last executing test programs:

1m4.961801482s ago: executing program 0 (id=2137):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
futex_waitv(&(0x7f0000002dc0)=[{0xe, 0x0, 0x2}, {0x2, 0x0, 0x2}, {0x6, 0x0, 0x82}, {0x4, 0x0, 0x2}, {0x200, 0x0}, {0x10, 0x0, 0x82}, {0x0, 0x0, 0x82}, {0x4, 0x0, 0x2}, {0x7fff, 0x0, 0x2}, {0x100000001, 0x0, 0x2}, {0x57e6, 0x0, 0x82}, {0x8000, 0x0, 0x2}, {0x5, 0x0, 0x2}, {0x7, 0x0, 0x2}, {0x8, 0x0, 0x2}, {0x4, 0x0, 0x2}, {0x7, 0x0, 0x82}, {0xfff, 0x0, 0x2}, {0x6, 0x0, 0x2}, {0x1, 0x0, 0x2}, {0x7, &(0x7f0000002140)=0x8, 0x2}, {0x80, &(0x7f0000002180), 0x2}, {0x9, &(0x7f00000021c0)=0xe, 0x2}, {0x3, &(0x7f0000002200)=0x7cd1de08, 0x82}, {0xb8, &(0x7f0000002240)=0x7, 0x2}, {0x9, &(0x7f0000002280)=0x9ff, 0x82}, {0x7fffffffffffffff, 0x0, 0x82}, {0xfffffffffffffffd, 0x0, 0x86}, {0x769, &(0x7f0000002380)=0xffffffffffffffff, 0x2}, {0x1, 0x0, 0x2}, {0xfffffffffffffff8, 0x0, 0x2}, {0x5, 0x0, 0x2}, {0xfffffffffffffff9, 0x0, 0x82}, {0x2, &(0x7f00000025c0)=0x4, 0x2}, {0x5, &(0x7f0000002600)=0x4, 0x2}, {0x6c558f26, &(0x7f0000002680)=0x10001, 0x2}, {0x7, &(0x7f0000002700)=0x4, 0x82}, {0xffffffffffffffff, 0x0, 0x82}, {0x6, 0x0, 0x82}, {0x8, &(0x7f0000002840)=0xffff, 0x2}, {0x768d, 0x0, 0x2}, {0x265, 0x0, 0x2}, {0x7fffffff, &(0x7f0000002900)=0xa, 0x82}, {0x84, &(0x7f0000002940)=0xa60, 0x82}, {0x9, 0x0, 0xec5aba831a7e1e25}, {0x9, 0x0, 0x82}, {0x4, 0x0, 0x2}, {0xdef, &(0x7f0000002b00)=0x3, 0x80}, {0x6f, &(0x7f0000002b40)=0x5}, {0x100000001, &(0x7f0000002b80)=0x5, 0x2}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x82}, {0x1, &(0x7f0000002c40)=0x200, 0x2}, {0x6, 0x0, 0x82}], 0x36, 0x0, &(0x7f0000003680), 0x0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000002580)={0x2040, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x2014, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7ffd}, @ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "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"}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x2040}}, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000040)={@ipv4={""/10, ""/2, @multicast1}, <r2=>0x0}, &(0x7f0000000080)=0x14)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="380000005400010026bd70010000000007000000", @ANYRES32=r5, @ANYBLOB="20000100", @ANYRES32=r5, @ANYBLOB="000000008f"], 0x38}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r7=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0100000007000000612200000200000000000000", @ANYRES32, @ANYBLOB="0000eb810000000000ffffffffff000000000000", @ANYRES32=r7], 0x50)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r8, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r9=>0x0})
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000180)={'vlan0\x00', <r10=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0x503, 0x0, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8084}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE2={0x8, 0x2, r9}, @IFLA_HSR_SLAVE1={0x8, 0x1, r10}]}}}]}, 0x40}}, 0x0)
r11 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000001080000000000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x6c}, 0x94)
r12 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r13=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r11, r13}, 0x10)
r14 = socket$nl_route(0x10, 0x3, 0x0)
r15 = dup(r14)
ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r16=>0x0})
sendmsg$nl_route(r15, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x4c, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_BC_QUEUE_LEN={0x8, 0x7, 0xffff7fff}, @IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x3}]}}}, @IFLA_LINK={0x8, 0x5, r16}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
r17 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r12, 0x8933, &(0x7f0000000500)={'batadv_slave_0\x00'})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r18=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r18, 0x8933, &(0x7f0000000000)={'netdevsim0\x00', <r19=>0x0})
sendmsg$nl_route_sched(r17, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x30, 0x24, 0xd0f, 0x470bd2d, 0xfffffffd, {0x60, 0x0, 0x0, r19, {0x0, 0xfff2}, {0xfff1, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x44080)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000540)={0x1f8, r1, 0x8, 0x70bd28, 0x25dfdbfe, {}, [@HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x78, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x80, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r16}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r19}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}]}]}, 0x1f8}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000)

1m4.811949522s ago: executing program 0 (id=2138):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x2, 0x3, 0x0, 0x3, 0x12, 0x0, 0x70bd2c, 0x25dfdbfb, [@sadb_key={0x3, 0x9, 0x80, 0x0, "1cdc0dca1d9f68846960e56de42944af"}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback, 0x2}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x7}}, @sadb_x_nat_t_type={0x1, 0x14, 0x7}]}, 0x90}, 0x1, 0x7}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1df)
write$binfmt_elf64(r1, &(0x7f0000000ac0)=ANY=[@ANYBLOB="7f454c4600000006010000000000000003003e000000000003000000000000004000000000000000980100000000000002000000000038000200000002000000000000600300000008000000000000000d0000f0ffffffffec08000000000000f0ffffffffffffff0000000000000000080000000000000003"], 0x5b0)
close(r1)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

1m4.741701179s ago: executing program 0 (id=2142):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000000000041000040"])
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x0, 0xfffffffe, 0x4}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850)
sendmsg$nl_route_sched(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newtfilter={0x30, 0x2c, 0xd27, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r2, {0xf000, 0xffff}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_fw={{0x7}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x200c8080)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x6c, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r8, {0x3}, {}, {0x2, 0xfff1}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x3c, 0x2, [@TCA_GRED_PARMS={0x38, 0x1, {0x80000001, 0x3, 0x8, 0xb, 0x101, 0xffffcbef, 0x183, 0x5, 0x7, 0x1, 0x14, 0xb, 0x1a, 0x3, 0xd0b, 0x38f4}}]}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40098}, 0x4000000)

1m4.489708672s ago: executing program 0 (id=2148):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0)
open_tree(0xffffffffffffffff, &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000800)={r1, r1, r1}, 0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={'sha384\x00'}})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'vlan0\x00', 0x400})
r2 = socket$packet(0x11, 0x3, 0x300)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
open(&(0x7f0000000040)='./file0\x00', 0x80242, 0x1df2a23c5997fa7b)
r4 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x401c5820, &(0x7f0000000000)={0x10001, 0x3, 0x5, 0x8, 0xed4})
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x42, 0x58)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./bus\x00', r5, &(0x7f00000004c0)='./file0\x00', 0x2)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r6, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
renameat2(r6, &(0x7f0000000340)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2)
unlink(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00')
umount2(&(0x7f00000001c0)='./file0\x00', 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'rose0\x00'})

1m4.189671969s ago: executing program 0 (id=2153):
r0 = fsopen(&(0x7f0000000000)='msdos\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000008200000008000300", @ANYRES32=r6], 0x1c}}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0x6, 0x4, 0xdd, 0xa}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200009b1aecb600000000000000008d0000007500000095"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r1)
sendmsg$TIPC_CMD_SET_NETID(r4, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r8, 0x10, 0x70bd2c, 0x25dfdbfe, {{}, {}, {0x8, 0x2, 0x1}}, ["", "", "", "", "", "", "", ""]}, 0x24}}, 0x40044)
sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=ANY=[@ANYBLOB="24000000b5e6f4cdf83c5d8060", @ANYRES16=r2, @ANYBLOB="010028bd7000010000000f00000005002e000100000008000300", @ANYRES32=r3, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x20000004}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x15, 0xe, &(0x7f0000003540)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2}, 0x48)

1m3.862457458s ago: executing program 0 (id=2155):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x280100, 0x0)
ioctl$IOMMU_IOAS_UNMAP(r0, 0x3b86, &(0x7f0000000100)={0x18, 0x0, 0x3ff})
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000040)={0xc, 0x0, <r1=>0x0})
sendmsg$rds(0xffffffffffffffff, &(0x7f0000001880)={&(0x7f00000000c0)={0x2, 0x4e23, @remote}, 0x10, &(0x7f00000013c0)=[{&(0x7f0000000140)=""/183, 0xb7}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/133, 0x85}, {&(0x7f00000012c0)=""/63, 0x3f}, {&(0x7f0000001300)=""/126, 0x7e}, {&(0x7f0000001380)=""/22, 0x16}], 0x6, &(0x7f00000016c0)=[@cswp={0x58, 0x114, 0x7, {{0x1de, 0x5}, &(0x7f0000001440)=0x3, &(0x7f0000001480), 0x4, 0xfffffffffffffffb, 0x0, 0x1f, 0x20, 0x20}}, @cswp={0x58, 0x114, 0x7, {{0x2, 0x4}, &(0x7f00000014c0)=0x3ff, &(0x7f0000001500)=0x100, 0xf95, 0x8, 0x7, 0x0, 0x40, 0x4}}, @zcopy_cookie={0x18, 0x114, 0xc, 0x4}, @mask_cswp={0x58, 0x114, 0x9, {{0x4, 0x5}, &(0x7f0000001540)=0xfffffffffffffffa, &(0x7f0000001580)=0x7, 0x3, 0x7, 0x9, 0x37c6, 0x18, 0x5f}}, @fadd={0x58, 0x114, 0x6, {{0x1000, 0xea}, &(0x7f00000015c0)=0x1000, &(0x7f0000001600)=0x8000, 0x8, 0x7ff, 0x2, 0x8, 0x44, 0x4e6}}, @rdma_map={0x30, 0x114, 0x3, {{&(0x7f0000001640)=""/22, 0x16}, &(0x7f0000001680), 0x20}}], 0x1a8, 0x40488c5}, 0x200088c0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f0000000080)={0x18, 0x1, 0x1, 0x0, r1, 0x7})

1m3.827704636s ago: executing program 32 (id=2155):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x280100, 0x0)
ioctl$IOMMU_IOAS_UNMAP(r0, 0x3b86, &(0x7f0000000100)={0x18, 0x0, 0x3ff})
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000040)={0xc, 0x0, <r1=>0x0})
sendmsg$rds(0xffffffffffffffff, &(0x7f0000001880)={&(0x7f00000000c0)={0x2, 0x4e23, @remote}, 0x10, &(0x7f00000013c0)=[{&(0x7f0000000140)=""/183, 0xb7}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/133, 0x85}, {&(0x7f00000012c0)=""/63, 0x3f}, {&(0x7f0000001300)=""/126, 0x7e}, {&(0x7f0000001380)=""/22, 0x16}], 0x6, &(0x7f00000016c0)=[@cswp={0x58, 0x114, 0x7, {{0x1de, 0x5}, &(0x7f0000001440)=0x3, &(0x7f0000001480), 0x4, 0xfffffffffffffffb, 0x0, 0x1f, 0x20, 0x20}}, @cswp={0x58, 0x114, 0x7, {{0x2, 0x4}, &(0x7f00000014c0)=0x3ff, &(0x7f0000001500)=0x100, 0xf95, 0x8, 0x7, 0x0, 0x40, 0x4}}, @zcopy_cookie={0x18, 0x114, 0xc, 0x4}, @mask_cswp={0x58, 0x114, 0x9, {{0x4, 0x5}, &(0x7f0000001540)=0xfffffffffffffffa, &(0x7f0000001580)=0x7, 0x3, 0x7, 0x9, 0x37c6, 0x18, 0x5f}}, @fadd={0x58, 0x114, 0x6, {{0x1000, 0xea}, &(0x7f00000015c0)=0x1000, &(0x7f0000001600)=0x8000, 0x8, 0x7ff, 0x2, 0x8, 0x44, 0x4e6}}, @rdma_map={0x30, 0x114, 0x3, {{&(0x7f0000001640)=""/22, 0x16}, &(0x7f0000001680), 0x20}}], 0x1a8, 0x40488c5}, 0x200088c0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f0000000080)={0x18, 0x1, 0x1, 0x0, r1, 0x7})

56.279628672s ago: executing program 2 (id=2262):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc) (async, rerun: 32)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) (rerun: 32)
r2 = dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r2, 0x2000)
write$binfmt_script(r2, &(0x7f0000000340)={'#! ', './cgroup'}, 0xc) (async, rerun: 32)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x38, 0xd, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x4000) (rerun: 32)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)=ANY=[@ANYBLOB="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"], 0x1b8}, 0x1, 0x0, 0x0, 0x8010}, 0x4000800)

56.219638214s ago: executing program 2 (id=2264):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_DISABLE_QUIRKS(r1, 0x4068aea3, &(0x7f0000000240)={0x74, 0x0, 0x13})
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r3 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040), 0x10)
listen(r3, 0x0)
r4 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r4, &(0x7f0000000080), 0x10)
setsockopt$sock_linger(r4, 0x1, 0x3c, &(0x7f0000000180)={0x1, 0x5}, 0x8) (async)
sendmmsg(r4, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094) (async)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000090601020000000000000000000000000900020073797a310000000005000100070000501c0007800c0001"], 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000003e000701feffffff00000000017c0000040042800c00018006000600800a0000200002801c00158018"], 0x44}, 0x1, 0x0, 0x0, 0x40040c0}, 0xc000)
close_range(r2, 0xffffffffffffffff, 0x0)

56.131484553s ago: executing program 2 (id=2268):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f0000004240)=0x40000006, 0x4)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20000001, &(0x7f0000000300)={0xa, 0x4e20, 0x5, @mcast1}, 0x1c)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000100)={'syz0\x00', {0x1, 0x0, 0x1, 0x4}, 0x4b, [0xfffffbff, 0x4, 0x3c, 0x8, 0x2, 0x80000000, 0x8, 0x0, 0x8, 0x2, 0x7, 0x9, 0x1, 0x830, 0x4, 0x40, 0x380, 0x2, 0x8, 0x80000000, 0x5, 0x225, 0x1, 0x2000000, 0x0, 0x5, 0xfff, 0x3, 0x8, 0x1, 0x2c, 0x80000001, 0x101, 0x4, 0x9, 0x101, 0x1, 0x11, 0x4, 0x3d, 0x10001, 0x7, 0xffffffff, 0x2, 0xfb, 0xe, 0x8, 0x5, 0x9, 0x5, 0x8000, 0x100, 0xffffff0e, 0xca, 0x5, 0xffff, 0x0, 0x7, 0xfffff001, 0x80000000, 0x6, 0x86, 0x4], [0x800, 0x4, 0x8, 0xffffffff, 0x7fff, 0x401, 0x7, 0x6, 0x7f, 0xbf, 0x5, 0xace6, 0x3, 0x9, 0x2, 0x1, 0x3, 0x9, 0x81, 0x2, 0x6, 0xe, 0x1000, 0x1, 0x2, 0x4, 0x9, 0x6, 0x4, 0xa, 0x7fffffff, 0x9, 0x2, 0x8, 0x2, 0xb9d, 0x1ff, 0x401, 0x0, 0x3, 0x0, 0x0, 0x3ff, 0x0, 0x5, 0x2, 0x9, 0x2, 0xf5, 0x9319161, 0x4, 0x8, 0x1, 0x6cc, 0x10001, 0x80000001, 0x3, 0x8, 0x8, 0x7, 0x5, 0xb2, 0x100, 0x4], [0x724, 0x6, 0x52, 0x8, 0xe, 0x0, 0x0, 0x3a, 0x7, 0x5, 0x1, 0x800, 0x5, 0xcf43, 0x6, 0x0, 0x4, 0x2, 0x3, 0x6, 0x4, 0x6, 0xfffffff9, 0x4, 0x80000001, 0xfff, 0x101, 0x73, 0x10001, 0xffffff01, 0x4, 0x5, 0x5, 0xde9, 0x3, 0x800, 0xc, 0x2, 0x4, 0x8, 0x9, 0x3, 0x33f4cd36, 0x54, 0x1000, 0x755, 0x1, 0x5, 0x800, 0x6, 0x4, 0x10, 0x5, 0x9, 0x15a, 0x200, 0x8, 0xc4d, 0x5, 0xcd, 0x0, 0x200, 0x4, 0x4], [0x4, 0x6, 0x3, 0x7, 0x8, 0x64, 0x5, 0x3, 0x80, 0x2, 0x0, 0x8, 0xf, 0xe, 0x9, 0xe39e, 0x1, 0x7, 0x4, 0xfffffff7, 0x7, 0x800009, 0x7ffffffd, 0x4, 0x6, 0x4, 0x81, 0x1, 0x5, 0x4, 0x5, 0xfffffff8, 0xb, 0x5, 0xfffffff7, 0x7, 0x0, 0x289, 0x4, 0xff, 0x101, 0x400, 0x3, 0x7, 0x80000001, 0xfff, 0x9, 0x0, 0x7, 0x2, 0x8, 0xba, 0x7, 0x5, 0x3, 0x0, 0x8000, 0xc21, 0xffff, 0x2, 0x269, 0x8, 0xb, 0x1]}, 0x45c)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
r4 = io_uring_setup(0x3, &(0x7f0000000300)={0x0, 0x77ae, 0x2, 0x0, 0x3d6})
r5 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r5, 0xc100565c, &(0x7f00000013c0)={0x200, 0x2, 0x2, {0x5, @vbi={0xb5, 0x0, 0x3, 0x20363159, [0x0, 0x8000000], [0x8200, 0x1]}}, 0x4})
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r6, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x20000824}, 0x20004000)
ioctl$VIDIOC_QBUF(r5, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x10, 0x9, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00#X\b'}, 0x0, 0x2, {}, 0x18603})
close_range(r4, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0xc0686611, &(0x7f0000000180)={0x68, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x1000)=nil, 0x0, 0x0, 0x10, r3, 0x0)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000000080005010040"])

55.90089397s ago: executing program 2 (id=2270):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x9)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f00000001c0)={0x7fff, 0x6})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x4, &(0x7f0000000340)=@framed={{}, [@ldst={0x2, 0x0, 0x3, 0x1, 0x0, 0x18}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe}, 0x90)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r1, &(0x7f0000000480)='./file1\x00', 0x2000, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r1, &(0x7f0000000100)='./file1\x00', r1, &(0x7f0000000240)='./file0\x00', 0x0)
unlink(&(0x7f0000000280)='./file1\x00')
link(&(0x7f00000000c0)='./file0\x00', 0x0)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$setregset(0x4205, r2, 0x6, 0x0)
prlimit64(r2, 0x1, &(0x7f0000000200), 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000040)={0x0})

55.900723565s ago: executing program 2 (id=2271):
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x9)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000080)={0x79, 0x0, 0xbe6})
ioctl$KVM_CAP_X86_APIC_BUS_CYCLES_NS(r1, 0x4068aea3, &(0x7f0000000000)={0xed, 0x0, 0xe})
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x7, 0x1, 0x405}}}, 0x7)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, 0x0, 0x90)
renameat2(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x320, 0x0, 0x168, 0x9, 0x0, 0xb, 0x250, 0x250, 0x250, 0x250, 0x250, 0x3, 0x0, {[{{@ipv6={@remote, @rand_addr=' \x01\x00', [], [], 'veth0_to_bridge\x00', 'sit0\x00', {}, {}, 0x6c}, 0x6000000, 0x108, 0x150, 0x0, {0x0, 0x28e}, [@common=@inet=@ipcomp={{0x30}}, @common=@inet=@ipcomp={{0x30}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@mcast2, 'dvmrp0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x100, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{}, {0x2}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x380)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xb, 0x1f, 0x402, 0x1003ff, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, r2}, 0x38)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r2, &(0x7f0000000340)="a9", &(0x7f0000000200)=""/31}, 0x20)

55.590945323s ago: executing program 2 (id=2278):
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f0000000200)={&(0x7f0000000900)={0x2, 0x4e23, @empty}, 0x10, &(0x7f0000002a40)=[{&(0x7f00000001c0)="08001efb", 0x4}, {&(0x7f0000000940)="9b", 0x1}], 0x2, 0x0, 0x0, 0x60000000}, 0x800)
recvfrom$inet(r0, &(0x7f00000002c0)=""/110, 0x6e, 0x0, &(0x7f0000000340)={0x2, 0x4e23, @broadcast}, 0x10)

55.53796159s ago: executing program 33 (id=2278):
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f0000000200)={&(0x7f0000000900)={0x2, 0x4e23, @empty}, 0x10, &(0x7f0000002a40)=[{&(0x7f00000001c0)="08001efb", 0x4}, {&(0x7f0000000940)="9b", 0x1}], 0x2, 0x0, 0x0, 0x60000000}, 0x800)
recvfrom$inet(r0, &(0x7f00000002c0)=""/110, 0x6e, 0x0, &(0x7f0000000340)={0x2, 0x4e23, @broadcast}, 0x10)

50.268650899s ago: executing program 1 (id=2384):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) (async)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10) (async, rerun: 64)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) (async, rerun: 64)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss, @window, @window], 0x20000000000000e4) (async)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@ipv6_newrule={0x38, 0x20, 0x1, 0x70bd29, 0x0, {0xa, 0x0, 0x20, 0x64, 0x0, 0x0, 0x0, 0x7}, [@FIB_RULE_POLICY=@FRA_IP_PROTO={0x5, 0x16, 0x4f}, @FRA_SRC={0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}]}, 0x38}, 0x1, 0x0, 0x0, 0x24040804}, 0x0) (async)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00!'], 0x5c}}, 0x0) (async)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='illinois\x00', 0x9)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000700), 0x4) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=ANY=[@ANYBLOB="3000000002030104000000000000000002000001080001000100e7b9918c040008080001000000001d09000200000000"], 0x30}, 0x1, 0x0, 0x0, 0x4000010}, 0x800) (async)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) (async, rerun: 32)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25) (rerun: 32)

50.192071199s ago: executing program 1 (id=2386):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140), 0x0)
r1 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000200), 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x5}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x3}]}, 0x6c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)={0x14, 0x2, 0x1, 0x5, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x20044804}, 0x40040)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r3, 0x0, 0x20000000)
r5 = accept4(r0, 0x0, 0x0, 0x80000)
syz_genetlink_get_family_id$ethtool(0x0, r5)
sendmsg$kcm(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000014c0)}], 0x1}, 0x20000000)
sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r6)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_MPATH(r6, 0x0, 0x840)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)={0x94, r7, 0x300, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_SSID={0x21, 0x34, @random="033025de0c72dd4098e920a41a18339167341755de3f12802ac5019f16"}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x401}, @NL80211_ATTR_IE={0x4b, 0x2a, [@ssid={0x0, 0x6, @default_ap_ssid}, @mesh_chsw={0x76, 0x6, {0x6c, 0x7f, 0x15, 0x5}}, @cf={0x4, 0x6, {0x9, 0x7, 0x5, 0x9}}, @ssid={0x0, 0x6, @default_ap_ssid}, @erp={0x2a, 0x1}, @mesh_id={0x72, 0x6}, @ht={0x2d, 0x1a, {0x10, 0x3, 0x3, 0x0, {0x100, 0xf, 0x0, 0xa, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x6, 0x8, 0x2}}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x40041}, 0x10)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_LIST_DEV(r9, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, r10, 0x0, 0x70bd28, 0x25dfdbfd, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x44080}, 0x1)

