last executing test programs:

5.77995264s ago: executing program 1 (id=2552):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="1800000007140100000032c83a110000050042"], 0x18}}, 0x0)
syz_emit_ethernet(0x5a, &(0x7f0000000500)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0xe, 0x4, 0x0, 0x0, 0x4c, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_addr={0x44, 0x1c, 0xa, 0x1, 0x0, [{@empty}, {}, {@rand_addr=0x64010101, 0x3}]}, @cipso={0x86, 0x6, 0x1}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000000)={0x18, 0x0, 0x0, {0x3b9}}, 0x18)
write$FUSE_INIT(r3, &(0x7f0000000200)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x0, 0x8004000, 0x7, 0x8, 0x8000, 0x4, 0x0, 0x0, 0x10, 0x5}}, 0x50)
write$FUSE_GETXATTR(r3, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f00000005c0)=ANY=[@ANYBLOB="b900"], 0xb8)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000080), 0x1010412, &(0x7f0000000700)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}})
bind$isdn_base(r3, &(0x7f0000000000)={0x22, 0x2, 0x4, 0x6, 0x6}, 0x6)

5.779730525s ago: executing program 1 (id=2554):
syz_open_procfs(0x0, &(0x7f0000000300)='net/ip_vs\x00')
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000a00)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000a80)=ANY=[], 0x644}, 0x1, 0x0, 0x0, 0x20048804}, 0x2400a850)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r3, 0x2000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mlock2(&(0x7f0000549000/0x1000)=nil, 0x1000, 0x0)

5.779505418s ago: executing program 1 (id=2556):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="2800000066001fff27bd70ffffff9e0000000000", @ANYRES32], 0x28}}, 0x0)

5.756220227s ago: executing program 3 (id=2560):
r0 = socket(0x40000000015, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x2713, 0x0, &(0x7f0000000040))
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000001080), 0x88000, 0x0)
ioctl$FBIOPUTCMAP(r1, 0x4605, &(0x7f00000011c0)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$AUTOFS_IOC_PROTOVER(r1, 0x80049363, &(0x7f0000000000))
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r0}, 0x8)

5.653301145s ago: executing program 3 (id=2561):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xa4}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xea100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000380)={[0x8000000000000000, 0x3, 0x0, 0x20, 0x0, 0x0, 0x2004cb, 0x7000, 0x0, 0x0, 0xfffffffffffffffb, 0x1, 0x0, 0x0, 0x4000000000000004], 0xffff1000})
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000000000005000000000000000440f20c0350300000066400fae7e"], 0x50})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x74, 0x0, 0x0)
r6 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000000000/0x400000)=nil)
syz_kvm_add_vcpu$x86(r6, &(0x7f00000000c0)={0x0, 0x0})

5.427423809s ago: executing program 3 (id=2568):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000100)="1400000016000b63d25a80648c2594f922240685", 0x14}], 0x1}, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_qrtr_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000040)={'veth0_to_hsr\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000200001032abd7000ffdbe32502000004ff00000800000000"], 0x1c}, 0x1, 0x0, 0x0, 0x240480d4}, 0x4040)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
syz_usb_connect(0x1, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
pread64(r2, &(0x7f0000000480)=""/236, 0xec, 0x9)
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r4}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x20, 0x18, 0x229, 0x0, 0x0, {0x2}, [@nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0x10, 0x0, 0x0, @ipv4=@broadcast}]}]}, 0x20}}, 0x0)
mount$tmpfs(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000280), 0x810000, &(0x7f0000000580)={[{@grpquota_inode_hardlimit={'grpquota_inode_hardlimit', 0x3d, [0x38, 0x65]}}]})
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r8, 0x4068aea3, &(0x7f00000005c0)={0xa4})
vmsplice(r6, &(0x7f00000013c0)=[{&(0x7f0000000080)='4', 0xfee1}, {&(0x7f0000000100)="a7", 0x1}, {&(0x7f0000000240)="9f", 0x1}, {&(0x7f0000000300)='b', 0x1}], 0x10000000000000e0, 0x1)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000021000100"], 0x28}}, 0x0)

1.861295635s ago: executing program 0 (id=2586):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet(0xa, 0x801, 0x84)
listen(r0, 0x8)
accept4(r0, 0x0, 0x0, 0x0) (fail_nth: 4)

1.743562581s ago: executing program 0 (id=2587):
memfd_create(&(0x7f0000000100)='#:#@.\x00', 0x3)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0)
close(r0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, &(0x7f00000003c0)=[{0x4, 0x5, 0xb, 0xb}, {0x2, 0x4, 0x7, 0x4}, {0x2, 0x1, 0x8, 0x3}, {0x1, 0x4, 0x4, 0xc}, {0x5, 0x5, 0xa, 0x7}, {0x5, 0x4, 0x0, 0x3}, {0x5, 0x2, 0x5, 0xa}, {0x4, 0x1, 0xe, 0x1}], 0x10, 0x9, @void, @value}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="340000003e0007010000000000000000017c00000400fc800c00018006000600080600000800028004007280080007"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b26, &(0x7f0000000080)={'wlan1\x00', @random="8d0000008000"})
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r4, 0x0)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_SET_FPU(r4, 0x41a0ae8d, &(0x7f0000000240)={'\x00', 0x4, 0x0, 0x99, 0x0, 0x0, 0x10000, 0x2, '\x00', 0xc94})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

1.290385659s ago: executing program 3 (id=2588):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="2800000066001fff27bd709effffff0000000000", @ANYRES32], 0x28}}, 0x0)

1.290230246s ago: executing program 3 (id=2589):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x74, 0x0, 0x0)
r3 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000000000/0x400000)=nil)
syz_kvm_add_vcpu$x86(r3, &(0x7f00000000c0)={0x0, 0x0}) (fail_nth: 4)

1.057796429s ago: executing program 0 (id=2591):
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000100)="0f0051243e660f3881507e0f01c86766c74424000b9cce1e6766c7442402008000006766c744240600000000670f011c24baf80c66b84378118566efbafc0cec660f3881af0000b853000f00d0640f060f017c00b818000f00d8", 0x5a}], 0x1, 0x2, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x240048c4}, 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f", 0x7, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4800000010000504", @ANYBLOB="ebffffffffffffff280012800b00010065"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xffffffffffffff86, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

1.057524986s ago: executing program 3 (id=2593):
r0 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, 0x0})
close_range(r2, 0xffffffffffffffff, 0x0)

984.108874ms ago: executing program 2 (id=2595):
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f", 0x7, 0xfffffffffffffffe)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$EBT_SO_GET_INFO(r1, 0x84, 0x72, &(0x7f0000000080)={'broute\x00'}, &(0x7f0000000140)=0x78)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x7, 0x4, 0x8, 0x40, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r2 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r2, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
read$FUSE(r4, &(0x7f0000004180)={0x2020}, 0xfffffffa)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000400)={&(0x7f0000000700)={0xd4, 0x0, 0x2, 0x70bd26, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_REKEY_DATA={0x30, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x80000000}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="1ebdc7da4d530d3d9ec150d63ba2aefa1a430edb17e65247924ec7e1c406ac2e"}]}, @NL80211_ATTR_REKEY_DATA={0x90, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="05c8c0cf22d1978ea42219f1ba77235d9cdec33e89e3e4f4"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "12d489159e39478a"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="39a2cf842387091bf2ed097b230a7d9d09a474f8da34cf40"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x7}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x1}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x7}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="5becd72086d5c7947141c47f2432ea815122250312de22922fd85a5c9ec0099f"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "96c74bd3a17d45ff"}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x40890}, 0x20004041)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r6 = dup(r5)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r5, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

801.575801ms ago: executing program 0 (id=2596):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet(0xa, 0x801, 0x84)
listen(r0, 0x8)
accept4(r0, 0x0, 0x0, 0x500)

801.384156ms ago: executing program 1 (id=2558):
memfd_create(&(0x7f0000000100)='#:#@.\x00', 0x3)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0)
close(r0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, &(0x7f00000003c0)=[{0x4, 0x5, 0xb, 0xb}, {0x2, 0x4, 0x7, 0x4}, {0x2, 0x1, 0x8, 0x3}, {0x1, 0x4, 0x4, 0xc}, {0x5, 0x5, 0xa, 0x7}, {0x5, 0x4, 0x0, 0x3}, {0x5, 0x2, 0x5, 0xa}, {0x4, 0x1, 0xe, 0x1}], 0x10, 0x9, @void, @value}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="340000003e0007010000000000000000017c00000400fc800c00018006000600080600000800028004007280080007"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b26, &(0x7f0000000080)={'wlan1\x00', @random="8d0000008000"})
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r4, 0x0)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

801.186175ms ago: executing program 0 (id=2597):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_io_uring_setup(0xe42, &(0x7f00000005c0)={0x0, 0x2119, 0x100, 0x0, 0x1d0}, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)={0x80000, 0x0, 0x32}, &(0x7f0000000500)='./file0\x00', 0x1d})
io_uring_enter(r1, 0x6f58, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000500000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000000c0)='mmap_lock_acquire_returned\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x100000a, 0x4082172, 0xffffffffffffffff, 0x0)
r5 = syz_open_dev$MSR(&(0x7f0000000200), 0xfa1, 0x0)
read$msr(r5, &(0x7f0000000300)=""/87, 0x57)
getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, &(0x7f0000000080), &(0x7f00000001c0)=0x40)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='net/vlan/config\x00')
read$alg(r6, &(0x7f0000000380)=""/148, 0x94)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
mmap(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x0, 0x2172, 0xffffffffffffffff, 0x0)
io_setup(0x6, &(0x7f0000001380))
connect$bt_sco(r0, &(0x7f0000000100)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)

684.67713ms ago: executing program 2 (id=2599):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x48e80, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000000)=0x3)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000003c0)={0x2, 0x0, @ioapic={0xf000, 0x2, 0x0, 0xeffffdff, 0x0, [{0x0, 0xec}, {0x19, 0x5}, {0xfc, 0x4}, {0xfe, 0x0, 0x7f, '\x00', 0x6}, {0x8, 0x0, 0x5, '\x00', 0xb}, {}, {0x0, 0x81, 0xbe}, {0x0, 0xe}, {0x0, 0x0, 0x0, '\x00', 0x7f}, {0x8, 0x6, 0xfe, '\x00', 0x2}, {}, {0x0, 0x50}, {0x4, 0x0, 0x4, '\x00', 0x3}, {0x1, 0x4e}, {0x2, 0x0, 0x4, '\x00', 0xfe}, {}, {0x0, 0x0, 0x4, '\x00', 0x1}, {0x0, 0x0, 0x0, '\x00', 0xfd}, {0x1, 0x6, 0x7, '\x00', 0x3}, {0x80, 0x4, 0x0, '\x00', 0x40}, {0x0, 0x4}, {0x0, 0x0, 0x0, '\x00', 0xfe}, {0x1}, {0xfc, 0x83, 0xe}]}})
syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000bff000/0x400000)=nil)

597.972557ms ago: executing program 0 (id=2600):
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000600)={0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0191e6d595bab8c4b500006490321db49c531a00000f01d967460f35"], 0x54})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="01000000000000007300000000000000c744240005000000c7442402d1259bb7c7442406000000000f01145f"], 0x73})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000000)=@x86={0x5, 0x5, 0x17, 0x0, 0x3, 0xf9, 0x2, 0x79, 0xff, 0x8, 0x1, 0x1, 0x0, 0x8, 0x5, 0x4, 0x72, 0x7, 0xfa, '\x00', 0x3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = eventfd2(0x4, 0x80000)
close(r3)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x9b2865eb380ce56a, 0x0)
write$eventfd(r3, &(0x7f0000000080)=0xb, 0x1001)

468.674104ms ago: executing program 1 (id=2601):
ioctl$KVM_CAP_DISABLE_QUIRKS(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000080)={0x74, 0x0, 0x1})
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x200, 0x0)
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000600)={0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0191e6d595bab8c4b500006490321db49c531a00000f01d967460f35"], 0x54})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000000)=@x86={0x5, 0x5, 0x17, 0x0, 0x3, 0xf9, 0x2, 0x79, 0xff, 0x8, 0x1, 0x1, 0x0, 0x8, 0x5, 0x4, 0x72, 0x7, 0xfa, '\x00', 0x3})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = eventfd2(0x4, 0x80000)
close(r4)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x9b2865eb380ce56a, 0x0)
write$eventfd(r4, &(0x7f0000000080)=0xb, 0x1001)

374.871228ms ago: executing program 2 (id=2602):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000002300)={0x1, 0x0, [{0x400000b0, 0x0, 0x9}]})

276.409452ms ago: executing program 2 (id=2603):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000040)=@x86={0x3, 0x6, 0x2, 0x0, 0x2, 0x6, 0xb, 0xfe, 0xfc, 0x12, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8000000000005})

138.988435ms ago: executing program 2 (id=2604):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x8, 0x0, 0x8, 0x8, 0x8, 0x50, 0x2, 0x6, 0x4, 0x4, 0x3, 0xfd, 0xa6}, {0x7ff, 0x6, 0x6, 0x1, 0x2, 0x4, 0x9, 0x8, 0x9, 0xee, 0x9, 0x4, 0x1000000000000003}, {0x9, 0xa, 0x9, 0x1, 0xfb, 0x63, 0x6, 0x5, 0x2, 0x9, 0x3, 0x30, 0x2870}], 0xc2})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{0x1, 0x2, 0xe, 0x3, 0x23, 0x2, 0xb, 0x6, 0xf9, 0x0, 0x7f, 0x1}, {0x58, 0x1, 0x6, 0x2, 0x7, 0x5c, 0x91, 0x2, 0x5c, 0x2, 0x0, 0xc, 0x7}, {0x6, 0xe76e, 0x85, 0x6, 0x4, 0x2, 0x93, 0xff, 0xfa, 0x3, 0x7, 0x6, 0x4}], 0x5})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000000, 0x1000000000, 0x0, 0x40, 0x2000001, 0x0, 0x2004cb, 0x0, 0x0, 0x4, 0x5, 0x0, 0x3, 0x4], 0x1, 0x202})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

152.661µs ago: executing program 1 (id=2605):
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f0000000180)=@x86={0xc, 0xd, 0x10, 0x0, 0x5, 0x0, 0x0, 0x3, 0x0, 0x7, 0x10, 0x2, 0x0, 0x0, 0x2, 0x4d, 0x7, 0x6, 0x2, '\x00', 0xfe, 0x100})
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000080)={0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000000000089000000000000000f20c52e440f"], 0x89})
ioctl$KVM_SET_NESTED_STATE(r3, 0x4080aebf, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

