last executing test programs:

4.157816403s ago: executing program 2 (id=8340):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r0}, 0x10)
r1 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_EXPBUF(r1, 0x2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r2=>0xffffffffffffffff})
r3 = openat$dma_heap(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, &(0x7f0000000040)={0x5, <r4=>r2})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000100)=0x5)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
syz_io_uring_setup(0x1f14, &(0x7f0000000080), 0x0, 0x0)
syz_io_uring_setup(0x5e2, &(0x7f0000000280), 0x0, 0x0)
r7 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=<r8=>0x0)
syz_io_uring_setup(0xa94, &(0x7f0000000380), &(0x7f0000000040), &(0x7f00000005c0))
pselect6(0x40, &(0x7f00000045c0), 0x0, &(0x7f0000004640)={0xf8}, 0x0, 0x0)
syz_io_uring_submit(0x0, r8, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r7, 0x48e9, 0x0, 0x0, 0x0, 0x1e)
sendmsg$SMC_PNETID_ADD(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, r6, 0x1}, 0x14}}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = timerfd_create(0x1, 0x0)
timerfd_settime(r10, 0x0, &(0x7f0000000140), 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_SERVICE(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYRES8=r0, @ANYBLOB="1508996f2157abd97f6c22da78db270e5311d3ce3492c73e0779fa35962019fa6f265720a42928f565897be7ae45b3c6ba610cbf8f044c006e584025623c1c3f75384318f808d91defe0ca02962a531c76f6072da5ad40f6ff3c46884648baf611d98068c8dae0ff04ca3e666edc428fa03cbb117ed98cb7ec4bd4f61344836d9c71b008d2182671080e35feb48b352a101d90cf4a375797df9c6ea3cbca13117a6bc827dd9312c20b4ba8f42898e301829343ee4ce8d3507c6b415644a622f0bf420675d42a2a40beb811eccf8f2cd460dd100723ac56a5db2a225fd9b347cf", @ANYBLOB="01e7000000000000000004", @ANYRES8=r2, @ANYRESOCT, @ANYRES16=r9], 0x18}}, 0x0)

3.934039704s ago: executing program 0 (id=8341):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = socket(0x10, 0x3, 0x0)
ioctl$CDROM_LOCKDOOR(0xffffffffffffffff, 0x5329, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = syz_usb_connect(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0)
ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, &(0x7f0000000080)=0xb309)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000100000000000000010200850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r8 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r8)
ftruncate(r7, 0x1)
r9 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r9, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r7}})
r10 = openat$selinux_create(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_create(r10, &(0x7f0000000180)=@access={'system_u:object_r:semanage_read_lock_t:s0', 0x20, '/usr/sbin/cupsd', 0x20, 0x3}, 0x4f)
syz_usb_ep_write$ath9k_ep2(r6, 0x83, 0x8, &(0x7f0000000080)=ANY=[])
r11 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
ioctl$EVIOCSABS20(r11, 0x401845e0, 0x0)
ioctl$KVM_CREATE_PIT2(r5, 0x4040ae77, &(0x7f0000000040))
ioctl$KVM_REINJECT_CONTROL(r5, 0xae71, &(0x7f0000001440))
bind$nfc_llcp(r3, &(0x7f0000000140)={0x27, 0x0, 0x1, 0x1, 0xa5, 0x2, "0aded80bdeb57a707923a7b5ac969d32b71da3cc76abc0c03e317156515aac4292692d2d58b44022f8dfa6a8e16ef49c166c525e2c41421ca940eb491e02bf", 0x1a}, 0x60)
copy_file_range(r3, &(0x7f00000000c0)=0x5, r1, &(0x7f00000001c0)=0xa, 0x401, 0x0)
write(r3, &(0x7f0000000040)="130000001a001f00030300f9002304000a04d6", 0x13)
setsockopt$packet_drop_memb(r2, 0x107, 0x2, &(0x7f0000000340)={0x0, 0x1, 0x6, @broadcast}, 0x10)

3.281192913s ago: executing program 2 (id=8345):
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001e00)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff4070000000000000480000000000e1ff95000000000000002ba7e1d30cb599e83f040000f300000000bd01212fb56f040026fbfefc41056bd8174b79ed317142fa9ea4158123751c5c652fbc1626cca2a2ad75806150ae0209e62f51ee988e6e06c8206ac6939fc404000000c788b277be1cb79b0a4dcf23d410f6accd3641110bec4e90a634199e07f8f6eb968f200e011ea665c45a3449abe802f5ab3e89cf6cfdffffffb8580218ce740068720000074e8b1715807ea0ca469e46968eea3fd2f73902ebcfcf49822775985bf313405b367e81c700000040000000000000000000005335000000143ea70c2ab40c7cb70c943a6d60d7c4900282e147d08e0af4b29df814f5691db43a5c00000004000000000089faff01210cce39bf405f1e846c12423a164a33e680846f26ad03dd65873d9f87463ad6f7c2e8ee1a39244960b318778f2a047f6d5bc24fef5d7d6155102b1ced1e8019e63c850af895abba14f6fbd7fb5e2a431ab914040000000000010092c9f4609646b6c5c29647d2f950a959cf9938d6dfcb8ed2cbdc2ba9d580609e31c3fa90812a533ce206e7e57a79d6fce424c2200af6c7784a1975fa807de38a3a61e44a9ecab19bdfb15a32a4fd67ce446adb431d07db79240acaf091231b986e77d05d988d6efdffdf48dca02113a38300cabf2b5543ffc166955709009e000000000061629d1822f720ec23812770d72c700a44e113d17088fdd00600000f7889b8c7044f56ff030000000000006cd4970400cac6f45a6922ded2e29514af463f747c08f4010586903500000000000000000000be34cf652e28e700000000000000b24478a78a0f9d640dd782ac0cbc46903243d0d0f4bc7f253d0500000032daaf281c450e64c33aac8ff7e7d1c94c450503009688b008c370494f6734b771546d9552d3bb2da0d000000000000000009125c97f0000f5e1671bc5eb7739daa7820a91cb0e732df2ae1d39c747e00a4fbfe8942fa859cd28bdaa1509309926c77fbcb15ec58b42b4cbaf5a6b649dd5f13cd776e6c7c4b5c4b0de20e033b378553ead4c8cc530b62c36364e6505992209bdbc6203da7a3797246a6adef071102f0aa2c40095ddd05176f5cb8bd99e1ba0f9568f3e3876bba7bf973334e7919a080000000000000004fb996ad919f7e9672ce107000000ad882f2aead166c94500be902ee7dabc768eb9ec13e434aae9df81ecaf5f744f22f2e45afe2c9e8632276cffe5f1fc215c0797d0244cf1ce269d10525745caaa3f77d1b80116cb9a384002421d898913c45a9ac091a0116f4693133138583da5e10b434697b0443b7b4ddfb3ace29e16e5a881336aad0974269a1025e2a9a135c045a17e9a61c3b064e679508af1aec2926627b43bba1229a7466bdca64f514b7911458da09fe8681916d408d753226a83ae2434ccd3fc508216aea86833030f569d61dc998620fcf4eeb92e7bc511df63c53b82514493b8f3c74f44ba184d40e87612024da1a1ebe316923865f037c01d71b5de81121046d84b18acb5cbea7eecad9b6dd46ed83515cd911e0e5f00019be25b5910a3193e90be231a05fd82e6003969c3f081ff1d0eb50a04d14644234828cbb5aaa0ece702abdd425fa25ae04a2315c89064df633700000000d9e5953ea67310993d01000000000000003ac753358791b1490273ca535e05b11d815237743a5b79ad45de2a3c91257f02c2f30f5513662809073710937ed0055b238f466e1442f8ec7a5b394228035039ceeb452dca75f9ff5332b4c4777a58a0aa9a821667c68549e9da89ad4218cea744b332ab232a09cf1ec375627074ce2d3d7619936768a84a1465fff4eedba55955434f132ab7b8840558b3f918d675a79907a72a8252cd3fbaea5d3006a03507838231a335ae759ed25534f2e90a7def4b3d4af7fd47ab1a701e4b7a7dfc1d12775ed0a31bc7b5855880aa767e68196c7aa5ac115724b6cb8fcebb67719eccd87b06b38566cf61ad2f307a79d2ce9801837bf0bd3af0271de700eef2795d28cb0017000000000000000000e052d93194121b774d21a0317d0346078400004652c769fd3d3e661a2fb511164f1502ab2ac4eb3f19c042163e0bdb88b82de384a8055e8b1e24294b0546cce481ff5618b7b9585dbb64d66debf219fa479abf22f3d64fe82e466ea6f27859946e72f80bb1c9cfcde57b79625e2979fe689a5a246cbbdf6ad488f43f46b2536f175f46dfb27d522946727024de0c59ca3305e66825715e5e4cd5b54c1b05c09f04337a76a30373baac3ecec91fd546eb7c32dbecb18a308a0004be94dfab28c2a51dc856df00000000000000000000dfa4c12254f041804f7f7074356789b1d4dd55f3e045a48241a4ce04d06acb2cf11eab759ba78da5d00f26126d4cf2c73e5f94030000000000000000000000c301985d603403592486204054be3fdda91f9e315886941928e5a8bc1a00e69a98c0a8f7192f6ee93cc4124cf4e7610915efc08c834a44e1d685d6835a40b5bc615949cbcd98d0e68d7eef5d32d5fcc7923d7544fa492aa38717481c55e86dcd7816ad8940bd1995369d89ae6eadeb9117e8b94ab422c8d62fc9dfffeb13b4858875dccdbc89572231ef5d6df6a9c55f8df763c7c64da7cc017e1ef90ed4cb9fe6d19b11d4d38239d318016e622b9683b7e46be64dc097982e23462392a0cd05afb2e060fd42ef00dfbd057311aab94f307d10c7a1af0d8e5a0fcb547475d13c0000000000000000f1cc97103d714d1af45790517c4a0f5c6a5024e3359e8d83e3f6edf9e2afb5ab59c7b2b45cfb0a3c1303a98e4ed531ac11cca1cd744b431de74c7cd6533adaa8ec749061b2959d53da626aa189781dc1be4d5c81aebc0cada819895b377d6cf0a7878ba99864ae84464744c605646caf2e06b13eba7ba10acf77d91b2297e9573abb0a4da534d735a223626402b308daf7835780fa6f4e410000000000fb00000000000000000000b14952139bd4bdbccc5e334c49584655c4fce8c5bb7c54664aef6d78429d358aa54b4b49926c4be9ee4659153d9f9f5d07cc4efdab2c5f4503148d0255d0b748366dafe042d78479c21d832e1431ed6d646d13e8e7230300920a5642bbed1dee9b46b6f02e572024ccf3c8edd82660e5d74c52be71d780c300000000d0267ac40d1130a9000000000045f50812a1a0530b02baed19f4c977ac0d397ed6371ec589bf5943690250bdfa5b676d5d53d2ab3aeee1a6910c1a33b6c06c93386768f8b1bb27ec31cffbd4f5c7b0c2e14e4fc6c2f089ab08567254e93780afdddefb3f0d2143ad73c0bf2467859049d46dc5aa91f918a307e7dcaaccd6cbe66e8a04d201392a487f681f82528a800e27d65200ae10e1b5d39a29d8a2c8ed2dfa77e21249b45806733e674a9e8e72ad1cb0d3bfadb00a18a5008ea1e4c8fb93d311f52a476c576a3f65c9bdd4e4b870aed4cb9906a8aa25986e6e30be249d9911114b42b2fb51168e56000a62b794c193f7797ebeb7f8b91c70b6e720af06ecfcfb89a2d5a25f"], &(0x7f0000000140)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r1, 0x18000000000002a0, 0x160, 0x0, &(0x7f0000000380)="b9e403c6630d698cb8a00b04339c", 0x0, 0x7ec, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x4e21, 0x0, @dev={0xfe, 0x80, '\x00', 0x42}}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f0000001640), 0x4)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x8)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x15)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070800000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021400000001e0a01030000000000000000070000000900020073797a31000000000900010073797a3000000000140003801000008008000340000001"], 0xc4}}, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(r4, 0x11a, 0x3, &(0x7f00000000c0), 0x4)
syz_emit_ethernet(0x6e, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaa86082b9827c186dd60cb653e00383a00fc020000ff02000000000000000000000000000103009078000000006097436700002f00fe880000000000000000000000000001fe8000000000000000000000000000aa0000000000000000"], 0x0)
ioctl$X86_IOC_RDMSR_REGS(r3, 0xc02063a0, &(0x7f0000000240)=[0x4000081, 0x5, 0x2, 0x133, 0x6, 0x8, 0x8001, 0xfffffffe])
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001800dd8d000000000000000002000000ff000007000000000600"], 0x3c}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)

2.737523514s ago: executing program 2 (id=8348):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000440)='GPL\x00'}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r0}, 0x10)
r1 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_EXPBUF(r1, 0x2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r2=>0xffffffffffffffff})
r3 = openat$dma_heap(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, &(0x7f0000000040)={0x5, <r4=>r2})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000100)=0x5)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
syz_io_uring_setup(0x0, &(0x7f0000000080), 0x0, 0x0)
syz_io_uring_setup(0x5e2, &(0x7f0000000280), 0x0, 0x0)
r7 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=<r8=>0x0)
syz_io_uring_setup(0xa94, 0x0, &(0x7f0000000040)=<r9=>0x0, &(0x7f00000005c0))
pselect6(0x40, &(0x7f00000045c0), 0x0, &(0x7f0000004640)={0xf8}, 0x0, 0x0)
syz_io_uring_submit(r9, r8, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r7, 0x48e9, 0x0, 0x0, 0x0, 0x1e)
sendmsg$SMC_PNETID_ADD(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, r6, 0x1}, 0x14}}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = timerfd_create(0x1, 0x0)
timerfd_settime(r11, 0x0, &(0x7f0000000140), 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYRES8=r0, @ANYBLOB="1508996f2157abd97f6c22da78db270e5311d3ce3492c73e0779fa35962019fa6f265720a42928f565897be7ae45b3c6ba610cbf8f044c006e584025623c1c3f75384318f808d91defe0ca02962a531c76f6072da5ad40f6ff3c46884648baf611d98068c8dae0ff04ca3e666edc428fa03cbb117ed98cb7ec4bd4f61344836d9c71b008d2182671080e35feb48b352a101d90cf4a375797df9c6ea3cbca13117a6bc827dd9312c20b4ba8f42898e301829343ee4ce8d3507c6b415644a622f0bf420675d42a2a40beb811eccf8f2cd460dd100723ac56a5db2a225fd9b347cf", @ANYBLOB="01e7000000000000000004", @ANYRES8=r2, @ANYRESOCT, @ANYRES16=r10], 0x18}}, 0x0)

2.637854449s ago: executing program 3 (id=8349):
socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
read$FUSE(r1, &(0x7f00000021c0)={0x2020}, 0x2020)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
capset(&(0x7f0000000200)={0x20071026}, &(0x7f0000000040))
r3 = fanotify_init(0x200, 0x0)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000480)=""/4096, 0x34}], 0x8)
fanotify_mark(r3, 0x101, 0x48001051, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
chdir(0x0)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000000)='.\x00', 0x400017e)

2.326877398s ago: executing program 1 (id=8351):
openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0xb32dd6b1d23c2ace, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
capset(0x0, &(0x7f0000000040))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x4, 0x0, 0x0}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f0000000300), 0x0)
r5 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x509481)
ioctl$CEC_ADAP_S_LOG_ADDRS(r5, 0xc05c6104, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000540))
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x8)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r6, 0xc05064a7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)=[0x0], &(0x7f0000000040), 0x0, 0x1, 0x0, 0x0, r7})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r6, 0xc01064ab, 0x0)
r8 = socket$kcm(0x2, 0xd, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="1c00000d0000000000000040000060cd3c680028060087c50000"], 0x5e)

2.042327025s ago: executing program 0 (id=8352):
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@bridge_dellink={0x2c, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x4, 0x0, 0x1, {0x4}}]}]}, 0x2c}}, 0x0)

1.947156866s ago: executing program 0 (id=8353):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000000c0)={'ip_vti0\x00', &(0x7f00000002c0)={'gre0\x00', 0x0, 0x8000, 0x700, 0x80000000, 0x5, {{0x23, 0x4, 0x1, 0xf, 0x8c, 0x66, 0x0, 0x0, 0x4, 0x0, @multicast1, @rand_addr=0x64010102, {[@ra={0x94, 0x4, 0x1}, @lsrr={0x83, 0x7, 0x2f, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp_prespec={0x44, 0x4, 0x81, 0x3, 0x6}, @generic={0x88, 0x3, '\r'}, @timestamp_prespec={0x44, 0xc, 0x89, 0x3, 0x9, [{@broadcast, 0xef3}]}, @generic={0x82, 0x12, "e0dc4b2732753d3fa621aea58dadda20"}, @generic={0x86, 0x3, "e5"}, @lsrr={0x83, 0x3, 0xbc}, @generic={0x7, 0xc, "6056e2c5af975b176b99"}, @timestamp_addr={0x44, 0x34, 0xb0, 0x1, 0x9, [{@multicast1, 0x4}, {@rand_addr=0x64010101, 0x6}, {@dev={0xac, 0x14, 0x14, 0x13}, 0x4}, {@empty, 0x4}, {@multicast1, 0x3}, {@multicast1, 0x15f}]}]}}}}})
timerfd_create(0x7, 0x80000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000040), &(0x7f00000001c0)=0x4)
gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @thr={&(0x7f00000002c0)="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", &(0x7f0000000700)="600f4c845c896d54f47d8f1cd157db9484c1fb37190b29754d34fc9225012e0ca712dc2d8d66e70f83dc8d0428029e0bf436423f437c2a4cd23412bd7a5af1d34c02582eaf88fd8bdccbb9f22600a7006b80ff3434c20339c52a655309c971fdf4c9c832a9759f03045cc188079ea69fe5164cadfc131b2c81e30a1bd5f7057d8d0369bf1c9876ad390435d87d0b0b1f80c6394d758979e987c46e469a88d0d98240df557355c212e314c1dab029f932e0bc2ede9c66cc777b8b53a0815a18e4c293f71776fcea9f498dfdbf4e5f1e9fdffec8802c3de9bd147a28ef4eab1c6eb08434080aa9f00e2a0a3528050a937c"}}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f00000014c0)={0x2, 0x0, &(0x7f0000000140)={&(0x7f0000000640)=ANY=[@ANYBLOB="02180000150000000000000000000000030005000000000002000000e0000001000000000000000008001200000000000000000000000000100000000000000000000000000000007f000001000000000000000000000000fc010000000000000000000000000000030006000000000002000000ffffffff00000000000000000500190000006e1e31c0acc63a216c000002000000ffffffff000000000000000002000000e00000020000000000000000"], 0xa8}}, 0x0)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r2, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz0\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000600)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r3, 0x408c5333, &(0x7f0000000500))
readv(r2, &(0x7f0000000400)=[{&(0x7f0000000480)=""/174, 0xae}], 0x1)
write$UHID_DESTROY(r2, &(0x7f0000000140), 0x4)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mknod$loop(0x0, 0x0, 0x1)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r4 = io_uring_setup(0x29ea, &(0x7f0000000480)={0x0, 0x0, 0x2})
syz_io_uring_setup(0x4919, &(0x7f0000000000)={0x0, 0x8724, 0x1cbe, 0x0, 0x0, 0x0, r4}, 0x0, 0x0)