50.191966774s ago: executing program 3 (id=2387):
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, 0x0, 0x10, &(0x7f0000000000)={0x8})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x7, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000000000008510000002000000d6d343133b736f809c00007b0000000085000000180000009500000000000000"], &(0x7f00000003c0)='syzkaller\x00', 0x4, 0x92, &(0x7f0000000240)=""/146}, 0x80)

50.191544351s ago: executing program 1 (id=2388):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0x29)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0xff)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000540)={0x6, 0x200401, 0xfffffffd, 0xc6cf, 0x91, "0000080100", 0x240000, 0x1fd})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000140)=0x8)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x1)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000000)={0x0, 0x80000, <r1=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r1, 0xc00c642e, &(0x7f0000000080))

50.190937535s ago: executing program 3 (id=2389):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(blake2b-512-generic)\x00'}, 0x58)
r2 = accept$alg(r1, 0x0, 0x0)
sendmmsg$alg(r2, &(0x7f00000027c0)=[{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)="ca", 0x1}], 0x1, 0x0, 0x0, 0x4800}], 0x1, 0xe803)
accept4(r2, 0x0, 0x0, 0x800)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000006c0)=@newsa={0x184, 0x10, 0x713, 0x0, 0x0, {{@in=@remote, @in6=@remote}, {@in=@multicast2, 0x0, 0x32}, @in=@rand_addr=0x64010102, {0x0, 0x7f}, {}, {0x0, 0x4}, 0x0, 0x0, 0x2, 0x1}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @algo_aead={0x4c, 0x12, {{'essiv(ccm-aes-ce,streebog256)\x00'}, 0x0, 0x180}}]}, 0x184}, 0x1, 0x0, 0x0, 0x800}, 0x1000c080)

50.132351639s ago: executing program 1 (id=2390):
mkdir(&(0x7f0000000040)='./file0\x00', 0x80)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x80, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000440)='./bus\x00')
r0 = open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x1, 0x0, 0x80000000000007, 0x2)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
write$FUSE_CREATE_OPEN(r0, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x1000000000003, 0x3, 0x8000000000007, 0xaa, 0x3, 0x1, {0x0, 0x180, 0x20fe, 0x5, 0x87, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r0, r0, &(0x7f0000000080), 0x7f03)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x1ff)
mprotect(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x1)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000780), 0x20000, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x7040, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='mnt/encrypted_dir\x00', 0x200)

50.082234285s ago: executing program 3 (id=2391):
open(&(0x7f00000002c0)='./file0\x00', 0x2a4c0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x8000}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0xfffffffffffffffc, {0x0, 0xe}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
io_setup(0x1fd, &(0x7f0000000480)=<r3=>0x0)
io_submit(r3, 0x2, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r2, &(0x7f00000000c0)='!', 0xb7f40, 0x0, 0x3f00}])
dup3(r2, r0, 0x80000)

49.903354105s ago: executing program 3 (id=2394):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x89fc, &(0x7f0000000900)={'bond0\x00', @random="860000202300"})

49.896114391s ago: executing program 1 (id=2395):
r0 = syz_open_dev$evdev(&(0x7f0000001400), 0x1, 0x2001)
ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f0000001440)=""/1)
r1 = syz_open_dev$video4linux(&(0x7f0000000040), 0x20000000000000, 0x40001)
ioctl$VIDIOC_S_EDID(r1, 0xc0285629, &(0x7f0000000180)={0x0, 0xffff0000, 0x40, '\x00', &(0x7f0000000080)=0x4})
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newsa={0x150, 0x10, 0x413, 0x0, 0x0, {{@in6=@private2, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x0, 0xfffc, 0x4e24, 0x0, 0x2, 0x0, 0x20, 0x2b, 0x0, 0xee00}, {@in=@loopback, 0x0, 0x32}, @in6=@mcast2, {0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x7}, {0x0, 0x4, 0xcc}, {0xf6}, 0x0, 0x0, 0xa, 0x1, 0x1}, [@algo_aead={0x5f, 0x12, {{'rfc4309(ccm(aes))\x00'}, 0x98, 0x80, "b30b925b3a7e026ebbc7cf67cd471ed4c48e4d"}}]}, 0x150}, 0x1, 0x0, 0x0, 0x44849}, 0x0)

49.831692442s ago: executing program 3 (id=2397):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140), 0x0)
r1 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000200), 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x5}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x3}]}, 0x6c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)={0x14, 0x2, 0x1, 0x5, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x20044804}, 0x40040)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r3, 0x0, 0x20000000)
r5 = accept4(r0, 0x0, 0x0, 0x80000)
syz_genetlink_get_family_id$ethtool(0x0, r5)
sendmsg$kcm(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000014c0)}], 0x1}, 0x20000000)
sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r6)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_MPATH(r6, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000051}, 0x840)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)={0x94, r7, 0x300, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_SSID={0x21, 0x34, @random="033025de0c72dd4098e920a41a18339167341755de3f12802ac5019f16"}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x401}, @NL80211_ATTR_IE={0x4b, 0x2a, [@ssid={0x0, 0x6, @default_ap_ssid}, @mesh_chsw={0x76, 0x6, {0x6c, 0x7f, 0x15, 0x5}}, @cf={0x4, 0x6, {0x9, 0x7, 0x5, 0x9}}, @ssid={0x0, 0x6, @default_ap_ssid}, @erp={0x2a, 0x1}, @mesh_id={0x72, 0x6}, @ht={0x2d, 0x1a, {0x10, 0x3, 0x3, 0x0, {0x100, 0xf, 0x0, 0xa, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x6, 0x8, 0x2}}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x40041}, 0x10)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_LIST_DEV(r9, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, r10, 0x0, 0x70bd28, 0x25dfdbfd, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x44080}, 0x1)

49.82894494s ago: executing program 3 (id=2399):
writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f00000001c0)}], 0x1) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="480000001400090500000000fddbdf25021f00cb", @ANYRES32=r0, @ANYBLOB="080008100002000008000200ffffffff0800090006000000080009000000180008000200ac1414aa080009"], 0x48}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
ioctl$CEC_S_MODE(r3, 0x40046109, &(0x7f0000000180)=0xd0) (async)
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_GEM_CLOSE(r4, 0x40086409, &(0x7f0000000100))
close_range(r3, r3, 0x0)
r5 = dup(r2)
pipe2$9p(&(0x7f00000001c0)={<r6=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r2}}) (async)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f00000008c0)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000240), r7) (async)
mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[], [], 0x6b}}) (async)
r8 = socket$alg(0x26, 0x5, 0x0) (async)
r9 = syz_open_procfs(0x0, &(0x7f0000000140)='net/kcm\x00')
pread64(r9, &(0x7f0000001880)=""/4096, 0x1000, 0x7) (async)
bind$alg(r8, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(md5)\x00'}, 0x58)
close(r8)
io_uring_enter(r5, 0x9, 0x348, 0x20, &(0x7f0000000280)={[0x8]}, 0x8) (async)
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0xed, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x70}, 0x1, 0x0, 0x0, 0x4080}, 0x0)

49.371839532s ago: executing program 1 (id=2414):
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x49, &(0x7f00000000c0)})
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)=ANY=[], 0x6)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x60)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
prctl$PR_MCE_KILL_GET(0x22)
r3 = socket(0x10, 0x3, 0x0)
sendto$inet6(r3, &(0x7f0000000080)="7800000018002507b9409b14ffff00000204be04020506050e020409430009003f000c200a0000000d0085a168d0bf46d32345653600648d0a00050002000a0000005ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160005000a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0, <r5=>0x0}, 0x2020)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x400, 0x0)
quotactl_fd$Q_QUOTAON(r1, 0xffffffff80000202, r5, &(0x7f0000000180)='./file0\x00')
futimesat(r6, &(0x7f0000000080)='./file0\x00', 0x0)
write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x1812c09}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x20, 0x0, 0x8, {0x0, 0x3572111cb2a712f5}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat$dir(0xffffff9c, &(0x7f0000000bc0)='./file0\x00', 0x101200, 0x8)

49.312084861s ago: executing program 34 (id=2414):
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x49, &(0x7f00000000c0)})
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)=ANY=[], 0x6)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x60)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
prctl$PR_MCE_KILL_GET(0x22)
r3 = socket(0x10, 0x3, 0x0)
sendto$inet6(r3, &(0x7f0000000080)="7800000018002507b9409b14ffff00000204be04020506050e020409430009003f000c200a0000000d0085a168d0bf46d32345653600648d0a00050002000a0000005ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160005000a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0, <r5=>0x0}, 0x2020)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x400, 0x0)
quotactl_fd$Q_QUOTAON(r1, 0xffffffff80000202, r5, &(0x7f0000000180)='./file0\x00')
futimesat(r6, &(0x7f0000000080)='./file0\x00', 0x0)
write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x1812c09}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x20, 0x0, 0x8, {0x0, 0x3572111cb2a712f5}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat$dir(0xffffff9c, &(0x7f0000000bc0)='./file0\x00', 0x101200, 0x8)

48.191476862s ago: executing program 5 (id=2428):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r0, 0x4004550d, 0x0)
r1 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00100000000d6287e298e38b8"], 0x10)

46.97153651s ago: executing program 5 (id=2430):
setreuid(0xffffffffffffffff, 0xee00)
r0 = epoll_create(0x7)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0x60000000})
r2 = socket$nl_route(0x10, 0x3, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
socket(0x23, 0x80000, 0x8)
write$P9_RGETLOCK(r3, &(0x7f00000002c0)=ANY=[], 0x200002e6)
fcntl$setpipe(r3, 0x407, 0x7000000)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000040)={&(0x7f0000000300)={0xdc, 0x4, 0x8, 0x101, 0x0, 0x0, {0x5, 0x0, 0x6}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x884c}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_DATA={0x34, 0x4, 0x0, 0x1, @gre=[@CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x7}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x7}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0xda}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x16}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_DATA={0x24, 0x4, 0x0, 0x1, @gre=[@CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x101}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0xab}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x5}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0xfffffffb}]}, @CTA_TIMEOUT_DATA={0x44, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x5}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xbf}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x26}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xffff4d8f}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x6}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xfffffffb}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x7}]}]}, 0xdc}, 0x1, 0x0, 0x0, 0x40000}, 0x4)
r4 = socket$inet(0x2, 0x80001, 0x84)
listen(r4, 0x3)
accept(r4, 0x0, 0x0)
shutdown(r4, 0x0)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x34, 0x10, 0x401, 0x20000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1805b}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x4, 0x2, 0x0, 0x1, @void}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20004885}, 0x4054)

46.898490471s ago: executing program 5 (id=2432):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="c0020000100063d10000000000000000fe"], 0x2c0}, 0x1, 0x0, 0x0, 0x40000}, 0x4004)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/power/resume_offset', 0x102, 0x0)
sendfile(r0, r0, 0x0, 0x4)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000900)={&(0x7f0000000040)=ANY=[@ANYBLOB="bfeb010018000000000000000c0000000c00000002000000000000005f7f7fc9cab751490000"], 0x0, 0x26}, 0x20)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r4=>0x0})
sendto$packet(r2, &(0x7f0000000180), 0x0, 0x0, &(0x7f0000000140)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @random="ad446050e878"}, 0x14)
r5 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000040)='dns_resolver\x00', 0x0, &(0x7f00000003c0)="00ea1c7c000700", 0x7, r5)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x6, 0xf, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="00001b00f8000000b702000014000000b703000000000000850000008b000000bf0900000000000055090100000000009500000000200000bf91000000000000b7020000000000008500000000000000b70000000000000095"], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r1, 0x8, 0x0, 0x0, 0x14, &(0x7f0000000600)={0x4}, 0x10}, 0x94)
preadv(r3, &(0x7f0000000380)=[{&(0x7f0000000080)=""/72, 0x48}, {&(0x7f0000000180)=""/117, 0x75}, {&(0x7f0000000200)=""/106, 0x6a}, {&(0x7f0000000280)=""/93, 0x5d}, {&(0x7f0000000300)=""/93, 0x5d}], 0x5, 0x2, 0x8)

46.841802762s ago: executing program 5 (id=2434):
mkdir(&(0x7f0000000040)='./file0\x00', 0x80)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x80, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000440)='./bus\x00')
r0 = open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x1, 0x0, 0x80000000000007, 0x2)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
write$FUSE_CREATE_OPEN(r0, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x1000000000003, 0x3, 0x8000000000007, 0xaa, 0x3, 0x1, {0x0, 0x180, 0x20fe, 0x5, 0x87, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r0, r0, &(0x7f0000000080), 0x7f03)

46.584865604s ago: executing program 5 (id=2437):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x34)
close(0xffffffffffffffff)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
syz_emit_ethernet(0x36, &(0x7f0000000240)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10}}}}}}, 0x0)

45.591904148s ago: executing program 5 (id=2442):
r0 = socket(0x10, 0x803, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001300)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x5, 0xfff3}, {}, {0x7}}, [@filter_kind_options=@f_fw={{0x7}, {0xc, 0x2, [@TCA_FW_MASK={0x8, 0x5, 0xfffffff8}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x8000000)

45.523206069s ago: executing program 35 (id=2442):
r0 = socket(0x10, 0x803, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001300)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x5, 0xfff3}, {}, {0x7}}, [@filter_kind_options=@f_fw={{0x7}, {0xc, 0x2, [@TCA_FW_MASK={0x8, 0x5, 0xfffffff8}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x8000000)

34.751409758s ago: executing program 36 (id=2399):
writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f00000001c0)}], 0x1) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="480000001400090500000000fddbdf25021f00cb", @ANYRES32=r0, @ANYBLOB="080008100002000008000200ffffffff0800090006000000080009000000180008000200ac1414aa080009"], 0x48}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
ioctl$CEC_S_MODE(r3, 0x40046109, &(0x7f0000000180)=0xd0) (async)
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_GEM_CLOSE(r4, 0x40086409, &(0x7f0000000100))
close_range(r3, r3, 0x0)
r5 = dup(r2)
pipe2$9p(&(0x7f00000001c0)={<r6=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r2}}) (async)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f00000008c0)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000240), r7) (async)
mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[], [], 0x6b}}) (async)
r8 = socket$alg(0x26, 0x5, 0x0) (async)
r9 = syz_open_procfs(0x0, &(0x7f0000000140)='net/kcm\x00')
pread64(r9, &(0x7f0000001880)=""/4096, 0x1000, 0x7) (async)
bind$alg(r8, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(md5)\x00'}, 0x58)
close(r8)
io_uring_enter(r5, 0x9, 0x348, 0x20, &(0x7f0000000280)={[0x8]}, 0x8) (async)
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0xed, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x70}, 0x1, 0x0, 0x0, 0x4080}, 0x0)

1.041953276s ago: executing program 7 (id=3259):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000ac0)={{0x14}, [@NFT_MSG_NEWTABLE={0x14, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}}, @NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}}], {0x14, 0x10}}, 0x50}}, 0x0)

1.041804561s ago: executing program 7 (id=3260):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000000c0)={0x0, 0x6, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r2, 0x408c5333, &(0x7f0000000280)={0x0, 0x80000000, 0x0, 'queue0\x00', 0xffffff00})

989.330838ms ago: executing program 7 (id=3261):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x7, 0x9)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r6}, 0x18)
write$P9_RWRITE(r5, &(0x7f0000000040)={0xb}, 0x11000)
read(r4, &(0x7f0000032440)=""/102364, 0x18fdc)
read(r4, &(0x7f0000000440)=""/52, 0x34)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$nl_route_sched(r7, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0xc4, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0xb0, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000, 0x0, 0x4}, 0x3, r9}}]}, {0x4, 0xa}, {0xc}, {0xffac, 0x8, {0x0, 0x2}}}}, @m_mpls={0x5c, 0x2, 0x0, 0x0, {{0x9}, {0x30}, {0x4}, {0xc}, {0xc}}}]}]}, 0xc4}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x7}, 0x18)
r10 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r10, &(0x7f0000000040), 0x10)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xb, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r11}, 0x10)
r12 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r12, 0x6, 0xd, &(0x7f00000001c0)='cdg\x00', 0x4)
connect$inet(r12, &(0x7f0000000280)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1}}, 0x10)

593.828356ms ago: executing program 8 (id=3266):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x2800, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r1, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100280000000000000002000000200001800d0001007564703a73797a32"], 0x34}}, 0x0)
r2 = socket(0x10, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000005c0)=0x14)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40000)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYRES32=r1, @ANYRESHEX=0x0, @ANYRES16=r3], 0xa0}}, 0x0)

593.313604ms ago: executing program 8 (id=3268):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
open_tree(0xffffffffffffff9c, &(0x7f0000000e00)='./file0\x00', 0x9001)

544.752331ms ago: executing program 8 (id=3269):
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000002540)={@map, 0xffffffffffffffff, 0xf, 0x2001}, 0x20)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r3 = gettid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd7000ffdbdf2514000000080001000100000008001c00", @ANYRES32=r3], 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
capget(0x0, 0x0)

477.763077ms ago: executing program 8 (id=3273):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
setpgid(0x0, 0x0)

391.474031ms ago: executing program 8 (id=3274):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtaction={0x64, 0x30, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x9, 0x6, 0xffffffffffffffff, 0x80, 0xc4}}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x3}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x4081}, 0x2400c800)

391.236374ms ago: executing program 6 (id=3275):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
syz_emit_ethernet(0x46, &(0x7f00000003c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xff}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @multicast1, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x9, 0x0, 0x0, 0x0, 0x0, {[@mss={0x2, 0x4}, @sack_perm={0x4, 0x2}, @generic={0x0, 0x7, "a289840570"}]}}}}}}}, 0x0)

391.09503ms ago: executing program 6 (id=3276):
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, 0x0)

390.970023ms ago: executing program 8 (id=3277):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000600)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={0x0, r0}, 0x18)
r1 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x141a82, 0x0)
sendfile(r1, r1, 0x0, 0x3)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, 0x0, 0x0)
getsockopt$XDP_STATISTICS(0xffffffffffffffff, 0x11b, 0x7, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
timer_settime(r3, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x40200, 0x0)
preadv2(r4, &(0x7f0000000180)=[{&(0x7f0000000000)=""/167, 0xa7}], 0x1, 0x0, 0x4, 0x1)

251.059929ms ago: executing program 4 (id=3279):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000d40)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="a1ab2abd7000000000003200000008001701"], 0x24}, 0x1, 0x0, 0x0, 0x4050}, 0x0)

171.82695ms ago: executing program 4 (id=3280):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r2=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}], 0x1, &(0x7f00000000c0)=[@sndinfo={0x20, 0x84, 0x2, {0xa, 0x4, 0x28, 0x200000b, r2}}], 0x20, 0x2400e044}, 0x0)

171.681425ms ago: executing program 6 (id=3281):
open(&(0x7f0000000180)='./file0\x00', 0x445c5, 0x6e)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',msize=0x0000000000001000'])

121.23366ms ago: executing program 7 (id=3282):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x20000000001}, 0x18)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
connect$inet6(r2, &(0x7f0000002140)={0xa, 0x4e28, 0x8, @mcast2, 0x5}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

