dev loop4, logical block 0, async page read
[   74.759083][ T7388] tmpfs: Bad value for 'huge'
[   74.760680][   T40] kauditd_printk_skb: 51 callbacks suppressed
[   74.760688][   T40] audit: type=1400 audit(1753732363.891:432): avc:  denied  { create } for  pid=7389 comm="syz.2.323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   74.760709][ T6288] Buffer I/O error on dev loop4, logical block 0, async page read
[   74.773350][ T7223] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   74.802277][ T6288] Buffer I/O error on dev loop4, logical block 0, async page read
[   74.805345][ T6288] Buffer I/O error on dev loop4, logical block 0, async page read
[   74.843912][ T7402] netlink: 8 bytes leftover after parsing attributes in process `syz.2.325'.
[   74.848970][   T40] audit: type=1400 audit(1753732363.981:433): avc:  denied  { remount } for  pid=7387 comm="syz.5.322" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   74.857511][   T40] audit: type=1400 audit(1753732363.981:434): avc:  denied  { relabelfrom } for  pid=7403 comm="syz.4.324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   74.866077][   T40] audit: type=1400 audit(1753732363.981:435): avc:  denied  { relabelto } for  pid=7403 comm="syz.4.324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   74.892881][ T7223] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.900496][ T7223] 8021q: adding VLAN 0 to HW filter on device team0
[   74.920170][ T1170] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.923194][ T1170] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.929981][ T1170] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.933000][ T1170] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.032915][   T40] audit: type=1400 audit(1753732364.161:436): avc:  denied  { setopt } for  pid=7419 comm="syz.4.327" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=socket permissive=1
[   75.048611][ T7223] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.129258][   T40] audit: type=1400 audit(1753732364.261:437): avc:  denied  { accept } for  pid=7433 comm="syz.5.330" lport=42022 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   75.197642][ T7223] veth0_vlan: entered promiscuous mode
[   75.207254][ T7223] veth1_vlan: entered promiscuous mode
[   75.231320][ T7223] veth0_macvtap: entered promiscuous mode
[   75.231844][   T40] audit: type=1400 audit(1753732364.361:438): avc:  denied  { wake_alarm } for  pid=7444 comm="syz.5.331" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   75.236730][ T7223] veth1_macvtap: entered promiscuous mode
[   75.246235][   T40] audit: type=1400 audit(1753732364.381:439): avc:  denied  { setattr } for  pid=7444 comm="syz.5.331" name="/" dev="9p" ino=35913863 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   75.252537][ T7223] batman_adv: batadv0: Interface activated: batadv_slave_0
[   75.257492][ T7223] batman_adv: batadv0: Interface activated: batadv_slave_1
[   75.264208][ T7223] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.268242][ T7223] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.270980][ T7223] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.273680][ T7223] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.328900][   T77] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.331409][   T77] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.367198][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.369651][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.449917][   T40] audit: type=1400 audit(1753732364.571:440): avc:  denied  { bind } for  pid=7466 comm="syz.5.336" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   75.470688][   T40] audit: type=1400 audit(1753732364.581:441): avc:  denied  { getopt } for  pid=7466 comm="syz.5.336" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   75.504413][ T7470] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7470 comm=syz.5.337
[   75.678475][ T7494] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   75.843095][ T7511] netlink: 'syz.2.346': attribute type 4 has an invalid length.
[   75.852415][ T7511] syz_tun: entered allmulticast mode
[   75.860458][ T7511] dvmrp1: entered allmulticast mode
[   76.038327][ T5951] Bluetooth: hci2: command tx timeout
[   76.535418][ T7539] __nla_validate_parse: 2 callbacks suppressed
[   76.535429][ T7539] netlink: 8 bytes leftover after parsing attributes in process `syz.5.353'.
[   76.541476][ T7539] netlink: 4 bytes leftover after parsing attributes in process `syz.5.353'.
[   76.564448][   T29] usb 11-1: new high-speed USB device number 2 using dummy_hcd
[   76.623971][ T7504] syz_tun: left allmulticast mode
[   76.695643][ T7562] netlink: 44 bytes leftover after parsing attributes in process `syz.4.358'.
[   76.698624][ T7562] netlink: 43 bytes leftover after parsing attributes in process `syz.4.358'.
[   76.701427][ T7562] netlink: 'syz.4.358': attribute type 5 has an invalid length.
[   76.704076][ T7562] netlink: 43 bytes leftover after parsing attributes in process `syz.4.358'.
[   76.714635][   T29] usb 11-1: Using ep0 maxpacket: 8
[   76.725721][   T29] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   76.729666][   T29] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   76.732581][   T29] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   76.742100][   T29] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   76.748163][   T29] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   76.751868][   T29] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   76.833904][ T7573] netlink: 8 bytes leftover after parsing attributes in process `syz.4.361'.
[   76.838406][ T7573] netlink: 20 bytes leftover after parsing attributes in process `syz.4.361'.
[   76.846521][ T7573] geneve2: entered promiscuous mode
[   76.853234][ T7573] geneve2: entered allmulticast mode
[   76.861756][ T7570] netlink: 8 bytes leftover after parsing attributes in process `syz.2.360'.