1.837590062s ago: executing program 2 (id=8354):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r0}, 0x10)
r1 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_EXPBUF(r1, 0x2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r2=>0xffffffffffffffff})
r3 = openat$dma_heap(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, &(0x7f0000000040)={0x5, <r4=>r2})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000100)=0x5)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
syz_io_uring_setup(0x1f14, &(0x7f0000000080), 0x0, 0x0)
syz_io_uring_setup(0x5e2, &(0x7f0000000280), 0x0, 0x0)
r7 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000))
syz_io_uring_setup(0xa94, &(0x7f0000000380), &(0x7f0000000040)=<r8=>0x0, &(0x7f00000005c0))
pselect6(0x40, &(0x7f00000045c0), 0x0, &(0x7f0000004640)={0xf8}, 0x0, 0x0)
syz_io_uring_submit(r8, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r7, 0x48e9, 0x0, 0x0, 0x0, 0x1e)
sendmsg$SMC_PNETID_ADD(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, r6, 0x1}, 0x14}}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = timerfd_create(0x1, 0x0)
timerfd_settime(r10, 0x0, &(0x7f0000000140), 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_SERVICE(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYRES8=r0, @ANYBLOB="1508996f2157abd97f6c22da78db270e5311d3ce3492c73e0779fa35962019fa6f265720a42928f565897be7ae45b3c6ba610cbf8f044c006e584025623c1c3f75384318f808d91defe0ca02962a531c76f6072da5ad40f6ff3c46884648baf611d98068c8dae0ff04ca3e666edc428fa03cbb117ed98cb7ec4bd4f61344836d9c71b008d2182671080e35feb48b352a101d90cf4a375797df9c6ea3cbca13117a6bc827dd9312c20b4ba8f42898e301829343ee4ce8d3507c6b415644a622f0bf420675d42a2a40beb811eccf8f2cd460dd100723ac56a5db2a225fd9b347cf", @ANYBLOB="01e7000000000000000004", @ANYRES8=r2, @ANYRESOCT, @ANYRES16=r9], 0x18}}, 0x0)

1.806439012s ago: executing program 1 (id=8355):
r0 = syz_io_uring_setup(0x16d2, 0x0, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1.755669718s ago: executing program 3 (id=8356):
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c00000010000100"/20, @ANYBLOB="0220000000000000140003006272696467653000000000000000000008000a00", @ANYRES32=r1], 0x3c}}, 0x0)

1.755134576s ago: executing program 1 (id=8357):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f00000004c0)={'batadv0\x00', &(0x7f0000000480)=@ethtool_gstrings={0x1b, 0x1}})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000480)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f00000000c0), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f0000000480)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f00000001c0), 0x12)
readv(r5, &(0x7f00000007c0)=[{&(0x7f0000001740)=""/153, 0x99}, {&(0x7f0000000500)=""/197, 0xc5}, {&(0x7f00000003c0)=""/165, 0xa5}, {&(0x7f0000000600)=""/213, 0xd5}, {&(0x7f0000000700)=""/185, 0xb9}], 0x5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000080)='afs_protocol_error\x00'}, 0x10)
userfaultfd(0x80801)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
fsopen(&(0x7f0000004240)='fuseblk\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0x37}, 0x24)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.current\x00', 0x275a, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0xb82, 0x9fe0, 0x800, 0x28, r8, 0x2000001, '\x00', 0x0, r8, 0x3, 0x2, 0x2, 0x2}, 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='ext4_ext_handle_unwritten_extents\x00', r10}, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)

1.754623059s ago: executing program 3 (id=8358):
socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
read$FUSE(r1, &(0x7f00000021c0)={0x2020}, 0x2020)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
capset(&(0x7f0000000200)={0x20071026}, &(0x7f0000000040))
r3 = fanotify_init(0x200, 0x0)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000480)=""/4096, 0x34}], 0x8)
fanotify_mark(r3, 0x101, 0x48001051, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
inotify_add_watch(0xffffffffffffffff, 0x0, 0x400017e)

1.437814225s ago: executing program 1 (id=8359):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = userfaultfd(0x1)
ioperm(0x0, 0x0, 0x1)
r1 = getpid()
syz_pidfd_open(0x0, 0x0)
r2 = open(&(0x7f0000000140)='.\x00', 0x0, 0x0)
r3 = dup2(r2, r2)
openat$cgroup_int(r3, 0x0, 0x657, 0xfeffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, &(0x7f0000000180))
syz_io_uring_setup(0x67fd, &(0x7f0000000100), 0x0, 0x0)
r5 = io_uring_setup(0x4d63, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
getpid()
openat$vimc1(0xffffff9c, &(0x7f0000000280), 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x13, 0x3, 0x3, 0x5, 0x1001, r2, 0x18, '\x00', 0x0, r2, 0x2, 0x0, 0x3}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x8, 0x8, 0x0, r6}, 0x48)
ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000080)={&(0x7f0000c15000/0x1000)=nil, &(0x7f0000508000/0x4000)=nil, 0x1000})

1.057969006s ago: executing program 0 (id=8360):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = syz_io_uring_setup(0x5e9f, &(0x7f0000000280)={0x0, 0x0, 0x10100, 0x80}, &(0x7f0000000300), &(0x7f0000000000)=<r2=>0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x8, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000085000000a000000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_io_uring_setup(0x4464, &(0x7f0000000080), &(0x7f00000003c0)=<r4=>0x0, &(0x7f0000000040))
syz_io_uring_submit(r4, r2, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2a, 0x2, r0})
io_uring_enter(r1, 0xb15, 0x0, 0x0, 0x0, 0x0)
capset(0x0, 0x0)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030021000b63d25a80648c2594f90124fc60350c030b022e0009083582c137153e370248078000f01708d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x3000}, 0x0)
r6 = getpid()
capset(&(0x7f00000000c0)={0x20071026, r6}, &(0x7f0000000100)={0xffff6e9d, 0x3ff, 0x4, 0xe5b9, 0x1000, 0x7fffffff})

937.151871ms ago: executing program 2 (id=8361):
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@bridge_dellink={0x2c, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x4, 0x0, 0x1, {0x4}}]}]}, 0x2c}}, 0x0)

936.628407ms ago: executing program 2 (id=8362):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = userfaultfd(0x1)
ioperm(0x0, 0x0, 0x1)
r1 = getpid()
syz_pidfd_open(0x0, 0x0)
r2 = open(&(0x7f0000000140)='.\x00', 0x0, 0x0)
r3 = dup2(r2, r2)
openat$cgroup_int(r3, 0x0, 0x657, 0xfeffffff)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, &(0x7f0000000180))
syz_io_uring_setup(0x67fd, &(0x7f0000000100), 0x0, 0x0)
r5 = io_uring_setup(0x4d63, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
getpid()
openat$vimc1(0xffffff9c, &(0x7f0000000280), 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x13, 0x3, 0x3, 0x5, 0x1001, r2, 0x18, '\x00', 0x0, r2, 0x2, 0x0, 0x3}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x8, 0x8, 0x0, r6}, 0x48)
ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000080)={&(0x7f0000c15000/0x1000)=nil, &(0x7f0000508000/0x4000)=nil, 0x1000})

827.832006ms ago: executing program 3 (id=8363):
socket$xdp(0x2c, 0x3, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000000)={&(0x7f0000000200)})
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000140)='virtio_transport_alloc_pkt\x00'}, 0x10)
syz_open_dev$sndmidi(&(0x7f0000000300), 0xb5, 0x244001)
bind$x25(0xffffffffffffffff, &(0x7f0000000240), 0x12)
syz_emit_ethernet(0x2a, &(0x7f0000000000)=ANY=[@ANYBLOB="9b43a4aaaaaaaa00080045000500000000000000907800000000ffffffffe000907800000000"], 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000016c0), 0x200400, 0x0)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)

777.786655ms ago: executing program 3 (id=8364):
openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0xb32dd6b1d23c2ace, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
capset(0x0, &(0x7f0000000040))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x4, 0x0, 0x0}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f0000000300), 0x0)
r5 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x509481)
ioctl$CEC_ADAP_S_LOG_ADDRS(r5, 0xc05c6104, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000540))
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x8)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r6, 0xc05064a7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)=[0x0], &(0x7f0000000040), 0x0, 0x1, 0x0, 0x0, r7})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r6, 0xc01064ab, 0x0)
r8 = socket$kcm(0x2, 0xd, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="1c00000d0000000000000040000060cd3c680028060087c50000"], 0x5e)

138.998062ms ago: executing program 0 (id=8365):
r0 = syz_io_uring_setup(0x16d2, 0x0, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

7.569431ms ago: executing program 1 (id=8366):
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c00000010000100"/20, @ANYBLOB="0220000000000000140003006272696467653000000000000000000008000a00", @ANYRES32=r1], 0x3c}}, 0x0)

7.17035ms ago: executing program 0 (id=8367):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f00000004c0)={'batadv0\x00', &(0x7f0000000480)=@ethtool_gstrings={0x1b, 0x1}})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000480)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f00000000c0), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f0000000480)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f00000001c0), 0x12)
readv(r5, &(0x7f00000007c0)=[{&(0x7f0000001740)=""/153, 0x99}, {&(0x7f0000000500)=""/197, 0xc5}, {&(0x7f00000003c0)=""/165, 0xa5}, {&(0x7f0000000600)=""/213, 0xd5}, {&(0x7f0000000700)=""/185, 0xb9}], 0x5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000080)='afs_protocol_error\x00'}, 0x10)
userfaultfd(0x80801)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
fsopen(&(0x7f0000004240)='fuseblk\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0x37}, 0x24)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.current\x00', 0x275a, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0xb82, 0x9fe0, 0x800, 0x28, r8, 0x2000001, '\x00', 0x0, r8, 0x3, 0x2, 0x2, 0x2}, 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='ext4_ext_handle_unwritten_extents\x00', r10}, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)

505.292µs ago: executing program 3 (id=8368):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
r1 = memfd_create(&(0x7f0000000140)=' h\xbae\xf4`\x94\xb2n\xea\x92\xd7\x9cl$\x81tF,g\xa6\xbe\xf1\x82\x8d{\xea\xa8\xa2`\x06k\t\xa16q\xb7\xd4\x96\x98\xb5\x9d\xb3\xf4\xad\xecN$\xe6\x0f\x8cV\xd6\x88\xdc\xc9\x90\x16*\x84=\xab\xb5\x99\x1d\x8d^\x99\xa3\xf9\xe8\xee\xf5\\\a\x00\x00\x00\x00\x00\x00\x00\x98/\xbd\xc1\xafg\xc4\v6\x1d5\xc0V\xae\xae\xbb\x13\xf9\xc6\x99\'\xe4D\x7f\x89\xab:8\" \x97\xf2\xb7\xe6W\xa5\xfb:\x8e)\f\xc9\xc6\xe6\xe9\xef\xacf\xa0\":\xdc\xbb\x14\xb0.\xef$p%\f\x95)Z\x06\xbf\xf6\xbd\x8d\xb0\xdb\x01x\x88\xb5\xa9\xf24\xd8\xd2\x17L\n\xb1&y$\x17\xfb\xe7\x9dKs\x15e \xa5D;', 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x12, r1, 0x0)
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}, 0x1})
ioctl$UFFDIO_ZEROPAGE(r2, 0xc020aa04, &(0x7f0000000080)={{&(0x7f0000ffc000/0x1000)=nil, 0x1000}})
connect$rose(r0, &(0x7f00000006c0)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x1, @bcast}, 0x1c)

0s ago: executing program 1 (id=8369):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x10)
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bind$phonet(0xffffffffffffffff, &(0x7f0000000040)={0x23, 0x4}, 0x10)
socket$phonet_pipe(0x23, 0x5, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0x10, 0x0, &(0x7f0000000240))
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$OSF_MSG_REMOVE(0xffffffffffffffff, 0x0, 0x841)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, 0x0, 0x4000846)
write$binfmt_script(r0, &(0x7f0000000140), 0x208e24b)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(crct10dif-generic)\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendfile(r2, r0, 0x0, 0x7ffff000)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='cgroup\x00')
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008c}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080))
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_open_dev$cec(&(0x7f0000000080), 0x0, 0x0)

kernel console output (not intermixed with test programs):

