last executing test programs:

14.940022928s ago: executing program 3 (id=326):
socket$netlink(0x10, 0x3, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x2382, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$inet6(0xa, 0x806, 0x0)
r2 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000002c80)={0xa, 0x14e24}, 0x1c)
connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg(r3, &(0x7f00000092c0), 0x4ff, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x2})
r4 = fanotify_init(0x0, 0x8000)
fanotify_mark(r4, 0x249, 0x48000000, 0xffffffffffffffff, &(0x7f0000000080)='./file0\x00')
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000400000004"])
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5)
ioctl$KVM_CAP_HYPERV_SYNIC2(r5, 0x4068aea3, &(0x7f0000002240))
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000180)={0x4, 0x2007})
r6 = socket(0x10, 0x803, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000100))
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_int(r8, 0x29, 0xb, 0x0, &(0x7f00007d0000))
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
dup3(r7, 0xffffffffffffffff, 0x80000)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r9, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r9, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000580)={0x4c, 0x0, &(0x7f0000000200)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x78, 0x18, &(0x7f0000000c40)={@ptr={0x70742a85, 0x0, &(0x7f0000000280)=""/155, 0x9b, 0x0, 0x14}, @ptr={0x70742a85, 0x0, &(0x7f0000002cc0)=""/4112, 0x1010, 0x0, 0x2c}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x0, 0xc}}, &(0x7f0000000140)={0x0, 0x28, 0x50}}, 0x400}], 0x0, 0x0, 0x0})
sendto(r6, &(0x7f0000000740)="2c00000012f6e6ef014000000000dfffffa0", 0x12, 0x8091, 0x0, 0xffffffffffffff78)

14.720429718s ago: executing program 3 (id=330):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x3c)
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB="2c726f6f746d6f64653d30303030303030303030303030303030303034303030302c757365725f69643d4fd776e2d49a190dc0cdadf37b5411937639780ca9f9e3a18733c22bd99474f91e647dbae0dcef8fbc2ee8d1347af251ae005f7b0fea4098762c07bdf05520a73da94f2b6313d98794b4fb332bfb08d244c088bab7b91ac11c9e68e9eabf12980e0ee4eb170199b71e71adae016e856461", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r3=>0x0})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000340), 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0xe, 0x4, 0x7, 0x8, 0x2000, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x100000, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r6, r3, 0x25, 0x4, @val=@tcx={@void, @value}}, 0x1c)
syz_emit_ethernet(0x32, &(0x7f0000000240)=ANY=[], 0x0)
syz_fuse_handle_req(r1, &(0x7f00000021c0), 0x2000, &(0x7f00000041c0)={&(0x7f0000004280)={0x50}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r6, 0xc018937c, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r7=>r2, {0x2}}, './file0\x00'})
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=@newsa={0x184, 0x10, 0x713, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1}, {@in6=@remote, 0x0, 0x32}, @in=@remote, {}, {}, {}, 0x0, 0x3503, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @algo_auth_trunc={0x4c, 0x14, {{'sha1\x00'}, 0x0, 0x2}}]}, 0x184}, 0x1, 0x0, 0x0, 0x880}, 0x0)
getsockopt$inet_sctp6_SCTP_NODELAY(r7, 0x84, 0x3, &(0x7f0000000240), &(0x7f0000000300)=0x4)
r9 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmmsg$unix(r10, &(0x7f00000bd000), 0x318, 0x0)
r11 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r10, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r11, 0x1, r9, &(0x7f0000000600)={0xa0000013})
ppoll(&(0x7f0000000200)=[{r11, 0x1}], 0x1, 0x0, 0x0, 0x3)
close_range(r9, r10, 0x0)
syz_fuse_handle_req(r1, &(0x7f0000004300), 0x2000, &(0x7f0000006300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000063c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

13.859635577s ago: executing program 3 (id=337):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000fddbdf251400000018000180140002006e657464657673696d3000000000000008001400adf4b75c080010000007020008000f000000010008000e"], 0x4c}, 0x1, 0x0, 0x0, 0x4000810}, 0x0)
r2 = fsopen(&(0x7f0000000400)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f0000000340)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f0000000040), 0x12)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_type(r6, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_type(r7, &(0x7f0000000280), 0x9)
r8 = openat$cgroup_ro(r3, &(0x7f0000000340)='cgroup.stat\x00', 0x300, 0x0)
open_by_handle_at(r8, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000200000007"], 0x100040)
r9 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="140100002d0001000000000000000000040100800c0000000000000000000000140001000000000000000000000000000000000150bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b300000000b1086cda40e00aec58754734be31d750751dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079761734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8cd1"], 0x114}], 0x1}, 0x0)

13.710437183s ago: executing program 3 (id=339):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vlan0\x00'})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
lseek(r2, 0x0, 0x1)
fcntl$lock(r1, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r1, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1000000000001})
syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000f80)=ANY=[], 0x470}, 0x1, 0x0, 0x0, 0x20040000}, 0x408c0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
sendmsg$inet_sctp(r3, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[@prinfo={0x18, 0x84, 0x5, {0x10}}], 0x18}, 0xf1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f0000000380)={0x2f, 0x24, '\x00', [@generic={0x3b, 0x8a, "bb46ec8d2659b9c34b02227dc9f35899c5d45a25eb89893d83f611a4125cb76f72f051b39c09534a5fa1980ee46c01cdd6a30597f44b174fbfae0d2d981d06558df94d0f3c25a5898c41bcc83d6db97f965b360c7efea334eb03be5b274d974301298d7804a518161c068293af868429ad3d619eb83d5dc7ad83226dd013c6ed72f0b72cf49a8b14a153"}, @calipso={0x7, 0x18, {0x3, 0x4, 0xd, 0x7, [0x3, 0x7de82938]}}, @generic={0x8, 0x1, "01"}, @enc_lim={0x4, 0x1, 0x7}, @enc_lim, @calipso={0x7, 0x20, {0x2, 0x6, 0xa, 0x6, [0x38e, 0x2, 0x4]}}, @generic={0xf8, 0x37, "20a762f50bdb1c6cc6e043a15bf13d966e897eea485a239ca82cb8d2e053d7c5bc374d2192cfacfde3dd6cad60d31c42fd78a8a02d06ec"}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @ra={0x5, 0x2, 0x7}, @ra={0x5, 0x2, 0x3}]}, 0x130)
ptrace$poke(0x4, r4, &(0x7f0000000080), 0x7)
r5 = shmget(0x1, 0x1000, 0x200, &(0x7f0000fff000/0x1000)=nil)
shmctl$IPC_INFO(r5, 0x3, &(0x7f00000000c0))
unshare(0x46000180)

13.620925981s ago: executing program 3 (id=340):
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r0, 0x5)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'ip6gretap0\x00', <r3=>0x0})
r4 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r4, 0x65, 0x7, &(0x7f00000001c0)=0x8, 0x4)
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000680)="5c00000014006b0300224ed86e6c1d0002117ea6e070d6064e22000300000000250002000f00000017d34460bc24eab556a705251e6182949a36c23d3b48dfd8cdbf9767b4fa51f62a64c9f4060046d88037e786a6d0bdd7", 0x58}, {&(0x7f00000003c0)="1cc899f2", 0x4}], 0x2, 0x0, 0x0, 0x1f00c00e}, 0x0)
sendmsg$can_raw(r4, &(0x7f00000004c0)={&(0x7f00000005c0)={0x1d, r3}, 0x10, &(0x7f0000000500)={&(0x7f00000000c0)=@can={{}, 0xff, 0x0, 0x4, 0x0, '\b-\x00'}, 0x10}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

13.390788218s ago: executing program 3 (id=341):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r1, 0xc05064a7, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000340)=[0x0, <r3=>0x0], &(0x7f00000007c0), 0x0, 0x2, 0x0, 0x0, r2})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000300)={0x0, 0x1, &(0x7f0000000180)=[r2], &(0x7f00000000c0)=[0x2], &(0x7f0000000240)=[r3, r3], &(0x7f0000000040)})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r4, 0x9)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg(r5, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044000)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x28, r7, 0x9, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1d}]}]}, 0x28}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r9, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r8, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80410040}, 0xc, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r9, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800)

13.378835313s ago: executing program 32 (id=341):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r1, 0xc05064a7, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000340)=[0x0, <r3=>0x0], &(0x7f00000007c0), 0x0, 0x2, 0x0, 0x0, r2})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000300)={0x0, 0x1, &(0x7f0000000180)=[r2], &(0x7f00000000c0)=[0x2], &(0x7f0000000240)=[r3, r3], &(0x7f0000000040)})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r4, 0x9)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg(r5, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044000)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x28, r7, 0x9, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1d}]}]}, 0x28}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r9, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r8, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80410040}, 0xc, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r9, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800)

770.731401ms ago: executing program 2 (id=517):
r0 = syz_io_uring_setup(0x16d2, &(0x7f0000000080)={0x0, 0x1f04, 0x200}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000500)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[@ANYBLOB='+'], 0x118)
r4 = fcntl$dupfd(r0, 0x0, r3)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
r5 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
syz_open_dev$dri(0x0, 0x20, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f0000000c80)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
setsockopt$sock_int(r6, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendto$inet(r6, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e20, @multicast1}, 0x10)
sendto$inet(r6, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)
close_range(r5, 0xffffffffffffffff, 0x0)
r7 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x400600, 0x0)
r8 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x600800, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r8, 0xc0285700, &(0x7f0000000300)={0xf, "2b155bde5fe182e28d6b61569e53b44c8267eb76a1e600", <r9=>0xffffffffffffffff})
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r9, 0xf503, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010000000000000000000000000008000300", @ANYRES32=0x0, @ANYBLOB="0c009900f40000002a000000080026007f1700000800270002000000"], 0x38}, 0x1, 0x0, 0x0, 0xd37697ff280d3c0e}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000003c0)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_DEL_TX_TS(r7, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100029bd7000fcdbdf256a00000008000300", @ANYRES32=r11, @ANYBLOB="0c00997f007300004b0000000500d200050000000500d200010000000500d200010000000a000802110000010000"], 0x4c}, 0x1, 0x0, 0x0, 0x4009051}, 0x0)
r12 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r13, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x1})
r14 = eventfd2(0xa, 0x80000)
ioctl$KVM_IRQFD(r13, 0x4020ae76, &(0x7f0000000080)={r14, 0x4})
write$eventfd(r14, &(0x7f0000000080)=0x430f, 0x8)
execveat(r7, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={[&(0x7f0000000080)='\x00', &(0x7f00000000c0)='##*\\,\x00', &(0x7f0000000100)='\x00']}, &(0x7f00000002c0)={[&(0x7f0000000180)='\'\x00', &(0x7f00000001c0)='.):!\x05#\x00', &(0x7f0000000200)='/]-\x00', &(0x7f0000000240)=',^6,,)\\:\x00', &(0x7f0000000280)='-^\x00']}, 0x100)

610.623818ms ago: executing program 0 (id=519):
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x80000000000)

610.302597ms ago: executing program 0 (id=520):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x404082, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{0x1, <r1=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x1d, &(0x7f0000000180)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@exit, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @exit, @cb_func={0x18, 0x2, 0x4, 0x0, 0x6}, @tail_call={{0x18, 0x2, 0x1, 0x0, r1}}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x5}, @initr0={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000d40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x1b, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

610.133789ms ago: executing program 2 (id=521):
prctl$PR_SET_IO_FLUSHER(0x41, 0x3)
prctl$PR_SET_SECCOMP(0x41, 0x0, 0x0)

608.677622ms ago: executing program 2 (id=522):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x2, 0x40)
ioctl$SNDRV_PCM_IOCTL_WRITEN_FRAMES(r0, 0x40184152, &(0x7f0000000140)={0x0, &(0x7f0000000100)=[&(0x7f0000000040)="651bbf4a6759f7c4fca67b9b28c93d45260875ac010d6c82c2432eda5a810c47688d9d3e442e0435e4848f6715b8293a922944319105b58a9889d03f9bcfae5068ffa1f3d409e0839b5343cdcd8840fd30a898d3a2683a543ff2c8207ddc571585136662cd47e472c2a23f4a17d6fa4a78fdd302ab3d678127a0f933d5ca4f8be087920bbd61cfd2bd932482cd76"], 0x7})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x28, r2, 0x100, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x4b}}}}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x10801)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r1)
sendmsg$NL80211_CMD_DEL_STATION(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x64, r3, 0x4, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xa, 0x4d}}}}, [@NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x71d}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x2}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x4}, @NL80211_ATTR_STA_FLAGS={0x1c, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_MFP={0x4}, @NL80211_STA_FLAG_AUTHENTICATED={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}, @NL80211_STA_FLAG_AUTHENTICATED={0x4}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x4040012}, 0x4004084)
sendmsg$NL80211_CMD_REGISTER_FRAME(r1, &(0x7f0000001600)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000015c0)={&(0x7f0000000480)={0x1128, r3, 0x100, 0x3ff, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x37, 0x5b, "1a1a8441a848763b2665ac08c17b43fb85d6536a11e690aa12ce940308c031e0de6473bd43f369823346073d3da17d2c1df51d"}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x2}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0xffff}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x4}, @NL80211_ATTR_FRAME_MATCH={0xa5, 0x5b, "1ac1b6a255193f20a2ba66db9a202d3e5df54c52d4f365a3e5b7f030e2ac309f16b3fbc064ed54465d05ddaa4f048808cfb55d46dfb250f8daef980342f1feab1d8c66ebd549230732accf9f584e2684226de8d3a7524fac3bdf45dfabc140b6e8d63e960d797ebf1536a7899df2c65114aa94957a72fc902d1b17844a5483908f6d0bcef2350d8ae3f70e83b19b616dee514bee20cb02aa4f791742e8e14b9162"}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x2}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x1ff}, @NL80211_ATTR_FRAME_MATCH={0x1004, 0x5b, "1644e6df214f3b74dc4127bd6dc86bf95f3b7efa0f6bc278fd184bfd27346588b02fc3b0eb30b4644946c2d39f14deee00f23b53bc0b6ee5b412c247bffe9a2abb57cab3a55329cc75ce11ccb33d088d9ea46e278cd14d272de8003cea2065bb5c77549c4a73523c77124575c067f1e2ecd3286cb6e8df5a8109caa71f5fd539f0d53c2eeeb9cb16d48c73d068aa0ab2f4963d902439f6a53a04ed76306c01da6d0a547e4076f33693d0bd9ac8583dbdbc2cc5488c9cf011f2592a92510cbad021791cf13c138bdaf67c73abf754277d85e7a22e4129f20256c151cfe6b71b15096943f5aed9e6a187b8b9a07f22e74067c0fb8ad7b822de81a15f0606b1f83e57ce71417bf1eb7c84d9e12bc9d015a175db4150c95ea8773195e5ed135eb111a53a39aaaac1d18d3bfbc874b7c5ce7be4305d3b7213682e805a111c3026d5380fa91c82cf9a2d0024591bf6723e716e5dd6724ff44d9ca0089c34bed475b84b88247bc2929eb8ded240b7953ff2e0969c3adbc85a8d67bbbeab584cb3fe086f0e0ac845ec435c5feb9c4f537211f714dad1f90e98615fe048da3823aecac4946c1425dfaae5ef98fb54440d19ead2dc758d3792db36c3460a8735608080486ea0695d655f3f97b075e0ae71f057e96520260224c0f270d1b9a8cc6b85e7ed2bc077e54d4bce90ddd8a0e458029387ba6d5790c8171cc1b949da0866db5f67c7ec2800b272aef7b8ecfb1f1f1c3c5881db4995c255258580f6f7d57159e4e899ebca5ed1df3769776a66a26fd10a6d34c3409ca699fb0dbfad07fd72c431dd1063c57bef9d3e6504cb452cc7c8380c05f835ad4ea22138ebd9b31292e8983187b343b5939f30c278e12f59a287406e1887071f8a2d5516b5f71e3edec9a47b90c660ebc7f80ef2b002807ff76191ec0962495e85515b281172ade40e520c3cb26ca4849e62c12dd4ae59a6eb60b6576339db3bb1b0f80d1d81fb902e2d7ea62e54c92a81062d723b584ffcf6c872623541c8d5144d3f9919b94087ced0c690da3b5c54f1de8c09445e2d7935169099e1c1fe080a864173cae2c51615c5036ef4c5c2d5d13e0a52558a0674d0bf191d24f3b2718c4f62bfe912168e712bd70d79fbf73ad2d6e1007bfd6aa2cdc680626e818df8a0fbd23ac038bb368927ec20769e06354a7f7f9d957867a77d94ac7244d05f5053a7c01ce6a62a4c3278c17663d36a7629408d9dbdc5bbdedb63fd39a663f4947ef247a8f30ec61c6d0038521452c0b1c94cfee352b0bf92f5a497205fc1239b5dda613c720a149daf1d37c9fcb37ecb2d1f7e5b4c6a8da4564dc47a9988def479ecfe613571e2177b611802e087b49dce4f68d6e05e3891cf210e1542692f92840e6de931e7b09caff4d1e2713f0a0dc257aa9f84b60993f9e0c8db6aab346bec523d6c521e965027ffdb2505f5e6ddb3f076da6e1e26d2300098e0e482fc55b10702505cdcbf67f5510787bd8e5117d1cce71335c9c0887ec8153c2e9ffd1bfac446b3ba23cad528b4b3ac22e667db446f8bb012601c14381daea78ece2ecf4c664139e66f80cd83ddfc735e6dd112c2019f7808e2c549696fd04252ad692dcc4fc50e94b49a2c37c04b962470c2c674b65cbf125ab136ee776d6c1554ee674bc559be9159ae31572781a884253c13399c406607b837db66e82a3cc23160cd6e4e586935007d208cee7e4c2edd3d7193aaae774365ca849ebcd03089e8a63eca23651ecdfe9c175a749c9fdba254f68a92011eecb166a8fd40e1da44ba9e8f5f1d80bb11329b18e6051c7a470f2fd2cdae80121babc582b0de573e5ee031978eabfe945b6aaf5500aea6c734aeac7e5bdf7a3da9acd9b52f68b43dc885646565106500cd75508f594559ef788bf3eefa87ce8a11e79dffecb94d946d21ee716286e25692d77731d93c8ca36c50a4000d57b897c3ede4518c9cfa206710de5d6125c1888b1f703774407d493e49e73b03ae4f400cfe5768f3b822b918b16962c147f01cf7ce903a5eda98e40b1c8939e7ca63ef37f8012cc6039ac579e47690bbf9b8270c31046a53275f8d102ca8890dfbec152ff0df5983892824b02272bc64db52a2860a823785d70ee4834a9a708bc907b7cf8d9192bbf295fc60ff3eb2d1eccf7328004f15c53409dd8dc386cbafdd79cd269fd6f165ab80b6032504a8bfcc10b583fdc341e3c9e038c6127dffe7f782def294fb7f760fc4e8306340318dc9c9ab24594888aa004a257dd39326bd0fafeab7d6094a6f2121c49aacf6e04137f420a9a837c5ffc7de528a54fea162d8615175b9a9a731721c702568a5560710a814738354d9a29423b8afb828b0294839f6514ca7efff897dace93c65e2ff49610a64d6d4801ca665459f7f8dadd14df7037d14e2c8570c8126b239ebd69f28034a5eb7c68409c276f8324af638915a72c109d27b6dda236ab13b795a75d8d20981cac91d1719ce204c9572e9e773c09a64fc374070aff244243872b1e536e58898117dbfe8b93c9a19229d12774e1153d62b60dcb5feef71cc0fee90f41a0847aecda4bf63e0e3f7af93419798536e43531a4e8262fdb3f96a206c5148234c1550dd8eac56f312ae9f8a845acbc48ee7b65c8a0146c98bdb8fe01b62f2443dcbc11c52eeef508c9c68d4ca7fc38fc1490fcc6f2ae8a357053d33bbec8d4d606dbdbc240eaa56d839501fd2e60035824d51c14c39844256d1ec3e131e8dc18f49066ca2db00345979f537dd2b5f6aced473f101d6c0396a3bd2668ef0ef33b4a38adaf545bc05e3b0ed76563af92d58bfc7374208522104e3dd0911a7585e53e2fde0790aefae576da8fa23b45d232813157f223110cf3c8838fefed5ab2e64dd92328c719f4a47d64f41c2ab98b099d4bf9112aa85ec530113fe982dcd7107385f0830ca2fdc5d7d81f9b8789ef0061d769facfd42ed0808a8d106fdfb74a510c95e9d85073a0c977db4bbdddd122a03e4dd6e206748890e0f9fc9372bb893010fb6aba0c77bd369695267e712d0be0af260f343539bd142a08ed8733e8fa077cd0c8fb00db1848fcb50b1bad384cf3f5f51b8a384b91ac069b45f0474caff2d72ab09d5e3858d7c4ec0d13adb9c707900dd75ed4a22551d13a12dbd6c975eee7e1b29c6d68718bdc527652f53c894061843849c772f2154d5561cac4209d56d334b8c1babe744bc939631c1d1a1974a3449886809792b0357e46005b4a7853277ec54a24eb7348128b88baca6f825675aa61555c9accb6e89892d984bc1b4e332765797b448634c345df5d1bf28e4c84132849ea453460eb8fb532d5170fa87e840bcc316110e559d1abaed70bc0f0a0d019e0d35fa7e31d0f065a113c39ac315629c57daa4e3a231acb240853c0b6a2d7092609fb7ec9f7858e25b011a176dd8961f5724379280d6e12670c6acd3f4921b8ef2aec1abeeb038a2f9de1f9a201ceefd0e979768ba4bee0f2bc802b1b589fdac509e6f601c5c6a22c47f1868319653cb653ed7bebef1dd21f04d2ee16dbaed45126a2d8d56f08113f37cb33551c33c522ff350687273a83d1de2c457272e8084105e01b931faa7b4be8260eb9eb6d725899c62f2213b3410bf70827cf82478c314dcb8f207e8b7a97be05b9cb04150ecd25aad5cb9e4dfc326c5a3807b1a747faab8b82b415645054d2f120ae1a9bb3c734cfcc0ef09dbb0b1517a830f070a71cc93539a46549cef661bd499a13d9a733e577dd1cd72929bfe51ac975954270d22432ea6f6a1c9da80b28c756b735e3ac23dfc346e9831d0804c08388e0c849462442d3f3a52dcde21e56bbd9c522fa1962cbb5929a36c167f0b09237ffd8b0f655720a6775a14253ae35b04c16c359e74cb72d9ca6ec35135943e235b928a971f000f195e4cc9505f80eda5ae7a4a9e53c3eebd59a6a13ce6784cf395a37be0d7e80e10d227d3acb1e7e1f1c9d238566895eb7e08f1cce18f5bf3daec7b2cc570acf28005c368f27c56ce71fa144e3f9a9cf575b82f4ee6fc437462b4f3c6ec64017c02320f008c05309b10b4c6a6902a91fd75bfd78807d6efc75d3f2b322346ed780017d469e16559d7acfbfc5cadbf84c8d4c3ffe048965e413cf44852f03dea23eb5a569f2ae7bf0590cad0abbfc16aa77bda54969a99a89655b79df7fcde15830bed69ec5f22f1469020cec848ab745283dd550dc94fddf475cb9ef13cd690aaec2919090d2942a6cd38e29ae2e9093ac3d7240c55ab77eec63231ff963d2bb7125222511f5250acabfbf2b1e2bb579390ef40723a160c53e237c9093c4d156fdd6e91499b1a06126c0f83a18a776e50c85cc136fe75b398967bc67f88f4d7f607da72149161a8c425713f479103476bb071e3e4583faa373b2be85a60a9c72a4b6539434163b079c625f146f5e0b46aef75db4c1d6eca87c23e354bb7ef2c4a2f70668c478a37da65141650bcc0a9df993b4ce42951e8d5d0d174c071897876d0bd7aa85b28f1faf17e4434254aeb46dcd03a1ac6f08a4080aa3f5056777a96e8d11f59e3caacb378ff72da6b49dbd67215c9199db09c7556982b3f95dcfe0e99d77a4473e4247796b365112f935461785ebcb5075ed6da002160efbc2618af3164a0fe8c0838ec5a39906bc1d3395f25aa83f3d26c5b883ab780861426e997cee2cb1e942082caf034666a9f69086f9880daa8c9a6242a916a9a9306e19814c82271e670e2d1b75902b164f35467b1c1759ec44a269fcb1fb7fcd666921360cafd3b3443d82d50e6b67686ae24988583f2077529b9b0a30e6aa0d21ddeeec53c164987fe0450bb5195778bb34ddaaa53213c481ca37d12c7e040dcc068b329e55ca33e607f2059d0e41fb35a0d7eed2eff0b61a49f9d54afe444319927c7ed79ebd0c61ff68b9bf44751d07be775ef55c05a2630d39209f2a331962058c1dbee467faa7ef688497052f4d8ff19a5d3d198b8c2dbd126606bde05554e19b73fbbcefee69cc66366a5d0cd20b026cd938985fa3b98359e8da4f7318d4ad757454d8f96e215c3b2eba90880c93188796c7423f0956e7214f8958e26a3412f14f499b28ae7d10c4df16374047d7d101b5cebed2fc692e8d197e98a0147a11e0b7903e3c7be169ad24bc61169de92be25a34f0a6f764b502c1087afbfb3d4c39475f3153ba28f30cc1cb2920c2b4a8b2fb621fe4c47fdb19de6361814ff808b44e185c536cda9c467a3830727d1df07d3639bc940fc7e0bb75b85b83e805d2238c95368424dc454196479a12b3a114d91b6635438ee35e97e4eda299209bfa732a45fbb4ca1b167aef71d09f4ed56c9375b163a2ba8fc66cc581ae4136561789075904b4114ebcccc17deaf132ba03960930ff6e8c4d62707e411e42123982abcb664a9dfde0644e8178d16d19cd625adca5a16a93493b1390883d54816a530961344ef68637a92e9aaabfa9f553795908c5355679145a8e64d13c363c1a395c04dc08cecbbcecad52bd17af5c31bdb7e312486d6992a72230d0347987e057b55f3861b290496cd1a1c44ee1a5e1cdc332cf6cebd0449b45a5e864d25130ce2a0f7d992e5bd29ce69f6e9e77c0853e73c0557248980f34990875b80dd8e63f3679d61d6fd84d5ac5c9d12fb3feca5f5a7bbbc5add6c0774f728cf1a734818ff13ceccacdc36f385a5cfe351b44556995285c69c0368442e7a75d85de5b55609f31db8ba798c281cc09c3c3a986d73e065bf759cace5b488217cfc23e0ac526726d97fe0bc08ba62c3fc2b63b49c0b0d1a1176bfd00f"}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x6}]}, 0x1128}, 0x1, 0x0, 0x0, 0x84}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x810, 0xffffffffffffffff, 0x0)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000002, 0x13, r0, 0x10000000)
r7 = openat2$dir(0xffffffffffffff9c, &(0x7f0000001640)='./file0\x00', &(0x7f0000001680)={0x100, 0x80, 0xd}, 0x18)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000001700)=@IORING_OP_MKDIRAT={0x25, 0x4d, 0x0, r7, 0x0, &(0x7f00000016c0)='./file0\x00', 0x40, 0x0, 0x1, {0x0, r8}})
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000001780), r4)
sendmsg$DEVLINK_CMD_RATE_SET(r1, &(0x7f0000001840)={&(0x7f0000001740)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001800)={&(0x7f00000017c0)={0x24, r9, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x8005}, 0x40010)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f0000001880)={0xd20, [[0x9, 0x5c0, 0x6, 0x8, 0x6, 0x9, 0x1bb0, 0xffffffff], [0x8, 0xa72b, 0xffff, 0x1, 0xf, 0x31, 0x8, 0x4], [0x3, 0xf, 0x1, 0xed, 0xc8, 0x6, 0x8, 0x1]], '\x00', [{0x3, 0x4, 0x1, 0x0, 0x0, 0x1}, {0xe, 0x1000, 0x0, 0x0, 0x0, 0x1}, {0xfffffffa, 0x8, 0x1, 0x1}, {0x9, 0x8, 0x1, 0x1}, {0x5, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x3, 0x9, 0x0, 0x1, 0x1}, {0x8, 0xff, 0x1, 0x0, 0x0, 0x1}, {0xc, 0x3, 0x1, 0x0, 0x1}, {0x3, 0x510a479, 0x1, 0x1, 0x1}, {0x401, 0x8, 0x1, 0x1, 0x1}, {0x0, 0x7, 0x1, 0x0, 0x1, 0x1}, {0x710, 0x1, 0x1, 0x0, 0x0, 0x1}], '\x00', 0x8})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000001b00)={0x48, 0x5, 0x0, 0x0, <r10=>0xffffffffffffffff})
ioctl$IOMMU_TEST_OP_ACCESS_RW(r0, 0x3ba0, &(0x7f0000001bc0)={0x48, 0x8, r10, 0x0, 0xd134, 0x26, &(0x7f0000001b80)="8c8177ef991e4e3cd28361ad453aacf78296f0503fa2be6a7eba8bd85f20128bacceaf376068", 0x4})
r11 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_PIM(r11, 0x0, 0xcf, &(0x7f0000001c40)=0x2, 0x4)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r4, 0x10e, 0x2, &(0x7f0000001c80)=0x12, 0x4)
openat$kvm(0xffffffffffffff9c, &(0x7f0000001cc0), 0x400400, 0x0)
r12 = io_uring_setup(0x10, &(0x7f0000001d00)={0x0, 0xbdec, 0x200, 0x3, 0xf})
io_uring_register$IORING_UNREGISTER_PERSONALITY(r12, 0xa, 0x0, r8)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000001e80)={@fallback=r11, 0x3, 0x0, 0x3, &(0x7f0000001d80)=[0x0, 0x0], 0x2, 0x0, &(0x7f0000001dc0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000001e00)=[0x0], &(0x7f0000001e40)=[0x0, 0x0, 0x0, 0x0]}, 0x40)
r13 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r13, 0x11b, 0x4, &(0x7f0000001f80)={&(0x7f0000001ec0)=""/173, 0x2a000, 0x800, 0xa0b, 0x3}, 0x20)
r14 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_JOIN_OCB(r14, &(0x7f0000002100)={&(0x7f0000001fc0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000020c0)={&(0x7f0000002040)={0x58, r3, 0x100, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x20}}}}, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xd7}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x17}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xa6e}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8}]}, 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x40)