[   76.964489][   T29] usb 11-1: GET_CAPABILITIES returned 0
[   76.966691][   T29] usbtmc 11-1:16.0: can't read capabilities
[   77.115655][ T7593] netlink: 'syz.4.366': attribute type 2 has an invalid length.
[   77.118676][ T7593] netlink: 132 bytes leftover after parsing attributes in process `syz.4.366'.
[   77.166874][    C1] usbtmc 11-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[   77.172604][   T29] usb 11-1: USB disconnect, device number 2
[   77.300575][ T7600] trusted_key: syz.4.368 sent an empty control message without MSG_MORE.
[   77.623319][ T7623] Cannot find add_set index 0 as target
[   77.638508][ T7625] netlink: 8 bytes leftover after parsing attributes in process `syz.5.377'.
[   77.661887][ T5359]  pmem0: [POWERTEC]
[   77.963341][ T7671] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.966328][ T7671] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.016727][ T7671] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.023108][ T7671] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.040891][ T7671] net veth1_virt_wifi virt_wifi0: left promiscuous mode
[   78.043129][ T7671] net veth1_virt_wifi virt_wifi0: left allmulticast mode
[   78.086493][ T7671] netdevsim netdevsim4 netdevsim0: left allmulticast mode
[   78.095358][ T7671] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   78.098178][ T7671] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   78.100972][ T7671] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   78.103766][ T7671] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   78.109150][ T7671] geneve2: left promiscuous mode
[   78.110793][ T7671] geneve2: left allmulticast mode
[   78.115220][ T5951] Bluetooth: hci2: command tx timeout
[   78.248818][ T7685] binder: 7681:7685 ioctl c0306201 200000000540 returned -22
[   78.252036][ T7685] binder: 7681:7685 ioctl c0306201 200000000640 returned -22
[   78.317680][   T46] tipc: Subscription rejected, illegal request
[   78.319350][ T7698] netlink: 'syz.4.394': attribute type 4 has an invalid length.
[   78.692925][ T7724] netlink: 'syz.6.396': attribute type 10 has an invalid length.
[   78.696758][ T7726] netlink: 'syz.6.396': attribute type 10 has an invalid length.
[   78.842918][ T7742] raw_sendmsg: syz.6.401 forgot to set AF_INET. Fix it!
[   79.092002][ T7753] kvm: pic: non byte read
[   79.094219][ T7753] kvm: pic: non byte read
[   79.101315][ T7753] kvm: pic: non byte read
[   79.103585][ T7753] kvm: pic: non byte read
[   79.105815][ T7753] kvm: pic: non byte read
[   79.107852][ T7753] kvm: pic: non byte read
[   79.110122][ T7753] kvm: pic: non byte read
[   79.112424][ T7753] kvm: pic: non byte read
[   79.115220][ T7753] kvm: pic: non byte read
[   79.116973][ T7753] kvm: pic: non byte read
[   79.616546][ T7799]  pmem0: [POWERTEC]
[   79.814439][   T34] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   79.944538][   T34] usb 9-1: device descriptor read/64, error -71
[   80.184472][   T34] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[   80.205072][ T5951] Bluetooth: hci2: command tx timeout
[   80.296213][ T7825] fuse: Bad value for 'group_id'
[   80.299422][ T7825] fuse: Bad value for 'group_id'
[   80.324491][   T34] usb 9-1: device descriptor read/64, error -71
[   80.413394][   T40] kauditd_printk_skb: 34 callbacks suppressed
[   80.413408][   T40] audit: type=1400 audit(1753732369.531:476): avc:  denied  { write } for  pid=7827 comm="syz.6.429" name="fb1" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   80.437710][   T34] usb usb9-port1: attempt power cycle
[   80.440196][   T40] audit: type=1400 audit(1753732369.571:477): avc:  denied  { read } for  pid=7834 comm="syz.2.430" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   80.450249][   T40] audit: type=1400 audit(1753732369.571:478): avc:  denied  { open } for  pid=7834 comm="syz.2.430" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   80.462061][   T40] audit: type=1400 audit(1753732369.581:479): avc:  denied  { bind } for  pid=7834 comm="syz.2.430" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   80.644406][   T10] usb 11-1: new high-speed USB device number 3 using dummy_hcd
[   80.756108][ T5951] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[   80.759044][ T5951] Bluetooth: hci3: Injecting HCI hardware error event
[   80.761739][ T5951] Bluetooth: hci3: hardware error 0x00
[   80.786514][   T34] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[   80.797033][   T10] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   80.801520][   T10] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   80.807508][   T10] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   80.812660][   T10] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   80.814986][   T34] usb 9-1: device descriptor read/8, error -71
[   80.817118][   T10] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.825416][   T10] usb 11-1: config 0 descriptor??