0s ago: executing program 2 (id=2606):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x40202, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000bfe000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000a40)={0x0, 0x0})
ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f0000000000)=0x4)
ioctl$KVM_SET_NESTED_STATE(r3, 0x4080aebf, &(0x7f0000000a80)={{0x3, 0x0, 0xffffffffffffff67, {0x4000, 0x2}}, "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", "92bbe68d68831472731a7d2c7a754fd8b796b7be48982576b6d9a9601d71811fd857b11f89039fd56f1cc71b70df1b5c66084c14a90b752d8c4a37c6ce3dfea7ee28d47ef60f00e26bc9923267366b9c78de736d87d02ed8265ffe733cf8029a495ccd2dfa56ab87fb1eb9cfa89683c413d40ed8f7a468aaad6abf030868ec9b2377752723093ae56768fbdbff774591dc7e1ddbabfdcaf7f9bb773056ef239f1622d310993efb4e84dd2ed536836b03f1b32948222e8bba288569b75a6e1fc068a0d7eebb2b6fff77a40524c491a0c31296ca1f430403afbe50e15aa2b96fc1d2d4240314eb56dc75dc8dcceb7d826f42f04391b9e3625031d569bcbdc75b1ccc5ab848056c3ba27e4bfbcfbae398f9adc3c8e2e5087b4544a2495fcda939fc4f19d1e963620879e2e7ee7ab8f4fd7d337a95105be0166b8d15090d456e363367a2e19d548a941088bf1d1cf715c5401f95a27dd14cd2525015233531f59e45eb750246427027fe3fbcfd1e17e9a1bd77dff8790ecd2a1a95944cbe3ac1181c0c15acf2aefb97002056c3b08e918be915a70bb9b6a9b1b7af8f32937cca7d532154162181da3c7bd4115ad9560c1875566c6202086929b7d2dd3ae628e1817de91c2f750215339ac2878156fb125e645691f29c7a7d0586a0b63230338a0a52167b42d1894649c09de65669de20dd22a9b514c680d3c9238bbfdeb03d066f0a6ae3b25d7dea410a41a10cb32cb588ea5f7300eb2ca4ee60ba11cbf4ab2d4016b9d2b283221973e21c47ad08a5e15112126bd0d99546e8da93eb7723d54c8ea41a06ec90eda609cc2afae509cca499802163d1b6913e56dc1dbb5402772b1358fb05220b01e5be456cce429dab81ce56dba3334bde68e6ddd8e81d1a8f9908791428fe827cada399365db0bc9d551e7e24582a56fe2429244b571c91ed8c397911e92502c8b78b1c8141c299c9e867f63295c29df1afb362dbd38596d159a762d224995d59b3f124d68bace27daca69552f8f427196bc0e105828a8abee8ae82dbccb916a5b4636cee9b9131a7781be6d03456eecf533e427c1517ad5901bff4447cc6ad047b214d01ba951433a90960bd942bd48b08a56a8faa5967214c75f08b3661bc169ba36605bf358f854bf052ad84f1f58726c93133fea250c114a223e7366ee5c5eb235db720b862a158bcd0945e97a6744ff73ba294b7a2d028c165dbd9abd623cde1d427198a0fe60f24c01bc4e808147c2a03e8b62d1047e47e1d6fad8c96aee7e1c8c5c762d50f8d163cf4aa395a63931930af406af52bd489852105f67ee09234b1e4697313a7b3cd580eb367f64e9a09dc32a577f38f682e536b35db040d19aef21fd8f29d7f73171f42cb9da72a83cd86b8224ae6a496c8b2abffeba222b16be038c932191b4ad1c329e78570bf576c12fb212f0efb25cc3c3be755d7c80bcf1354d6ee6dba72771660a77fce172e33f32a3ba1bdf6b427f37ced092eeabfa368f11101547980b0cb827ed3db3a1b22431c37ef691a8f9e07cdef557a3cd0e666188a6780709f374bd8fbfdeeb88e0faf1c95d0f668116227b447bb1490b65938dcaf47e358591220d8dbc5d87b122d9be6f30d363c2626de93cd480a21875f474b96bed3f198f690883f8622dd96c174b43cea38229d323142e03a27016c5f442b9449379ac455aae9f2bc87bd376f526c386bea3fbb0bc95e31be68dc0de076aa754322755dbe09f69f80ba6cf4f786da3cf3813688ed2c48414e1a55cd1d04e368dfe73cc314ed0bd555e9c64bd5b737545b20a654c3e2ad4fe94e274b74ee54bdbbf8f7631cffd2fd8447877b6eaae6d96cc0c761d4493afa04d8810852097fd61e1e6a9c4a7aeb71142399aaa1a8ea7c9bc03c28028c983c9479909d8810dfae6897e136766f3b24de25ce7a13627b2f37c08230947bc89ea8016adadc1069b2aa04a072721fbce01c471d3520e9e335176930ce4a9e573a97dc741e78325b1c8392812c78d36284c2d030ebb89245ede680e794bbddc7f7254c0d00f379956d9f8c90df6ec790da86af76f8a802d8e2371a5f5b2a308495c9df549e0c966bf74751fa647b268e4739d2e40710c82cd8868a06f37a2eb683362ea14dbdbc4d3d12020f4dc5e1d6829bb1ad6efecc444e5e0abcc54935f30253357cfbfdba20aa6802d473add296144537e83028a693cbb14b6125b68734ad019261356d8d83d977ec33de801614d8a22f5c4f8f0b2bc9bdc2b5324ff579d61437d4048bd9711d96b70a0eec2b731dac54d0fdaf83320ebc64bdae72b15691fca6309d8d67386a9df132f947f423486dbf2f9dcd074b0a70a0b9c765ef0dc60e0607c09e12fae48a91eae09acd1c2a15d2f89662946a4a859d22203346c3b8feffa01751d01dad6d57201fe094d8c4e5ddda1daf100f6564079df306230e4bee1766d03084b220c69073727b030c4a6e44f1813af289792d837820420ef4d6525b59444e5b5eeaab7722fd84036e3da513c463c272f8387535a0417f07c211a99d1e0db229608e85f8cf116f3228af89106deb4e6af28b95a8bde03c0c04557d2244c9a6d31cd7ed27a8202eac27b5676d8658bb48ca765bad75200ac95762f3f7fd795372740ab1f985ca205bcacebfdb83a9bbc32ecc3e3c0bcef1997b5c6bd4a045ec0441ee07b4c7d9ad45aedbd983229f487441a52a6452074382ef2721eec882a64cdd6929da3d0341506021e9a7b1a869898f96a5c7b9ec6d320ab0a3a66f80a74242d3e267d399906f6ba1ddcd79b47acdff546df087b49ba83381c64fb7b72d19c2ba6a04790f13c3032a930c4d86ba14bac98af65ebe10d23da426e2636ab4950f0c0cafb0f1f4a493b7a6824612d79449456b930cdeda4bfa9389b314b7dd57df97c406140f0810e249c12095c6108b0c98a8e553f942f4c8f28fdeaf7981ba623add8f0c3906ca533d2862295591d3aba261f41a234ee5305de309bb43140985dd796afb3a02e04bf314a165fb4698c1d2156dbece00135d1e043bd78064db6e97cf13afb9a188aec0945405c8ec7fcff33969d97d60e2f2b06e3ab88f2ccc4db9915e42d31e575b91577d3d578ed2169b2cde0d8df8bb277459bdac3c82daa7254dafd5a518e04fb70574a31f04da50ff379f15464ae70067480e6b071cb3389d45a0e9cfa9bef1a040f6ed85be7923325a23ccdffe208911319acceb99b4f8455a74d7f98b2cfd53761e78c6fe1ee095aa2ed0e338b75c92b6479a98e2f441b79c8bb2ec73b30fdf7164d0c4c8ecbd439f62f91b32165bd06027f0c64bc2acd2281b57cffd4e3f36378160ea6c0b3390be56af4e48fba1a59982a677b0f0bd571a84f19f26bd23d670a86c7db50d42fa1219ab7b42c4f2f49032af1825a62646cbe47f2d0128c3e72f712725eb5767033f8df3ecc5a5dd2be2d91dac9c0856bd1ae289082a88975a1ef49274d7f742a866067f4d9c76ba4e8854f791c902dcc794b2a82de8c389e74fdc676700b0a7e561597ec73f933dbb8ba5b9902346c858b3ff78c38bf9c2daea6aadb37b5e58620198a82c5198e6128e087893d29ce34c0d98270e2f5f4272b9e2433575284b9d0c1461442b95dda0fae59f1f0841f1c3fc7dc76052a359395f2ffb1466e248afa7243f4d95a634d62f281cfedd8aa6284819710dde3541efddaeadabda068c36c887d967a23af265189aeb147f7b183f406e47a4f2dcb24728e0947d0cf93529ea2663ccea2150ad89856049d595a507012628b48b240eb31426f8c0a3313fce2b1fdec122c91b52c5dfeba8df4e9145924bc7fab618e3058d0c2eaf7f47aab8b13505d8ed5be57b63d938a77d5cd5bb136241812ee86acef0ed4f3d298ad5f1345280a84145e18e23265dcb436e4777f81112204fed54d20f906ea50ff33902c18c7dd9a57ea93115a3f9da7fc917eac1446cc684ac293d90cc600665e837102a1a251fc956d49b30651fc5101c4e984de2b979257b4ce2159e04a4fa5841296212c41247530aa147ca3618c79e7f8e4f91f3e80c864675cc1caeda7700bc014b14f8702d68477389a99a4760d34be7aba08065949f8e68849160e9336011c26e10517f5b4f6e688fc27877714db0d2b49d13d67ffa01c2115a49283693d94469fa425bcbe7f56fda05ec44824f0468e983eedb0f61ff52d326c957b413de509b429a10f558be7d873484dfa03d9ec43da3d42c9510315523d057eeb4c057e7d5bede834620dcfa019f0575e44fd1a0d6b38082d1042c11ff4a4c4822ab718604ecfdd8c52c1937ab2d3c0aae66b054e44b95a8613dd8c725a817d1d2c2717ef14091083d3ffbb191875d290942afcbc2d3480de3533d237797cd1f75b701b0f2cca9f80d6236d888cf2e28eac2b1f429dbd54f0b0a2df50bf57eb27620018126f8bd4580f299d57e44b080775b4dca99722228d070db0056cddf0f70ab7157fb0ce4acfb7140884e24b1682b25230d403670a422b488cd978bd7df59bafc58f6f4eba87cb3d031ea2e5927b2ddbb215edb0820900cd6d21d88b0c74a0f86cdefc3ea911601c718edbe3b48d3cd521ebee2e68ceca79fe65d1cb190d8d56689eba06fbf4de6bdbbdb831a2d8359c7580efe7269a754d3f121f960a9a7231dfdc0b474a24bed56f2f0eaf32c97b4f103d2cce6b4f0a932a743d9dcbb52581f628aea23820347b83ca15e4f952ea77e84e032c2c0f0a70deb9ee1c587b4de34e41d437c8953c5e1604ad463118dbd2efac204ecf8e661344668f7753d1b24c57381a6b57bcdb53b429905cffe7b8d0ac3c692bf42f1aa3029a1de4b1668ae6b78e4bf92ec7fa40b0b667592ef2bbe44bf3ab48609274754562653c8abc16c4e86200448b7f72d56d098cea39f7ed9484ce9eaddf72ec3299c4d9808d1276fde0736564c3589d780607cb8cf119b96f6326d70287f30a46a4ca94ea86ea9e490c02f106142db5a0f2fa9d69323dd89a81a27fe76eeb94fa8cf1624ac51c05c9e305350593d509dc3adf70e3ee2f9ab8c0780af9084044b402a18b942a73f76048d466cdcdb0caf26badbc7b87cf8f11d5c065f17b893359cdb0cf94c0456858e5343beb608e0cda10e8ba457a9d6867f0a989ec54e8d80d6e0ab961d85bdff4333e6c0ddb2250099e073a50223a4cb78a9be174f17b8a67d60eab0d6a1c0ed0bfb03589bfc81ed5bc2b1ff085458187a2d4b2dcd753fbcc883a3339508a72d6f368be3ad946c5e1fdd25547bb26d73617761f55454c1242361c5168119bf7f5b6f44a72f5eeac798a7e1fe19802c75397879597e1ca564d8d62d5bc73fbc0ceef13f511d24f1702cb9705ab6d493ccf1d0f79fb584f76428a7ba80b6ecded9e19e0f12a7f3a28a8093fe6f4b5e2e7c7efc0c5b71ea4a276fe136a7d589f280787ccb6b40a685cb632de8530215759295c36f2cf9c882ac9584d68d5891525e7b08fd751e659f51f1785f2727cf5e1dde9d52b6285e5db4bfc308ec4efecdf4843fbe0c40113be473c6cb9ec3b539ae0216ffcc74ce5b57a8dcb95060547bc42e0394e199535e71e21ebf394605483f72ec2ec5188ca38fd9faa47686bd338dfc9870c8b6203a201d1258064523c5d627313b78dc94f6a1a488d49a9296d632e6e31e17712209fd67bc669515fca6ca43210203e921081af13a862d14812e98ed1e380c45fec0b16f3e4cc04bf3fe00cb28a6c65b446b45c6530c38057841e25211d53f57acb24d35c0765d1f34c62626cb89ec09d6b6cc27ce2c064173ce0d83b4535891fac2cb"})
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000000080)={0x40000, 0x0, [0xb, 0x2d, 0x7, 0x7, 0x1, 0x5, 0x4, 0x5ce]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