121.053089ms ago: executing program 4 (id=3283):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$tipc(r2, &(0x7f0000004440)={&(0x7f0000000ec0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10, &(0x7f0000004340)=[{&(0x7f0000000f00)="34cbf9c55466da0eadc249236ab3cbf316717306be4c08c8c7da1f1ee04ab4b4eac14995ebdf620ff778a4e3452587e42a3c6aa1bd35dfd99f23b525893bc3b5f9f3bed1986bf8d0dddd7c5cdada611f9bf641e421ed71a842d84fa289a542f941d6e06b2b14e2a706ce30acf7d82f224f3e30cadd9d15f3dddbb29dbeb9f68fb68bedb91e0b1ef48832778fe36699c7ebf101659a8f476c4a065eac71d6d1e7fafc6f25ec2c9a8f431fe347a2d30e912c5b2397613ce784637ec71e37566eb0548b461f71028459c6f137c18737d58b56949d022bf1eaf486692bb76836a233c7879d740ad0beaf5159d3380442824f536a41bb22d08fe53952b9c6fed2605d53311c71b455655f96ea6a87e41e9211e90170b0a2b1a2098175ebcd33d517085d224122264cddadd82a3d11bc4a33ce66108b22b1abc6243d306d8f6b8a2ddb5373c190d8f859a3174a200936b079f85edcac7fc03fb993ec0ff8b83f1fd3f1b888d192d99c7ede5d381784d25410cccf1b0bf26a54f065e1e3ec59cc5704fb658fc980a0ac4287ef884ee82007554be3f1e163c81468d0c26c95e3e12393776e32800bb4f086f19080c4fca3d72e8569a5627ce98f2ae0bdb3ec42c23847d47e10b1c58da7e9cea990da842d96e3a51ed7d892f7b28a10486424a69a9109ebd4d7d5a3768400ac000a6d7556ca192e5cd45efb82001ac7b53e03036b6019a07ffb545cd3853e077f08a015f6232488c1139a9409c95ed005261e36b307406ba5714ef395129345866109341feb6c7c458ce08c147a983b46375ddb3621cee0312ba1a434bcd6081e1a8ae8b6d518988b9965faf9aff86df8173b93342cceaec357a100e59b4d66553633626b0b12e9622b8f8fdfe26545b87c57f8ce8609fb8e19b0f6d1cd64e8de85c7327f543b2f38cf3086b57f85e1aaa4add723e4bc4e3ea2c27acec1e545ae3fc870bd42422f6eaf17a1f82699c9cadf224ea1e5d1705b49118d91cc3731aeed60e41bf15a9613aeda8e63a29bc7a95b2d993d23269a310b91f69d16a71243c0f4080d3359f5ddd63c7032bef14ab25eb7df4b28b2132bcbf94a281c8f5de79885a6d679f145fca292b599bb09a1864726d86b65d4781408320b968e2224c23ce7a56d8892970043737ae47f071aaeb219716bc21e3304e301eb5cd32aea951a70621eb870214a72e6c474c3a20f5bd8e089ba16326cc9a80a1a4f5f0e8f58629e20b1c73eb8af330744b187a5cfdb410466378313700ca44eb6dcbc8f3d70f58e134202546f0b1a3b61a298f2a1184b1533bdad308fa2f960087e0f239d2ccbaee3889ddc1a2bea2183b98854d255a6f708909134fab83f42f13e7604f602e264f4a3b2b2a08c673c7ce2813218159b472d3b20ecbf26dd2f7b3ba5298a4ff7444ea0936e098c126f590b05e7697ed8a3d52ba1abc7285de2f160b9b081cb775a5ab77aad1bb98d47e3da53fc4c11d4db47de1e4e6f56ad671f5d8389b33260cc546e4f0bf34fec9b2abd209e6b89e6e381367774676ed6e6eaffe42b07241c276f3c84f17a0762de83eb769bdf28991ddbc23758f01c9ecfba4ab2cb2118fcedd7adde9ff47f643c13e3ad2f13b576985128f233e329fe269d5745cd2b30e5762452a4ff58fdec30623175f8d575ced1c43411e2869aadbe6f1e79a010bca334cb08d545bc2808f359b7777d1bb5675ee210574b9f72cdeb071e07eeaa0988086213a37a972647cf21d3a3bcbd7359da327bacad41b93c5e0e494669109dddcec781774f248f5663e4fac187d42ffccf68335de2adac4f8d3e1bf04b95a9464960186ed019773ffeda18f9827a61edc5fc4088eb0965cb1bd8af1185aa3972b8f73839b4611e303bcbc1f84a330f60fa0a7795ea3cffe0e338406533e12c7deef0b5906c513eab4619a8f02fdd65dcfb7297ef971c4601ad079f7ad38278ae3ff455b37d5492af546975535450693fd4593c8157b3fdb16fd3a106d2f1509d1c06dabb8933269d790a1c5e5f7bdd4a57e1e670d7043cfed88c365b5f8eefe530ef7da5322df981723332c088fce89c2ceee23b420f64332243b9c606d67d538810a94e0ffbd37a119d8fc4d6caec0def40e62613873c74feabde63e12cb2016c1d35cf1bb95bf59e01a63be8825cb3118b74b106f21eef5ee2f41e5fb39fdde058050f780d98ced247c66fc3a03ba04edaf14d698859ba303d511cf0845dc5e269aef2287770a247fd5ae1299b45819ff41725f9da3e4dab7770eb83992b53ae9a9de69e764f6e3aee3e27cfb1bacf531a91605894ae209da6d25872fb54bf36b2ed450b51aa8ee4875b9bc7e55753f61e12a323d301faceb2ecff0686b1359343a94774a6a098dc2df440725cd8331f527d4e22f8090d8879ef4765849705b99465d7ebdf661b81c303d13b87270dc1f227d5954fcbc93bbce6fde2a1f8d573d9cd8130c173a14706f1e9dabc4d16a5b003dd3239faf91769e25cf007b0623141e4e57f11746cd62f20d73956fa84c6a12e1756b6671a64bd7a474ba425907e1a61ba6d2ffa1149165a713a141bfec0f1af51afebdb84d5f14eb51acc284403627d6ce48fd028dc04e00ed963de37f85d155c33e2b4ceb09044c4f1c7791348216b674a8831a232a638f8bfb396fabbe1f880944bc5dcac55df8abc78f804306c88617acfd4adfbb5a055d3d3e91abb763ad84e701cc5679498e04600570f4b2e57c70542043dc590ab363215e6ab3f0bd89383748783d01c9227229edac723d4e2eaa061a44f2630691f25ca6093775183fdf432e01322203dd654b336670116a6a52a27ff2032b1103a4e4be0cc2fb05b24352d72e374e90cc3db2a5a691c7f6b8d1058d7730433c742d8ce52074318b1bce9bb104cf90c8b7f65293c2b74434661444f38d94d977e03433440517f6155a3cad2621c5502dd6148b867a40e6a40be4c8265ec2164b5257f06da1784e98991f42003ced4ba67c23b8c654b542d2d31168fd853cf56cc2c464d7a8a9fbcd2715968788f8527c597ab5f917753c1f1708d2c19972373c5a22af71847de22b9f1e9d38a04ea4dd291da3099cb836a696350bf1263c3c275c27b8b82f604625451a24490b0b5367c2fd05e699546ddf17709d2e2c2710f4361d9dd6e2de2b4353b7f4f8141f6f989dc1a798a974565978e4f9ec0c59a7dbc04bcab072c8513b9ca782c22cdd31fb116c10081740fd8f7d0cbd5c54f1069297f20b45d79bb9ace8e851a655fedf47b2dc76fd30b9ba9f09c9b50d6910ffcdec7078c36fe1e9b19dbb110197496349560a43c0ab42b4ce286643e73a92246ecb71e95ce0d54114772f8477c7d5604c1a52d2f680c5868cf08a2688dd9fef492a01836112cec824483e77da93d104a9e18d06bddf9a4007740a0537ac1a5e09900acc65d52680212a15b68b0ef887228e06f533c1ca95b8f9d81b9fc6608cb5bacf4b867922999c69d46048ec3f408866789f49fcb176fc99ed9d3e6c357ed2e3ce2665925773e5d86c2ceaf8f18519a00d9d2e19e9a6b16af0a53fd7df6974f5db00494460e7f3de6ff6b642859335e020513bb525adddabf0d7d6ae85e7e56e32ca8acc07fe86b7b445358966ba3914c1dfa7b814d9e846ff02a6a8c8f5713a0f727024b5d1ea7e4ce7c64f9b24dd3337a3df33714c5404403b0304b25a66fe3ac85083965877117b3d721e7922f0ac7e278feeb8dc09f58cbcfbb81b11d4699737f37ac240a24b9c4b2b587e68974f7ca5561856f32e389d32056f7d58e4de24c11bd5c5afaa441120370d0c48341e1b8146a6bbca8c15f23c155d2533e97a8e6496bc00533ec83be8488d020708d97385a03bcbf57cadc2c1e575e1ac134cdb5047f3f88eae0230751626cea1c85da9b74ddace668afebb2dc66d302ddf3c5f8f21ac0c0535d00839457e7cac9282a8e49d018b077e38ea512cf28eacff5d98e880abfb5af2e7c039d2e1f1edaad2642963ef29d715f754e2715caa6af046a298b285e3582d903be726b608619332e1a82be48b0f5adf6838f41ff776e5290de8269794bce8fb971267d036bd6bd30e42df918125d573ced78263251bcae2b7b40f1ba855b4f2472312ea8752c4a0e09468bd25615a6c00a9b44c484c5507b8400537f20890e9499ec94ed2b6aeff21e57c6e8a93d80097f85ac9316b03a5f768721bf7d041bb9a6a03eabd615e3c4d74f56c429d53b8fec4b5e86c5b311a6cd4a86f03e04dab25ad65b68a8b8d9053993fd2440ff2b81768213084c831d31a0f8c646aff9090b5463cbee452abd6318340ec41b50f1deba7ffb60b326751de3f6dbf9b17714299233d5c43071367ece2e53212e7f4e084fea60850d4d16908d9bbbb531fbf72143fdb62d1b40afde3d0b2ac2c94c32e456bbef62f8d677e332aec8ccc8eedbac61e7b89b32d57157a39ad5c456258d9c36db0edc82c2baead990ee78007ed89c8f450e92d5e209cc25f7c13f5909ca404fddbdbeff89cc42350c91e9f1fdf9753c6e95f71257f8cbb97838684461cd1244c938b9939a4e9c7727902b6f1a5434e0a06d3fc221771dd87572ae801c5ce6886122f0c91dae57440ffc7ace4e8e0041a1d245103aaadbfc2ecff622228daed2b0cd30f7f59b2617f6f0571ee4403d84e652d78b8e64d5450b6483ef70582dcda9351f2dddd3a4ac84f514f708d3af6242501bd041beae78e6b29b517b534148ea91ef85653fec824d6ddb0c0fa2555ab2564ba29227b1046b48a11ee0e6aafda9d0b80b0f05a8d057cbeb16264cb579aea3ba2b2000052d03c77844ab7c81be3110a36a27aeffe0ad5a8a7385a1913a64fb2db630e8fc8017828cea60f327c3a510b441d94d32584e55f7c2320d89b2ba3d44d832b8e7c5f45442de9ef3", 0xd8d}], 0x1}, 0x0)

61.716008ms ago: executing program 4 (id=3284):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x49}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x8000001f)
fcntl$notify(r1, 0x402, 0x3)

61.558943ms ago: executing program 6 (id=3285):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xa, 0x4, 0x8, 0x8}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000002000000000000000a20000000000a01040000000000000000010000000900010073797a3100000000e8010000030a01020000000000000000010000000900030073797a3200000000280004800800024000000000080001400000000514000300626174616476300000000000000000000900010073797a31000000000900010073797a3100000000340008800c00024000000000000080010c00024000000000000000040c00014000000000000000000c00014000000000000000014c000480080002404c82f47c080001400000000008000140000000010800014000000003080002404f32945f080001400000000308000140000000020800024019885f270800014000000003fd000c00a03ac330bf11a2145946e6d945deece8485ee69dbc29a8dd5dbce127f829a3adf5c4171b4bedbbc9b913a67b9ee679020f0200000064419faae0136b893d91d95b1174f115798a1abfdc06983fb83f2116a85a00dd35cdf9d8f81683e5e2ebcca132a712e0be44c12c02ac92fbbb86ed717ce0cbd6a0134f899e23ca6d2f063d26be86555cc0e9c7a25d77e6c0f4217794be96b5d797e3116d874c3adfb096e0567ec28bd1e4d8d6713109695f1f3a877d89d20e19304501aeb851d14c4f9b2d769d554fe5308810d19bb040c1977bce50b894f2c45a1f0e80c8256b6dcb072f9d91d94a67bba9f62eb2f192fa4b3786d9a774b99aa332dfbb000000080007006e6174"], 0x25c}}, 0x0)

61.376095ms ago: executing program 4 (id=3286):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3000000"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYRESDEC, @ANYRESOCT], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0x8000000000}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r1}, 0x10)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r3, &(0x7f0000001240)=""/102400, 0x200000, 0x0)

61.279723ms ago: executing program 7 (id=3287):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000001080))
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000000)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000598000/0x1000)=nil, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x60})

296.185µs ago: executing program 6 (id=3288):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x18)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDFONTOP_SET(r2, 0x4b72, &(0x7f0000000080)={0x0, 0x3000000, 0x8, 0x1b, 0x100, &(0x7f00000000c0)="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"})

175.63µs ago: executing program 4 (id=3289):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bea100000000000007010000f8ffffffb702000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001fc0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x1, 0x8, 0x9}, 0x10, 0xffffffffffffffff, r3, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x11, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a603f00000000000500000014000500200100000000000000000100000000001c00090008000000", @ANYRES32=r2], 0x4c}}, 0x0)

81.748µs ago: executing program 7 (id=3290):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0x6c, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001880)={'vxcan1\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x60000, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x4}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x8, 0x5, 0x4, 0x7, 0x1, 0x8, 0x8}}, {0x4}}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x44}, 0x0)

0s ago: executing program 6 (id=3291):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000280)={0x1f, 0x4, 0x3}, 0x6)

kernel console output (not intermixed with test programs):


[  223.571854][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  223.576248][   T69] bridge_slave_1: left promiscuous mode
[  223.578959][   T69] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.582675][   T69] bridge_slave_0: left allmulticast mode
[  223.584937][   T69] bridge_slave_0: left promiscuous mode
[  223.586856][   T69] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.732206][   T69] dvmrp1 (unregistering): left allmulticast mode
[  224.061394][ T5975] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  224.065682][ T5975] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  224.068711][ T5975] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  224.072587][ T5975] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  224.075457][ T5975] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  224.185519][T19760] binder: BINDER_SET_CONTEXT_MGR already set
[  224.187420][T19760] binder: 19758:19760 ioctl 4018620d 2000000001c0 returned -16
[  224.229111][   T69] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  224.232930][   T69] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  224.237051][   T69] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  224.245200][   T69] bond0 (unregistering): Released all slaves
[  224.318587][   T69] bond1 (unregistering): Released all slaves
[  224.327059][   T69] bond2 (unregistering): Released all slaves
[  224.415021][   T69] bond3 (unregistering): Released all slaves
[  224.434300][ T5975] Bluetooth: hci1: command tx timeout
[  224.456575][   T93] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  224.460900][   T93] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  224.535365][   T69] tipc: Left network mode
[  224.581206][T19796] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2415'.
[  224.582761][T19798] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2446'.
[  224.688311][T19751] chnl_net:caif_netlink_parms(): no params data found
[  224.744746][T19964] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2448'.
[  224.747849][T19964] openvswitch: netlink: Key type 2567 is out of range max 32
[  224.802774][T19751] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.805257][T19751] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.807495][T19751] bridge_slave_0: entered allmulticast mode
[  224.810187][T19751] bridge_slave_0: entered promiscuous mode
[  224.813172][T19751] bridge0: port 2(bridge_slave_1) entered blocking state
[  224.815706][T19751] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.817949][T19751] bridge_slave_1: entered allmulticast mode
[  224.820533][T19751] bridge_slave_1: entered promiscuous mode
[  224.878615][T19751] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  224.885279][T19751] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  224.893547][   T59] usb 11-1: new full-speed USB device number 2 using dummy_hcd
[  224.943372][   T69] hsr_slave_0: left promiscuous mode
[  224.947606][   T69] hsr_slave_1: left promiscuous mode
[  224.949603][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  224.951885][   T69] batman_adv: batadv0: Removing interface: batadv_slave_0
[  224.955279][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  224.957574][   T69] batman_adv: batadv0: Removing interface: batadv_slave_1
[  224.965960][   T69] veth1_macvtap: left promiscuous mode
[  224.968210][   T69] veth0_macvtap: left promiscuous mode
[  224.970531][   T69] veth1_vlan: left promiscuous mode
[  224.972709][   T69] veth0_vlan: left promiscuous mode
[  225.056277][   T59] usb 11-1: not running at top speed; connect to a high speed hub
[  225.063970][   T59] usb 11-1: config 1 interface 0 altsetting 3 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  225.069679][   T59] usb 11-1: config 1 interface 0 has no altsetting 0
[  225.077133][   T59] usb 11-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.40
[  225.080989][   T59] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  225.084992][   T59] usb 11-1: Product: 縎窰প槹칠⎅苉콄눬몢ﭹ坍า锱稒쮃镂경Ꮬ尺朑錭எ얊큀郜燏⒛鍧ឈ㘡㝠᭿㥠ﮰ⩌쉢쑧⤜碙떥璨潶눑ŝ茂寴ꟙ鐬͑痩仝㠵쑊ㇰ杷撋ꐍ
[  225.093196][   T59] usb 11-1: Manufacturer: Ы
[  225.095665][   T59] usb 11-1: SerialNumber: ꚦ倦榦䗈⹀詍䷵怓炌䀲쁩챙摱쀏➫동繅鈒蠟⤕绯䁳埶兢詩쫻鱨䩗ᎍ㤖鰐䔽㼋翑説胛坉㔋垰읻又᫄ჲ諝韏왺氁Ⅾ
[  225.110221][T19879] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  225.315451][T19879] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19879 comm=syz.6.2447
[  225.372735][T20350] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2447'.
[  225.641386][   T69] team0 (unregistering): Port device team_slave_1 removed
[  225.724750][   T69] team0 (unregistering): Port device team_slave_0 removed
[  225.810294][   T40] audit: type=1400 audit(1757364988.990:596): avc:  denied  { load_policy } for  pid=20367 comm="syz.4.2454" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  225.818385][T20369] SELinux:  unknown common r
[  225.827307][T20369] SELinux: failed to load policy
[  226.116280][ T5975] Bluetooth: hci2: command tx timeout
[  226.241254][T19751] team0: Port device team_slave_0 added
[  226.246336][T19751] team0: Port device team_slave_1 added
[  226.350911][T19751] batman_adv: batadv0: Adding interface: batadv_slave_0
[  226.353025][T19751] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  226.361663][T19751] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  226.367092][T19751] batman_adv: batadv0: Adding interface: batadv_slave_1
[  226.369690][T19751] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  226.380026][T19751] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  226.449900][T19751] hsr_slave_0: entered promiscuous mode
[  226.452172][T19751] hsr_slave_1: entered promiscuous mode
[  226.455107][T19751] debugfs: 'hsr0' already exists in 'hsr'
[  226.457453][T19751] Cannot create hsr debugfs directory
[  226.503891][ T5975] Bluetooth: hci1: command tx timeout
[  226.511476][T20688] overlayfs: failed to resolve './bus': -2
[  226.652851][   T69] IPVS: stop unused estimator thread 0...
[  226.702873][T19751] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  226.713170][T19751] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  226.717896][T19751] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  226.722614][T19751] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  226.742168][   T69] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.799610][T19751] 8021q: adding VLAN 0 to HW filter on device bond0
[  226.816094][T19751] 8021q: adding VLAN 0 to HW filter on device team0
[  226.820634][   T69] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.832590][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[  226.834960][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[  226.841192][ T1146] bridge0: port 2(bridge_slave_1) entered blocking state
[  226.844083][ T1146] bridge0: port 2(bridge_slave_1) entered forwarding state
[  226.911996][T20879] bad cache= option: none

[  226.911996][T20879] 
[  226.916952][T20879] CIFS: VFS: bad cache= option: none