 unknown main item tag 0x0
[  801.595572][T19588] hid-generic 0000:0000:0000.003F: unknown main item tag 0x0
[  801.599427][T19588] hid-generic 0000:0000:0000.003F: unknown main item tag 0x0
[  801.603753][T19588] hid-generic 0000:0000:0000.003F: unknown main item tag 0x0
[  801.606339][T19588] hid-generic 0000:0000:0000.003F: unknown main item tag 0x0
[  801.612802][T19588] hid-generic 0000:0000:0000.003F: unknown main item tag 0x0
[  801.616192][T19588] hid-generic 0000:0000:0000.003F: unknown main item tag 0x0
[  801.622720][T19588] hid-generic 0000:0000:0000.003F: unknown main item tag 0x0
[  801.627897][T19588] hid-generic 0000:0000:0000.003F: collection stack underflow
[  801.632420][T19588] hid-generic 0000:0000:0000.003F: item 0 0 0 12 parsing failed
[  801.638229][T19588] hid-generic 0000:0000:0000.003F: probe with driver hid-generic failed with error -22
[  801.921503][T26305] block nbd0: shutting down sockets
[  803.416031][T26370] netlink: 'syz.2.7165': attribute type 10 has an invalid length.
[  803.520654][T21843] hid-generic 0000:0000:0000.0040: unknown main item tag 0x0
[  803.524724][T21843] hid-generic 0000:0000:0000.0040: unknown main item tag 0x0
[  803.528173][T21843] hid-generic 0000:0000:0000.0040: unknown main item tag 0x0
[  803.531239][T21843] hid-generic 0000:0000:0000.0040: unknown main item tag 0x0
[  803.534312][T21843] hid-generic 0000:0000:0000.0040: unknown main item tag 0x0
[  803.537942][T21843] hid-generic 0000:0000:0000.0040: unknown main item tag 0x0
[  803.541081][T21843] hid-generic 0000:0000:0000.0040: unknown main item tag 0x0
[  803.544086][T21843] hid-generic 0000:0000:0000.0040: unknown main item tag 0x0
[  803.547734][T21843] hid-generic 0000:0000:0000.0040: unknown main item tag 0x0
[  803.550710][T21843] hid-generic 0000:0000:0000.0040: collection stack underflow
[  803.553700][T21843] hid-generic 0000:0000:0000.0040: item 0 0 0 12 parsing failed
[  803.558148][T21843] hid-generic 0000:0000:0000.0040: probe with driver hid-generic failed with error -22
[  803.791783][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  805.592296][T26408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7175'.
[  805.596240][T26408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7175'.
[  805.608409][T26408] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7175'.
[  806.476116][T26413] block nbd2: shutting down sockets
[  807.843010][T26450] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7186'.
[  807.847247][T26450] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7186'.
[  807.853194][T26450] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7186'.
[  809.776693][T26489] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7198'.
[  809.797162][T26489] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7198'.
[  809.816732][T26489] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7198'.
[  810.942819][T21927] hid-generic 0000:0000:0000.0041: unknown main item tag 0x0
[  810.946031][T21927] hid-generic 0000:0000:0000.0041: unknown main item tag 0x0
[  810.949638][T21927] hid-generic 0000:0000:0000.0041: unknown main item tag 0x0
[  810.952844][T21927] hid-generic 0000:0000:0000.0041: unknown main item tag 0x0
[  810.956011][T21927] hid-generic 0000:0000:0000.0041: unknown main item tag 0x0
[  810.959623][T21927] hid-generic 0000:0000:0000.0041: unknown main item tag 0x0
[  810.962734][T21927] hid-generic 0000:0000:0000.0041: unknown main item tag 0x0
[  810.965871][T21927] hid-generic 0000:0000:0000.0041: unknown main item tag 0x0
[  810.969421][T21927] hid-generic 0000:0000:0000.0041: unknown main item tag 0x0
[  810.972608][T21927] hid-generic 0000:0000:0000.0041: collection stack underflow
[  810.975604][T21927] hid-generic 0000:0000:0000.0041: item 0 0 0 12 parsing failed
[  810.978867][T21927] hid-generic 0000:0000:0000.0041: probe with driver hid-generic failed with error -22
[  811.268564][T26503] block nbd1: shutting down sockets
[  811.489137][T26531] netlink: 'syz.2.7207': attribute type 10 has an invalid length.
[  812.183737][T26547] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7212'.
[  812.187779][T26547] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7212'.
[  812.198678][T26547] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7212'.
[  812.377286][T26532] block nbd3: shutting down sockets
[  812.619339][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  813.167882][   T39] audit: type=1326 audit(1722459840.080:3134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26553 comm="syz.1.7214" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  813.352614][ T5390] hid-generic 0000:0000:0000.0042: unknown main item tag 0x0
[  813.355743][ T5390] hid-generic 0000:0000:0000.0042: unknown main item tag 0x0
[  813.365986][ T5390] hid-generic 0000:0000:0000.0042: unknown main item tag 0x0
[  813.372731][ T5390] hid-generic 0000:0000:0000.0042: unknown main item tag 0x0
[  813.376002][ T5390] hid-generic 0000:0000:0000.0042: unknown main item tag 0x0
[  813.379895][ T5390] hid-generic 0000:0000:0000.0042: unknown main item tag 0x0
[  813.385815][ T5390] hid-generic 0000:0000:0000.0042: unknown main item tag 0x0
[  813.392140][ T5390] hid-generic 0000:0000:0000.0042: unknown main item tag 0x0
[  813.400254][ T5390] hid-generic 0000:0000:0000.0042: unknown main item tag 0x0
[  813.403020][ T5390] hid-generic 0000:0000:0000.0042: collection stack underflow
[  813.406007][ T5390] hid-generic 0000:0000:0000.0042: item 0 0 0 12 parsing failed
[  813.428891][ T5390] hid-generic 0000:0000:0000.0042: probe with driver hid-generic failed with error -22
[  814.109822][ T1379] ieee802154 phy0 wpan0: encryption failed: -22
[  814.112813][ T1379] ieee802154 phy1 wpan1: encryption failed: -22
[  814.526283][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  814.775167][T26609] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7229'.
[  814.781205][T26609] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7229'.
[  814.793068][T26609] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7229'.
[  817.561260][T26656] FAULT_INJECTION: forcing a failure.
[  817.561260][T26656] name failslab, interval 1, probability 0, space 0, times 0
[  817.566078][T26656] CPU: 2 UID: 0 PID: 26656 Comm: syz.1.7241 Not tainted 6.11.0-rc1-syzkaller-00062-ge4fc196f5ba3 #0
[  817.570103][T26656] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  817.573734][T26656] Call Trace:
[  817.574890][T26656]  <TASK>
[  817.575903][T26656]  dump_stack_lvl+0x16c/0x1f0
[  817.577548][T26656]  should_fail_ex+0x497/0x5b0
[  817.579168][T26656]  ? fs_reclaim_acquire+0xae/0x160
[  817.580906][T26656]  should_failslab+0xc2/0x120
[  817.582547][T26656]  kmem_cache_alloc_node_noprof+0x71/0x310
[  817.584535][T26656]  ? __alloc_skb+0x2b1/0x380
[  817.586136][T26656]  __alloc_skb+0x2b1/0x380
[  817.587696][T26656]  ? __pfx___alloc_skb+0x10/0x10
[  817.589398][T26656]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  817.591422][T26656]  netlink_alloc_large_skb+0x69/0x130
[  817.593260][T26656]  netlink_sendmsg+0x689/0xd70
[  817.594881][T26656]  ? __pfx_netlink_sendmsg+0x10/0x10
[  817.596675][T26656]  ? __import_iovec+0x1fd/0x6e0
[  817.598462][T26656]  ____sys_sendmsg+0xab5/0xc90
[  817.600091][T26656]  ? copy_msghdr_from_user+0x10b/0x160
[  817.601950][T26656]  ? __pfx_____sys_sendmsg+0x10/0x10
[  817.603738][T26656]  ? find_held_lock+0x2d/0x110
[  817.605375][T26656]  ? __pfx___lock_acquire+0x10/0x10
[  817.607172][T26656]  ___sys_sendmsg+0x135/0x1e0
[  817.608778][T26656]  ? __pfx____sys_sendmsg+0x10/0x10
[  817.610539][T26656]  ? ksys_write+0x21c/0x260
[  817.612063][T26656]  ? __fget_light+0x173/0x210
[  817.613670][T26656]  __sys_sendmsg+0x117/0x1f0
[  817.615254][T26656]  ? __pfx___sys_sendmsg+0x10/0x10
[  817.616995][T26656]  do_syscall_64+0xcd/0x250
[  817.618527][T26656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  817.620527][T26656] RIP: 0033:0x7f7b111773b9
[  817.622049][T26656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  817.628496][T26656] RSP: 002b:00007f7b11fd3048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  817.631275][T26656] RAX: ffffffffffffffda RBX: 00007f7b11306130 RCX: 00007f7b111773b9
[  817.633933][T26656] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004
[  817.636572][T26656] RBP: 00007f7b11fd30a0 R08: 0000000000000000 R09: 0000000000000000
[  817.639160][T26656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  817.641813][T26656] R13: 000000000000006e R14: 00007f7b11306130 R15: 00007ffdae642fe8
[  817.644472][T26656]  </TASK>
[  817.818548][T26661] blktrace: Concurrent blktraces are not allowed on loop3
[  818.440683][T26667] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7245'.
[  818.444698][T26667] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7245'.
[  818.492801][T26667] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7245'.
[  818.685022][T26675] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7248'.
[  818.691441][T26675] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7248'.
[  818.710409][T26675] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7248'.
[  819.041820][ T5417] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0
[  819.045261][ T5417] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0
[  819.049119][ T5417] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0
[  819.052004][ T5417] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0
[  819.055107][ T5417] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0
[  819.058869][ T5417] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0
[  819.061821][ T5417] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0
[  819.064714][ T5417] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0
[  819.072332][ T5417] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0
[  819.075479][ T5417] hid-generic 0000:0000:0000.0043: collection stack underflow
[  819.078742][ T5417] hid-generic 0000:0000:0000.0043: item 0 0 0 12 parsing failed
[  819.082677][ T5417] hid-generic 0000:0000:0000.0043: probe with driver hid-generic failed with error -22
[  819.360195][T26699] blktrace: Concurrent blktraces are not allowed on loop3
[  820.421204][T26718] blktrace: Concurrent blktraces are not allowed on loop3
[  820.711430][T26721] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7258'.
[  820.725307][T26721] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7258'.
[  820.773649][T26703] block nbd3: shutting down sockets
[  820.774023][T26722] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7258'.
[  821.258689][T26727] raw_sendmsg: syz.2.7259 forgot to set AF_INET. Fix it!
[  821.723386][T26739] gfs2: not a GFS2 filesystem
[  823.387613][T26762] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7269'.
[  823.569630][T26753] block nbd0: shutting down sockets
[  824.011785][ T5390] hid-generic 0000:0000:0000.0044: unknown main item tag 0x0
[  824.014633][ T5390] hid-generic 0000:0000:0000.0044: unknown main item tag 0x0
[  824.019355][ T5390] hid-generic 0000:0000:0000.0044: unknown main item tag 0x0
[  824.021948][ T5390] hid-generic 0000:0000:0000.0044: unknown main item tag 0x0
[  824.024479][ T5390] hid-generic 0000:0000:0000.0044: unknown main item tag 0x0
[  824.029715][ T5390] hid-generic 0000:0000:0000.0044: unknown main item tag 0x0
[  824.032943][ T5390] hid-generic 0000:0000:0000.0044: unknown main item tag 0x0
[  824.037327][ T5390] hid-generic 0000:0000:0000.0044: unknown main item tag 0x0
[  824.040544][ T5390] hid-generic 0000:0000:0000.0044: unknown main item tag 0x0
[  824.043778][ T5390] hid-generic 0000:0000:0000.0044: collection stack underflow
[  824.051787][ T5390] hid-generic 0000:0000:0000.0044: item 0 0 0 12 parsing failed
[  824.067777][ T5390] hid-generic 0000:0000:0000.0044: probe with driver hid-generic failed with error -22
[  824.122528][T26773] __nla_validate_parse: 2 callbacks suppressed
[  824.125496][T26773] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7271'.
[  824.131856][T26773] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7271'.
[  824.162712][T26773] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7271'.
[  824.697250][T26768] block nbd3: shutting down sockets
[  825.703336][T26813] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7281'.
[  825.708554][T26813] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7281'.
[  825.716354][T26813] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7281'.
[  825.748035][T26814] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7282'.
[  825.752286][T26814] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7282'.
[  825.769472][T26814] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7282'.
[  826.090496][ T5390] hid-generic 0000:0000:0000.0045: unknown main item tag 0x0
[  826.093718][ T5390] hid-generic 0000:0000:0000.0045: unknown main item tag 0x0
[  826.096951][ T5390] hid-generic 0000:0000:0000.0045: unknown main item tag 0x0
[  826.100065][ T5390] hid-generic 0000:0000:0000.0045: unknown main item tag 0x0
[  826.102596][ T5390] hid-generic 0000:0000:0000.0045: unknown main item tag 0x0
[  826.105882][ T5390] hid-generic 0000:0000:0000.0045: unknown main item tag 0x0
[  826.110013][ T5390] hid-generic 0000:0000:0000.0045: unknown main item tag 0x0
[  826.113184][ T5390] hid-generic 0000:0000:0000.0045: unknown main item tag 0x0
[  826.116269][ T5390] hid-generic 0000:0000:0000.0045: unknown main item tag 0x0
[  826.122069][ T5390] hid-generic 0000:0000:0000.0045: collection stack underflow
[  826.127342][ T5390] hid-generic 0000:0000:0000.0045: item 0 0 0 12 parsing failed
[  826.131033][ T5390] hid-generic 0000:0000:0000.0045: probe with driver hid-generic failed with error -22
[  826.732455][   T39] audit: type=1326 audit(1722459853.640:3135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26818 comm="syz.3.7283" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  826.975273][T26840] gfs2: not a GFS2 filesystem
[  828.154188][T26865] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7293'.
[  828.234304][T26866] blktrace: Concurrent blktraces are not allowed on loop3
[  828.769649][T26853] block nbd3: shutting down sockets
[  829.133068][T26879] __nla_validate_parse: 5 callbacks suppressed
[  829.133099][T26879] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7298'.
[  829.141578][T26879] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7298'.
[  829.160193][T26879] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7298'.
[  829.193094][   T39] audit: type=1326 audit(1722459856.100:3136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26881 comm="syz.1.7299" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x0
[  829.451069][   T39] audit: type=1326 audit(1722459856.360:3137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26870 comm="syz.2.7296" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  829.462279][   T39] audit: type=1326 audit(1722459856.360:3138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26870 comm="syz.2.7296" exe="/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  829.479978][T26886] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7300'.
[  829.483974][T26886] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7300'.
[  829.509339][T26886] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7300'.
[  829.592109][T26890] gfs2: not a GFS2 filesystem
[  830.240858][T26902] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7304'.
[  830.246758][T26902] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7304'.
[  830.260945][T26902] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7304'.
[  830.704066][T26913] netlink: 'syz.0.7308': attribute type 11 has an invalid length.
[  830.827074][T26909] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7306'.
[  833.337583][T26950] netlink: 'syz.3.7318': attribute type 11 has an invalid length.
[  834.133143][T26960] block nbd0: shutting down sockets
[  834.509017][T26981] blktrace: Concurrent blktraces are not allowed on loop3
[  835.466631][T22432] Bluetooth: hci1: command 0x0406 tx timeout
[  835.776074][T27002] team0: Device bridge0 is already an upper device of the team interface
[  836.505229][   T39] audit: type=1326 audit(1722459863.410:3139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27000 comm="syz.3.7332" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  836.614867][T27018] FAULT_INJECTION: forcing a failure.
[  836.614867][T27018] name failslab, interval 1, probability 0, space 0, times 0
[  836.622319][T27018] CPU: 3 UID: 0 PID: 27018 Comm: syz.1.7335 Not tainted 6.11.0-rc1-syzkaller-00062-ge4fc196f5ba3 #0
[  836.626722][T27018] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  836.631071][T27018] Call Trace:
[  836.632494][T27018]  <TASK>
[  836.633681][T27018]  dump_stack_lvl+0x16c/0x1f0
[  836.635568][T27018]  should_fail_ex+0x497/0x5b0
[  836.637372][T27018]  ? fs_reclaim_acquire+0xae/0x160
[  836.639508][T27018]  should_failslab+0xc2/0x120
[  836.641479][T27018]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  836.643696][T27018]  ? alloc_empty_file+0x73/0x1e0
[  836.645758][T27018]  ? __lock_acquire+0xbdd/0x3cb0
[  836.647800][T27018]  alloc_empty_file+0x73/0x1e0
[  836.649910][T27018]  path_openat+0xe0/0x2d20
[  836.651815][T27018]  ? hlock_class+0x4e/0x130
[  836.653590][T27018]  ? __lock_acquire+0x1620/0x3cb0
[  836.655647][T27018]  ? __pfx_path_openat+0x10/0x10
[  836.657732][T27018]  ? __pfx___lock_acquire+0x10/0x10
[  836.660015][T27018]  ? find_held_lock+0x2d/0x110
[  836.662128][T27018]  do_filp_open+0x1dc/0x430
[  836.664101][T27018]  ? __pfx_do_filp_open+0x10/0x10
[  836.666195][T27018]  ? find_held_lock+0x2d/0x110
[  836.667806][T27018]  ? _raw_spin_unlock+0x28/0x50
[  836.669866][T27018]  ? alloc_fd+0x2d7/0x6c0
[  836.671716][T27018]  do_sys_openat2+0x17a/0x1e0
[  836.673464][T27018]  ? __pfx_do_sys_openat2+0x10/0x10
[  836.675403][T27018]  __x64_sys_openat+0x175/0x210
[  836.677365][T27018]  ? __pfx___x64_sys_openat+0x10/0x10
[  836.679678][T27018]  ? ksys_write+0x1ab/0x260
[  836.681502][T27018]  do_syscall_64+0xcd/0x250
[  836.683339][T27018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  836.685783][T27018] RIP: 0033:0x7f7b11175d50
[  836.687553][T27018] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8e 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8e 02 00 8b 44
[  836.695602][T27018] RSP: 002b:00007f7b11ff3b80 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  836.699255][T27018] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f7b11175d50
[  836.702563][T27018] RDX: 0000000000000002 RSI: 00007f7b11ff3c20 RDI: 00000000ffffff9c
[  836.705951][T27018] RBP: 00007f7b11ff3c20 R08: 0000000000000000 R09: 00236f656469762f
[  836.709358][T27018] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  836.712814][T27018] R13: 000000000000006e R14: 00007f7b11306058 R15: 00007ffdae642fe8
[  836.715667][T27018]  </TASK>
[  836.732808][T27018] x_tables: duplicate underflow at hook 2
[  836.965173][T27006] block nbd0: shutting down sockets
[  838.150026][T27038] __nla_validate_parse: 5 callbacks suppressed
[  838.150044][T27038] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7339'.
[  838.156688][T27038] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7339'.
[  838.162767][T27038] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7339'.
[  838.346042][   T39] audit: type=1326 audit(1722459865.250:3140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27027 comm="syz.0.7338" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc819773b9 code=0x7fc00000
[  839.292085][T27045] block nbd3: shutting down sockets
[  839.756579][T27060] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7345'.
[  839.761203][T27060] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7345'.
[  839.812694][T27060] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7345'.
[  839.872082][   T39] audit: type=1326 audit(1722459866.780:3141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27054 comm="syz.2.7344" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  840.792859][T27080] fuse: Bad value for 'user_id'
[  840.795047][T27080] fuse: Bad value for 'user_id'
[  840.809778][   T39] audit: type=1400 audit(1722459867.720:3142): avc:  denied  { remount } for  pid=27075 comm="syz.1.7349" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  841.727307][T27092] team0: Device bridge0 is already an upper device of the team interface
[  842.290169][T27103] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7354'.
[  842.356646][T27103] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7354'.
[  842.388392][T27103] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7354'.
[  842.409567][   T39] audit: type=1326 audit(1722459869.320:3143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27085 comm="syz.1.7352" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  842.561917][T27109] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=51 sclass=netlink_route_socket pid=27109 comm=syz.1.7357
[  843.739415][T27140] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=51 sclass=netlink_route_socket pid=27140 comm=syz.3.7366
[  843.740469][T27136] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7365'.
[  843.750219][T27136] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7365'.
[  843.760611][T27136] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7365'.
[  843.842029][   T39] audit: type=1400 audit(1722459870.750:3144): avc:  denied  { write } for  pid=27144 comm="syz.3.7368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  844.274723][ T5417] hid-generic 0000:0000:0000.0046: unknown main item tag 0x0
[  844.278156][ T5417] hid-generic 0000:0000:0000.0046: unknown main item tag 0x0
[  844.281297][ T5417] hid-generic 0000:0000:0000.0046: unknown main item tag 0x0
[  844.283888][ T5417] hid-generic 0000:0000:0000.0046: unknown main item tag 0x0
[  844.288840][ T5417] hid-generic 0000:0000:0000.0046: unknown main item tag 0x0
[  844.292518][ T5417] hid-generic 0000:0000:0000.0046: unknown main item tag 0x0
[  844.295774][ T5417] hid-generic 0000:0000:0000.0046: unknown main item tag 0x0
[  844.298679][ T5417] hid-generic 0000:0000:0000.0046: unknown main item tag 0x0
[  844.301798][ T5417] hid-generic 0000:0000:0000.0046: unknown main item tag 0x0
[  844.304724][ T5417] hid-generic 0000:0000:0000.0046: collection stack underflow
[  844.310002][ T5417] hid-generic 0000:0000:0000.0046: item 0 0 0 12 parsing failed
[  844.312938][ T5417] hid-generic 0000:0000:0000.0046: probe with driver hid-generic failed with error -22
[  844.590817][T27162] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7372'.
[  844.594790][T27162] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7372'.
[  844.603769][T27162] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7372'.
[  844.788569][   T39] audit: type=1326 audit(1722459871.700:3145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27146 comm="syz.3.7369" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  845.179580][T27177] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=51 sclass=netlink_route_socket pid=27177 comm=syz.0.7377
[  845.362561][T27180] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7378'.
[  845.366504][T27180] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7378'.
[  845.377238][T27180] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7378'.
[  845.615429][   T39] audit: type=1326 audit(1722459872.520:3146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27164 comm="syz.2.7373" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  845.976191][T27193] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7382'.
[  846.278772][T27187] block nbd2: shutting down sockets
[  846.412739][   T57] hid-generic 0000:0000:0000.0047: unknown main item tag 0x0
[  846.419938][   T57] hid-generic 0000:0000:0000.0047: unknown main item tag 0x0
[  846.423836][   T57] hid-generic 0000:0000:0000.0047: unknown main item tag 0x0
[  846.427528][   T57] hid-generic 0000:0000:0000.0047: unknown main item tag 0x0
[  846.430985][   T57] hid-generic 0000:0000:0000.0047: unknown main item tag 0x0
[  846.435534][   T57] hid-generic 0000:0000:0000.0047: unknown main item tag 0x0
[  846.440081][   T57] hid-generic 0000:0000:0000.0047: unknown main item tag 0x0
[  846.443628][   T57] hid-generic 0000:0000:0000.0047: unknown main item tag 0x0
[  846.447092][   T57] hid-generic 0000:0000:0000.0047: unknown main item tag 0x0
[  846.451632][   T57] hid-generic 0000:0000:0000.0047: collection stack underflow
[  846.456244][   T57] hid-generic 0000:0000:0000.0047: item 0 0 0 12 parsing failed
[  846.461827][   T57] hid-generic 0000:0000:0000.0047: probe with driver hid-generic failed with error -22
[  846.475575][T27212] blktrace: Concurrent blktraces are not allowed on loop3
[  846.646723][T27194] block nbd1: shutting down sockets
[  846.742298][   T39] audit: type=1326 audit(1722459873.650:3147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27200 comm="syz.0.7384" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc819773b9 code=0x7fc00000