EMPT(full) 
[  109.231162][ T9308] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.231169][ T9308] Call Trace:
[  109.231173][ T9308]  <TASK>
[  109.231177][ T9308]  dump_stack_lvl+0x16c/0x1f0
[  109.231195][ T9308]  should_fail_ex+0x512/0x640
[  109.231226][ T9308]  _copy_to_user+0x32/0xd0
[  109.231242][ T9308]  simple_read_from_buffer+0xcb/0x170
[  109.231258][ T9308]  proc_fail_nth_read+0x197/0x270
[  109.231272][ T9308]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  109.231286][ T9308]  ? rw_verify_area+0xcf/0x680
[  109.231297][ T9308]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  109.231314][ T9308]  vfs_read+0x1e4/0xc60
[  109.231329][ T9308]  ? __pfx___mutex_lock+0x10/0x10
[  109.231343][ T9308]  ? __pfx_vfs_read+0x10/0x10
[  109.231359][ T9308]  ? __fget_files+0x20e/0x3c0
[  109.231377][ T9308]  ksys_read+0x12a/0x250
[  109.231390][ T9308]  ? __pfx_ksys_read+0x10/0x10
[  109.231403][ T9308]  ? fdget+0x187/0x210
[  109.231418][ T9308]  do_syscall_64+0xcd/0x4c0
[  109.231433][ T9308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.231444][ T9308] RIP: 0033:0x7fe4ed38d33c
[  109.231453][ T9308] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  109.231463][ T9308] RSP: 002b:00007fe4ee1b7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  109.231473][ T9308] RAX: ffffffffffffffda RBX: 00007fe4ed5b5fa0 RCX: 00007fe4ed38d33c
[  109.231479][ T9308] RDX: 000000000000000f RSI: 00007fe4ee1b70a0 RDI: 0000000000000004
[  109.231485][ T9308] RBP: 00007fe4ee1b7090 R08: 0000000000000000 R09: 0000000000000000
[  109.231491][ T9308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.231497][ T9308] R13: 0000000000000000 R14: 00007fe4ed5b5fa0 R15: 00007ffdbaf67c08
[  109.231510][ T9308]  </TASK>
[  109.265651][ T9312] __nla_validate_parse: 2 callbacks suppressed
[  109.265661][ T9312] netlink: 168 bytes leftover after parsing attributes in process `syz.2.1328'.
[  109.375057][ T9332] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1337'.
[  109.380044][ T9332] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1337'.
[  109.566286][ T9347] netlink: 'syz.3.1341': attribute type 21 has an invalid length.
[  109.569032][ T9347] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1341'.
[  109.820829][ T5299] Bluetooth: hci1: SCO packet for unknown connection handle 0
[  110.128288][ T9366] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1350'.
[  110.175704][ T9373] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1352'.
[  110.179772][ T9373] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1352'.
[  110.436071][ T9392] netlink: 'syz.1.1359': attribute type 1 has an invalid length.
[  110.471202][ T9392] 8021q: adding VLAN 0 to HW filter on device bond7
[  110.483069][ T9392] bond7: (slave erspan0): making interface the new active one
[  110.486342][ T9392] bond7: (slave erspan0): Enslaving as an active interface with an up link
[  110.602755][ T9398] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1361'.
[  110.606414][ T9398] netlink: 'syz.1.1361': attribute type 21 has an invalid length.
[  111.264339][ T9432] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.357379][ T9432] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  111.371622][ T9432] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  111.464565][ T9432] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  111.467393][ T9432] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  111.470180][ T9432] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  111.473084][ T9432] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  111.476029][ T9432] geneve2: left promiscuous mode
[  111.483528][ T9432] bridge2: left allmulticast mode
[  111.485743][   T40] kauditd_printk_skb: 48103 callbacks suppressed
[  111.485753][   T40] audit: type=1400 audit(1749119692.239:126949): avc:  denied  { search } for  pid=9443 comm="rm" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=0
[  111.494280][   T40] audit: type=1400 audit(1749119692.239:126950): avc:  denied  { search } for  pid=9438 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=0
[  111.500998][   T40] audit: type=1400 audit(1749119692.249:126951): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  111.507574][   T40] audit: type=1400 audit(1749119692.249:126952): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  111.514055][   T40] audit: type=1400 audit(1749119692.249:126953): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  111.520385][   T40] audit: type=1400 audit(1749119692.267:126954): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  111.526653][   T40] audit: type=1400 audit(1749119692.267:126955): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  111.533055][   T40] audit: type=1400 audit(1749119692.267:126956): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  111.539356][   T40] audit: type=1400 audit(1749119692.267:126957): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  111.545772][   T40] audit: type=1400 audit(1749119692.267:126958): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  111.812993][ T5299] Bluetooth: hci2: unexpected cc 0x0c1a length: 7 > 1
[  112.045580][ T9495] sysfs: cannot create duplicate filename '/devices/virtual/tty/gsmtty1'
[  112.050592][ T9495] CPU: 2 UID: 0 PID: 9495 Comm: syz.2.1385 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  112.050608][ T9495] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.050615][ T9495] Call Trace:
[  112.050618][ T9495]  <TASK>
[  112.050622][ T9495]  dump_stack_lvl+0x16c/0x1f0
[  112.050656][ T9495]  sysfs_warn_dup+0x7f/0xa0
[  112.050671][ T9495]  sysfs_create_dir_ns+0x24b/0x2b0
[  112.050685][ T9495]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  112.050699][ T9495]  ? find_held_lock+0x2b/0x80
[  112.050714][ T9495]  ? class_dir_child_ns_type+0xd/0x60
[  112.050725][ T9495]  kobject_add_internal+0x2c4/0x9b0
[  112.050742][ T9495]  kobject_add+0x16e/0x240
[  112.050757][ T9495]  ? __pfx_kobject_add+0x10/0x10
[  112.050771][ T9495]  ? get_device_parent+0x1c5/0x4e0
[  112.050787][ T9495]  ? kobject_put+0xab/0x5a0
[  112.050801][ T9495]  ? device_add+0xbff/0x1a70
[  112.050813][ T9495]  device_add+0x288/0x1a70
[  112.050823][ T9495]  ? lockdep_init_map_type+0x5c/0x280
[  112.050833][ T9495]  ? __pfx_device_add+0x10/0x10
[  112.050842][ T9495]  ? lockdep_init_map_type+0x5c/0x280
[  112.050851][ T9495]  ? __init_waitqueue_head+0xca/0x150
[  112.050866][ T9495]  tty_register_device_attr+0x38e/0x7c0
[  112.050883][ T9495]  ? __pfx_tty_register_device_attr+0x10/0x10
[  112.050900][ T9495]  ? tty_port_init+0x156/0x1c0
[  112.050917][ T9495]  gsm_activate_mux+0x157/0x2e0
[  112.050933][ T9495]  gsmld_ioctl+0x8cb/0x1550
[  112.050947][ T9495]  ? __pfx_gsmld_ioctl+0x10/0x10
[  112.050959][ T9495]  ? __ldsem_down_read_nested+0xf3/0x8d0
[  112.050972][ T9495]  ? __pfx___ldsem_down_read_nested+0x10/0x10
[  112.051003][ T9495]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  112.051020][ T9495]  ? __pfx_gsmld_ioctl+0x10/0x10
[  112.051030][ T9495]  tty_ioctl+0x6f9/0x1610
[  112.051045][ T9495]  ? __pfx_tty_ioctl+0x10/0x10
[  112.051060][ T9495]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  112.051080][ T9495]  ? hook_file_ioctl_common+0x145/0x410
[  112.051094][ T9495]  ? selinux_file_ioctl+0x180/0x270
[  112.051108][ T9495]  ? selinux_file_ioctl+0xb4/0x270
[  112.051122][ T9495]  ? __pfx_tty_ioctl+0x10/0x10
[  112.051137][ T9495]  __x64_sys_ioctl+0x18b/0x210
[  112.051151][ T9495]  do_syscall_64+0xcd/0x4c0
[  112.051165][ T9495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.051176][ T9495] RIP: 0033:0x7f6b8918e929
[  112.051185][ T9495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.051194][ T9495] RSP: 002b:00007f6b89f23038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  112.051205][ T9495] RAX: ffffffffffffffda RBX: 00007f6b893b6080 RCX: 00007f6b8918e929
[  112.051211][ T9495] RDX: 0000200000000040 RSI: 00000000404c4701 RDI: 0000000000000004
[  112.051217][ T9495] RBP: 00007f6b89210b39 R08: 0000000000000000 R09: 0000000000000000
[  112.051223][ T9495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  112.051229][ T9495] R13: 0000000000000000 R14: 00007f6b893b6080 R15: 00007ffebb288178
[  112.051242][ T9495]  </TASK>
[  112.058793][ T9495] kobject: kobject_add_internal failed for gsmtty1 with -EEXIST, don't try to register things with the same name in the same directory.
[  112.637311][ T9506] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1387'.
[  113.104597][ T9531] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1397'.
[  113.344480][ T9543] netlink: 'syz.1.1402': attribute type 1 has an invalid length.
[  113.355265][ T9543] 8021q: adding VLAN 0 to HW filter on device bond8
[  113.362697][ T9543] bond7: (slave erspan0): Releasing active interface
[  113.369856][ T9543] bond8: (slave erspan0): making interface the new active one
[  113.372632][ T9543] bond8: (slave erspan0): Enslaving as an active interface with an up link
[  113.732029][ T9568] netlink: 'syz.1.1411': attribute type 1 has an invalid length.
[  113.744290][ T9568] 8021q: adding VLAN 0 to HW filter on device bond9
[  113.753280][ T9568] bond8: (slave erspan0): Releasing active interface
[  113.772027][ T9568] bond9: (slave erspan0): making interface the new active one
[  113.774937][ T9568] bond9: (slave erspan0): Enslaving as an active interface with an up link
[  113.964590][ T9586] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9586 comm=syz.1.1418
[  114.052976][ T9593] netlink: 'syz.3.1422': attribute type 1 has an invalid length.
[  114.065701][ T9593] 8021q: adding VLAN 0 to HW filter on device bond11
[  114.072166][ T9593] bond11: (slave erspan0): making interface the new active one
[  114.075139][ T9593] bond11: (slave erspan0): Enslaving as an active interface with an up link
[  114.109815][ T9596] sit0: entered promiscuous mode
[  114.117872][ T9596] netlink: 'syz.3.1423': attribute type 1 has an invalid length.
[  114.242108][ T9605] netlink: 'syz.1.1426': attribute type 3 has an invalid length.
[  114.252951][ T9606] netlink: 'syz.1.1426': attribute type 3 has an invalid length.
[  115.196675][ T9639] batadv0: entered promiscuous mode
[  115.198351][ T9639] batadv0: entered allmulticast mode
[  115.200939][ T9639] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.528042][ T9644] __nla_validate_parse: 3 callbacks suppressed
[  115.528054][ T9644] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1438'.
[  115.908920][ T9671] i2c i2c-1: Invalid block write size 34
[  115.956512][ T9677] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1449'.
[  115.996791][ T9686] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2581 sclass=netlink_route_socket pid=9686 comm=syz.1.1452
[  116.005038][ T5299] Bluetooth: hci3: link tx timeout
[  116.005110][ T9683] trusted_key: encrypted_key: hex blob is missing
[  116.006896][ T5299] Bluetooth: hci3: killing stalled connection 10:aa:aa:aa:aa:aa
[  116.007909][ T5299] Bluetooth: hci3: link tx timeout
[  116.013959][ T5299] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  116.209898][ T9708] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1459'.
[  116.219361][ T9708] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1459'.
[  116.226998][ T9708] gretap0: entered promiscuous mode
[  116.238753][ T9708] gretap0: left promiscuous mode
[  116.240825][ T9717] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1462'.
[  116.352211][ T9733] [U] :]�ƑM�3
[  116.353552][ T9733] [U] �u��=�a���.�޼ ��@��
B���;����\ǹ���� p�q8w2=�7������^�F��:d
[  116.356831][ T9733] [U] }�m>	�Cr����e)N����Ƶ�ib�� �"V��DA�5�����M�|�Y�8Ҵ���?�w���]\?� ӠY����%��i1{�������Q��Ӄ
�+/_��&����/@s/C�v*8���4d�]���G���o���<m�t�
[  116.362009][ T9733] [U] Y:���Y%Y���j�7v�T��=��oL��%m����}WK
[  116.364071][ T9733] [U] �nЯA5���b���͖����J� Q���>y�V���	�+�3�˟���6��y�Y��%����c����hq_�А�X9n�G�tUP?DH?BH?3�|���eA��<�"�W#*�t��y����	%�88w��P��;�*!�
[  116.370192][ T9733] [U] ��y^�8d֖�"(���;��ن�2!�c�[™��ڙM�X$�ub
�"�a���1gy�mbt�9��Ȏ��2����_�y��Gl��i1,��)�I�&����,�KE
[  116.374263][ T9733] [U] ���.�ھU�|u���/�K��/���w��#$z#����)'u�˂V�d���%�#9��G�T��0\�I��e&��"2A�z�8T[o'օ˿��B�j������c���0�˅6O�4���Yr&y!z��S6�_zG���J��VcD�Њ�-��>�G%���v=�@�,�e�:�`�Qȧ��.Ơ*�4dX
[  116.381261][ T9733] [U] ��
[  116.382180][ T9733] [U] ��V4�Ol����w�<��aR�|J��نzM�I9�6�jBEE1{�ϾJ�ȝ�LA�$ё‡Wr���R]�㝸�F�-��S{�$[i�
[  116.385360][ T9733] [U] 9�0�g�j��h��m��@�
d���J�&"�,(��?0p�"����\c;��d!י�m�<��ZXhAx�聨��6��].�ޫ �����6�Y� �$8hl@YDj���4��Q�}���O�\(��&�P����Q
�9�6���^��0��NۿN��`��=j�p�[Ј��t�M;���#�7��`�3OH�r�t�<,���Ex(�~��1%�γ//":.�
[  116.394298][ T9733] [U] �*�ai�[%�ŬPOԍ�0�Z�ReH�\.?/��1&\����z���XM��n�p0�ّ&<�q��n@i��&�s}�.a-Hxf�̝W����m�H�ۍ�H�6��s �A-,��4d��y�%G#F����U)D(X[B��'V�@�-�#	�2�!S�E��3�M?"�BW4��~��M{wp��v��|�0��&�$�՗K�u=��I�G��R /9�����LcP��\�췞J�Z�5�A[���,;R��@��Z�6%�����:f��Q~��~Z��"1���dvRǬ��D�����&5������5[MGl�Ő!����	����Pq)��n
[  116.404140][ T9733] [U] �����y'XtM'NH/�
[  116.406774][ T9733] [U] �7��€JW���Q�װ,àa�c�jMT$=��i�/�!�~k�D��1�:�����k.��Dϰ�-Z
T�,��n&$*��[�Rۦg���oV�	-�@a�e�'��
#�K��
[  116.413126][ T9733] [U] ��"�Ն�AS-	���OW����i�3���
%�$�ھ�M:�7=�����
[  116.415522][ T9733] [U] i�6��j��ܚ$��r��m�~�
����o�V�b�D��
[  116.417255][ T9733] [U] ڈ���?��
[  116.418708][ T9733] [U] Y��O_��r~T
�<���0n~Zh�F���|�_���h���z�>{���J��cF�_�b�c�$+tsX�^=.A�q��eF���6��^�����	�
[  116.422720][ T9733] [U] ��!9XV�_h���k9�׸�憭u�Ѿ��=F$u��%	����#���5e��/��
[  116.426243][ T9733] [U] D�l�*:@Y���Z���A�]x2��Ͷ�S}/[��nذH��SO>�'-6' Q�ʄ3���f�F�݅<a���^1�8�GA|0���]�{f���An.�$�.����޶��E��C! ��.#\�N{��Q�(�n�/mA�������<
�Ӊ��cL�؏/
�L&�):/T�b�l
<&�7z�0O�_|1=E'���:��"��>�F�͒�䏱�w�FR$:hC	`�t��}~�f^v�_;��ĸ|o��
[  116.433766][ T9733] [U] ��i���:8'���g��F,�z³�[;����J���0˕2D��֕���Lb
[  116.437245][ T9733] [U] ��V(2Ϗ"Y"N\G<r�gq����uWU�e�����Z)�;U�w�ʆx��:�m%!E������!w��8+��wq�c��	^�t�5nw�EI%u)����G��,�:T%9���X�`��Re�
C�%0*g�W�G���)��>B��'�B��aM��򉰄#�v��A#ֵ<y�:Gf�ƽ2˴�3���5H޳^���ծ6�
o־��a�o����wRwwi* �.gxÖ�������lyڰ$�(vc_(���a�lk/�oԅ��6�G|^
���aZ#1�ߞ�G$�x���
[  116.446151][ T9733] [U] �G�F���=9e�ᆛ`�V��B2~��,;���{3l|i�F�����$�'�Np�Y�B�t|ן�j�y�)dj;��i��
[  116.450736][ T9733] [U] E��En�望Ӥ���P�7���l�����H�r&J<��wh�]$���[���uޅv���B�i;�Z��:���p�˱��)-
[  116.455056][ T9733] [U] ����%�@l�zG����cOVL4Á��Rp0El���G�#�M2	jZk(Mڃ
XU�<�3�����HJ%�"��;r�S;�eN��t�%I�"&�Pz���Y;��;������K�V\�����Y��_��:�x��x�;;B��Eh2�S�IQ�b����I�c��"E��E^!�iB�bq)�Bqa'���JJ_�խdǣ�#��E�!l��2ִzzN/���ƞ\v8ڱx鵿r�b����戛�޷�O𣱈�ÄHD*}��%�����ī�v�ԍ�C��XY,[�[��v)G\��S�\Ge��18y9��_G�������/ȡ�jۆp.�8���=_�9	�Q�4@B@��_�/��G{jF��#�O������X�M]Bnj
��~������ؙM�F̐��67��6�2;}��\x�,��j����ik����texn�a;N JE��]ׯ�ʼ�ڇ��{��Lﾕ�	��	������TI�C�i�+J�pƕ�����"�6l\
[  116.470606][ T9733] [U] #RP>�T7�}���M$�h��$V%�x'63kN�r���:���A���nx�tx�km�\�z�39�
[  116.473148][ T9733] [U] |�o�D3�\@K������̩�%���v�Q��Nz豌��=�y�Ƙ,Þ�ԭ�f�\�z�T��W}�oߴHn��K/c����R�*�b<*��Q(8�-�&��g�����b�{��?i�O��,�ۉ񆶮�d
[  116.477912][ T9733] [U] ��i\Aִ�I���b9�	�7���g4
[  116.480805][ T9732] [U] `��s��׵Pt� %E�
aC�B~t��}2&
[  116.626187][ T9753] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1476'.
[  116.629276][ T9753] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1476'.
[  116.632033][ T9753] netlink: 'syz.3.1476': attribute type 13 has an invalid length.
[  116.657166][ T9757] xt_CT: You must specify a L4 protocol and not use inversions on it
[  116.690411][ T9759] libceph: resolve '
[  116.690411][ T9759] -&���f�Y�ǝ�a���2i�
[  116.690411][ T9759] .���?��&�*��&' (ret=-3): failed
[  116.695294][ T9759] netlink: 'syz.3.1478': attribute type 58 has an invalid length.
[  116.697837][ T9759] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1478'.
[  116.753200][ T9766] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1481'.
[  116.755974][ T9766] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1481'.
[  116.837438][   T40] kauditd_printk_skb: 45817 callbacks suppressed
[  116.837450][   T40] audit: type=1400 audit(1749119697.244:169620): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  116.844744][ T5650] audit: audit_backlog=65 > audit_backlog_limit=64
[  116.846284][   T40] audit: type=1400 audit(1749119697.253:169621): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  116.848300][ T5650] audit: audit_lost=2983 audit_rate_limit=0 audit_backlog_limit=64
[  116.848311][ T5650] audit: backlog limit exceeded
[  116.848524][ T5650] audit: audit_backlog=65 > audit_backlog_limit=64
[  116.855211][   T40] audit: type=1400 audit(1749119697.253:169622): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  116.857532][ T5650] audit: audit_lost=2984 audit_rate_limit=0 audit_backlog_limit=64
[  116.871827][ T5939] audit: audit_backlog=65 > audit_backlog_limit=64
[  116.872025][   T40] audit: type=1400 audit(1749119697.253:169623): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  118.238108][ T5299] Bluetooth: hci3: command 0x0406 tx timeout
[  120.461928][ T5946] Bluetooth: hci3: command 0x0406 tx timeout
[  122.193396][   T40] kauditd_printk_skb: 44018 callbacks suppressed
[  122.193408][   T40] audit: type=1400 audit(1749119702.248:212658): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  122.199164][ T5650] audit: audit_backlog=65 > audit_backlog_limit=64
[  122.201504][   T40] audit: type=1400 audit(1749119702.258:212659): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  122.203569][ T5650] audit: audit_lost=3313 audit_rate_limit=0 audit_backlog_limit=64
[  122.210758][   T40] audit: type=1400 audit(1749119702.258:212660): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  122.212468][ T5650] audit: backlog limit exceeded
[  122.218924][   T40] audit: type=1400 audit(1749119702.258:212661): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  122.220760][ T5650] audit: audit_backlog=65 > audit_backlog_limit=64
[  122.226775][   T40] audit: type=1400 audit(1749119702.258:212662): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  122.226798][   T40] audit: type=1400 audit(1749119702.258:212663): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  127.550004][   T40] kauditd_printk_skb: 52335 callbacks suppressed
[  127.550020][   T40] audit: type=1400 audit(1749119707.262:263131): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  127.556534][ T5650] audit: audit_backlog=65 > audit_backlog_limit=64
[  127.561386][ T9835] audit: audit_backlog=65 > audit_backlog_limit=64
[  127.563370][ T5650] audit: audit_lost=3937 audit_rate_limit=0 audit_backlog_limit=64
[  127.565478][ T9835] audit: audit_lost=3938 audit_rate_limit=0 audit_backlog_limit=64
[  127.565489][ T9835] audit: backlog limit exceeded
[  127.567355][ T5931] audit: audit_backlog=65 > audit_backlog_limit=64
[  127.567366][ T5931] audit: audit_lost=3939 audit_rate_limit=0 audit_backlog_limit=64
[  127.567373][ T5931] audit: backlog limit exceeded
[  127.575494][ T5938] audit: audit_backlog=65 > audit_backlog_limit=64
[  127.806830][ T9858] __nla_validate_parse: 1 callbacks suppressed
[  127.806842][ T9858] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1502'.
[  127.812122][ T9858] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1502'.
[  128.486883][ T9867] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9867 comm=syz.3.1505
[  128.523034][ T9870] netlink: 'syz.3.1506': attribute type 21 has an invalid length.
[  128.525673][ T9870] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1506'.
[  128.669736][ T9883] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1511'.
[  128.969541][ T9929] bond11: (slave erspan0): Releasing active interface
[  129.233900][ T9946] netlink: 'syz.2.1532': attribute type 4 has an invalid length.
[  129.436602][ T9960] IPv6: NLM_F_CREATE should be specified when creating new route
[  129.471251][ T9966] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1539'.
[  129.924633][T10016] dummy0: entered promiscuous mode
[  130.063256][T10036] geneve1: entered allmulticast mode
[  130.110843][T10040] netlink: 'syz.3.1568': attribute type 1 has an invalid length.
[  130.113168][T10040] netlink: 'syz.3.1568': attribute type 2 has an invalid length.
[  130.173562][T10053] netlink: 'syz.2.1573': attribute type 21 has an invalid length.
[  130.176303][T10053] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1573'.
[  130.179154][T10053] netlink: 'syz.2.1573': attribute type 4 has an invalid length.
[  130.182819][T10053] netlink: 'syz.2.1573': attribute type 5 has an invalid length.
[  130.184528][T10042] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10042 comm=syz.1.1569
[  130.185283][T10053] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1573'.
[  130.260405][T10061] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1576'.
[  130.325840][T10066] netlink: 'syz.2.1578': attribute type 4 has an invalid length.
[  130.326028][T10067] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1578'.
[  130.328187][T10066] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1578'.
[  130.462723][T10086] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=20 sclass=netlink_audit_socket pid=10086 comm=syz.2.1585
[  130.718002][T10118] netlink: 'syz.2.1598': attribute type 1 has an invalid length.
[  130.731559][T10118] 8021q: adding VLAN 0 to HW filter on device bond9
[  130.738139][T10118] bond9: (slave erspan0): making interface the new active one
[  130.741035][T10118] bond9: (slave erspan0): Enslaving as an active interface with an up link
[  130.898728][T10143] netlink: 'syz.0.1607': attribute type 1 has an invalid length.
[  130.919042][T10143] 8021q: adding VLAN 0 to HW filter on device bond9
[  130.956803][T10153] IPv6: sit1: Disabled Multicast RS
[  130.959083][T10153] sit1: entered allmulticast mode
[  131.119869][ T5946] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  131.218444][T10151] xt_CONNSECMARK: invalid mode: 0
[  131.304365][ T5946] Bluetooth: hci3: unexpected event 0x09 length: 13 > 3
[  131.736140][T10200] bond9: (slave erspan0): Releasing active interface
[  131.967372][T10219] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=10 sclass=netlink_route_socket pid=10219 comm=syz.2.1639
[  132.303680][T10223] xt_CONNSECMARK: invalid mode: 0
[  132.635201][T10231] xt_HMARK: spi-set and port-set can't be combined
[  132.907820][   T40] kauditd_printk_skb: 49530 callbacks suppressed
[  132.907831][   T40] audit: type=1400 audit(1749119712.266:310035): avc:  denied  { read } for  pid=10256 comm="syz.2.1653" name="rtc0" dev="devtmpfs" ino=945 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=0
[  132.909560][T10257] audit: audit_backlog=65 > audit_backlog_limit=64
[  132.909568][ T5650] audit: audit_backlog=65 > audit_backlog_limit=64
[  132.909578][ T5650] audit: audit_lost=4816 audit_rate_limit=0 audit_backlog_limit=64
[  132.909586][ T5650] audit: backlog limit exceeded
[  132.909641][ T5650] audit: audit_backlog=65 > audit_backlog_limit=64
[  132.909648][ T5650] audit: audit_lost=4817 audit_rate_limit=0 audit_backlog_limit=64
[  132.909655][ T5650] audit: backlog limit exceeded
[  132.909711][ T5650] audit: audit_backlog=65 > audit_backlog_limit=64
[  132.909718][ T5650] audit: audit_lost=4818 audit_rate_limit=0 audit_backlog_limit=64
[  133.713003][T10282] 8021q: adding VLAN 0 to HW filter on device bond10
[  133.722258][T10282] bond9: (slave erspan0): Releasing active interface
[  133.731937][T10282] bond10: (slave erspan0): making interface the new active one
[  133.734954][T10282] bond10: (slave erspan0): Enslaving as an active interface with an up link
[  133.999398][T10326] __nla_validate_parse: 2 callbacks suppressed
[  133.999409][T10326] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1681'.
[  134.004056][T10326] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1681'.
[  134.315098][T10356] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1694'.
[  134.427625][T10349] xt_CONNSECMARK: invalid mode: 0
[  134.943253][T10381] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1705'.
[  134.959801][T10381] bridge0: entered promiscuous mode
[  134.961501][T10381] bridge0: entered allmulticast mode
[  135.340520][T10435] IPv6: sit2: Disabled Multicast RS
[  135.342633][T10435] sit2: entered allmulticast mode
[  135.400964][T10413] xt_CONNSECMARK: invalid mode: 0
[  135.405577][T10444] validate_nla: 2 callbacks suppressed
[  135.405585][T10444] netlink: 'syz.0.1722': attribute type 1 has an invalid length.