[  226.945082][   T69] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.994722][   T69] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  227.028170][T19751] 8021q: adding VLAN 0 to HW filter on device batadv0
[  227.124996][   T69] bridge_slave_1: left allmulticast mode
[  227.127470][   T69] bridge_slave_1: left promiscuous mode
[  227.130017][   T69] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.136891][   T69] bridge_slave_0: left allmulticast mode
[  227.138785][   T69] bridge_slave_0: left promiscuous mode
[  227.140610][   T69] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.377461][   T69] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  227.381485][   T69] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  227.386392][   T69] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  227.389493][   T69] bond0 (unregistering): Released all slaves
[  227.436166][T19751] veth0_vlan: entered promiscuous mode
[  227.442733][T19751] veth1_vlan: entered promiscuous mode
[  227.473751][T19751] veth0_macvtap: entered promiscuous mode
[  227.479341][T19751] veth1_macvtap: entered promiscuous mode
[  227.495685][T19751] batman_adv: batadv0: Interface activated: batadv_slave_0
[  227.505785][T19751] batman_adv: batadv0: Interface activated: batadv_slave_1
[  227.531280][ T1189] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  227.534631][ T1189] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  227.538327][ T1189] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  227.541924][ T1189] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  227.620717][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  227.624832][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  227.646126][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  227.650616][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  227.682569][   T59] usbhid 11-1:1.0: can't add hid device: -71
[  227.688749][   T59] usbhid 11-1:1.0: probe with driver usbhid failed with error -71
[  227.708641][   T59] usb 11-1: USB disconnect, device number 2
[  227.728610][   T69] hsr_slave_0: left promiscuous mode
[  227.739014][   T69] hsr_slave_1: left promiscuous mode
[  227.745851][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  227.748355][   T69] batman_adv: batadv0: Removing interface: batadv_slave_0
[  227.752421][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  227.757321][   T69] batman_adv: batadv0: Removing interface: batadv_slave_1
[  227.800191][   T69] veth1_macvtap: left promiscuous mode
[  227.802026][   T69] veth0_macvtap: left promiscuous mode
[  227.805420][   T69] veth1_vlan: left promiscuous mode
[  227.807143][   T69] veth0_vlan: left promiscuous mode
[  228.130622][   T40] audit: type=1400 audit(1757364991.310:597): avc:  denied  { nlmsg_write } for  pid=20985 comm="syz.6.2469" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  228.186128][ T5975] Bluetooth: hci2: command tx timeout
[  228.390544][T21004] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  228.393061][T21004] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  228.397231][T21004] vhci_hcd vhci_hcd.0: Device attached
[  228.400321][T21006] vhci_hcd: unknown pdu 1
[  228.401924][ T1146] vhci_hcd: stop threads
[  228.403272][ T1146] vhci_hcd: release socket
[  228.405040][ T1146] vhci_hcd: disconnect device
[  228.532028][   T69] team0 (unregistering): Port device team_slave_1 removed
[  228.586571][ T5975] Bluetooth: hci1: command tx timeout
[  228.607913][   T69] team0 (unregistering): Port device team_slave_0 removed
[  229.170407][T21001] gretap1: entered promiscuous mode
[  229.606667][T21072] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  229.889405][T21110] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2489'.
[  229.987893][T21110] team0: Port device team_slave_0 removed
[  230.004779][   T40] audit: type=1400 audit(1757364993.190:598): avc:  denied  { read } for  pid=21089 comm="syz.4.2484" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  230.007950][T21091] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4112 sclass=netlink_route_socket pid=21091 comm=syz.4.2484
[  230.014360][   T40] audit: type=1400 audit(1757364993.190:599): avc:  denied  { open } for  pid=21089 comm="syz.4.2484" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  230.069496][   T40] audit: type=1400 audit(1757364993.250:600): avc:  denied  { remount } for  pid=21124 comm="syz.6.2490" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  230.104088][   T40] audit: type=1400 audit(1757364993.290:601): avc:  denied  { unmount } for  pid=18549 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  230.137312][   T40] audit: type=1400 audit(1757364993.320:602): avc:  denied  { append } for  pid=21133 comm="syz.6.2491" name="card2" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  230.185581][T21134] netlink: 'syz.6.2491': attribute type 63 has an invalid length.
[  230.218539][T21147] random: crng reseeded on system resumption
[  230.227681][T21147] Unrecognized hibernate image header format!
[  230.230491][T21147] PM: hibernation: Image mismatch: architecture specific data
[  230.274106][ T5975] Bluetooth: hci2: command tx timeout
[  230.304273][T21163] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2497'.
[  230.309117][T21163] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2497'.
[  230.312688][T21163] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2497'.
[  230.317440][T21163] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2497'.
[  230.321474][T21163] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2497'.
[  230.328838][T21163] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2497'.
[  230.332866][T21163] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2497'.
[  230.336008][T21163] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2497'.
[  230.338927][T21163] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2497'.
[  230.503745][ T6030] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  230.643566][ T6030] usb 9-1: device descriptor read/64, error -71
[  230.903699][ T6030] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  231.053628][ T6030] usb 9-1: device descriptor read/64, error -71
[  231.143186][T21175] netlink: 'syz.6.2500': attribute type 9 has an invalid length.
[  231.177930][ T6030] usb usb9-port1: attempt power cycle
[  231.533731][ T6030] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  231.555746][ T6030] usb 9-1: device descriptor read/8, error -71
[  231.681524][T21205] netlink: 'syz.7.2506': attribute type 4 has an invalid length.
[  232.353654][ T5975] Bluetooth: hci2: command tx timeout
[  232.373612][ T6030] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  232.404304][ T6030] usb 9-1: device descriptor read/8, error -71
[  232.480034][   T40] audit: type=1400 audit(1757364995.660:603): avc:  denied  { bind } for  pid=21213 comm="syz.7.2508" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  232.482620][T21214] tipc: Started in network mode
[  232.488442][T21214] tipc: Node identity ac14140f, cluster identity 4711
[  232.491501][T21214] tipc: New replicast peer: 255.255.255.255
[  232.495366][T21214] tipc: Enabled bearer <udp:syz2>, priority 10
[  232.516867][ T6030] usb usb9-port1: unable to enumerate USB device
[  232.703541][ T6118] usb 11-1: new high-speed USB device number 3 using dummy_hcd
[  232.866222][ T6118] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  232.870747][T21230] hfs: can't find a HFS filesystem on dev sr0
[  232.875371][ T6118] usb 11-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  232.879121][ T6118] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.882425][ T6118] usb 11-1: Product: syz
[  232.884264][ T6118] usb 11-1: Manufacturer: syz
[  232.885784][ T6118] usb 11-1: SerialNumber: syz
[  232.889969][ T6118] usb 11-1: config 0 descriptor??
[  232.914147][   T40] audit: type=1400 audit(1757364996.100:604): avc:  denied  { execute } for  pid=21229 comm="syz.7.2512" path="/dev/ptmx" dev="devtmpfs" ino=3108 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=file permissive=1
[  233.063809][T21249] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  233.269277][T21275] overlayfs: failed to resolve './file1': -2
[  233.307679][ T6049] usb 11-1: USB disconnect, device number 3
[  233.625200][ T6030] tipc: Node number set to 2886997007
[  233.653604][   T40] audit: type=1400 audit(1757364996.830:605): avc:  denied  { execute } for  pid=21314 comm="syz.7.2523" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=69113 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  233.754042][T21338] overlayfs: failed to resolve './file0': -2
[  233.951072][   T40] audit: type=1400 audit(1757364997.130:606): avc:  denied  { mounton } for  pid=21361 comm="syz.7.2533" path="/30/file0/file1" dev="9p" ino=35913935 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  233.952552][T21362] tmpfs: Unknown parameter 'usrquota@'
[  233.969499][   T40] audit: type=1400 audit(1757364997.150:607): avc:  denied  { create } for  pid=21361 comm="syz.7.2533" name="net_prio.prioidx" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  233.977022][   T40] audit: type=1400 audit(1757364997.150:608): avc:  denied  { append } for  pid=21361 comm="syz.7.2533" path="/30/file0/net_prio.prioidx" dev="9p" ino=35913967 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  234.056655][ T5975] Bluetooth: hci0: unexpected subevent 0x0a length: 107 > 30
[  234.166708][   T40] audit: type=1400 audit(1757364997.350:609): avc:  denied  { create } for  pid=21382 comm="syz.7.2535" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  234.174605][ T6030] usb 11-1: new high-speed USB device number 4 using dummy_hcd
[  234.177344][   T40] audit: type=1400 audit(1757364997.350:610): avc:  denied  { write } for  pid=21382 comm="syz.7.2535" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  234.338930][T21400] overlayfs: failed to resolve './file0': -2
[  234.345276][ T6030] usb 11-1: Using ep0 maxpacket: 16
[  234.350234][ T6030] usb 11-1: config 8 has an invalid interface number: 194 but max is 2
[  234.354091][ T6030] usb 11-1: config 8 has an invalid interface number: 110 but max is 2
[  234.364069][ T6030] usb 11-1: config 8 has an invalid interface number: 145 but max is 2
[  234.368749][ T6030] usb 11-1: config 8 has no interface number 0
[  234.372119][ T6030] usb 11-1: config 8 has no interface number 1
[  234.387648][ T6030] usb 11-1: config 8 has no interface number 2
[  234.391302][ T6030] usb 11-1: config 8 interface 194 altsetting 5 endpoint 0x2 has invalid maxpacket 1024, setting to 64
[  234.392041][T21405] FAULT_INJECTION: forcing a failure.
[  234.392041][T21405] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  234.397721][ T6030] usb 11-1: config 8 interface 194 altsetting 5 endpoint 0xE has an invalid bInterval 36, changing to 9
[  234.402880][T21405] CPU: 3 UID: 0 PID: 21405 Comm: syz.7.2539 Not tainted syzkaller #0 PREEMPT(full) 
[  234.402900][T21405] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  234.402907][T21405] Call Trace:
[  234.402912][T21405]  <TASK>
[  234.402917][T21405]  dump_stack_lvl+0x16c/0x1f0
[  234.402945][T21405]  should_fail_ex+0x512/0x640
[  234.402984][T21405]  _copy_from_user+0x2e/0xd0
[  234.403005][T21405]  copy_msghdr_from_user+0x98/0x160
[  234.403023][T21405]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  234.403043][T21405]  ___sys_sendmsg+0xfe/0x1d0
[  234.403057][T21405]  ? __pfx____sys_sendmsg+0x10/0x10
[  234.403092][T21405]  __sys_sendmsg+0x16d/0x220
[  234.403106][T21405]  ? __pfx___sys_sendmsg+0x10/0x10
[  234.403131][T21405]  do_syscall_64+0xcd/0x4c0
[  234.403146][T21405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.403161][T21405] RIP: 0033:0x7f633af8ebe9
[  234.403170][T21405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.403180][T21405] RSP: 002b:00007f633bd95038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  234.403194][T21405] RAX: ffffffffffffffda RBX: 00007f633b1c5fa0 RCX: 00007f633af8ebe9
[  234.403201][T21405] RDX: 0000000000040040 RSI: 0000200000000300 RDI: 0000000000000005
[  234.403210][T21405] RBP: 00007f633bd95090 R08: 0000000000000000 R09: 0000000000000000
[  234.403216][T21405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  234.403222][T21405] R13: 00007f633b1c6038 R14: 00007f633b1c5fa0 R15: 00007fff9067f058
[  234.403236][T21405]  </TASK>
[  234.475953][ T6030] usb 11-1: config 8 interface 194 altsetting 5 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[  234.480189][ T6030] usb 11-1: config 8 interface 110 altsetting 8 endpoint 0xB has invalid maxpacket 608, setting to 64
[  234.484341][ T6030] usb 11-1: config 8 interface 110 altsetting 8 has a duplicate endpoint with address 0xE, skipping
[  234.488282][ T6030] usb 11-1: config 8 interface 110 altsetting 8 has an invalid descriptor for endpoint zero, skipping
[  234.492303][ T6030] usb 11-1: config 8 interface 110 altsetting 8 has an invalid descriptor for endpoint zero, skipping
[  234.496642][ T6030] usb 11-1: config 8 interface 110 altsetting 8 has a duplicate endpoint with address 0x7, skipping
[  234.500509][ T6030] usb 11-1: config 8 interface 110 altsetting 8 has a duplicate endpoint with address 0xB, skipping
[  234.505613][ T6030] usb 11-1: config 8 interface 110 altsetting 8 has a duplicate endpoint with address 0x7, skipping
[  234.510980][ T6030] usb 11-1: config 8 interface 110 altsetting 8 bulk endpoint 0xD has invalid maxpacket 8
[  234.516697][ T6030] usb 11-1: config 8 interface 145 altsetting 6 has a duplicate endpoint with address 0x9, skipping
[  234.520589][ T6030] usb 11-1: config 8 interface 145 altsetting 6 has a duplicate endpoint with address 0xD, skipping
[  234.524662][ T6030] usb 11-1: config 8 interface 145 altsetting 6 has an invalid descriptor for endpoint zero, skipping
[  234.528664][ T6030] usb 11-1: config 8 interface 194 has no altsetting 0
[  234.531294][ T6030] usb 11-1: config 8 interface 110 has no altsetting 0
[  234.534496][ T6030] usb 11-1: config 8 interface 145 has no altsetting 0
[  234.539604][ T6030] usb 11-1: New USB device found, idVendor=0403, idProduct=f9d5, bcdDevice=dc.30
[  234.544129][ T6030] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.547694][ T6030] usb 11-1: Product: syz
[  234.549421][ T6030] usb 11-1: Manufacturer: syz
[  234.551467][ T6030] usb 11-1: SerialNumber: syz
[  234.765694][   T40] audit: type=1400 audit(1757364997.940:611): avc:  denied  { accept } for  pid=21432 comm="syz.4.2545" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  234.788801][ T6030] ftdi_sio 11-1:8.194: FTDI USB Serial Device converter detected
[  234.792224][ T6030] ftdi_sio ttyUSB0: unknown device type: 0xdc30
[  234.801155][ T6030] ftdi_sio 11-1:8.110: FTDI USB Serial Device converter detected
[  234.801151][ T5975] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  234.806611][ T6030] ftdi_sio ttyUSB1: unknown device type: 0xdc30
[  234.809276][ T5975] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  234.812922][ T5975] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  234.813535][ T6030] ftdi_sio 11-1:8.145: FTDI USB Serial Device converter detected
[  234.817437][ T5975] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  234.818980][ T6030] ftdi_sio ttyUSB2: unknown device type: 0xdc30
[  234.821826][ T5975] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  234.824080][   T40] audit: type=1400 audit(1757364998.000:612): avc:  denied  { map } for  pid=21432 comm="syz.4.2545" path="socket:[68375]" dev="sockfs" ino=68375 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  234.838280][ T6030] usb 11-1: USB disconnect, device number 4
[  234.847718][ T6030] ftdi_sio 11-1:8.194: device disconnected
[  234.856963][ T6030] ftdi_sio 11-1:8.110: device disconnected
[  234.865389][ T6030] ftdi_sio 11-1:8.145: device disconnected
[  234.878657][T21479] overlayfs: failed to resolve './file0': -2
[  235.000996][T21444] chnl_net:caif_netlink_parms(): no params data found
[  235.137603][T21444] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.140739][T21444] bridge0: port 1(bridge_slave_0) entered disabled state
[  235.145744][T21444] bridge_slave_0: entered allmulticast mode
[  235.149022][T21444] bridge_slave_0: entered promiscuous mode
[  235.152372][T21444] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.156850][T21444] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.159948][T21444] bridge_slave_1: entered allmulticast mode
[  235.163824][T21444] bridge_slave_1: entered promiscuous mode
[  235.221084][T21444] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  235.231108][T21444] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  235.276869][T21444] team0: Port device team_slave_0 added
[  235.280130][T21444] team0: Port device team_slave_1 added
[  235.391292][T21444] batman_adv: batadv0: Adding interface: batadv_slave_0
[  235.394656][T21444] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.406013][T21444] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  235.412138][T21444] batman_adv: batadv0: Adding interface: batadv_slave_1
[  235.416367][T21444] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.427992][T21444] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  235.560390][T22274] __nla_validate_parse: 61 callbacks suppressed
[  235.560412][T22274] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2556'.
[  235.589983][T21444] hsr_slave_0: entered promiscuous mode
[  235.596580][T21444] hsr_slave_1: entered promiscuous mode
[  235.599871][T21444] debugfs: 'hsr0' already exists in 'hsr'
[  235.602488][T21444] Cannot create hsr debugfs directory
[  235.652646][T22274] autofs: Unknown parameter '0'
[  235.697213][T22312] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2557'.
[  235.700625][T22312] Unsupported xt match
[  235.700632][T22312] unable to load match
[  235.960314][T21444] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  235.975386][T21444] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  235.986824][T21444] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  236.006221][T21444] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  236.116877][T22569] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2565'.
[  236.130751][T22573] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2566'.
[  236.150486][T22573] netlink: 'syz.4.2566': attribute type 83 has an invalid length.
[  236.157163][T22575] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2567'.
[  236.172463][T22575] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2567'.
[  236.229413][T21444] 8021q: adding VLAN 0 to HW filter on device bond0
[  236.264379][T21444] 8021q: adding VLAN 0 to HW filter on device team0
[  236.281336][ T1179] bridge0: port 1(bridge_slave_0) entered blocking state
[  236.284396][ T1179] bridge0: port 1(bridge_slave_0) entered forwarding state
[  236.300330][   T69] bridge0: port 2(bridge_slave_1) entered blocking state
[  236.303575][   T69] bridge0: port 2(bridge_slave_1) entered forwarding state
[  236.321330][T22598] binder: 22597:22598 ioctl c0306201 200000000080 returned -22
[  236.476075][T21444] 8021q: adding VLAN 0 to HW filter on device batadv0
[  236.692920][T21444] veth0_vlan: entered promiscuous mode
[  236.700493][T21444] veth1_vlan: entered promiscuous mode
[  236.727521][T21444] veth0_macvtap: entered promiscuous mode
[  236.737376][T21444] veth1_macvtap: entered promiscuous mode
[  236.747468][T21444] batman_adv: batadv0: Interface activated: batadv_slave_0
[  236.752379][T21444] batman_adv: batadv0: Interface activated: batadv_slave_1
[  236.761068][ T1146] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  236.771854][ T1146] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  236.781874][ T1146] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  236.787242][ T1146] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  236.860004][ T1179] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  236.866438][ T1179] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  236.894159][ T1179] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  236.898068][ T1179] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  236.917280][ T5975] Bluetooth: hci3: command tx timeout
[  237.015301][T22669] netlink: 'syz.6.2577': attribute type 1 has an invalid length.
[  237.017452][T22670] overlayfs: failed to resolve './file1': -2
[  237.022891][T22664] netlink: 32 bytes leftover after parsing attributes in process `syz.8.2544'.
[  237.051079][T22669] 8021q: adding VLAN 0 to HW filter on device bond1
[  237.056677][T22669] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2577'.
[  237.112986][T22774] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2577'.
[  237.114338][T22669] veth3: entered promiscuous mode
[  237.149811][T22774] veth5: entered promiscuous mode
[  237.161819][T22669] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2577'.
[  237.203860][T22669] veth7: entered promiscuous mode
[  237.264586][T22915] ALSA: seq fatal error: cannot create timer (-22)
[  237.286299][T22921] macvlan2: entered promiscuous mode
[  237.288637][T22921] macvlan2: entered allmulticast mode
[  237.291685][T22921] veth1_vlan: entered allmulticast mode
[  237.293574][T17894] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  237.299777][T22921] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[  237.423596][T17894] usb 9-1: device descriptor read/64, error -71
[  237.663601][T17894] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  237.796499][T17894] usb 9-1: device descriptor read/64, error -71
[  237.876309][T22990] netlink: 'syz.7.2596': attribute type 10 has an invalid length.
[  237.881034][T22990] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  237.904638][T17894] usb usb9-port1: attempt power cycle
[  238.075689][T23018] binder: 23015:23018 ioctl 4018620d 0 returned -22
[  238.115586][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  238.115601][   T40] audit: type=1400 audit(1757365001.300:617): avc:  denied  { getopt } for  pid=23028 comm="syz.7.2604" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  238.254291][T17894] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  238.280833][T17894] usb 9-1: device descriptor read/8, error -71
[  238.299205][T23053] 8021q: adding VLAN 0 to HW filter on device bond2
[  238.335200][T23099] binder: 23098:23099 ioctl 4018620d 0 returned -22
[  238.369821][T23108] netlink: 'syz.8.2614': attribute type 1 has an invalid length.
[  238.382856][T23109] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  238.388727][T23106] batman_adv: batadv0: Adding interface: gretap1
[  238.393386][T23106] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[  238.462760][T23163] Invalid logical block size (-5)
[  238.546531][T17894] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  238.564273][T17894] usb 9-1: device descriptor read/8, error -71
[  238.673872][T17894] usb usb9-port1: unable to enumerate USB device
[  238.980437][T23194] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  238.984364][ T5975] Bluetooth: hci3: command tx timeout
[  238.986722][T23194] block device autoloading is deprecated and will be removed.
[  239.102259][   T40] audit: type=1400 audit(1757365002.280:618): avc:  denied  { watch } for  pid=23217 comm="syz.6.2629" path="/62/file0" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=dir permissive=1
[  239.136885][T23224] FAULT_INJECTION: forcing a failure.
[  239.136885][T23224] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  239.142247][T23224] CPU: 3 UID: 0 PID: 23224 Comm: syz.6.2630 Not tainted syzkaller #0 PREEMPT(full) 
[  239.142262][T23224] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  239.142268][T23224] Call Trace:
[  239.142273][T23224]  <TASK>
[  239.142277][T23224]  dump_stack_lvl+0x16c/0x1f0
[  239.142296][T23224]  should_fail_ex+0x512/0x640
[  239.142312][T23224]  _copy_to_user+0x32/0xd0
[  239.142328][T23224]  simple_read_from_buffer+0xcb/0x170
[  239.142368][T23224]  proc_fail_nth_read+0x197/0x240
[  239.142382][T23224]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  239.142394][T23224]  ? rw_verify_area+0xcf/0x6c0
[  239.142410][T23224]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  239.142422][T23224]  vfs_read+0x1e1/0xcf0
[  239.142433][T23224]  ? __pfx___mutex_lock+0x10/0x10
[  239.142447][T23224]  ? __pfx_vfs_read+0x10/0x10
[  239.142461][T23224]  ? __fget_files+0x20e/0x3c0
[  239.142476][T23224]  ksys_read+0x12a/0x250
[  239.142486][T23224]  ? __pfx_ksys_read+0x10/0x10
[  239.142500][T23224]  do_syscall_64+0xcd/0x4c0
[  239.142514][T23224]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.142525][T23224] RIP: 0033:0x7fcd6fb8d5fc
[  239.142534][T23224] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  239.142544][T23224] RSP: 002b:00007fcd70920030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  239.142553][T23224] RAX: ffffffffffffffda RBX: 00007fcd6fdc5fa0 RCX: 00007fcd6fb8d5fc
[  239.142560][T23224] RDX: 000000000000000f RSI: 00007fcd709200a0 RDI: 0000000000000008
[  239.142565][T23224] RBP: 00007fcd70920090 R08: 0000000000000000 R09: 0000000000000000
[  239.142571][T23224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  239.142577][T23224] R13: 00007fcd6fdc6038 R14: 00007fcd6fdc5fa0 R15: 00007ffe0b0b1b38
[  239.142589][T23224]  </TASK>
[  239.432119][   T40] audit: type=1400 audit(1757365002.610:619): avc:  denied  { write } for  pid=23285 comm="syz.6.2636" name="usbmon8" dev="devtmpfs" ino=762 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  239.448735][   T40] audit: type=1400 audit(1757365002.630:620): avc:  denied  { ioctl } for  pid=23246 comm="syz.8.2634" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1294 ioctlcmd=0x9422 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  239.875468][   T40] audit: type=1326 audit(1757365003.060:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23208 comm="syz.7.2626" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f633af8ebe9 code=0x7fc00000
[  239.886996][   T40] audit: type=1326 audit(1757365003.060:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23208 comm="syz.7.2626" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f633af8ebe9 code=0x7fc00000
[  239.897005][   T40] audit: type=1326 audit(1757365003.060:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23208 comm="syz.7.2626" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f633af8ebe9 code=0x7fc00000
[  240.166388][   T40] audit: type=1400 audit(1757365003.350:624): avc:  denied  { setopt } for  pid=23345 comm="syz.7.2644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  240.222978][   T40] audit: type=1400 audit(1757365003.400:625): avc:  denied  { getopt } for  pid=23351 comm="syz.7.2645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  240.247472][   T40] audit: type=1400 audit(1757365003.430:626): avc:  denied  { mounton } for  pid=23353 comm="syz.8.2646" path="/proc/32/cgroup" dev="proc" ino=73882 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[  240.266507][T23359] /dev/sg0: Can't lookup blockdev
[  240.271167][T23359] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[  240.479309][T23382] netlink: 'syz.4.2653': attribute type 10 has an invalid length.
[  240.524585][T23382] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  240.661801][T23442] __nla_validate_parse: 9 callbacks suppressed
[  240.661812][T23442] netlink: 16 bytes leftover after parsing attributes in process `syz.7.2668'.
[  240.679394][T23437] block device autoloading is deprecated and will be removed.
[  240.682088][T23442] IPv6: NLM_F_CREATE should be specified when creating new route
[  240.757874][T23461] netlink: 'syz.6.2671': attribute type 1 has an invalid length.
[  240.786157][T23458] dlm: plock device version mismatch: kernel (1.2.0), user (4207687471.1574799195.3139252685)
[  240.949220][T23488] program syz.4.2677 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  241.000826][T23489] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2677'.
[  241.055138][T23524] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2680'.
[  241.059023][T23524] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2680'.
[  241.062724][T23524] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2680'.
[  241.069088][T23524] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2680'.
[  241.073866][ T5975] Bluetooth: hci3: command tx timeout
[  241.109959][T23568] syzkaller1: entered promiscuous mode
[  241.111811][T23568] syzkaller1: entered allmulticast mode
[  241.114746][T23568] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 40
[  241.435358][    C3] vcan0: j1939_tp_rxtimer: 0xffff888026f5a400: rx timeout, send abort
[  241.621304][T23632] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2694'.
[  241.624636][T23632] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2694'.
[  241.627233][T23632] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  241.629958][T23632] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  241.654701][T23635] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1015 sclass=netlink_route_socket pid=23635 comm=syz.8.2695
[  241.914686][T23665] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2701'.
[  241.917991][T23665] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  241.935397][    C3] vcan0: j1939_tp_rxtimer: 0xffff888026f5ac00: rx timeout, send abort
[  241.939115][    C3] vcan0: j1939_tp_rxtimer: 0xffff888026f5a400: abort rx timeout. Force session deactivation
[  241.968954][T23669] smc: net device bond0 applied user defined pnetid SYZ2
[  241.971382][T23669] netlink: 14 bytes leftover after parsing attributes in process `syz.4.2702'.
[  242.056477][T23669] smc: removing net device bond0 with user defined pnetid SYZ2