[  846.837866][T27220] syz.0.7388 (27220) used greatest stack depth: 20672 bytes left
[  847.722494][T27236] ptrace attach of ""[27237] was attempted by "/syz-executor exec"[27236]
[  847.838361][   T39] audit: type=1326 audit(1722459874.750:3148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27224 comm="syz.2.7390" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  847.849395][   T39] audit: type=1326 audit(1722459874.750:3149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27224 comm="syz.2.7390" exe="/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  847.860246][   T39] audit: type=1326 audit(1722459874.750:3150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27224 comm="syz.2.7390" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  847.870470][   T39] audit: type=1326 audit(1722459874.750:3151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27224 comm="syz.2.7390" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  847.906596][   T39] audit: type=1326 audit(1722459874.750:3152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27224 comm="syz.2.7390" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  847.918282][   T39] audit: type=1326 audit(1722459874.750:3153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27224 comm="syz.2.7390" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  847.929055][   T39] audit: type=1326 audit(1722459874.750:3154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27224 comm="syz.2.7390" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  847.938398][   T39] audit: type=1326 audit(1722459874.750:3155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27224 comm="syz.2.7390" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  847.947655][   T39] audit: type=1326 audit(1722459874.750:3156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27224 comm="syz.2.7390" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  847.956853][   T39] audit: type=1326 audit(1722459874.750:3157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27224 comm="syz.2.7390" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  848.621659][T27243] block nbd2: shutting down sockets
[  848.749151][T27256] __nla_validate_parse: 4 callbacks suppressed
[  848.749181][T27256] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7398'.
[  849.073830][T27265] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7401'.
[  849.077636][T27265] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7401'.
[  849.083218][T27265] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7401'.
[  849.810638][T27283] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7406'.
[  850.012552][T27289] input: syz1 as /devices/virtual/input/input138
[  850.094362][T27285] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7407'.
[  850.098632][T27285] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7407'.
[  850.117032][T27285] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7407'.
[  850.441788][T27295] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7410'.
[  850.445818][T27295] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7410'.
[  850.719014][ T5391] hid-generic 0000:0000:0000.0048: unknown main item tag 0x0
[  850.723028][ T5391] hid-generic 0000:0000:0000.0048: unknown main item tag 0x0
[  850.728264][ T5391] hid-generic 0000:0000:0000.0048: unknown main item tag 0x0
[  850.731644][ T5391] hid-generic 0000:0000:0000.0048: unknown main item tag 0x0
[  850.735063][ T5391] hid-generic 0000:0000:0000.0048: unknown main item tag 0x0
[  850.739239][ T5391] hid-generic 0000:0000:0000.0048: unknown main item tag 0x0
[  850.742529][ T5391] hid-generic 0000:0000:0000.0048: unknown main item tag 0x0
[  850.745878][ T5391] hid-generic 0000:0000:0000.0048: unknown main item tag 0x0
[  850.749964][ T5391] hid-generic 0000:0000:0000.0048: unknown main item tag 0x0
[  850.753366][ T5391] hid-generic 0000:0000:0000.0048: collection stack underflow
[  850.757076][ T5391] hid-generic 0000:0000:0000.0048: item 0 0 0 12 parsing failed
[  850.760985][ T5391] hid-generic 0000:0000:0000.0048: probe with driver hid-generic failed with error -22
[  853.165700][   T39] kauditd_printk_skb: 66 callbacks suppressed
[  853.165717][   T39] audit: type=1326 audit(1722459880.080:3224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27347 comm="syz.1.7425" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  854.040528][T27379] __nla_validate_parse: 16 callbacks suppressed
[  854.040568][T27379] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7434'.
[  854.047907][T27379] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7434'.
[  854.059743][T27379] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7434'.
[  855.141672][T27408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7442'.
[  855.145401][T27408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7442'.
[  855.160132][T27408] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7442'.
[  855.248546][   T39] audit: type=1326 audit(1722459882.160:3225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27391 comm="syz.3.7439" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  855.557874][T27416] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7445'.
[  855.561787][T27416] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7445'.
[  855.594037][T27416] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7445'.
[  856.378040][T27434] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7451'.
[  856.740748][T27428] block nbd2: shutting down sockets
[  856.970138][T27444] blktrace: Concurrent blktraces are not allowed on loop3
[  857.466830][   T39] audit: type=1400 audit(1722459884.370:3226): avc:  denied  { rename } for  pid=27449 comm="syz.0.7456" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="9p" ino=36575685 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  857.492365][   T39] audit: type=1400 audit(1722459884.380:3227): avc:  denied  { unlink } for  pid=27449 comm="syz.0.7456" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="9p" ino=36575681 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=fifo_file permissive=1
[  858.484956][   T39] audit: type=1400 audit(1722459885.390:3228): avc:  denied  { append } for  pid=27478 comm="syz.3.7463" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  858.583938][T27463] block nbd2: shutting down sockets
[  859.139543][T27489] blktrace: Concurrent blktraces are not allowed on loop3
[  859.515871][T21927] hid-generic 0000:0000:0000.0049: unknown main item tag 0x0
[  859.525067][T21927] hid-generic 0000:0000:0000.0049: unknown main item tag 0x0
[  859.528477][T21927] hid-generic 0000:0000:0000.0049: unknown main item tag 0x0
[  859.532009][T21927] hid-generic 0000:0000:0000.0049: unknown main item tag 0x0
[  859.535221][T21927] hid-generic 0000:0000:0000.0049: unknown main item tag 0x0
[  859.539795][T21927] hid-generic 0000:0000:0000.0049: unknown main item tag 0x0
[  859.543292][T21927] hid-generic 0000:0000:0000.0049: unknown main item tag 0x0
[  859.546318][T21927] hid-generic 0000:0000:0000.0049: unknown main item tag 0x0
[  859.551932][T21927] hid-generic 0000:0000:0000.0049: unknown main item tag 0x0
[  859.555208][T21927] hid-generic 0000:0000:0000.0049: collection stack underflow
[  859.558619][T21927] hid-generic 0000:0000:0000.0049: item 0 0 0 12 parsing failed
[  859.562395][T21927] hid-generic 0000:0000:0000.0049: probe with driver hid-generic failed with error -22
[  860.148873][T27490] block nbd2: shutting down sockets
[  860.467183][T27517] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  860.517419][T27497] block nbd3: shutting down sockets
[  861.350706][T27542] blktrace: Concurrent blktraces are not allowed on loop3
[  861.592041][   T39] audit: type=1326 audit(1722459888.500:3229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27526 comm="syz.0.7477" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc819773b9 code=0x7fc00000
[  861.920834][T27530] block nbd1: shutting down sockets
[  862.188657][T21843] hid-generic 0000:0000:0000.004A: unknown main item tag 0x0
[  862.193521][T21843] hid-generic 0000:0000:0000.004A: unknown main item tag 0x0
[  862.197424][T21843] hid-generic 0000:0000:0000.004A: unknown main item tag 0x0
[  862.200687][T21843] hid-generic 0000:0000:0000.004A: unknown main item tag 0x0
[  862.203686][T21843] hid-generic 0000:0000:0000.004A: unknown main item tag 0x0
[  862.206324][T21843] hid-generic 0000:0000:0000.004A: unknown main item tag 0x0
[  862.210398][T21843] hid-generic 0000:0000:0000.004A: unknown main item tag 0x0
[  862.213619][T21843] hid-generic 0000:0000:0000.004A: unknown main item tag 0x0
[  862.216986][T21843] hid-generic 0000:0000:0000.004A: unknown main item tag 0x0
[  862.219909][T21843] hid-generic 0000:0000:0000.004A: collection stack underflow
[  862.222725][T21843] hid-generic 0000:0000:0000.004A: item 0 0 0 12 parsing failed
[  862.226906][T21843] hid-generic 0000:0000:0000.004A: probe with driver hid-generic failed with error -22
[  862.272004][   T39] audit: type=1804 audit(1722459889.180:3230): pid=27554 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.7483" name="/newroot/1084/bus/bus" dev="overlay" ino=5811 res=1 errno=0
[  862.320692][   T39] audit: type=1400 audit(1722459889.230:3231): avc:  denied  { module_load } for  pid=27551 comm="syz.1.7483" path="/1084/bus/bus" dev="overlay" ino=5811 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[  862.324006][T27554] Invalid ELF header magic: != ELF
[  862.480946][T27544] block nbd0: shutting down sockets
[  863.178133][T27561] block nbd2: shutting down sockets
[  863.612790][T27570] block nbd1: shutting down sockets
[  863.708173][T27583] team0: Device bridge0 is already an upper device of the team interface
[  863.859824][T27587] __nla_validate_parse: 6 callbacks suppressed
[  863.859843][T27587] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7490'.
[  864.284078][T27596] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7494'.
[  864.288636][T27596] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7494'.
[  864.307811][T27596] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7494'.
[  864.472093][   T39] audit: type=1326 audit(1722459891.370:3232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27581 comm="syz.2.7489" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  864.843267][T27601] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7495'.
[  864.847577][T27601] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7495'.
[  864.854115][T27601] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7495'.
[  864.951208][T27612] blktrace: Concurrent blktraces are not allowed on loop3
[  865.701125][T27608] block nbd1: shutting down sockets
[  865.770284][T27622] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7500'.
[  865.919695][T27627] input: syz0 as /devices/virtual/input/input143
[  866.331984][T27633] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7504'.
[  866.336139][T27633] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7504'.
[  867.613161][T27666] blktrace: Concurrent blktraces are not allowed on loop3
[  867.700086][T21927] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  867.876579][T21927] usb 7-1: Using ep0 maxpacket: 32
[  867.886950][T21927] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[  867.890304][T21927] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  867.894658][T21927] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  867.916510][T21927] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  867.921957][T21927] usb 7-1: config 0 interface 0 has no altsetting 0
[  867.928941][T21927] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  867.932886][T21927] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  867.945062][T21927] usb 7-1: Product: syz
[  867.947013][T21927] usb 7-1: Manufacturer: syz
[  867.957366][T21927] usb 7-1: SerialNumber: syz
[  867.962082][T21927] usb 7-1: config 0 descriptor??
[  867.968294][T21927] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  867.975636][T21927] ldusb 7-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  868.172854][ T5390] usb 7-1: USB disconnect, device number 24
[  868.186722][ T5390] ldusb 7-1:0.0: LD USB Device #0 now disconnected
[  868.415712][   T39] audit: type=1326 audit(1722459895.320:3233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27664 comm="syz.1.7513" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  868.436518][   T39] audit: type=1326 audit(1722459895.320:3234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27664 comm="syz.1.7513" exe="/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  868.906823][T27694] __nla_validate_parse: 6 callbacks suppressed
[  868.906840][T27694] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7520'.
[  868.975618][ T5390] hid-generic 0000:0000:0000.004B: unknown main item tag 0x0
[  868.980526][ T5390] hid-generic 0000:0000:0000.004B: unknown main item tag 0x0
[  868.983771][ T5390] hid-generic 0000:0000:0000.004B: unknown main item tag 0x0
[  868.989762][ T5390] hid-generic 0000:0000:0000.004B: unknown main item tag 0x0
[  868.993701][ T5390] hid-generic 0000:0000:0000.004B: unknown main item tag 0x0
[  868.997406][ T5390] hid-generic 0000:0000:0000.004B: unknown main item tag 0x0
[  869.003568][ T5390] hid-generic 0000:0000:0000.004B: unknown main item tag 0x0
[  869.006474][ T5390] hid-generic 0000:0000:0000.004B: unknown main item tag 0x0
[  869.009791][ T5390] hid-generic 0000:0000:0000.004B: unknown main item tag 0x0
[  869.012838][ T5390] hid-generic 0000:0000:0000.004B: collection stack underflow
[  869.015391][ T5390] hid-generic 0000:0000:0000.004B: item 0 0 0 12 parsing failed
[  869.019239][ T5390] hid-generic 0000:0000:0000.004B: probe with driver hid-generic failed with error -22
[  869.077064][T27706] blktrace: Concurrent blktraces are not allowed on loop3
[  869.759184][T27719] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7527'.
[  869.763186][T27719] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7527'.
[  869.771672][T27719] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7527'.
[  869.870950][T27725] IPVS: rr: TCP 172.20.20.170:0 - no destination available
[  870.182031][   T39] audit: type=1326 audit(1722459897.090:3235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27710 comm="syz.3.7525" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  870.230590][T27734] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7531'.
[  870.733412][T27743] dccp_v6_rcv: dropped packet with invalid checksum
[  870.743001][T27743] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  870.751356][   T39] audit: type=1400 audit(1722459897.660:3236): avc:  denied  { ioctl } for  pid=27742 comm="syz.0.7534" path="socket:[129833]" dev="sockfs" ino=129833 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  870.762937][   T39] audit: type=1400 audit(1722459897.660:3237): avc:  denied  { create } for  pid=27742 comm="syz.0.7534" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[  870.961682][T27749] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7535'.
[  870.965821][T27749] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7535'.
[  870.976953][T27749] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7535'.
[  871.433045][T27764] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7540'.
[  871.622016][T27773] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  871.683457][   T39] audit: type=1400 audit(1722459898.590:3238): avc:  denied  { mounton } for  pid=27765 comm="syz.3.7541" path="/583/file0" dev="tmpfs" ino=3214 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  871.741876][T27776] netlink: 40 bytes leftover after parsing attributes in process `syz.1.7543'.
[  872.435875][    C2] vkms_vblank_simulate: vblank timer overrun
[  872.503053][T27793] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  872.810063][T27800] program syz.0.7551 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  873.218422][T21927] hid-generic 0000:0000:0000.004C: unknown main item tag 0x0
[  873.223082][T21927] hid-generic 0000:0000:0000.004C: unknown main item tag 0x0
[  873.228141][T21927] hid-generic 0000:0000:0000.004C: unknown main item tag 0x0
[  873.231931][T21927] hid-generic 0000:0000:0000.004C: unknown main item tag 0x0
[  873.235483][T21927] hid-generic 0000:0000:0000.004C: unknown main item tag 0x0
[  873.239325][T21927] hid-generic 0000:0000:0000.004C: unknown main item tag 0x0
[  873.242953][T21927] hid-generic 0000:0000:0000.004C: unknown main item tag 0x0
[  873.246968][T21927] hid-generic 0000:0000:0000.004C: unknown main item tag 0x0
[  873.250521][T21927] hid-generic 0000:0000:0000.004C: unknown main item tag 0x0
[  873.254141][T21927] hid-generic 0000:0000:0000.004C: collection stack underflow
[  873.257739][T21927] hid-generic 0000:0000:0000.004C: item 0 0 0 12 parsing failed
[  873.261808][T21927] hid-generic 0000:0000:0000.004C: probe with driver hid-generic failed with error -22
[  873.639290][T27821] input: syz0 as /devices/virtual/input/input150
[  873.984451][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  875.127852][   T39] audit: type=1326 audit(1722460158.047:3239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27837 comm="syz.2.7561" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  875.553245][ T1379] ieee802154 phy0 wpan0: encryption failed: -22
[  875.556449][ T1379] ieee802154 phy1 wpan1: encryption failed: -22
[  875.608141][T27864] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  875.879988][T27853] block nbd0: shutting down sockets
[  876.039145][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  877.109361][   T39] audit: type=1400 audit(1722460160.027:3240): avc:  denied  { read } for  pid=27886 comm="syz.1.7573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  877.442174][T27905] team0: Device bridge0 is already an upper device of the team interface
[  877.783159][T27886] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  878.426556][T22432] Bluetooth: hci1: command 0x0406 tx timeout
[  878.459837][   T39] audit: type=1326 audit(1722460417.361:3241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27900 comm="syz.3.7576" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  878.500918][T27924] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7582'.
[  878.886491][ T6267] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  879.066496][ T6267] usb 7-1: Using ep0 maxpacket: 8
[  879.077218][ T6267] usb 7-1: config 179 has an invalid interface number: 65 but max is 0
[  879.080300][ T6267] usb 7-1: config 179 has no interface number 0
[  879.082898][ T6267] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  879.088261][ T6267] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  879.093001][ T6267] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  879.098169][ T6267] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  879.104097][ T6267] usb 7-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  879.110971][ T6267] usb 7-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  879.114852][ T6267] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  879.124218][T27930] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  879.394498][T27940] blktrace: Concurrent blktraces are not allowed on loop3
[  879.478515][ T5390] hid-generic 0000:0000:0000.004D: unknown main item tag 0x0
[  879.483464][ T5390] hid-generic 0000:0000:0000.004D: unknown main item tag 0x0
[  879.487290][ T5390] hid-generic 0000:0000:0000.004D: unknown main item tag 0x0
[  879.490490][ T5390] hid-generic 0000:0000:0000.004D: unknown main item tag 0x0
[  879.493578][ T5390] hid-generic 0000:0000:0000.004D: unknown main item tag 0x0
[  879.499168][ T5390] hid-generic 0000:0000:0000.004D: unknown main item tag 0x0
[  879.502328][ T5390] hid-generic 0000:0000:0000.004D: unknown main item tag 0x0
[  879.505473][ T5390] hid-generic 0000:0000:0000.004D: unknown main item tag 0x0
[  879.509018][ T5390] hid-generic 0000:0000:0000.004D: unknown main item tag 0x0
[  879.512409][ T5390] hid-generic 0000:0000:0000.004D: collection stack underflow
[  879.515830][ T5390] hid-generic 0000:0000:0000.004D: item 0 0 0 12 parsing failed
[  879.520253][ T5390] hid-generic 0000:0000:0000.004D: probe with driver hid-generic failed with error -22
[  880.874405][T27963] bridge0: entered allmulticast mode
[  880.898664][T22432] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  880.899108][T27963] bridge0: port 3(team0) entered blocking state
[  880.902450][T22006] Bluetooth: hci4: Frame reassembly failed (-84)
[  880.905025][T27963] bridge0: port 3(team0) entered listening state
[  880.911036][T27963] bridge0: port 1(bridge_slave_0) entered blocking state
[  880.914257][T27963] bridge0: port 1(bridge_slave_0) entered listening state
[  880.918277][T27963] bridge0: entered promiscuous mode
[  880.988593][   T39] audit: type=1326 audit(1722460675.907:3242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27962 comm="syz.1.7591" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x0
[  881.110024][T27953] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  881.660179][ T5390] usb 7-1: USB disconnect, device number 25
[  881.660320][    C1] xpad 7-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  881.769172][T27974] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  881.773022][T27974] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  881.914024][T27972] netlink: 'syz.2.7595': attribute type 17 has an invalid length.
[  882.353555][T19588] hid-generic 0000:0000:0000.004E: unknown main item tag 0x0
[  882.356991][T19588] hid-generic 0000:0000:0000.004E: unknown main item tag 0x0
[  882.360605][T19588] hid-generic 0000:0000:0000.004E: unknown main item tag 0x0
[  882.363688][T19588] hid-generic 0000:0000:0000.004E: unknown main item tag 0x0
[  882.367409][T19588] hid-generic 0000:0000:0000.004E: unknown main item tag 0x0
[  882.371826][T19588] hid-generic 0000:0000:0000.004E: unknown main item tag 0x0
[  882.375112][T19588] hid-generic 0000:0000:0000.004E: unknown main item tag 0x0
[  882.379014][T19588] hid-generic 0000:0000:0000.004E: unknown main item tag 0x0
[  882.382475][T19588] hid-generic 0000:0000:0000.004E: unknown main item tag 0x0
[  882.385870][T19588] hid-generic 0000:0000:0000.004E: collection stack underflow
[  882.389351][T19588] hid-generic 0000:0000:0000.004E: item 0 0 0 12 parsing failed
[  882.393327][T19588] hid-generic 0000:0000:0000.004E: probe with driver hid-generic failed with error -22
[  882.906651][T22432] Bluetooth: hci4: command 0x1003 tx timeout
[  882.907782][   T66] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  884.033548][T28007] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  884.405437][T28019] blktrace: Concurrent blktraces are not allowed on loop3
[  884.501959][T28015] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7605'.
[  884.506233][T28015] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7605'.
[  884.524059][T28015] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7605'.
[  884.894104][T28024] team0: Device bridge0 is already an upper device of the team interface
[  885.648807][   T39] audit: type=1326 audit(1722460936.567:3243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28020 comm="syz.2.7606" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  885.703952][T28037] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7611'.
[  885.708132][T28037] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7611'.
[  885.726983][T28037] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7611'.
[  885.959696][   T39] audit: type=1326 audit(1722460936.877:3244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28032 comm="syz.3.7610" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  886.404322][T28049] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7615'.
[  886.408385][T28049] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7615'.
[  886.439645][T28049] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7615'.
[  886.634166][T28054] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7616'.
[  886.676873][   T66] Bluetooth: hci2: command 0x0406 tx timeout
[  887.304161][T28073] blktrace: Concurrent blktraces are not allowed on loop3
[  887.904109][   T39] audit: type=1400 audit(1722460938.817:3245): avc:  denied  { execute } for  pid=28076 comm="syz.1.7623" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  887.921554][T28077] syz_tun: entered promiscuous mode
[  887.926527][T28077] batadv_slave_1: entered promiscuous mode
[  888.178158][   T66] Bluetooth: hci1: unexpected event for opcode 0x043d
[  889.509584][T28096] __nla_validate_parse: 5 callbacks suppressed
[  889.509890][T28096] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7626'.
[  889.517858][T28096] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7626'.
[  889.561138][T28097] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7626'.
[  889.590395][T28106] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7628'.