[   80.936906][ T7803] syz.5.419 (7803) used greatest stack depth: 20984 bytes left
[   81.054541][   T34] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[   81.074887][   T34] usb 9-1: device descriptor read/8, error -71
[   81.185155][   T34] usb usb9-port1: unable to enumerate USB device
[   81.233267][   T10] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   81.237802][   T10] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   81.240118][   T10] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   81.242442][   T10] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   81.254064][   T10] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[   81.327728][   T59] cfg80211: failed to load regulatory.db
[   81.355426][ T7864] 9pnet_virtio: no channels available for device syz
[   81.359845][ T7864] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1
[   81.468934][   T40] audit: type=1326 audit(1753732370.601:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7867 comm="syz.5.438" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f33ec18e9a9 code=0x0
[   81.539437][ T7828] device ioctl magic numbers don't match! Did you rebuild pvfs2-client-core/libpvfs2? [cmd 400c6615, magic 66 != 6b]
[   81.539448][   T40] audit: type=1400 audit(1753732370.671:481): avc:  denied  { ioctl } for  pid=7827 comm="syz.6.429" path="/26/file0/file0" dev="fuse" ino=0 ioctlcmd=0x6615 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   81.606461][ T7877] binder: 7869:7877 ioctl c0306201 200000000640 returned -22
[   81.874435][   T34] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[   82.014435][   T34] usb 10-1: device descriptor read/64, error -71
[   82.254506][   T34] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[   82.385476][   T34] usb 10-1: device descriptor read/64, error -71
[   82.506236][   T34] usb usb10-port1: attempt power cycle
[   82.645466][ T7897] tap0: tun_chr_ioctl cmd 1074025677
[   82.647312][ T7897] tap0: linktype set to 805
[   82.650274][   T40] audit: type=1400 audit(1753732371.781:482): avc:  denied  { append } for  pid=7896 comm="syz.4.444" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   82.660037][ T7899] Bluetooth: hci4: Frame reassembly failed (-84)
[   82.663685][   T77] Bluetooth: hci4: Frame reassembly failed (-84)
[   82.702052][ T7900] netlink: 'syz.4.444': attribute type 16 has an invalid length.
[   82.704719][ T7900] netlink: 'syz.4.444': attribute type 17 has an invalid length.
[   82.709952][ T7897] netlink: 'syz.4.444': attribute type 10 has an invalid length.
[   82.712568][ T7897] hsr_slave_0: left promiscuous mode
[   82.717248][ T7897] hsr_slave_1: left promiscuous mode
[   82.834432][ T5951] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[   82.854861][   T34] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[   82.874832][   T34] usb 10-1: device descriptor read/8, error -71
[   82.923280][   T40] audit: type=1400 audit(1753732372.051:483): avc:  denied  { write } for  pid=7901 comm="syz.4.446" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   83.007683][ T7906] __nla_validate_parse: 5 callbacks suppressed
[   83.007694][ T7906] netlink: 20 bytes leftover after parsing attributes in process `syz.4.447'.
[   83.069422][ T7909] netlink: 8 bytes leftover after parsing attributes in process `syz.4.447'.
[   83.072247][ T7909] netlink: 8 bytes leftover after parsing attributes in process `syz.4.447'.
[   83.114708][   T34] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[   83.135366][   T34] usb 10-1: device descriptor read/8, error -71
[   83.208333][ T7913] binder: 7910:7913 ioctl c0306201 200000000640 returned -22
[   83.246573][   T34] usb usb10-port1: unable to enumerate USB device
[   83.298760][   T29] usb 11-1: USB disconnect, device number 3
[   83.938717][   T40] audit: type=1400 audit(1753732373.071:484): avc:  denied  { read } for  pid=7919 comm="syz.4.452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   83.948073][ T7920] netdevsim netdevsim4: Direct firmware load for .
[   83.948073][ T7920]  failed with error -2
[   83.952603][ T7920] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[   83.952603][ T7920] 
[   83.954456][   T40] audit: type=1400 audit(1753732373.081:485): avc:  denied  { firmware_load } for  pid=7919 comm="syz.4.452" scontext=system_u:system_r:kernel_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   84.033677][ T7922] pimreg: entered allmulticast mode
[   84.093824][ T7924] fuse: Bad value for 'fd'
[   84.185779][ T7930] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=7930 comm=syz.6.456
[   84.190038][ T7930] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[   84.532875][ T7942] netlink: 4 bytes leftover after parsing attributes in process `syz.6.461'.
[   84.536751][ T7942] bridge_slave_1: left allmulticast mode
[   84.539027][ T7942] bridge_slave_1: left promiscuous mode
[   84.541484][ T7942] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.547613][ T7942] bridge_slave_0: left allmulticast mode
[   84.549940][ T7942] bridge_slave_0: left promiscuous mode
[   84.552270][ T7942] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.669934][ T7945] IPVS: set_ctl: invalid protocol: 58 172.20.20.51:20004
[   84.674453][ T5951] Bluetooth: hci4: command 0x1003 tx timeout
[   84.674473][ T5962] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   84.763015][ T7953] IPVS: sync thread started: state = MASTER, mcast_ifn = bridge_slave_0, syncid = 0, id = 0
[   84.929544][ T7969] binder: 7968:7969 unknown command 0
[   84.931324][ T7969] binder: 7968:7969 ioctl c0306201 200000000080 returned -22
[   84.936806][ T7969] syz.4.469: attempt to access beyond end of device
[   84.936806][ T7969] loop4: rw=0, sector=16, nr_sectors = 1 limit=0
[   84.941151][ T7969] qnx6: unable to read the first superblock
[   84.943209][ T7969] syz.4.469: attempt to access beyond end of device
[   84.943209][ T7969] loop4: rw=0, sector=0, nr_sectors = 1 limit=0
[   84.948741][ T7969] qnx6: unable to read the first superblock
[   84.949465][ T7960] smc: net device bond0 applied user defined pnetid SYZ2
[   84.950672][ T7969] qnx6: unable to read the first superblock
[   84.953752][ T7960] netlink: 14 bytes leftover after parsing attributes in process `syz.6.466'.