[  242.060837][T23669] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  242.066968][T23669] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  242.071233][T23669] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  242.076345][T23669] bond0 (unregistering): (slave netdevsim0): Releasing backup interface
[  242.080529][T23669] bond0 (unregistering): Released all slaves
[  242.361312][T23749] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0
[  242.397493][T23752] FAULT_INJECTION: forcing a failure.
[  242.397493][T23752] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  242.401768][T23752] CPU: 1 UID: 0 PID: 23752 Comm: syz.4.2713 Not tainted syzkaller #0 PREEMPT(full) 
[  242.401781][T23752] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  242.401788][T23752] Call Trace:
[  242.401792][T23752]  <TASK>
[  242.401796][T23752]  dump_stack_lvl+0x16c/0x1f0
[  242.401813][T23752]  should_fail_ex+0x512/0x640
[  242.401828][T23752]  _copy_to_user+0x32/0xd0
[  242.401845][T23752]  __sys_bpf+0x289f/0x4de0
[  242.401861][T23752]  ? __pfx___sys_bpf+0x10/0x10
[  242.401874][T23752]  ? ksys_write+0x190/0x250
[  242.401887][T23752]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  242.401909][T23752]  ? fput+0x9b/0xd0
[  242.401923][T23752]  ? ksys_write+0x1ac/0x250
[  242.401932][T23752]  ? __pfx_ksys_write+0x10/0x10
[  242.401945][T23752]  __x64_sys_bpf+0x78/0xc0
[  242.401958][T23752]  ? lockdep_hardirqs_on+0x7c/0x110
[  242.401970][T23752]  do_syscall_64+0xcd/0x4c0
[  242.401985][T23752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.401995][T23752] RIP: 0033:0x7f44c918ebe9
[  242.402004][T23752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  242.402014][T23752] RSP: 002b:00007f44ca0c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  242.402024][T23752] RAX: ffffffffffffffda RBX: 00007f44c93c5fa0 RCX: 00007f44c918ebe9
[  242.402030][T23752] RDX: 0000000000000020 RSI: 00002000000001c0 RDI: 0000000000000001
[  242.402036][T23752] RBP: 00007f44ca0c7090 R08: 0000000000000000 R09: 0000000000000000
[  242.402042][T23752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  242.402048][T23752] R13: 00007f44c93c6038 R14: 00007f44c93c5fa0 R15: 00007ffcfbde2c78
[  242.402060][T23752]  </TASK>
[  242.438717][    C3] vcan0: j1939_tp_rxtimer: 0xffff888026f5ac00: abort rx timeout. Force session deactivation
[  242.604000][    C3] vcan0: j1939_tp_rxtimer: 0xffff88804a3b8000: rx timeout, send abort
[  242.657979][T23789] FAULT_INJECTION: forcing a failure.
[  242.657979][T23789] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  242.662385][T23789] CPU: 3 UID: 0 PID: 23789 Comm: syz.4.2723 Not tainted syzkaller #0 PREEMPT(full) 
[  242.662400][T23789] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  242.662406][T23789] Call Trace:
[  242.662410][T23789]  <TASK>
[  242.662414][T23789]  dump_stack_lvl+0x16c/0x1f0
[  242.662432][T23789]  should_fail_ex+0x512/0x640
[  242.662447][T23789]  _copy_to_user+0x32/0xd0
[  242.662464][T23789]  simple_read_from_buffer+0xcb/0x170
[  242.662476][T23789]  proc_fail_nth_read+0x197/0x240
[  242.662489][T23789]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  242.662502][T23789]  ? rw_verify_area+0xcf/0x6c0
[  242.662518][T23789]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  242.662529][T23789]  vfs_read+0x1e1/0xcf0
[  242.662542][T23789]  ? __pfx___mutex_lock+0x10/0x10
[  242.662556][T23789]  ? __pfx_vfs_read+0x10/0x10
[  242.662570][T23789]  ? __fget_files+0x20e/0x3c0
[  242.662585][T23789]  ksys_read+0x12a/0x250
[  242.662595][T23789]  ? __pfx_ksys_read+0x10/0x10
[  242.662610][T23789]  do_syscall_64+0xcd/0x4c0
[  242.662625][T23789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.662641][T23789] RIP: 0033:0x7f44c918d5fc
[  242.662655][T23789] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  242.662672][T23789] RSP: 002b:00007f44ca0c7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  242.662688][T23789] RAX: ffffffffffffffda RBX: 00007f44c93c5fa0 RCX: 00007f44c918d5fc
[  242.662699][T23789] RDX: 000000000000000f RSI: 00007f44ca0c70a0 RDI: 0000000000000004
[  242.662708][T23789] RBP: 00007f44ca0c7090 R08: 0000000000000000 R09: 0000000000000000
[  242.662718][T23789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  242.662728][T23789] R13: 00007f44c93c6038 R14: 00007f44c93c5fa0 R15: 00007ffcfbde2c78
[  242.662753][T23789]  </TASK>
[  242.780914][T23806] omfs: Invalid superblock (0)
[  243.104011][    C3] vcan0: j1939_tp_rxtimer: 0xffff888052f3fc00: rx timeout, send abort
[  243.107448][    C3] vcan0: j1939_tp_rxtimer: 0xffff88804a3b8000: abort rx timeout. Force session deactivation
[  243.153580][ T5975] Bluetooth: hci3: command tx timeout
[  243.201496][T23875] overlayfs: missing 'lowerdir'
[  243.287129][T23883] netlink: 'syz.6.2748': attribute type 1 has an invalid length.
[  243.289934][T23883] netlink: 'syz.6.2748': attribute type 1 has an invalid length.
[  243.350438][T23899] loop6: detected capacity change from 0 to 2560
[  243.350701][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  243.350715][   T40] audit: type=1400 audit(1757365006.530:637): avc:  denied  { bind } for  pid=23898 comm="syz.6.2751" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  243.354581][T23899] buffer_io_error: 10 callbacks suppressed
[  243.354594][T23899] Buffer I/O error on dev loop6, logical block 0, async page read
[  243.365451][T23899] Buffer I/O error on dev loop6, logical block 0, async page read
[  243.367770][T23899] Buffer I/O error on dev loop6, logical block 0, async page read
[  243.370063][T23899] Buffer I/O error on dev loop6, logical block 0, async page read
[  243.372315][T23899] Buffer I/O error on dev loop6, logical block 0, async page read
[  243.375035][T23899] Buffer I/O error on dev loop6, logical block 0, async page read
[  243.378038][T23899] Buffer I/O error on dev loop6, logical block 0, async page read
[  243.380538][T23899] Buffer I/O error on dev loop6, logical block 0, async page read
[  243.382763][T23899] ldm_validate_partition_table(): Disk read failed.
[  243.384806][T23899] Buffer I/O error on dev loop6, logical block 0, async page read
[  243.387668][T23899] Buffer I/O error on dev loop6, logical block 0, async page read
[  243.390359][T23899] Dev loop6: unable to read RDB block 0
[  243.392306][T23899]  loop6: unable to read partition table
[  243.394910][T23899] loop_reread_partitions: partition scan of loop6 (3�����) failed (rc=-5)
[  243.402529][T23899] ldm_validate_partition_table(): Disk read failed.
[  243.405581][T23899] Dev loop6: unable to read RDB block 0
[  243.408178][T23899]  loop6: unable to read partition table
[  243.453070][T23911] netlink: 'syz.7.2755': attribute type 5 has an invalid length.
[  243.472929][T23911] block nbd7: Attempted send on invalid socket
[  243.479063][T23911] I/O error, dev nbd7, sector 128 op 0x0:(READ) flags 0x1800 phys_seg 1 prio class 2
[  243.482842][T23911] gfs2: error -5 reading superblock
[  243.569800][T23917] lo speed is unknown, defaulting to 1000
[  243.576298][T23917] lo speed is unknown, defaulting to 1000
[  243.584349][T23937] bridge1: entered promiscuous mode
[  243.586128][T23937] bridge1: entered allmulticast mode
[  243.589339][T23917] lo speed is unknown, defaulting to 1000
[  243.607377][    C3] vcan0: j1939_tp_rxtimer: 0xffff888052f3fc00: abort rx timeout. Force session deactivation
[  243.713274][T23917] infiniband syz0: set active
[  243.717270][T23917] infiniband syz0: added lo
[  243.721311][   T53] lo speed is unknown, defaulting to 1000
[  243.752926][   T40] audit: type=1326 audit(1757365006.930:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23955 comm="syz.7.2765" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f633af8ebe9 code=0x0
[  243.767935][T23917] RDS/IB: syz0: added
[  243.770164][T23917] smc: adding ib device syz0 with port count 1
[  243.773014][T23917] smc:    ib device syz0 port 1 has pnetid 
[  243.778454][T23962] binder: 23961:23962 ioctl c0306201 200000000080 returned -22
[  243.780470][T23917] lo speed is unknown, defaulting to 1000
[  243.785097][T17894] lo speed is unknown, defaulting to 1000
[  243.947291][T23917] lo speed is unknown, defaulting to 1000
[  244.055634][T23917] lo speed is unknown, defaulting to 1000
[  244.182795][T23917] lo speed is unknown, defaulting to 1000
[  244.235263][T23990] usb usb4: usbfs: interface 0 claimed by hub while 'syz.8.2769' sets config #1
[  244.278400][T23990] mac80211_hwsim hwsim26 wlan1: entered allmulticast mode
[  244.286524][T23990] netlink: 'syz.8.2769': attribute type 10 has an invalid length.
[  244.289580][T23990] mac80211_hwsim hwsim26 wlan1: left allmulticast mode
[  244.292801][T23917] lo speed is unknown, defaulting to 1000
[  244.390922][T23917] lo speed is unknown, defaulting to 1000
[  244.467450][   T40] audit: type=1400 audit(1757365007.650:639): avc:  denied  { listen } for  pid=23997 comm="syz.8.2771" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  244.545808][T24006] netlink: 'syz.4.2772': attribute type 1 has an invalid length.
[  244.631594][   T40] audit: type=1400 audit(1757365007.810:640): avc:  denied  { unmount } for  pid=14062 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  244.724149][ T6945] usb 13-1: new low-speed USB device number 2 using dummy_hcd
[  244.890106][ T6945] usb 13-1: config 125 has an invalid interface number: 54 but max is 0
[  244.893761][ T6945] usb 13-1: config 125 has no interface number 0
[  244.896563][ T6945] usb 13-1: config 125 interface 54 altsetting 9 has an invalid descriptor for endpoint zero, skipping
[  244.901186][ T6945] usb 13-1: config 125 interface 54 altsetting 9 has an invalid descriptor for endpoint zero, skipping
[  244.911733][ T6945] usb 13-1: config 125 interface 54 altsetting 9 endpoint 0x1 has invalid maxpacket 16, setting to 8
[  244.918694][ T6945] usb 13-1: config 125 interface 54 altsetting 9 endpoint 0x2 has invalid maxpacket 32, setting to 8
[  244.923292][ T6945] usb 13-1: config 125 interface 54 altsetting 9 endpoint 0x7 has invalid maxpacket 64, setting to 8
[  244.928282][ T6945] usb 13-1: config 125 interface 54 altsetting 9 has 6 endpoint descriptors, different from the interface descriptor's value: 15
[  244.940800][ T6945] usb 13-1: config 125 interface 54 has no altsetting 0
[  244.977714][T24055] FAULT_INJECTION: forcing a failure.
[  244.977714][T24055] name failslab, interval 1, probability 0, space 0, times 0
[  244.981781][T24055] CPU: 0 UID: 0 PID: 24055 Comm: syz.7.2786 Not tainted syzkaller #0 PREEMPT(full) 
[  244.981796][T24055] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  244.981803][T24055] Call Trace:
[  244.981808][T24055]  <TASK>
[  244.981812][T24055]  dump_stack_lvl+0x16c/0x1f0
[  244.981846][T24055]  should_fail_ex+0x512/0x640
[  244.981864][T24055]  ? fs_reclaim_acquire+0xae/0x150
[  244.981879][T24055]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  244.981896][T24055]  should_failslab+0xc2/0x120
[  244.981908][T24055]  __kmalloc_noprof+0xd2/0x510
[  244.981922][T24055]  tomoyo_realpath_from_path+0xc2/0x6e0
[  244.981939][T24055]  ? tomoyo_profile+0x47/0x60
[  244.981951][T24055]  tomoyo_path_number_perm+0x245/0x580
[  244.981964][T24055]  ? tomoyo_path_number_perm+0x237/0x580
[  244.981978][T24055]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  244.981993][T24055]  ? find_held_lock+0x2b/0x80
[  244.982017][T24055]  ? find_held_lock+0x2b/0x80
[  244.982029][T24055]  ? hook_file_ioctl_common+0x145/0x410
[  244.982044][T24055]  ? __fget_files+0x20e/0x3c0
[  244.982058][T24055]  security_file_ioctl+0x9b/0x240
[  244.982074][T24055]  __x64_sys_ioctl+0xb7/0x210
[  244.982092][T24055]  do_syscall_64+0xcd/0x4c0
[  244.982110][T24055]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.982121][T24055] RIP: 0033:0x7f633af8ebe9
[  244.982130][T24055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.982140][T24055] RSP: 002b:00007f633bd95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  244.982151][T24055] RAX: ffffffffffffffda RBX: 00007f633b1c5fa0 RCX: 00007f633af8ebe9
[  244.982157][T24055] RDX: 00002000000004c0 RSI: 00000000c0306201 RDI: 0000000000000003
[  244.982164][T24055] RBP: 00007f633bd95090 R08: 0000000000000000 R09: 0000000000000000
[  244.982170][T24055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  244.982176][T24055] R13: 00007f633b1c6038 R14: 00007f633b1c5fa0 R15: 00007fff9067f058
[  244.982189][T24055]  </TASK>
[  244.982194][T24055] ERROR: Out of memory at tomoyo_realpath_from_path.
[  245.163529][   T40] audit: type=1400 audit(1757365008.340:641): avc:  denied  { firmware_load } for  pid=24052 comm="syz.4.2785" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[  245.290524][T24077] FAULT_INJECTION: forcing a failure.
[  245.290524][T24077] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  245.295093][T24077] CPU: 0 UID: 0 PID: 24077 Comm: syz.4.2791 Not tainted syzkaller #0 PREEMPT(full) 
[  245.295108][T24077] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  245.295115][T24077] Call Trace:
[  245.295119][T24077]  <TASK>
[  245.295134][T24077]  dump_stack_lvl+0x16c/0x1f0
[  245.295153][T24077]  should_fail_ex+0x512/0x640
[  245.295169][T24077]  _copy_from_user+0x2e/0xd0
[  245.295184][T24077]  copy_msghdr_from_user+0x98/0x160
[  245.295198][T24077]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  245.295218][T24077]  ___sys_sendmsg+0xfe/0x1d0
[  245.295232][T24077]  ? __pfx____sys_sendmsg+0x10/0x10
[  245.295261][T24077]  __sys_sendmsg+0x16d/0x220
[  245.295274][T24077]  ? __pfx___sys_sendmsg+0x10/0x10
[  245.295296][T24077]  do_syscall_64+0xcd/0x4c0
[  245.295311][T24077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.295322][T24077] RIP: 0033:0x7f44c918ebe9
[  245.295331][T24077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.295341][T24077] RSP: 002b:00007f44ca0c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  245.295352][T24077] RAX: ffffffffffffffda RBX: 00007f44c93c5fa0 RCX: 00007f44c918ebe9
[  245.295358][T24077] RDX: 0000000020000050 RSI: 00002000000002c0 RDI: 0000000000000003
[  245.295365][T24077] RBP: 00007f44ca0c7090 R08: 0000000000000000 R09: 0000000000000000
[  245.295371][T24077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  245.295377][T24077] R13: 00007f44c93c6038 R14: 00007f44c93c5fa0 R15: 00007ffcfbde2c78
[  245.295390][T24077]  </TASK>
[  245.401639][T24095] netlink: 'syz.4.2795': attribute type 1 has an invalid length.
[  245.420007][T24101] FAULT_INJECTION: forcing a failure.
[  245.420007][T24101] name failslab, interval 1, probability 0, space 0, times 0
[  245.424295][T24101] CPU: 1 UID: 0 PID: 24101 Comm: syz.7.2796 Not tainted syzkaller #0 PREEMPT(full) 
[  245.424311][T24101] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  245.424317][T24101] Call Trace:
[  245.424321][T24101]  <TASK>
[  245.424326][T24101]  dump_stack_lvl+0x16c/0x1f0
[  245.424344][T24101]  should_fail_ex+0x512/0x640
[  245.424358][T24101]  ? fs_reclaim_acquire+0xae/0x150
[  245.424374][T24101]  ? tomoyo_encode2+0x100/0x3e0
[  245.424389][T24101]  should_failslab+0xc2/0x120
[  245.424401][T24101]  __kmalloc_noprof+0xd2/0x510
[  245.424412][T24101]  ? d_absolute_path+0x136/0x1a0
[  245.424430][T24101]  tomoyo_encode2+0x100/0x3e0
[  245.424447][T24101]  tomoyo_encode+0x29/0x50
[  245.424461][T24101]  tomoyo_realpath_from_path+0x18f/0x6e0
[  245.424480][T24101]  tomoyo_path_number_perm+0x245/0x580
[  245.424493][T24101]  ? tomoyo_path_number_perm+0x237/0x580
[  245.424508][T24101]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  245.424522][T24101]  ? find_held_lock+0x2b/0x80
[  245.424547][T24101]  ? find_held_lock+0x2b/0x80
[  245.424559][T24101]  ? hook_file_ioctl_common+0x145/0x410
[  245.424573][T24101]  ? __fget_files+0x20e/0x3c0
[  245.424587][T24101]  security_file_ioctl+0x9b/0x240
[  245.424603][T24101]  __x64_sys_ioctl+0xb7/0x210
[  245.424620][T24101]  do_syscall_64+0xcd/0x4c0
[  245.424635][T24101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.424646][T24101] RIP: 0033:0x7f633af8ebe9
[  245.424655][T24101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.424665][T24101] RSP: 002b:00007f633bd95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  245.424676][T24101] RAX: ffffffffffffffda RBX: 00007f633b1c5fa0 RCX: 00007f633af8ebe9
[  245.424689][T24101] RDX: 00002000000004c0 RSI: 00000000c0306201 RDI: 0000000000000003
[  245.424695][T24101] RBP: 00007f633bd95090 R08: 0000000000000000 R09: 0000000000000000
[  245.424702][T24101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  245.424708][T24101] R13: 00007f633b1c6038 R14: 00007f633b1c5fa0 R15: 00007fff9067f058
[  245.424721][T24101]  </TASK>
[  245.424731][T24101] ERROR: Out of memory at tomoyo_realpath_from_path.
[  245.519212][   T40] audit: type=1400 audit(1757365008.690:642): avc:  denied  { map } for  pid=24108 comm="syz.4.2798" path="/158/file0/hugetlb.1GB.usage_in_bytes" dev="9p" ino=35913993 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  245.535278][T24115] ./cgroup: Can't lookup blockdev
[  245.537159][   T40] audit: type=1400 audit(1757365008.690:643): avc:  denied  { write } for  pid=24108 comm="syz.4.2798" path="/158/file0/hugetlb.1GB.usage_in_bytes" dev="9p" ino=35913993 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  245.560495][T24121] 9pnet_virtio: no channels available for device syz
[  245.681083][T24132] FAULT_INJECTION: forcing a failure.
[  245.681083][T24132] name failslab, interval 1, probability 0, space 0, times 0
[  245.685333][T24132] CPU: 2 UID: 0 PID: 24132 Comm: syz.7.2803 Not tainted syzkaller #0 PREEMPT(full) 
[  245.685348][T24132] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  245.685354][T24132] Call Trace:
[  245.685358][T24132]  <TASK>
[  245.685363][T24132]  dump_stack_lvl+0x16c/0x1f0
[  245.685380][T24132]  should_fail_ex+0x512/0x640
[  245.685394][T24132]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  245.685407][T24132]  should_failslab+0xc2/0x120
[  245.685420][T24132]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  245.685430][T24132]  ? __alloc_skb+0x2b2/0x380
[  245.685445][T24132]  __alloc_skb+0x2b2/0x380
[  245.685456][T24132]  ? __pfx___alloc_skb+0x10/0x10
[  245.685470][T24132]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  245.685486][T24132]  netlink_alloc_large_skb+0x69/0x130
[  245.685500][T24132]  netlink_sendmsg+0x6a1/0xdd0
[  245.685516][T24132]  ? __pfx_netlink_sendmsg+0x10/0x10
[  245.685535][T24132]  ____sys_sendmsg+0xa98/0xc70
[  245.685551][T24132]  ? copy_msghdr_from_user+0x10a/0x160
[  245.685564][T24132]  ? __pfx_____sys_sendmsg+0x10/0x10
[  245.685585][T24132]  ___sys_sendmsg+0x134/0x1d0
[  245.685598][T24132]  ? __pfx____sys_sendmsg+0x10/0x10
[  245.685626][T24132]  __sys_sendmsg+0x16d/0x220
[  245.685639][T24132]  ? __pfx___sys_sendmsg+0x10/0x10
[  245.685661][T24132]  do_syscall_64+0xcd/0x4c0
[  245.685675][T24132]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.685686][T24132] RIP: 0033:0x7f633af8ebe9
[  245.685695][T24132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.685705][T24132] RSP: 002b:00007f633bd95038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  245.685721][T24132] RAX: ffffffffffffffda RBX: 00007f633b1c5fa0 RCX: 00007f633af8ebe9
[  245.685727][T24132] RDX: 0000000020000050 RSI: 00002000000002c0 RDI: 0000000000000003
[  245.685734][T24132] RBP: 00007f633bd95090 R08: 0000000000000000 R09: 0000000000000000
[  245.685740][T24132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  245.685746][T24132] R13: 00007f633b1c6038 R14: 00007f633b1c5fa0 R15: 00007fff9067f058
[  245.685759][T24132]  </TASK>
[  245.818725][T24161] FAULT_INJECTION: forcing a failure.
[  245.818725][T24161] name failslab, interval 1, probability 0, space 0, times 0
[  245.822816][T24161] CPU: 3 UID: 0 PID: 24161 Comm: syz.7.2808 Not tainted syzkaller #0 PREEMPT(full) 
[  245.822836][T24161] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  245.822846][T24161] Call Trace:
[  245.822853][T24161]  <TASK>
[  245.822859][T24161]  dump_stack_lvl+0x16c/0x1f0
[  245.822885][T24161]  should_fail_ex+0x512/0x640
[  245.822905][T24161]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  245.822947][T24161]  should_failslab+0xc2/0x120
[  245.822968][T24161]  __kmalloc_cache_noprof+0x6a/0x3e0
[  245.822992][T24161]  ? binder_get_thread+0x1eb/0x8c0
[  245.823015][T24161]  ? binder_get_thread+0x225/0x8c0
[  245.823040][T24161]  binder_get_thread+0x225/0x8c0
[  245.823055][T24161]  ? rcu_is_watching+0x12/0xc0
[  245.823070][T24161]  binder_ioctl+0x20f/0x71f0
[  245.823091][T24161]  ? tomoyo_path_number_perm+0x18d/0x580
[  245.823108][T24161]  ? lock_acquire+0x179/0x350
[  245.823124][T24161]  ? __pfx_binder_ioctl+0x10/0x10
[  245.823141][T24161]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  245.823155][T24161]  ? do_vfs_ioctl+0x128/0x14f0
[  245.823171][T24161]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  245.823186][T24161]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  245.823211][T24161]  ? hook_file_ioctl_common+0x145/0x410
[  245.823234][T24161]  ? selinux_file_ioctl+0x180/0x270
[  245.823257][T24161]  ? selinux_file_ioctl+0xb4/0x270
[  245.823282][T24161]  ? __pfx_binder_ioctl+0x10/0x10
[  245.823309][T24161]  __x64_sys_ioctl+0x18b/0x210
[  245.823332][T24161]  do_syscall_64+0xcd/0x4c0
[  245.823347][T24161]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.823358][T24161] RIP: 0033:0x7f633af8ebe9
[  245.823367][T24161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.823377][T24161] RSP: 002b:00007f633bd95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  245.823388][T24161] RAX: ffffffffffffffda RBX: 00007f633b1c5fa0 RCX: 00007f633af8ebe9
[  245.823395][T24161] RDX: 00002000000004c0 RSI: 00000000c0306201 RDI: 0000000000000003
[  245.823401][T24161] RBP: 00007f633bd95090 R08: 0000000000000000 R09: 0000000000000000
[  245.823407][T24161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  245.823413][T24161] R13: 00007f633b1c6038 R14: 00007f633b1c5fa0 R15: 00007fff9067f058
[  245.823426][T24161]  </TASK>
[  245.906009][T24161] binder: 24160:24161 ioctl c0306201 2000000004c0 returned -12
[  245.941245][T24174] hugetlbfs: Bad value for 'uid'
[  245.942948][T24174] hugetlbfs: Bad value for 'uid'
[  246.013952][T24184] __nla_validate_parse: 8 callbacks suppressed
[  246.013969][T24184] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2814'.
[  246.043611][T17894] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  246.048336][T24181] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2813'.
[  246.059234][T24190] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  246.061981][T24190] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  246.080626][T24194] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2816'.
[  246.195449][T24209] netlink: 'syz.6.2819': attribute type 10 has an invalid length.
[  246.198610][T24209] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.202333][T24209] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.205533][T17894] usb 9-1: Using ep0 maxpacket: 16
[  246.213804][T24209] bridge0: port 2(bridge_slave_1) entered blocking state
[  246.214090][T17894] usb 9-1: config 1 interface 0 has no altsetting 0
[  246.216855][T24209] bridge0: port 2(bridge_slave_1) entered forwarding state
[  246.217050][T24209] bridge0: port 1(bridge_slave_0) entered blocking state
[  246.221211][T17894] usb 9-1: New USB device found, idVendor=05ac, idProduct=0223, bcdDevice= 0.40
[  246.221853][T24209] bridge0: port 1(bridge_slave_0) entered forwarding state
[  246.224218][T17894] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  246.230493][T24209] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  246.232476][T17894] usb 9-1: Product: syz
[  246.238438][T17894] usb 9-1: Manufacturer: syz
[  246.240141][T17894] usb 9-1: SerialNumber: syz
[  246.266546][T24214] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on
[  246.498454][T24272] FAULT_INJECTION: forcing a failure.
[  246.498454][T24272] name failslab, interval 1, probability 0, space 0, times 0
[  246.504818][T24272] CPU: 0 UID: 0 PID: 24272 Comm: syz.4.2824 Not tainted syzkaller #0 PREEMPT(full) 
[  246.504841][T24272] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  246.504851][T24272] Call Trace:
[  246.504857][T24272]  <TASK>
[  246.504864][T24272]  dump_stack_lvl+0x16c/0x1f0
[  246.504895][T24272]  should_fail_ex+0x512/0x640
[  246.504920][T24272]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  246.504949][T24272]  should_failslab+0xc2/0x120
[  246.504969][T24272]  __kmalloc_cache_noprof+0x6a/0x3e0
[  246.504992][T24272]  ? binder_inc_ref_for_node+0x2cd/0x10f0
[  246.505020][T24272]  ? binder_inc_ref_for_node+0x302/0x10f0
[  246.505048][T24272]  binder_inc_ref_for_node+0x302/0x10f0
[  246.505075][T24272]  ? __might_fault+0xe3/0x190
[  246.505091][T24272]  ? __might_fault+0x13b/0x190
[  246.505114][T24272]  binder_thread_write+0x31d9/0x4e70
[  246.505148][T24272]  ? __lock_acquire+0xb97/0x1ce0
[  246.505174][T24272]  ? __pfx_binder_thread_write+0x10/0x10
[  246.505201][T24272]  ? binder_debug+0xde/0x1a0
[  246.505226][T24272]  ? binder_debug+0xde/0x1a0
[  246.505246][T24272]  ? __pfx_binder_debug+0x10/0x10
[  246.505269][T24272]  ? find_held_lock+0x2b/0x80
[  246.505289][T24272]  ? __might_fault+0xe3/0x190
[  246.505304][T24272]  ? __might_fault+0x13b/0x190
[  246.505329][T24272]  binder_ioctl+0x253d/0x71f0
[  246.505364][T24272]  ? tomoyo_path_number_perm+0x18d/0x580
[  246.505394][T24272]  ? __pfx_binder_ioctl+0x10/0x10
[  246.505423][T24272]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  246.505444][T24272]  ? do_vfs_ioctl+0x128/0x14f0
[  246.505470][T24272]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  246.505495][T24272]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  246.505528][T24272]  ? hook_file_ioctl_common+0x145/0x410
[  246.505552][T24272]  ? selinux_file_ioctl+0x180/0x270
[  246.505575][T24272]  ? selinux_file_ioctl+0xb4/0x270
[  246.505600][T24272]  ? __pfx_binder_ioctl+0x10/0x10
[  246.505625][T24272]  __x64_sys_ioctl+0x18b/0x210
[  246.505652][T24272]  do_syscall_64+0xcd/0x4c0
[  246.505675][T24272]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.505692][T24272] RIP: 0033:0x7f44c918ebe9
[  246.505704][T24272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  246.505719][T24272] RSP: 002b:00007f44ca0c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  246.505735][T24272] RAX: ffffffffffffffda RBX: 00007f44c93c5fa0 RCX: 00007f44c918ebe9
[  246.505746][T24272] RDX: 00002000000004c0 RSI: 00000000c0306201 RDI: 0000000000000003
[  246.505756][T24272] RBP: 00007f44ca0c7090 R08: 0000000000000000 R09: 0000000000000000
[  246.505766][T24272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  246.505775][T24272] R13: 00007f44c93c6038 R14: 00007f44c93c5fa0 R15: 00007ffcfbde2c78
[  246.505800][T24272]  </TASK>
[  246.652034][T17894] usbhid 9-1:1.0: can't add hid device: -71
[  246.657611][T24277] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  246.659504][T17894] usbhid 9-1:1.0: probe with driver usbhid failed with error -71
[  246.660557][T24277] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  246.670366][T17894] usb 9-1: USB disconnect, device number 11
[  246.691792][    C2] sr 2:0:0:0: [sr0] tag#29 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  246.695314][    C2] sr 2:0:0:0: [sr0] tag#29 CDB: Regenerate(16) 82 5a 86 a5 26 a3 50 1f b1 dd 8d ff 3e 90 d6 f5
[  246.740750][T24294] (unnamed net_device) (uninitialized): (slave bond_slave_1): Device is not our slave
[  246.745414][T24294] (unnamed net_device) (uninitialized): option active_slave: invalid value (bond_slave_1)
[  246.821223][T24305] overlay: filesystem on ./bus not supported as upperdir
[  246.870073][   T40] audit: type=1400 audit(1757365010.050:644): avc:  denied  { accept } for  pid=24309 comm="syz.6.2831" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  246.904908][   T40] audit: type=1400 audit(1757365010.090:645): avc:  denied  { connect } for  pid=24316 comm="syz.4.2833" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  247.130097][   T40] audit: type=1400 audit(1757365010.310:646): avc:  denied  { map } for  pid=24346 comm="syz.6.2836" path="socket:[77967]" dev="sockfs" ino=77967 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  247.218994][T24359] FAULT_INJECTION: forcing a failure.
[  247.218994][T24359] name failslab, interval 1, probability 0, space 0, times 0
[  247.225787][T24359] CPU: 0 UID: 0 PID: 24359 Comm: syz.6.2838 Not tainted syzkaller #0 PREEMPT(full) 
[  247.225812][T24359] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  247.225823][T24359] Call Trace:
[  247.225830][T24359]  <TASK>
[  247.225837][T24359]  dump_stack_lvl+0x16c/0x1f0
[  247.225865][T24359]  should_fail_ex+0x512/0x640
[  247.225891][T24359]  should_failslab+0xc2/0x120
[  247.225912][T24359]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  247.225932][T24359]  ? skb_clone+0x190/0x3f0
[  247.225957][T24359]  skb_clone+0x190/0x3f0
[  247.225979][T24359]  netlink_deliver_tap+0xabd/0xd30
[  247.226008][T24359]  netlink_unicast+0x64c/0x870
[  247.226034][T24359]  ? __pfx_netlink_unicast+0x10/0x10
[  247.226057][T24359]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  247.226089][T24359]  netlink_sendmsg+0x8d1/0xdd0
[  247.226116][T24359]  ? __pfx_netlink_sendmsg+0x10/0x10
[  247.226149][T24359]  ____sys_sendmsg+0xa98/0xc70
[  247.226177][T24359]  ? copy_msghdr_from_user+0x10a/0x160
[  247.226198][T24359]  ? __pfx_____sys_sendmsg+0x10/0x10
[  247.226237][T24359]  ___sys_sendmsg+0x134/0x1d0
[  247.226285][T24359]  ? __pfx____sys_sendmsg+0x10/0x10
[  247.226341][T24359]  __sys_sendmsg+0x16d/0x220
[  247.226363][T24359]  ? __pfx___sys_sendmsg+0x10/0x10
[  247.226401][T24359]  do_syscall_64+0xcd/0x4c0
[  247.226427][T24359]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.226443][T24359] RIP: 0033:0x7fcd6fb8ebe9