550.669807ms ago: executing program 0 (id=523):
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="280000005f00010600e400004013000018"], 0x28}], 0x1}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text16={0x10, &(0x7f00000002c0)="66b9800000c00f326635000400000f300f20c06635200000000f22c0eab500e80064660fc7760066b9910000400f3226658002e3b8d2000f00d80f3064652ef30f09660fc731", 0x46}], 0x1, 0x74, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000600)={'team0\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@newqdisc={0xc8, 0x24, 0xf0b, 0x0, 0xfffffffc, {0x0, 0x0, 0x12, r5, {}, {0xffff, 0xffff}, {0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0xb}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4], [0x0, 0x8, 0x0, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}]}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x6, 0x6, 0x2, 0xecf3, 0x1, 0x0, 0xd}}, {0x4}}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)

550.451153ms ago: executing program 2 (id=524):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
mq_open(0x0, 0x0, 0x0, &(0x7f0000000140)={0x8000})
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000040)={r1, r1, r1}, &(0x7f0000001cc0)=""/199, 0xc7, &(0x7f00000000c0)={&(0x7f0000000000)={'sm3\x00'}})
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000002c00010000000000040000000400008005001100fe000000"], 0x1c}], 0x1, 0x0, 0x0, 0x8800}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) (async)
mq_open(0x0, 0x0, 0x0, &(0x7f0000000140)={0x8000}) (async)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd) (async)
keyctl$dh_compute(0x17, &(0x7f0000000040)={r1, r1, r1}, &(0x7f0000001cc0)=""/199, 0xc7, &(0x7f00000000c0)={&(0x7f0000000000)={'sm3\x00'}}) (async)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000002c00010000000000040000000400008005001100fe000000"], 0x1c}], 0x1, 0x0, 0x0, 0x8800}, 0x0) (async)

380.665869ms ago: executing program 2 (id=525):
syz_emit_ethernet(0x36, &(0x7f0000000480)={@broadcast, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x90, 0x6, 0x0, @local, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2}}}}}}, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000100)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @private, @empty}, {0x4e20, 0x17c1, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "0b86c107cddd39d10e870794ae120f860174b07efe05336d54f519ebba5a2b26", "5e5992c2209db5127a4a84d3d6e03d081a4118a2bbd22f0ca038289c45b30eca6703476382c29175c40096a9c60c3cce", "6a9f3a451dd7eb4523c02c2a4a00f81073727f3ac9f91e284b975a32", {"8f865412904b133eebafc6eb170fb006", "21144ab13a642475fc21552dce5cda9c"}}}}}}}, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000080)={@private2, <r0=>0x0}, &(0x7f00000000c0)=0x14)
setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, &(0x7f0000000200)={r0, 0x1, 0x6, @multicast}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0xc}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

380.045275ms ago: executing program 2 (id=527):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000040)={0xf0f004, 0x5})
r2 = socket$inet6(0xa, 0x3, 0x8000000003c)
r3 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet6_buf(r3, 0x29, 0x39, &(0x7f0000000040), 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x5}, 0x1c)
sendmsg(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000100)="2b10", 0x2}, {&(0x7f0000001a80)="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", 0x5e6}], 0x2, 0x0, 0x0, 0x2c}, 0x4)

309.900492ms ago: executing program 0 (id=529):
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x100000000000000)

309.571221ms ago: executing program 4 (id=531):
r0 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x9}}, './file0\x00'})
io_uring_enter(r1, 0x3d91, 0xdace, 0x0, &(0x7f0000000040), 0x8)
syz_open_dev$dri(0x0, 0x20, 0x0)
setsockopt$inet_sctp_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000080)=0x7, 0x4)
close_range(r0, 0xffffffffffffffff, 0x0)

309.259229ms ago: executing program 0 (id=532):
r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_subtree(r0, &(0x7f00000001c0), 0x2, 0x0) (async, rerun: 32)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0) (async, rerun: 32)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x4a081, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000500)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}) (async)
write$tun(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001"], 0xfdef) (async)
r4 = gettid()
write$P9_RGETLOCK(r0, &(0x7f00000000c0)={0x27, 0x37, 0x1, {0x1, 0x5, 0x4, r4, 0x9, '\x82N[++&]{*'}}, 0x27) (async)
write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'cpuset'}]}, 0x8) (async)
ioctl$FS_IOC_GETFSUUID(r1, 0x80111500, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000002007910480000000000610430000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x0, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x14)

250.676052ms ago: executing program 4 (id=533):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x4, 0x6, 0x590, 0x298, 0x298, 0x298, 0xd0, 0x1c8, 0x4c0, 0x4c0, 0x4c0, 0x4c0, 0x4c0, 0x6, 0x0, {[{{@ipv6={@mcast2, @remote, [], [], 'geneve1\x00', 'batadv0\x00'}, 0x0, 0xa8, 0xd0, 0x0, {0x7a00000000000000}}, @HL={0x28, 'HL\x00', 0x0, {0x2}}}, {{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, [], [], 'wg2\x00', 'veth1_to_bond\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00', 0x0, {0x3}}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast2}, @remote, [], [], 'vlan1\x00', 'veth0_to_bridge\x00'}, 0x0, 0xa8, 0xd0, 0x48000000}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@private, @ipv4=@local}}}, {{@uncond, 0x0, 0xf8, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5f0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffff81}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_STP_STATE={0x8, 0x5, 0x1}, @IFLA_BR_FORWARD_DELAY={0x8, 0x1, 0x1c}]}}}]}, 0x44}}, 0x0)

250.485189ms ago: executing program 1 (id=534):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000200))
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newtaction={0x88, 0x30, 0x871a15abc695fb3d, 0x4c, 0x0, {}, [{0x74, 0x1, [@m_tunnel_key={0x70, 0x1, 0x0, 0x0, {{0xf}, {0x40, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @broadcast}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @loopback}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x8}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @empty}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}}, 0x0)

249.944891ms ago: executing program 4 (id=535):
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0) (async)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106) (async)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) (async)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x9)
socket$inet_mptcp(0x2, 0x1, 0x106) (async)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r2, &(0x7f00000000c0)="eb", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000080), &(0x7f0000000100)=0x8) (async)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000080), &(0x7f0000000100)=0x8)
sendmmsg(r1, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044000)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x3, 0x0)
sync()
openat$sequencer(0xffffff9c, &(0x7f0000000040), 0x8000, 0x0)
ioctl$EVIOCGREP(r3, 0x80284504, &(0x7f0000000040)=""/102)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x28, r5, 0x9, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1d}]}]}, 0x28}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r7, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r6, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80410040}, 0xc, &(0x7f0000000180)={&(0x7f00000004c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB="01002cbd7000ffdbdf0c04000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800)

248.202543ms ago: executing program 1 (id=536):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x100, 0x70bd26, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x9}}}}, [@NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}]}, 0x28}, 0x1, 0x0, 0x0, 0x40805}, 0x40081)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r0)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x4c, r1, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@pci={{0x8}, {0x11}}, @pci={{0x8}, {0x11}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8001}, 0x40090)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000400)={&(0x7f00000002c0)={0x11c, r1, 0x8, 0x70bd27, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @pci={{0x8}, {0x11}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}]}, 0x11c}, 0x1, 0x0, 0x0, 0x20000000}, 0x81)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(r2, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x28, 0x140b, 0x200, 0x70bd2c, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x8}, @RDMA_NLDEV_ATTR_RES_CM_IDN={0x8, 0x3f, 0x4}, @RDMA_NLDEV_ATTR_RES_CM_IDN={0x8, 0x3f, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4004801)
r3 = syz_open_procfs(0x0, &(0x7f0000000580)='oom_score\x00')
r4 = syz_genetlink_get_family_id$devlink(&(0x7f00000005c0), r0)
sendmsg$AUDIT_MAKE_EQUIV(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x28, 0x3f7, 0x2, 0x70bd2c, 0x25dfdbfb, {0x7, 0x7, './file0', './file0'}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x1004)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r3, &(0x7f00000007c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x24, 0x3, 0x8, 0x301, 0x0, 0x0, {0x5}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x3a}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x20008045)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r5, &(0x7f0000000940)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000900)={&(0x7f0000000840)={0xa8, r4, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@pci={{0x8}, {0x11}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0xa8}, 0x1, 0x0, 0x0, 0x20000000}, 0x8051)
sendmsg$DEVLINK_CMD_GET(r3, &(0x7f0000000a40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)={0x30, r1, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@pci={{0x8}, {0x11}}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000a80)={<r6=>0x0, 0x4, 0xfff8}, &(0x7f0000000ac0)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000b00)={0x0, 0x0, 0x3, 0x7, r6}, 0x10)
ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f0000000b40)={0x2, 0x1})
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000b80)={r6, 0x1, 0x9db}, &(0x7f0000000bc0)=0x8)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000c40), r0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000c80)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r3, &(0x7f0000000d40)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x28, r7, 0x2, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0xf0, 0x50}}}}, ["", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000040}, 0x80)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x1d, &(0x7f0000000d80), 0x4)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000e40)={'wpan1\x00', <r11=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000e80)={'wpan0\x00', <r12=>0x0})
sendmsg$NL802154_CMD_GET_INTERFACE(r9, &(0x7f0000000f40)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x30, r10, 0x10, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r12}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x800)
sendmsg$TIPC_NL_BEARER_GET(r0, &(0x7f0000001300)={&(0x7f0000000f80), 0xc, &(0x7f00000012c0)={&(0x7f0000000fc0)={0x2c4, 0x0, 0xf0a, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x130, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xda, 0x3, "052490f7fa75d2488a31f3e38f2ce291e00626899a300ac1316d3b9f1cc461f06768203762b9e503a9009fd5cd8b057d7df270c3d1eda716e988331d5202210656eb9d75ce6c478bcb28e77c7dcd49e4a3227358b040cc29e3ebdeb1d8999831ce6c9a564bd1ffc74a91d52d99658865baee8bbd56fca84397ecb1f3b66565ac248f12b71d32481305097aa536f9300ee3c297caa608848b58e697266ad5b522dd2871eafe85ca4e2dbd00602be71aea6140dfc55d509a756d367d09ef2947f8695847b9b0129f8f502d3d91d189823c7dbb3d7d394c"}, @TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "02850c0df169c37617d4a38927a892b9ef3a9427"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x8}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x7}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x400}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7148}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xe}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}]}, @TIPC_NLA_NODE={0x8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x80}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}]}, @TIPC_NLA_NODE={0x124, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_ID={0xef, 0x3, "104a7a6b1da10aef6fb3e8ccd0e0a62eb6dcd766252809e85adf683d593c1a8a461cd52951d788471c7481f06eb8d0ae79f29ba2e73a0a24a06e69911a44097aa26b40ea015fb6a4df8baead195fb6cb46f6ca90e7f54aeea00d7b88b081c3b4e81197773d496d57b6c31224257bc8cb2ec1fb9b7f6394ba8379f5b327cb7973cabe3d058a70ce4750b9a3fe54ac33f76df818a7c1e952058a7ca0a179a902c8e22a85f55d6014e8f0ffd6de5260371ec80adb52b392bc93859eed61a472eed1212fbfc6dce5674cf71a35ae61c0818741556dfe845c6f4727289b85a034419488f61bf46b51e2c65e3e61"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x10000}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x81}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xc93}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x2c4}, 0x1, 0x0, 0x0, 0x28000000}, 0x4008000)
r13 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001380), r5)
sendmsg$IPVS_CMD_FLUSH(r5, &(0x7f0000001540)={&(0x7f0000001340)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001500)={&(0x7f00000013c0)={0x110, r13, 0x800, 0x6, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x18, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'pim6reg0\x00'}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x3}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e21}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xe}, @IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_hsr\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0xf}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'batadv_slave_0\x00'}]}, @IPVS_CMD_ATTR_SERVICE={0x48, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x14, 0x21}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sed\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@loopback}]}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x0, 0xd}}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'syz_tun\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}]}]}, 0x110}, 0x1, 0x0, 0x0, 0x4090}, 0x0)

160.07052ms ago: executing program 1 (id=537):
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) (fail_nth: 21)

159.768919ms ago: executing program 0 (id=538):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r0, &(0x7f0000000000)={{0x6, @rose, 0x1}, [@null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="300000004a00010000000000000000000a0080", @ANYRES64], 0x30}}, 0x0)
write$tun(r1, &(0x7f0000001240)={@val={0x0, 0xf6}, @val={0x0, 0x0, 0x11}, @mpls={[], @ipv6=@icmpv6={0x0, 0x6, "ec9700", 0x18, 0x2c, 0x0, @local, @mcast2, {[], @ndisc_na={0x88, 0x0, 0x0, 0x85, '\x00', @ipv4={'\x00', '\xff\xff', @remote}}}}}}, 0x4e)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0xfffd, 0x0, @dev, 0x4}, 0x1c)
setsockopt$sock_int(r4, 0x1, 0x20, &(0x7f0000000100), 0x4)

70.944022ms ago: executing program 1 (id=539):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x45)
ioctl$sock_SIOCSPGRP(r0, 0x8902, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000240)=0x1, 0x4)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_script(r2, 0x0, 0xb)
splice(r1, 0x0, r3, 0x0, 0x80, 0x2)
write(0xffffffffffffffff, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$int_in(r5, 0x5421, &(0x7f0000000300)=0x400004)
splice(r4, 0x0, r5, 0x0, 0x7, 0x0)
sendmsg$inet(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10, &(0x7f0000000340)=[{&(0x7f00000000c0)="3f77273ff1cd4c6dda5cc335ed173f5d4ca2393f983cd07d94622fa21e213a6013dcaa6099b7583e4455e7dfa8a5a35a53411046c802e5b111c0f88cbd9091b15588d6f8e75b6b6849b15797ad31eb5193f9a741cbc5643e14c8ccc67f8abe337cb0bbe5f657b3c09bcc29398d4352bca83b17362367146b60636ad10f7425aa8de2587b7e247ae3a29db8c8c85dc59a22ab6a7059cfcc5feb06a9d8f4e6e3eb771b445712fa30b44a628d9b2e532b2b4ea5ef8a6295089a280d6144cfbe1223fc37c6ae32272a9563b16fed765188118183b4477615766d30", 0xd9}, {&(0x7f0000000380)="dd1e59e4ffffffff07bf6dd0a0dd2f04e99486270e4c45b2969924a17bcedd3174d8620fcaf36998545eefd0bd8cd9d0addd9742b2f8c2be703c75d679f3b17325c629cabd5538309ee8a5d1dd068b064cf2c05dc326d9ec2dd451cee05fc9024e54a5ea6e3852b2c950e715de059c7ff6f57345bfb92b419f139d94b3425cd30e1614d13d57b75970c5e4b46be6cf758c6164079d3e04668761485d8ce7364defd662a9053e4ed181ffa240", 0xac}, {&(0x7f00000004c0)="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", 0x11f}, {&(0x7f0000000280)="7e0a62113767cb7f43a4d3ad36a1f6d8190d5687df5a1f5c587fd722ed23886b9884c3a48c65027d7a0a3800ed5e461b075fa9683ff0a337da337287baabf5c86ef1a349a41713b31d06537588900e33718da71cbd80e8cc19b8e35f665c574cd5520c76105b724959ba8b734c496f73ce6763ae43eeab25fa8c6731ccbdc949b222072b29cbd1af6ff22dca006e28", 0x8f}], 0x4}, 0x20040000)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f00000001c0)={0x3, 0x4, 0x6, 0x80000001})
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000480)=[{0x0}, {&(0x7f0000000700)="6a8fa35b5ac69c3f3504", 0xa}], 0x2}}], 0x1, 0x40001)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000000))