[   84.959253][ T7969] binder: 7968:7969 ioctl c0306201 200000000180 returned -11
[   85.042735][ T7977] random: crng reseeded on system resumption
[   85.043972][ T7960] smc: removing net device bond0 with user defined pnetid SYZ2
[   85.049038][ T7960] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   85.053693][ T7960] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   85.057964][ T7960] bond0 (unregistering): Released all slaves
[   85.083611][ T7977] fuse: Unknown parameter '€R‰ÆañõÑÛ©®²I×ÍÞÍa÷oaô‚dBŒcøÍ-;óÈì
[   85.083611][ T7977] +‡˦Êe0x000000000000000c'
[   85.208050][ T7993] netlink: 'syz.4.474': attribute type 7 has an invalid length.
[   85.210375][ T7993] netlink: 204 bytes leftover after parsing attributes in process `syz.4.474'.
[   85.284861][ T7999] netlink: 108 bytes leftover after parsing attributes in process `syz.2.477'.
[   85.289172][ T7999] netlink: 108 bytes leftover after parsing attributes in process `syz.2.477'.
[   85.291910][ T7999] netlink: 84 bytes leftover after parsing attributes in process `syz.2.477'.
[   85.307753][ T8000] netlink: 36 bytes leftover after parsing attributes in process `syz.4.476'.
[   85.663098][ T8028] overlayfs: only single ':' or double '::' sequences of unescaped colons in lowerdir mount option allowed.
[   85.703832][   T40] kauditd_printk_skb: 10 callbacks suppressed
[   85.703847][   T40] audit: type=1400 audit(1753732374.831:496): avc:  denied  { append } for  pid=8034 comm="syz.6.490" name="001" dev="devtmpfs" ino=767 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   85.713034][ T8035] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   85.718348][ T8035] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   85.766278][ T8041] program syz.2.493 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   85.809945][ T8042] sch_tbf: burst 0 is lower than device geneve0 mtu (1464) !
[   85.843645][   T40] audit: type=1400 audit(1753732374.971:497): avc:  denied  { setopt } for  pid=8052 comm="syz.2.497" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   85.863778][ T8053] delete_channel: no stack
[   85.865047][   T40] audit: type=1400 audit(1753732375.001:498): avc:  denied  { ioctl } for  pid=8050 comm="syz.5.496" path="/dev/input/mice" dev="devtmpfs" ino=939 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[   85.895523][ T8059] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[   85.919424][ T8061] sctp: [Deprecated]: syz.5.499 (pid 8061) Use of struct sctp_assoc_value in delayed_ack socket option.
[   85.919424][ T8061] Use struct sctp_sack_info instead
[   85.938638][   T40] audit: type=1400 audit(1753732375.071:499): avc:  denied  { create } for  pid=8060 comm="syz.5.499" name="#1d" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   85.956190][   T40] audit: type=1400 audit(1753732375.081:500): avc:  denied  { link } for  pid=8060 comm="syz.5.499" name="#1d" dev="tmpfs" ino=488 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   85.970781][   T40] audit: type=1400 audit(1753732375.081:501): avc:  denied  { rename } for  pid=8060 comm="syz.5.499" name="#1e" dev="tmpfs" ino=488 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   85.983088][   T40] audit: type=1400 audit(1753732375.111:502): avc:  denied  { call } for  pid=8063 comm="syz.6.500" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   85.991193][   T40] audit: type=1400 audit(1753732375.111:503): avc:  denied  { transfer } for  pid=8063 comm="syz.6.500" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   86.029783][ T8066] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=534 sclass=netlink_route_socket pid=8066 comm=syz.5.501
[   86.035556][   T40] audit: type=1400 audit(1753732375.161:504): avc:  denied  { kexec_image_load } for  pid=8058 comm="syz.2.498" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[   86.045297][ T8066] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[   86.049543][ T8066] bond0: (slave lo): Error: Device can not be enslaved while up
[   86.158852][ T8079] usb usb8: usbfs: process 8079 (syz.5.506) did not claim interface 0 before use
[   86.182106][ T8082] /dev/sg0: Can't lookup blockdev
[   86.290500][   T40] audit: type=1400 audit(1753732375.421:505): avc:  denied  { write } for  pid=8091 comm="syz.5.510" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   86.502342][ T8120] mkiss: ax0: crc mode is auto.