[  135.419242][T10444] 8021q: adding VLAN 0 to HW filter on device bond10
[  135.655107][T10471] netlink: 'syz.2.1738': attribute type 28 has an invalid length.
[  135.657617][T10471] netlink: 'syz.2.1738': attribute type 3 has an invalid length.
[  135.660027][T10471] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1738'.
[  135.967839][T10492] netlink: 'syz.2.1747': attribute type 4 has an invalid length.
[  136.153416][T10520] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1758'.
[  136.558832][T10559] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1773'.
[  136.697490][T10575] IPVS: set_ctl: invalid protocol: 50 224.0.0.1:20003
[  136.855322][T10591] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1783'.
[  136.866398][T10591] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1783'.
[  137.157985][T10618] netlink: 64138 bytes leftover after parsing attributes in process `syz.2.1796'.
[  137.197621][T10622] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  137.201366][T10622] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  137.314814][T10632] xt_TCPMSS: Only works on TCP SYN packets
[  137.442416][T10651] geneve3: entered promiscuous mode
[  137.444109][T10651] geneve3: entered allmulticast mode
[  137.480434][T10655] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  137.482420][T10655] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  137.485610][T10655] vhci_hcd vhci_hcd.0: Device attached
[  137.488916][T10655] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(9)
[  137.490850][T10655] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  137.491736][ T5946] Bluetooth: hci3: command 0x0406 tx timeout
[  137.493552][T10655] vhci_hcd vhci_hcd.0: Device attached
[  137.498111][T10655] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(12)
[  137.500098][T10655] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  137.502651][T10655] vhci_hcd vhci_hcd.0: Device attached
[  137.505591][T10655] vhci_hcd vhci_hcd.0: pdev(1) rhport(3) sockfd(14)
[  137.507954][T10655] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  137.510807][T10655] vhci_hcd vhci_hcd.0: Device attached
[  137.514378][T10655] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2064 sclass=netlink_route_socket pid=10655 comm=syz.1.1812
[  137.523200][T10655] vhci_hcd vhci_hcd.0: pdev(1) rhport(4) sockfd(17)
[  137.525503][T10655] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  137.528046][T10655] vhci_hcd vhci_hcd.0: Device attached
[  137.542427][T10655] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(19)
[  137.544572][T10655] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  137.552387][T10655] vhci_hcd vhci_hcd.0: Device attached
[  137.556126][T10655] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  137.561378][T10655] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  137.564960][T10655] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  137.569224][T10655] vhci_hcd vhci_hcd.0: port 0 already used
[  137.573038][T10668] vhci_hcd: connection closed
[  137.573179][T10661] vhci_hcd: connection closed
[  137.573615][ T1183] vhci_hcd: stop threads
[  137.573852][T10665] vhci_hcd: connection closed
[  137.574801][T10658] vhci_hcd: connection closed
[  137.576142][ T1183] vhci_hcd: release socket
[  137.576152][ T1183] vhci_hcd: disconnect device
[  137.577009][T10663] vhci_hcd: connection closed
[  137.578389][T10656] vhci_hcd: connection closed
[  137.584821][ T1183] vhci_hcd: stop threads
[  137.587630][ T1183] vhci_hcd: release socket
[  137.589113][ T1183] vhci_hcd: disconnect device
[  137.590858][ T1183] vhci_hcd: stop threads
[  137.595605][ T1183] vhci_hcd: release socket
[  137.596975][ T1183] vhci_hcd: disconnect device
[  137.601892][ T1183] vhci_hcd: stop threads
[  137.603224][ T1183] vhci_hcd: release socket
[  137.605568][ T1183] vhci_hcd: disconnect device
[  137.607208][ T1183] vhci_hcd: stop threads
[  137.609728][ T1183] vhci_hcd: release socket
[  137.611787][ T1183] vhci_hcd: disconnect device
[  137.613542][ T1183] vhci_hcd: stop threads
[  137.614875][ T1183] vhci_hcd: release socket
[  137.616533][ T1183] vhci_hcd: disconnect device
[  137.674236][ T1333] vhci_hcd: vhci_device speed not set
[  137.730149][T10690] netlink: 'syz.2.1820': attribute type 1 has an invalid length.
[  137.743420][T10690] 8021q: adding VLAN 0 to HW filter on device bond11
[  137.753341][T10690] bond11: (slave erspan0): making interface the new active one
[  137.756123][T10690] bond11: (slave erspan0): Enslaving as an active interface with an up link
[  137.835575][T10703] netlink: 'syz.0.1826': attribute type 29 has an invalid length.
[  138.240430][T10760] FAULT_INJECTION: forcing a failure.
[  138.240430][T10760] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  138.244654][T10760] CPU: 2 UID: 0 PID: 10760 Comm: syz.1.1850 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  138.244669][T10760] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.244676][T10760] Call Trace:
[  138.244680][T10760]  <TASK>
[  138.244684][T10760]  dump_stack_lvl+0x16c/0x1f0
[  138.244702][T10760]  should_fail_ex+0x512/0x640
[  138.244719][T10760]  _copy_from_user+0x2e/0xd0
[  138.244734][T10760]  copy_from_sockptr_offset.constprop.0+0x153/0x1a0
[  138.244748][T10760]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  138.244762][T10760]  ? __local_bh_enable_ip+0xa4/0x120
[  138.244774][T10760]  ? lockdep_hardirqs_on+0x7c/0x110
[  138.244789][T10760]  do_ip_setsockopt+0x197a/0x3240
[  138.244803][T10760]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  138.244816][T10760]  ? selinux_netlbl_socket_setsockopt+0x183/0x470
[  138.244832][T10760]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[  138.244846][T10760]  ? proc_fail_nth_write+0x9f/0x250
[  138.244863][T10760]  ip_setsockopt+0x59/0xf0
[  138.244875][T10760]  udp_setsockopt+0x7d/0xd0
[  138.244887][T10760]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  138.244904][T10760]  do_sock_setsockopt+0x224/0x470
[  138.244919][T10760]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  138.244941][T10760]  __sys_setsockopt+0x1a0/0x230
[  138.244962][T10760]  __x64_sys_setsockopt+0xbd/0x160
[  138.244974][T10760]  ? do_syscall_64+0x91/0x4c0
[  138.244987][T10760]  ? lockdep_hardirqs_on+0x7c/0x110
[  138.245000][T10760]  do_syscall_64+0xcd/0x4c0
[  138.245014][T10760]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.245024][T10760] RIP: 0033:0x7fc56d38e929
[  138.245033][T10760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.245044][T10760] RSP: 002b:00007fc56e231038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  138.245054][T10760] RAX: ffffffffffffffda RBX: 00007fc56d5b5fa0 RCX: 00007fc56d38e929
[  138.245060][T10760] RDX: 0000000000000023 RSI: 0000000000000000 RDI: 0000000000000003
[  138.245066][T10760] RBP: 00007fc56e231090 R08: 000000000000000c R09: 0000000000000000
[  138.245071][T10760] R10: 00002000000007c0 R11: 0000000000000246 R12: 0000000000000001
[  138.245077][T10760] R13: 0000000000000000 R14: 00007fc56d5b5fa0 R15: 00007ffe97098528
[  138.245090][T10760]  </TASK>
[  138.266844][   T40] kauditd_printk_skb: 47696 callbacks suppressed
[  138.266855][   T40] audit: type=1400 audit(1749119717.289:355678): avc:  denied  { read write } for  pid=5939 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[  138.289606][T10766] audit: audit_backlog=65 > audit_backlog_limit=64
[  138.291345][   T40] audit: type=1400 audit(1749119717.289:355679): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  138.293155][T10766] audit: audit_lost=5504 audit_rate_limit=0 audit_backlog_limit=64
[  138.295250][   T40] audit: type=1400 audit(1749119717.289:355680): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  138.297162][ T5650] audit: audit_backlog=65 > audit_backlog_limit=64
[  138.298197][   T40] audit: type=1400 audit(1749119717.289:355681): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  138.300322][ T5650] audit: audit_lost=5505 audit_rate_limit=0 audit_backlog_limit=64
[  138.303949][   T40] audit: type=1400 audit(1749119717.289:355682): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  138.304269][ T5650] audit: backlog limit exceeded
[  138.408916][T10776] netlink: 'syz.1.1856': attribute type 1 has an invalid length.
[  138.421066][T10776] 8021q: adding VLAN 0 to HW filter on device bond12
[  138.430962][T10776] bond10: (slave erspan0): Releasing active interface
[  138.440969][T10776] bond12: (slave erspan0): making interface the new active one
[  138.444191][T10776] bond12: (slave erspan0): Enslaving as an active interface with an up link
[  138.539579][T10787] FAULT_INJECTION: forcing a failure.
[  138.539579][T10787] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  138.543476][T10787] CPU: 2 UID: 0 PID: 10787 Comm: syz.0.1861 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  138.543490][T10787] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.543498][T10787] Call Trace:
[  138.543503][T10787]  <TASK>
[  138.543509][T10787]  dump_stack_lvl+0x16c/0x1f0
[  138.543534][T10787]  should_fail_ex+0x512/0x640
[  138.543552][T10787]  _copy_to_user+0x32/0xd0
[  138.543568][T10787]  simple_read_from_buffer+0xcb/0x170
[  138.543583][T10787]  proc_fail_nth_read+0x197/0x270
[  138.543597][T10787]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  138.543611][T10787]  ? rw_verify_area+0xcf/0x680
[  138.543623][T10787]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  138.543635][T10787]  vfs_read+0x1e4/0xc60
[  138.543650][T10787]  ? __pfx___mutex_lock+0x10/0x10
[  138.543664][T10787]  ? __pfx_vfs_read+0x10/0x10
[  138.543680][T10787]  ? __fget_files+0x20e/0x3c0
[  138.543698][T10787]  ksys_read+0x12a/0x250
[  138.543711][T10787]  ? __pfx_ksys_read+0x10/0x10
[  138.543727][T10787]  do_syscall_64+0xcd/0x4c0
[  138.543742][T10787]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.543753][T10787] RIP: 0033:0x7fe4ed38d33c
[  138.543761][T10787] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  138.543771][T10787] RSP: 002b:00007fe4ee1b7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  138.543781][T10787] RAX: ffffffffffffffda RBX: 00007fe4ed5b5fa0 RCX: 00007fe4ed38d33c
[  138.543787][T10787] RDX: 000000000000000f RSI: 00007fe4ee1b70a0 RDI: 0000000000000004
[  138.543793][T10787] RBP: 00007fe4ee1b7090 R08: 0000000000000000 R09: 0000000000000000
[  138.543799][T10787] R10: 00002000000007c0 R11: 0000000000000246 R12: 0000000000000001
[  138.543817][T10787] R13: 0000000000000000 R14: 00007fe4ed5b5fa0 R15: 00007ffdbaf67c08
[  138.543830][T10787]  </TASK>
[  138.877189][T10798] xt_CONNSECMARK: invalid mode: 0
[  138.905848][T10824] bond12: (slave erspan0): Releasing active interface
[  138.974272][T10831] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=10831 comm=syz.2.1879
[  139.276546][T10880] netlink: 'syz.3.1902': attribute type 1 has an invalid length.
[  139.307823][T10880] bond12: entered promiscuous mode
[  139.311253][T10880] bond12: entered allmulticast mode
[  139.318356][T10880] bond12: (slave ip6gretap1): making interface the new active one
[  139.321004][T10880] ip6gretap1: entered promiscuous mode
[  139.322672][T10880] ip6gretap1: entered allmulticast mode
[  139.324807][T10880] bond12: (slave ip6gretap1): Enslaving as an active interface with an up link
[  139.386192][T10898] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  139.388939][T10898] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  139.391701][T10898] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  139.394422][T10898] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.460532][T10909] batman_adv: batadv0: Removing interface: batadv_slave_0
[  139.466798][T10909] batman_adv: batadv0: Removing interface: batadv_slave_1
[  139.963594][ T1426] ieee802154 phy0 wpan0: encryption failed: -22
[  139.965643][ T1426] ieee802154 phy1 wpan1: encryption failed: -22
[  140.181753][ T5946] Bluetooth: hci0: Invalid connection link type handle 0x00c9
[  140.327911][T10971] netlink: 'syz.2.1935': attribute type 10 has an invalid length.
[  140.333841][T10971] 8021q: adding VLAN 0 to HW filter on device bond0
[  140.337450][T10971] team0: Port device bond0 added
[  140.388490][T10973] __nla_validate_parse: 5 callbacks suppressed
[  140.388508][T10973] netlink: 136 bytes leftover after parsing attributes in process `syz.2.1937'.
[  140.496189][T10987] netlink: 'syz.3.1942': attribute type 1 has an invalid length.
[  140.508363][T10987] 8021q: adding VLAN 0 to HW filter on device bond13
[  140.540605][T10987] bond13: (slave veth5): Enslaving as an active interface with a down link
[  140.553650][T10987] vlan2: entered allmulticast mode
[  140.557496][T10987] veth1: entered allmulticast mode
[  140.559499][T10987] veth1: entered promiscuous mode
[  140.563081][T10987] veth1: left promiscuous mode
[  140.565682][T10987] bond13: (slave vlan2): making interface the new active one
[  140.568482][T10987] veth1: entered promiscuous mode
[  140.570676][T10987] vlan2: entered promiscuous mode
[  140.572589][T10987] bond13: (slave vlan2): Enslaving as an active interface with an up link
[  140.687482][ T5946] Bluetooth: hci1: unexpected cc 0x2007 length: 100 > 2
[  140.691313][ T5946] Bluetooth: hci1: unexpected event for opcode 0x2007
[  141.357739][T11025] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11025 comm=syz.1.1955
[  141.529576][T11031] mkiss: ax0: crc mode is auto.
[  141.687391][T11029] xt_CONNSECMARK: invalid mode: 0
[  142.269283][T11079] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1975'.
[  142.272270][T11079] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1975'.
[  142.388667][T11090] netlink: 'syz.2.1978': attribute type 1 has an invalid length.
[  142.405425][T11090] 8021q: adding VLAN 0 to HW filter on device bond12
[  142.415768][T11093] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1980'.
[  142.420970][T11090] bond11: (slave erspan0): Releasing active interface
[  142.427072][T11090] bond12: (slave erspan0): making interface the new active one
[  142.429900][T11090] bond12: (slave erspan0): Enslaving as an active interface with an up link
[  142.531749][T11101] netlink: 'syz.3.1984': attribute type 1 has an invalid length.
[  142.543875][T11101] 8021q: adding VLAN 0 to HW filter on device bond14
[  142.556037][T11101] bond14: (slave erspan0): making interface the new active one
[  142.559735][T11101] bond14: (slave erspan0): Enslaving as an active interface with an up link
[  142.758594][T11120] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1992'.
[  142.792379][T11099] xt_CONNSECMARK: invalid mode: 0
[  142.849787][T11126] netlink: 'syz.3.1995': attribute type 28 has an invalid length.
[  142.852223][T11126] netlink: 'syz.3.1995': attribute type 3 has an invalid length.
[  142.854553][T11126] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1995'.
[  142.861327][T11126] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2154 sclass=netlink_route_socket pid=11126 comm=syz.3.1995
[  143.031308][T11147] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2005'.
[  143.474893][T11164] netlink: 'syz.2.2011': attribute type 1 has an invalid length.
[  143.492634][T11164] 8021q: adding VLAN 0 to HW filter on device bond13
[  143.497929][T11164] bond12: (slave erspan0): Releasing active interface
[  143.502327][T11164] bond13: (slave erspan0): making interface the new active one
[  143.502831][T11164] bond13: (slave erspan0): Enslaving as an active interface with an up link
[  143.617422][   T40] kauditd_printk_skb: 53202 callbacks suppressed
[  143.617434][   T40] audit: type=1400 audit(1749119722.294:401357): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  143.619958][ T5650] audit: audit_backlog=65 > audit_backlog_limit=64
[  143.623960][ T5931] audit: audit_backlog=65 > audit_backlog_limit=64
[  143.623976][ T5931] audit: audit_lost=8015 audit_rate_limit=0 audit_backlog_limit=64
[  143.623983][ T5931] audit: backlog limit exceeded
[  143.626192][   T40] audit: type=1400 audit(1749119722.294:401358): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  143.628213][ T5650] audit: audit_lost=8016 audit_rate_limit=0 audit_backlog_limit=64
[  143.635978][   T40] audit: type=1400 audit(1749119722.294:401359): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  143.636863][T11173] audit: audit_backlog=65 > audit_backlog_limit=64
[  143.636873][T11173] audit: audit_lost=8017 audit_rate_limit=0 audit_backlog_limit=64
[  143.649706][T11175] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2015'.
[  143.701291][T11179] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  143.703679][T11179] IPv6: NLM_F_CREATE should be set when creating new route
[  143.705979][T11179] IPv6: NLM_F_CREATE should be set when creating new route
[  143.767879][T11185] netlink: 'syz.0.2021': attribute type 1 has an invalid length.
[  143.780274][T11185] 8021q: adding VLAN 0 to HW filter on device bond11
[  143.923584][T11206] bond14: (slave erspan0): Releasing active interface
[  144.082070][T11230] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=11230 comm=syz.2.2038
[  144.291651][T11253] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=82 sclass=netlink_tcpdiag_socket pid=11253 comm=syz.0.2047
[  144.309607][T11255] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8038 sclass=netlink_route_socket pid=11255 comm=syz.3.2048
[  144.367243][T11261] x_tables: duplicate underflow at hook 1
[  144.792037][T11298] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=40550 sclass=netlink_route_socket pid=11298 comm=syz.1.2066
[  144.869749][T11306] (unnamed net_device) (uninitialized): down delay (4) is not a multiple of miimon (8), value rounded to 0 ms
[  144.938609][T11291] xt_CONNSECMARK: invalid mode: 0
[  145.008217][ T5946] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  145.008259][ T5946] Bluetooth: hci1: Injecting HCI hardware error event
[  145.009214][ T5299] Bluetooth: hci1: hardware error 0x00
[  145.537080][T11337] netlink: 'syz.2.2080': attribute type 10 has an invalid length.
[  145.541333][T11337] 8021q: adding VLAN 0 to HW filter on device team0
[  145.617994][T11348] netlink: 'syz.1.2084': attribute type 11 has an invalid length.
[  146.178836][T11365] xt_CONNSECMARK: invalid mode: 0
[  146.375541][T11370] netlink: 'syz.2.2093': attribute type 1 has an invalid length.
[  146.398792][T11370] 8021q: adding VLAN 0 to HW filter on device bond14
[  146.405595][T11370] bond13: (slave erspan0): Releasing active interface
[  146.411248][T11370] bond14: (slave erspan0): making interface the new active one
[  146.414111][T11370] bond14: (slave erspan0): Enslaving as an active interface with an up link
[  146.753784][T11378] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  146.755997][T11378] IPv6: NLM_F_CREATE should be set when creating new route
[  146.896441][T11394] vlan3: entered promiscuous mode
[  146.898101][T11394] bond0: entered promiscuous mode
[  147.004534][T11399] netlink: 'syz.3.2106': attribute type 1 has an invalid length.
[  147.024021][T11399] 8021q: adding VLAN 0 to HW filter on device bond15
[  147.030462][T11399] bond15: (slave erspan0): making interface the new active one
[  147.033278][T11399] bond15: (slave erspan0): Enslaving as an active interface with an up link
[  147.037347][T11402] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2107'.
[  147.116009][T11408] netlink: 348 bytes leftover after parsing attributes in process `syz.2.2111'.
[  147.120091][T11408] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2111'.
[  147.157792][T11417] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[  147.164118][T11418] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[  147.217940][T11396] xt_CONNSECMARK: invalid mode: 0
[  147.241730][ T5299] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  147.251634][T11426] 8021q: adding VLAN 0 to HW filter on device bond16
[  147.258745][T11426] bond15: (slave erspan0): Releasing active interface
[  147.266781][T11426] bond16: (slave erspan0): making interface the new active one
[  147.270400][T11426] bond16: (slave erspan0): Enslaving as an active interface with an up link
[  147.328394][T11433] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2119'.
[  147.529286][T11452] 8021q: adding VLAN 0 to HW filter on device bond17
[  147.553900][T11452] bond16: (slave erspan0): Releasing active interface
[  147.558654][T11452] bond17: (slave erspan0): making interface the new active one
[  147.561442][T11452] bond17: (slave erspan0): Enslaving as an active interface with an up link
[  147.819181][T11461] can0: slcan on ptm0.
[  147.968719][T11460] can0 (unregistered): slcan off ptm0.
[  148.213186][T11479] 8021q: adding VLAN 0 to HW filter on device bond15
[  148.461097][T11477] xt_CONNSECMARK: invalid mode: 0
[  148.974821][   T40] kauditd_printk_skb: 48293 callbacks suppressed
[  148.974833][   T40] audit: type=1400 audit(1749119727.298:445163): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  148.979271][ T5650] audit: audit_backlog=65 > audit_backlog_limit=64
[  148.983054][   T40] audit: type=1400 audit(1749119727.308:445164): avc:  denied  { read } for  pid=5650 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  148.985246][ T5650] audit: audit_lost=9514 audit_rate_limit=0 audit_backlog_limit=64
[  148.989491][T11493] audit: audit_backlog=65 > audit_backlog_limit=64
[  148.989501][T11493] audit: audit_lost=9515 audit_rate_limit=0 audit_backlog_limit=64
[  148.989509][T11493] audit: backlog limit exceeded
[  148.989761][T11493] audit: audit_backlog=65 > audit_backlog_limit=64
[  148.989769][T11493] audit: audit_lost=9516 audit_rate_limit=0 audit_backlog_limit=64
[  148.989775][T11493] audit: backlog limit exceeded
[  149.208755][T11503] validate_nla: 2 callbacks suppressed
[  149.208766][T11503] netlink: 'syz.0.2145': attribute type 4 has an invalid length.
[  149.216793][T11505] netlink: 'syz.1.2147': attribute type 1 has an invalid length.
[  149.249219][T11505] 8021q: adding VLAN 0 to HW filter on device bond13
[  149.281777][T11505] bond13: (slave veth3): Enslaving as an active interface with a down link
[  149.286960][ T1333] IPVS: starting estimator thread 0...
[  149.291327][T11505] vlan2: entered allmulticast mode
[  149.293009][T11505] veth1: entered allmulticast mode
[  149.382119][T11512] IPVS: using max 50 ests per chain, 120000 per kthread
[  149.431588][T11533] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  149.433598][T11533] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  149.437228][T11533] vhci_hcd vhci_hcd.0: Device attached
[  149.440947][T11532] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(10)
[  149.443034][T11532] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  149.445828][T11532] vhci_hcd vhci_hcd.0: Device attached
[  149.474069][T11539] vhci_hcd: connection closed
[  149.474144][T11534] vhci_hcd: connection closed
[  149.474269][   T80] vhci_hcd: stop threads
[  149.480927][   T80] vhci_hcd: release socket
[  149.482408][   T80] vhci_hcd: disconnect device
[  149.484179][   T80] vhci_hcd: stop threads
[  149.485482][   T80] vhci_hcd: release socket
[  149.487383][   T80] vhci_hcd: disconnect device
[  149.494950][T11551] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2164'.
[  149.515900][T11553] netlink: 'syz.3.2165': attribute type 10 has an invalid length.
[  149.518383][T11553] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2165'.
[  149.544917][T11553] team0: Port device geneve0 added
[  149.703281][T11581] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2176'.
[  149.728828][T11559] netlink: 'syz.0.2168': attribute type 21 has an invalid length.
[  149.731616][T11559] netlink: 'syz.0.2168': attribute type 6 has an invalid length.
[  149.734010][T11584] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  149.736224][T11584] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  149.737813][T11559] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2168'.
[  149.754624][T11584] vhci_hcd vhci_hcd.0: Device attached
[  149.771857][T11584] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2178'.
[  149.775179][T11587] usbip_core: unknown command
[  149.776626][T11587] vhci_hcd: unknown pdu 3609821540