[  889.594466][T28106] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7628'.
[  889.732769][T28101] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7628'.
[  890.112018][T28114] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7633'.
[  891.373344][T21926] hid-generic 0000:0000:0000.004F: unknown main item tag 0x0
[  891.377541][T21926] hid-generic 0000:0000:0000.004F: unknown main item tag 0x0
[  891.380951][T21926] hid-generic 0000:0000:0000.004F: unknown main item tag 0x0
[  891.384790][T21926] hid-generic 0000:0000:0000.004F: unknown main item tag 0x0
[  891.389859][T21926] hid-generic 0000:0000:0000.004F: unknown main item tag 0x0
[  891.393759][T21926] hid-generic 0000:0000:0000.004F: unknown main item tag 0x0
[  891.397466][T21926] hid-generic 0000:0000:0000.004F: unknown main item tag 0x0
[  891.400942][T21926] hid-generic 0000:0000:0000.004F: unknown main item tag 0x0
[  891.404362][T21926] hid-generic 0000:0000:0000.004F: unknown main item tag 0x0
[  891.408122][T21926] hid-generic 0000:0000:0000.004F: collection stack underflow
[  891.411699][T21926] hid-generic 0000:0000:0000.004F: item 0 0 0 12 parsing failed
[  891.416751][T21926] hid-generic 0000:0000:0000.004F: probe with driver hid-generic failed with error -22
[  892.154986][T28140] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7639'.
[  892.158953][T28140] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7639'.
[  892.176047][T28140] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7639'.
[  893.143107][T28145] block nbd2: shutting down sockets
[  894.337973][T28184] program syz.2.7653 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  894.341741][T28184] ata1.00: invalid multi_count 1 ignored
[  894.637894][T28193] __nla_validate_parse: 8 callbacks suppressed
[  894.637910][T28193] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7657'.
[  894.645070][T28193] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7657'.
[  894.896736][T28194] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7656'.
[  894.900752][T28194] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7656'.
[  894.915808][T28194] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7656'.
[  895.635005][ T5391] hid-generic 0000:0000:0000.0050: unknown main item tag 0x0
[  895.638563][ T5391] hid-generic 0000:0000:0000.0050: unknown main item tag 0x0
[  895.641822][ T5391] hid-generic 0000:0000:0000.0050: unknown main item tag 0x0
[  895.644886][ T5391] hid-generic 0000:0000:0000.0050: unknown main item tag 0x0
[  895.647884][ T5391] hid-generic 0000:0000:0000.0050: unknown main item tag 0x0
[  895.651021][ T5391] hid-generic 0000:0000:0000.0050: unknown main item tag 0x0
[  895.654254][ T5391] hid-generic 0000:0000:0000.0050: unknown main item tag 0x0
[  895.658169][ T5391] hid-generic 0000:0000:0000.0050: unknown main item tag 0x0
[  895.661455][ T5391] hid-generic 0000:0000:0000.0050: unknown main item tag 0x0
[  895.664661][ T5391] hid-generic 0000:0000:0000.0050: collection stack underflow
[  895.668517][ T5391] hid-generic 0000:0000:0000.0050: item 0 0 0 12 parsing failed
[  895.672447][ T5391] hid-generic 0000:0000:0000.0050: probe with driver hid-generic failed with error -22
[  896.030732][    C3] bridge0: port 1(bridge_slave_0) entered learning state
[  896.034823][    C3] bridge0: port 3(team0) entered learning state
[  896.532880][T28217] block nbd2: shutting down sockets
[  896.864869][T28244] blktrace: Concurrent blktraces are not allowed on loop3
[  897.182866][T28251] mac80211_hwsim hwsim162 veth0_vlan: renamed from wlan1 (while UP)
[  897.467163][   T39] audit: type=1400 audit(1722460948.377:3246): avc:  denied  { ioctl } for  pid=28254 comm="syz.1.7671" path="/dev/snapshot" dev="devtmpfs" ino=98 ioctlcmd=0x3305 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  897.756686][T28262] team0: Device bridge0 is already an upper device of the team interface
[  898.426919][T28259] block nbd2: shutting down sockets
[  898.430640][   T39] audit: type=1326 audit(1722460949.347:3247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28257 comm="syz.0.7672" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc819773b9 code=0x7fc00000
[  898.782341][T28278] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7677'.
[  898.786888][T28278] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7677'.
[  898.792519][T28278] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7677'.
[  899.605408][T28290] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7681'.
[  899.615841][T28290] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7681'.
[  899.666638][T28296] __nla_validate_parse: 1 callbacks suppressed
[  899.666657][T28296] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7683'.
[  899.673594][T28296] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7683'.
[  899.700550][T28296] program syz.0.7683 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  899.704611][T28296] ata1.00: invalid multi_count 1 ignored
[  900.202178][T28305] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7686'.
[  900.205426][T28305] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7686'.
[  900.242849][T28305] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7686'.
[  901.195445][T28328] blktrace: Concurrent blktraces are not allowed on loop3
[  901.359717][ T5390] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  901.362828][ T5390] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  901.365622][ T5390] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  901.369117][ T5390] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  901.372212][ T5390] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  901.374908][ T5390] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  901.380593][ T5390] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  901.383994][ T5390] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  901.392637][ T5390] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  901.396326][ T5390] hid-generic 0000:0000:0000.0051: collection stack underflow
[  901.400294][ T5390] hid-generic 0000:0000:0000.0051: item 0 0 0 12 parsing failed
[  901.410887][ T5390] hid-generic 0000:0000:0000.0051: probe with driver hid-generic failed with error -22
[  901.783319][T28345] FAULT_INJECTION: forcing a failure.
[  901.783319][T28345] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  901.792139][T28345] CPU: 2 UID: 0 PID: 28345 Comm: syz.0.7697 Not tainted 6.11.0-rc1-syzkaller-00062-ge4fc196f5ba3 #0
[  901.796610][T28345] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  901.800810][T28345] Call Trace:
[  901.802255][T28345]  <TASK>
[  901.803585][T28345]  dump_stack_lvl+0x16c/0x1f0
[  901.805673][T28345]  should_fail_ex+0x497/0x5b0
[  901.807605][T28345]  _copy_from_user+0x30/0xf0
[  901.809185][T28345]  copy_msghdr_from_user+0x99/0x160
[  901.811090][T28345]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  901.813479][T28345]  ? rcu_is_watching+0x12/0xc0
[  901.815125][T28345]  ? __pfx___lock_acquire+0x10/0x10
[  901.817377][T28345]  ___sys_recvmsg+0xdc/0x1a0
[  901.819469][T28345]  ? __pfx____sys_recvmsg+0x10/0x10
[  901.821902][T28345]  ? find_held_lock+0x2d/0x110
[  901.824063][T28345]  ? __pfx___might_resched+0x10/0x10
[  901.826015][T28345]  ? __might_fault+0xe3/0x190
[  901.828040][T28345]  do_recvmmsg+0x2ba/0x750
[  901.829720][T28345]  ? __pfx_do_recvmmsg+0x10/0x10
[  901.831630][T28345]  ? vfs_write+0x14d/0x1140
[  901.833529][T28345]  ? __mutex_unlock_slowpath+0x164/0x650
[  901.835737][T28345]  __x64_sys_recvmmsg+0x239/0x290
[  901.837612][T28345]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  901.839649][T28345]  do_syscall_64+0xcd/0x250
[  901.841103][T28345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  901.843595][T28345] RIP: 0033:0x7fbc819773b9
[  901.845579][T28345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  901.853466][T28345] RSP: 002b:00007fbc826b7048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  901.856960][T28345] RAX: ffffffffffffffda RBX: 00007fbc81b06058 RCX: 00007fbc819773b9
[  901.860122][T28345] RDX: 0000000004000359 RSI: 0000000020000500 RDI: 0000000000000004
[  901.863291][T28345] RBP: 00007fbc826b70a0 R08: 0000000000000000 R09: 0000000000000000
[  901.866188][T28345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  901.869084][T28345] R13: 000000000000006e R14: 00007fbc81b06058 R15: 00007fffbfcfda58
[  901.872440][T28345]  </TASK>
[  902.279746][ T5390] hid-generic 0000:0000:0000.0052: unknown main item tag 0x0
[  902.282503][ T5390] hid-generic 0000:0000:0000.0052: unknown main item tag 0x0
[  902.285372][ T5390] hid-generic 0000:0000:0000.0052: unknown main item tag 0x0
[  902.288754][ T5390] hid-generic 0000:0000:0000.0052: unknown main item tag 0x0
[  902.291889][ T5390] hid-generic 0000:0000:0000.0052: unknown main item tag 0x0
[  902.294593][ T5390] hid-generic 0000:0000:0000.0052: unknown main item tag 0x0
[  902.297884][ T5390] hid-generic 0000:0000:0000.0052: unknown main item tag 0x0
[  902.300526][ T5390] hid-generic 0000:0000:0000.0052: unknown main item tag 0x0
[  902.303086][ T5390] hid-generic 0000:0000:0000.0052: unknown main item tag 0x0
[  902.306024][ T5390] hid-generic 0000:0000:0000.0052: collection stack underflow
[  902.309709][ T5390] hid-generic 0000:0000:0000.0052: item 0 0 0 12 parsing failed
[  902.313029][ T5390] hid-generic 0000:0000:0000.0052: probe with driver hid-generic failed with error -22
[  903.565733][T28385] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7709'.
[  903.570282][T28385] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7709'.
[  903.585922][T28385] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7709'.
[  904.393839][T28401] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7714'.
[  904.398102][T28401] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7714'.
[  905.194882][T28413] __nla_validate_parse: 1 callbacks suppressed
[  905.194904][T28413] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7718'.
[  905.202739][T28413] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7718'.
[  905.215625][T28413] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7718'.
[  905.750987][T28426] 9pnet_fd: Insufficient options for proto=fd
[  906.014820][   T39] audit: type=1326 audit(1722460956.927:3248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28416 comm="syz.1.7719" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  906.638869][T28436] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7725'.
[  906.652487][T28436] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  906.734010][T28436] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  907.309826][T28440] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7726'.
[  907.314046][T28440] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7726'.
[  907.343132][T28440] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7726'.
[  908.049222][T28459] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7732'.
[  908.052809][T28459] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7732'.
[  908.065929][T28459] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7732'.
[  908.446144][T28469] 9pnet_fd: Insufficient options for proto=fd
[  909.014959][   T39] audit: type=1326 audit(1722460959.927:3249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28463 comm="syz.3.7734" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  909.029178][   T39] audit: type=1326 audit(1722460959.927:3250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28463 comm="syz.3.7734" exe="/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  909.054119][   T39] audit: type=1326 audit(1722460959.927:3251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28463 comm="syz.3.7734" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  909.065620][   T39] audit: type=1326 audit(1722460959.927:3252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28463 comm="syz.3.7734" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  909.075038][   T39] audit: type=1326 audit(1722460959.927:3253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28463 comm="syz.3.7734" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  909.088417][   T39] audit: type=1326 audit(1722460959.927:3254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28463 comm="syz.3.7734" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  909.100095][   T39] audit: type=1326 audit(1722460959.927:3255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28463 comm="syz.3.7734" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  909.116749][   T39] audit: type=1326 audit(1722460959.937:3256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28463 comm="syz.3.7734" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  909.141446][   T39] audit: type=1326 audit(1722460959.937:3257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28463 comm="syz.3.7734" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  909.711988][T28490] blktrace: Concurrent blktraces are not allowed on loop3
[  910.034655][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  910.551688][T28503] __nla_validate_parse: 6 callbacks suppressed
[  910.551705][T28503] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7746'.
[  910.558097][T28503] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7746'.
[  910.567378][T28503] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7746'.
[  910.761369][T19588] hid-generic 0000:0000:0000.0053: unknown main item tag 0x0
[  910.765054][T19588] hid-generic 0000:0000:0000.0053: unknown main item tag 0x0
[  910.769933][T19588] hid-generic 0000:0000:0000.0053: unknown main item tag 0x0
[  910.773075][T19588] hid-generic 0000:0000:0000.0053: unknown main item tag 0x0
[  910.776159][T19588] hid-generic 0000:0000:0000.0053: unknown main item tag 0x0
[  910.780556][T19588] hid-generic 0000:0000:0000.0053: unknown main item tag 0x0
[  910.783685][T19588] hid-generic 0000:0000:0000.0053: unknown main item tag 0x0
[  910.787177][T19588] hid-generic 0000:0000:0000.0053: unknown main item tag 0x0
[  910.790376][T19588] hid-generic 0000:0000:0000.0053: unknown main item tag 0x0
[  910.794050][T19588] hid-generic 0000:0000:0000.0053: collection stack underflow
[  910.797989][T19588] hid-generic 0000:0000:0000.0053: item 0 0 0 12 parsing failed
[  910.802166][T19588] hid-generic 0000:0000:0000.0053: probe with driver hid-generic failed with error -22
[  911.303803][   T39] kauditd_printk_skb: 15 callbacks suppressed
[  911.303814][   T39] audit: type=1326 audit(1722460962.217:3273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28506 comm="syz.1.7747" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  911.386734][    C3] bridge0: port 3(team0) entered forwarding state
[  911.389585][    C3] bridge0: topology change detected, propagating
[  911.401892][    C3] bridge0: port 1(bridge_slave_0) entered forwarding state
[  911.405264][    C3] bridge0: topology change detected, propagating
[  911.644222][T28525] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7751'.
[  911.654065][T28525] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7751'.
[  911.663173][T28525] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7751'.
[  911.788170][T28532] team0: Device bridge0 is already an upper device of the team interface
[  911.874707][T28533] blktrace: Concurrent blktraces are not allowed on loop3
[  912.385551][T28536] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7754'.
[  912.389707][T28536] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7754'.
[  912.411739][T28536] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7754'.
[  912.510414][   T39] audit: type=1326 audit(1722460963.427:3274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28528 comm="syz.3.7752" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  912.847265][T28542] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7756'.
[  914.652842][T28586] team0: Device bridge0 is already an upper device of the team interface
[  914.953035][T28594] blktrace: Concurrent blktraces are not allowed on loop3
[  915.231723][T28571] block nbd3: shutting down sockets
[  915.380028][   T39] audit: type=1326 audit(1722460966.297:3275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28580 comm="syz.2.7765" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  915.571486][T28603] __nla_validate_parse: 11 callbacks suppressed
[  915.571503][T28603] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7774'.
[  915.580798][T28603] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7774'.
[  915.950292][T28609] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7775'.
[  915.955544][T28609] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7775'.
[  916.008650][T28609] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7775'.
[  916.552483][T28622] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7779'.
[  916.556982][T28622] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7779'.
[  916.564787][T28622] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7779'.
[  916.998443][T28630] bridge0: port 3(team0) entered disabled state
[  917.001203][T28630] bridge0: port 1(bridge_slave_0) entered disabled state
[  917.005591][T28630] bridge0: left promiscuous mode
[  917.008937][T28630] bridge0: left allmulticast mode
[  917.017523][T28630] team0: Device bridge0 is already an upper device of the team interface
[  917.700784][   T39] audit: type=1326 audit(1722460968.617:3276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28628 comm="syz.1.7781" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  918.051680][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  918.138933][T28647] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7785'.
[  918.143309][T28647] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7785'.
[  918.338789][T28663] blktrace: Concurrent blktraces are not allowed on loop3
[  919.124075][T28676] blktrace: Concurrent blktraces are not allowed on loop3
[  920.275435][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  920.416415][T28698] netlink: 'syz.2.7798': attribute type 12 has an invalid length.
[  921.147169][   T39] audit: type=1326 audit(1722460972.067:3277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28696 comm="syz.0.7801" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc819773b9 code=0x7fc00000
[  921.268583][   T66] Bluetooth: hci1: unexpected event for opcode 0x0c23
[  921.483483][T28719] __nla_validate_parse: 4 callbacks suppressed
[  921.483495][T28719] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7806'.
[  921.491317][T28719] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7806'.
[  921.504507][T28719] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7806'.
[  921.847616][T28727] blktrace: Concurrent blktraces are not allowed on loop3
[  922.001985][T28734] blktrace: Concurrent blktraces are not allowed on loop3
[  922.700774][T28737] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7812'.
[  922.709109][T28737] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7812'.
[  922.753771][T28737] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7812'.
[  922.766846][T28742] netlink: 'syz.3.7813': attribute type 12 has an invalid length.
[  922.943457][T28745] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7814'.
[  922.950272][T28745] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7814'.
[  923.636083][   T39] audit: type=1326 audit(1722460974.547:3278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28743 comm="syz.2.7814" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  924.279149][T28779] blktrace: Concurrent blktraces are not allowed on loop3
[  925.972751][T28780] block nbd1: shutting down sockets
[  926.181039][T28800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7828'.
[  926.185026][T28800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7828'.
[  926.200823][T28804] blktrace: Concurrent blktraces are not allowed on loop3
[  926.247039][   T66] Bluetooth: hci2: unexpected event for opcode 0x0c23
[  926.356526][   T66] Bluetooth: hci1: unexpected event for opcode 0x043d
[  926.523672][T28811] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7831'.
[  926.527843][T28811] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7831'.
[  926.540689][T28811] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7831'.
[  926.944847][   T39] audit: type=1326 audit(1722460977.857:3279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28798 comm="syz.0.7828" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc819773b9 code=0x7fc00000
[  927.072280][T28822] blktrace: Concurrent blktraces are not allowed on loop3
[  927.096893][T28821] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7834'.
[  927.100909][T28821] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7834'.
[  928.360492][T28860] team0: Device bridge0 is already an upper device of the team interface
[  928.539678][   T66] Bluetooth: hci1: unexpected event for opcode 0x0c23
[  929.146156][   T39] audit: type=1326 audit(1722460980.057:3280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28855 comm="syz.0.7845" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc819773b9 code=0x7fc00000
[  931.002835][   T66] Bluetooth: hci1: unexpected event for opcode 0x0c23
[  931.028624][T28904] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7858'.
[  931.033405][T28904] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7858'.
[  931.055982][T28906] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7859'.
[  931.326497][ T5417] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[  931.526496][ T5417] usb 7-1: Using ep0 maxpacket: 8
[  931.531549][ T5417] usb 7-1: config 179 has an invalid interface number: 65 but max is 0
[  931.539347][ T5417] usb 7-1: config 179 has no interface number 0
[  931.543272][ T5417] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  931.552161][ T5417] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  931.571879][ T5417] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  931.572550][T28920] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7864'.
[  931.578646][ T5417] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  931.581578][T28920] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7864'.
[  931.587737][ T5417] usb 7-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  931.596624][ T5417] usb 7-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  931.600906][T28920] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7864'.
[  931.602559][ T5417] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  931.612613][T28906] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  931.853735][T28906] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  931.861542][T28906] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  931.877150][ T5417] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:179.65/input/input170
[  932.004824][T28931] fuse: Bad value for 'max_read'
[  932.070220][T28771] usb 7-1: USB disconnect, device number 26
[  932.070230][    C0] xpad 7-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  932.070269][    C0] xpad 7-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  932.077183][T28931] syzkaller0: entered promiscuous mode
[  932.080646][T28771] xpad 7-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  932.082875][T28931] syzkaller0: entered allmulticast mode
[  934.035642][T28954] netlink: 120 bytes leftover after parsing attributes in process `syz.1.7876'.
[  934.145735][T28950] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7873'.
[  934.149395][T28950] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7873'.
[  934.170402][T28950] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7873'.
[  934.315702][   T39] audit: type=1400 audit(1722460985.227:3281): avc:  denied  { ioctl } for  pid=28961 comm="syz.1.7878" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0x9439 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  935.334475][T28984] binder: 28983:28984 ioctl c0306201 20000580 returned -14
[  935.339833][T28984] binder: 28983:28984 ioctl 4b31 20000280 returned -22
[  935.344827][T28984] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7884'.
[  936.272427][   T39] audit: type=1326 audit(1722460987.187:3282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28989 comm="syz.2.7886" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x0
[  937.001322][ T1379] ieee802154 phy0 wpan0: encryption failed: -22
[  937.004375][ T1379] ieee802154 phy1 wpan1: encryption failed: -22
[  937.080660][T29002] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7889'.
[  937.084985][T29002] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7889'.
[  937.115518][T29002] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7889'.