[   86.509845][ T8122] evm: overlay not supported
[   86.534369][ T5955] usb 11-1: new high-speed USB device number 4 using dummy_hcd
[   86.644960][   T60] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   86.684390][ T5955] usb 11-1: Using ep0 maxpacket: 32
[   86.688280][ T5955] usb 11-1: config 0 has no interfaces?
[   86.691882][ T5955] usb 11-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[   86.694950][ T5955] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   86.697456][ T5955] usb 11-1: Product: syz
[   86.698801][ T5955] usb 11-1: Manufacturer: syz
[   86.700354][ T5955] usb 11-1: SerialNumber: syz
[   86.703045][ T5955] usb 11-1: config 0 descriptor??
[   86.743750][ T8138] veth0_virt_wifi: entered promiscuous mode
[   86.746855][ T8138] batadv_slave_0: entered promiscuous mode
[   86.907061][ T5955] usb 11-1: USB disconnect, device number 4
[   86.963389][ T8150] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=155 sclass=netlink_route_socket pid=8150 comm=syz.5.529
[   87.695975][ T8167] netlink: 'syz.6.535': attribute type 2 has an invalid length.
[   87.765472][ T8174] overlayfs: maximum fs stacking depth exceeded
[   87.771337][ T8174] overlayfs: maximum fs stacking depth exceeded
[   87.776252][ T8174] overlayfs: maximum fs stacking depth exceeded
[   87.780270][ T8174] overlayfs: maximum fs stacking depth exceeded
[   87.784259][ T8174] overlayfs: maximum fs stacking depth exceeded
[   87.788515][ T8174] overlayfs: maximum fs stacking depth exceeded
[   87.793329][ T8174] overlayfs: maximum fs stacking depth exceeded
[   87.798418][ T8174] overlayfs: maximum fs stacking depth exceeded
[   87.802118][ T8174] overlayfs: maximum fs stacking depth exceeded
[   87.816597][ T8175] openvswitch: netlink: Missing valid actions attribute.
[   87.819272][ T8175] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   87.823032][ T8174] RDS: rds_bind could not find a transport for fc02::1, load rds_tcp or rds_rdma?
[   87.828979][ T8184] syzkaller1: entered promiscuous mode
[   87.831476][ T8184] syzkaller1: entered allmulticast mode
[   87.838642][ T8184] bridge_slave_0: left allmulticast mode
[   87.840678][ T8184] bridge_slave_0: left promiscuous mode
[   87.842620][ T8184] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.850083][ T8184] bridge_slave_1: left allmulticast mode
[   87.852551][ T8184] bridge_slave_1: left promiscuous mode
[   87.857333][ T8184] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.869816][ T8184] bond0: (slave bond_slave_0): Releasing backup interface
[   87.875647][ T8184] bond0: (slave bond_slave_1): Releasing backup interface
[   87.881407][ T8184] team0: Port device team_slave_1 removed
[   87.883517][ T8184] batman_adv: batadv0: Removing interface: batadv_slave_0
[   87.890074][ T8184] batman_adv: batadv0: Removing interface: batadv_slave_1
[   87.899732][ T8190] ipvlan1: entered promiscuous mode
[   87.903022][ T8190] 8021q: adding VLAN 0 to HW filter on device ipvlan1
[   87.943920][ T8198] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   87.982053][ T8203] capability: warning: `syz.6.548' uses 32-bit capabilities (legacy support in use)
[   88.009505][ T8207] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8207 comm=syz.2.549
[   88.014818][ T8207] netlink: 'syz.2.549': attribute type 1 has an invalid length.
[   88.032307][ T8209] __nla_validate_parse: 2 callbacks suppressed
[   88.032317][ T8209] netlink: 8 bytes leftover after parsing attributes in process `syz.6.550'.
[   88.039729][ T8209] netlink: 24 bytes leftover after parsing attributes in process `syz.6.550'.
[   88.052958][ T8207] bond1: (slave bridge2): making interface the new active one
[   88.058430][ T8207] bond1: (slave bridge2): Enslaving as an active interface with an up link
[   88.089440][ T8215] input: syz1 as /devices/virtual/input/input9
[   88.171975][ T8222] netlink: 'syz.2.555': attribute type 13 has an invalid length.
[   88.194729][ T5962] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[   88.201122][ T5962] Bluetooth: hci2: Injecting HCI hardware error event
[   88.205274][ T5951] Bluetooth: hci2: hardware error 0x00
[   88.592446][ T8301] IPVS: sync thread started: state = MASTER, mcast_ifn = geneve0, syncid = 3, id = 0
[   88.633025][ T8311] xt_l2tp: missing protocol rule (udp|l2tpip)
[   89.634224][ T8341] netlink: 4 bytes leftover after parsing attributes in process `syz.5.580'.
[   89.635224][ T8340] netlink: 4 bytes leftover after parsing attributes in process `syz.5.580'.