[  149.778170][T11587] usbip_core: unknown command
[  149.780152][ T1183] vhci_hcd: stop threads
[  149.781434][ T1183] vhci_hcd: release socket
[  149.782798][ T1183] vhci_hcd: disconnect device
[  149.986679][T11609] FAULT_INJECTION: forcing a failure.
[  149.986679][T11609] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.991330][T11609] CPU: 2 UID: 0 PID: 11609 Comm: syz.0.2188 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  149.991344][T11609] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.991351][T11609] Call Trace:
[  149.991355][T11609]  <TASK>
[  149.991359][T11609]  dump_stack_lvl+0x16c/0x1f0
[  149.991377][T11609]  should_fail_ex+0x512/0x640
[  149.991393][T11609]  _copy_to_user+0x32/0xd0
[  149.991410][T11609]  simple_read_from_buffer+0xcb/0x170
[  149.991425][T11609]  proc_fail_nth_read+0x197/0x270
[  149.991444][T11609]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  149.991466][T11609]  ? rw_verify_area+0xcf/0x680
[  149.991478][T11609]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  149.991491][T11609]  vfs_read+0x1e4/0xc60
[  149.991505][T11609]  ? __pfx___mutex_lock+0x10/0x10
[  149.991520][T11609]  ? __pfx_vfs_read+0x10/0x10
[  149.991536][T11609]  ? __fget_files+0x20e/0x3c0
[  149.991558][T11609]  ksys_read+0x12a/0x250
[  149.991570][T11609]  ? __pfx_ksys_read+0x10/0x10
[  149.991587][T11609]  do_syscall_64+0xcd/0x4c0
[  149.991607][T11609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.991619][T11609] RIP: 0033:0x7fe4ed38d33c
[  149.991627][T11609] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  149.991637][T11609] RSP: 002b:00007fe4ee1b7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  149.991647][T11609] RAX: ffffffffffffffda RBX: 00007fe4ed5b5fa0 RCX: 00007fe4ed38d33c
[  149.991653][T11609] RDX: 000000000000000f RSI: 00007fe4ee1b70a0 RDI: 0000000000000004
[  149.991659][T11609] RBP: 00007fe4ee1b7090 R08: 0000000000000000 R09: 0000000000000000
[  149.991665][T11609] R10: 000000000000114a R11: 0000000000000246 R12: 0000000000000001
[  149.991671][T11609] R13: 0000000000000000 R14: 00007fe4ed5b5fa0 R15: 00007ffdbaf67c08
[  149.991684][T11609]  </TASK>
[  150.063689][T11611] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  150.349910][T11624] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2195'.
[  150.380463][T11626] PM: Enabling pm_trace changes system date and time during resume.
[  150.380463][T11626] PM: Correct system time has to be restored manually after resume.
[  150.418541][T11628] SELinux: security_context_str_to_sid (E�) failed with errno=-22
[  150.476942][T11632] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  150.537490][T11637] netlink: 'syz.3.2201': attribute type 10 has an invalid length.
[  150.540437][T11637] hsr0: entered promiscuous mode
[  150.543472][T11637] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  150.547177][T11637] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  150.551394][T11637] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  151.542900][T11695] IPv6: NLM_F_CREATE should be specified when creating new route
[  151.913184][T11721] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  152.491853][   T13] vlan2: left promiscuous mode
[  152.626224][T11767] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  152.628447][T11767] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  152.632899][T11767] vhci_hcd vhci_hcd.0: Device attached
[  152.886201][  T838] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[  152.941396][T11780] netlink: 'syz.1.2254': attribute type 10 has an invalid length.
[  153.188927][T11768] vhci_hcd: connection reset by peer
[  153.195945][   T80] vhci_hcd: stop threads
[  153.199172][   T80] vhci_hcd: release socket
[  153.200558][T11814] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=11814 comm=syz.1.2270
[  153.200677][   T80] vhci_hcd: disconnect device
[  153.316905][T11831] FAULT_INJECTION: forcing a failure.
[  153.316905][T11831] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.320959][T11831] CPU: 1 UID: 0 PID: 11831 Comm: syz.3.2278 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  153.320974][T11831] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.320980][T11831] Call Trace:
[  153.320983][T11831]  <TASK>
[  153.320987][T11831]  dump_stack_lvl+0x16c/0x1f0
[  153.321005][T11831]  should_fail_ex+0x512/0x640
[  153.321022][T11831]  _copy_to_user+0x32/0xd0
[  153.321038][T11831]  simple_read_from_buffer+0xcb/0x170
[  153.321053][T11831]  proc_fail_nth_read+0x197/0x270
[  153.321068][T11831]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  153.321082][T11831]  ? rw_verify_area+0xcf/0x680
[  153.321093][T11831]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  153.321106][T11831]  vfs_read+0x1e4/0xc60
[  153.321120][T11831]  ? __pfx___mutex_lock+0x10/0x10
[  153.321134][T11831]  ? __pfx_vfs_read+0x10/0x10
[  153.321150][T11831]  ? __fget_files+0x20e/0x3c0
[  153.321168][T11831]  ksys_read+0x12a/0x250
[  153.321180][T11831]  ? __pfx_ksys_read+0x10/0x10
[  153.321196][T11831]  do_syscall_64+0xcd/0x4c0
[  153.321211][T11831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.321222][T11831] RIP: 0033:0x7fc0bf98d33c
[  153.321230][T11831] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  153.321241][T11831] RSP: 002b:00007fc0c08a3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  153.321250][T11831] RAX: ffffffffffffffda RBX: 00007fc0bfbb5fa0 RCX: 00007fc0bf98d33c
[  153.321256][T11831] RDX: 000000000000000f RSI: 00007fc0c08a30a0 RDI: 0000000000000003
[  153.321262][T11831] RBP: 00007fc0c08a3090 R08: 0000000000000000 R09: 0000000000000000
[  153.321268][T11831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.321274][T11831] R13: 0000000000000000 R14: 00007fc0bfbb5fa0 R15: 00007ffecaf17ac8
[  153.321287][T11831]  </TASK>
[  153.493575][T11848] __nla_validate_parse: 8 callbacks suppressed
[  153.493586][T11848] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2286'.
[  153.680282][T11859] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2290'.
[  153.683581][T11858] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2290'.
[  153.737948][T11865] IPv6: syztnl0: Disabled Multicast RS
[  153.796136][T11876] netlink: 'syz.1.2297': attribute type 1 has an invalid length.
[  153.809389][T11876] 8021q: adding VLAN 0 to HW filter on device bond14
[  153.811889][T11880] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2296'.
[  153.820095][T11876] bond14: (slave erspan0): making interface the new active one
[  153.823134][T11876] bond14: (slave erspan0): Enslaving as an active interface with an up link
[  153.869575][T11886] netlink: 14 bytes leftover after parsing attributes in process `syz.3.2300'.
[  153.898799][T11886] bond0 (unregistering): Released all slaves
[  154.004277][T11897] bond14: (slave erspan0): Releasing active interface
[  154.033742][T11901] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2307'.
[  154.059001][T11903] netlink: 'syz.1.2308': attribute type 1 has an invalid length.
[  154.078644][T11903] 8021q: adding VLAN 0 to HW filter on device bond15
[  154.086444][T11903] bond15: (slave erspan0): making interface the new active one
[  154.089423][T11903] bond15: (slave erspan0): Enslaving as an active interface with an up link
[  154.557145][   T40] kauditd_printk_skb: 50456 callbacks suppressed
[  154.557157][   T40] audit: type=1400 audit(1749119732.527:489422): avc:  denied  { create } for  pid=11935 comm="syz.3.2316" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  154.566130][   T40] audit: type=1400 audit(1749119732.527:489423): avc:  denied  { read write } for  pid=11935 comm="syz.3.2316" name="fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  154.573324][   T40] audit: type=1400 audit(1749119732.527:489424): avc:  denied  { open } for  pid=11935 comm="syz.3.2316" path="/dev/fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  154.581584][   T40] audit: type=1400 audit(1749119732.527:489425): avc:  denied  { mounton } for  pid=11935 comm="syz.3.2316" path="/565/file0" dev="tmpfs" ino=2978 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  154.588968][   T40] audit: type=1400 audit(1749119732.527:489426): avc:  denied  { mount } for  pid=11935 comm="syz.3.2316" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  154.683842][   T40] audit: type=1400 audit(1749119732.649:489427): avc:  denied  { create } for  pid=11932 comm="syz.1.2315" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  154.690564][   T40] audit: type=1400 audit(1749119732.649:489428): avc:  denied  { prog_load } for  pid=11932 comm="syz.1.2315" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  154.698901][   T40] audit: type=1400 audit(1749119732.649:489429): avc:  denied  { bpf } for  pid=11932 comm="syz.1.2315" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  154.705321][   T40] audit: type=1400 audit(1749119732.658:489430): avc:  denied  { write } for  pid=11932 comm="syz.1.2315" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  154.711752][   T40] audit: type=1400 audit(1749119732.667:489431): avc:  denied  { create } for  pid=11932 comm="syz.1.2315" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  154.924770][T11938] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2317'.
[  154.967114][T11940] netlink: 'syz.2.2318': attribute type 1 has an invalid length.
[  154.988515][T11940] 8021q: adding VLAN 0 to HW filter on device bond16
[  154.995662][T11940] bond14: (slave erspan0): Releasing active interface
[  155.002477][T11940] bond16: (slave erspan0): making interface the new active one
[  155.005883][T11940] bond16: (slave erspan0): Enslaving as an active interface with an up link
[  155.366486][   T29] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  155.549495][   T29] usb 7-1: too many configurations: 9, using maximum allowed: 8
[  155.552702][   T29] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  155.555446][   T29] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  155.558872][   T29] usb 7-1: config 0 interface 0 has no altsetting 0
[  155.561780][   T29] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  155.564550][   T29] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  155.567875][   T29] usb 7-1: config 0 interface 0 has no altsetting 0
[  155.570833][   T29] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  155.573729][   T29] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  155.577127][   T29] usb 7-1: config 0 interface 0 has no altsetting 0
[  155.580032][   T29] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  155.582929][   T29] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  155.586361][   T29] usb 7-1: config 0 interface 0 has no altsetting 0
[  155.589300][   T29] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  155.592158][   T29] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  155.595584][   T29] usb 7-1: config 0 interface 0 has no altsetting 0
[  155.598552][   T29] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  155.601363][   T29] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  155.604765][   T29] usb 7-1: config 0 interface 0 has no altsetting 0
[  155.607697][   T29] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  155.610524][   T29] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  155.613936][   T29] usb 7-1: config 0 interface 0 has no altsetting 0
[  155.617345][   T29] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  155.620218][   T29] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  155.623660][   T29] usb 7-1: config 0 interface 0 has no altsetting 0
[  155.627423][   T29] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  155.630320][   T29] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  155.632947][   T29] usb 7-1: Product: syz
[  155.634335][   T29] usb 7-1: Manufacturer: syz
[  155.635883][   T29] usb 7-1: SerialNumber: syz
[  155.640019][   T29] usb 7-1: config 0 descriptor??
[  155.860209][T11950] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2321'.
[  155.874405][   T29] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0
[  155.882286][   T29] usb 7-1: USB disconnect, device number 3
[  155.898830][   T29] yurex 7-1:0.0: USB YUREX #0 now disconnected
[  156.550316][T11977] netlink: 'syz.2.2329': attribute type 1 has an invalid length.
[  156.563297][T11977] 8021q: adding VLAN 0 to HW filter on device bond17
[  156.571902][T11977] bond16: (slave erspan0): Releasing active interface
[  156.578500][T11977] bond17: (slave erspan0): making interface the new active one
[  156.581533][T11977] bond17: (slave erspan0): Enslaving as an active interface with an up link
[  156.700098][T11987] tipc: Started in network mode
[  156.701708][T11987] tipc: Node identity 6e5fb771b9f8, cluster identity 4711
[  156.704358][T11987] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  156.708948][T11987] fuse: Unknown parameter 'f�S0x0000000000000009'
[  156.781563][T11986] tipc: Resetting bearer <eth:syzkaller0>
[  157.704970][T11986] tipc: Disabling bearer <eth:syzkaller0>
[  157.806392][T12005] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2338'.
[  157.950340][T12017] netlink: 14212 bytes leftover after parsing attributes in process `syz.3.2343'.
[  158.029087][T12022] tipc: Started in network mode
[  158.030767][T12022] tipc: Node identity 56915d514aa3, cluster identity 4711
[  158.033069][T12022] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  158.037090][T12022] fuse: Unknown parameter 'f�S0x0000000000000009'
[  158.102519][T12020] tipc: Resetting bearer <eth:syzkaller0>
[  158.215687][T12035] netlink: 'syz.1.2349': attribute type 4 has an invalid length.
[  158.349134][  T838] vhci_hcd: vhci_device speed not set
[  159.014958][T12045] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  159.022168][T12045] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  159.043771][T12020] tipc: Disabling bearer <eth:syzkaller0>
[  159.049023][T12035] : renamed from bond0
[  159.054880][T12041] mkiss: ax0: crc mode is auto.
[  159.082549][T12047] __nla_validate_parse: 1 callbacks suppressed
[  159.082578][T12047] netlink: 14212 bytes leftover after parsing attributes in process `syz.1.2352'.
[  159.132136][T12049] netlink: 'syz.3.2353': attribute type 1 has an invalid length.
[  159.135361][T12049] netlink: 780 bytes leftover after parsing attributes in process `syz.3.2353'.
[  159.145007][T12053] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2354'.
[  159.148972][T12053] netlink: 172 bytes leftover after parsing attributes in process `syz.1.2354'.
[  159.196660][T12060] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2357'.
[  159.377924][T12078] fuse: Unknown parameter '�ootma'
[  159.403547][T12080] syz.3.2365: attempt to access beyond end of device
[  159.403547][T12080] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  159.409551][T12080] exFAT-fs (nbd3): unable to read boot sector
[  159.411494][T12080] exFAT-fs (nbd3): failed to read boot sector
[  159.413410][T12080] exFAT-fs (nbd3): failed to recognize exfat type
[  159.451657][T12085] bond17: (slave erspan0): Releasing active interface
[  159.535841][T12094] netlink: 'syz.3.2371': attribute type 1 has an invalid length.
[  159.548377][T12094] 8021q: adding VLAN 0 to HW filter on device bond0
[  159.554815][T12094] bond0: (slave erspan0): making interface the new active one
[  159.558025][T12094] bond0: (slave erspan0): Enslaving as an active interface with an up link
[  159.667931][T12107] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2376'.
[  159.986980][T12128] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2384'.
[  160.014660][T12130] netlink: 112 bytes leftover after parsing attributes in process `syz.1.2385'.
[  160.044233][   T40] kauditd_printk_skb: 75 callbacks suppressed
[  160.044244][   T40] audit: type=1400 audit(1749119737.662:489507): avc:  denied  { read } for  pid=12131 comm="syz.1.2386" name="ppp" dev="devtmpfs" ino=731 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  160.053381][   T40] audit: type=1400 audit(1749119737.662:489508): avc:  denied  { open } for  pid=12131 comm="syz.1.2386" path="/dev/ppp" dev="devtmpfs" ino=731 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  160.057181][T12132] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2386'.
[  160.063540][   T40] audit: type=1400 audit(1749119737.662:489509): avc:  denied  { ioctl } for  pid=12131 comm="syz.1.2386" path="/dev/ppp" dev="devtmpfs" ino=731 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  160.074284][T12132] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=12132 comm=syz.1.2386
[  160.099380][T12134] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2387'.
[  160.193052][   T40] audit: type=1400 audit(1749119737.803:489510): avc:  denied  { create } for  pid=12131 comm="syz.1.2386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  160.351397][   T40] audit: type=1400 audit(1749119737.952:489511): avc:  denied  { create } for  pid=12145 comm="syz.1.2392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  160.409357][   T40] audit: type=1400 audit(1749119737.999:489512): avc:  denied  { getopt } for  pid=12145 comm="syz.1.2392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  160.415461][   T40] audit: type=1400 audit(1749119737.999:489513): avc:  denied  { bind } for  pid=12145 comm="syz.1.2392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  160.623469][   T40] audit: type=1400 audit(1749119738.205:489514): avc:  denied  { read write } for  pid=12163 comm="syz.1.2394" name="mouse0" dev="devtmpfs" ino=947 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  160.631857][   T40] audit: type=1400 audit(1749119738.205:489515): avc:  denied  { open } for  pid=12163 comm="syz.1.2394" path="/dev/input/mouse0" dev="devtmpfs" ino=947 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  160.697550][   T40] audit: type=1400 audit(1749119738.270:489516): avc:  denied  { bind } for  pid=12165 comm="syz.3.2395" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  160.958053][T12187] batadv_slave_0: entered promiscuous mode
[  160.960042][T12187] batadv_slave_0: entered allmulticast mode
[  160.989772][T12191] mkiss: ax0: crc mode is auto.
[  161.052399][T12200] syz.2.2408: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  161.057700][T12200] CPU: 1 UID: 0 PID: 12200 Comm: syz.2.2408 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  161.057717][T12200] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.057734][T12200] Call Trace:
[  161.057739][T12200]  <TASK>
[  161.057744][T12200]  dump_stack_lvl+0x16c/0x1f0
[  161.057779][T12200]  warn_alloc+0x248/0x3a0
[  161.057795][T12200]  ? __pfx_warn_alloc+0x10/0x10
[  161.057810][T12200]  ? stack_depot_save_flags+0x354/0xa40
[  161.057834][T12200]  ? kasan_save_stack+0x42/0x60
[  161.057846][T12200]  ? kasan_save_stack+0x33/0x60
[  161.057858][T12200]  ? kasan_save_track+0x14/0x30
[  161.057870][T12200]  ? xskq_create+0x52/0x1d0
[  161.057882][T12200]  ? xsk_setsockopt+0x640/0x840
[  161.057892][T12200]  ? do_sock_setsockopt+0x224/0x470
[  161.057910][T12200]  ? xskq_create+0xfb/0x1d0
[  161.057923][T12200]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  161.057940][T12200]  ? xskq_create+0xfb/0x1d0
[  161.057954][T12200]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  161.057970][T12200]  ? xskq_create+0xfb/0x1d0
[  161.057981][T12200]  vmalloc_user_noprof+0x9e/0xe0
[  161.057992][T12200]  ? xskq_create+0xfb/0x1d0
[  161.058003][T12200]  xskq_create+0xfb/0x1d0
[  161.058020][T12200]  xsk_setsockopt+0x640/0x840
[  161.058032][T12200]  ? __pfx_xsk_setsockopt+0x10/0x10
[  161.058041][T12200]  ? __lock_acquire+0x622/0x1c90
[  161.058060][T12200]  ? selinux_socket_setsockopt+0x6a/0x80
[  161.058076][T12200]  ? __pfx_xsk_setsockopt+0x10/0x10
[  161.058088][T12200]  do_sock_setsockopt+0x224/0x470
[  161.058104][T12200]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  161.058127][T12200]  __sys_setsockopt+0x1a0/0x230
[  161.058142][T12200]  __x64_sys_setsockopt+0xbd/0x160
[  161.058153][T12200]  ? do_syscall_64+0x91/0x4c0
[  161.058166][T12200]  ? lockdep_hardirqs_on+0x7c/0x110
[  161.058180][T12200]  do_syscall_64+0xcd/0x4c0
[  161.058194][T12200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.058204][T12200] RIP: 0033:0x7f6b8918e929
[  161.058213][T12200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.058223][T12200] RSP: 002b:00007f6b89f44038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  161.058233][T12200] RAX: ffffffffffffffda RBX: 00007f6b893b5fa0 RCX: 00007f6b8918e929
[  161.058239][T12200] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000004
[  161.058245][T12200] RBP: 00007f6b89210b39 R08: 0000000000000004 R09: 0000000000000000
[  161.058251][T12200] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  161.058257][T12200] R13: 0000000000000000 R14: 00007f6b893b5fa0 R15: 00007ffebb288178
[  161.058270][T12200]  </TASK>
[  161.058286][T12200] Mem-Info:
[  161.143321][T12200] active_anon:8825 inactive_anon:0 isolated_anon:0
[  161.143321][T12200]  active_file:17427 inactive_file:41020 isolated_file:0
[  161.143321][T12200]  unevictable:1768 dirty:399 writeback:0
[  161.143321][T12200]  slab_reclaimable:11845 slab_unreclaimable:75737
[  161.143321][T12200]  mapped:25587 shmem:2398 pagetables:1455
[  161.143321][T12200]  sec_pagetables:308 bounce:0
[  161.143321][T12200]  kernel_misc_reclaimable:0
[  161.143321][T12200]  free:441126 free_pcp:15728 free_cma:0
[  161.157515][T12200] Node 0 active_anon:35176kB inactive_anon:0kB active_file:69708kB inactive_file:163880kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:102348kB dirty:1596kB writeback:0kB shmem:6056kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:14288kB pagetables:5464kB sec_pagetables:1232kB all_unreclaimable? no Balloon:0kB
[  161.168674][T12200] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:112kB pagetables:232kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  161.178448][T12204] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  161.179229][T12200] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  161.189867][T12200] lowmem_reserve[]: 0 1235 1235 1235 1235
[  161.191673][T12200] Node 0 DMA32 free:146712kB boost:0kB min:27516kB low:34392kB high:41268kB reserved_highatomic:0KB free_highatomic:0KB active_anon:35200kB inactive_anon:0kB active_file:69708kB inactive_file:163880kB unevictable:3536kB writepending:1596kB present:2080628kB managed:1264788kB mlocked:0kB bounce:0kB free_pcp:40312kB local_pcp:1376kB free_cma:0kB
[  161.201910][T12200] lowmem_reserve[]: 0 0 0 0 0
[  161.203584][T12200] Node 1 Normal free:1602272kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781948kB mlocked:0kB bounce:0kB free_pcp:23848kB local_pcp:10716kB free_cma:0kB
[  161.213031][T12200] lowmem_reserve[]: 0 0 0 0 0
[  161.215054][T12200] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  161.218986][T12200] Node 0 DMA32: 1149*4kB (UME) 1661*8kB (UME) 1385*16kB (UME) 1034*32kB (UM) 218*64kB (UME) 68*128kB (UME) 53*256kB (UME) 17*512kB (M) 12*1024kB (UME) 4*2048kB (ME) 2*4096kB (M) = 146732kB
[  161.225044][T12200] Node 1 Normal: 9*4kB (UME) 12*8kB (UME) 12*16kB (UME) 19*32kB (UME) 27*64kB (UME) 17*128kB (UME) 8*256kB (UM) 6*512kB (UME) 5*1024kB (UM) 3*2048kB (UME) 386*4096kB (M) = 1602276kB
[  161.230692][T12200] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  161.233635][T12200] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  161.236730][T12200] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  161.239687][T12200] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  161.242518][T12200] 60841 total pagecache pages
[  161.244062][T12200] 0 pages in swap cache
[  161.245483][T12200] Free swap  = 124996kB
[  161.247497][T12200] Total swap = 124996kB
[  161.248826][T12200] 1048443 pages RAM
[  161.249998][T12200] 0 pages HighMem/MovableOnly
[  161.251483][T12200] 282919 pages reserved
[  161.252787][T12200] 0 pages cma reserved
[  161.283001][T12214] netlink: 'syz.2.2413': attribute type 1 has an invalid length.
[  161.302082][T12214] 8021q: adding VLAN 0 to HW filter on device bond18
[  161.322919][T12214] bond17: (slave erspan0): Releasing active interface
[  161.328843][T12214] bond18: (slave erspan0): making interface the new active one