[  937.337305][   T39] audit: type=1400 audit(1722460988.257:3283): avc:  denied  { watch } for  pid=29012 comm="syz.3.7893" path="/675" dev="tmpfs" ino=3697 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  937.348690][   T39] audit: type=1400 audit(1722460988.267:3284): avc:  denied  { watch_sb } for  pid=29012 comm="syz.3.7893" path="/675" dev="tmpfs" ino=3697 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  937.395561][   T39] audit: type=1400 audit(1722460988.307:3285): avc:  denied  { map } for  pid=29012 comm="syz.3.7893" path="/675" dev="tmpfs" ino=3697 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  937.856483][T29032] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  938.747384][T29044] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  938.754896][T29044] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  938.779989][   T39] audit: type=1400 audit(1722460989.697:3286): avc:  denied  { remount } for  pid=29043 comm="syz.1.7900" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  939.060919][T29048] binder: 29047:29048 ioctl c0306201 20000580 returned -14
[  939.067218][T29048] binder: 29047:29048 ioctl 4b31 20000280 returned -22
[  939.076051][T29048] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7901'.
[  940.102178][   T66] Bluetooth: hci1: unexpected event for opcode 0x043d
[  940.479979][T29052] block nbd0: shutting down sockets
[  940.569436][ T5417] hid-generic 0000:0000:0000.0054: unknown main item tag 0x0
[  940.572576][ T5417] hid-generic 0000:0000:0000.0054: unknown main item tag 0x0
[  940.575566][ T5417] hid-generic 0000:0000:0000.0054: unknown main item tag 0x0
[  940.578843][ T5417] hid-generic 0000:0000:0000.0054: unknown main item tag 0x0
[  940.582428][ T5417] hid-generic 0000:0000:0000.0054: unknown main item tag 0x0
[  940.585395][ T5417] hid-generic 0000:0000:0000.0054: unknown main item tag 0x0
[  940.589248][ T5417] hid-generic 0000:0000:0000.0054: unknown main item tag 0x0
[  940.592123][ T5417] hid-generic 0000:0000:0000.0054: unknown main item tag 0x0
[  940.594975][ T5417] hid-generic 0000:0000:0000.0054: unknown main item tag 0x0
[  940.599004][ T5417] hid-generic 0000:0000:0000.0054: collection stack underflow
[  940.603109][ T5417] hid-generic 0000:0000:0000.0054: item 0 0 0 12 parsing failed
[  940.607975][ T5417] hid-generic 0000:0000:0000.0054: probe with driver hid-generic failed with error -22
[  942.181429][T29116] team0: Device bridge0 is already an upper device of the team interface
[  942.538064][T29111] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7918'.
[  942.544608][T29111] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7918'.
[  942.575274][T29110] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7918'.
[  942.954014][T29126] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7923'.
[  942.959040][T29126] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7923'.
[  943.012265][T29126] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7923'.
[  943.602885][   T66] Bluetooth: hci1: unexpected event for opcode 0x043d
[  944.720183][T29166] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7934'.
[  944.727646][T29166] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7934'.
[  944.736538][T29166] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7934'.
[  944.853849][T29170] blktrace: Concurrent blktraces are not allowed on loop3
[  945.429855][T29190] FAULT_INJECTION: forcing a failure.
[  945.429855][T29190] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  945.435919][T29190] CPU: 0 UID: 0 PID: 29190 Comm: syz.0.7941 Not tainted 6.11.0-rc1-syzkaller-00062-ge4fc196f5ba3 #0
[  945.440905][T29190] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  945.445602][T29190] Call Trace:
[  945.447096][T29190]  <TASK>
[  945.448407][T29190]  dump_stack_lvl+0x16c/0x1f0
[  945.450486][T29190]  should_fail_ex+0x497/0x5b0
[  945.452510][T29190]  strncpy_from_user+0x38/0x320
[  945.454587][T29190]  keyctl_keyring_search+0xad/0x450
[  945.456844][T29190]  ? __pfx_keyctl_keyring_search+0x10/0x10
[  945.459609][T29190]  ? ksys_write+0x1ab/0x260
[  945.461693][T29190]  ? __pfx_ksys_write+0x10/0x10
[  945.463705][T29190]  __do_sys_keyctl+0xac/0x590
[  945.465673][T29190]  do_syscall_64+0xcd/0x250
[  945.467444][T29190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  945.469435][T29190] RIP: 0033:0x7fbc819773b9
[  945.471293][T29190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  945.479021][T29190] RSP: 002b:00007fbc826d8048 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  945.482172][T29190] RAX: ffffffffffffffda RBX: 00007fbc81b05f80 RCX: 00007fbc819773b9
[  945.485239][T29190] RDX: 0000000020000300 RSI: 0000000001a8d2d4 RDI: 000000000000000a
[  945.488117][T29190] RBP: 00007fbc826d80a0 R08: 0000000000000000 R09: 0000000000000000
[  945.491392][T29190] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  945.494769][T29190] R13: 000000000000004d R14: 00007fbc81b05f80 R15: 00007fffbfcfda58
[  945.497941][T29190]  </TASK>
[  946.192305][T29202] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7945'.
[  946.641451][   T39] audit: type=1400 audit(1722460997.557:3287): avc:  denied  { setopt } for  pid=29209 comm="syz.1.7947" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  946.669569][T29210] ip6gretap0 speed is unknown, defaulting to 1000
[  946.719490][   T39] audit: type=1400 audit(1722460997.637:3288): avc:  denied  { read write } for  pid=29209 comm="syz.1.7947" dev="sockfs" ino=141760 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  946.757458][   T39] audit: type=1400 audit(1722460997.677:3289): avc:  denied  { search } for  pid=29209 comm="syz.1.7947" name="/" dev="configfs" ino=3100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  946.808287][   T39] audit: type=1400 audit(1722460997.687:3290): avc:  denied  { write } for  pid=29209 comm="syz.1.7947" name="/" dev="configfs" ino=3100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  946.832492][   T39] audit: type=1400 audit(1722460997.747:3291): avc:  denied  { add_name } for  pid=29209 comm="syz.1.7947" name="cgroup.controllers" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  946.861258][   T39] audit: type=1400 audit(1722460997.767:3292): avc:  denied  { create } for  pid=29209 comm="syz.1.7947" name="cgroup.controllers" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:configfs_t tclass=file permissive=1
[  946.892671][   T39] audit: type=1400 audit(1722460997.777:3293): avc:  denied  { ioctl } for  pid=29209 comm="syz.1.7947" path="/1199/file1" dev="configfs" ino=3100 ioctlcmd=0x9366 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  947.198262][T21927] hid-generic 0000:0000:0000.0055: unknown main item tag 0x0
[  947.206540][T21927] hid-generic 0000:0000:0000.0055: unknown main item tag 0x0
[  947.211151][T21927] hid-generic 0000:0000:0000.0055: unknown main item tag 0x0
[  947.226269][T21927] hid-generic 0000:0000:0000.0055: unknown main item tag 0x0
[  947.229802][T21927] hid-generic 0000:0000:0000.0055: unknown main item tag 0x0
[  947.240019][T21927] hid-generic 0000:0000:0000.0055: unknown main item tag 0x0
[  947.248300][T21927] hid-generic 0000:0000:0000.0055: unknown main item tag 0x0
[  947.254211][T21927] hid-generic 0000:0000:0000.0055: unknown main item tag 0x0
[  947.264454][T21927] hid-generic 0000:0000:0000.0055: unknown main item tag 0x0
[  947.267870][T21927] hid-generic 0000:0000:0000.0055: collection stack underflow
[  947.271072][T21927] hid-generic 0000:0000:0000.0055: item 0 0 0 12 parsing failed
[  947.287050][T21927] hid-generic 0000:0000:0000.0055: probe with driver hid-generic failed with error -22
[  947.456475][   T66] Bluetooth: hci2: unexpected event for opcode 0x0c23
[  948.021842][T29244] input: syz0 as /devices/virtual/input/input178
[  948.032923][T29244] netlink: 'syz.1.7956': attribute type 10 has an invalid length.
[  948.036650][T29244] team0: Device netdevsim0 is up. Set it down before adding it as a team port
[  948.338440][T29251] __nla_validate_parse: 5 callbacks suppressed
[  948.338457][T29251] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7959'.
[  948.344483][T29251] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7959'.
[  948.357482][T29251] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7959'.
[  948.592266][   T66] Bluetooth: hci2: unexpected event for opcode 0x0c23
[  948.643714][T29269] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7965'.
[  948.833810][   T39] audit: type=1400 audit(1722460999.747:3294): avc:  denied  { execmem } for  pid=29271 comm="syz.0.7966" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  948.968322][T29274] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  949.083243][T29277] Cannot find add_set index 0 as target
[  949.088440][T29277] netlink: 174300 bytes leftover after parsing attributes in process `syz.1.7967'.
[  950.477489][ T5390] hid-generic 0000:0000:0000.0056: unknown main item tag 0x0
[  950.480998][ T5390] hid-generic 0000:0000:0000.0056: unknown main item tag 0x0
[  950.484189][ T5390] hid-generic 0000:0000:0000.0056: unknown main item tag 0x0
[  950.488762][ T5390] hid-generic 0000:0000:0000.0056: unknown main item tag 0x0
[  950.492081][ T5390] hid-generic 0000:0000:0000.0056: unknown main item tag 0x0
[  950.495357][ T5390] hid-generic 0000:0000:0000.0056: unknown main item tag 0x0
[  950.499835][ T5390] hid-generic 0000:0000:0000.0056: unknown main item tag 0x0
[  950.503179][ T5390] hid-generic 0000:0000:0000.0056: unknown main item tag 0x0
[  950.505790][ T5390] hid-generic 0000:0000:0000.0056: unknown main item tag 0x0
[  950.509104][ T5390] hid-generic 0000:0000:0000.0056: collection stack underflow
[  950.512267][ T5390] hid-generic 0000:0000:0000.0056: item 0 0 0 12 parsing failed
[  950.516450][ T5390] hid-generic 0000:0000:0000.0056: probe with driver hid-generic failed with error -22
[  950.956122][   T39] audit: type=1326 audit(1722461001.867:3295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29299 comm="syz.1.7973" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  951.348082][T29327] FAULT_INJECTION: forcing a failure.
[  951.348082][T29327] name failslab, interval 1, probability 0, space 0, times 0
[  951.356538][T29327] CPU: 3 UID: 0 PID: 29327 Comm: syz.2.7981 Not tainted 6.11.0-rc1-syzkaller-00062-ge4fc196f5ba3 #0
[  951.361625][T29327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  951.369414][T29327] Call Trace:
[  951.370847][T29327]  <TASK>
[  951.372128][T29327]  dump_stack_lvl+0x16c/0x1f0
[  951.374326][T29327]  should_fail_ex+0x497/0x5b0
[  951.376166][T29327]  ? fs_reclaim_acquire+0xae/0x160
[  951.378269][T29327]  should_failslab+0xc2/0x120
[  951.380102][T29327]  kmem_cache_alloc_node_noprof+0x71/0x310
[  951.382354][T29327]  ? __alloc_skb+0x2b1/0x380
[  951.388195][T29327]  __alloc_skb+0x2b1/0x380
[  951.390239][T29327]  ? __pfx___alloc_skb+0x10/0x10
[  951.392627][T29327]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  951.395307][T29327]  netlink_alloc_large_skb+0x69/0x130
[  951.397919][T29327]  netlink_sendmsg+0x689/0xd70
[  951.399877][T29327]  ? __pfx_netlink_sendmsg+0x10/0x10
[  951.402237][T29327]  ? __import_iovec+0x1fd/0x6e0
[  951.404153][T29327]  ____sys_sendmsg+0xab5/0xc90
[  951.406055][T29327]  ? copy_msghdr_from_user+0x10b/0x160
[  951.408179][T29327]  ? __pfx_____sys_sendmsg+0x10/0x10
[  951.410368][T29327]  ? find_held_lock+0x2d/0x110
[  951.412476][T29327]  ? __pfx___lock_acquire+0x10/0x10
[  951.414725][T29327]  ___sys_sendmsg+0x135/0x1e0
[  951.416701][T29327]  ? __pfx____sys_sendmsg+0x10/0x10
[  951.418997][T29327]  ? ksys_write+0x21c/0x260
[  951.420823][T29327]  ? __fget_light+0x173/0x210
[  951.422682][T29327]  __sys_sendmsg+0x117/0x1f0
[  951.424742][T29327]  ? __pfx___sys_sendmsg+0x10/0x10
[  951.427158][T29327]  do_syscall_64+0xcd/0x250
[  951.429474][T29327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  951.432481][T29327] RIP: 0033:0x7f33af5773b9
[  951.434622][T29327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  951.443010][T29327] RSP: 002b:00007f33b032a048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  951.446723][T29327] RAX: ffffffffffffffda RBX: 00007f33af705f80 RCX: 00007f33af5773b9
[  951.450037][T29327] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[  951.453377][T29327] RBP: 00007f33b032a0a0 R08: 0000000000000000 R09: 0000000000000000
[  951.456972][T29327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  951.460140][T29327] R13: 000000000000000b R14: 00007f33af705f80 R15: 00007fffa70e4218
[  951.463583][T29327]  </TASK>
[  951.622014][   T39] audit: type=1400 audit(1722461002.537:3296): avc:  denied  { mount } for  pid=29328 comm="syz.2.7982" name="/" dev="autofs" ino=140046 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  951.776148][   T66] Bluetooth: hci1: unexpected event for opcode 0x201c
[  952.228270][T29340] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7984'.
[  952.232850][T29340] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7984'.
[  952.251577][T29340] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7984'.
[  952.358543][   T39] audit: type=1400 audit(1722461003.277:3297): avc:  denied  { unmount } for  pid=22714 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  952.600245][   T66] Bluetooth: hci1: unexpected event for opcode 0x043d
[  953.310294][   T39] audit: type=1326 audit(1722461004.227:3298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29344 comm="syz.3.7986" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  953.501126][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  953.657268][T29379] blktrace: Concurrent blktraces are not allowed on loop3
[  955.348371][   T39] audit: type=1326 audit(1722461006.267:3299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29389 comm="syz.3.8001" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  955.646133][   T66] Bluetooth: hci2: SCO packet for unknown connection handle 1
[  957.207427][T29435] blktrace: Concurrent blktraces are not allowed on loop3
[  957.756532][   T39] audit: type=1326 audit(1722461008.647:3300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29426 comm="syz.1.8012" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  958.211927][   T39] audit: type=1400 audit(1722461009.127:3301): avc:  denied  { create } for  pid=29450 comm="syz.0.8019" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  958.222140][   T39] audit: type=1400 audit(1722461009.127:3302): avc:  denied  { write } for  pid=29450 comm="syz.0.8019" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  958.955664][   T39] audit: type=1400 audit(1722461009.867:3303): avc:  denied  { remount } for  pid=29456 comm="syz.3.8021" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  958.955685][T29457] hugetlbfs: Invalid gid '0x00000000ffffffff'
[  959.012814][T29457] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  959.018917][T29457] qnx6: wrong signature (magic) in superblock #1.
[  959.021584][T29457] qnx6: unable to read the first superblock
[  959.375188][   T66] Bluetooth: hci1: unexpected event for opcode 0x0c23
[  959.885885][T29480] xt_CT: You must specify a L4 protocol and not use inversions on it
[  960.484402][T29470] block nbd1: shutting down sockets
[  960.642572][T29490] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  961.751035][T29509] FAULT_INJECTION: forcing a failure.
[  961.751035][T29509] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  961.757136][T29509] CPU: 3 UID: 0 PID: 29509 Comm: syz.1.8037 Not tainted 6.11.0-rc1-syzkaller-00062-ge4fc196f5ba3 #0
[  961.761463][T29509] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  961.766132][T29509] Call Trace:
[  961.767711][T29509]  <TASK>
[  961.769067][T29509]  dump_stack_lvl+0x16c/0x1f0
[  961.771252][T29509]  should_fail_ex+0x497/0x5b0
[  961.773405][T29509]  _copy_from_user+0x30/0xf0
[  961.775593][T29509]  xsk_setsockopt+0x6ba/0xa10
[  961.777809][T29509]  ? __pfx_xsk_setsockopt+0x10/0x10
[  961.780218][T29509]  ? find_held_lock+0x2d/0x110
[  961.782355][T29509]  ? selinux_socket_setsockopt+0x6a/0x80
[  961.785004][T29509]  ? __pfx_xsk_setsockopt+0x10/0x10
[  961.787374][T29509]  do_sock_setsockopt+0x222/0x480
[  961.789501][T29509]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  961.792015][T29509]  ? __fget_light+0x173/0x210
[  961.794056][T29509]  __sys_setsockopt+0x1a4/0x270
[  961.796145][T29509]  ? __pfx___sys_setsockopt+0x10/0x10
[  961.798038][T29509]  ? fput+0x32/0x390
[  961.799611][T29509]  ? ksys_write+0x1ab/0x260
[  961.801439][T29509]  ? __pfx_ksys_write+0x10/0x10
[  961.803336][T29509]  __x64_sys_setsockopt+0xbd/0x160
[  961.805010][T29509]  ? do_syscall_64+0x91/0x250
[  961.806814][T29509]  ? lockdep_hardirqs_on+0x7c/0x110
[  961.808746][T29509]  do_syscall_64+0xcd/0x250
[  961.810786][T29509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  961.813455][T29509] RIP: 0033:0x7f7b111773b9
[  961.815444][T29509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  961.823774][T29509] RSP: 002b:00007f7b12015048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  961.827377][T29509] RAX: ffffffffffffffda RBX: 00007f7b11305f80 RCX: 00007f7b111773b9
[  961.830749][T29509] RDX: 0000000000000004 RSI: 000000000000011b RDI: 0000000000000003
[  961.833771][T29509] RBP: 00007f7b120150a0 R08: 0000000000000020 R09: 0000000000000000
[  961.837100][T29509] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[  961.840632][T29509] R13: 000000000000000b R14: 00007f7b11305f80 R15: 00007ffdae642fe8
[  961.844097][T29509]  </TASK>
[  962.070212][   T66] Bluetooth: hci1: unexpected event for opcode 0x0c23
[  962.104719][T29519] xt_CT: You must specify a L4 protocol and not use inversions on it
[  962.750311][T29536] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  962.954237][T29520] block nbd2: shutting down sockets
[  965.357586][ T5417] libceph: connect (1)[c::]:6789 error -101
[  965.369494][ T5417] libceph: mon0 (1)[c::]:6789 connect error
[  965.378044][ T5417] libceph: connect (1)[c::]:6789 error -101
[  965.384766][ T5417] libceph: mon0 (1)[c::]:6789 connect error
[  965.424435][ T5417] libceph: connect (1)[c::]:6789 error -101
[  965.428056][ T5417] libceph: mon0 (1)[c::]:6789 connect error
[  965.428215][T29573] ceph: No mds server is up or the cluster is laggy
[  965.431764][T29580] ceph: No mds server is up or the cluster is laggy
[  965.439567][ T5417] libceph: connect (1)[c::]:6789 error -101
[  965.444187][ T5417] libceph: mon0 (1)[c::]:6789 connect error
[  965.542784][T29583] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8058'.
[  965.547138][T29583] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8058'.
[  965.564665][T29583] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8058'.
[  966.566336][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  966.721808][T29612] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8068'.
[  966.725937][T29612] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8068'.
[  966.734897][T29612] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8068'.
[  966.776722][T21927] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  967.009678][T21927] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  967.016630][T21927] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  967.022263][T21927] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  967.028036][T21927] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  967.033703][T21927] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  967.046686][T21927] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  967.065640][T21927] usb 6-1: config 0 descriptor??
[  967.515822][T21927] plantronics 0003:047F:FFFF.0057: unknown main item tag 0x0
[  967.519066][T21927] plantronics 0003:047F:FFFF.0057: unknown main item tag 0x0
[  967.522172][T21927] plantronics 0003:047F:FFFF.0057: unknown main item tag 0x0
[  967.525775][T21927] plantronics 0003:047F:FFFF.0057: No inputs registered, leaving
[  967.536648][T21927] plantronics 0003:047F:FFFF.0057: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  967.549982][T29625] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8071'.
[  967.554412][T29625] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8071'.
[  967.569483][T29625] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8071'.
[  967.621637][   T66] Bluetooth: hci2: unexpected event for opcode 0x0c23
[  968.163855][T29645] input: syz1 as /devices/virtual/input/input186
[  968.650487][   T66] Bluetooth: hci2: unexpected event for opcode 0x0c23
[  968.843961][T29653] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8079'.
[  968.979406][   T66] Bluetooth: hci1: unexpected event for opcode 0x043d
[  969.182447][T29664] ata1.00: invalid command format 189
[  969.571007][T28771] usb 6-1: USB disconnect, device number 24
[  970.012791][T29661] block nbd0: shutting down sockets
[  970.708947][   T39] audit: type=1400 audit(1722461021.627:3304): avc:  denied  { nlmsg_write } for  pid=29694 comm="syz.3.8090" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  971.079046][T29682] block nbd0: shutting down sockets
[  971.463102][T29720] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  971.553615][   T39] audit: type=1400 audit(1722461022.467:3305): avc:  denied  { watch_mount } for  pid=29712 comm="syz.0.8093" path="/1284" dev="tmpfs" ino=6854 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  972.367296][T29734] ata1.00: invalid command format 189
[  972.417764][T29731] __nla_validate_parse: 5 callbacks suppressed
[  972.417782][T29731] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8098'.
[  972.424935][T29731] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8098'.
[  972.460486][T29731] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8098'.
[  973.457919][T29740] block nbd1: shutting down sockets
[  973.677513][T29750] block nbd2: shutting down sockets
[  973.704556][T29767] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8107'.
[  973.716841][T29767] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8107'.
[  973.848815][T21927] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  973.852243][T21927] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  973.855995][T21927] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  973.859122][T21927] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  973.862414][T21927] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  973.865640][T21927] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  973.870110][T21927] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  973.873574][T21927] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  973.877195][T21927] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  973.880744][T21927] hid-generic 0000:0000:0000.0058: collection stack underflow
[  973.884137][T21927] hid-generic 0000:0000:0000.0058: item 0 0 0 12 parsing failed
[  973.888232][T21927] hid-generic 0000:0000:0000.0058: probe with driver hid-generic failed with error -22
[  974.095760][T29775] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8110'.
[  974.099663][T29775] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8110'.
[  974.114776][T29775] netlink: 24 bytes leftover after parsing attributes in process `syz.1.8110'.
[  974.386399][   T39] audit: type=1326 audit(1722461025.297:3306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29765 comm="syz.3.8107" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[  974.607953][T29783] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8111'.
[  974.611986][T29783] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8111'.
[  975.349804][T29790] block nbd3: shutting down sockets
[  975.642367][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  976.517329][T29812] block nbd2: shutting down sockets
[  976.681860][T28633] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  976.685430][T28633] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  976.689394][T28633] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  976.692268][T28633] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  976.695880][T28633] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  976.700701][T28633] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  976.703654][T28633] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  976.707250][T28633] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  976.710379][T28633] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  976.713949][T28633] hid-generic 0000:0000:0000.0059: collection stack underflow
[  976.717477][T28633] hid-generic 0000:0000:0000.0059: item 0 0 0 12 parsing failed
[  976.721070][T28633] hid-generic 0000:0000:0000.0059: probe with driver hid-generic failed with error -22
[  976.769129][T29836] team0: Device bridge0 is already an upper device of the team interface
[  976.798617][   T39] audit: type=1326 audit(1722461027.717:3307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29821 comm="syz.1.8121" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  976.928956][T29852] blktrace: Concurrent blktraces are not allowed on loop3
[  977.635461][T29838] block nbd3: shutting down sockets
[  977.978538][T29858] block nbd1: shutting down sockets
[  978.033795][T29872] __nla_validate_parse: 3 callbacks suppressed