70.832138ms ago: executing program 4 (id=540):
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@gettfilter={0x24, 0x2e, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x7}}}, 0x24}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f00000003c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYRESOCT=r3, @ANYRES32=r2, @ANYRESOCT=r2], 0x3c}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@bridge_delneigh={0x28, 0x1c, 0x63, 0x0, 0x0, {0x7, 0x0, 0x0, r3, 0x80, 0xbe}, [@NDA_LLADDR={0xa, 0x2, @random="63ccc7696324"}]}, 0x28}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001d"], 0x28}}, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)

69.981988ms ago: executing program 1 (id=541):
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x200000000000000)

68.871747ms ago: executing program 4 (id=542):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000040)={{0x2, 0x0, @multicast2}, {0x0, @remote}, 0x6, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'ip6gre0\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)=@newtclass={0x454, 0x28, 0x0, 0x0, 0x0, {}, [@tclass_kind_options=@c_netem={0xa}, @tclass_kind_options=@c_cake={0x9}, @TCA_RATE={0x6}, @tclass_kind_options=@c_htb={{0x8}, {0x408, 0x2, [@TCA_HTB_CTAB={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x846e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x84, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff]}]}}]}, 0x454}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)=ANY=[@ANYBLOB="3c02000019000100000000000000000000000000000000000000000000000000ac1414bb00000000000000000000000000000000000000000a00800000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000084010500e0000002000000000023450000000000000000003c00000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000fe8000000000000000000000000000bb000000003c00000000000000fe80000000000000000000000000000000000000000000000000000000000000000000007f000001000000000000000000000000000000006c00000000000000ac1414aa0000000000000000000000000000000000000000000000000000000000000000fe8000000000000000000000000000aa000000003300000000000000fe8000000000000000000000000000bb0000000000000600000000000000000000000000fe880000000000000000000000000001000000002b"], 0x23c}}, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000019180)={[&(0x7f0000019200)=' T\xfc\x81\x8e\x9f5\x0e \x043[B\xad\x13\x9f\xae\x8f\xbb\x9a\x0f\x9f\x03\xa5\xfc9\xbb\xa4.\xf4\xeb\x03\xf1\xb6\x8c\xc4E\x93\n&k\xec\xc8\xdch\xd6\x1e\xcb\fA\\da/O\xdcn7\x1b@\xbf\xfb\x17J\xaaD\xe4\x01\xbc', &(0x7f0000019080)='net/routq\x05']}, &(0x7f0000019100)={[&(0x7f00000191c0)=' \xd1\xc4\xfd.\xb9\xb6\x82\x9c\xb3t:e=V+\xfe\xd4\xf6\xf8\x89_\xb9\xd1$\x05B\xfaa\xcd\xc3\x1e\xc9\xe3P\xfe \xdc\xf5\x10\xd8\x8f\xbd\xad\xa0SD\x9a@\xfd]\x8f\x05\xb1J\xfaRc\xc6']})

547.948µs ago: executing program 1 (id=543):
r0 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="b40000000000000089113a00000000008510000002000000850000000800000095000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
shutdown(r3, 0x0)
recvmmsg(r3, &(0x7f0000001d00)=[{{0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000001d40)=""/4078, 0xfee}, {&(0x7f0000000340)=""/141, 0x8d}, {&(0x7f0000002d40)=""/4116, 0x1005}, {&(0x7f0000000400)=""/6, 0x6}, {&(0x7f0000000440)=""/231, 0xe7}], 0x5}}], 0x3ffffbd, 0x0, 0x0)
ppoll(&(0x7f0000000040)=[{r3, 0x80}], 0x1, 0x0, 0x0, 0x0)
write$UHID_INPUT(r2, &(0x7f0000002080)={0xc, {"a2e3ad21ed0d30f91b5d520987f70e06d038e7ff7fc6e5539b3271298b089b0708356e090890e0878f0e1ac6e7049b3350959bfc9a240d2567f3988f7ef319520100ffe8d178708c523c921b1b9b31070d075d0936cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb056d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498be0800000000000000f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6efcffac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ec126c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b8247068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c198045651cf4778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c5409711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5e3728ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e24919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5136651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f00000000000000000000b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d53588a0f9455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d664130bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7899484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5182cff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec6800068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ea4cd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f031755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb24ee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)
ioctl$SNDCTL_SEQ_GETINCOUNT(r2, 0x80045105, &(0x7f0000000000))
syz_open_dev$dri(0x0, 0x20, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

0s ago: executing program 4 (id=544):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x400, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f0000000380)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x24, 0x4, 0x0, 0x0, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @rand_addr, {[@timestamp={0x44, 0x1c, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x0, [{@multicast2}, {@empty}, {@broadcast}, {@empty}, {@multicast1}, {@private}]}, @rr={0x7, 0x23, 0x0, [@remote, @empty, @empty, @multicast1, @remote, @dev, @loopback, @rand_addr]}, @noop, @lsrr={0x83, 0x3}, @generic={0x0, 0x2}]}}}}})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r1, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000280)=ANY=[@ANYBLOB="dc01c6ba1cdcc12519250000000000007f007101001300000000000000000000000000000000000000000000000000000000000000dce600000000000000", @ANYRES32=0x0, @ANYBLOB="200100000000000000000000000000020000000032000000fe8000000000000000000000000000bb00"/168], 0x1dc}}, 0x0)
r2 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f00000001c0)=ANY=[@ANYBLOB='2'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READ_FIXED)
io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f0800034000000004640000000e0a01020000000000000000010000000900020073797a32000000000900010073797a30"], 0xf0}}, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="95010000ff00000085a80a5c06890bc22c89ea92d65122"])

kernel console output (not intermixed with test programs):