[  161.332851][T12214] bond18: (slave erspan0): Enslaving as an active interface with an up link
[  161.334632][T12217] openvswitch: netlink: EtherType 0 is less than min 600
[  161.402870][T12227] mkiss: ax0: crc mode is auto.
[  161.404764][T12219] netdevsim netdevsim2 netdevsim1: Unsupported IPsec algorithm
[  161.443058][T12231] netlink: 'syz.2.2419': attribute type 1 has an invalid length.
[  161.537100][T12244] netlink: 'syz.3.2424': attribute type 1 has an invalid length.
[  161.551164][T12244] 8021q: adding VLAN 0 to HW filter on device bond18
[  161.558830][T12244] bond0: (slave erspan0): Releasing active interface
[  161.564276][T12244] bond18: (slave erspan0): making interface the new active one
[  161.567704][T12244] bond18: (slave erspan0): Enslaving as an active interface with an up link
[  161.625768][T12256] netlink: 'syz.2.2428': attribute type 1 has an invalid length.
[  161.679944][T12264] mkiss: ax0: crc mode is auto.
[  161.773929][T12271] program syz.3.2433 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  161.780336][T12269] futex_wake_op: syz.2.2432 tries to shift op by 32; fix this program
[  161.836878][T12277] netlink: 'syz.3.2435': attribute type 1 has an invalid length.
[  161.850490][T12277] 8021q: adding VLAN 0 to HW filter on device bond19
[  161.857562][T12277] bond18: (slave erspan0): Releasing active interface
[  161.862789][T12277] bond19: (slave erspan0): making interface the new active one
[  161.865831][T12277] bond19: (slave erspan0): Enslaving as an active interface with an up link
[  161.987439][T12291] mkiss: ax0: crc mode is auto.
[  162.272727][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  162.297384][T12297] devpts: Unknown parameter '��3�0x000000000000ee00'
[  162.392533][T12317] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  162.411759][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  162.420096][T12317] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  162.422757][T12317] IPv6: NLM_F_CREATE should be set when creating new route
[  162.451294][T12320] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  163.002725][T12350] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  163.142323][T12359] netlink: 'syz.2.2466': attribute type 10 has an invalid length.
[  163.151904][T12359] hsr_slave_1: left promiscuous mode
[  163.638498][T12410] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  163.856708][T12422] batadv_slave_1: entered promiscuous mode
[  163.870429][T12421] batadv_slave_1: left promiscuous mode
[  163.915045][T12426] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  164.021521][T12440] team0: Device gtp0 is of different type
[  164.074670][T12443] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=47 sclass=netlink_route_socket pid=12443 comm=syz.1.2491
[  164.078581][T12443] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=59 sclass=netlink_route_socket pid=12443 comm=syz.1.2491
[  164.082580][T12443] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=47 sclass=netlink_route_socket pid=12443 comm=syz.1.2491
[  164.087262][T12443] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=39 sclass=netlink_route_socket pid=12443 comm=syz.1.2491
[  164.091306][T12443] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=56 sclass=netlink_route_socket pid=12443 comm=syz.1.2491
[  164.161168][T12448] dns_resolver: Unsupported content type (234)
[  164.226244][T12451] netlink: 'syz.1.2494': attribute type 1 has an invalid length.
[  164.294945][T12461] netlink: 'syz.1.2496': attribute type 1 has an invalid length.
[  164.308112][T12461] 8021q: adding VLAN 0 to HW filter on device bond0
[  164.315486][T12461] bond15: (slave erspan0): Releasing active interface
[  164.320227][T12461] bond0: (slave erspan0): making interface the new active one
[  164.323200][T12461] bond0: (slave erspan0): Enslaving as an active interface with an up link
[  164.490444][T12479] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  164.590756][T12488] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  164.596377][T12488] fuse: Unknown parameter 'f�S0x0000000000000009'
[  164.681993][T12486] tipc: Resetting bearer <eth:syzkaller0>
[  164.824813][T12513] __nla_validate_parse: 9 callbacks suppressed
[  164.824824][T12513] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2510'.
[  165.030437][T12525] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  165.038152][T12525] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  165.301509][ T6110] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  165.458440][ T6110] usb 5-1: Using ep0 maxpacket: 16
[  165.461308][ T6110] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  165.465421][ T6110] usb 5-1: config 0 has no interfaces?
[  165.468859][ T6110] usb 5-1: New USB device found, idVendor=067b, idProduct=23b3, bcdDevice=da.15
[  165.472658][ T6110] usb 5-1: New USB device strings: Mfr=1, Product=9, SerialNumber=3
[  165.475168][ T6110] usb 5-1: Product: syz
[  165.476523][ T6110] usb 5-1: Manufacturer: syz
[  165.478008][ T6110] usb 5-1: SerialNumber: syz
[  165.487610][ T6110] usb 5-1: config 0 descriptor??
[  165.608194][T12486] tipc: Disabling bearer <eth:syzkaller0>
[  165.643472][   T40] kauditd_printk_skb: 70 callbacks suppressed
[  165.643483][   T40] audit: type=1400 audit(1749119742.901:489587): avc:  denied  { getopt } for  pid=12527 comm="syz.1.2515" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  165.679595][   T40] audit: type=1400 audit(1749119742.929:489588): avc:  denied  { ioctl } for  pid=12537 comm="syz.3.2517" path="socket:[34355]" dev="sockfs" ino=34355 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  165.687730][   T40] audit: type=1400 audit(1749119742.929:489589): avc:  denied  { bind } for  pid=12537 comm="syz.3.2517" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  165.694311][   T40] audit: type=1400 audit(1749119742.947:489590): avc:  denied  { setopt } for  pid=12543 comm="syz.1.2519" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  165.706148][ T5299] Bluetooth: hci3: Malformed LE Event: 0x0d
[  165.715885][   T40] audit: type=1400 audit(1749119742.966:489591): avc:  denied  { kexec_image_load } for  pid=12524 comm="syz.0.2514" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  165.728937][   T40] audit: type=1400 audit(1749119742.985:489592): avc:  denied  { map } for  pid=12534 comm="syz.2.2518" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=749 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  165.729827][T12544] : (slave veth5): Enslaving as an active interface with an up link
[  165.750127][ T6093] usb 5-1: USB disconnect, device number 3
[  165.772477][T12551] netlink: 'syz.1.2521': attribute type 4 has an invalid length.
[  165.909903][T12565] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  165.930021][ T5299] Bluetooth: hci0: unexpected Set CIG Parameters response data
[  165.959054][T12571] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2527'.
[  165.983874][T12573] netlink: 'syz.1.2528': attribute type 1 has an invalid length.
[  165.998555][T12573] 8021q: adding VLAN 0 to HW filter on device bond16
[  166.009408][T12573] bond0: (slave erspan0): Releasing active interface
[  166.014037][T12573] bond16: (slave erspan0): making interface the new active one
[  166.017280][T12573] bond16: (slave erspan0): Enslaving as an active interface with an up link
[  166.277078][ T1183] nci: nci_rsp_packet: unknown rsp opcode 0x116
[  166.277862][   T40] audit: type=1400 audit(1749119743.490:489593): avc:  denied  { execute } for  pid=12583 comm="syz.1.2530" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  166.279912][T12588] Trying to write to read-only block-device nullb0
[  166.289204][   T40] audit: type=1400 audit(1749119743.490:489594): avc:  denied  { ioctl } for  pid=12583 comm="syz.1.2530" path="/dev/nullb0" dev="devtmpfs" ino=707 ioctlcmd=0x125d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  166.425937][   T40] audit: type=1400 audit(1749119743.630:489595): avc:  denied  { execute } for  pid=12598 comm="syz-executor" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  166.433506][   T40] audit: type=1400 audit(1749119743.630:489596): avc:  denied  { execute_no_trans } for  pid=12598 comm="syz-executor" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  166.545714][ T5946] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  166.562168][ T5946] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  166.564544][ T8608] syz_tun (unregistering): left promiscuous mode
[  166.565089][ T5946] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  166.571966][ T5946] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  166.574675][ T5946] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  166.668179][T12599] chnl_net:caif_netlink_parms(): no params data found
[  166.761679][T12599] bridge0: port 1(bridge_slave_0) entered blocking state
[  166.764122][T12599] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.766427][T12599] bridge_slave_0: entered allmulticast mode
[  166.769123][T12599] bridge_slave_0: entered promiscuous mode
[  166.783584][T12599] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.785987][T12599] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.788260][T12599] bridge_slave_1: entered allmulticast mode
[  166.793008][T12599] bridge_slave_1: entered promiscuous mode
[  166.843680][ T1147] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.851658][T12599] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  166.856129][T12599] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  166.898990][T12599] team0: Port device team_slave_0 added
[  166.903101][T12599] team0: Port device team_slave_1 added
[  166.946743][ T1147] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.954723][T12599] batman_adv: batadv0: Adding interface: batadv_slave_0
[  166.958584][T12599] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  166.966527][T12599] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  166.970661][T12599] batman_adv: batadv0: Adding interface: batadv_slave_1
[  166.972792][T12599] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  166.980797][T12599] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  167.017862][T12599] hsr_slave_0: entered promiscuous mode
[  167.020171][T12599] hsr_slave_1: entered promiscuous mode
[  167.022205][T12599] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  167.024564][T12599] Cannot create hsr debugfs directory
[  167.047544][ T1147] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.128945][ T1147] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.226781][ T1147] bridge_slave_1: left allmulticast mode
[  167.228643][ T1147] bridge_slave_1: left promiscuous mode
[  167.231143][ T1147] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.235855][ T1147] bridge_slave_0: left allmulticast mode
[  167.237622][ T1147] bridge_slave_0: left promiscuous mode
[  167.239437][ T1147] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.304346][ T1147] ip6gretap0 (unregistering): left promiscuous mode
[  167.354363][ T1147] erspan0 (unregistering): left promiscuous mode
[  167.412273][ T1147] team0: Port device geneve0 removed
[  167.488323][T12626] overlayfs: conflicting lowerdir path
[  167.540836][T12638] dns_resolver: Unsupported server list version (0)
[  167.760707][ T1147] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  167.764856][ T1147] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  167.769362][ T1147] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  167.772488][ T1147] bond0 (unregistering): Released all slaves
[  167.830236][ T1147] bond1 (unregistering): Released all slaves
[  167.891534][ T1147] bond2 (unregistering): Released all slaves
[  167.949527][ T1147] bond3 (unregistering): Released all slaves
[  168.008116][ T1147] bond4 (unregistering): Released all slaves
[  168.068943][ T1147] bond5 (unregistering): Released all slaves
[  168.099674][ T5946] Bluetooth: hci0: command tx timeout
[  168.128682][ T1147] bond6 (unregistering): Released all slaves
[  168.187106][ T1147] bond7 (unregistering): Released all slaves
[  168.245687][ T1147] bond8 (unregistering): Released all slaves
[  168.312050][ T1147] bond9 (unregistering): Released all slaves
[  168.373350][ T1147] bond10 (unregistering): Released all slaves
[  168.433805][ T1147] bond11 (unregistering): Released all slaves
[  168.440390][ T1147] bond12 (unregistering): Released all slaves
[  168.459886][T12641] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2547'.
[  168.493116][T12650] netlink: 'syz.2.2548': attribute type 1 has an invalid length.
[  168.528009][T12650] 8021q: adding VLAN 0 to HW filter on device bond19
[  168.567877][T12650] bond18: (slave erspan0): Releasing active interface
[  168.593704][T12650] bond19: (slave erspan0): making interface the new active one
[  168.597883][T12650] bond19: (slave erspan0): Enslaving as an active interface with an up link
[  168.693904][T12671] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2556'.
[  168.784258][ T5946] Bluetooth: hci4: command tx timeout
[  168.876393][T12599] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  168.884913][T12599] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  168.889320][T12599] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  168.894618][T12599] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  168.934295][T12599] 8021q: adding VLAN 0 to HW filter on device bond0
[  168.944165][T12599] 8021q: adding VLAN 0 to HW filter on device team0
[  168.948920][   T99] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.951199][   T99] bridge0: port 1(bridge_slave_0) entered forwarding state
[  168.957031][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.959299][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  169.062882][T12599] 8021q: adding VLAN 0 to HW filter on device batadv0
[  169.085247][T12599] veth0_vlan: entered promiscuous mode
[  169.089736][T12599] veth1_vlan: entered promiscuous mode
[  169.107039][T12599] veth0_macvtap: entered promiscuous mode
[  169.111732][T12599] veth1_macvtap: entered promiscuous mode
[  169.121213][T12599] batman_adv: batadv0: Interface activated: batadv_slave_0
[  169.133882][T12599] batman_adv: batadv0: Interface activated: batadv_slave_1
[  169.139066][T12599] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  169.141812][T12599] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  169.144545][T12599] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  169.148228][T12599] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  169.179547][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  169.182198][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  169.200374][   T99] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  169.202828][   T99] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.248803][ T5946] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  170.251589][ T5946] Bluetooth: hci0: Injecting HCI hardware error event
[  170.254259][ T5946] Bluetooth: hci0: hardware error 0x00
[  170.580564][ T1147] hsr_slave_0: left promiscuous mode
[  170.582734][ T1147] hsr_slave_1: left promiscuous mode
[  170.584807][ T1147] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  170.587207][ T1147] batman_adv: batadv0: Removing interface: batadv_slave_0
[  170.590076][ T1147] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  170.592471][ T1147] batman_adv: batadv0: Removing interface: batadv_slave_1
[  170.627872][ T1147] veth1_macvtap: left promiscuous mode
[  170.629847][ T1147] veth0_macvtap: left promiscuous mode
[  170.631713][ T1147] veth1_vlan: left promiscuous mode
[  170.633829][ T1147] veth0_vlan: left promiscuous mode
[  171.017510][ T5299] Bluetooth: hci4: command tx timeout
[  171.176129][ T1147] team0 (unregistering): Port device team_slave_1 removed
[  171.821833][   T40] kauditd_printk_skb: 12 callbacks suppressed
[  171.821844][   T40] audit: type=1400 audit(1749119748.681:489609): avc:  denied  { read } for  pid=12690 comm="syz.3.2560" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  171.830877][T12693] netlink: 14220 bytes leftover after parsing attributes in process `syz.2.2559'.
[  171.844567][   T40] audit: type=1400 audit(1749119748.681:489610): avc:  denied  { open } for  pid=12690 comm="syz.3.2560" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  171.853014][   T40] audit: type=1400 audit(1749119748.691:489611): avc:  denied  { ioctl } for  pid=12690 comm="syz.3.2560" path="/dev/fb0" dev="devtmpfs" ino=637 ioctlcmd=0x4605 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  171.924804][T12698] netlink: 'syz.2.2562': attribute type 1 has an invalid length.
[  171.933102][ T5944] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  171.938139][ T5944] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  171.941931][ T5944] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  171.945790][ T5944] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  171.946510][T12698] 8021q: adding VLAN 0 to HW filter on device bond20
[  171.949377][ T5944] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  171.962811][T12698] bond19: (slave erspan0): Releasing active interface
[  171.970643][T12698] bond20: (slave erspan0): making interface the new active one
[  171.974072][T12698] bond20: (slave erspan0): Enslaving as an active interface with an up link
[  172.056862][ T1147] IPVS: stop unused estimator thread 0...
[  172.099029][T12713] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2567'.
[  172.131243][T12699] chnl_net:caif_netlink_parms(): no params data found
[  172.136558][T12718] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2569'.
[  172.207719][   T40] audit: type=1400 audit(1749119749.037:489612): avc:  denied  { read write } for  pid=12722 comm="syz.0.2570" name="uhid" dev="devtmpfs" ino=1297 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  172.210747][T12723] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  172.217601][   T40] audit: type=1400 audit(1749119749.037:489613): avc:  denied  { open } for  pid=12722 comm="syz.0.2570" path="/dev/uhid" dev="devtmpfs" ino=1297 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  172.218639][T12723] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  172.233349][T12723] vhci_hcd vhci_hcd.0: Device attached
[  172.245151][T12699] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.246467][T12724] vhci_hcd: connection closed
[  172.248578][T12699] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.249326][ T1142] vhci_hcd: stop threads
[  172.250233][T12699] bridge_slave_0: entered allmulticast mode
[  172.252380][ T1142] vhci_hcd: release socket
[  172.254545][T12699] bridge_slave_0: entered promiscuous mode
[  172.255561][ T1142] vhci_hcd: disconnect device
[  172.258389][T12699] bridge0: port 2(bridge_slave_1) entered blocking state
[  172.263205][T12699] bridge0: port 2(bridge_slave_1) entered disabled state
[  172.265494][T12699] bridge_slave_1: entered allmulticast mode
[  172.269495][T12699] bridge_slave_1: entered promiscuous mode
[  172.309846][T12699] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  172.314902][T12699] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  172.360360][T12699] team0: Port device team_slave_0 added
[  172.363856][T12699] team0: Port device team_slave_1 added
[  172.385839][   T24] usb 8-1: new low-speed USB device number 3 using dummy_hcd
[  172.393925][T12699] batman_adv: batadv0: Adding interface: batadv_slave_0
[  172.396175][T12699] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  172.396588][ T1341] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  172.404154][T12699] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  172.415205][T12699] batman_adv: batadv0: Adding interface: batadv_slave_1
[  172.417375][T12699] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  172.425039][T12699] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  172.465050][T12699] hsr_slave_0: entered promiscuous mode
[  172.467272][T12699] hsr_slave_1: entered promiscuous mode
[  172.471629][ T5946] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  172.548801][   T24] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  172.550236][ T1147] bridge_slave_1: left allmulticast mode
[  172.551138][   T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  172.553375][ T1147] bridge_slave_1: left promiscuous mode
[  172.556687][   T24] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  172.559299][ T1147] bridge0: port 2(bridge_slave_1) entered disabled state
[  172.562216][   T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  172.568706][ T1341] usb 7-1: Using ep0 maxpacket: 8
[  172.570421][   T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  172.570819][ T1147] bridge_slave_0: left allmulticast mode
[  172.574978][ T1341] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  172.575482][ T1147] bridge_slave_0: left promiscuous mode
[  172.575588][ T1147] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.578813][ T1341] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  172.585303][   T24] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  172.587673][   T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  172.591101][ T1341] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  172.594462][ T1341] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  172.597877][ T1341] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  172.600788][   T24] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  172.604388][   T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  172.607785][   T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  172.611455][ T1341] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.615129][   T24] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  172.618353][   T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  172.622203][   T24] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  172.626815][ T1341] hub 7-1:1.0: bad descriptor, ignoring hub
[  172.628763][ T1341] hub 7-1:1.0: probe with driver hub failed with error -5
[  172.631024][   T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  172.634646][   T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  172.638334][ T1341] cdc_wdm 7-1:1.0: skipping garbage
[  172.640071][ T1341] cdc_wdm 7-1:1.0: skipping garbage
[  172.646859][   T24] usb 8-1: string descriptor 0 read error: -22
[  172.648807][   T24] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  172.652139][ T1341] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  172.654144][   T24] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  172.657200][ T1341] cdc_wdm 7-1:1.0: Unknown control protocol
[  172.672736][   T24] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux1
[  172.692827][ T1147] bond16 (unregistering): (slave erspan0): Releasing active interface
[  172.874107][   T40] audit: type=1400 audit(1749119749.664:489614): avc:  denied  { read write } for  pid=12717 comm="syz.2.2569" name="cdc-wdm0" dev="devtmpfs" ino=3310 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:modem_device_t tclass=chr_file permissive=1
[  172.881734][   T40] audit: type=1400 audit(1749119749.664:489615): avc:  denied  { open } for  pid=12717 comm="syz.2.2569" path="/dev/cdc-wdm0" dev="devtmpfs" ino=3310 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:modem_device_t tclass=chr_file permissive=1
[  172.951459][   T40] audit: type=1400 audit(1749119749.720:489616): avc:  denied  { create } for  pid=12736 comm="syz.0.2573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  172.964303][   T40] audit: type=1400 audit(1749119749.720:489617): avc:  denied  { ioctl } for  pid=12736 comm="syz.0.2573" path="socket:[37794]" dev="sockfs" ino=37794 ioctlcmd=0x89e4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  172.978951][   T40] audit: type=1400 audit(1749119749.757:489618): avc:  denied  { listen } for  pid=12739 comm="syz.0.2574" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  173.044548][ T1147]  (unregistering): (slave bond_slave_0): Releasing backup interface
[  173.051055][ T1147]  (unregistering): (slave bond_slave_1): Releasing backup interface