[  978.033806][T29872] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8131'.
[  978.039799][T29872] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8131'.
[  978.053874][T29872] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8131'.
[  978.786754][T29884] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8135'.
[  978.790821][T29884] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8135'.
[  978.900697][T29885] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8136'.
[  978.903830][T29885] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8136'.
[  978.935401][T29885] netlink: 24 bytes leftover after parsing attributes in process `syz.1.8136'.
[  979.380095][T29892] blktrace: Concurrent blktraces are not allowed on loop3
[  979.540249][   T39] audit: type=1326 audit(1722461030.457:3308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29882 comm="syz.0.8135" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc819773b9 code=0x7fc00000
[  979.973850][   T66] Bluetooth: hci1: unexpected event for opcode 0x043d
[  980.439668][T29909] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8142'.
[  980.443848][T29909] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8142'.
[  981.058252][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  981.966435][   T39] audit: type=1326 audit(1722461032.877:3309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29925 comm="syz.1.8147" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  982.114463][T29939] blktrace: Concurrent blktraces are not allowed on loop3
[  982.925155][T29937] block nbd1: shutting down sockets
[  984.495697][T29970] __nla_validate_parse: 7 callbacks suppressed
[  984.495716][T29970] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8159'.
[  984.502371][T29970] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8159'.
[  984.520217][T29970] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8159'.
[  984.881908][T29983] blktrace: Concurrent blktraces are not allowed on loop3
[  984.964725][T29978] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8161'.
[  984.968549][T29978] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8161'.
[  984.985562][T29978] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8161'.
[  985.285612][T29986] blktrace: Concurrent blktraces are not allowed on loop3
[  988.714813][T30035] blktrace: Concurrent blktraces are not allowed on loop3
[  988.921946][T30039] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8180'.
[  988.926057][T30039] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8180'.
[  988.936511][T30039] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8180'.
[  989.515445][   T39] audit: type=1326 audit(1722461040.417:3310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30033 comm="syz.1.8179" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  989.780660][T30054] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8185'.
[  989.784725][T30054] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8185'.
[  989.795309][T30054] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8185'.
[  990.033050][T29396] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  990.040357][T29396] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  990.043557][T29396] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  990.046899][T29396] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  990.049686][T29396] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  990.052767][T29396] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  990.055434][T29396] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  990.058652][T29396] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  990.063011][T29396] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  990.066605][T29396] hid-generic 0000:0000:0000.005A: collection stack underflow
[  990.069653][T29396] hid-generic 0000:0000:0000.005A: item 0 0 0 12 parsing failed
[  990.073258][T29396] hid-generic 0000:0000:0000.005A: probe with driver hid-generic failed with error -22
[  990.131381][   T66] Bluetooth: hci2: unexpected event for opcode 0x0c23
[  990.809961][T30076] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8189'.
[  990.814859][T30076] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8189'.
[  991.386247][   T39] audit: type=1326 audit(1722461042.297:3311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30072 comm="syz.0.8189" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc819773b9 code=0x7fc00000
[  991.550033][T30086] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  991.779502][   T39] audit: type=1326 audit(1722461042.697:3312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30078 comm="syz.2.8192" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33af5773b9 code=0x7fc00000
[  991.928196][   T66] Bluetooth: hci2: unexpected event for opcode 0x0c23
[  992.257011][T30097] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8195'.
[  992.260985][T30097] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8195'.
[  992.309654][T30097] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8195'.
[  992.808513][T30113] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8200'.
[  992.937125][T30119] blktrace: Concurrent blktraces are not allowed on loop3
[  993.834278][   T66] Bluetooth: hci1: unexpected event for opcode 0x0c23
[  994.055406][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[  994.118134][T30139] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8206'.
[  994.394210][   T39] audit: type=1326 audit(1722461045.307:3313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30127 comm="syz.1.8204" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b111773b9 code=0x7fc00000
[  995.953729][T30172] __nla_validate_parse: 3 callbacks suppressed
[  995.953745][T30172] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8217'.
[  995.961137][T30172] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8217'.
[  995.987580][T30172] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8217'.
[  996.422336][T30189] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8221'.
[  996.426084][T30189] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8221'.
[  996.438687][T30189] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8221'.
[  996.931508][T30207] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8226'.
[  998.193252][T30237] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  998.429094][ T1379] ieee802154 phy0 wpan0: encryption failed: -22
[  998.436428][ T1379] ieee802154 phy1 wpan1: encryption failed: -22
[  998.825269][T30246] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8235'.
[  998.836231][T30246] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8235'.
[  999.019522][T30243] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8235'.
[ 1000.135599][T30279] blktrace: Concurrent blktraces are not allowed on loop3
[ 1000.457349][   T66] Bluetooth: hci1: unexpected event for opcode 0x043d
[ 1000.826087][   T66] Bluetooth: hci1: unexpected event for opcode 0x043d
[ 1002.781400][T30320] blktrace: Concurrent blktraces are not allowed on loop3
[ 1002.970123][T30323] __nla_validate_parse: 3 callbacks suppressed
[ 1002.970138][T30323] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8257'.
[ 1002.976692][T30323] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8257'.
[ 1003.224080][ T5417] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[ 1003.228401][ T5417] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[ 1003.231758][ T5417] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[ 1003.235706][ T5417] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[ 1003.243318][ T5417] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[ 1003.245833][ T5417] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[ 1003.248568][ T5417] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[ 1003.251342][ T5417] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[ 1003.254679][ T5417] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[ 1003.257863][ T5417] hid-generic 0000:0000:0000.005B: collection stack underflow
[ 1003.260797][ T5417] hid-generic 0000:0000:0000.005B: item 0 0 0 12 parsing failed
[ 1003.264084][ T5417] hid-generic 0000:0000:0000.005B: probe with driver hid-generic failed with error -22
[ 1003.457551][T30331] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8259'.
[ 1003.674736][   T39] audit: type=1326 audit(1722461054.587:3314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30321 comm="syz.0.8257" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc819773b9 code=0x7fc00000
[ 1004.780499][T30353] blktrace: Concurrent blktraces are not allowed on loop3
[ 1005.353543][T30357] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8269'.
[ 1006.709252][T30388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8272'.
[ 1006.713128][T30388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8272'.
[ 1006.794040][T30388] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8272'.
[ 1007.328721][T30396] blktrace: Concurrent blktraces are not allowed on loop3
[ 1007.517588][T30399] blktrace: Concurrent blktraces are not allowed on loop3
[ 1008.019366][T30402] blktrace: Concurrent blktraces are not allowed on loop3
[ 1008.826539][ T5390] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[ 1009.016605][ T5390] usb 5-1: Using ep0 maxpacket: 8
[ 1009.020994][ T5390] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[ 1009.024601][ T5390] usb 5-1: config 179 has no interface number 0
[ 1009.027917][ T5390] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1009.032696][ T5390] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1009.037690][ T5390] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1009.042421][ T5390] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 1009.048944][ T5390] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1009.054451][ T5390] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1009.058363][ T5390] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1009.064892][T30415] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1009.288940][ T5390] kernel write not supported for file bpf-prog (pid: 5390 comm: kworker/2:4)
[ 1009.507619][    C2] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1009.507626][T28771] usb 5-1: USB disconnect, device number 37
[ 1009.913878][T30432] blktrace: Concurrent blktraces are not allowed on loop3
[ 1010.880240][T30447] blktrace: Concurrent blktraces are not allowed on loop3
[ 1012.057433][T30459] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8296'.
[ 1012.061082][T30459] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8296'.
[ 1012.069752][T30459] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8296'.
[ 1013.039481][T30487] blktrace: Concurrent blktraces are not allowed on loop3
[ 1013.404157][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[ 1013.600764][T30498] blktrace: Concurrent blktraces are not allowed on loop3
[ 1013.608041][T30497] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[ 1014.080367][T30506] netlink: 'syz.0.8310': attribute type 16 has an invalid length.
[ 1014.875633][T30521] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[ 1016.149254][T30551] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[ 1016.543660][T30561] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8326'.
[ 1016.550489][T30561] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8326'.
[ 1017.200102][   T39] audit: type=1326 audit(1722461068.117:3315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30555 comm="syz.3.8326" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdc2f773b9 code=0x7fc00000
[ 1017.291506][   T66] Bluetooth: hci2: unexpected event for opcode 0x0c23
[ 1017.348700][   T66] Bluetooth: hci2: unexpected event for opcode 0x043d
[ 1018.554624][T30611] blktrace: Concurrent blktraces are not allowed on loop3
[ 1018.599439][   T10] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[ 1018.806441][   T10] usb 5-1: Using ep0 maxpacket: 8
[ 1018.827145][   T10] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[ 1018.830947][   T10] usb 5-1: config 179 has no interface number 0
[ 1018.833821][   T10] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1018.838966][   T10] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1018.848018][   T10] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1018.854115][   T10] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 1018.861060][   T10] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1018.869272][   T10] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1018.873302][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1018.884215][T30607] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1019.054979][T30621] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8345'.
[ 1019.071464][T30621] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8345'.
[ 1019.085949][T30621] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8345'.
[ 1019.249320][ T5389] kernel write not supported for file bpf-prog (pid: 5389 comm: kworker/1:3)
[ 1019.483497][ T5389] usb 5-1: USB disconnect, device number 38
[ 1019.483649][    C0] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1020.238038][ T5390] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[ 1020.241071][ T5390] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[ 1020.243910][ T5390] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[ 1020.255595][ T5390] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[ 1020.259119][ T5390] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[ 1020.262369][ T5390] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[ 1020.265578][ T5390] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[ 1020.270442][ T5390] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[ 1020.273384][ T5390] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[ 1020.287089][ T5390] hid-generic 0000:0000:0000.005C: collection stack underflow
[ 1020.293942][ T5390] hid-generic 0000:0000:0000.005C: item 0 0 0 12 parsing failed
[ 1020.298356][ T5390] hid-generic 0000:0000:0000.005C: probe with driver hid-generic failed with error -22
[ 1020.405650][T30655] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8356'.
[ 1022.155971][T30684] netlink: 28 bytes leftover after parsing attributes in process `syz.1.8366'.
[ 1022.239465][T30691] ==================================================================
[ 1022.243008][T30691] BUG: KASAN: slab-use-after-free in rose_get_neigh+0x549/0x640
[ 1022.245536][T30691] Read of size 1 at addr ffff88803b55f030 by task syz.3.8368/30691
[ 1022.250270][T30691] 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1022.251846][T30691] CPU: 0 UID: 0 PID: 30691 Comm: syz.3.8368 Not tainted 6.11.0-rc1-syzkaller-00062-ge4fc196f5ba3 #0
[ 1022.256008][T30691] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1022.260535][T30691] Call Trace:
[ 1022.261752][T30691]  <TASK>
[ 1022.262932][T30691]  dump_stack_lvl+0x116/0x1f0
[ 1022.264914][T30691]  print_report+0xc3/0x620
[ 1022.266884][T30691]  ? __virt_addr_valid+0x5e/0x590
[ 1022.269082][T30691]  ? __phys_addr+0xc6/0x150
[ 1022.271045][T30691]  kasan_report+0xd9/0x110
[ 1022.272894][T30691]  ? rose_get_neigh+0x549/0x640
[ 1022.274897][T30691]  ? rose_get_neigh+0x549/0x640
[ 1022.277005][T30691]  rose_get_neigh+0x549/0x640
[ 1022.279070][T30691]  rose_connect+0x2d2/0x1500
[ 1022.281097][T30691]  ? __pfx_rose_connect+0x10/0x10
[ 1022.282990][T30691]  ? __local_bh_enable_ip+0xa4/0x120
[ 1022.284904][T30691]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1022.287040][T30691]  ? selinux_netlbl_socket_connect+0x30/0x40
[ 1022.289582][T30691]  ? __local_bh_enable_ip+0xa4/0x120
[ 1022.291798][T30691]  ? selinux_netlbl_socket_connect+0x30/0x40
[ 1022.294403][T30691]  ? selinux_socket_connect+0x6b/0x80
[ 1022.296638][T30691]  ? __pfx_rose_connect+0x10/0x10
[ 1022.298808][T30691]  __sys_connect_file+0x15f/0x1a0
[ 1022.300979][T30691]  __sys_connect+0x149/0x170
[ 1022.302890][T30691]  ? __pfx___sys_connect+0x10/0x10
[ 1022.305044][T30691]  __x64_sys_connect+0x72/0xb0
[ 1022.307075][T30691]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1022.309277][T30691]  do_syscall_64+0xcd/0x250
[ 1022.311454][T30691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1022.314039][T30691] RIP: 0033:0x7fbdc2f773b9
[ 1022.315891][T30691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1022.323768][T30691] RSP: 002b:00007fbdc3d54048 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1022.327201][T30691] RAX: ffffffffffffffda RBX: 00007fbdc3105f80 RCX: 00007fbdc2f773b9
[ 1022.330449][T30691] RDX: 000000000000001c RSI: 00000000200006c0 RDI: 0000000000000004
[ 1022.333721][T30691] RBP: 00007fbdc2fe48e6 R08: 0000000000000000 R09: 0000000000000000
[ 1022.336983][T30691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1022.340210][T30691] R13: 000000000000000b R14: 00007fbdc3105f80 R15: 00007fff5c31e668
[ 1022.343613][T30691]  </TASK>
[ 1022.344895][T30691] 
[ 1022.345889][T30691] Allocated by task 26519:
[ 1022.347780][T30691]  kasan_save_stack+0x33/0x60
[ 1022.349627][T30691]  kasan_save_track+0x14/0x30
[ 1022.351660][T30691]  __kasan_kmalloc+0xaa/0xb0
[ 1022.353562][T30691]  tomoyo_find_next_domain+0x102/0x2020
[ 1022.355756][T30691]  tomoyo_bprm_check_security+0x12e/0x1d0
[ 1022.358083][T30691]  security_bprm_check+0x65/0xb0
[ 1022.360155][T30691]  bprm_execve+0x642/0x1960
[ 1022.362008][T30691]  kernel_execve+0x2ef/0x3b0
[ 1022.363969][T30691]  call_usermodehelper_exec_async+0x255/0x4c0
[ 1022.366634][T30691]  ret_from_fork+0x45/0x80
[ 1022.368604][T30691]  ret_from_fork_asm+0x1a/0x30
[ 1022.370709][T30691] 
[ 1022.371707][T30691] Freed by task 26519:
[ 1022.373285][T30691]  kasan_save_stack+0x33/0x60
[ 1022.375231][T30691]  kasan_save_track+0x14/0x30
[ 1022.377219][T30691]  kasan_save_free_info+0x3b/0x60
[ 1022.379408][T30691]  poison_slab_object+0xf7/0x160
[ 1022.381576][T30691]  __kasan_slab_free+0x32/0x50
[ 1022.383697][T30691]  kfree+0x12a/0x3b0
[ 1022.385416][T30691]  tomoyo_find_next_domain+0x785/0x2020
[ 1022.387836][T30691]  tomoyo_bprm_check_security+0x12e/0x1d0
[ 1022.390325][T30691]  security_bprm_check+0x65/0xb0
[ 1022.392491][T30691]  bprm_execve+0x642/0x1960
[ 1022.394444][T30691]  kernel_execve+0x2ef/0x3b0
[ 1022.396464][T30691]  call_usermodehelper_exec_async+0x255/0x4c0
[ 1022.399129][T30691]  ret_from_fork+0x45/0x80
[ 1022.401097][T30691]  ret_from_fork_asm+0x1a/0x30
[ 1022.403167][T30691] 
[ 1022.404155][T30691] The buggy address belongs to the object at ffff88803b55f000
[ 1022.404155][T30691]  which belongs to the cache kmalloc-512 of size 512
[ 1022.409363][T30691] The buggy address is located 48 bytes inside of
[ 1022.409363][T30691]  freed 512-byte region [ffff88803b55f000, ffff88803b55f200)
[ 1022.414552][T30691] 
[ 1022.415378][T30691] The buggy address belongs to the physical page:
[ 1022.417667][T30691] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88803b55d000 pfn:0x3b55c
[ 1022.421536][T30691] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1022.424814][T30691] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[ 1022.428208][T30691] page_type: 0xfdffffff(slab)
[ 1022.430026][T30691] raw: 00fff00000000240 ffff888015842c80 ffffea0000a2e610 ffffea000083df10
[ 1022.433599][T30691] raw: ffff88803b55d000 0000000000100009 00000001fdffffff 0000000000000000
[ 1022.436845][T30691] head: 00fff00000000240 ffff888015842c80 ffffea0000a2e610 ffffea000083df10
[ 1022.440161][T30691] head: ffff88803b55d000 0000000000100009 00000001fdffffff 0000000000000000
[ 1022.443881][T30691] head: 00fff00000000002 ffffea0000ed5701 ffffffffffffffff 0000000000000000
[ 1022.447172][T30691] head: 0000000700000004 0000000000000000 00000000ffffffff 0000000000000000
[ 1022.450750][T30691] page dumped because: kasan: bad access detected
[ 1022.453096][T30691] page_owner tracks the page as allocated
[ 1022.455299][T30691] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 4823, tgid 4823 (udevd), ts 91305192031, free_ts 91295467551
[ 1022.464088][T30691]  post_alloc_hook+0x2d1/0x350
[ 1022.465842][T30691]  get_page_from_freelist+0x1351/0x2e50
[ 1022.468222][T30691]  __alloc_pages_noprof+0x22b/0x2460
[ 1022.470366][T30691]  alloc_slab_page+0x4e/0xf0
[ 1022.472312][T30691]  new_slab+0x84/0x260
[ 1022.474037][T30691]  ___slab_alloc+0xdac/0x1870
[ 1022.476093][T30691]  __slab_alloc.constprop.0+0x56/0xb0
[ 1022.478236][T30691]  __kmalloc_cache_noprof+0x2b4/0x300
[ 1022.480278][T30691]  kernfs_fop_open+0x28b/0xdb0
[ 1022.482145][T30691]  do_dentry_open+0x91f/0x15f0
[ 1022.484027][T30691]  vfs_open+0x82/0x3f0
[ 1022.485638][T30691]  path_openat+0x2141/0x2d20
[ 1022.487436][T30691]  do_filp_open+0x1dc/0x430
[ 1022.489206][T30691]  do_sys_openat2+0x17a/0x1e0
[ 1022.491419][T30691]  __x64_sys_openat+0x175/0x210
[ 1022.493288][T30691]  do_syscall_64+0xcd/0x250
[ 1022.495170][T30691] page last free pid 5346 tgid 5346 stack trace:
[ 1022.497592][T30691]  free_unref_page+0x64a/0xe40
[ 1022.499368][T30691]  stack_depot_save_flags+0x2da/0x8f0
[ 1022.501366][T30691]  kasan_save_stack+0x42/0x60
[ 1022.503266][T30691]  kasan_save_track+0x14/0x30
[ 1022.505173][T30691]  __kasan_kmalloc+0xaa/0xb0
[ 1022.507134][T30691]  kobject_uevent_env+0x265/0x1860
[ 1022.509207][T30691]  device_del+0x623/0x9f0
[ 1022.511040][T30691]  rfkill_unregister+0xd0/0x2c0
[ 1022.513030][T30691]  hci_unregister_dev+0x323/0x620
[ 1022.514984][T30691]  vhci_release+0x7f/0x100
[ 1022.516634][T30691]  __fput+0x408/0xbb0
[ 1022.518229][T30691]  task_work_run+0x14e/0x250
[ 1022.520088][T30691]  do_exit+0xaa3/0x2bb0
[ 1022.521748][T30691]  do_group_exit+0xd3/0x2a0
[ 1022.523441][T30691]  get_signal+0x25fd/0x2770
[ 1022.525202][T30691]  arch_do_signal_or_restart+0x90/0x7e0
[ 1022.527297][T30691] 
[ 1022.528248][T30691] Memory state around the buggy address:
[ 1022.530261][T30691]  ffff88803b55ef00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1022.533380][T30691]  ffff88803b55ef80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1022.536595][T30691] >ffff88803b55f000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1022.539623][T30691]                                      ^
[ 1022.541698][T30691]  ffff88803b55f080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1022.545186][T30691]  ffff88803b55f100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1022.548561][T30691] ==================================================================
[ 1022.552067][T30691] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1022.554983][T30691] CPU: 0 UID: 0 PID: 30691 Comm: syz.3.8368 Not tainted 6.11.0-rc1-syzkaller-00062-ge4fc196f5ba3 #0
[ 1022.559179][T30691] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1022.563727][T30691] Call Trace:
[ 1022.565162][T30691]  <TASK>
[ 1022.566284][T30691]  dump_stack_lvl+0x3d/0x1f0
[ 1022.568077][T30691]  panic+0x6f5/0x7a0
[ 1022.569737][T30691]  ? mark_held_locks+0x9f/0xe0
[ 1022.571850][T30691]  ? __pfx_panic+0x10/0x10
[ 1022.573845][T30691]  ? irqentry_exit+0x3b/0x90
[ 1022.575636][T30691]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1022.577562][T30691]  check_panic_on_warn+0xab/0xb0
[ 1022.579430][T30691]  end_report+0x117/0x180
[ 1022.581088][T30691]  kasan_report+0xe9/0x110
[ 1022.582824][T30691]  ? rose_get_neigh+0x549/0x640
[ 1022.584924][T30691]  ? rose_get_neigh+0x549/0x640
[ 1022.587117][T30691]  rose_get_neigh+0x549/0x640
[ 1022.589215][T30691]  rose_connect+0x2d2/0x1500
[ 1022.591334][T30691]  ? __pfx_rose_connect+0x10/0x10
[ 1022.593431][T30691]  ? __local_bh_enable_ip+0xa4/0x120
[ 1022.595627][T30691]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1022.597793][T30691]  ? selinux_netlbl_socket_connect+0x30/0x40
[ 1022.600418][T30691]  ? __local_bh_enable_ip+0xa4/0x120
[ 1022.602603][T30691]  ? selinux_netlbl_socket_connect+0x30/0x40
[ 1022.605249][T30691]  ? selinux_socket_connect+0x6b/0x80
[ 1022.607125][T30691]  ? __pfx_rose_connect+0x10/0x10
[ 1022.608917][T30691]  __sys_connect_file+0x15f/0x1a0
[ 1022.611091][T30691]  __sys_connect+0x149/0x170
[ 1022.612725][T30691]  ? __pfx___sys_connect+0x10/0x10
[ 1022.614582][T30691]  __x64_sys_connect+0x72/0xb0
[ 1022.616352][T30691]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1022.618136][T30691]  do_syscall_64+0xcd/0x250
[ 1022.620009][T30691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1022.622500][T30691] RIP: 0033:0x7fbdc2f773b9
[ 1022.624000][T30691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1022.630854][T30691] RSP: 002b:00007fbdc3d54048 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1022.634395][T30691] RAX: ffffffffffffffda RBX: 00007fbdc3105f80 RCX: 00007fbdc2f773b9
[ 1022.637671][T30691] RDX: 000000000000001c RSI: 00000000200006c0 RDI: 0000000000000004
[ 1022.641019][T30691] RBP: 00007fbdc2fe48e6 R08: 0000000000000000 R09: 0000000000000000
[ 1022.644300][T30691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1022.647435][T30691] R13: 000000000000000b R14: 00007fbdc3105f80 R15: 00007fff5c31e668
[ 1022.650188][T30691]  </TASK>
[ 1022.652013][T30691] Kernel Offset: disabled
[ 1022.653658][T30691] Rebooting in 86400 seconds..