[   89.637842][ T8341] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   89.703397][ T8341] batman_adv: batadv0: Removing interface: batadv_slave_1
[   89.864890][ T8352] tipc: Started in network mode
[   89.873142][ T8352] tipc: Node identity e21c1909213e, cluster identity 4711
[   89.874722][   T60] hid-generic 0000:0004:0009.0004: unknown main item tag 0x0
[   89.875583][ T8352] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   89.877910][   T60] hid-generic 0000:0004:0009.0004: unknown main item tag 0x0
[   89.882262][   T60] hid-generic 0000:0004:0009.0004: unknown main item tag 0x0
[   89.884766][ T8352] syzkaller0: entered promiscuous mode
[   89.884778][ T8352] syzkaller0: entered allmulticast mode
[   89.896619][   T60] hid-generic 0000:0004:0009.0004: hidraw1: <UNKNOWN> HID v0.04 Device [syz0] on syz1
[   89.900597][ T8352] tipc: Resetting bearer <eth:syzkaller0>
[   89.915023][ T8361] ------------[ cut here ]------------
[   89.917487][ T8361] WARNING: CPU: 1 PID: 8361 at mm/page_alloc.c:4935 __alloc_frozen_pages_noprof+0x30b/0x23f0
[   89.917769][ T8351] tipc: Resetting bearer <eth:syzkaller0>
[   89.921395][ T8361] Modules linked in:
[   89.925801][ T8361] CPU: 1 UID: 0 PID: 8361 Comm: syz.4.587 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   89.928892][ T8361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.932237][ T8361] RIP: 0010:__alloc_frozen_pages_noprof+0x30b/0x23f0
[   89.934620][ T8361] Code: f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc 83 fe 0a 0f 86 0a fe ff ff 80 3d 9d 46 7d 0e 00 75 0b c6 05 94 46 7d 0e 01 90 <0f> 0b 90 45 31 f6 eb 81 4d 85 f6 74 22 44 89 fa 89 ee 4c 89 f7 e8
[   89.940599][ T8361] RSP: 0018:ffffc90006b9f4f8 EFLAGS: 00010246
[   89.942526][ T8361] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   89.945100][ T8361] RDX: 0000000000000000 RSI: 0000000000000016 RDI: 0000000000040dc0
[   89.947582][ T8361] RBP: 0000000400000000 R08: 0000000000000005 R09: 0000000000000000
[   89.950103][ T8361] R10: 0000000080000000 R11: 0000000000000001 R12: 0000000000000016
[   89.952607][ T8361] R13: 1ffff92000d73eb4 R14: 0000000400000000 R15: 0000000000000016
[   89.955323][ T8361] FS:  00007f3cd91f66c0(0000) GS:ffff8880d6820000(0000) knlGS:0000000000000000
[   89.958113][ T8361] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   89.960177][ T8361] CR2: 000020000000f000 CR3: 0000000049a64000 CR4: 0000000000352ef0
[   89.962489][ T8361] Call Trace:
[   89.963440][ T8361]  <TASK>
[   89.964535][ T8361]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   89.966620][ T8361]  ? rcu_is_watching+0x12/0xc0
[   89.968187][ T8361]  ? trace_kmem_cache_alloc+0x28/0xc0
[   89.969886][ T8361]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[   89.971652][ T8361]  ? hashtab_init+0x1b1/0x290
[   89.973172][ T8361]  __alloc_pages_noprof+0xb/0x1b0
[   89.974829][ T8361]  ___kmalloc_large_node+0x84/0x1e0
[   89.976479][ T8361]  ? hashtab_init+0x1b1/0x290
[   89.977975][ T8361]  __kmalloc_large_node_noprof+0x1c/0x70
[   89.979737][ T8361]  ? __pfx_ebitmap_read+0x10/0x10
[   89.981343][ T8361]  __kmalloc_noprof.cold+0xc/0x61
[   89.982952][ T8361]  hashtab_init+0x1b1/0x290
[   89.984521][ T8361]  ? __asan_memcpy+0x3c/0x60
[   89.986006][ T8361]  policydb_read+0x7b4/0x3220
[   89.987522][ T8361]  ? __pfx_policydb_read+0x10/0x10
[   89.989180][ T8361]  security_load_policy+0x15c/0x12c0
[   89.990850][ T8361]  ? irqentry_exit+0x3b/0x90
[   89.992352][ T8361]  ? __pfx_security_load_policy+0x10/0x10
[   89.994156][ T8361]  ? _copy_from_user+0x93/0xd0
[   89.995742][ T8361]  sel_write_load+0x332/0x1bd0
[   89.997279][ T8361]  ? __lock_acquire+0xb8a/0x1c90
[   89.998850][ T8361]  ? __pfx_sel_write_load+0x10/0x10
[   90.000569][ T8361]  ? __pfx_sel_write_load+0x10/0x10
[   90.002209][ T8361]  vfs_write+0x2a0/0x1150
[   90.003558][ T8361]  ? __pfx___mutex_lock+0x10/0x10
[   90.005266][ T8361]  ? __pfx_vfs_write+0x10/0x10
[   90.006823][ T8361]  ? __fget_files+0x20e/0x3c0
[   90.008331][ T8361]  ksys_write+0x12a/0x250
[   90.009720][ T8361]  ? __pfx_ksys_write+0x10/0x10
[   90.011278][ T8361]  do_syscall_64+0xcd/0x4c0
[   90.012749][ T8361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.014670][ T8361] RIP: 0033:0x7f3cd838e9a9
[   90.016120][ T8361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.022119][ T8361] RSP: 002b:00007f3cd91f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   90.024851][ T8361] RAX: ffffffffffffffda RBX: 00007f3cd85b5fa0 RCX: 00007f3cd838e9a9
[   90.027340][ T8361] RDX: 000000000000ffbd RSI: 0000200000000000 RDI: 0000000000000004