01][ T5926] veth0_vlan: entered promiscuous mode
[   35.840773][ T5930] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   35.843608][ T5930] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   35.847449][ T5930] batman_adv: batadv0: Interface activated: batadv_slave_0
[   35.853194][ T5930] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   35.856846][ T5930] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   35.859930][ T5930] batman_adv: batadv0: Interface activated: batadv_slave_1
[   35.867828][ T5920] veth1_vlan: entered promiscuous mode
[   35.870459][ T5926] veth1_vlan: entered promiscuous mode
[   35.876154][ T5930] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   35.878471][ T5930] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   35.880717][ T5930] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   35.883008][ T5930] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   35.891946][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   35.894313][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   35.903190][ T5920] veth0_macvtap: entered promiscuous mode
[   35.913559][ T5920] veth1_macvtap: entered promiscuous mode
[   35.935622][  T216] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   35.938499][ T5920] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   35.938522][ T5920] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   35.938528][ T5920] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   35.938535][ T5920] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   35.938975][ T5920] batman_adv: batadv0: Interface activated: batadv_slave_0
[   35.942199][  T216] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   35.949477][ T5926] veth0_macvtap: entered promiscuous mode
[   35.960671][ T5920] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   35.960757][   T39] audit: type=1400 audit(1734524406.891:115): avc:  denied  { mount } for  pid=5919 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   35.963384][ T5920] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   35.963392][ T5920] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   35.976861][ T5920] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   35.980366][ T5920] batman_adv: batadv0: Interface activated: batadv_slave_1
[   35.984037][ T5920] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   35.986337][ T5920] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   35.988702][ T5920] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   35.990956][ T5920] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   35.997398][ T1223] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   35.999254][ T5926] veth1_macvtap: entered promiscuous mode
[   35.999757][ T5919] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   36.000244][ T1223] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   36.025830][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   36.028744][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   36.042926][ T5926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   36.045673][ T5926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.048485][ T5926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   36.051353][ T5926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.054048][ T5926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   36.056691][ T5926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.060891][ T5926] batman_adv: batadv0: Interface activated: batadv_slave_0
[   36.070518][ T5926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   36.074214][ T5926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.076777][ T5926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   36.079477][ T5926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.081993][ T5926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   36.085104][ T5926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.089139][ T5926] batman_adv: batadv0: Interface activated: batadv_slave_1
[   36.095065][ T5926] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   36.095108][ T5926] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   36.099452][ T5926] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   36.102407][ T5926] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   36.108165][  T216] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   36.108178][  T216] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   36.122192][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   36.122208][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   36.177660][   T69] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   36.179709][   T69] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   36.190759][ T1223] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   36.192848][ T1223] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   36.196516][ T5303] Bluetooth: hci3: command tx timeout
[   36.204034][ T5303] Bluetooth: hci0: command tx timeout
[   36.211163][ T6012] IPv6: addrconf: prefix option has invalid lifetime
[   36.237883][ T6020] fuse: blksize only supported for fuseblk
[   36.253364][ T6020] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(12)
[   36.255210][ T6020] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   36.260653][ T6020] vhci_hcd vhci_hcd.0: Device attached
[   36.264933][ T6022] vhci_hcd: connection closed
[   36.265925][  T216] vhci_hcd: stop threads
[   36.268738][  T216] vhci_hcd: release socket
[   36.270079][  T216] vhci_hcd: disconnect device
[   36.274498][ T5303] Bluetooth: hci1: command tx timeout
[   36.274669][ T5925] Bluetooth: hci2: command tx timeout
[   36.290870][ T6009] kvm: pic: non byte write
[   36.393835][ T6038] QAT: Device 7 not found
[   36.398689][ T6039] netlink: 1275 bytes leftover after parsing attributes in process `syz.2.13'.
[   36.401275][ T6039] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   36.429843][ T6041] JFS: discard option not supported on device
[   36.432031][ T6041] syz.1.15: attempt to access beyond end of device
[   36.432031][ T6041] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0
[   36.436233][ T6041] syz.1.15: attempt to access beyond end of device
[   36.436233][ T6041] nbd1: rw=0, sector=120, nr_sectors = 8 limit=0
[   36.439505][ T6041] Mount JFS Failure: -5
[   36.468594][ T6048] netlink: 52 bytes leftover after parsing attributes in process `syz.2.17'.
[   36.492941][ T6052] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   36.500993][ T6052] SELinux:  Context system_u:object_r:su_exec_t:s0 is not valid (left unmapped).
[   36.700063][ T6069] netlink: 68 bytes leftover after parsing attributes in process `syz.2.23'.
[   36.702305][ T6069] netlink: 68 bytes leftover after parsing attributes in process `syz.2.23'.
[   36.972482][ T6101] gfs2: path_lookup on �6(�+�d�Q�nB�!eU��V�!�`:� 8�DSE�������	�y|YT��{-��
����,mb/ returned error -2
[   36.987342][ T6101] Zero length message leads to an empty skb
[   37.074112][ T6107] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   37.077463][ T6109] Process accounting resumed
[   37.160769][ T6116] netlink: 204 bytes leftover after parsing attributes in process `syz.1.33'.
[   37.329846][ T6121] xt_hashlimit: size too large, truncated to 1048576
[   37.364139][ T6072] Process accounting resumed
[   37.392644][ T6125] netlink: 8 bytes leftover after parsing attributes in process `syz.2.38'.
[   37.401290][ T6127] netlink: 28 bytes leftover after parsing attributes in process `syz.1.45'.
[   37.507564][ T6143] cgroup: Invalid name
[   37.546598][ T6148] program syz.1.44 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   37.749487][ T6168] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   37.778294][ T6170] Driver unsupported XDP return value 0 on prog  (id 9) dev N/A, expect packet loss!
[   37.813398][ T6172] netlink: 'syz.2.54': attribute type 7 has an invalid length.
[   37.815629][ T6172] netlink: 244 bytes leftover after parsing attributes in process `syz.2.54'.
[   37.900194][ T6184] netlink: 52 bytes leftover after parsing attributes in process `syz.2.60'.
[   37.902534][ T6184] netlink: 8 bytes leftover after parsing attributes in process `syz.2.60'.
[   37.905220][ T6184] tipc: MTU too low for tipc bearer
[   37.907815][ T6186] netlink: 'syz.3.58': attribute type 5 has an invalid length.
[   37.907838][ T6187] netlink: 'syz.3.58': attribute type 5 has an invalid length.
[   37.963963][ T1488] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   37.986923][ T6204] usb usb9: usbfs: process 6204 (syz.2.63) did not claim interface 0 before use
[   38.002965][ T6208] overlay: ./file0 is not a directory
[   38.062765][ T6216] raw_sendmsg: syz.3.65 forgot to set AF_INET. Fix it!
[   38.114675][ T1488] usb 6-1: Using ep0 maxpacket: 32
[   38.118320][ T1488] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[   38.123778][ T1488] usb 6-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[   38.129104][ T1488] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   38.131780][ T1488] usb 6-1: Product: syz
[   38.132890][ T1488] usb 6-1: Manufacturer: syz
[   38.134987][ T1488] usb 6-1: SerialNumber: syz
[   38.138328][ T1488] usb 6-1: config 0 descriptor??
[   38.140997][ T6165] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   38.148857][ T1488] hub 6-1:0.0: bad descriptor, ignoring hub
[   38.151206][ T1488] hub 6-1:0.0: probe with driver hub failed with error -5
[   38.157938][ T1488] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input6
[   38.177407][ T6231] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[   38.253179][ T6239] openvswitch: netlink: Duplicate or invalid key (type 0).
[   38.255578][ T6239] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   38.274577][ T5925] Bluetooth: hci0: command tx timeout
[   38.284142][ T5925] Bluetooth: hci3: command tx timeout
[   38.306844][ T6246] (unnamed net_device) (uninitialized): peer notification delay (73) is not a multiple of miimon (100), value rounded to 0 ms
[   38.321365][ T6246] bond1: entered promiscuous mode
[   38.323249][ T6246] bond1: entered allmulticast mode
[   38.327176][ T6246] 8021q: adding VLAN 0 to HW filter on device bond1
[   38.340414][ T6249] Bluetooth: MGMT ver 1.23
[   38.351290][ T5988] usb 6-1: USB disconnect, device number 2
[   38.351293][    C2] usbtouchscreen 6-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[   38.355503][ T5925] Bluetooth: hci1: command tx timeout
[   38.376576][ T6253] program syz.2.80 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   38.509750][ T6262] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   38.511398][ T6275] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   38.597863][ T6288] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.600322][ T6288] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.603194][ T6288] bridge0: entered allmulticast mode
[   38.604344][ T6290] netlink: 'syz.3.89': attribute type 1 has an invalid length.
[   38.633998][   T35] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   38.701626][ T6297] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   38.705351][ T6297] batadv_slave_0: entered promiscuous mode
[   38.706945][ T6297] batadv_slave_0: entered allmulticast mode
[   38.739389][ T6299] 9pnet_fd: Insufficient options for proto=fd
[   38.796331][   T35] usb 5-1: Using ep0 maxpacket: 8
[   38.804376][   T35] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[   38.807908][   T35] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[   38.811033][   T35] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   38.818633][   T35] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   38.821854][   T35] usb 5-1: New USB device strings: Mfr=1, Product=35, SerialNumber=3
[   38.824743][   T35] usb 5-1: Product: syz
[   38.826306][   T35] usb 5-1: Manufacturer: syz
[   38.828012][   T35] usb 5-1: SerialNumber: syz
[   38.833277][   T35] cdc_ncm 5-1:1.0: skipping garbage
[   38.835624][   T35] cdc_ncm 5-1:1.0: CDC Union missing and no IAD found
[   38.838009][   T35] cdc_ncm 5-1:1.0: bind() failure
[   39.036050][   T35] usb 5-1: USB disconnect, device number 2
[   39.084795][ T5987] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[   39.164772][ T1020] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   39.244754][ T5987] usb 8-1: not running at top speed; connect to a high speed hub
[   39.247634][ T5987] usb 8-1: config 0 has an invalid interface number: 58 but max is 3
[   39.249637][ T5987] usb 8-1: config 0 has an invalid interface number: 30 but max is 3
[   39.251608][ T5987] usb 8-1: config 0 has an invalid interface number: 182 but max is 3
[   39.253587][ T5987] usb 8-1: config 0 has an invalid interface number: 204 but max is 3
[   39.255621][ T5987] usb 8-1: config 0 has no interface number 0
[   39.257126][ T5987] usb 8-1: config 0 has no interface number 1
[   39.258666][ T5987] usb 8-1: config 0 has no interface number 2
[   39.260181][ T5987] usb 8-1: config 0 has no interface number 3
[   39.261686][ T5987] usb 8-1: config 0 interface 58 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[   39.264290][ T5987] usb 8-1: config 0 interface 58 altsetting 7 endpoint 0x4 has invalid maxpacket 1024, setting to 64
[   39.266891][ T5987] usb 8-1: config 0 interface 58 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[   39.269457][ T5987] usb 8-1: config 0 interface 58 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[   39.272055][ T5987] usb 8-1: config 0 interface 58 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[   39.275119][ T5987] usb 8-1: config 0 interface 58 altsetting 7 has a duplicate endpoint with address 0x4, skipping
[   39.277646][ T5987] usb 8-1: config 0 interface 58 altsetting 7 endpoint 0x7 has invalid maxpacket 1023, setting to 64
[   39.280161][ T5987] usb 8-1: config 0 interface 58 altsetting 7 endpoint 0x5 has invalid wMaxPacketSize 0
[   39.282493][ T5987] usb 8-1: config 0 interface 30 altsetting 5 has a duplicate endpoint with address 0x4, skipping
[   39.285034][ T5987] usb 8-1: config 0 interface 30 altsetting 5 endpoint 0x9 has an invalid bInterval 46, changing to 4
[   39.287641][ T5987] usb 8-1: config 0 interface 30 altsetting 5 endpoint 0xD has invalid maxpacket 1024, setting to 64
[   39.290240][ T5987] usb 8-1: config 0 interface 30 altsetting 5 endpoint 0x2 has invalid maxpacket 512, setting to 64
[   39.292773][ T5987] usb 8-1: config 0 interface 204 altsetting 255 endpoint 0xF has invalid maxpacket 512, setting to 64
[   39.295412][ T5987] usb 8-1: config 0 interface 204 altsetting 255 endpoint 0x6 has invalid maxpacket 1568, setting to 64
[   39.297924][ T5987] usb 8-1: config 0 interface 204 altsetting 255 has a duplicate endpoint with address 0x4, skipping
[   39.300457][ T5987] usb 8-1: config 0 interface 204 altsetting 255 has a duplicate endpoint with address 0x2, skipping
[   39.303049][ T5987] usb 8-1: config 0 interface 58 has no altsetting 0
[   39.304780][ T5987] usb 8-1: config 0 interface 30 has no altsetting 0
[   39.306458][ T5987] usb 8-1: config 0 interface 182 has no altsetting 0
[   39.308066][ T5987] usb 8-1: config 0 interface 204 has no altsetting 0
[   39.311084][ T5987] usb 8-1: New USB device found, idVendor=1b3d, idProduct=931e, bcdDevice=ff.4c
[   39.313264][ T5987] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   39.315257][ T5987] usb 8-1: Product: ဉ
[   39.316252][ T5987] usb 8-1: Manufacturer: 쑉追컦駾譻ꧢↄᄻ穟瀘旗慞갢
[   39.319192][ T5987] usb 8-1: config 0 descriptor??
[   39.320903][ T6302] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[   39.324209][ T1020] usb 6-1: Using ep0 maxpacket: 16
[   39.328688][ T1020] usb 6-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[   39.330876][ T1020] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   39.332783][ T1020] usb 6-1: Product: syz
[   39.333820][ T1020] usb 6-1: Manufacturer: syz
[   39.335018][ T1020] usb 6-1: SerialNumber: syz
[   39.344148][ T1020] r8152-cfgselector 6-1: Unknown version 0x0000
[   39.345680][ T1020] r8152-cfgselector 6-1: config 0 descriptor??
[   39.526088][   T39] kauditd_printk_skb: 181 callbacks suppressed
[   39.526097][   T39] audit: type=1400 audit(1734524410.461:297): avc:  denied  { setopt } for  pid=6301 comm="syz.3.93" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   39.533775][   T39] audit: type=1400 audit(1734524410.461:298): avc:  denied  { ioctl } for  pid=6301 comm="syz.3.93" path="socket:[10766]" dev="sockfs" ino=10766 ioctlcmd=0x89f1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   39.549163][ T5987] ftdi_sio 8-1:0.58: FTDI USB Serial Device converter detected
[   39.550173][   T39] audit: type=1400 audit(1734524410.481:299): avc:  denied  { mounton } for  pid=6305 comm="syz.1.95" path="/proc/85/cgroup" dev="proc" ino=9893 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[   39.553281][ T5987] ftdi_sio ttyUSB0: unknown device type: 0xff4c
[   39.564156][ T5987] ftdi_sio 8-1:0.30: FTDI USB Serial Device converter detected
[   39.566805][ T5987] ftdi_sio ttyUSB1: unknown device type: 0xff4c
[   39.570826][ T5987] ftdi_sio 8-1:0.182: FTDI USB Serial Device converter detected
[   39.571213][   T39] audit: type=1326 audit(1734524410.501:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6308 comm="syz.0.96" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f90ccf85d29 code=0x0
[   39.573699][ T5987] ftdi_sio ttyUSB2: unknown device type: 0xff4c
[   39.583495][ T5987] ftdi_sio 8-1:0.204: FTDI USB Serial Device converter detected
[   39.588011][ T5987] ftdi_sio ttyUSB3: unknown device type: 0xff4c
[   39.593108][ T5987] usb 8-1: USB disconnect, device number 2
[   39.599614][ T5987] ftdi_sio 8-1:0.58: device disconnected
[   39.604008][ T1020] r8152-cfgselector 6-1: Unknown version 0x0000
[   39.605552][ T1020] r8152-cfgselector 6-1: bad CDC descriptors
[   39.609482][ T5987] ftdi_sio 8-1:0.30: device disconnected
[   39.615003][ T1020] r8152-cfgselector 6-1: USB disconnect, device number 3
[   39.618423][ T5987] ftdi_sio 8-1:0.182: device disconnected
[   39.624824][ T5987] ftdi_sio 8-1:0.204: device disconnected
[   39.713323][   T39] audit: type=1400 audit(1734524410.641:301): avc:  denied  { execute } for  pid=6327 comm="syz.2.100" dev="tmpfs" ino=3072 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   39.713391][ T6328] process 'syz.2.100' launched '/dev/fd/3' with NULL argv: empty string added
[   39.723430][   T39] audit: type=1400 audit(1734524410.651:302): avc:  denied  { execute_no_trans } for  pid=6327 comm="syz.2.100" path=2F6D656D66643AA39F6EB4645204693502ACCEE1889D5B4038D7CE1F2039497F151D933DB5E75C274CE6D28EBC294A7454447181CF81BAE531F520C8103EC95C85174CBFCF91DF4DF3025E542A202864656C6574656429 dev="tmpfs" ino=3072 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   39.776404][   T39] audit: type=1400 audit(1734524410.711:303): avc:  denied  { mounton } for  pid=6330 comm="syz.1.102" path="/32/file0" dev="tmpfs" ino=190 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   39.874089][   T39] audit: type=1400 audit(1734524410.801:304): avc:  denied  { read } for  pid=6341 comm="syz.2.103" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   39.879177][ T6342] sctp: [Deprecated]: syz.2.103 (pid 6342) Use of int in max_burst socket option deprecated.
[   39.879177][ T6342] Use struct sctp_assoc_value instead
[   39.879807][   T39] audit: type=1400 audit(1734524410.811:305): avc:  denied  { open } for  pid=6341 comm="syz.2.103" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   39.887395][ T6343] sctp: [Deprecated]: syz.2.103 (pid 6343) Use of int in max_burst socket option deprecated.
[   39.887395][ T6343] Use struct sctp_assoc_value instead
[   39.891092][   T39] audit: type=1400 audit(1734524410.811:306): avc:  denied  { map } for  pid=6341 comm="syz.2.103" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   39.964100][ T5303] Bluetooth: hci2: command tx timeout
[   40.225535][ T6373] netlink: 'syz.3.112': attribute type 1 has an invalid length.
[   40.278372][ T6377] vivid-007: =================  START STATUS  =================
[   40.280577][ T6377] vivid-007: Generate PTS: true
[   40.281951][ T6377] vivid-007: Generate SCR: true
[   40.283795][ T6377] tpg source WxH: 640x360 (Y'CbCr)
[   40.286511][ T6377] tpg field: 1
[   40.287550][ T6377] tpg crop: 640x360@0x0
[   40.288771][ T6377] tpg compose: 640x360@0x0
[   40.289980][ T6377] tpg colorspace: 8
[   40.291001][ T6377] tpg transfer function: 0/0
[   40.292214][ T6377] tpg Y'CbCr encoding: 0/0
[   40.293414][ T6377] tpg quantization: 0/0
[   40.295001][ T6377] tpg RGB range: 0/2
[   40.296078][ T6377] vivid-007: ==================  END STATUS  ==================
[   40.354266][ T5303] Bluetooth: hci3: command tx timeout
[   40.354425][ T5925] Bluetooth: hci0: command tx timeout
[   40.434017][ T5925] Bluetooth: hci1: command tx timeout
[   40.435231][ T6382] capability: warning: `syz.0.116' uses deprecated v2 capabilities in a way that may be insecure
[   40.440061][ T6382] binfmt_misc: register: failed to install interpreter file ./file0
[   40.479587][ T6390] netlink: 'syz.3.118': attribute type 25 has an invalid length.
[   40.485452][ T6390] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   40.487886][ T6390] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   40.490174][ T6390] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   40.492476][ T6390] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   40.498486][ T6388] =======================================================
[   40.498486][ T6388] WARNING: The mand mount option has been deprecated and
[   40.498486][ T6388]          and is ignored by this kernel. Remove the mand
[   40.498486][ T6388]          option from the mount to silence this warning.
[   40.498486][ T6388] =======================================================
[   40.700823][ T6411] geneve0: default FDB implementation only supports local addresses
[   41.328626][ T6460] uprobe: syz.0.139:6460 failed to unregister, leaking uprobe
[   41.419934][    C3] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   41.463981][   T57] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   41.615111][   T57] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   41.618000][   T57] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   41.620569][   T57] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   41.622813][   T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   41.626312][ T6458] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   41.630742][   T57] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[   41.784103][ T5922] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[   41.832741][ T5987] usb 7-1: USB disconnect, device number 2
[   41.937431][ T5922] usb 5-1: config 0 interface 0 altsetting 18 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   41.940987][ T5922] usb 5-1: config 0 interface 0 altsetting 18 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   41.944292][ T5922] usb 5-1: config 0 interface 0 altsetting 18 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[   41.946870][ T5922] usb 5-1: config 0 interface 0 has no altsetting 0
[   41.950457][ T5922] usb 5-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[   41.952937][ T5922] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   41.955623][ T5922] usb 5-1: Product: syz
[   41.956806][ T5922] usb 5-1: Manufacturer: syz
[   41.958176][ T5922] usb 5-1: SerialNumber: syz
[   41.960993][ T5922] usb 5-1: config 0 descriptor??
[   41.963267][ T6470] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[   42.044044][ T5925] Bluetooth: hci2: command tx timeout
[   42.212502][ T5922] appledisplay 5-1:0.0: Error while getting initial brightness: -71
[   42.215813][ T5922] appledisplay 5-1:0.0: probe with driver appledisplay failed with error -71
[   42.220748][ T5922] usb 5-1: USB disconnect, device number 3
[   42.434567][ T5925] Bluetooth: hci3: command tx timeout
[   42.436726][ T5925] Bluetooth: hci0: command tx timeout
[   42.513987][ T5925] Bluetooth: hci1: command tx timeout
[   42.786474][ T6480] capability: warning: `syz.0.145' uses 32-bit capabilities (legacy support in use)
[   42.821496][ T6483] atomic_op ffff888026751998 conn xmit_atomic 0000000000000000
[   43.083051][ T6519] __nla_validate_parse: 6 callbacks suppressed
[   43.083063][ T6519] netlink: 8 bytes leftover after parsing attributes in process `syz.0.156'.
[   43.088425][ T6519] netlink: 24 bytes leftover after parsing attributes in process `syz.0.156'.
[   43.132185][ T6519] ata3.00: invalid multi_count 1 ignored
[   43.161146][ T1020] IPVS: starting estimator thread 0...
[   43.243966][ T6532] IPVS: using max 40 ests per chain, 96000 per kthread
[   43.288961][ T6538] warning: `syz.3.163' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   43.326866][ T6538] syzkaller0: entered promiscuous mode
[   43.329115][ T6538] syzkaller0: entered allmulticast mode
[   44.138720][ T6513] dccp_close: ABORT with 32 bytes unread
[   44.276957][ T6556] ������: renamed from bridge_slave_0 (while UP)
[   44.423083][ T6585] tmpfs: Bad value for 'huge'
[   44.473608][ T6593] xt_hashlimit: overflow, rate too high: 0
[   44.540344][   T39] kauditd_printk_skb: 54 callbacks suppressed
[   44.540355][   T39] audit: type=1400 audit(1734524415.471:361): avc:  denied  { getopt } for  pid=6570 comm="syz.0.174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   44.543566][ T6600] xt_hashlimit: size too large, truncated to 1048576
[   44.575591][ T6605] netlink: 8 bytes leftover after parsing attributes in process `syz.2.183'.
[   44.863956][ T5992] usb 7-1: new low-speed USB device number 3 using dummy_hcd
[   45.025115][ T5992] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[   45.027540][ T5992] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[   45.029507][ T5992] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[   45.031966][ T5992] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[   45.035233][ T5992] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[   45.037995][ T5992] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 55528, setting to 8
[   45.041498][ T5992] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[   45.043789][ T5992] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[   45.045946][ T5992] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[   45.050367][ T5992] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[   45.053272][ T5992] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[   45.056627][ T5992] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 55528, setting to 8
[   45.060145][ T5992] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[   45.062541][ T5992] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[   45.064854][ T5992] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[   45.067214][ T5992] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[   45.070021][ T5992] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[   45.072641][ T5992] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 55528, setting to 8
[   45.077767][ T5992] usb 7-1: string descriptor 0 read error: -22
[   45.079352][ T5992] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   45.081585][ T5992] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   45.089706][ T5992] adutux 7-1:246.0: ADU100  now attached to /dev/usb/adutux0
[   45.171764][ T6613] netlink: 'syz.0.186': attribute type 21 has an invalid length.
[   45.174603][ T6613] netlink: 128 bytes leftover after parsing attributes in process `syz.0.186'.
[   45.177950][ T6613] netlink: 'syz.0.186': attribute type 4 has an invalid length.
[   45.180701][ T6613] netlink: 'syz.0.186': attribute type 5 has an invalid length.
[   45.183413][ T6613] netlink: 3 bytes leftover after parsing attributes in process `syz.0.186'.
[   45.190624][ T6613] /dev/sg0: Can't lookup blockdev
[   45.205178][   T39] audit: type=1400 audit(1734524416.141:362): avc:  denied  { accept } for  pid=6617 comm="syz.3.187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   45.227852][   T39] audit: type=1400 audit(1734524416.161:363): avc:  denied  { set_context_mgr } for  pid=6622 comm="syz.0.188" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   45.235443][   T39] audit: type=1400 audit(1734524416.171:364): avc:  denied  { map } for  pid=6622 comm="syz.0.188" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   45.236742][ T6623] binder: 6622:6623 ioctl c018937b 20000100 returned -22
[   45.290375][ T6609] netlink: 1256 bytes leftover after parsing attributes in process `syz.2.184'.
[   45.292823][ T6609] openvswitch: netlink: Unexpected mask (mask=200, allowed=10048)
[   45.296584][   T39] audit: type=1400 audit(1734524416.231:365): avc:  denied  { bind } for  pid=6608 comm="syz.2.184" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   45.305361][ T5992] usb 7-1: USB disconnect, device number 3
[   45.341416][ T6638] netlink: 40 bytes leftover after parsing attributes in process `syz.2.192'.
[   45.344275][   T39] audit: type=1400 audit(1734524416.281:366): avc:  denied  { ioctl } for  pid=6637 comm="syz.2.192" path="pid:[4026532877]" dev="nsfs" ino=4026532877 ioctlcmd=0xb702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   45.397569][ T6653] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long
[   45.560027][   T39] audit: type=1400 audit(1734524416.491:367): avc:  denied  { ioctl } for  pid=6672 comm="syz.0.202" path="/dev/vhost-net" dev="devtmpfs" ino=1300 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   45.566322][ T6673] netlink: 12 bytes leftover after parsing attributes in process `syz.0.202'.
[   45.566584][   T39] audit: type=1400 audit(1734524416.501:368): avc:  denied  { getopt } for  pid=6672 comm="syz.0.202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   45.607818][ T6650] netlink: 108 bytes leftover after parsing attributes in process `syz.2.195'.
[   45.613941][ T5922] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   45.649019][   T39] audit: type=1400 audit(1734524416.581:369): avc:  denied  { mounton } for  pid=6682 comm="syz.0.205" path="/46/file1" dev="9p" ino=38535336 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   45.649049][ T6684] 9pnet_virtio: no channels available for device syz
[   45.657131][ T6684] 9pnet_virtio: no channels available for device syz
[   45.659060][ T6684] 9pnet_virtio: no channels available for device syz
[   45.660953][ T6684] 9pnet_virtio: no channels available for device syz
[   45.662805][ T6684] 9pnet_virtio: no channels available for device syz
[   45.665111][ T6684] 9pnet_virtio: no channels available for device syz
[   45.666982][ T6684] 9pnet_virtio: no channels available for device syz
[   45.668922][ T6684] 9pnet_virtio: no channels available for device syz
[   45.670790][ T6684] 9pnet_virtio: no channels available for device syz
[   45.672641][ T6684] 9pnet_virtio: no channels available for device syz
[   45.674568][ T6684] 9pnet_virtio: no channels available for device syz
[   45.676732][ T6684] 9pnet_virtio: no channels available for device syz