[  173.053291][T12743] netlink: 'syz.0.2575': attribute type 15 has an invalid length.
[  173.056129][T12743] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2575'.
[  173.060739][ T1147]  (unregistering): (slave veth5): Releasing backup interface
[  173.064233][ T1147]  (unregistering): Released all slaves
[  173.109534][T12745] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2575'.
[  173.116238][T12744] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2575'.
[  173.128554][ T1147] bond1 (unregistering): Released all slaves
[  173.213532][ T1147] bond2 (unregistering): Released all slaves
[  173.233731][ T5946] Bluetooth: hci4: command tx timeout
[  173.287178][ T1147] bond3 (unregistering): Released all slaves
[  173.377512][ T1147] bond4 (unregistering): Released all slaves
[  173.437273][ T1147] bond5 (unregistering): Released all slaves
[  173.501299][ T1147] bond6 (unregistering): Released all slaves
[  173.562510][ T1147] bond7 (unregistering): Released all slaves
[  173.623932][ T1147] bond8 (unregistering): Released all slaves
[  173.644256][T12718] usb 7-1: reset high-speed USB device number 4 using dummy_hcd
[  173.688778][ T1147] bond9 (unregistering): Released all slaves
[  173.750715][ T1147] bond10 (unregistering): Released all slaves
[  173.757041][ T1147] bond11 (unregistering): Released all slaves
[  173.797058][T12718] usb 7-1: device descriptor read/64, error -71
[  173.818128][ T1147] bond12 (unregistering): Released all slaves
[  173.882549][ T1147] bond13 (unregistering): (slave veth3): Releasing active interface
[  173.886220][ T1147] bond13 (unregistering): Released all slaves
[  173.951245][ T1147] bond14 (unregistering): Released all slaves
[  174.012408][ T1147] bond15 (unregistering): Released all slaves
[  174.053671][T12718] usb 7-1: reset high-speed USB device number 4 using dummy_hcd
[  174.073261][ T1147] bond0 (unregistering): Released all slaves
[  174.133347][ T1147] bond16 (unregistering): Released all slaves
[  174.183634][ T5946] Bluetooth: hci3: command tx timeout
[  174.216922][T12718] usb 7-1: device descriptor read/64, error -71
[  174.470544][T12718] usb 7-1: reset high-speed USB device number 4 using dummy_hcd
[  174.492529][T12718] usb 7-1: device descriptor read/8, error -71
[  174.748772][T12718] usb 7-1: reset high-speed USB device number 4 using dummy_hcd
[  174.761610][ T1147] hsr_slave_0: left promiscuous mode
[  174.763961][ T1147] hsr_slave_1: left promiscuous mode
[  174.773452][T12718] usb 7-1: device descriptor read/8, error -71
[  174.855982][T12782] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2579'.
[  174.900419][T12718] cdc_wdm 7-1:1.0: Error autopm - -16
[  174.900516][ T5998] usb 7-1: USB disconnect, device number 4
[  174.902971][T12716] cdc_wdm 7-1:1.0: Error autopm - -16
[  174.973703][T12716] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2568'.
[  174.988865][T12716] tmpfs: Group quota inode hardlimit too large.
[  175.079907][ T5998] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  175.089134][T12716] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2568'.
[  175.206179][T12786] FAULT_INJECTION: forcing a failure.
[  175.206179][T12786] name failslab, interval 1, probability 0, space 0, times 0
[  175.210440][T12786] CPU: 3 UID: 0 PID: 12786 Comm: syz.0.2580 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  175.210455][T12786] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.210461][T12786] Call Trace:
[  175.210465][T12786]  <TASK>
[  175.210470][T12786]  dump_stack_lvl+0x16c/0x1f0
[  175.210505][T12786]  should_fail_ex+0x512/0x640
[  175.210524][T12786]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  175.210539][T12786]  should_failslab+0xc2/0x120
[  175.210554][T12786]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  175.210567][T12786]  ? kfree+0x2b4/0x4d0
[  175.210577][T12786]  ? tomoyo_path_number_perm+0x470/0x580
[  175.210590][T12786]  ? kvm_vm_ioctl+0xb99/0x3da0
[  175.210607][T12786]  kvm_vm_ioctl+0xb99/0x3da0
[  175.210626][T12786]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  175.210648][T12786]  ? kasan_quarantine_put+0x10a/0x240
[  175.210660][T12786]  ? lockdep_hardirqs_on+0x7c/0x110
[  175.210681][T12786]  ? find_held_lock+0x2b/0x80
[  175.210695][T12786]  ? tomoyo_path_number_perm+0x295/0x580
[  175.210709][T12786]  ? tomoyo_path_number_perm+0x18d/0x580
[  175.210722][T12786]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  175.210735][T12786]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  175.210748][T12786]  ? do_vfs_ioctl+0x523/0x1a60
[  175.210760][T12786]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  175.210774][T12786]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  175.210790][T12786]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  175.210809][T12786]  ? hook_file_ioctl_common+0x145/0x410
[  175.210823][T12786]  ? selinux_file_ioctl+0x180/0x270
[  175.210836][T12786]  ? selinux_file_ioctl+0xb4/0x270
[  175.210851][T12786]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  175.210866][T12786]  __x64_sys_ioctl+0x18b/0x210
[  175.210878][T12786]  do_syscall_64+0xcd/0x4c0
[  175.210893][T12786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.210903][T12786] RIP: 0033:0x7efc3f38e52b
[  175.210912][T12786] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  175.210921][T12786] RSP: 002b:00007efc401e5f00 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  175.210931][T12786] RAX: ffffffffffffffda RBX: 00007efc3f5b5fa0 RCX: 00007efc3f38e52b
[  175.210937][T12786] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[  175.210943][T12786] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
[  175.210949][T12786] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  175.210955][T12786] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffef60b6fa8
[  175.210967][T12786]  </TASK>
[  175.222659][ T5998] usb 7-1: device descriptor read/64, error -71
[  175.446774][T12794] overlayfs: failed to resolve './file1': -2
[  175.464758][ T5946] Bluetooth: hci4: command tx timeout
[  175.553355][T12797] xt_hashlimit: size too large, truncated to 1048576
[  175.580309][ T1147] team0 (unregistering): Port device team_slave_1 removed
[  175.648291][ T1147] team0 (unregistering): Port device team_slave_0 removed
[  175.683266][T12801] FAULT_INJECTION: forcing a failure.
[  175.683266][T12801] name failslab, interval 1, probability 0, space 0, times 0
[  175.687242][T12801] CPU: 0 UID: 0 PID: 12801 Comm: syz.0.2586 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  175.687257][T12801] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.687263][T12801] Call Trace:
[  175.687268][T12801]  <TASK>
[  175.687272][T12801]  dump_stack_lvl+0x16c/0x1f0
[  175.687288][T12801]  should_fail_ex+0x512/0x640
[  175.687302][T12801]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  175.687318][T12801]  should_failslab+0xc2/0x120
[  175.687333][T12801]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  175.687346][T12801]  ? d_instantiate+0x77/0x90
[  175.687355][T12801]  ? alloc_empty_file+0x55/0x1e0
[  175.687367][T12801]  alloc_empty_file+0x55/0x1e0
[  175.687378][T12801]  alloc_file_pseudo+0x13a/0x230
[  175.687388][T12801]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  175.687403][T12801]  sock_alloc_file+0x50/0x210
[  175.687418][T12801]  do_accept+0x240/0x530
[  175.687429][T12801]  ? do_raw_spin_lock+0x12c/0x2b0
[  175.687441][T12801]  ? __pfx_do_accept+0x10/0x10
[  175.687459][T12801]  __sys_accept4+0x100/0x1c0
[  175.687470][T12801]  ? __pfx___sys_accept4+0x10/0x10
[  175.687481][T12801]  ? __pfx_ksys_write+0x10/0x10
[  175.687496][T12801]  __x64_sys_accept4+0x96/0x100
[  175.687507][T12801]  ? lockdep_hardirqs_on+0x7c/0x110
[  175.687520][T12801]  do_syscall_64+0xcd/0x4c0
[  175.687534][T12801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.687545][T12801] RIP: 0033:0x7efc3f38e929
[  175.687553][T12801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.687563][T12801] RSP: 002b:00007efc401e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  175.687573][T12801] RAX: ffffffffffffffda RBX: 00007efc3f5b5fa0 RCX: 00007efc3f38e929
[  175.687580][T12801] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  175.687585][T12801] RBP: 00007efc401e6090 R08: 0000000000000000 R09: 0000000000000000
[  175.687591][T12801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.687597][T12801] R13: 0000000000000000 R14: 00007efc3f5b5fa0 R15: 00007ffef60b6fa8
[  175.687609][T12801]  </TASK>
[  175.774583][T12803] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  176.216930][ T5942] usb 8-1: USB disconnect, device number 3
[  176.240152][T12807] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2588'.
[  176.255226][T12699] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  176.259770][T12699] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  176.264447][T12699] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  176.273264][T12699] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  176.286779][T12809] FAULT_INJECTION: forcing a failure.
[  176.286779][T12809] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  176.291982][T12809] CPU: 3 UID: 0 PID: 12809 Comm: syz.3.2589 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  176.291998][T12809] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.292004][T12809] Call Trace:
[  176.292008][T12809]  <TASK>
[  176.292012][T12809]  dump_stack_lvl+0x16c/0x1f0
[  176.292029][T12809]  should_fail_ex+0x512/0x640
[  176.292046][T12809]  should_fail_alloc_page+0xe7/0x130
[  176.292062][T12809]  prepare_alloc_pages+0x3c2/0x610
[  176.292074][T12809]  ? lock_acquire+0x179/0x350
[  176.292090][T12809]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  176.292107][T12809]  ? __lock_acquire+0x622/0x1c90
[  176.292122][T12809]  ? css_rstat_updated+0x9d/0xd30
[  176.292138][T12809]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  176.292153][T12809]  ? find_held_lock+0x2b/0x80
[  176.292168][T12809]  ? find_held_lock+0x2b/0x80
[  176.292180][T12809]  ? rcu_read_unlock+0x17/0x60
[  176.292195][T12809]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  176.292208][T12809]  ? policy_nodemask+0xea/0x4e0
[  176.292223][T12809]  alloc_pages_mpol+0x1fb/0x550
[  176.292239][T12809]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  176.292253][T12809]  ? rcu_is_watching+0x12/0xc0
[  176.292265][T12809]  ? trace_kmem_cache_alloc+0x28/0xc0
[  176.292274][T12809]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  176.292289][T12809]  alloc_pages_noprof+0x131/0x390
[  176.292304][T12809]  kvm_vm_ioctl+0xbb6/0x3da0
[  176.292325][T12809]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  176.292347][T12809]  ? kasan_quarantine_put+0x10a/0x240
[  176.292359][T12809]  ? lockdep_hardirqs_on+0x7c/0x110
[  176.292375][T12809]  ? find_held_lock+0x2b/0x80
[  176.292386][T12809]  ? tomoyo_path_number_perm+0x295/0x580
[  176.292401][T12809]  ? tomoyo_path_number_perm+0x18d/0x580
[  176.292415][T12809]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  176.292427][T12809]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  176.292439][T12809]  ? do_vfs_ioctl+0x523/0x1a60
[  176.292451][T12809]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  176.292466][T12809]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  176.292481][T12809]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  176.292500][T12809]  ? hook_file_ioctl_common+0x145/0x410
[  176.292513][T12809]  ? selinux_file_ioctl+0x180/0x270
[  176.292527][T12809]  ? selinux_file_ioctl+0xb4/0x270
[  176.292541][T12809]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  176.292556][T12809]  __x64_sys_ioctl+0x18b/0x210
[  176.292568][T12809]  do_syscall_64+0xcd/0x4c0
[  176.292582][T12809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.292592][T12809] RIP: 0033:0x7fc0bf98e52b
[  176.292600][T12809] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  176.292610][T12809] RSP: 002b:00007fc0c08a2f00 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  176.292620][T12809] RAX: ffffffffffffffda RBX: 00007fc0bfbb5fa0 RCX: 00007fc0bf98e52b
[  176.292626][T12809] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[  176.292632][T12809] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
[  176.292638][T12809] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  176.292644][T12809] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffecaf17ac8
[  176.292656][T12809]  </TASK>
[  176.314218][T12699] 8021q: adding VLAN 0 to HW filter on device bond0
[  176.396557][ T5946] Bluetooth: hci3: command tx timeout
[  176.408010][T12699] 8021q: adding VLAN 0 to HW filter on device team0
[  176.413263][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  176.415588][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  176.428375][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  176.431742][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  176.459897][T12811] nbd: must specify a size in bytes for the device
[  176.462090][T12812] nbd: must specify a size in bytes for the device
[  176.466032][T12811] netlink: 'syz.2.2590': attribute type 7 has an invalid length.
[  176.559859][T12699] 8021q: adding VLAN 0 to HW filter on device batadv0
[  176.589034][T12699] veth0_vlan: entered promiscuous mode
[  176.596008][T12699] veth1_vlan: entered promiscuous mode
[  176.618078][T12699] veth0_macvtap: entered promiscuous mode
[  176.624051][T12699] veth1_macvtap: entered promiscuous mode
[  176.632861][T12699] batman_adv: batadv0: Interface activated: batadv_slave_0
[  176.642323][T12699] batman_adv: batadv0: Interface activated: batadv_slave_1
[  176.646678][T12699] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  176.649402][T12699] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  176.653007][T12699] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  176.655707][T12699] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  176.688263][ T1142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  176.690685][ T1142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  176.707271][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  176.709754][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  176.753560][T12832] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  176.934215][ T5944] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  176.937552][ T5944] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  176.948922][ T5944] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  176.952929][ T5944] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  176.956189][ T5944] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  177.065780][T12841] chnl_net:caif_netlink_parms(): no params data found
[  177.155099][   T12] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.226620][T12841] bridge0: port 1(bridge_slave_0) entered blocking state
[  177.229863][T12841] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.232267][T12841] bridge_slave_0: entered allmulticast mode
[  177.234914][T12841] bridge_slave_0: entered promiscuous mode
[  177.237986][T12841] bridge0: port 2(bridge_slave_1) entered blocking state
[  177.240808][T12841] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.243166][T12841] bridge_slave_1: entered allmulticast mode
[  177.245786][T12841] bridge_slave_1: entered promiscuous mode
[  177.318009][   T12] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.325343][T12841] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  177.331035][T12841] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  177.389453][T12841] team0: Port device team_slave_0 added
[  177.393557][T12841] team0: Port device team_slave_1 added
[  177.444567][   T12] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.454581][T12841] batman_adv: batadv0: Adding interface: batadv_slave_0
[  177.456946][T12841] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  177.465882][T12841] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  177.470287][T12841] batman_adv: batadv0: Adding interface: batadv_slave_1
[  177.472578][T12841] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  177.481469][T12841] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  177.569825][   T12] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.584950][T12841] hsr_slave_0: entered promiscuous mode
[  177.587226][T12841] hsr_slave_1: entered promiscuous mode
[  177.589380][T12841] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  177.591865][T12841] Cannot create hsr debugfs directory
[  177.599900][T12871] ------------[ cut here ]------------
[  177.601798][T12871] WARNING: CPU: 0 PID: 12871 at arch/x86/kvm/lapic.c:3407 kvm_apic_accept_events+0x444/0x4c0
[  177.605643][T12871] Modules linked in:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  177.606880][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  177.606889][   T40] audit: type=1400 audit(1749119754.097:489630): avc:  denied  { write } for  pid=5848 comm="syz-executor" path="pipe:[2538]" dev="pipefs" ino=2538 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  177.607784][T12871] CPU: 0 UID: 0 PID: 12871 Comm: syz.2.2606 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  177.623059][T12871] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  177.626961][T12871] RIP: 0010:kvm_apic_accept_events+0x444/0x4c0
[  177.628941][T12871] Code: 34 03 00 00 02 00 00 00 e9 ae fd ff ff 4c 89 ef e8 a1 74 dc 00 e9 33 fc ff ff e8 67 74 dc 00 e9 17 fd ff ff e8 9d bc 75 00 90 <0f> 0b 90 e9 24 fd ff ff e8 7f 74 dc 00 e9 de fb ff ff e8 45 74 dc
[  177.635899][T12871] RSP: 0018:ffffc90006497a88 EFLAGS: 00010283
[  177.637824][T12871] RAX: 0000000000000bf8 RBX: 0000000000000002 RCX: ffffc90005631000
[  177.640433][T12871] RDX: 0000000000080000 RSI: ffffffff814659b3 RDI: 0000000000000005
[  177.643176][T12871] RBP: ffff888032e96400 R08: 0000000000000005 R09: 0000000000000002
[  177.645894][T12871] R10: 0000000000000002 R11: 0000000000000001 R12: 0000000000000001
[  177.648458][T12871] R13: ffff888032e964e0 R14: ffff88804777a940 R15: ffff88804777a940
[  177.650994][T12871] FS:  00007f6b89f446c0(0000) GS:ffff8880d675a000(0000) knlGS:0000000000000000
[  177.653913][T12871] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  177.656140][T12871] CR2: 0000200000002000 CR3: 00000000443d1000 CR4: 0000000000352ef0
[  177.658991][T12871] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  177.661893][T12871] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  177.664436][T12871] Call Trace:
[  177.665600][T12871]  <TASK>
[  177.666651][T12871]  vcpu_run+0x120b/0x5500
[  177.668153][T12871]  ? kvm_mmu_post_init_vm+0x269/0x370
[  177.669940][T12871]  ? __lock_acquire+0xb8a/0x1c90
[  177.671624][T12871]  ? __pfx_vcpu_run+0x10/0x10
[  177.673199][T12871]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  177.675105][T12871]  ? __local_bh_enable_ip+0xa4/0x120
[  177.676817][T12871]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  177.678735][T12871]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  177.680695][T12871]  kvm_vcpu_ioctl+0x5eb/0x1690
[  177.682564][T12871]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  177.684318][T12871]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  177.686474][T12871]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  177.688888][T12871]  ? hook_file_ioctl_common+0x145/0x410
[  177.690674][T12871]  ? selinux_file_ioctl+0x180/0x270
[  177.692391][T12871]  ? selinux_file_ioctl+0xb4/0x270
[  177.694020][T12871]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  177.695785][T12871]  __x64_sys_ioctl+0x18b/0x210
[  177.697312][T12871]  do_syscall_64+0xcd/0x4c0
[  177.698840][T12871]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.700907][T12871] RIP: 0033:0x7f6b8918e929
[  177.702332][T12871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.708634][T12871] RSP: 002b:00007f6b89f44038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  177.711806][T12871] RAX: ffffffffffffffda RBX: 00007f6b893b5fa0 RCX: 00007f6b8918e929
[  177.714507][T12871] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  177.717043][T12871] RBP: 00007f6b89210b39 R08: 0000000000000000 R09: 0000000000000000
[  177.719536][T12871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  177.722358][T12871] R13: 0000000000000000 R14: 00007f6b893b5fa0 R15: 00007ffebb288178
[  177.724899][T12871]  </TASK>
[  177.725933][T12871] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  177.728230][T12871] CPU: 0 UID: 0 PID: 12871 Comm: syz.2.2606 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  177.731941][T12871] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  177.735373][T12871] Call Trace:
[  177.736531][T12871]  <TASK>
[  177.737630][T12871]  dump_stack_lvl+0x3d/0x1f0
[  177.739158][T12871]  panic+0x71c/0x800
[  177.740540][T12871]  ? __pfx_panic+0x10/0x10
[  177.742093][T12871]  ? show_trace_log_lvl+0x29b/0x3e0
[  177.743818][T12871]  ? kvm_apic_accept_events+0x444/0x4c0
[  177.745919][T12871]  check_panic_on_warn+0xab/0xb0
[  177.747789][T12871]  __warn+0xf6/0x3c0
[  177.749049][T12871]  ? kvm_apic_accept_events+0x444/0x4c0
[  177.750837][T12871]  report_bug+0x3c3/0x580
[  177.752212][T12871]  ? kvm_apic_accept_events+0x444/0x4c0
[  177.753972][T12871]  handle_bug+0x184/0x210
[  177.755366][T12871]  exc_invalid_op+0x17/0x50
[  177.756829][T12871]  asm_exc_invalid_op+0x1a/0x20
[  177.758458][T12871] RIP: 0010:kvm_apic_accept_events+0x444/0x4c0
[  177.760427][T12871] Code: 34 03 00 00 02 00 00 00 e9 ae fd ff ff 4c 89 ef e8 a1 74 dc 00 e9 33 fc ff ff e8 67 74 dc 00 e9 17 fd ff ff e8 9d bc 75 00 90 <0f> 0b 90 e9 24 fd ff ff e8 7f 74 dc 00 e9 de fb ff ff e8 45 74 dc
[  177.766503][T12871] RSP: 0018:ffffc90006497a88 EFLAGS: 00010283
[  177.768460][T12871] RAX: 0000000000000bf8 RBX: 0000000000000002 RCX: ffffc90005631000
[  177.771277][T12871] RDX: 0000000000080000 RSI: ffffffff814659b3 RDI: 0000000000000005
[  177.773960][T12871] RBP: ffff888032e96400 R08: 0000000000000005 R09: 0000000000000002
[  177.776548][T12871] R10: 0000000000000002 R11: 0000000000000001 R12: 0000000000000001
[  177.779143][T12871] R13: ffff888032e964e0 R14: ffff88804777a940 R15: ffff88804777a940
[  177.782033][T12871]  ? kvm_apic_accept_events+0x443/0x4c0
[  177.784121][T12871]  ? kvm_apic_accept_events+0x443/0x4c0
[  177.786125][T12871]  vcpu_run+0x120b/0x5500
[  177.787558][T12871]  ? kvm_mmu_post_init_vm+0x269/0x370
[  177.789249][T12871]  ? __lock_acquire+0xb8a/0x1c90
[  177.791115][T12871]  ? __pfx_vcpu_run+0x10/0x10
[  177.792864][T12871]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  177.794590][T12871]  ? __local_bh_enable_ip+0xa4/0x120
[  177.796222][T12871]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  177.797994][T12871]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  177.799821][T12871]  kvm_vcpu_ioctl+0x5eb/0x1690
[  177.801358][T12871]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  177.803061][T12871]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  177.805136][T12871]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  177.807317][T12871]  ? hook_file_ioctl_common+0x145/0x410
[  177.809104][T12871]  ? selinux_file_ioctl+0x180/0x270
[  177.810833][T12871]  ? selinux_file_ioctl+0xb4/0x270
[  177.812484][T12871]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  177.814212][T12871]  __x64_sys_ioctl+0x18b/0x210
[  177.815826][T12871]  do_syscall_64+0xcd/0x4c0
[  177.817329][T12871]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.819313][T12871] RIP: 0033:0x7f6b8918e929
[  177.820867][T12871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.827385][T12871] RSP: 002b:00007f6b89f44038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  177.830274][T12871] RAX: ffffffffffffffda RBX: 00007f6b893b5fa0 RCX: 00007f6b8918e929
[  177.832944][T12871] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  177.835543][T12871] RBP: 00007f6b89210b39 R08: 0000000000000000 R09: 0000000000000000
[  177.838125][T12871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  177.840757][T12871] R13: 0000000000000000 R14: 00007f6b893b5fa0 R15: 00007ffebb288178
[  177.843340][T12871]  </TASK>
[  177.845045][T12871] Kernel Offset: disabled
[  177.846474][T12871] Rebooting in 86400 seconds..