[   90.029814][ T8361] RBP: 00007f3cd8410d69 R08: 0000000000000000 R09: 0000000000000000
[   90.032282][ T8361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   90.034779][ T8361] R13: 0000000000000000 R14: 00007f3cd85b5fa0 R15: 00007ffcd3d6e928
[   90.037291][ T8361]  </TASK>
[   90.038301][ T8361] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   90.040589][ T8361] CPU: 1 UID: 0 PID: 8361 Comm: syz.4.587 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   90.043612][ T8361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.046932][ T8361] Call Trace:
[   90.047994][ T8361]  <TASK>
[   90.048898][ T8361]  dump_stack_lvl+0x3d/0x1f0
[   90.050334][ T8361]  panic+0x71c/0x800
[   90.051554][ T8361]  ? __pfx_panic+0x10/0x10
[   90.052952][ T8361]  ? show_trace_log_lvl+0x29b/0x3e0
[   90.054610][ T8361]  ? __alloc_frozen_pages_noprof+0x30b/0x23f0
[   90.056532][ T8361]  check_panic_on_warn+0xab/0xb0
[   90.058114][ T8361]  __warn+0xf6/0x3c0
[   90.059365][ T8361]  ? __alloc_frozen_pages_noprof+0x30b/0x23f0
[   90.061267][ T8361]  report_bug+0x3c3/0x580
[   90.062651][ T8361]  ? __alloc_frozen_pages_noprof+0x30b/0x23f0
[   90.064566][ T8361]  handle_bug+0x184/0x210
[   90.065964][ T8361]  exc_invalid_op+0x17/0x50
[   90.067412][ T8361]  asm_exc_invalid_op+0x1a/0x20
[   90.068971][ T8361] RIP: 0010:__alloc_frozen_pages_noprof+0x30b/0x23f0
[   90.071066][ T8361] Code: f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc 83 fe 0a 0f 86 0a fe ff ff 80 3d 9d 46 7d 0e 00 75 0b c6 05 94 46 7d 0e 01 90 <0f> 0b 90 45 31 f6 eb 81 4d 85 f6 74 22 44 89 fa 89 ee 4c 89 f7 e8
[   90.077078][ T8361] RSP: 0018:ffffc90006b9f4f8 EFLAGS: 00010246
[   90.078990][ T8361] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   90.081472][ T8361] RDX: 0000000000000000 RSI: 0000000000000016 RDI: 0000000000040dc0
[   90.083973][ T8361] RBP: 0000000400000000 R08: 0000000000000005 R09: 0000000000000000
[   90.086466][ T8361] R10: 0000000080000000 R11: 0000000000000001 R12: 0000000000000016
[   90.088952][ T8361] R13: 1ffff92000d73eb4 R14: 0000000400000000 R15: 0000000000000016
[   90.091444][ T8361]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   90.093468][ T8361]  ? rcu_is_watching+0x12/0xc0
[   90.095030][ T8361]  ? trace_kmem_cache_alloc+0x28/0xc0
[   90.096720][ T8361]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[   90.098511][ T8361]  ? hashtab_init+0x1b1/0x290
[   90.100008][ T8361]  __alloc_pages_noprof+0xb/0x1b0
[   90.101637][ T8361]  ___kmalloc_large_node+0x84/0x1e0
[   90.103276][ T8361]  ? hashtab_init+0x1b1/0x290
[   90.104734][ T8361]  __kmalloc_large_node_noprof+0x1c/0x70
[   90.106481][ T8361]  ? __pfx_ebitmap_read+0x10/0x10
[   90.108037][ T8361]  __kmalloc_noprof.cold+0xc/0x61
[   90.109601][ T8361]  hashtab_init+0x1b1/0x290
[   90.111050][ T8361]  ? __asan_memcpy+0x3c/0x60
[   90.112536][ T8361]  policydb_read+0x7b4/0x3220
[   90.114049][ T8361]  ? __pfx_policydb_read+0x10/0x10
[   90.115680][ T8361]  security_load_policy+0x15c/0x12c0
[   90.117361][ T8361]  ? irqentry_exit+0x3b/0x90
[   90.118823][ T8361]  ? __pfx_security_load_policy+0x10/0x10
[   90.120572][ T8361]  ? _copy_from_user+0x93/0xd0
[   90.122088][ T8361]  sel_write_load+0x332/0x1bd0
[   90.123609][ T8361]  ? __lock_acquire+0xb8a/0x1c90
[   90.125177][ T8361]  ? __pfx_sel_write_load+0x10/0x10
[   90.126833][ T8361]  ? __pfx_sel_write_load+0x10/0x10
[   90.128469][ T8361]  vfs_write+0x2a0/0x1150
[   90.129847][ T8361]  ? __pfx___mutex_lock+0x10/0x10
[   90.131429][ T8361]  ? __pfx_vfs_write+0x10/0x10
[   90.132957][ T8361]  ? __fget_files+0x20e/0x3c0
[   90.134447][ T8361]  ksys_write+0x12a/0x250
[   90.135815][ T8361]  ? __pfx_ksys_write+0x10/0x10
[   90.137353][ T8361]  do_syscall_64+0xcd/0x4c0
[   90.138775][ T8361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.140642][ T8361] RIP: 0033:0x7f3cd838e9a9
[   90.142061][ T8361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.148015][ T8361] RSP: 002b:00007f3cd91f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   90.150608][ T8361] RAX: ffffffffffffffda RBX: 00007f3cd85b5fa0 RCX: 00007f3cd838e9a9
[   90.153018][ T8361] RDX: 000000000000ffbd RSI: 0000200000000000 RDI: 0000000000000004
[   90.155477][ T8361] RBP: 00007f3cd8410d69 R08: 0000000000000000 R09: 0000000000000000
[   90.157934][ T8361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   90.160392][ T8361] R13: 0000000000000000 R14: 00007f3cd85b5fa0 R15: 00007ffcd3d6e928
[   90.162886][ T8361]  </TASK>
[   90.164568][ T8361] Kernel Offset: disabled
[   90.165959][ T8361] Rebooting in 86400 seconds..