[   45.678577][ T6684] 9pnet_virtio: no channels available for device syz
[   45.680507][ T6684] 9pnet_virtio: no channels available for device syz
[   45.682382][ T6684] 9pnet_virtio: no channels available for device syz
[   45.684426][ T6684] 9pnet_virtio: no channels available for device syz
[   45.686271][ T6684] 9pnet_virtio: no channels available for device syz
[   45.688152][ T6684] 9pnet_virtio: no channels available for device syz
[   45.690025][ T6684] 9pnet_virtio: no channels available for device syz
[   45.691935][ T6684] 9pnet_virtio: no channels available for device syz
[   45.693796][ T6684] 9pnet_virtio: no channels available for device syz
[   45.695772][ T6684] 9pnet_virtio: no channels available for device syz
[   45.697692][ T6684] 9pnet_virtio: no channels available for device syz
[   45.699537][ T6684] 9pnet_virtio: no channels available for device syz
[   45.701387][ T6684] 9pnet_virtio: no channels available for device syz
[   45.703305][ T6684] 9pnet_virtio: no channels available for device syz
[   45.705222][ T6684] 9pnet_virtio: no channels available for device syz
[   45.707289][ T6684] 9pnet_virtio: no channels available for device syz
[   45.709152][ T6684] 9pnet_virtio: no channels available for device syz
[   45.711030][ T6684] 9pnet_virtio: no channels available for device syz
[   45.712865][ T6684] 9pnet_virtio: no channels available for device syz
[   45.714826][ T6684] 9pnet_virtio: no channels available for device syz
[   45.716679][ T6684] 9pnet_virtio: no channels available for device syz
[   45.718545][ T6684] 9pnet_virtio: no channels available for device syz
[   45.720390][ T6684] 9pnet_virtio: no channels available for device syz
[   45.722224][ T6684] 9pnet_virtio: no channels available for device syz
[   45.724170][ T6684] 9pnet_virtio: no channels available for device syz
[   45.726118][ T6684] 9pnet_virtio: no channels available for device syz
[   45.728002][ T6684] 9pnet_virtio: no channels available for device syz
[   45.729808][ T6684] 9pnet_virtio: no channels available for device syz
[   45.731650][ T6684] 9pnet_virtio: no channels available for device syz
[   45.733482][ T6684] 9pnet_virtio: no channels available for device syz
[   45.735478][ T6684] 9pnet_virtio: no channels available for device syz
[   45.737359][ T6684] 9pnet_virtio: no channels available for device syz
[   45.739204][ T6684] 9pnet_virtio: no channels available for device syz
[   45.741020][ T6684] 9pnet_virtio: no channels available for device syz
[   45.742873][ T6684] 9pnet_virtio: no channels available for device syz
[   45.744795][ T6684] 9pnet_virtio: no channels available for device syz
[   45.746686][ T6684] 9pnet_virtio: no channels available for device syz
[   45.748589][ T6684] 9pnet_virtio: no channels available for device syz
[   45.750453][ T6684] 9pnet_virtio: no channels available for device syz
[   45.752244][ T6684] 9pnet_virtio: no channels available for device syz
[   45.754373][ T6684] 9pnet_virtio: no channels available for device syz
[   45.756212][ T6684] 9pnet_virtio: no channels available for device syz
[   45.758075][ T6684] 9pnet_virtio: no channels available for device syz
[   45.759970][ T6684] 9pnet_virtio: no channels available for device syz
[   45.761816][ T6684] 9pnet_virtio: no channels available for device syz
[   45.763652][ T6684] 9pnet_virtio: no channels available for device syz
[   45.765607][ T6684] 9pnet_virtio: no channels available for device syz
[   45.767559][ T6684] 9pnet_virtio: no channels available for device syz
[   45.769384][ T6684] 9pnet_virtio: no channels available for device syz
[   45.771288][ T6684] 9pnet_virtio: no channels available for device syz
[   45.773132][ T6684] 9pnet_virtio: no channels available for device syz
[   45.775042][ T6684] 9pnet_virtio: no channels available for device syz
[   45.784476][ T5922] usb 6-1: too many configurations: 9, using maximum allowed: 8
[   45.787521][ T5922] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   45.789842][ T5922] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   45.792719][ T5922] usb 6-1: config 0 interface 0 has no altsetting 0
[   45.795801][ T5922] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   45.798157][ T5922] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   45.800956][ T5922] usb 6-1: config 0 interface 0 has no altsetting 0
[   45.803282][ T5922] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   45.805798][ T5922] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   45.808456][ T5922] usb 6-1: config 0 interface 0 has no altsetting 0
[   45.808475][   T39] audit: type=1400 audit(1734524416.741:370): avc:  denied  { write } for  pid=5334 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   45.810781][ T5922] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   45.819594][ T5922] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   45.822318][ T5922] usb 6-1: config 0 interface 0 has no altsetting 0
[   45.824768][ T5922] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   45.826968][ T5922] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   45.829629][ T5922] usb 6-1: config 0 interface 0 has no altsetting 0
[   45.832006][ T5922] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   45.834438][ T5922] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   45.837337][ T5922] usb 6-1: config 0 interface 0 has no altsetting 0
[   45.839753][ T5922] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   45.842182][ T5922] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   45.845357][ T5922] usb 6-1: config 0 interface 0 has no altsetting 0
[   45.847772][ T5922] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   45.850120][ T5922] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   45.852884][ T5922] usb 6-1: config 0 interface 0 has no altsetting 0
[   45.856099][ T5922] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   45.858340][ T5922] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   45.860465][ T5922] usb 6-1: Product: syz
[   45.861565][ T5922] usb 6-1: Manufacturer: syz
[   45.862769][ T5922] usb 6-1: SerialNumber: syz
[   45.865328][ T5922] usb 6-1: config 0 descriptor??
[   45.869043][ T5922] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
[   45.895920][ T6689] netlink: 4 bytes leftover after parsing attributes in process `syz.0.207'.
[   45.898685][ T6689] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=6689 comm=syz.0.207
[   46.087311][ T6699] FAULT_INJECTION: forcing a failure.
[   46.087311][ T6699] name failslab, interval 1, probability 0, space 0, times 1
[   46.091728][ T6699] CPU: 3 UID: 0 PID: 6699 Comm: syz.0.210 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   46.095496][ T6699] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   46.099319][ T6699] Call Trace:
[   46.100539][ T6699]  <TASK>
[   46.101627][ T6699]  dump_stack_lvl+0x16c/0x1f0
[   46.103393][ T6699]  should_fail_ex+0x497/0x5b0
[   46.105104][ T6699]  ? fs_reclaim_acquire+0xae/0x150
[   46.106971][ T6699]  should_failslab+0xc2/0x120
[   46.108683][ T6699]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   46.110625][ T6699]  ? security_file_alloc+0x34/0x2b0
[   46.112514][ T6699]  security_file_alloc+0x34/0x2b0
[   46.114218][ T6699]  init_file+0x93/0x480
[   46.115449][ T6699]  alloc_empty_file+0x91/0x1e0
[   46.116707][ T6699]  path_openat+0xe1/0x2d60
[   46.117914][ T6699]  ? hlock_class+0x4e/0x130
[   46.119102][ T6699]  ? __lock_acquire+0x15a9/0x3c40
[   46.120416][ T6699]  ? __pfx_path_openat+0x10/0x10
[   46.121715][ T6699]  ? __pfx___lock_acquire+0x10/0x10
[   46.123072][ T6699]  ? lock_acquire.part.0+0x11b/0x380
[   46.124461][ T6699]  ? find_held_lock+0x2d/0x110
[   46.125727][ T6699]  do_filp_open+0x20c/0x470
[   46.126873][ T6699]  ? __pfx_do_filp_open+0x10/0x10
[   46.128284][ T6699]  ? find_held_lock+0x2d/0x110
[   46.130056][ T6699]  ? alloc_fd+0x41f/0x760
[   46.131427][ T6699]  do_sys_openat2+0x17a/0x1e0
[   46.132671][ T6699]  ? __pfx_do_sys_openat2+0x10/0x10
[   46.134069][ T6699]  ? __fget_files+0x206/0x3a0
[   46.135307][ T6699]  __x64_sys_openat+0x175/0x210
[   46.136698][ T6699]  ? __pfx___x64_sys_openat+0x10/0x10
[   46.138243][ T6699]  ? ksys_write+0x1ba/0x250
[   46.139795][ T6699]  do_syscall_64+0xcd/0x250
[   46.140993][ T6699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.142545][ T6699] RIP: 0033:0x7f90ccf84690
[   46.144047][ T6699] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   46.149113][ T6699] RSP: 002b:00007f90cde86f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   46.151211][ T6699] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f90ccf84690
[   46.153202][ T6699] RDX: 0000000000000000 RSI: 00007f90cd001b38 RDI: 00000000ffffff9c
[   46.155255][ T6699] RBP: 00007f90cd001b38 R08: 0000000000000000 R09: 0000000000000000
[   46.157289][ T6699] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   46.159330][ T6699] R13: 0000000000000000 R14: 00007f90cd175fa0 R15: 00007ffc3bac2cb8
[   46.161366][ T6699]  </TASK>
[   46.170094][ T6700] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   46.173381][ T6700] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   46.241661][ T6705] xt_policy: output policy not valid in PREROUTING and INPUT
[   46.309467][ T6717] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[   46.492292][ T6727] Invalid source name
[   46.517493][ T6729] 9pnet_fd: Insufficient options for proto=fd
[   46.549816][ T6731] netlink: 'syz.2.222': attribute type 2 has an invalid length.
[   46.694874][ T6741] openvswitch: netlink: nsh attr 8192 is out of range max 3
[   46.696840][ T6741] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   47.276803][ T5303] Bluetooth: hci1: SCO packet for unknown connection handle 1
[   47.318924][ T6765] bridge_slave_0: left allmulticast mode
[   47.322390][ T6765] bridge_slave_0: left promiscuous mode
[   47.324035][ T6765] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.330819][ T6765] bridge_slave_1: left allmulticast mode
[   47.332328][ T6765] bridge_slave_1: left promiscuous mode
[   47.334300][ T6765] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.344084][ T6765] bond0: (slave bond_slave_0): Releasing backup interface
[   47.349585][ T6765] bond0: (slave bond_slave_1): Releasing backup interface
[   47.367701][ T6765] team0: Port device team_slave_0 removed
[   47.376384][ T6765] team0: Port device team_slave_1 removed
[   47.378530][ T6765] batman_adv: batadv0: Removing interface: batadv_slave_0
[   47.383180][ T6765] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   47.385783][ T6765] batman_adv: batadv0: Removing interface: batadv_slave_1
[   47.419769][ T6766] team0: Mode changed to "loadbalance"
[   47.482145][ T5303] Bluetooth: hci0: command 0x0c1a tx timeout
[   47.484457][ T5925] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[   47.490777][ T6754] syz.0.232 (6754): drop_caches: 2
[   48.045974][ T6793] mkiss: ax0: crc mode is auto.
[   48.114052][    C0] usb 6-1: yurex_control_callback - control failed: -2
[   48.155686][ T6797] __nla_validate_parse: 1 callbacks suppressed
[   48.155696][ T6797] netlink: 8 bytes leftover after parsing attributes in process `syz.3.249'.
[   48.203960][ T6804] batadv_slave_1: entered promiscuous mode
[   48.222480][ T6803] batadv_slave_1: left promiscuous mode
[   48.298342][ T6811] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   48.300729][ T6812] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   48.354914][ T6824] FAULT_INJECTION: forcing a failure.
[   48.354914][ T6824] name failslab, interval 1, probability 0, space 0, times 0
[   48.357767][ T6824] CPU: 2 UID: 0 PID: 6824 Comm: syz.3.258 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   48.360265][ T6824] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   48.362763][ T6824] Call Trace:
[   48.363561][ T6824]  <TASK>
[   48.364267][ T6824]  dump_stack_lvl+0x16c/0x1f0
[   48.365396][ T6824]  should_fail_ex+0x497/0x5b0
[   48.366529][ T6824]  ? fs_reclaim_acquire+0xae/0x150
[   48.367796][ T6824]  should_failslab+0xc2/0x120
[   48.368919][ T6824]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[   48.370320][ T6824]  ? alloc_inode+0xbf/0x230
[   48.371396][ T6824]  alloc_inode+0xbf/0x230
[   48.372417][ T6824]  path_from_stashed+0x55f/0xec0
[   48.373584][ T6824]  ? do_raw_spin_lock+0x12d/0x2c0
[   48.374918][ T6824]  ? __pfx_path_from_stashed+0x10/0x10
[   48.376230][ T6824]  ? netns_get+0x21/0x150
[   48.377312][ T6824]  ? do_raw_spin_unlock+0x172/0x230
[   48.378554][ T6824]  ns_get_path+0x5f/0x80
[   48.379661][ T6824]  proc_ns_get_link+0x122/0x260
[   48.380882][ T6824]  ? __pfx_proc_ns_get_link+0x10/0x10
[   48.382147][ T6824]  ? try_to_unlazy+0x2a1/0x660
[   48.383275][ T6824]  ? __pfx_proc_ns_get_link+0x10/0x10
[   48.384537][ T6824]  step_into+0x1aed/0x2230
[   48.385791][ T6824]  ? __pfx_lock_release+0x10/0x10
[   48.387149][ T6824]  ? __pfx_step_into+0x10/0x10
[   48.388321][ T6824]  ? pid_revalidate+0x168/0x2c0
[   48.389533][ T6824]  path_openat+0x74c/0x2d60
[   48.390612][ T6824]  ? __pfx_path_openat+0x10/0x10
[   48.391771][ T6824]  ? __pfx___lock_acquire+0x10/0x10
[   48.392991][ T6824]  ? lock_acquire.part.0+0x11b/0x380
[   48.394251][ T6824]  ? find_held_lock+0x2d/0x110
[   48.395393][ T6824]  do_filp_open+0x20c/0x470
[   48.396467][ T6824]  ? __pfx_do_filp_open+0x10/0x10
[   48.397892][ T6824]  ? find_held_lock+0x2d/0x110
[   48.399409][ T6824]  ? alloc_fd+0x41f/0x760
[   48.400772][ T6824]  do_sys_openat2+0x17a/0x1e0
[   48.402235][ T6824]  ? __pfx_do_sys_openat2+0x10/0x10
[   48.403885][ T6824]  ? __fget_files+0x206/0x3a0
[   48.405398][ T6824]  __x64_sys_openat+0x175/0x210
[   48.406966][ T6824]  ? __pfx___x64_sys_openat+0x10/0x10
[   48.408581][ T6824]  ? ksys_write+0x1ba/0x250
[   48.409707][ T6824]  do_syscall_64+0xcd/0x250
[   48.410791][ T6824]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.412185][ T6824] RIP: 0033:0x7f2cce784690
[   48.413244][ T6824] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   48.417756][ T6824] RSP: 002b:00007f2ccf51bf60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   48.419748][ T6824] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2cce784690
[   48.421590][ T6824] RDX: 0000000000000000 RSI: 00007f2cce801b38 RDI: 00000000ffffff9c
[   48.423430][ T6824] RBP: 00007f2cce801b38 R08: 0000000000000000 R09: 0000000000000000
[   48.425280][ T6824] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   48.427138][ T6824] R13: 0000000000000000 R14: 00007f2cce975fa0 R15: 00007ffc8f18a7f8
[   48.429140][ T6824]  </TASK>
[   48.463554][ T6827] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   48.467546][ T6827] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   48.470237][ T6827] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   48.473335][ T6827] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   48.501057][ T6829] vivid-000: =================  START STATUS  =================
[   48.502850][ T6830] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[   48.504489][ T6829] vivid-000: Test Pattern: 75% Colorbar
[   48.508109][ T6829] vivid-000: Fill Percentage of Frame: 100
[   48.509844][ T6829] vivid-000: Horizontal Movement: No Movement
[   48.512156][ T6829] vivid-000: Vertical Movement: No Movement
[   48.514475][ T6829] vivid-000: OSD Text Mode: All
[   48.516270][ T6829] vivid-000: Show Border: false
[   48.517980][ T6829] vivid-000: Show Square: false
[   48.519283][ T6829] vivid-000: Sensor Flipped Horizontally: false
[   48.521280][ T6829] vivid-000: Sensor Flipped Vertically: false
[   48.522885][ T6829] vivid-000: Insert SAV Code in Image: true
[   48.524524][ T6829] vivid-000: Insert EAV Code in Image: false
[   48.526116][ T6829] vivid-000: Insert Video Guard Band: false
[   48.527665][ T6829] vivid-000: Reduced Framerate: false
[   48.529032][ T6829] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[   48.531806][ T6829] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[   48.535016][ T6829] vivid-000: Enable Capture Cropping: true
[   48.537101][ T6829] vivid-000: Enable Capture Composing: true
[   48.539337][ T6829] vivid-000: Enable Capture Scaler: true
[   48.540876][ T6829] vivid-000: Timestamp Source: End of Frame
[   48.542688][ T6829] vivid-000: Colorspace: sRGB
[   48.544004][ T6829] vivid-000: Transfer Function: Default
[   48.545399][ T6829] vivid-000: Y'CbCr Encoding: Default
[   48.546841][ T6829] vivid-000: HSV Encoding: Hue 0-179
[   48.548247][ T6829] vivid-000: Quantization: Default
[   48.549692][ T6829] vivid-000: Apply Alpha To Red Only: false
[   48.551767][ T6829] vivid-000: Standard Aspect Ratio: 4x3
[   48.554192][ T6829] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[   48.556898][ T6829] vivid-000: DV Timings: 640x480p59 inactive
[   48.558996][ T6829] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[   48.561344][ T6829] vivid-000: Maximum EDID Blocks: 2
[   48.562746][ T6833] kvm: emulating exchange as write
[   48.564173][ T6829] vivid-000: Limited RGB Range (16-235): false
[   48.564288][ T6833] netlink: 'syz.2.256': attribute type 1 has an invalid length.
[   48.565800][ T6829] vivid-000: Rx RGB Quantization Range: Automatic
[   48.568117][ T6833] netlink: 224 bytes leftover after parsing attributes in process `syz.2.256'.
[   48.573506][ T6829] 
[   48.574511][ T6829] vivid-000: Power Present: 0x00000001
[   48.576524][ T6829] tpg source WxH: 320x180 (Y'CbCr)
[   48.578485][ T6829] tpg field: 1
[   48.579622][ T6829] tpg crop: 320x180@0x0
[   48.580941][ T6829] tpg compose: 320x180@0x0
[   48.582156][ T6829] tpg colorspace: 6
[   48.583183][ T6829] tpg transfer function: 5/0
[   48.585258][ T6829] tpg Y'CbCr encoding: 0/0
[   48.586419][ T6829] tpg quantization: 0/0
[   48.587564][ T6829] tpg RGB range: 0/2
[   48.588760][ T6829] vivid-000: ==================  END STATUS  ==================
[   48.823795][ T6839] veth0: entered promiscuous mode
[   48.825904][ T6838] veth0: left promiscuous mode
[   48.854340][ T6841] nfs4: Unknown parameter 'r�[dma'
[   49.078644][ T6852] FAULT_INJECTION: forcing a failure.
[   49.078644][ T6852] name failslab, interval 1, probability 0, space 0, times 0
[   49.082378][ T6852] CPU: 1 UID: 0 PID: 6852 Comm: syz.2.268 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   49.085083][ T6852] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   49.087880][ T6852] Call Trace:
[   49.088755][ T6852]  <TASK>
[   49.089718][ T6852]  dump_stack_lvl+0x16c/0x1f0
[   49.091440][ T6852]  should_fail_ex+0x497/0x5b0
[   49.093155][ T6852]  ? fs_reclaim_acquire+0xae/0x150
[   49.095036][ T6852]  should_failslab+0xc2/0x120
[   49.096742][ T6852]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   49.098499][ T6852]  ? lockdep_init_map_type+0x16d/0x7d0
[   49.099928][ T6852]  ? security_inode_alloc+0x3b/0x2b0
[   49.101303][ T6852]  security_inode_alloc+0x3b/0x2b0
[   49.102666][ T6852]  inode_init_always_gfp+0xce4/0x1030
[   49.104056][ T6852]  alloc_inode+0x82/0x230
[   49.105175][ T6852]  path_from_stashed+0x55f/0xec0
[   49.106460][ T6852]  ? do_raw_spin_lock+0x12d/0x2c0
[   49.108243][ T6852]  ? __pfx_path_from_stashed+0x10/0x10
[   49.109865][ T6852]  ? netns_get+0x21/0x150
[   49.111455][ T6852]  ? do_raw_spin_unlock+0x172/0x230
[   49.113354][ T6852]  ns_get_path+0x5f/0x80
[   49.114901][ T6852]  proc_ns_get_link+0x122/0x260
[   49.116679][ T6852]  ? __pfx_proc_ns_get_link+0x10/0x10
[   49.118668][ T6852]  ? try_to_unlazy+0x2a1/0x660
[   49.120076][ T6852]  ? __pfx_proc_ns_get_link+0x10/0x10
[   49.121465][ T6852]  step_into+0x1aed/0x2230
[   49.122649][ T6852]  ? __pfx_lock_release+0x10/0x10
[   49.123957][ T6852]  ? __pfx_step_into+0x10/0x10
[   49.125214][ T6852]  ? pid_revalidate+0x168/0x2c0
[   49.126496][ T6852]  path_openat+0x74c/0x2d60
[   49.127817][ T6852]  ? __pfx_path_openat+0x10/0x10
[   49.129178][ T6852]  ? __pfx___lock_acquire+0x10/0x10
[   49.131019][ T6852]  ? lock_acquire.part.0+0x11b/0x380
[   49.132927][ T6852]  ? find_held_lock+0x2d/0x110
[   49.134677][ T6852]  do_filp_open+0x20c/0x470
[   49.136322][ T6852]  ? __pfx_do_filp_open+0x10/0x10
[   49.138170][ T6852]  ? find_held_lock+0x2d/0x110
[   49.139875][ T6852]  ? alloc_fd+0x41f/0x760
[   49.141093][ T6852]  do_sys_openat2+0x17a/0x1e0
[   49.142326][ T6852]  ? __pfx_do_sys_openat2+0x10/0x10
[   49.144130][ T6852]  ? __fget_files+0x206/0x3a0
[   49.145359][ T6852]  __x64_sys_openat+0x175/0x210
[   49.146641][ T6852]  ? __pfx___x64_sys_openat+0x10/0x10
[   49.148045][ T6852]  ? ksys_write+0x1ba/0x250
[   49.149282][ T6852]  do_syscall_64+0xcd/0x250
[   49.150944][ T6852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.153103][ T6852] RIP: 0033:0x7f9de9d84690
[   49.154702][ T6852] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   49.161075][ T6852] RSP: 002b:00007f9deabcbf60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   49.163237][ T6852] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9de9d84690
[   49.165295][ T6852] RDX: 0000000000000000 RSI: 00007f9de9e01b38 RDI: 00000000ffffff9c
[   49.167341][ T6852] RBP: 00007f9de9e01b38 R08: 0000000000000000 R09: 0000000000000000
[   49.169502][ T6852] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   49.171742][ T6852] R13: 0000000000000000 R14: 00007f9de9f75fa0 R15: 00007ffd42a64d08
[   49.173792][ T6852]  </TASK>
[   49.229947][ T6854] loop2: detected capacity change from 0 to 7
[   49.239388][ T6854] Dev loop2: unable to read RDB block 7
[   49.241276][ T6854]  loop2: AHDI p1 p2
[   49.242761][ T6854] loop2: partition table partially beyond EOD, truncated
[   49.247281][ T6854] loop2: p1 size 150995200 extends beyond EOD, truncated
[   49.269632][   T57] usb 6-1: USB disconnect, device number 4
[   49.275480][   T57] yurex 6-1:0.0: USB YUREX #0 now disconnected
[   49.287022][ T6338] udevd[6338]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   49.327582][ T6856] ipvlan2: entered promiscuous mode
[   49.330503][ T6856] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[   49.332869][ T6856] team0: Device ipvlan2 is already an upper device of the team interface
[   49.415146][ T6867] netlink: 16 bytes leftover after parsing attributes in process `syz.1.274'.
[   49.516706][ T6874] FAULT_INJECTION: forcing a failure.
[   49.516706][ T6874] name failslab, interval 1, probability 0, space 0, times 0
[   49.520377][ T6874] CPU: 3 UID: 0 PID: 6874 Comm: syz.2.277 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   49.523140][ T6874] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   49.525992][ T6874] Call Trace:
[   49.526877][ T6874]  <TASK>
[   49.527688][ T6874]  dump_stack_lvl+0x16c/0x1f0
[   49.528953][ T6874]  should_fail_ex+0x497/0x5b0
[   49.530242][ T6874]  ? fs_reclaim_acquire+0xae/0x150
[   49.531583][ T6874]  should_failslab+0xc2/0x120
[   49.532823][ T6874]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[   49.534334][ T6874]  ? __d_alloc+0x31/0xaa0
[   49.535476][ T6874]  __d_alloc+0x31/0xaa0
[   49.536581][ T6874]  path_from_stashed+0x7a1/0xec0
[   49.537919][ T6874]  ? __pfx_path_from_stashed+0x10/0x10
[   49.539363][ T6874]  ? netns_get+0x21/0x150
[   49.540524][ T6874]  ? do_raw_spin_unlock+0x172/0x230
[   49.541904][ T6874]  ns_get_path+0x5f/0x80
[   49.543029][ T6874]  proc_ns_get_link+0x122/0x260
[   49.544341][ T6874]  ? __pfx_proc_ns_get_link+0x10/0x10
[   49.545728][ T6874]  ? try_to_unlazy+0x2a1/0x660
[   49.546966][ T6874]  ? __pfx_proc_ns_get_link+0x10/0x10
[   49.548364][ T6874]  step_into+0x1aed/0x2230
[   49.549492][ T6874]  ? __pfx_lock_release+0x10/0x10
[   49.550781][ T6874]  ? __pfx_step_into+0x10/0x10
[   49.551999][ T6874]  ? pid_revalidate+0x168/0x2c0
[   49.553221][ T6874]  path_openat+0x74c/0x2d60
[   49.554431][ T6874]  ? __pfx_path_openat+0x10/0x10
[   49.555732][ T6874]  ? __pfx___lock_acquire+0x10/0x10
[   49.557103][ T6874]  ? lock_acquire.part.0+0x11b/0x380
[   49.558966][ T6874]  ? find_held_lock+0x2d/0x110
[   49.560263][ T6874]  do_filp_open+0x20c/0x470
[   49.561457][ T6874]  ? __pfx_do_filp_open+0x10/0x10
[   49.562802][ T6874]  ? find_held_lock+0x2d/0x110
[   49.564058][ T6874]  ? alloc_fd+0x41f/0x760
[   49.565162][ T6874]  do_sys_openat2+0x17a/0x1e0
[   49.566398][ T6874]  ? __pfx_do_sys_openat2+0x10/0x10
[   49.567796][ T6874]  ? __fget_files+0x206/0x3a0
[   49.569048][ T6874]  __x64_sys_openat+0x175/0x210
[   49.570354][ T6874]  ? __pfx___x64_sys_openat+0x10/0x10
[   49.571754][ T6874]  ? ksys_write+0x1ba/0x250
[   49.572958][ T6874]  do_syscall_64+0xcd/0x250
[   49.574165][ T6874]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.575715][ T6874] RIP: 0033:0x7f9de9d84690
[   49.576891][ T6874] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   49.581876][ T6874] RSP: 002b:00007f9deabcbf60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   49.583978][ T6874] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9de9d84690
[   49.586039][ T6874] RDX: 0000000000000000 RSI: 00007f9de9e01b38 RDI: 00000000ffffff9c
[   49.588485][ T6874] RBP: 00007f9de9e01b38 R08: 0000000000000000 R09: 0000000000000000
[   49.590559][ T6874] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   49.592613][ T6874] R13: 0000000000000000 R14: 00007f9de9f75fa0 R15: 00007ffd42a64d08
[   49.594687][ T6874]  </TASK>
[   49.657643][   T39] kauditd_printk_skb: 30 callbacks suppressed
[   49.657653][   T39] audit: type=1400 audit(1734524420.591:401): avc:  denied  { lock } for  pid=6879 comm="syz.1.279" path="socket:[14538]" dev="sockfs" ino=14538 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[   49.659007][ T6880] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[   49.659364][   T39] audit: type=1400 audit(1734524420.591:402): avc:  denied  { name_bind 0x1000000 } for  pid=6881 comm="syz.2.280" path="socket:[15426]" dev="sockfs" ino=15426 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   49.713095][ T6887] netlink: 'syz.1.281': attribute type 29 has an invalid length.
[   49.717310][ T6887] netlink: 'syz.1.281': attribute type 29 has an invalid length.
[   49.720741][ T6887] netlink: 500 bytes leftover after parsing attributes in process `syz.1.281'.
[   49.726588][ T6887] unsupported nla_type 40
[   49.783796][ T6892] netlink: 4 bytes leftover after parsing attributes in process `syz.2.283'.
[   49.787067][ T6892] bridge_slave_1: left allmulticast mode
[   49.788597][ T6892] bridge_slave_1: left promiscuous mode
[   49.790169][ T6892] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.798644][ T6892] ������: left allmulticast mode
[   49.800085][ T6892] ������: left promiscuous mode
[   49.801601][ T6892] bridge0: port 1(������) entered disabled state
[   49.996807][   T39] audit: type=1400 audit(1734524420.921:403): avc:  denied  { write } for  pid=6898 comm="syz.2.285" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[   50.060117][   T39] audit: type=1400 audit(1734524420.991:404): avc:  denied  { watch watch_reads } for  pid=6903 comm="syz.2.288" path="/99" dev="tmpfs" ino=540 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   50.066426][ T6904] overlayfs: failed to resolve './file1': -2
[   50.328561][ T6919] netlink: 8 bytes leftover after parsing attributes in process `syz.1.293'.
[   50.348775][ T6919] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=56821 sclass=netlink_route_socket pid=6919 comm=syz.1.293
[   50.401886][ T6921] FAULT_INJECTION: forcing a failure.
[   50.401886][ T6921] name failslab, interval 1, probability 0, space 0, times 0
[   50.405264][ T6921] CPU: 3 UID: 0 PID: 6921 Comm: syz.2.294 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   50.407993][ T6921] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.410782][ T6921] Call Trace:
[   50.411657][ T6921]  <TASK>
[   50.412436][ T6921]  dump_stack_lvl+0x16c/0x1f0
[   50.413690][ T6921]  should_fail_ex+0x497/0x5b0
[   50.414930][ T6921]  ? fs_reclaim_acquire+0xae/0x150
[   50.416273][ T6921]  should_failslab+0xc2/0x120
[   50.417532][ T6921]  __kmalloc_noprof+0xcb/0x510
[   50.418781][ T6921]  tomoyo_encode2+0x100/0x3e0
[   50.420020][ T6921]  tomoyo_encode+0x29/0x50
[   50.421188][ T6921]  tomoyo_realpath_from_path+0x19d/0x720
[   50.422652][ T6921]  tomoyo_check_open_permission+0x2ad/0x3c0
[   50.424202][ T6921]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[   50.425867][ T6921]  ? avc_has_perm_noaudit+0x119/0x3a0
[   50.427275][ T6921]  ? __pfx_hook_file_open+0x10/0x10
[   50.428659][ T6921]  ? lock_acquire+0x2f/0xb0
[   50.429861][ T6921]  tomoyo_file_open+0x6b/0x90
[   50.431102][ T6921]  security_file_open+0x84/0x1e0
[   50.432791][ T6921]  do_dentry_open+0x57e/0x1ea0
[   50.434082][ T6921]  ? inode_permission+0xdd/0x5f0
[   50.435372][ T6921]  vfs_open+0x82/0x3f0
[   50.436437][ T6921]  ? may_open+0x1f2/0x400
[   50.437726][ T6921]  path_openat+0x1e6a/0x2d60
[   50.439006][ T6921]  ? __pfx_path_openat+0x10/0x10
[   50.440296][ T6921]  ? __pfx___lock_acquire+0x10/0x10
[   50.441674][ T6921]  ? lock_acquire.part.0+0x11b/0x380
[   50.443065][ T6921]  ? find_held_lock+0x2d/0x110
[   50.444274][ T6921]  do_filp_open+0x20c/0x470
[   50.445455][ T6921]  ? __pfx_do_filp_open+0x10/0x10
[   50.446818][ T6921]  ? find_held_lock+0x2d/0x110
[   50.448142][ T6921]  ? alloc_fd+0x41f/0x760
[   50.449270][ T6921]  do_sys_openat2+0x17a/0x1e0
[   50.450506][ T6921]  ? __pfx_do_sys_openat2+0x10/0x10
[   50.451866][ T6921]  ? __fget_files+0x206/0x3a0
[   50.453095][ T6921]  __x64_sys_openat+0x175/0x210
[   50.454379][ T6921]  ? __pfx___x64_sys_openat+0x10/0x10
[   50.455780][ T6921]  ? ksys_write+0x1ba/0x250
[   50.456989][ T6921]  do_syscall_64+0xcd/0x250
[   50.458195][ T6921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.459732][ T6921] RIP: 0033:0x7f9de9d84690
[   50.460898][ T6921] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   50.465856][ T6921] RSP: 002b:00007f9deabcbf60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   50.468014][ T6921] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9de9d84690
[   50.470045][ T6921] RDX: 0000000000000000 RSI: 00007f9de9e01b38 RDI: 00000000ffffff9c
[   50.472090][ T6921] RBP: 00007f9de9e01b38 R08: 0000000000000000 R09: 0000000000000000
[   50.474140][ T6921] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[   50.476159][ T6921] R13: 0000000000000000 R14: 00007f9de9f75fa0 R15: 00007ffd42a64d08
[   50.478216][ T6921]  </TASK>
[   50.479514][ T6921] ERROR: Out of memory at tomoyo_realpath_from_path.
[   50.518630][ T6919] cdrom: dropping to single frame dma
[   50.585731][   T39] audit: type=1400 audit(1734524421.521:405): avc:  denied  { mount } for  pid=6925 comm="syz.1.296" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   50.641291][ T6923] kvm: pic: non byte write
[   51.118749][   T39] audit: type=1400 audit(1734524422.051:406): avc:  denied  { unmount } for  pid=5919 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   51.179215][   T39] audit: type=1400 audit(1734524422.111:407): avc:  denied  { setopt } for  pid=6929 comm="syz.1.298" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   51.211135][ T6932] overlayfs: failed to resolve './file0': -2