VM DIAGNOSIS:
10:31:42  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff855b2985 RDI=ffffffff9b082320 RBP=ffffffff9b0822e0 RSP=ffffc900064973e0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000005 R14=ffffffff9b0822e0 R15=ffffffff855b2920
RIP=ffffffff855b29af RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f6b89f446c0 ffffffff 00c00000
GS =0000 ffff8880d675a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000002000 CR3=00000000443d1000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd882698e0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0ad8411b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0ad8411b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0ad8411b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0ad8411b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0ad8411bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0ad8411c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000046 RBX=0000000000000001 RCX=ffffc90003c48001 RDX=0000000000000000
RSI=ffffffff8df06bc5 RDI=ffffffff8c157020 RBP=0000000000000001 RSP=ffffc90003c47018
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000007a2d
R12=ffffffff816acbe4 R13=0000000000000206 R14=ffff88802a282440 R15=ffffc90003c4712c
RIP=ffffffff8b7f243d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d685a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f5ef90e7d60 CR3=0000000039b4c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5ef85846a3 00007f5ef85846a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc068c7f50 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555571234121 0000555571233f00
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555571225eeb 0000555571225d30
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000890000000000 0000012c08068003 0680040290030010 000280030c808080
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100100005ba8008 0001000006080606 011eae0fffffffff ffff04088885bafe
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800010000060806 06011ed402800400 0000041006040672 f60292100002a003
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0f442ec5200f0000 0000000000890000 0000000000012c08 0680030680040290
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030010000280030c 8080800401000002 0806040472fe0010 0005b88208000100
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000000 RBX=0000000000000001 RCX=ffffffff91ceabee RDX=1ffff92000a3adaa
RSI=0000000000000001 RDI=ffffffff911a5728 RBP=ffffc900051d6d60 RSP=ffffc900051d6ca8
R8 =ffffffff91ceabf2 R9 =0000000000000000 R10=0000000000000000 R11=000000000008603c
R12=ffffc900051d6d68 R13=ffffc900051d6d18 R14=0000000000000005 R15=0000000000000000
RIP=ffffffff816acdf4 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
FS =0000 000055558c07a500 ffffffff 00c00000
GS =0000 ffff8880d695a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000004d576000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fefeff00 Opmask01=000000000000007f Opmask02=00000000fffeff7f Opmask03=0000000000000000
Opmask04=00000000ffffdfff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000558939f93c20 0000558939f93c20
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 00007ffeda6e7a70
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffaf63f1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffff0000000000ff
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffff000000 ffff000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 991fcaa30ebe7061 737326ff1205754a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737373a2 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4a414d003d454d 414e564544003d58 45444e494649003d 4550595456454400
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4a414d0018454d 414e564544001858 45444e4946490018 4550595456454400
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 0000000000000000 00007ffeda6e7a70
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 400000000000ffff 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 73616c632f737973 2f002f7375622f73 39732f002f6d9a8b 7379736275732f73
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7f7f7f737f777f77 6f7f7f777f776f7f 7f7f7f7b7f7fffff 7f7f7f7f7d7f6f73
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3d6d756e2e646368 5f796d6d75642030 34313d736365735f 74756f656d69745f
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000005d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff855b2985 RDI=ffffffff9b082320 RBP=ffffffff9b0822e0 RSP=ffffc9000078f880
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=000000000000005d R14=ffffffff9b0822e0 R15=ffffffff855b2920
RIP=ffffffff855b29af RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6a5a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000c00000 CR3=000000002e2a9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efc3f411b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efc3f411b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efc3f411b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efc3f411b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efc3f411bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efc3f411c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efc3f584488 00007efc3f584480 00007efc3f584478 00007efc3f584450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efc400ed100 00007efc3f584440 00007efc3f580004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efc3f584498 00007efc3f584490 00007efc3f584488 00007efc3f584480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000