VM DIAGNOSIS:
19:52:59  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=0000000000000001 RCX=000000009590f671 RDX=0000000000000000
RSI=00000000a57197d8 RDI=ffff888029d7af30 RBP=ffff888029d7a440 RSP=ffffc90005edf8e0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffff888029d7af30 R13=ffff888029d7af58 R14=0000000000000001 R15=0000000000000004
RIP=ffffffff81981760 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 000055556edfa500 ffffffff 00c00000
GS =0000 ffff8880d6720000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=00000000522fe000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000007 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc6a799ec0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33ec211d42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33ec211d4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33ec211d49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33ec211d5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33ec211de3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33ec211ec1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000007 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000146cc
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000007 0000000000000000 0000000000000000 00000000000146cc
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff855a57c5 RDI=ffffffff9b0b9e60 RBP=ffffffff9b0b9e20 RSP=ffffc90006b9ee50
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000031 R14=ffffffff9b0b9e20 R15=ffffffff855a5760
RIP=ffffffff855a57ef RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f3cd91f66c0 ffffffff 00c00000
GS =0000 ffff8880d6820000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000020000000f000 CR3=0000000049a64000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=0000000002fefefe Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cd8411d42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cd8411d4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cd8411d49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cd8411d5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cd8411de3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cd8411ec1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cd8586488 00007f3cd8586480 00007f3cd8586478 00007f3cd8586450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cd90ed100 00007f3cd8586440 00007f3cd8586458 00007f3cd85864a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3cd8586498 00007f3cd8586490 00007f3cd8586488 00007f3cd8586480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=ffffffff914cb4f1 RBX=0000000000000001 RCX=ffffffff914cb4ee RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff914cb4f0 RBP=ffffc9000384f9a0 RSP=ffffc9000384f8e8
R8 =1ffffffff229969e R9 =0000000000000000 R10=0000000000000000 R11=0000000000012105
R12=ffffc9000384f9a8 R13=ffffc9000384f958 R14=ffffc9000384fca8 R15=ffffc9000384f98c
RIP=ffffffff816aec44 RFL=00000a02 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 000055557a08a500 ffffffff 00c00000
GS =0000 ffff8880d6920000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f5164d802d8 CR3=0000000051072000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000002000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcc2be1a80 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5164c11d42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5164c11d4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5164c11d49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5164c11d5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5164c11de3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5164c11ec1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=6607aa83b452ebf3 RBX=ffffffff8e5c4e00 RCX=ffffc900006f899c RDX=0000000000000001
RSI=ffffffff8e5c4e00 RDI=ffff88801dad5398 RBP=0000000000000001 RSP=ffffc900006f8990
R8 =ffffffff914364f4 R9 =0000000000000000 R10=0000000000000000 R11=000000000000a790
R12=ffffffff816adac4 R13=0000000000000206 R14=ffff88801dad4880 R15=0000000000000002
RIP=ffffffff81988460 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6a20000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffef50820f8 CR3=000000002b822000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000014 000000000001df8a
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055558211d3fe 000055558211bdf0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555582123641 0000555582122910
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3810000601028800 080017f003000800 17e80304080017e0 0300100017d00309
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030fffffffffffff 0401800300080006 1000201000060671 a001801000178004
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0070bd2d00010048 0000003828080380 0303800400030004 01a0030008000190
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0005000000020008 0000000901b40803 b00300080003a803 0000000a25dfdbff
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100100001800401 0000060806060168 e040808282080001 e00300100001d003
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00100001c0030210 0001b00370100010 03d78e3ebaa874ac 977a2607fb1b7ce1
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a38c5da3a271382f eda4232bd284bb9e f104c3ec9c14e3a4 31ccc441705bd2c2
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ac4ccc5e73ef55d0 6753782a00000000 0000000000000000 0080fe0001001400
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000