[   51.300040][   T39] audit: type=1400 audit(1734524422.231:408): avc:  denied  { ioctl } for  pid=6938 comm="syz.1.301" path="/dev/cachefiles" dev="devtmpfs" ino=4 ioctlcmd=0x5567 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[   51.341504][ T6944] netdevsim netdevsim1: Direct firmware load for ./file0 failed with error -2
[   51.345610][ T6944] netdevsim netdevsim1: Falling back to sysfs fallback for: ./file0
[   51.555190][   T39] audit: type=1400 audit(1734524422.491:409): avc:  denied  { setopt } for  pid=6956 comm="syz.2.306" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   51.573366][ T6957] netlink: 8 bytes leftover after parsing attributes in process `syz.2.306'.
[   51.629233][   T39] audit: type=1400 audit(1734524422.561:410): avc:  denied  { ioctl } for  pid=6954 comm="syz.3.305" path="socket:[16699]" dev="sockfs" ino=16699 ioctlcmd=0x89e5 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[   51.645151][ T5925] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[   51.647503][ T5925] Bluetooth: hci1: Injecting HCI hardware error event
[   51.650205][ T5925] Bluetooth: hci1: hardware error 0x00
[   51.707990][ T6962] IPVS: length: 184 != 24
[   51.826665][ T6964] ceph: Path missing in source
[   51.947487][ T6972] syz.2.311 uses obsolete (PF_INET,SOCK_PACKET)
[   52.264181][ T6984] FAULT_INJECTION: forcing a failure.
[   52.264181][ T6984] name failslab, interval 1, probability 0, space 0, times 0
[   52.269164][ T6984] CPU: 0 UID: 0 PID: 6984 Comm: syz.2.315 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   52.271940][ T6984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   52.274756][ T6984] Call Trace:
[   52.275634][ T6984]  <TASK>
[   52.276407][ T6984]  dump_stack_lvl+0x16c/0x1f0
[   52.277793][ T6984]  should_fail_ex+0x497/0x5b0
[   52.279055][ T6984]  ? fs_reclaim_acquire+0xae/0x150
[   52.280413][ T6984]  should_failslab+0xc2/0x120
[   52.281681][ T6984]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   52.283100][ T6984]  ? lockdep_init_map_type+0x16d/0x7d0
[   52.284527][ T6984]  ? security_inode_alloc+0x3b/0x2b0
[   52.286308][ T6984]  security_inode_alloc+0x3b/0x2b0
[   52.288055][ T6984]  inode_init_always_gfp+0xce4/0x1030
[   52.289871][ T6984]  alloc_inode+0x82/0x230
[   52.291315][ T6984]  sock_alloc+0x40/0x280
[   52.292496][ T6984]  __sock_create+0xc1/0x8d0
[   52.294056][ T6984]  __sys_socket+0x14f/0x260
[   52.295593][ T6984]  ? __pfx___sys_socket+0x10/0x10
[   52.297246][ T6984]  __x64_sys_socket+0x72/0xb0
[   52.298632][ T6984]  ? lockdep_hardirqs_on+0x7c/0x110
[   52.300017][ T6984]  do_syscall_64+0xcd/0x250
[   52.301227][ T6984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.302799][ T6984] RIP: 0033:0x7f9de9d85d29
[   52.303979][ T6984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.309000][ T6984] RSP: 002b:00007f9deabcbfd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[   52.311185][ T6984] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f9de9d85d29
[   52.313252][ T6984] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000027
[   52.315446][ T6984] RBP: 00007f9deabcc090 R08: 0000000000000000 R09: 0000000000000000
[   52.317618][ T6984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   52.319679][ T6984] R13: 0000000000000000 R14: 00007f9de9f75fa0 R15: 00007ffd42a64d08
[   52.321771][ T6984]  </TASK>
[   52.324635][ T6984] socket: no more sockets
[   52.333701][ T6987] netlink: 'syz.1.316': attribute type 21 has an invalid length.
[   52.335790][ T6987] netlink: 'syz.1.316': attribute type 6 has an invalid length.
[   52.337820][ T6987] netlink: 132 bytes leftover after parsing attributes in process `syz.1.316'.
[   52.354843][ T6990] netlink: 28 bytes leftover after parsing attributes in process `syz.2.317'.
[   52.401107][ T6994] netlink: 44 bytes leftover after parsing attributes in process `syz.2.319'.
[   52.548668][ T7003] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   52.553549][ T7003] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   52.620013][ T7006] batman_adv: batadv0: Adding interface: dummy0
[   52.622177][ T7006] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   52.628917][ T7006] batman_adv: batadv0: Interface activated: dummy0
[   52.633406][ T7006] batadv0: mtu less than device minimum
[   52.636294][ T7006] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   52.639886][ T7006] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   52.643319][ T7006] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   52.646759][ T7006] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   52.650181][ T7006] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   52.653565][ T7006] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   52.656972][ T7006] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   52.660357][ T7006] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   52.722177][ T7010] tmpfs: Bad value for 'mpol'
[   52.835732][ T7020] FAULT_INJECTION: forcing a failure.
[   52.835732][ T7020] name failslab, interval 1, probability 0, space 0, times 0
[   52.839510][ T7020] CPU: 2 UID: 0 PID: 7020 Comm: syz.1.327 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   52.842244][ T7020] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   52.846064][ T7020] Call Trace:
[   52.847229][ T7020]  <TASK>
[   52.848365][ T7020]  dump_stack_lvl+0x16c/0x1f0
[   52.850131][ T7020]  should_fail_ex+0x497/0x5b0
[   52.851710][ T7020]  should_failslab+0xc2/0x120
[   52.853234][ T7020]  __kmalloc_noprof+0xcb/0x510
[   52.855026][ T7020]  sk_prot_alloc+0x1a8/0x2a0
[   52.856703][ T7020]  sk_alloc+0x36/0xb90
[   52.858109][ T7020]  rawsock_create+0x177/0x5e0
[   52.859321][ T7020]  ? __pfx_rawsock_create+0x10/0x10
[   52.860656][ T7020]  nfc_sock_create+0x150/0x2b0
[   52.861908][ T7020]  __sock_create+0x335/0x8d0
[   52.863260][ T7020]  __sys_socket+0x14f/0x260
[   52.864440][ T7020]  ? __x64_sys_openat+0x175/0x210
[   52.866207][ T7020]  ? __pfx___sys_socket+0x10/0x10
[   52.867679][ T7020]  ? ksys_write+0x1ba/0x250
[   52.868877][ T7020]  __x64_sys_socket+0x72/0xb0
[   52.870115][ T7020]  ? lockdep_hardirqs_on+0x7c/0x110
[   52.871457][ T7020]  do_syscall_64+0xcd/0x250
[   52.872800][ T7020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.874829][ T7020] RIP: 0033:0x7f9dc0f85d29
[   52.876362][ T7020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.882907][ T7020] RSP: 002b:00007f9dc1dc1fd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[   52.885883][ T7020] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f9dc0f85d29
[   52.888050][ T7020] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000027
[   52.890126][ T7020] RBP: 00007f9dc1dc2090 R08: 0000000000000000 R09: 0000000000000000
[   52.892166][ T7020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   52.894224][ T7020] R13: 0000000000000000 R14: 00007f9dc1175fa0 R15: 00007ffebf9db728
[   52.896278][ T7020]  </TASK>
[   52.897160][    C2] vkms_vblank_simulate: vblank timer overrun
[   52.991331][ T7028] fuse: Bad value for 'user_id'
[   52.992676][ T7028] fuse: Bad value for 'user_id'
[   53.279427][ T7050] 9pnet_fd: p9_fd_create_unix (7050): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   53.290168][ T7048] netlink: 28 bytes leftover after parsing attributes in process `syz.1.335'.
[   53.514222][ T5989] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[   53.688306][ T5989] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   53.690807][ T5989] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2
[   53.692994][ T5989] usb 7-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[   53.695347][ T5989] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   53.698198][ T5989] usb 7-1: config 0 descriptor??
[   53.700910][ T5989] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[   53.702774][ T5989] dvb-usb: bulk message failed: -22 (3/0)
[   53.711279][ T5989] dvb-usb: will use the device's hardware PID filter (table count: 16).
[   53.714103][ T5989] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[   53.715923][ T5989] usb 7-1: media controller created
[   53.717900][ T5989] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   53.722187][ T5925] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[   53.726176][ T5989] dvb-usb: bulk message failed: -22 (6/0)
[   53.727851][ T5989] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[   53.730725][ T5989] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb7/7-1/input/input8
[   53.736097][ T5989] dvb-usb: schedule remote query interval to 150 msecs.
[   53.737918][ T5989] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[   53.860312][ T7055] netlink: 'syz.3.337': attribute type 1 has an invalid length.
[   53.862476][ T7055] netlink: 224 bytes leftover after parsing attributes in process `syz.3.337'.
[   53.905612][ T5989] dvb-usb: bulk message failed: -22 (1/0)
[   53.907389][ T5989] dvb-usb: error while querying for an remote control event.
[   53.968156][ T6834] syz.0.261 (6834) used greatest stack depth: 20896 bytes left
[   54.013519][ T5987] usb 7-1: USB disconnect, device number 4
[   54.034450][ T5987] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[   54.368391][ T7071] netlink: 2 bytes leftover after parsing attributes in process `syz.0.344'.
[   54.404790][ T7074] binder: 7072:7074 unknown command 1986356271
[   54.406307][ T7074] binder: 7072:7074 ioctl c0306201 20000600 returned -22
[   54.482091][ T5303] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   54.485077][ T5303] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   54.487347][ T5303] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   54.490024][ T5303] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   54.492381][ T5303] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   54.494906][ T5303] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   54.513343][ T7081] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[   54.516643][ T7081] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[   54.569637][ T7083] chnl_net:caif_netlink_parms(): no params data found
[   54.574716][ T7053] netlink: 108 bytes leftover after parsing attributes in process `syz.1.336'.
[   54.577733][ T7053] netlink: 8 bytes leftover after parsing attributes in process `syz.1.336'.
[   54.638146][ T7083] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.640567][ T7083] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.643010][ T7083] bridge_slave_0: entered allmulticast mode
[   54.648251][ T7083] bridge_slave_0: entered promiscuous mode
[   54.651781][ T7083] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.654518][ T7083] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.656824][ T7083] bridge_slave_1: entered allmulticast mode
[   54.659499][ T7083] bridge_slave_1: entered promiscuous mode
[   54.682121][ T7083] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.688221][ T7083] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.711488][ T7083] team0: Port device team_slave_0 added
[   54.716723][ T7083] team0: Port device team_slave_1 added
[   54.736644][ T7083] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.738974][ T7083] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.748241][ T7083] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.752507][ T7083] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.758929][ T7083] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.767640][ T7083] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.793114][ T7083] hsr_slave_0: entered promiscuous mode
[   54.795716][ T7083] hsr_slave_1: entered promiscuous mode
[   54.797903][ T7083] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   54.800646][ T7083] Cannot create hsr debugfs directory
[   54.847981][ T7096] IPVS: length: 184 != 24
[   54.882815][ T7083] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   54.887609][ T7083] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   54.891754][ T7083] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   54.894854][ T7083] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   54.904221][ T7083] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.906210][ T7083] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.908167][ T7083] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.909893][ T7083] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.930764][ T7083] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.937890][  T216] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.940744][  T216] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.951409][ T7083] 8021q: adding VLAN 0 to HW filter on device team0
[   54.958405][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.960917][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.965879][ T1147] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.967827][ T1147] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.976911][ T7102] block nbd1: NBD_DISCONNECT
[   54.978525][ T7102] block nbd1: Disconnected due to user request.
[   54.980283][ T7102] block nbd1: shutting down sockets
[   54.984569][    T9] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   55.038903][   T39] kauditd_printk_skb: 27 callbacks suppressed
[   55.038913][   T39] audit: type=1400 audit(1734526985.968:438): avc:  denied  { write } for  pid=7109 comm="syz.1.352" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   55.071338][ T7083] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.134488][    T9] usb 7-1: Using ep0 maxpacket: 8
[   55.137438][    T9] usb 7-1: config 1 has an invalid descriptor of length 196, skipping remainder of the config
[   55.140403][    T9] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[   55.144676][    T9] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   55.147168][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   55.149287][    T9] usb 7-1: SerialNumber: syz
[   55.153063][    T9] cdc_ether 7-1:1.0: probe with driver cdc_ether failed with error -22
[   55.197944][ T7083] veth0_vlan: entered promiscuous mode
[   55.201633][ T7083] veth1_vlan: entered promiscuous mode
[   55.211702][ T7083] veth0_macvtap: entered promiscuous mode
[   55.214811][ T7083] veth1_macvtap: entered promiscuous mode
[   55.221531][ T7083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   55.224526][ T7083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.227068][ T7083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   55.229774][ T7083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.232281][ T7083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   55.235639][ T7083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.239744][ T7083] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.244569][ T7083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   55.247305][ T7083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.249898][ T7083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   55.252523][ T7083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.255273][ T7083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   55.257966][ T7083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   55.261042][ T7083] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.265551][ T7083] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.267868][ T7083] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.270202][ T7083] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.272446][ T7083] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.298173][  T216] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.300246][  T216] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.312345][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.314593][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.322276][   T39] audit: type=1400 audit(1734526986.248:439): avc:  denied  { mounton } for  pid=7083 comm="syz-executor" path="/syzkaller.NU78SF/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   55.350987][   T39] audit: type=1400 audit(1734526986.278:440): avc:  denied  { create } for  pid=7125 comm="syz.4.343" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   55.356081][   T39] audit: type=1400 audit(1734526986.278:441): avc:  denied  { bind } for  pid=7125 comm="syz.4.343" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   55.356127][ T7088] ipt_rpfilter: unknown options
[   55.361113][   T39] audit: type=1400 audit(1734526986.278:442): avc:  denied  { write } for  pid=7125 comm="syz.4.343" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   55.373251][    T9] usb 7-1: USB disconnect, device number 5
[   55.454043][ T5987] usb 6-1: new full-speed USB device number 5 using dummy_hcd
[   55.458582][   T45] nci: nci_add_new_protocol: the target found does not have the desired protocol
[   55.462655][ T7129] program syz.4.356 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   55.470471][   T39] audit: type=1400 audit(1734526986.398:443): avc:  denied  { map } for  pid=7143 comm="syz.0.360" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   55.625544][ T5987] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   55.629580][ T5987] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[   55.632668][ T5987] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[   55.635949][ T5987] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   55.644214][ T5987] usb 6-1: config 0 descriptor??
[   55.647436][ T5987] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[   55.649667][ T5987] dvb-usb: bulk message failed: -22 (3/0)
[   55.652728][ T5987] dvb-usb: will use the device's hardware PID filter (table count: 16).
[   55.655881][ T5987] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[   55.658208][ T5987] usb 6-1: media controller created
[   55.660370][ T5987] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   55.666658][ T5987] dvb-usb: bulk message failed: -22 (6/0)
[   55.668598][ T5987] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[   55.674414][ T5987] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input9
[   55.679599][ T5987] dvb-usb: schedule remote query interval to 150 msecs.
[   55.681903][ T5987] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[   55.761960][   T39] audit: type=1400 audit(1734526986.688:444): avc:  denied  { read } for  pid=7148 comm="syz.0.362" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   55.771293][   T39] audit: type=1400 audit(1734526986.688:445): avc:  denied  { open } for  pid=7148 comm="syz.0.362" path="/70/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   55.794550][   T39] audit: type=1400 audit(1734526986.728:446): avc:  denied  { append } for  pid=7151 comm="syz.0.363" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   55.811702][   T39] audit: type=1400 audit(1734526986.738:447): avc:  denied  { write } for  pid=7151 comm="syz.0.363" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   55.835113][ T5987] dvb-usb: bulk message failed: -22 (1/0)
[   55.837028][ T5987] dvb-usb: error while querying for an remote control event.
[   55.982679][ T7167] 9pnet_fd: Insufficient options for proto=fd
[   55.993988][ T5987] dvb-usb: bulk message failed: -22 (1/0)
[   55.995711][ T5987] dvb-usb: error while querying for an remote control event.
[   56.158289][ T5987] dvb-usb: bulk message failed: -22 (1/0)
[   56.160439][ T5987] dvb-usb: error while querying for an remote control event.
[   56.238177][ T5988] usb 6-1: USB disconnect, device number 5
[   56.260408][ T7175] netlink: 20 bytes leftover after parsing attributes in process `syz.2.367'.
[   56.263484][ T5988] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[   56.296818][ T7181] netlink: 4 bytes leftover after parsing attributes in process `syz.4.369'.
[   56.333633][ T7172] program syz.0.366 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   56.336402][ T7172] ata1.00: invalid service action 31
[   56.409599][ T7192] x86/PAT: syz.0.372:7192 freeing invalid memtype [mem 0xfed00000-0xfed00fff]
[   56.528497][ T5303] Bluetooth: hci1: command tx timeout
[   56.592364][ T7231] xt_l2tp: missing protocol rule (udp|l2tpip)
[   57.074022][ T5987] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   57.223959][ T5987] usb 5-1: Using ep0 maxpacket: 8
[   57.226602][ T5987] usb 5-1: config index 0 descriptor too short (expected 5924, got 36)
[   57.228826][ T5987] usb 5-1: config 250 has an invalid interface number: 228 but max is -1
[   57.231385][ T5987] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0
[   57.233803][ T5987] usb 5-1: config 250 has no interface number 0
[   57.235578][ T5987] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[   57.238661][ T5987] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[   57.241503][ T5987] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[   57.244624][ T5987] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[   57.247538][ T5987] usb 5-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[   57.251098][ T5987] usb 5-1: config 250 interface 228 has no altsetting 0
[   57.254293][ T5987] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[   57.256784][ T5987] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[   57.258991][ T5987] usb 5-1: Product: syz
[   57.260147][ T5987] usb 5-1: SerialNumber: syz
[   57.265340][ T5987] hub 5-1:250.228: bad descriptor, ignoring hub
[   57.267055][ T5987] hub 5-1:250.228: probe with driver hub failed with error -5
[   57.468623][ T5987] usblp 5-1:250.228: usblp0: USB Bidirectional printer dev 4 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[   57.673959][ T6307] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[   57.825388][ T6307] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   57.828036][ T6307] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 2
[   57.830340][ T6307] usb 9-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[   57.832669][ T6307] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   57.837638][ T6307] usb 9-1: config 0 descriptor??
[   57.841096][ T6307] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[   57.842874][ T6307] dvb-usb: bulk message failed: -22 (3/0)
[   57.847442][ T6307] dvb-usb: will use the device's hardware PID filter (table count: 16).
[   57.849928][ T6307] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[   57.851796][ T6307] usb 9-1: media controller created
[   57.853542][ T6307] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   57.859047][ T6307] dvb-usb: bulk message failed: -22 (6/0)
[   57.860583][ T6307] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[   57.863820][ T6307] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb9/9-1/input/input10
[   57.868252][ T6307] dvb-usb: schedule remote query interval to 150 msecs.
[   57.870183][ T6307] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[   58.024003][ T6307] dvb-usb: bulk message failed: -22 (1/0)
[   58.025574][ T6307] dvb-usb: error while querying for an remote control event.
[   58.098294][ T6307] usb 9-1: USB disconnect, device number 2
[   58.115800][ T6307] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[   58.137011][ T7294] usb 2-1: USB disconnect, device number 2
[   58.261003][ T7300] xt_hashlimit: overflow, try lower: 0/0
[   58.285987][ T7303] NILFS (loop1): device size too small
[   58.376294][ T7259] usb 5-1: reset high-speed USB device number 4 using dummy_hcd
[   58.595078][ T5303] Bluetooth: hci1: command tx timeout
[   58.893952][ T6307] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[   59.044103][ T5989] usb 5-1: USB disconnect, device number 4
[   59.047474][ T5989] usblp0: removed
[   59.056953][ T6307] usb 9-1: config index 0 descriptor too short (expected 23569, got 27)
[   59.059242][ T6307] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   59.062496][ T6307] usb 9-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[   59.064970][ T6307] usb 9-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[   59.067066][ T6307] usb 9-1: Manufacturer: syz
[   59.070820][ T6307] usb 9-1: config 0 descriptor??
[   59.124564][ T6307] rc_core: IR keymap rc-hauppauge not found
[   59.126154][ T6307] Registered IR keymap rc-empty
[   59.128497][ T6307] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/rc/rc0
[   59.131691][ T6307] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/rc/rc0/input11
[   59.284821][ T5989] usb 9-1: USB disconnect, device number 3
[   59.451667][ T7336] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   59.454921][ T7336] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   59.518795][ T7348] Device name cannot be null; rc = [-22]
[   59.519638][ T7347] fuse: Bad value for 'group_id'
[   59.522148][ T7347] fuse: Bad value for 'group_id'
[   59.553077][ T7354] geneve2: entered promiscuous mode
[   59.554860][ T7354] geneve2: entered allmulticast mode
[   59.577695][ T7356] netlink: 32 bytes leftover after parsing attributes in process `syz.1.412'.
[   59.581007][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.587955][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.591156][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.594705][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.597700][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.600137][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.602608][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.606694][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.608725][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.610802][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.612852][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.615417][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.617501][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.619715][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.622031][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.624870][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.626862][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.628917][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.631005][ T7357] overlayfs: conflicting options: userxattr,metacopy=on
[   59.691922][ T7349] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   59.693947][ T7349] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   59.700630][ T7349] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   59.703940][ T7349] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   59.705684][ T7349] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   59.709152][ T7349] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   59.712181][ T7349] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   59.716233][ T7349] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   59.718700][ T7349] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   59.724941][ T7349] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   59.727014][ T7349] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   59.730097][ T7349] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   59.815994][ T7368] wg2: entered promiscuous mode
[   59.817402][ T7368] wg2: entered allmulticast mode
[   59.836814][ T7369] bond1: entered promiscuous mode
[   59.838241][ T7369] bond1: entered allmulticast mode
[   59.847813][ T7372] netlink: 8 bytes leftover after parsing attributes in process `syz.4.416'.
[   59.964104][ T7376] netlink: 16 bytes leftover after parsing attributes in process `syz.4.418'.
[   59.998985][ T7378] netlink: 12 bytes leftover after parsing attributes in process `syz.4.419'.
[   60.330809][ T5303] Bluetooth: hci2: SCO packet for unknown connection handle 200
[   60.418291][   T39] kauditd_printk_skb: 31 callbacks suppressed
[   60.418302][   T39] audit: type=1400 audit(1734526991.348:479): avc:  denied  { read } for  pid=7409 comm="syz.0.422" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   60.428276][   T39] audit: type=1400 audit(1734526991.348:480): avc:  denied  { open } for  pid=7409 comm="syz.0.422" path="/86/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   60.434437][   T39] audit: type=1400 audit(1734526991.348:481): avc:  denied  { setopt } for  pid=7409 comm="syz.0.422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   60.439566][   T39] audit: type=1400 audit(1734526991.348:482): avc:  denied  { ioctl } for  pid=7409 comm="syz.0.422" path="/86/file0/file0" dev="fuse" ino=0 ioctlcmd=0x5404 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   60.506521][   T39] audit: type=1400 audit(1734526991.438:483): avc:  denied  { write } for  pid=7422 comm="syz.0.424" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   60.608966][ T7364] net_ratelimit: 12 callbacks suppressed
[   60.608984][ T7364] TCP: out of memory -- consider tuning tcp_mem
[   60.738814][   T39] audit: type=1400 audit(1734526991.668:484): avc:  denied  { connect } for  pid=7428 comm="syz.1.426" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   60.743180][ T7433] loop9: detected capacity change from 0 to 7
[   60.747499][ T7433] Dev loop9: unable to read RDB block 7
[   60.749040][ T7433]  loop9: AHDI p1
[   60.750028][ T7433] loop9: partition table partially beyond EOD, truncated
[   60.788878][ T7427] evm: overlay not supported
[   60.792511][   T39] audit: type=1400 audit(1734526991.718:485): avc:  denied  { getopt } for  pid=7428 comm="syz.1.426" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   61.522633][ T7457] netlink: 'syz.0.433': attribute type 10 has an invalid length.
[   61.528716][ T7457] team0: Port device netdevsim0 added
[   61.560557][   T39] audit: type=1400 audit(1734526992.488:486): avc:  denied  { setattr } for  pid=7458 comm="syz.0.434" name="qat_adf_ctl" dev="devtmpfs" ino=1295 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   61.634069][ T5925] Bluetooth: hci0: command 0x0c1a tx timeout
[   61.636765][ T7453] Bluetooth: hci0: Opcode 0x0c20 failed: -110
[   61.665946][ T7466] netdevsim netdevsim1: Direct firmware load for .
[   61.665946][ T7466]  failed with error -2
[   61.668725][ T7466] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[   61.668725][ T7466] 
[   61.669569][   T39] audit: type=1400 audit(1734526992.598:487): avc:  denied  { ioctl } for  pid=7465 comm="syz.1.437" path="socket:[14326]" dev="sockfs" ino=14326 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   61.707210][ T7471] syz.2.436 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   61.719396][ T5925] Bluetooth: hci3: command 0x0c1a tx timeout
[   61.720733][   T39] audit: type=1400 audit(1734526992.648:488): avc:  denied  { write } for  pid=7465 comm="syz.1.437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   61.721008][ T5925] Bluetooth: hci2: command 0x0c1a tx timeout
[   61.749653][ T1223] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.752814][ T1223] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.794407][ T5925] Bluetooth: hci1: command 0x0419 tx timeout
[   61.822647][ T7486] hugetlbfs: Unknown parameter 'n'
[   61.925711][ T7492] netlink: 516 bytes leftover after parsing attributes in process `syz.0.446'.
[   62.014648][ T5989] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   62.164375][ T5989] usb 7-1: too many configurations: 9, using maximum allowed: 8