[  247.226457][T24359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.226474][T24359] RSP: 002b:00007fcd70920038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  247.226492][T24359] RAX: ffffffffffffffda RBX: 00007fcd6fdc5fa0 RCX: 00007fcd6fb8ebe9
[  247.226503][T24359] RDX: 0000000020000050 RSI: 00002000000002c0 RDI: 0000000000000003
[  247.226514][T24359] RBP: 00007fcd70920090 R08: 0000000000000000 R09: 0000000000000000
[  247.226525][T24359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  247.226535][T24359] R13: 00007fcd6fdc6038 R14: 00007fcd6fdc5fa0 R15: 00007ffe0b0b1b38
[  247.226559][T24359]  </TASK>
[  247.226578][T24359] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2838'.
[  247.480267][ T6945] usb 13-1: New USB device found, idVendor=045b, idProduct=0212, bcdDevice=35.3e
[  247.490980][ T6945] usb 13-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  247.492438][T24400] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2842'.
[  247.494870][T24403] FAULT_INJECTION: forcing a failure.
[  247.494870][T24403] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  247.498067][ T6945] usb 13-1: can't set config #125, error -71
[  247.502278][T24403] CPU: 1 UID: 0 PID: 24403 Comm: syz.7.2843 Not tainted syzkaller #0 PREEMPT(full) 
[  247.502299][T24403] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  247.502309][T24403] Call Trace:
[  247.502315][T24403]  <TASK>
[  247.502321][T24403]  dump_stack_lvl+0x16c/0x1f0
[  247.502339][T24403]  should_fail_ex+0x512/0x640
[  247.502356][T24403]  _copy_to_user+0x32/0xd0
[  247.502372][T24403]  simple_read_from_buffer+0xcb/0x170
[  247.502385][T24403]  proc_fail_nth_read+0x197/0x240
[  247.502398][T24403]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  247.502412][T24403]  ? rw_verify_area+0xcf/0x6c0
[  247.502427][T24403]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  247.502440][T24403]  vfs_read+0x1e1/0xcf0
[  247.502452][T24403]  ? __pfx___mutex_lock+0x10/0x10
[  247.502466][T24403]  ? __pfx_vfs_read+0x10/0x10
[  247.502480][T24403]  ? __fget_files+0x20e/0x3c0
[  247.502495][T24403]  ksys_read+0x12a/0x250
[  247.502505][T24403]  ? __pfx_ksys_read+0x10/0x10
[  247.502516][T24403]  ? fput+0x9b/0xd0
[  247.502531][T24403]  do_syscall_64+0xcd/0x4c0
[  247.502546][T24403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.502557][T24403] RIP: 0033:0x7f633af8d5fc
[  247.502567][T24403] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  247.502577][T24403] RSP: 002b:00007f633bd95030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  247.502587][T24403] RAX: ffffffffffffffda RBX: 00007f633b1c5fa0 RCX: 00007f633af8d5fc
[  247.502594][T24403] RDX: 000000000000000f RSI: 00007f633bd950a0 RDI: 0000000000000006
[  247.502600][T24403] RBP: 00007f633bd95090 R08: 0000000000000000 R09: 0000000000000000
[  247.502606][T24403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  247.502612][T24403] R13: 00007f633b1c6038 R14: 00007f633b1c5fa0 R15: 00007fff9067f058
[  247.502625][T24403]  </TASK>
[  247.527003][T24410] openvswitch: netlink: Key type 30 is not supported
[  247.528663][ T6945] usb 13-1: USB disconnect, device number 2
[  247.730976][T24405] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2844'.
[  247.755862][T24451] openvswitch: netlink: Flow key attribute not present in set flow.
[  247.759484][T24451] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2848'.
[  247.789477][T24460] vivid-002: =================  START STATUS  =================
[  247.792010][T24460] vivid-002: Interlaced VBI Format: false
[  247.797441][T24460] vivid-002: ==================  END STATUS  ==================
[  247.879493][T24493] netlink: 'syz.7.2857': attribute type 64 has an invalid length.
[  247.882006][T24493] netlink: 'syz.7.2857': attribute type 4 has an invalid length.
[  247.885991][T24493] netlink: 152 bytes leftover after parsing attributes in process `syz.7.2857'.
[  248.025579][T24520] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2863'.
[  248.028401][T24520] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2863'.
[  248.363252][T24563] erofs (device loop6): cannot find valid erofs superblock
[  248.398993][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  248.399012][   T40] audit: type=1400 audit(1757365011.580:651): avc:  denied  { create } for  pid=24564 comm="syz.6.2873" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  248.409821][   T40] audit: type=1400 audit(1757365011.580:652): avc:  denied  { ioctl } for  pid=24564 comm="syz.6.2873" path="socket:[75312]" dev="sockfs" ino=75312 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  248.543524][   T67] usb 12-1: new high-speed USB device number 2 using dummy_hcd
[  248.559521][T24579] netlink: 'syz.6.2877': attribute type 9 has an invalid length.
[  248.562268][T24579] netlink: 'syz.6.2877': attribute type 7 has an invalid length.
[  248.565429][T24579] netlink: 'syz.6.2877': attribute type 8 has an invalid length.
[  248.701856][   T40] audit: type=1400 audit(1757365011.880:653): avc:  denied  { accept } for  pid=24594 comm="syz.4.2880" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  248.704065][   T67] usb 12-1: config 0 has no interfaces?
[  248.715165][   T67] usb 12-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  248.718166][   T67] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  248.726972][   T67] usb 12-1: config 0 descriptor??
[  248.963617][   T53] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  249.113543][   T53] usb 9-1: Using ep0 maxpacket: 8
[  249.120043][   T53] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  249.123293][   T53] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  249.126886][   T53] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  249.130903][   T53] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  249.135316][   T53] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  249.140791][   T53] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  249.146930][   T53] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.347091][   T40] audit: type=1400 audit(1757365012.530:654): avc:  denied  { name_connect } for  pid=24645 comm="syz.8.2888" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  249.360808][T24600] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  249.365546][T24600] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  249.374779][   T40] audit: type=1400 audit(1757365012.560:655): avc:  denied  { read } for  pid=24598 comm="syz.4.2882" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  249.394026][   T53] usb 9-1: usb_control_msg returned -71
[  249.395849][   T53] usbtmc 9-1:16.0: can't read capabilities
[  249.412867][   T53] usb 9-1: USB disconnect, device number 12
[  249.920505][T24675] fuse: Unknown parameter ''
[  250.061006][T24699] smc: adding net device bond0 with user defined pnetid SYZ2
[  250.066990][T24699] 8021q: adding VLAN 0 to HW filter on device bond0
[  250.097992][T24735] comedi comedi0: pcl730: I/O port conflict (0x3,4)
[  250.130419][T24748] netlink: 'syz.4.2899': attribute type 10 has an invalid length.
[  250.227016][T24759] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=25 sclass=netlink_tcpdiag_socket pid=24759 comm=syz.6.2901
[  250.261241][   T40] audit: type=1326 audit(1757365013.440:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24761 comm="syz.6.2902" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcd6fb8ebe9 code=0x0
[  250.439658][T24784] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(11)
[  250.441814][T24784] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  250.444871][T24784] vhci_hcd vhci_hcd.0: Device attached
[  250.458429][T24785] vhci_hcd: connection closed
[  250.459734][ T1146] vhci_hcd: stop threads
[  250.462609][ T1146] vhci_hcd: release socket
[  250.465086][ T1146] vhci_hcd: disconnect device
[  250.477888][T24790] block nbd8: Attempted send on invalid socket
[  250.480902][T24790] I/O error, dev nbd8, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  250.484761][T24790] ADFS-fs (nbd8): error: unable to read block 3, try 0
[  250.914843][T24815] FAULT_INJECTION: forcing a failure.
[  250.914843][T24815] name failslab, interval 1, probability 0, space 0, times 0
[  250.918836][T24815] CPU: 3 UID: 0 PID: 24815 Comm: syz.8.2912 Not tainted syzkaller #0 PREEMPT(full) 
[  250.918851][T24815] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  250.918857][T24815] Call Trace:
[  250.918861][T24815]  <TASK>
[  250.918866][T24815]  dump_stack_lvl+0x16c/0x1f0
[  250.918884][T24815]  should_fail_ex+0x512/0x640
[  250.918898][T24815]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  250.918915][T24815]  should_failslab+0xc2/0x120
[  250.918928][T24815]  __kmalloc_cache_noprof+0x6a/0x3e0
[  250.918943][T24815]  ? find_held_lock+0x2b/0x80
[  250.918955][T24815]  ? alloc_pipe_info+0x10e/0x590
[  250.918970][T24815]  alloc_pipe_info+0x10e/0x590
[  250.918984][T24815]  splice_direct_to_actor+0x77d/0xa30
[  250.918997][T24815]  ? __lock_acquire+0x62e/0x1ce0
[  250.919012][T24815]  ? __pfx_direct_splice_actor+0x10/0x10
[  250.919024][T24815]  ? find_held_lock+0x2b/0x80
[  250.919037][T24815]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  250.919047][T24815]  ? get_pid_task+0xfc/0x250
[  250.919060][T24815]  do_splice_direct+0x174/0x240
[  250.919071][T24815]  ? __pfx_do_splice_direct+0x10/0x10
[  250.919082][T24815]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  250.919095][T24815]  ? rw_verify_area+0xcf/0x6c0
[  250.919112][T24815]  do_sendfile+0xb06/0xe50
[  250.919125][T24815]  ? __pfx_do_sendfile+0x10/0x10
[  250.919135][T24815]  ? __fget_files+0x20e/0x3c0
[  250.919150][T24815]  __x64_sys_sendfile64+0x1d8/0x220
[  250.919163][T24815]  ? ksys_write+0x1ac/0x250
[  250.919173][T24815]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  250.919190][T24815]  do_syscall_64+0xcd/0x4c0
[  250.919205][T24815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.919216][T24815] RIP: 0033:0x7f8bbcd8ebe9
[  250.919224][T24815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.919234][T24815] RSP: 002b:00007f8bbdb95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  250.919244][T24815] RAX: ffffffffffffffda RBX: 00007f8bbcfc5fa0 RCX: 00007f8bbcd8ebe9
[  250.919251][T24815] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  250.919257][T24815] RBP: 00007f8bbdb95090 R08: 0000000000000000 R09: 0000000000000000
[  250.919263][T24815] R10: 0000000000007f03 R11: 0000000000000246 R12: 0000000000000001
[  250.919270][T24815] R13: 00007f8bbcfc6038 R14: 00007f8bbcfc5fa0 R15: 00007ffc7a2dbf88
[  250.919283][T24815]  </TASK>
[  251.027584][T24823] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24823 comm=syz.8.2914
[  251.042216][T24818] 8021q: adding VLAN 0 to HW filter on device bond2
[  251.045919][   T40] audit: type=1400 audit(1757365014.230:657): avc:  denied  { bind } for  pid=24819 comm="syz.8.2914" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  251.319000][T24859] __nla_validate_parse: 4 callbacks suppressed
[  251.319011][T24859] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2915'.
[  251.327315][   T10] usb 12-1: USB disconnect, device number 2
[  251.443681][   T74] usb 11-1: new low-speed USB device number 5 using dummy_hcd
[  251.445639][T24934] F2FS-fs (nbd4): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  251.449629][T24934] F2FS-fs (nbd4): Can't find valid F2FS filesystem in 1th superblock
[  251.452375][T24934] F2FS-fs (nbd4): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  251.455260][T24934] F2FS-fs (nbd4): Can't find valid F2FS filesystem in 2th superblock
[  251.507784][T24943] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2923'.
[  251.576019][T24948] SELinux:  unknown common attr
[  251.578146][T24948] SELinux: failed to load policy
[  251.594122][   T74] usb 11-1: Invalid ep0 maxpacket: 64
[  251.688781][T24962] FAULT_INJECTION: forcing a failure.
[  251.688781][T24962] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  251.695164][T24962] CPU: 0 UID: 0 PID: 24962 Comm: syz.4.2928 Not tainted syzkaller #0 PREEMPT(full) 
[  251.695189][T24962] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  251.695201][T24962] Call Trace:
[  251.695208][T24962]  <TASK>
[  251.695216][T24962]  dump_stack_lvl+0x16c/0x1f0
[  251.695264][T24962]  should_fail_ex+0x512/0x640
[  251.695297][T24962]  _copy_to_user+0x32/0xd0
[  251.695326][T24962]  simple_read_from_buffer+0xcb/0x170
[  251.695349][T24962]  proc_fail_nth_read+0x197/0x240
[  251.695372][T24962]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  251.695395][T24962]  ? rw_verify_area+0xcf/0x6c0
[  251.695422][T24962]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  251.695444][T24962]  vfs_read+0x1e1/0xcf0
[  251.695465][T24962]  ? __pfx___mutex_lock+0x10/0x10
[  251.695494][T24962]  ? __pfx_vfs_read+0x10/0x10
[  251.695517][T24962]  ? __fget_files+0x20e/0x3c0
[  251.695544][T24962]  ksys_read+0x12a/0x250
[  251.695562][T24962]  ? __pfx_ksys_read+0x10/0x10
[  251.695589][T24962]  do_syscall_64+0xcd/0x4c0
[  251.695615][T24962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.695635][T24962] RIP: 0033:0x7f44c918d5fc
[  251.695650][T24962] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  251.695672][T24962] RSP: 002b:00007f44ca0c7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  251.695691][T24962] RAX: ffffffffffffffda RBX: 00007f44c93c5fa0 RCX: 00007f44c918d5fc
[  251.695703][T24962] RDX: 000000000000000f RSI: 00007f44ca0c70a0 RDI: 0000000000000004
[  251.695714][T24962] RBP: 00007f44ca0c7090 R08: 0000000000000000 R09: 0000000000000000
[  251.695725][T24962] R10: 0000000000007f03 R11: 0000000000000246 R12: 0000000000000001
[  251.695736][T24962] R13: 00007f44c93c6038 R14: 00007f44c93c5fa0 R15: 00007ffcfbde2c78
[  251.695781][T24962]  </TASK>
[  251.758845][   T40] audit: type=1400 audit(1757365014.940:658): avc:  denied  { execute } for  pid=24950 comm="syz.7.2926" path="/151/file0/cpuacct.usage_percpu" dev="9p" ino=35913997 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  251.762793][   T74] usb 11-1: new low-speed USB device number 6 using dummy_hcd
[  251.953860][   T74] usb 11-1: Invalid ep0 maxpacket: 64
[  251.962082][   T74] usb usb11-port1: attempt power cycle
[  252.036122][   T40] audit: type=1400 audit(1757365015.220:659): avc:  denied  { read } for  pid=24982 comm="syz.4.2934" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  252.164529][T24995] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2937'.
[  252.258721][T25005] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2939'.
[  252.262733][T25005] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2939'.
[  252.303562][   T74] usb 11-1: new low-speed USB device number 7 using dummy_hcd
[  252.324269][   T74] usb 11-1: Invalid ep0 maxpacket: 64
[  252.376688][   T40] audit: type=1400 audit(1757365015.560:660): avc:  denied  { ioctl } for  pid=25026 comm="syz.4.2945" path="socket:[77456]" dev="sockfs" ino=77456 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  252.389234][T25029] netlink: 'syz.8.2943': attribute type 11 has an invalid length.
[  252.403120][T25031] binder: 25030:25031 ioctl c0306201 2000000004c0 returned -14
[  252.463808][   T74] usb 11-1: new low-speed USB device number 8 using dummy_hcd
[  252.496531][   T74] usb 11-1: Invalid ep0 maxpacket: 64
[  252.498888][   T74] usb usb11-port1: unable to enumerate USB device
[  252.564234][T25022] infiniband syz1: set active
[  252.566529][T25022] infiniband syz1: added veth1_virt_wifi
[  252.591817][T25022] RDS/IB: syz1: added
[  252.594280][T25022] smc: adding ib device syz1 with port count 1
[  252.596691][T25022] smc:    ib device syz1 port 1 has pnetid 
[  252.769237][T25080] vlan2: entered promiscuous mode
[  252.770904][T25080] bridge0: entered promiscuous mode
[  252.991293][T25095] ������: renamed from wg2 (while UP)
[  253.023002][T25099] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=25099 comm=syz.7.2957
[  253.030715][T25099] geneve2: entered promiscuous mode
[  253.032472][T25099] geneve2: entered allmulticast mode
[  253.080374][T25104] netlink: 'syz.7.2957': attribute type 13 has an invalid length.
[  253.188729][T25114] netlink: 'syz.7.2960': attribute type 63 has an invalid length.
[  253.193569][   T53] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  253.344873][   T53] usb 9-1: no configurations
[  253.346456][   T53] usb 9-1: can't read configurations, error -22
[  253.473677][   T53] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  253.506558][T25157] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2969'.
[  253.600730][   T13] smc: removing ib device syz1
[  253.604410][   T74] syz1: Port: 1 Link DOWN
[  253.625414][   T53] usb 9-1: no configurations
[  253.627375][   T53] usb 9-1: can't read configurations, error -22
[  253.629477][   T53] usb usb9-port1: attempt power cycle
[  253.983571][   T53] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  254.005387][   T53] usb 9-1: no configurations
[  254.006873][   T53] usb 9-1: can't read configurations, error -22
[  254.064382][ T5975] Bluetooth: hci3: unexpected Set CIG Parameters response data
[  254.131886][T25198] fuse: Bad value for 'fd'
[  254.135892][T25198] overlay: ./file1 is not a directory
[  254.143700][   T53] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[  254.175239][T25200] lo speed is unknown, defaulting to 1000
[  254.176435][   T53] usb 9-1: no configurations
[  254.179403][   T53] usb 9-1: can't read configurations, error -22
[  254.181592][   T53] usb usb9-port1: unable to enumerate USB device
[  254.263417][T25212] netlink: 56 bytes leftover after parsing attributes in process `syz.6.2979'.
[  254.302147][T25216] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2980'.
[  254.400410][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  254.400426][   T40] audit: type=1400 audit(1757365017.580:662): avc:  denied  { bind } for  pid=25239 comm="syz.6.2982" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  255.257093][T25259] block nbd7: Attempted send on invalid socket
[  255.260491][T25259] I/O error, dev nbd7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  255.266260][T25259] (syz.7.2986,25259,2):ocfs2_get_sector:1714 ERROR: status = -5
[  255.270224][T25259] (syz.7.2986,25259,0):ocfs2_sb_probe:753 ERROR: status = -5
[  255.273297][T25259] (syz.7.2986,25259,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  255.277106][T25259] (syz.7.2986,25259,0):ocfs2_fill_super:1177 ERROR: status = -5
[  255.317981][T25265] netlink: 64 bytes leftover after parsing attributes in process `syz.7.2988'.
[  255.325326][T25265] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  255.329070][T25265] efs: cannot read volume header
[  255.467632][ T1425] ieee802154 phy0 wpan0: encryption failed: -22
[  255.494929][T25271] netlink: 22 bytes leftover after parsing attributes in process `syz.8.2990'.
[  255.813799][   T67] usb 13-1: new high-speed USB device number 3 using dummy_hcd
[  255.993519][   T67] usb 13-1: Using ep0 maxpacket: 32
[  255.998534][   T67] usb 13-1: config index 0 descriptor too short (expected 29220, got 36)
[  256.001561][   T67] usb 13-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  256.004732][   T67] usb 13-1: config 0 has 1 interface, different from the descriptor's value: 81
[  256.007650][   T67] usb 13-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  256.011106][   T67] usb 13-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  256.014497][   T67] usb 13-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  256.018702][   T67] usb 13-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  256.021527][   T67] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  256.026986][   T67] usb 13-1: config 0 descriptor??
[  256.131114][T25297] 9pnet: Could not find request transport: xen
[  256.185144][ T5975] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  256.189311][ T5975] Bluetooth: hci0: Injecting HCI hardware error event
[  256.192367][   T63] Bluetooth: hci0: hardware error 0x00
[  256.212202][T25309] 9pnet_rdma: rdma_create_trans (25309): problem binding to privport: 13
[  256.237604][   T67] usblp 13-1:0.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  256.247362][   T67] usb 13-1: USB disconnect, device number 3
[  256.255555][   T67] usblp0: removed
[  256.262078][   T40] audit: type=1400 audit(1757365019.440:663): avc:  denied  { read } for  pid=25331 comm="syz.7.3000" name="loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  256.272519][   T40] audit: type=1400 audit(1757365019.450:664): avc:  denied  { open } for  pid=25331 comm="syz.7.3000" path="/dev/loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  256.281173][   T40] audit: type=1400 audit(1757365019.450:665): avc:  denied  { ioctl } for  pid=25331 comm="syz.7.3000" path="/dev/loop-control" dev="devtmpfs" ino=657 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  256.343928][T25350] netlink: 212176 bytes leftover after parsing attributes in process `syz.4.3002'.
[  256.440079][T25364] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3006'.
[  256.783633][   T67] usb 13-1: new high-speed USB device number 4 using dummy_hcd
[  256.805333][T25401] overlayfs: failed to resolve './file1': -2
[  256.834979][   T40] audit: type=1400 audit(1757365020.020:666): avc:  denied  { bind } for  pid=25402 comm="syz.6.3016" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  256.836751][T25403] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  256.882685][T25412] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3018'.
[  256.963525][   T67] usb 13-1: Using ep0 maxpacket: 32
[  256.973496][   T67] usb 13-1: config index 0 descriptor too short (expected 29220, got 36)
[  256.976581][   T67] usb 13-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  256.979737][T25418] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3020'.
[  256.979795][   T67] usb 13-1: config 0 has 1 interface, different from the descriptor's value: 81
[  256.986938][   T67] usb 13-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  256.990958][   T67] usb 13-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  256.995039][   T67] usb 13-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  257.000144][   T67] usb 13-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  257.003782][   T67] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.009198][   T67] usb 13-1: config 0 descriptor??
[  257.220222][   T67] usblp 13-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  257.420098][   T40] audit: type=1400 audit(1757365020.600:667): avc:  denied  { read write } for  pid=25280 comm="syz.8.2991" name="lp0" dev="devtmpfs" ino=3178 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  257.430254][   T40] audit: type=1400 audit(1757365020.600:668): avc:  denied  { open } for  pid=25280 comm="syz.8.2991" path="/dev/usb/lp0" dev="devtmpfs" ino=3178 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  257.462826][T25281] netlink: 16 bytes leftover after parsing attributes in process `syz.8.2991'.
[  257.480388][   T40] audit: type=1326 audit(1757365020.660:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25280 comm="syz.8.2991" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8bbcd8ebe9 code=0x0
[  257.484746][T25450] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1549 sclass=netlink_route_socket pid=25450 comm=syz.4.3029
[  257.519140][   T40] audit: type=1400 audit(1757365020.700:670): avc:  denied  { append } for  pid=25473 comm="syz.4.3033" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  257.523949][ T6050] usb 12-1: new high-speed USB device number 3 using dummy_hcd
[  257.545994][T25477] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3034'.
[  257.577325][T25477] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3034'.
[  257.590629][   T74] usb 13-1: USB disconnect, device number 4
[  257.598242][   T74] usblp0: removed
[  257.653977][   T53] usb 11-1: new high-speed USB device number 9 using dummy_hcd
[  257.684229][ T6050] usb 12-1: Using ep0 maxpacket: 16
[  257.688385][ T6050] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  257.693027][ T6050] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  257.697994][ T6050] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  257.704097][ T6050] usb 12-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  257.707979][ T6050] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.722065][ T6050] usb 12-1: config 0 descriptor??
[  257.787879][   T40] audit: type=1400 audit(1757365020.970:671): avc:  denied  { write } for  pid=25563 comm="syz.4.3038" name="ptp0" dev="devtmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  257.803946][   T53] usb 11-1: Using ep0 maxpacket: 8
[  257.809181][   T53] usb 11-1: config index 0 descriptor too short (expected 301, got 45)
[  257.811775][   T53] usb 11-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  257.816371][   T53] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  257.820116][   T53] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  257.823335][   T53] usb 11-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  257.828127][   T53] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  257.831807][   T53] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.844339][   T53] usbtmc 11-1:16.0: bulk endpoints not found
[  257.887412][T25573] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3040'.
[  258.103696][ T5975] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  258.107132][ T5975] Bluetooth: hci3: Injecting HCI hardware error event
[  258.110950][ T5975] Bluetooth: hci3: hardware error 0x00
[  258.134839][ T6050] HID 045e:07da: Invalid code 65791 type 1
[  258.140162][ T6050] input: HID 045e:07da as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:0.0/0003:045E:07DA.0008/input/input13
[  258.147548][ T1026] IPVS: starting estimator thread 0...
[  258.150548][ T6050] microsoft 0003:045E:07DA.0008: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.7-1/input0
[  258.151258][T25602] tipc: Started in network mode
[  258.159057][T25602] tipc: Node identity ac1414aa, cluster identity 4711
[  258.167473][T25602] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  258.171123][T25602] tipc: Enabled bearer <udp:s>, priority 10
[  258.244708][T25604] IPVS: using max 44 ests per chain, 105600 per kthread
[  258.263925][   T63] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  258.313589][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  258.345709][   T10] usb 12-1: USB disconnect, device number 3
[  258.463526][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  258.603549][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  258.624541][ T6050] usb 11-1: USB disconnect, device number 9
[  258.719412][T25648] loop6: detected capacity change from 0 to 63
[  258.723560][T25648] buffer_io_error: 27 callbacks suppressed
[  258.723570][T25648] Buffer I/O error on dev loop6, logical block 0, async page read
[  258.731120][T20956] Buffer I/O error on dev loop6, logical block 0, async page read
[  258.737169][T25648] Buffer I/O error on dev loop6, logical block 0, async page read
[  258.741041][T20956] Buffer I/O error on dev loop6, logical block 0, async page read
[  258.744522][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  258.747682][T20956] Buffer I/O error on dev loop6, logical block 0, async page read
[  258.750258][T25648] Buffer I/O error on dev loop6, logical block 0, async page read
[  258.753906][T25648] Buffer I/O error on dev loop6, logical block 0, async page read
[  258.757246][T20956] Buffer I/O error on dev loop6, logical block 0, async page read
[  258.760584][T20956] Buffer I/O error on dev loop6, logical block 0, async page read
[  258.763308][T25648] Buffer I/O error on dev loop6, logical block 0, async page read
[  258.832378][T25654] netlink: 212408 bytes leftover after parsing attributes in process `syz.4.3050'.
[  258.852999][T25654] netlink: 75 bytes leftover after parsing attributes in process `syz.4.3050'.
[  258.883774][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  258.979394][T25673] syz.8.3054: calling unsupported SCSI_IOCTL_SEND_COMMAND
[  258.983697][T25673] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  258.987201][T25673] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  259.023832][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  259.109192][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.114659][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.118225][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.121737][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.125154][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.128170][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.137365][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.148090][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.154744][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.158181][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.161803][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.164772][   T53] tipc: Node number set to 2886997162
[  259.172482][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.179276][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.183110][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.190330][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.198647][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.207775][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.215973][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.219916][   T53] lo speed is unknown, defaulting to 1000
[  259.229266][T25702] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=5126 sclass=netlink_tcpdiag_socket pid=25702 comm=syz.4.3062