VM DIAGNOSIS:
21:07:28  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff84fe2745 RDI=ffffffff9519a720 RBP=ffffffff9519a6e0 RSP=ffffc9000363f6d0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3330383838666666
R12=0000000000000000 R13=0000000000000020 R14=ffffffff84fe26e0 R15=0000000000000000
RIP=ffffffff84fe276f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fbdc3d546c0 ffffffff 00c00000
GS =0000 ffff88806b000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c3567af CR3=0000000059662000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc2fe56c5
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc2fe56d2
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc2fe56cc
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc2fe56e0
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc2fe5766
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc2fe5844
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc30d5488 00007fbdc30d5480 00007fbdc30d5478 00007fbdc30d5450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc3c3d100 00007fbdc30d5440 00007fbdc30d5458 00007fbdc30d54a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc30d5498 00007fbdc30d5490 00007fbdc30d5488 00007fbdc30d5480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000016a70a5 RBX=0000000000000001 RCX=ffffffff8b11a529 RDX=0000000000000000
RSI=ffffffff8b4cc580 RDI=ffffffff8bb08480 RBP=ffffed10030d8910 RSP=ffffc90000187e08
R8 =0000000000000001 R9 =ffffed100d626fd9 R10=ffff88806b137ecb R11=0000000000000000
R12=0000000000000001 R13=ffff8880186c4880 R14=ffffffff9012b0d8 R15=0000000000000000
RIP=ffffffff8b11b91f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b100000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fbdc3d53fa8 CR3=000000005683c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff5c31e9f0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc2fe56c5
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc2fe56d2
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc2fe56cc
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc2fe56e0
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc2fe5766
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdc2fe5844
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffffea0000b66800 RCX=ffffffff81f1c8bf RDX=ffff888024d14880
RSI=0000000080000000 RDI=0000000000000005 RBP=ffff8880171c0200 RSP=ffffc9000332f7c8
R8 =0000000000000005 R9 =0000000080000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000001 R14=0000000000000000 R15=ffffc9000332fcc8
RIP=ffffffff818a74a4 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b200000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffd6eb7dad0 CR3=00000000266a4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=000000000000000f Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f48f10d56a3 00007f48f10d56a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd6eb7fcd0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556a83e3c8 000055556a83e3c0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556a7c04a8
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556a83c7ec 000055556a83c600
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556a7c28c0 000055556a7c2890
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556a7c2900
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7665642f01ffffff ffffffffffeb0802 800300100003ffff ffff041410000601
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100100000208080 8090000280040601 41a600236365632f 7665642f01ffffff
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffeb0802 800300100003ffff ffff041410000601 01dc0cbff010000c
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 da80040100000608 0606012ef4028004 0210000008000601 3086000800028003
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0010000010000780 040606419e007273 6d2f232f7570632f 7665642f01ffffff
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000f9dfb5 RBX=0000000000000003 RCX=ffffffff8b11a529 RDX=0000000000000000
RSI=ffffffff8b4cc580 RDI=ffffffff8bb08480 RBP=ffffed10030db488 RSP=ffffc900001a7e08
R8 =0000000000000001 R9 =ffffed100d666fd9 R10=ffff88806b337ecb R11=0000000000000000
R12=0000000000000003 R13=ffff8880186da440 R14=ffffffff9012b0d8 R15=0000000000000000
RIP=ffffffff8b11b91f RFL=00000242 [---Z---] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020400000 CR3=0000000053186000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffa70e45a0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33af5e56c5
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33af5e56d2
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33af5e56cc
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33af5e56e0
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33af5e5766
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f33af5e5844
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000