[   62.167169][ T5989] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   62.169596][ T5989] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   62.172408][ T5989] usb 7-1: config 0 interface 0 has no altsetting 0
[   62.175384][ T5989] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   62.177796][ T5989] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   62.180599][ T5989] usb 7-1: config 0 interface 0 has no altsetting 0
[   62.183054][ T5989] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   62.185787][ T5989] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   62.188477][ T7500] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=7936 sclass=netlink_route_socket pid=7500 comm=syz.0.449
[   62.188792][ T5989] usb 7-1: config 0 interface 0 has no altsetting 0
[   62.195902][ T5989] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   62.198375][ T5989] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   62.201265][ T5989] usb 7-1: config 0 interface 0 has no altsetting 0
[   62.204108][ T5989] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   62.206500][ T5989] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   62.209411][ T5989] usb 7-1: config 0 interface 0 has no altsetting 0
[   62.211932][ T5989] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   62.214667][ T5989] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   62.218292][ T5989] usb 7-1: config 0 interface 0 has no altsetting 0
[   62.220781][ T5989] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   62.223206][ T5989] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   62.226753][ T5989] usb 7-1: config 0 interface 0 has no altsetting 0
[   62.229346][ T5989] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   62.233812][ T5989] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   62.236864][ T5989] usb 7-1: config 0 interface 0 has no altsetting 0
[   62.240275][ T5989] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   62.242761][ T5989] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   62.245211][ T5989] usb 7-1: Product: syz
[   62.245961][ T7507] SELinux:  Context system_u:object_r:systemd_systemctl_exec_t:s0 is not valid (left unmapped).
[   62.246396][ T5989] usb 7-1: Manufacturer: syz
[   62.250520][ T5989] usb 7-1: SerialNumber: syz
[   62.253421][ T5989] usb 7-1: config 0 descriptor??
[   62.255530][ T7507] JFS: discard option not supported on device
[   62.257472][ T7507] syz.0.451: attempt to access beyond end of device
[   62.257472][ T7507] nbd0: rw=0, sector=64, nr_sectors = 8 limit=0
[   62.258513][ T5989] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0
[   62.260839][ T7507] syz.0.451: attempt to access beyond end of device
[   62.260839][ T7507] nbd0: rw=0, sector=120, nr_sectors = 8 limit=0
[   62.270379][ T7507] Mount JFS Failure: -5
[   62.400342][ T7512] xt_CT: You must specify a L4 protocol and not use inversions on it
[   62.402390][ T7512] netlink: 8 bytes leftover after parsing attributes in process `syz.0.452'.
[   62.458116][ T5989] usb 7-1: USB disconnect, device number 6
[   62.463574][ T5989] yurex 7-1:0.0: USB YUREX #0 now disconnected
[   62.520254][ T7514] overlayfs: missing 'lowerdir'
[   62.649745][ T7518] netlink: 4 bytes leftover after parsing attributes in process `syz.4.454'.
[   62.734477][ T7525] IPVS: set_ctl: invalid protocol: 60 172.30.1.5:20004
[   62.962532][ T7539] fuse: Unknown parameter '��>G��uU�;>p'
[   63.028690][ T7543] geneve2: entered promiscuous mode
[   63.030141][ T7543] geneve2: entered allmulticast mode
[   63.049790][ T7545] netlink: 28 bytes leftover after parsing attributes in process `syz.0.463'.
[   63.407428][ T7579] netlink: 8 bytes leftover after parsing attributes in process `syz.4.471'.
[   63.409743][ T7579] openvswitch: netlink: Key type 11107 is out of range max 32
[   63.487229][ T7588] tipc: Failed to remove unknown binding: 66,1,1/0:4021452611/4021452613
[   63.490321][ T7588] netlink: 12 bytes leftover after parsing attributes in process `syz.1.473'.
[   63.724674][ T5303] Bluetooth: hci0: command 0x0c1a tx timeout
[   63.803987][ T5303] Bluetooth: hci3: command 0x0c1a tx timeout
[   63.805381][ T5925] Bluetooth: hci2: command 0x0c1a tx timeout
[   63.884034][ T5925] Bluetooth: hci1: command 0x0419 tx timeout
[   64.474936][ T7605] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   64.477691][ T5992] hid-generic 0001:0007:0004.0002: item fetching failed at offset 0/3
[   64.482594][ T5992] hid-generic 0001:0007:0004.0002: probe with driver hid-generic failed with error -22
[   64.535700][ T7605] batman_adv: batadv0: Removing interface: batadv_slave_1
[   64.633925][    T8] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   64.705361][ T7609] binder: 7608:7609 ioctl c0306201 20000940 returned -14
[   64.766853][    T8] usb 6-1: device descriptor read/64, error -71
[   64.776108][ T7613] vxcan1: tx drop: invalid sa for name 0x0000000000000003
[   64.820075][ T7615] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[   65.023940][    T8] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[   65.070187][ T7622] @: renamed from vlan0 (while UP)
[   65.117130][ T7624] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   65.173941][    T8] usb 6-1: device descriptor read/64, error -71
[   65.177013][ T7628] dvmrp8: entered allmulticast mode
[   65.179521][ T7627] dvmrp8: left allmulticast mode
[   65.284479][    T8] usb usb6-port1: attempt power cycle
[   65.339010][ T5925] Bluetooth: hci1: unexpected event for opcode 0x2016
[   65.459493][ T7644] FAULT_INJECTION: forcing a failure.
[   65.459493][ T7644] name failslab, interval 1, probability 0, space 0, times 0
[   65.462733][ T7644] CPU: 3 UID: 0 PID: 7644 Comm: syz.4.495 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   65.465480][ T7644] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.468256][ T7644] Call Trace:
[   65.469118][ T7644]  <TASK>
[   65.469902][ T7644]  dump_stack_lvl+0x16c/0x1f0
[   65.471134][ T7644]  should_fail_ex+0x497/0x5b0
[   65.472362][ T7644]  ? fs_reclaim_acquire+0xae/0x150
[   65.473705][ T7644]  should_failslab+0xc2/0x120
[   65.474937][ T7644]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[   65.476408][ T7644]  ? lock_acquire.part.0+0x11b/0x380
[   65.477797][ T7644]  ? __d_alloc+0x31/0xaa0
[   65.478929][ T7644]  __d_alloc+0x31/0xaa0
[   65.480016][ T7644]  ? __pfx_lock_release+0x10/0x10
[   65.481319][ T7644]  d_alloc_pseudo+0x1c/0xc0
[   65.482520][ T7644]  alloc_file_pseudo+0xdc/0x210
[   65.483798][ T7644]  ? __pfx_alloc_file_pseudo+0x10/0x10
[   65.485223][ T7644]  ? alloc_fd+0x41f/0x760
[   65.486358][ T7644]  sock_alloc_file+0x50/0x1d0
[   65.487574][ T7644]  __sys_socket+0x1c2/0x260
[   65.488764][ T7644]  ? __x64_sys_openat+0x175/0x210
[   65.490084][ T7644]  ? __pfx___sys_socket+0x10/0x10
[   65.491391][ T7644]  ? ksys_write+0x1ba/0x250
[   65.492577][ T7644]  __x64_sys_socket+0x72/0xb0
[   65.493809][ T7644]  ? lockdep_hardirqs_on+0x7c/0x110
[   65.495382][ T7644]  do_syscall_64+0xcd/0x250
[   65.496573][ T7644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.498113][ T7644] RIP: 0033:0x7ffbc6785d29
[   65.499277][ T7644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.504191][ T7644] RSP: 002b:00007ffbc7679fd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[   65.506343][ T7644] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007ffbc6785d29
[   65.508391][ T7644] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000027
[   65.510434][ T7644] RBP: 00007ffbc767a090 R08: 0000000000000000 R09: 0000000000000000
[   65.512471][ T7644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   65.514521][ T7644] R13: 0000000000000000 R14: 00007ffbc6975fa0 R15: 00007fff50437358
[   65.516566][ T7644]  </TASK>
[   65.524874][ T7482] syz.2.443 (7482) used greatest stack depth: 19872 bytes left
[   65.559682][ T7650] input: syz1 as /devices/virtual/input/input13
[   65.580394][   T39] kauditd_printk_skb: 31 callbacks suppressed
[   65.580404][   T39] audit: type=1400 audit(1734526996.508:520): avc:  denied  { bind } for  pid=7651 comm="syz.0.499" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   65.586919][   T39] audit: type=1400 audit(1734526996.508:521): avc:  denied  { listen } for  pid=7651 comm="syz.0.499" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   65.591806][   T39] audit: type=1400 audit(1734526996.518:522): avc:  denied  { accept } for  pid=7651 comm="syz.0.499" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   65.596857][   T39] audit: type=1400 audit(1734526996.528:523): avc:  denied  { write } for  pid=7651 comm="syz.0.499" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   65.603066][   T39] audit: type=1400 audit(1734526996.528:524): avc:  denied  { open } for  pid=7651 comm="syz.0.499" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   65.634892][    T8] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[   65.655334][    T8] usb 6-1: device descriptor read/8, error -71
[   65.665624][   T39] audit: type=1400 audit(1734526996.598:525): avc:  denied  { setopt } for  pid=7645 comm="syz.4.497" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   65.670685][   T39] audit: type=1400 audit(1734526996.598:526): avc:  denied  { accept } for  pid=7645 comm="syz.4.497" lport=35308 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   65.804645][ T5925] Bluetooth: hci0: command 0x0c1a tx timeout
[   65.875086][ T5925] Bluetooth: hci3: command 0x0c1a tx timeout
[   65.875114][ T5303] Bluetooth: hci2: command 0x0c1a tx timeout
[   65.903981][    T8] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[   65.925624][    T8] usb 6-1: device descriptor read/8, error -71
[   66.034514][    T8] usb usb6-port1: unable to enumerate USB device
[   66.507990][ T7674] FAULT_INJECTION: forcing a failure.
[   66.507990][ T7674] name failslab, interval 1, probability 0, space 0, times 0
[   66.511278][ T7674] CPU: 3 UID: 0 PID: 7674 Comm: syz.0.506 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   66.514058][ T7674] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.516838][ T7674] Call Trace:
[   66.517755][ T7674]  <TASK>
[   66.518540][ T7674]  dump_stack_lvl+0x16c/0x1f0
[   66.519786][ T7674]  should_fail_ex+0x497/0x5b0
[   66.521025][ T7674]  ? fs_reclaim_acquire+0xae/0x150
[   66.522382][ T7674]  should_failslab+0xc2/0x120
[   66.523617][ T7674]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   66.525020][ T7674]  ? alloc_empty_file+0x73/0x1e0
[   66.526311][ T7674]  alloc_empty_file+0x73/0x1e0
[   66.527587][ T7674]  alloc_file_pseudo+0x147/0x210
[   66.528886][ T7674]  ? __pfx_alloc_file_pseudo+0x10/0x10
[   66.529791][ T7672] syz.4.505: attempt to access beyond end of device
[   66.529791][ T7672] nbd4: rw=0, sector=64, nr_sectors = 1 limit=0
[   66.530578][ T7674]  ? alloc_fd+0x41f/0x760
[   66.535318][ T7674]  sock_alloc_file+0x50/0x1d0
[   66.535971][ T7672] syz.4.505: attempt to access beyond end of device
[   66.535971][ T7672] nbd4: rw=0, sector=256, nr_sectors = 1 limit=0
[   66.536898][ T7674]  __sys_socket+0x1c2/0x260
[   66.540234][ T7672] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[   66.541745][ T7674]  ? __x64_sys_openat+0x175/0x210
[   66.544709][ T7672] syz.4.505: attempt to access beyond end of device
[   66.544709][ T7672] nbd4: rw=0, sector=512, nr_sectors = 1 limit=0
[   66.545911][ T7674]  ? __pfx___sys_socket+0x10/0x10
[   66.549296][ T7672] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[   66.550889][ T7674]  ? ksys_write+0x1ba/0x250
[   66.554943][ T7674]  __x64_sys_socket+0x72/0xb0
[   66.556518][ T7674]  ? lockdep_hardirqs_on+0x7c/0x110
[   66.558169][ T7674]  do_syscall_64+0xcd/0x250
[   66.559472][ T7674]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.561035][ T7674] RIP: 0033:0x7f90ccf85d29
[   66.562237][ T7674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.567307][ T7674] RSP: 002b:00007f90cde86fd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[   66.569512][ T7674] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f90ccf85d29
[   66.571569][ T7674] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000027
[   66.573643][ T7674] RBP: 00007f90cde87090 R08: 0000000000000000 R09: 0000000000000000
[   66.575699][ T7674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   66.577817][ T7674] R13: 0000000000000000 R14: 00007f90cd175fa0 R15: 00007ffc3bac2cb8
[   66.579890][ T7674]  </TASK>
[   66.581714][ T7672] syz.4.505: attempt to access beyond end of device
[   66.581714][ T7672] nbd4: rw=0, sector=64, nr_sectors = 2 limit=0
[   66.586586][ T7672] syz.4.505: attempt to access beyond end of device
[   66.586586][ T7672] nbd4: rw=0, sector=512, nr_sectors = 2 limit=0
[   66.591321][ T7672] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[   66.598363][ T7672] syz.4.505: attempt to access beyond end of device
[   66.598363][ T7672] nbd4: rw=0, sector=1024, nr_sectors = 2 limit=0
[   66.601769][ T7672] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[   66.604472][ T7672] syz.4.505: attempt to access beyond end of device
[   66.604472][ T7672] nbd4: rw=0, sector=64, nr_sectors = 4 limit=0
[   66.607836][ T7672] syz.4.505: attempt to access beyond end of device
[   66.607836][ T7672] nbd4: rw=0, sector=1024, nr_sectors = 4 limit=0
[   66.611155][ T7672] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[   66.613692][ T7672] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[   66.616476][ T7672] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[   66.618998][ T7672] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[   66.621511][ T7672] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1)
[   66.659697][ T7676] @: renamed from vlan0 (while UP)
[   66.743475][ T7687] openvswitch: netlink: Flow actions attr not present in new flow.
[   66.806965][   T39] audit: type=1400 audit(1734526997.738:527): avc:  denied  { write } for  pid=7693 comm="syz.0.512" name="/" dev="9p" ino=38535336 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   66.812985][   T39] audit: type=1400 audit(1734526997.738:528): avc:  denied  { add_name } for  pid=7693 comm="syz.0.512" name="blkio.bfq.io_wait_time" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   66.820438][   T39] audit: type=1400 audit(1734526997.738:529): avc:  denied  { create } for  pid=7693 comm="syz.0.512" name="blkio.bfq.io_wait_time" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   66.902786][ T7698] __nla_validate_parse: 1 callbacks suppressed
[   66.902797][ T7698] netlink: 16 bytes leftover after parsing attributes in process `syz.2.514'.
[   66.939393][ T7703] FAULT_INJECTION: forcing a failure.
[   66.939393][ T7703] name failslab, interval 1, probability 0, space 0, times 0
[   66.942528][ T7703] CPU: 0 UID: 0 PID: 7703 Comm: syz.0.516 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   66.945170][ T7703] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.947872][ T7703] Call Trace:
[   66.948732][ T7703]  <TASK>
[   66.949512][ T7703]  dump_stack_lvl+0x16c/0x1f0
[   66.950729][ T7703]  should_fail_ex+0x497/0x5b0
[   66.951937][ T7703]  ? fs_reclaim_acquire+0xae/0x150
[   66.953181][ T7703]  should_failslab+0xc2/0x120
[   66.954368][ T7703]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   66.955726][ T7703]  ? security_file_alloc+0x34/0x2b0
[   66.957033][ T7703]  security_file_alloc+0x34/0x2b0
[   66.958386][ T7703]  init_file+0x93/0x480
[   66.959450][ T7703]  alloc_empty_file+0x91/0x1e0
[   66.960693][ T7703]  alloc_file_pseudo+0x147/0x210
[   66.961993][ T7703]  ? __pfx_alloc_file_pseudo+0x10/0x10
[   66.963368][ T7703]  ? alloc_fd+0x41f/0x760
[   66.964594][ T7703]  sock_alloc_file+0x50/0x1d0
[   66.965909][ T7703]  __sys_socket+0x1c2/0x260
[   66.967061][ T7703]  ? __x64_sys_openat+0x175/0x210
[   66.968381][ T7703]  ? __pfx___sys_socket+0x10/0x10
[   66.969684][ T7703]  ? ksys_write+0x1ba/0x250
[   66.970885][ T7703]  __x64_sys_socket+0x72/0xb0
[   66.972134][ T7703]  ? lockdep_hardirqs_on+0x7c/0x110
[   66.973504][ T7703]  do_syscall_64+0xcd/0x250
[   66.974677][ T7703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.976203][ T7703] RIP: 0033:0x7f90ccf85d29
[   66.977372][ T7703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.982337][ T7703] RSP: 002b:00007f90cde86fd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[   66.984493][ T7703] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f90ccf85d29
[   66.986552][ T7703] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000027
[   66.988619][ T7703] RBP: 00007f90cde87090 R08: 0000000000000000 R09: 0000000000000000
[   66.990680][ T7703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   66.992748][ T7703] R13: 0000000000000000 R14: 00007f90cd175fa0 R15: 00007ffc3bac2cb8
[   66.994819][ T7703]  </TASK>
[   66.995714][    C0] vkms_vblank_simulate: vblank timer overrun
[   67.263813][ T7670] block nbd4: shutting down sockets
[   67.292839][ T7733] FAULT_INJECTION: forcing a failure.
[   67.292839][ T7733] name failslab, interval 1, probability 0, space 0, times 0
[   67.294052][ T7734] xt_hashlimit: size too large, truncated to 1048576
[   67.296221][ T7733] CPU: 0 UID: 0 PID: 7733 Comm: syz.4.526 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   67.300669][ T7733] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.303489][ T7733] Call Trace:
[   67.304378][ T7733]  <TASK>
[   67.305166][ T7733]  dump_stack_lvl+0x16c/0x1f0
[   67.306430][ T7733]  should_fail_ex+0x497/0x5b0
[   67.307708][ T7733]  ? fs_reclaim_acquire+0xae/0x150
[   67.309070][ T7733]  should_failslab+0xc2/0x120
[   67.310323][ T7733]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   67.311733][ T7733]  ? security_file_alloc+0x34/0x2b0
[   67.313122][ T7733]  security_file_alloc+0x34/0x2b0
[   67.314456][ T7733]  init_file+0x93/0x480
[   67.315557][ T7733]  alloc_empty_file+0x91/0x1e0
[   67.316805][ T7733]  alloc_file_pseudo+0x147/0x210
[   67.318248][ T7733]  ? __pfx_alloc_file_pseudo+0x10/0x10
[   67.319735][ T7733]  ? alloc_fd+0x41f/0x760
[   67.320870][ T7733]  sock_alloc_file+0x50/0x1d0
[   67.322101][ T7733]  __sys_socket+0x1c2/0x260
[   67.323297][ T7733]  ? __x64_sys_openat+0x175/0x210
[   67.324623][ T7733]  ? __pfx___sys_socket+0x10/0x10
[   67.325952][ T7733]  ? ksys_write+0x1ba/0x250
[   67.327152][ T7733]  __x64_sys_socket+0x72/0xb0
[   67.328407][ T7733]  ? lockdep_hardirqs_on+0x7c/0x110
[   67.329755][ T7733]  do_syscall_64+0xcd/0x250
[   67.330948][ T7733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.332491][ T7733] RIP: 0033:0x7ffbc6785d29
[   67.333665][ T7733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.338648][ T7733] RSP: 002b:00007ffbc7679fd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[   67.340902][ T7733] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007ffbc6785d29
[   67.342952][ T7733] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000027
[   67.345060][ T7733] RBP: 00007ffbc767a090 R08: 0000000000000000 R09: 0000000000000000
[   67.347135][ T7733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   67.349227][ T7733] R13: 0000000000000000 R14: 00007ffbc6975fa0 R15: 00007fff50437358
[   67.351314][ T7733]  </TASK>
[   67.352182][    C0] vkms_vblank_simulate: vblank timer overrun
[   67.459522][ T7757] bridge1: entered promiscuous mode
[   67.460951][ T7757] bridge1: entered allmulticast mode
[   67.537208][ T7766] netlink: 36 bytes leftover after parsing attributes in process `syz.4.535'.
[   67.538542][ T7770] FAULT_INJECTION: forcing a failure.
[   67.538542][ T7770] name failslab, interval 1, probability 0, space 0, times 0
[   67.539658][ T7766] netlink: 16 bytes leftover after parsing attributes in process `syz.4.535'.
[   67.542727][ T7770] CPU: 3 UID: 0 PID: 7770 Comm: syz.1.537 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   67.542743][ T7770] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.542749][ T7770] Call Trace:
[   67.542754][ T7770]  <TASK>
[   67.542759][ T7770]  dump_stack_lvl+0x16c/0x1f0
[   67.552607][ T7766] netlink: 36 bytes leftover after parsing attributes in process `syz.4.535'.
[   67.553535][ T7770]  should_fail_ex+0x497/0x5b0
[   67.557014][ T7770]  ? fs_reclaim_acquire+0xae/0x150
[   67.558364][ T7770]  should_failslab+0xc2/0x120
[   67.559522][ T7766] netlink: 36 bytes leftover after parsing attributes in process `syz.4.535'.
[   67.559615][ T7770]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   67.563257][ T7770]  ? security_file_alloc+0x34/0x2b0
[   67.564566][ T7770]  security_file_alloc+0x34/0x2b0
[   67.565858][ T7770]  init_file+0x93/0x480
[   67.566928][ T7770]  alloc_empty_file+0x91/0x1e0
[   67.568166][ T7770]  alloc_file_pseudo+0x147/0x210
[   67.569508][ T7770]  ? __pfx_alloc_file_pseudo+0x10/0x10
[   67.571452][ T7770]  ? alloc_fd+0x41f/0x760
[   67.573006][ T7770]  sock_alloc_file+0x50/0x1d0
[   67.574689][ T7770]  __sys_socket+0x1c2/0x260
[   67.576519][ T7770]  ? __x64_sys_openat+0x175/0x210
[   67.578319][ T7770]  ? __pfx___sys_socket+0x10/0x10
[   67.579957][ T7770]  ? ksys_write+0x1ba/0x250
[   67.581207][ T7770]  __x64_sys_socket+0x72/0xb0
[   67.582416][ T7770]  ? lockdep_hardirqs_on+0x7c/0x110
[   67.583748][ T7770]  do_syscall_64+0xcd/0x250
[   67.584918][ T7770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.586444][ T7770] RIP: 0033:0x7f9dc0f85d29
[   67.587582][ T7770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.592876][ T7775] netlink: 20 bytes leftover after parsing attributes in process `syz.0.538'.
[   67.593693][ T7770] RSP: 002b:00007f9dc1dc1fd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[   67.593716][ T7770] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f9dc0f85d29
[   67.601632][ T7770] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000027
[   67.604331][ T7770] RBP: 00007f9dc1dc2090 R08: 0000000000000000 R09: 0000000000000000
[   67.606885][ T7770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   67.608946][ T7770] R13: 0000000000000000 R14: 00007f9dc1175fa0 R15: 00007ffebf9db728
[   67.611154][ T7770]  </TASK>
[   67.785809][    C1] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN NOPTI
[   67.789157][    C1] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
[   67.791964][    C1] CPU: 1 UID: 0 PID: 7790 Comm: syz.4.544 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   67.796029][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.798874][    C1] RIP: 0010:put_page+0x21/0x280
[   67.800160][    C1] Code: 90 90 90 90 90 90 90 90 90 41 54 55 53 48 89 fb e8 64 ed 97 f8 48 8d 7b 08 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 20 02 00 00 4c 8b 63 08 31 ff 4c 89 e5 83 e5 01
[   67.805161][    C1] RSP: 0000:ffffc90003b87368 EFLAGS: 00010202
[   67.806782][    C1] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8903a648
[   67.808888][    C1] RDX: 0000000000000001 RSI: ffffffff890227ec RDI: 0000000000000008
[   67.810959][    C1] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[   67.813027][    C1] R10: 0000000000000000 R11: 0000000000000003 R12: ffff88804a79a080
[   67.815090][    C1] R13: ffff8880550a7740 R14: ffff8880550a7770 R15: 0000000000000007
[   67.817167][    C1] FS:  0000555581c0f500(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000
[   67.819643][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   67.821379][    C1] CR2: 000000110c38c253 CR3: 000000001259e000 CR4: 0000000000352ef0
[   67.823455][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   67.825530][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   67.827588][    C1] Call Trace:
[   67.828478][    C1]  <TASK>
[   67.829258][    C1]  ? die_addr+0x3b/0xa0
[   67.830376][    C1]  ? exc_general_protection+0x155/0x230
[   67.831828][    C1]  ? asm_exc_general_protection+0x26/0x30
[   67.833337][    C1]  ? skb_release_data+0x4b8/0x730
[   67.834670][    C1]  ? put_page+0xc/0x280
[   67.835897][    C1]  ? put_page+0x21/0x280
[   67.837362][    C1]  ? put_page+0xc/0x280
[   67.838463][    C1]  skb_release_data+0x4d7/0x730
[   67.839752][    C1]  __kfree_skb+0x4f/0x70
[   67.840868][    C1]  tcp_ack+0x1eb7/0x5ba0
[   67.842006][    C1]  ? __pfx_tcp_ack+0x10/0x10
[   67.842546][ T7800] FAULT_INJECTION: forcing a failure.
[   67.842546][ T7800] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   67.843210][    C1]  ? tcp_validate_incoming+0x662/0x1d00
[   67.846680][ T7800] CPU: 3 UID: 0 PID: 7800 Comm: syz.2.547 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[   67.848075][    C1]  ? read_tsc+0x9/0x20
[   67.850804][ T7800] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.851884][    C1]  tcp_rcv_state_process+0xdd4/0x4c40
[   67.854659][ T7800] Call Trace:
[   67.854668][ T7800]  <TASK>
[   67.856071][    C1]  ? __pfx___lock_acquire+0x10/0x10
[   67.856982][ T7800]  dump_stack_lvl+0x16c/0x1f0
[   67.857747][    C1]  ? __pfx_lock_release+0x10/0x10
[   67.859085][ T7800]  should_fail_ex+0x497/0x5b0
[   67.860308][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[   67.861634][ T7800]  _copy_to_user+0x32/0xd0
[   67.862863][    C1]  ? __pfx_tcp_rcv_state_process+0x10/0x10
[   67.864217][ T7800]  simple_read_from_buffer+0xd0/0x160
[   67.865387][    C1]  ? lock_acquire.part.0+0x11b/0x380
[   67.866905][ T7800]  proc_fail_nth_read+0x198/0x270
[   67.868317][    C1]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   67.869704][ T7800]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   67.871017][    C1]  ? rcu_is_watching+0x12/0xc0
[   67.872475][ T7800]  ? bpf_lsm_file_permission+0x9/0x10
[   67.873924][    C1]  ? do_raw_spin_lock+0x12d/0x2c0
[   67.875192][ T7800]  ? security_file_permission+0x71/0x210
[   67.876590][    C1]  ? tcp_v4_do_rcv+0x1ad/0xa90
[   67.877962][ T7800]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   67.879423][    C1]  tcp_v4_do_rcv+0x1ad/0xa90
[   67.880692][ T7800]  vfs_read+0x1df/0xbe0
[   67.882155][    C1]  tcp_v4_rcv+0x33a0/0x4380
[   67.883371][ T7800]  ? __fget_files+0x1fc/0x3a0
[   67.884462][    C1]  ? __pfx_tcp_v4_rcv+0x10/0x10
[   67.885659][ T7800]  ? __pfx___mutex_lock+0x10/0x10
[   67.886900][    C1]  ? __pfx_raw_local_deliver+0x10/0x10
[   67.888190][ T7800]  ? __pfx_vfs_read+0x10/0x10
[   67.889514][    C1]  ? rcu_is_watching+0x12/0xc0
[   67.890935][ T7800]  ? __fget_files+0x206/0x3a0
[   67.892163][    C1]  ? __pfx_tcp_v4_rcv+0x10/0x10
[   67.893432][ T7800]  ksys_read+0x12b/0x250
[   67.894668][    C1]  ip_protocol_deliver_rcu+0xba/0x4c0
[   67.895941][ T7800]  ? __pfx_ksys_read+0x10/0x10
[   67.897048][    C1]  ip_local_deliver_finish+0x316/0x570
[   67.898465][ T7800]  ? rcu_is_watching+0x12/0xc0
[   67.899718][    C1]  ip_local_deliver+0x18e/0x1f0
[   67.901129][ T7800]  ? rcu_is_watching+0x12/0xc0
[   67.902392][    C1]  ? __pfx_ip_local_deliver+0x10/0x10
[   67.903667][ T7800]  do_syscall_64+0xcd/0x250
[   67.905272][    C1]  ip_rcv+0x2c3/0x5d0
[   67.906682][ T7800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.907885][    C1]  ? __pfx_ip_rcv+0x10/0x10
[   67.908928][ T7800] RIP: 0033:0x7f9de9d8473c
[   67.910471][    C1]  __netif_receive_skb_one_core+0x199/0x1e0
[   67.911663][ T7800] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   67.912827][    C1]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   67.914375][ T7800] RSP: 002b:00007f9deabcc030 EFLAGS: 00000246
[   67.919358][    C1]  ? rcu_is_watching+0x12/0xc0
[   67.921045][ T7800]  ORIG_RAX: 0000000000000000
[   67.922630][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   67.923886][ T7800] RAX: ffffffffffffffda RBX: 00007f9de9f75fa0 RCX: 00007f9de9d8473c
[   67.925121][    C1]  ? process_backlog+0x3f1/0x15f0
[   67.926551][ T7800] RDX: 000000000000000f RSI: 00007f9deabcc0a0 RDI: 0000000000000003
[   67.928641][    C1]  ? process_backlog+0x3f1/0x15f0
[   67.929965][ T7800] RBP: 00007f9deabcc090 R08: 0000000000000000 R09: 0000000000000000
[   67.932025][    C1]  __netif_receive_skb+0x1d/0x160
[   67.933412][ T7800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   67.935382][    C1]  process_backlog+0x443/0x15f0
[   67.936617][ T7800] R13: 0000000000000000 R14: 00007f9de9f75fa0 R15: 00007ffd42a64d08
[   67.938607][    C1]  __napi_poll.constprop.0+0xb7/0x550
[   67.939819][ T7800]  </TASK>
[   67.941807][    C1]  net_rx_action+0xa94/0x1010
[   67.945440][    C1]  ? __pfx_net_rx_action+0x10/0x10
[   67.946744][    C1]  ? sched_balance_domains+0x285/0xec0
[   67.948133][    C1]  handle_softirqs+0x213/0x8f0
[   67.949347][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[   67.950663][    C1]  __irq_exit_rcu+0x109/0x170
[   67.951893][    C1]  irq_exit_rcu+0x9/0x30
[   67.952978][    C1]  sysvec_apic_timer_interrupt+0x57/0xc0
[   67.954329][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   67.955892][    C1] RIP: 0033:0x7ffbc6665f1b
[   67.957054][    C1] Code: 24 1e 01 45 31 ff 45 31 f6 44 0f b6 e6 85 c0 0f 84 9e 00 00 00 44 89 f9 49 8b 50 30 4c 89 f0 49 03 14 ca 80 3d 8d 1c 31 00 00 <49> 89 d6 48 89 d5 74 28 25 ff 0f 00 00 83 f0 3d 8d 04 c0 89 c5 c1
[   67.962105][    C1] RSP: 002b:00007fff504373b0 EFLAGS: 00000246
[   67.963590][    C1] RAX: ffffffff81e16c59 RBX: 00007ffbc74a5720 RCX: 0000000000076406
[   67.965559][    C1] RDX: ffffffff81e16c67 RSI: ffffffff81e16c59 RDI: 0000000000000004
[   67.967821][    C1] RBP: ffffffff81e16c59 R08: 00007ffbc6976118 R09: 00007ffbc6962000
[   67.968596][ T5303] Bluetooth: hci0: command 0x0c1a tx timeout
[   67.970067][    C1] R10: 00007ffbc59fd008 R11: 0000000000000004 R12: 0000000000000004
[   67.970079][    C1] R13: 0000000000000000 R14: ffffffff81e16c59 R15: 0000000000076406
[   67.970088][    C1]  ? follow_page_pte+0x1f9/0x1b20
[   67.976861][    C1]  ? follow_page_pte+0x1f9/0x1b20
[   67.978186][    C1]  ? follow_page_pte+0x1f9/0x1b20
[   67.979450][    C1]  ? follow_page_pte+0x207/0x1b20
[   67.980751][    C1]  ? follow_page_pte+0x1f9/0x1b20
[   67.982022][    C1]  </TASK>
[   67.982795][    C1] Modules linked in:
[   67.984104][    C1] ---[ end trace 0000000000000000 ]---
[   67.985886][    C1] RIP: 0010:put_page+0x21/0x280
[   67.987219][    C1] Code: 90 90 90 90 90 90 90 90 90 41 54 55 53 48 89 fb e8 64 ed 97 f8 48 8d 7b 08 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 20 02 00 00 4c 8b 63 08 31 ff 4c 89 e5 83 e5 01
[   67.992547][    C1] RSP: 0000:ffffc90003b87368 EFLAGS: 00010202
[   67.994197][    C1] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8903a648
[   67.996255][    C1] RDX: 0000000000000001 RSI: ffffffff890227ec RDI: 0000000000000008
[   67.998761][    C1] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[   68.001223][    C1] R10: 0000000000000000 R11: 0000000000000003 R12: ffff88804a79a080
[   68.003584][    C1] R13: ffff8880550a7740 R14: ffff8880550a7770 R15: 0000000000000007
[   68.006319][    C1] FS:  0000555581c0f500(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000
[   68.009345][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   68.011495][    C1] CR2: 000000110c38c253 CR3: 000000001259e000 CR4: 0000000000352ef0
[   68.014242][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   68.016917][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   68.019582][    C1] Kernel panic - not syncing: Fatal exception in interrupt
[   68.022220][    C1] Kernel Offset: disabled
[   68.023464][    C1] Rebooting in 86400 seconds..