[  259.236832][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.242000][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.249384][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.252589][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.261893][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.265854][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.271738][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.282350][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.287212][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.290746][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.294068][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.296976][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.301679][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.304685][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  259.311367][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.315080][T25695] 9pnet_virtio: no channels available for device 127.0.0.1
[  259.352866][T25721] program syz.6.3065 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  259.660925][T25766] fuse: Bad value for 'fd'
[  259.775598][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  259.775610][   T40] audit: type=1400 audit(1757365022.960:677): avc:  denied  { map } for  pid=25799 comm="syz.7.3078" path="/dev/hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  259.833695][T25812] smc: ib device syz0 ibport 1 applied user defined pnetid SYZ0
[  259.871577][   T40] audit: type=1400 audit(1757365023.050:678): avc:  denied  { setopt } for  pid=25819 comm="syz.7.3084" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  259.890229][   T40] audit: type=1400 audit(1757365023.050:679): avc:  denied  { setattr } for  pid=25819 comm="syz.7.3084" path="/dev/video2" dev="devtmpfs" ino=957 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  259.915124][T25829] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  260.184355][ T5975] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  260.381164][T25908] program syz.7.3104 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  260.493814][   T67] usb 9-1: new high-speed USB device number 17 using dummy_hcd
[  260.593803][T25917] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  260.623025][T25951] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(3)
[  260.625770][T25951] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  260.630747][T25951] vhci_hcd vhci_hcd.0: Device attached
[  260.637165][T25951] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  260.641954][T25952] vhci_hcd: connection closed
[  260.642693][   T13] vhci_hcd: stop threads
[  260.647660][   T13] vhci_hcd: release socket
[  260.649222][   T13] vhci_hcd: disconnect device
[  260.657022][   T67] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  260.660449][   T67] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  260.665636][   T67] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  260.668465][   T67] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  260.675951][T25877] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  260.685924][   T67] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  260.688338][T25968] loop7: detected capacity change from 0 to 7
[  260.694938][    C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  260.697944][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  260.701125][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  260.707485][    C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  260.710434][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  260.714961][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  260.718981][    C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  260.721895][T25968] ldm_validate_partition_table(): Disk read failed.
[  260.724781][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  260.729518][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  260.732668][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  260.736026][T25968] Dev loop7: unable to read RDB block 0
[  260.738341][T25968]  loop7: unable to read partition table
[  260.740300][T25968] loop7: partition table beyond EOD, truncated
[  260.742262][T25968] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[  260.784126][T25983] loop7: detected capacity change from 7 to 0
[  260.815671][T25990] overlayfs: failed to resolve './file1': -2
[  260.822161][T25990] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=25990 comm=syz.8.3115
[  260.938927][T26064] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  260.941782][T26064] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  260.961264][T26069] netlink: 'syz.6.3118': attribute type 10 has an invalid length.
[  260.971903][T26069] team0: Port device dummy0 added
[  260.977393][T26069] netlink: 'syz.6.3118': attribute type 10 has an invalid length.
[  260.981610][T26069] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  260.989786][T26069] team0: Failed to send options change via netlink (err -105)
[  260.992994][T26069] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  260.996540][T26069] team0: Port device dummy0 removed
[  261.001549][T26069] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  261.202224][   T40] audit: type=1400 audit(1757365024.380:680): avc:  denied  { create } for  pid=26090 comm="syz.6.3123" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  261.265261][T26097] lo speed is unknown, defaulting to 1000
[  261.291821][   T40] audit: type=1400 audit(1757365024.470:681): avc:  denied  { accept } for  pid=26096 comm="syz.6.3125" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  261.468431][T26134] bridge1: entered promiscuous mode
[  261.470251][T26134] bridge1: entered allmulticast mode
[  261.514173][   T40] audit: type=1400 audit(1757365024.690:682): avc:  denied  { view } for  pid=26133 comm="syz.7.3128" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  261.626569][   T40] audit: type=1400 audit(1757365024.810:683): avc:  denied  { write } for  pid=26147 comm="syz.8.3130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  261.841050][T26162] __nla_validate_parse: 12 callbacks suppressed
[  261.841067][T26162] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3133'.
[  261.852187][T26162] vivid-000: =================  START STATUS  =================
[  261.856397][T26162] vivid-000: Test Pattern: 75% Colorbar
[  261.858907][T26162] vivid-000: Fill Percentage of Frame: 100
[  261.863075][T26162] vivid-000: Horizontal Movement: Move Left Slow
[  261.865820][T26162] vivid-000: Vertical Movement: No Movement
[  261.867904][T26162] vivid-000: OSD Text Mode: All
[  261.869549][T26162] vivid-000: Show Border: false
[  261.871239][T26162] vivid-000: Show Square: false
[  261.872888][T26162] vivid-000: Sensor Flipped Horizontally: false
[  261.875177][T26162] vivid-000: Sensor Flipped Vertically: false
[  261.877083][T26162] vivid-000: Insert SAV Code in Image: false
[  261.878915][T26162] vivid-000: Insert EAV Code in Image: false
[  261.880778][T26162] vivid-000: Insert Video Guard Band: false
[  261.883039][T26162] vivid-000: Reduced Framerate: true
[  261.885321][T26162] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  261.887853][T26162] vivid-000: S-Video 000-0 Is Connected To: Output S-Video 023-0
[  261.890083][T26162] vivid-000: Enable Capture Cropping: true
[  261.892138][T26162] vivid-000: Enable Capture Composing: true
[  261.894566][T26162] vivid-000: Enable Capture Scaler: true
[  261.896409][T26162] vivid-000: Timestamp Source: End of Frame
[  261.898339][T26162] vivid-000: Colorspace: sRGB
[  261.899899][T26162] vivid-000: Transfer Function: Default
[  261.901712][T26162] vivid-000: Y'CbCr Encoding: Default
[  261.905385][T26162] vivid-000: HSV Encoding: Hue 0-179
[  261.907825][T26162] vivid-000: Quantization: Default
[  261.910096][T26162] vivid-000: Apply Alpha To Red Only: false
[  261.915042][T26162] vivid-000: Standard Aspect Ratio: 4x3
[  261.920966][T26162] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  261.929918][T26162] vivid-000: DV Timings: 640x480p59 inactive
[  261.933705][T26162] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  261.939433][T26162] vivid-000: Maximum EDID Blocks: 2
[  261.944239][T26162] vivid-000: Limited RGB Range (16-235): false
[  261.948449][T26162] vivid-000: Rx RGB Quantization Range: Automatic
[  261.952771][T26162] vivid-000: Power Present: 0x00000001
[  261.957852][T26162] tpg source WxH: 320x180 (R'G'B)
[  261.958619][T26152] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3131'.
[  261.960644][T26162] tpg field: 1
[  261.968045][T26162] tpg crop: (0,0)/320x180
[  261.970644][T26162] tpg compose: (0,0)/320x180
[  261.974433][T26162] tpg colorspace: 8
[  261.977927][T26162] tpg transfer function: 0/0
[  261.980593][T26162] tpg quantization: 0/0
[  261.985636][T26162] tpg RGB range: 0/2
[  261.988254][T26162] vivid-000: ==================  END STATUS  ==================
[  262.299223][T26193] usb usb8: check_ctrlrecip: process 26193 (syz.7.3139) requesting ep 01 but needs 81
[  262.302235][T26193] usb usb8: usbfs: process 26193 (syz.7.3139) did not claim interface 0 before use
[  262.303617][   T53] usb 13-1: new high-speed USB device number 5 using dummy_hcd
[  262.379713][T26202] dlm: no locking on control device
[  262.463524][   T53] usb 13-1: Using ep0 maxpacket: 8
[  262.470384][   T53] usb 13-1: config index 0 descriptor too short (expected 301, got 45)
[  262.473150][   T53] usb 13-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  262.476878][   T53] usb 13-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  262.476893][   T53] usb 13-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  262.476903][   T53] usb 13-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  262.476925][   T53] usb 13-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  262.476937][   T53] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  262.487210][   T53] usbtmc 13-1:16.0: bulk endpoints not found
[  262.593655][T21142] usb 12-1: new high-speed USB device number 4 using dummy_hcd
[  262.743943][T21142] usb 12-1: Using ep0 maxpacket: 16
[  262.747667][T21142] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  262.751278][T21142] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  262.755665][T21142] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  262.759894][T21142] usb 12-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  262.762888][T21142] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  262.767458][T21142] usb 12-1: config 0 descriptor??
[  262.891762][   T40] audit: type=1400 audit(1757365026.070:684): avc:  denied  { node_bind } for  pid=26242 comm="syz.6.3145" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  262.943836][T26249] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3146'.
[  263.140365][   T40] audit: type=1400 audit(1757365026.320:685): avc:  denied  { mount } for  pid=26267 comm="syz.6.3150" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  263.141702][T26268] devtmpfs: Cannot change global quota limit on remount
[  263.147914][   T40] audit: type=1400 audit(1757365026.320:686): avc:  denied  { remount } for  pid=26267 comm="syz.6.3150" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  263.180440][T21142] shield 0003:0955:7214.0009: unknown main item tag 0x0
[  263.182705][T21142] shield 0003:0955:7214.0009: unknown main item tag 0x0
[  263.184996][T21142] shield 0003:0955:7214.0009: unknown main item tag 0x0
[  263.187272][T21142] shield 0003:0955:7214.0009: unknown main item tag 0x0
[  263.189312][T21142] shield 0003:0955:7214.0009: unknown main item tag 0x0
[  263.193884][T21142] input: HID 0955:7214 Haptics as /devices/virtual/input/input14
[  263.204601][T26268] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3150'.
[  263.223550][    C1] net_ratelimit: 5 callbacks suppressed
[  263.223560][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  263.257155][T21142] shield 0003:0955:7214.0009: Registered Thunderstrike controller
[  263.260015][T21142] shield 0003:0955:7214.0009: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.7-1/input0
[  263.281217][   T67] usb 9-1: USB disconnect, device number 17
[  263.304326][ T5965] usb 13-1: USB disconnect, device number 5
[  263.395322][T26320] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  263.417250][ T6042] usb 12-1: USB disconnect, device number 4
[  263.419377][ T6050] shield 0003:0955:7214.0009: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  263.425141][ T6050] shield 0003:0955:7214.0009: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  263.430984][ T6050] shield 0003:0955:7214.0009: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  263.538988][ T6050] shield 0003:0955:7214.0009: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  263.720851][T26356] SELinux:  Context system_u:object_r:ping_exec_t:s0 is not valid (left unmapped).
[  263.795954][T26357] lo speed is unknown, defaulting to 1000
[  263.867009][T26377] netlink: 28 bytes leftover after parsing attributes in process `syz.8.3164'.
[  263.871828][T26377] netlink: 28 bytes leftover after parsing attributes in process `syz.8.3164'.
[  263.917143][T26383] FAT-fs (loop17): unable to read boot sector
[  263.965317][T26390] netlink: 'syz.8.3169': attribute type 10 has an invalid length.
[  263.975332][T26390] team0: Port device dummy0 added
[  263.978226][T26390] netlink: 'syz.8.3169': attribute type 10 has an invalid length.
[  264.001960][T26390] team0: Port device dummy0 removed
[  264.015391][T26390] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  264.086141][T26434] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3177'.
[  264.169225][T26452] syz_tun: entered allmulticast mode
[  264.196078][T26450] syz_tun: left allmulticast mode
[  264.263512][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  264.455137][T26479] lo speed is unknown, defaulting to 1000
[  264.632171][T26453] lo speed is unknown, defaulting to 1000
[  264.798021][   T40] kauditd_printk_skb: 77 callbacks suppressed
[  264.798032][   T40] audit: type=1400 audit(1757365027.980:764): avc:  denied  { sys_module } for  pid=26533 comm="syz.8.3199" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  264.809574][   T40] audit: type=1400 audit(1757365027.990:765): avc:  denied  { allowed } for  pid=26529 comm="syz.6.3200" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  264.833324][   T40] audit: type=1400 audit(1757365028.010:766): avc:  denied  { prog_load } for  pid=26533 comm="syz.8.3199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  264.842216][   T40] audit: type=1400 audit(1757365028.010:767): avc:  denied  { bpf } for  pid=26533 comm="syz.8.3199" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  264.853197][   T40] audit: type=1400 audit(1757365028.010:768): avc:  denied  { perfmon } for  pid=26533 comm="syz.8.3199" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  264.910199][   T40] audit: type=1400 audit(1757365028.090:769): avc:  denied  { create } for  pid=26533 comm="syz.8.3199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  264.916200][   T40] audit: type=1400 audit(1757365028.090:770): avc:  denied  { create } for  pid=26533 comm="syz.8.3199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  264.922064][   T40] audit: type=1400 audit(1757365028.090:771): avc:  denied  { connect } for  pid=26533 comm="syz.8.3199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  264.930219][   T40] audit: type=1400 audit(1757365028.090:772): avc:  denied  { create } for  pid=26533 comm="syz.8.3199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  264.995304][T26534] bridge0: port 2(bridge_slave_1) entered disabled state
[  264.998118][T26534] bridge0: port 1(bridge_slave_0) entered disabled state
[  265.067506][T26534] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  265.075327][T26534] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  265.151377][   T93] netdevsim netdevsim8 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  265.155527][   T93] netdevsim netdevsim8 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  265.158526][   T93] netdevsim netdevsim8 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  265.161336][   T93] netdevsim netdevsim8 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  265.165406][   T40] audit: type=1400 audit(1757365028.350:773): avc:  denied  { read write } for  pid=21444 comm="syz-executor" name="loop8" dev="devtmpfs" ino=666 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  265.303504][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  265.834692][T26607] tipc: Started in network mode
[  265.836909][T26607] tipc: Node identity ac14140f, cluster identity 4711
[  265.839809][T26607] tipc: New replicast peer: 255.255.255.255
[  265.842504][T26607] tipc: Enabled bearer <udp:syz2>, priority 10
[  265.846735][T26607] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=54 sclass=netlink_route_socket pid=26607 comm=syz.6.3214
[  266.025827][   T63] Bluetooth: hci2: command 0x0406 tx timeout
[  266.041911][T26638] netlink: 68 bytes leftover after parsing attributes in process `syz.6.3222'.
[  266.159153][T26650] netlink: 'syz.6.3225': attribute type 6 has an invalid length.
[  266.233808][T26655] lo speed is unknown, defaulting to 1000
[  266.343551][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  266.835791][ T5965] tipc: Node number set to 2886997007
[  266.839396][T26715] pim6reg: entered allmulticast mode
[  266.845465][T26715] pim6reg: left allmulticast mode
[  266.949300][T26724] SELinux: failed to load policy
[  267.089530][T26721] lo speed is unknown, defaulting to 1000
[  267.383496][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  267.406144][T26766] random: crng reseeded on system resumption
[  267.892255][T26778] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  267.905839][T26778] batadv_slave_0: entered promiscuous mode
[  268.073635][T26801] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3253'.
[  268.423574][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  268.552566][T26837] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3261'.
[  268.578414][T26837] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3261'.
[  268.582220][T26837] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3261'.
[  268.586671][T26837] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3261'.
[  268.590329][T26837] netlink: 'syz.7.3261': attribute type 6 has an invalid length.
[  268.795190][T26851] tipc: Started in network mode
[  268.796786][T26851] tipc: Node identity ac14140f, cluster identity 4711
[  268.798978][T26851] tipc: New replicast peer: 255.255.255.255
[  268.801060][T26851] tipc: Enabled bearer <udp:syz2>, priority 10
[  268.803243][T26851] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3266'.
[  268.806278][T26851] tipc: Disabling bearer <udp:syz2>
[  268.838386][T26854] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  269.026372][   T74] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  269.045894][   T74] hid-generic 0000:0000:0000.000A: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  269.148139][T26888] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  269.150508][T26888] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  269.412961][T26930] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  269.415321][T26930] IPv6: NLM_F_CREATE should be set when creating new route
[  269.417592][T26930] IPv6: NLM_F_CREATE should be set when creating new route
[  269.420579][T26930] ------------[ cut here ]------------
[  269.422915][T26930] WARNING: CPU: 1 PID: 26930 at drivers/net/netdevsim/fib.c:831 nsim_fib_event_nb+0xb9d/0x10d0
[  269.428033][T26930] Modules linked in:
[  269.429684][T26930] CPU: 1 UID: 0 PID: 26930 Comm: syz.4.3289 Not tainted syzkaller #0 PREEMPT(full) 
[  269.436171][T26930] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  269.439732][T26930] RIP: 0010:nsim_fib_event_nb+0xb9d/0x10d0
[  269.441465][T26930] Code: 24 20 48 8b 6c 24 38 e8 01 f8 8e fa e8 fc f7 8e fa 89 de 44 89 ef e8 72 f2 8e fa 41 39 dd 0f 84 cb fd ff ff e8 e4 f7 8e fa 90 <0f> 0b 90 e9 bd fd ff ff e8 d6 f7 8e fa 48 8d 7d 38 be 01 00 00 00
[  269.447610][T26930] RSP: 0018:ffffc9000623f138 EFLAGS: 00010283
[  269.449449][T26930] RAX: 000000000000266e RBX: 0000000000000001 RCX: ffffc90025a19000
[  269.451852][T26930] RDX: 0000000000080000 RSI: ffffffff872c96ec RDI: 0000000000000004
[  269.455541][T26930] RBP: ffff888023e6f000 R08: 0000000000000004 R09: 0000000000000002
[  269.458004][T26930] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc9000623f290
[  269.460485][T26930] R13: 0000000000000002 R14: ffff8880555f6400 R15: ffff88810c8dd800
[  269.462954][T26930] FS:  00007f44ca0c76c0(0000) GS:ffff8880d67b5000(0000) knlGS:0000000000000000
[  269.465999][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  269.468490][T26930] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  269.470576][T26930] CR2: 00007fcd7091ff98 CR3: 00000000349cc000 CR4: 0000000000352ef0
[  269.473028][T26930] Call Trace:
[  269.474671][T26930]  <TASK>
[  269.475615][T26930]  notifier_call_chain+0xb9/0x410
[  269.477199][T26930]  ? __pfx_nsim_fib_event_nb+0x10/0x10
[  269.478875][T26930]  atomic_notifier_call_chain+0x71/0x1c0
[  269.480581][T26930]  call_fib_notifiers+0x33/0x70
[  269.482070][T26930]  call_fib6_multipath_entry_notifiers+0x112/0x170
[  269.484227][T26930]  ? __pfx_call_fib6_multipath_entry_notifiers+0x10/0x10
[  269.486483][T26930]  ? find_held_lock+0x2b/0x80
[  269.487916][T26930]  ? ip6_route_multipath_add+0xaa2/0x1bd0
[  269.489630][T26930]  ip6_route_multipath_add+0xb4f/0x1bd0
[  269.491313][T26930]  ? __pfx_ip6_route_multipath_add+0x10/0x10
[  269.493112][T26930]  ? avc_has_perm_noaudit+0x117/0x3b0
[  269.495247][T26930]  ? avc_has_perm_noaudit+0x149/0x3b0
[  269.496935][T26930]  ? inet6_rtm_newroute+0xe4/0x1a0
[  269.498532][T26930]  inet6_rtm_newroute+0xe4/0x1a0
[  269.500034][T26930]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  269.501714][T26930]  ? __lock_acquire+0x62e/0x1ce0
[  269.503219][T26930]  ? find_held_lock+0x2b/0x80
[  269.504848][T26930]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  269.506575][T26930]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  269.508297][T26930]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  269.509920][T26930]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  269.511668][T26930]  rtnetlink_rcv_msg+0x95e/0xe90
[  269.513224][T26930]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  269.515137][T26930]  ? ref_tracker_free+0x37c/0x830
[  269.516726][T26930]  netlink_rcv_skb+0x155/0x420
[  269.518252][T26930]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  269.519958][T26930]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  269.521633][T26930]  ? netlink_deliver_tap+0x1ae/0xd30
[  269.523314][T26930]  netlink_unicast+0x5aa/0x870
[  269.525077][T26930]  ? __pfx_netlink_unicast+0x10/0x10
[  269.526763][T26930]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  269.528661][T26930]  netlink_sendmsg+0x8d1/0xdd0
[  269.530207][T26930]  ? __pfx_netlink_sendmsg+0x10/0x10
[  269.531845][T26930]  ____sys_sendmsg+0xa98/0xc70
[  269.533231][T26930]  ? copy_msghdr_from_user+0x10a/0x160
[  269.535134][T26930]  ? __pfx_____sys_sendmsg+0x10/0x10
[  269.537213][T26930]  ? __pfx_futex_wake_mark+0x10/0x10
[  269.539331][T26930]  ___sys_sendmsg+0x134/0x1d0
[  269.541155][T26930]  ? __pfx____sys_sendmsg+0x10/0x10
[  269.543001][T26930]  __sys_sendmsg+0x16d/0x220
[  269.544836][T26930]  ? __pfx___sys_sendmsg+0x10/0x10
[  269.546706][T26930]  ? __x64_sys_futex+0x1e0/0x4c0
[  269.548402][T26930]  do_syscall_64+0xcd/0x4c0
[  269.549942][T26930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.551772][T26930] RIP: 0033:0x7f44c918ebe9
[  269.553168][T26930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  269.559299][T26930] RSP: 002b:00007f44ca0c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  269.561857][T26930] RAX: ffffffffffffffda RBX: 00007f44c93c5fa0 RCX: 00007f44c918ebe9
[  269.564435][T26930] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000005
[  269.566887][T26930] RBP: 00007f44c9211e19 R08: 0000000000000000 R09: 0000000000000000
[  269.569350][T26930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  269.571826][T26930] R13: 00007f44c93c6038 R14: 00007f44c93c5fa0 R15: 00007ffcfbde2c78
[  269.574380][T26930]  </TASK>
[  269.575370][T26930] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  269.577627][T26930] CPU: 1 UID: 0 PID: 26930 Comm: syz.4.3289 Not tainted syzkaller #0 PREEMPT(full) 
[  269.580513][T26930] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  269.583843][T26930] Call Trace:
[  269.584897][T26930]  <TASK>
[  269.585835][T26930]  dump_stack_lvl+0x3d/0x1f0
[  269.587293][T26930]  vpanic+0x6e8/0x7a0
[  269.588563][T26930]  ? __pfx_vpanic+0x10/0x10
[  269.590018][T26930]  ? nsim_fib_event_nb+0xb9d/0x10d0
[  269.591682][T26930]  panic+0xca/0xd0
[  269.592872][T26930]  ? __pfx_panic+0x10/0x10
[  269.594313][T26930]  check_panic_on_warn+0xab/0xb0
[  269.595863][T26930]  __warn+0xf6/0x3c0
[  269.597092][T26930]  ? nsim_fib_event_nb+0xb9d/0x10d0
[  269.598737][T26930]  report_bug+0x3c3/0x580
[  269.600109][T26930]  ? nsim_fib_event_nb+0xb9d/0x10d0
[  269.601740][T26930]  handle_bug+0x184/0x210
[  269.603115][T26930]  exc_invalid_op+0x17/0x50
[  269.604544][T26930]  asm_exc_invalid_op+0x1a/0x20
[  269.606077][T26930] RIP: 0010:nsim_fib_event_nb+0xb9d/0x10d0
[  269.607892][T26930] Code: 24 20 48 8b 6c 24 38 e8 01 f8 8e fa e8 fc f7 8e fa 89 de 44 89 ef e8 72 f2 8e fa 41 39 dd 0f 84 cb fd ff ff e8 e4 f7 8e fa 90 <0f> 0b 90 e9 bd fd ff ff e8 d6 f7 8e fa 48 8d 7d 38 be 01 00 00 00
[  269.613682][T26930] RSP: 0018:ffffc9000623f138 EFLAGS: 00010283
[  269.615527][T26930] RAX: 000000000000266e RBX: 0000000000000001 RCX: ffffc90025a19000
[  269.617892][T26930] RDX: 0000000000080000 RSI: ffffffff872c96ec RDI: 0000000000000004
[  269.620282][T26930] RBP: ffff888023e6f000 R08: 0000000000000004 R09: 0000000000000002
[  269.622670][T26930] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc9000623f290
[  269.625080][T26930] R13: 0000000000000002 R14: ffff8880555f6400 R15: ffff88810c8dd800
[  269.627496][T26930]  ? nsim_fib_event_nb+0xb9c/0x10d0
[  269.629078][T26930]  ? nsim_fib_event_nb+0xb9c/0x10d0
[  269.630717][T26930]  notifier_call_chain+0xb9/0x410
[  269.632256][T26930]  ? __pfx_nsim_fib_event_nb+0x10/0x10
[  269.633939][T26930]  atomic_notifier_call_chain+0x71/0x1c0
[  269.635668][T26930]  call_fib_notifiers+0x33/0x70
[  269.637158][T26930]  call_fib6_multipath_entry_notifiers+0x112/0x170
[  269.639125][T26930]  ? __pfx_call_fib6_multipath_entry_notifiers+0x10/0x10
[  269.641232][T26930]  ? find_held_lock+0x2b/0x80
[  269.642696][T26930]  ? ip6_route_multipath_add+0xaa2/0x1bd0
[  269.644423][T26930]  ip6_route_multipath_add+0xb4f/0x1bd0
[  269.646122][T26930]  ? __pfx_ip6_route_multipath_add+0x10/0x10
[  269.647965][T26930]  ? avc_has_perm_noaudit+0x117/0x3b0
[  269.649627][T26930]  ? avc_has_perm_noaudit+0x149/0x3b0
[  269.651314][T26930]  ? inet6_rtm_newroute+0xe4/0x1a0
[  269.652914][T26930]  inet6_rtm_newroute+0xe4/0x1a0
[  269.654499][T26930]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  269.656219][T26930]  ? __lock_acquire+0x62e/0x1ce0
[  269.657783][T26930]  ? find_held_lock+0x2b/0x80
[  269.659282][T26930]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  269.661015][T26930]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  269.662757][T26930]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  269.664352][T26930]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  269.666098][T26930]  rtnetlink_rcv_msg+0x95e/0xe90
[  269.667654][T26930]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  269.669355][T26930]  ? ref_tracker_free+0x37c/0x830
[  269.670964][T26930]  netlink_rcv_skb+0x155/0x420
[  269.672472][T26930]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  269.674200][T26930]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  269.675852][T26930]  ? netlink_deliver_tap+0x1ae/0xd30
[  269.677505][T26930]  netlink_unicast+0x5aa/0x870
[  269.679021][T26930]  ? __pfx_netlink_unicast+0x10/0x10
[  269.680680][T26930]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  269.682563][T26930]  netlink_sendmsg+0x8d1/0xdd0
[  269.684067][T26930]  ? __pfx_netlink_sendmsg+0x10/0x10
[  269.685723][T26930]  ____sys_sendmsg+0xa98/0xc70
[  269.687246][T26930]  ? copy_msghdr_from_user+0x10a/0x160
[  269.688945][T26930]  ? __pfx_____sys_sendmsg+0x10/0x10
[  269.690622][T26930]  ? __pfx_futex_wake_mark+0x10/0x10
[  269.692272][T26930]  ___sys_sendmsg+0x134/0x1d0
[  269.693733][T26930]  ? __pfx____sys_sendmsg+0x10/0x10
[  269.695367][T26930]  __sys_sendmsg+0x16d/0x220
[  269.696820][T26930]  ? __pfx___sys_sendmsg+0x10/0x10
[  269.698434][T26930]  ? __x64_sys_futex+0x1e0/0x4c0
[  269.700003][T26930]  do_syscall_64+0xcd/0x4c0
[  269.701446][T26930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.703300][T26930] RIP: 0033:0x7f44c918ebe9
[  269.704707][T26930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  269.710603][T26930] RSP: 002b:00007f44ca0c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  269.713169][T26930] RAX: ffffffffffffffda RBX: 00007f44c93c5fa0 RCX: 00007f44c918ebe9
[  269.715600][T26930] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000005
[  269.718041][T26930] RBP: 00007f44c9211e19 R08: 0000000000000000 R09: 0000000000000000
[  269.720509][T26930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  269.723008][T26930] R13: 00007f44c93c6038 R14: 00007f44c93c5fa0 R15: 00007ffcfbde2c78
[  269.725462][T26930]  </TASK>
[  269.727136][T26930] Kernel Offset: disabled
[  269.728494][T26930] Rebooting in 86400 seconds..