VM DIAGNOSIS:
12:20:38  Registers:
info registers vcpu 0

CPU#0
RAX=00000000000a95bc RBX=0000000000000000 RCX=ffffffff8b299759 RDX=ffffed100d4c6fee
RSI=ffffffff8bd1e8a0 RDI=ffffffff81709459 RBP=fffffbfff1bd2ef8 RSP=ffffffff8de07e20
R8 =0000000000000000 R9 =ffffed100d4c6fed R10=ffff88806a637f6b R11=0000000000000000
R12=0000000000000000 R13=ffffffff8de977c0 R14=ffffffff905f2fd0 R15=0000000000000000
RIP=ffffffff8b29ab3f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020002000 CR3=0000000056e04000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 24637e3199174308 babab07c8878a24b
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9dc10029b2
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9dc10029bf
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9dc10029b9
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9dc10029cd
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9dc1002a53
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9dc1002b31
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1b419b8b0e3b9b9b 53e5c67fffe76e3e 9b0cf787c0f4fb9c f9526bed21ade3a2
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5219f37e8f98f367 9b2a249a4c9b9568 349b04e7c61a0e8f 42290d081b09305d
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9dc1cad100 00007f9dc114b440 00007f9dc1140004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9dc114b498 00007f9dc114b490 00007f9dc114b488 00007f9dc114b480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 45425f434900414e 41445f444c005242 494c444449005f44 4c00574f4e5f444e
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004644 4c0057444c004441
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff851bbaf5 RDI=ffffffff9ab0ec20 RBP=ffffffff9ab0ebe0 RSP=ffffc90003b86cc0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552031203a555043
R12=0000000000000000 R13=0000000000000020 R14=ffffffff851bba90 R15=0000000000000000
RIP=ffffffff851bbb1f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555581c0f500 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c38c253 CR3=000000001259e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000054 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffbc68029b2
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffbc68029bf
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffbc68029b9
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffbc68029cd
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffbc6802a53
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffbc6802b31
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffbc694b488 00007ffbc694b480 00007ffbc694b478 00007ffbc694b450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffbc74ad100 00007ffbc694b440 00007ffbc694b458 00007ffbc694b4a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffbc694b498 00007ffbc694b490 00007ffbc694b488 00007ffbc694b480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 45425f434900414e 41445f444c005242 494c444449005f44 4c00574f4e5f444e
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004644 4c0057444c004441
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000246 RBX=1ffff920006bdeda RCX=1ffffffff20bec5e RDX=0000000000000000
RSI=0000000000000177 RDI=ffff8880305aa884 RBP=0000000000000000 RSP=ffffc900035ef6c0
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff905f2fd7 R11=0000000000000000
R12=ffffffff8ca68380 R13=0000000000000177 R14=0000000000000000 R15=ffff8880305aa440
RIP=ffffffff8168222c RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f9deabcc6c0 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f2cdc79a440 CR3=0000000020c28000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90cd0029b2
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90cd0029bf
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90cd0029b9
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90cd0029cd
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90cd002a53
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90cd002b31
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90cd14b488 00007f90cd14b480 00007f90cd14b478 00007f90cd14b450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90cdcad100 00007f90cd14b440 00007f90cd140004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90cd14b498 00007f90cd14b490 00007f90cd14b488 00007f90cd14b480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 45425f434900414e 41445f444c005242 494c444449005f44 4c00574f4e5f444e
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004644 4c0057444c004441
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000000 RBX=ffffc90000708028 RCX=0000000000000001 RDX=1ffff920000e100e
RSI=ffffc90000708fb0 RDI=ffffffff815c5649 RBP=ffffc90000708070 RSP=ffffc90000708008
R8 =ffffc9000070805c R9 =ffffffff90f28c60 R10=ffffc90000708028 R11=0000000000005c4d
R12=ffffffff8185d1f0 R13=ffffc900007080e8 R14=0000000000000000 R15=ffff8880305a8000
RIP=ffffffff81647830 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f9dc1dc26c0 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020022000 CR3=0000000056e04000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000054 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9de9e029b2
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9de9e029bf
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9de9e029b9
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9de9e029cd
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9de9e02a53
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9de9e02b31
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4b6c3f23670ee0e9 2179438e9239409c 1b434c9c72a462a1 eaf73f4ac65b54ff
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 943e8e1e702e1116 e5c672e8ef98d313 a289e2ec04ae0004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1fd28d8e0503371a 1264233ddb4db2ec de9085e7b0860878 e57963c96503d8f4
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5ccd4959c562e5c1 fefaf6680e36db96 8480095aa0e34d0c 0a1dc535527756a4
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 09424ca0e320e49e 04965e618e8afcb4 02134e8bf6703533 74780cd63cc1985e
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 99fc924e5855fce2 bfb606b545343a1b 802ef4dd2d5a5bc5 94405e536e2ad269
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 05c556d3ed015ccd 4959c562e5c1fefa f6680e36db968480 095aa0e34d0c0a1d
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 c535527756a41fd2 8d8e0503371a1264 233ddb4db2ecde90 85e7b0860878e579
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 45425f434900414e 41445f444c005242 494c444449005f44 4c00574f4e5f444e
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004644 4c0057444c004441
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000