VM DIAGNOSIS:
20:57:12  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffffff8e5c1260 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8df45976 RDI=ffffffff8c162d00 RBP=0000000000000002 RSP=ffffc9002530f2e8
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000002 R11=000000000000fc9c
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8b975120 RFL=00000092 [--S-A--] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007feb49f76880 ffffffff 00c00000
GS =0000 ffff8880d66b5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c3a4c0a CR3=0000000060f07000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0800000 Opmask01=0000000000004211 Opmask02=000000007ffeffff Opmask03=0000000020400004
Opmask04=00000000ffffdfff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 343a37622f617461 642f766564752f6e
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 0000557aff83cfe0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb497d17f0 00007feb497d17e0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff0000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0031322f7165736b
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ff00000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 737326098cf05483 7373260cdb832f59
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7885e2f61d48097e 7373737624dc8b4e
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000557ae6615dd0 00706d742e343a37 622f617461642f76 6564752f6e75722f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 404d005640515c47 0550491d00050505 05050505051f405f 4c560540494c4300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c6c6174735f7563 725f78616d006c74 6373797300313d65 6c62616e65000034
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0031327075656b61 772f305f656b6972 74737265646e7568 742f796c70707573
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322e392d3533712d 63707276703a2939 3030322c39484349 2b35335128435064
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7261646e6174536e 703a554d45516e76 733a302e3072623a 343130322f31302f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000014100 000000000000303d 44440045525f5346 0054242044492065
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000054 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85646ef5 RDI=ffffffff9b1150a0 RBP=ffffffff9b115060 RSP=ffffc9000623eaa0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000054 R14=ffffffff9b115060 R15=ffffffff85646e90
RIP=ffffffff85646f1f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f44ca0c76c0 ffffffff 00c00000
GS =0000 ffff8880d67b5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fcd7091ff98 CR3=00000000349cc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000020080810 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe0b0b2046
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe0b0b2046 00007ffe0b0b204c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcd6fc12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcd6fc12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcd6fc12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcd6fc12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcd6fc12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcd6fc12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcd6fd974a8 00007fcd6fd974a0 00007fcd6fd97498 00007fcd6fd97470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcd708fd100 00007fcd6fd97460 00007fcd6fd97478 00007fcd6fd974c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcd6fd974b8 00007fcd6fd974b0 00007fcd6fd974a8 00007fcd6fd974a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=ffffea00011a7200 RBX=ffffc9000626fa98 RCX=dffffc0000000000 RDX=0000000000000044
RSI=1ffff11009838046 RDI=ffff88804c1c0230 RBP=ffffea00011a7200 RSP=ffffc9000626f5b0
R8 =0000000000000005 R9 =0000000000000001 R10=0000000000000001 R11=0000000000000000
R12=0000000000000001 R13=0000000000000045 R14=ffff88804c1c0000 R15=0000000000000044
RIP=ffffffff81bb8ed0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d68b5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005555865c45c8 CR3=00000000462e9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc7a2dc496
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc7a2dc496 00007ffc7a2dc49c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8bbce12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8bbce12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8bbce12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8bbce12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8bbce12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8bbce12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8bbcf974a8 00007f8bbcf974a0 00007f8bbcf97498 00007f8bbcf97470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8bbdafd100 00007f8bbcf97460 00007f8bbcf90004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8bbcf974b8 00007f8bbcf974b0 00007f8bbcf974a8 00007f8bbcf974a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000000 RBX=ffffc9000faaf3d8 RCX=ffffc9000faaf32c RDX=1ffff92001f55e84
RSI=ffffffff8de2cdb8 RDI=ffffffff82328936 RBP=ffffc9000faaf420 RSP=ffffc9000faaf3b8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=000000000003954f
R12=ffffffff81a6ddc0 R13=ffffc9000faaf498 R14=0000000000000000 R15=ffff888031088000
RIP=ffffffff81847a30 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007feb49f76880 ffffffff 00c00000
GS =0000 ffff8880d69b5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000000280 CR3=0000000046097000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0800000 Opmask01=0000000000004211 Opmask02=000000007ffeffff Opmask03=0000000000000000
Opmask04=00000000ffffdfff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 363a37622f617461 642f766564752f6e
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 0000557aff8422a0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb499f1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff0000000000 ff00000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000ff00000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7f68737972646605 1a1a10677e797379
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7264662a4159434e 754f4645425d0519
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000557ae66159d7 00706d742e363a37 622f617461642f76 6564752f6e75722f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 520a534041500a4b 50570a0041494a0b 4d465144520a5340 41500a4b50570a00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000557ae6638919 0000000000000040 ffffffffffffffff 0000557aff830036
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000557aff83df50 0000557aff835fe0 0000557aff843a40 0000557aff836020
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000557aff84ee60 0000557aff847800 0000557aff83cfa0 0000557aff844be0
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000557aff82f480 0000557aff834580 0000557aff82e7b0 0000557aff835390
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000557aff851390 0000557aff840c80 0000557aff837f40 0000557aff830f60
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7265747369676572 6e755f7665647465 6e2e65726f632e74 656e2e6c74637379
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000014100 000000000000303d 44440045525f5346 0054242044492065
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000