last executing test programs:

5m36.152061111s ago: executing program 1 (id=118):
socket(0x10, 0x803, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./bus\x00', 0x0, 0x0)
fanotify_init(0x200, 0x80000)
syz_io_uring_setup(0xd1, &(0x7f00000003c0)={0x0, 0xe57f, 0x100, 0x22, 0x335}, 0x0, 0x0)
signalfd(0xffffffffffffffff, &(0x7f0000000600), 0x8)
syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x8042)
syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x822b01)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x44)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850)
r1 = syz_open_dev$dri(&(0x7f0000000440), 0x2, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r2=>0x0], 0x1})
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, 0x0, &(0x7f0000000200)=r3}, 0x1e)
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r2], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)}) (fail_nth: 6)

5m36.073491891s ago: executing program 1 (id=121):
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYBLOB], 0x48}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400210100000000000000", @ANYRES32=r1, @ANYBLOB="08000400ffffffff08000200e0"], 0x28}}, 0x4048001)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400212100000000000000000200"], 0x28}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@ipv4_newaddr={0x20, 0x14, 0x121, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}, [@IFA_LOCAL={0x8, 0x2, @dev}]}, 0x20}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv4_deladdr={0x18, 0x15, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}}, 0x18}}, 0x0)

5m36.01255577s ago: executing program 1 (id=123):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x68942, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (fail_nth: 8)

5m35.493647367s ago: executing program 1 (id=129):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=@gettaction={0xe8, 0x32, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x3c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0x10, 0x16, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0x10, 0xd, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0xc, 0x1b, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x10000}, @action_gd=@TCA_ACT_TAB={0x3c, 0x1, [{0xc, 0x19, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x6}}, {0x10, 0x1b, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0xc, 0x1c, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1}}, {0x10, 0x13, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x54, 0x1, [{0xc, 0x1b, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x4}}, {0x10, 0x1e, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x7, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xffff}}, {0x10, 0x6, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}, {0xc, 0x8, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2f4}}, {0xc, 0xa, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1000}}]}]}, 0xe8}, 0x1, 0x0, 0x0, 0x48880}, 0x800)
r4 = socket(0x10, 0x3, 0x0)
write(r4, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000ac0)=@newtfilter={0x68, 0x28, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r3, {0x700, 0x9}, {0x700}, {0x9, 0x7}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x38, 0x2, [@TCA_CGROUP_ACT={0x34, 0x1, [@m_skbmod={0x30, 0x1b, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x68}, 0x1, 0x0, 0x0, 0x810}, 0x40c4)

5m35.38141618s ago: executing program 1 (id=136):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x2, 0x1, 0x10}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000140), 0x42400, 0x0)
syz_open_dev$usbfs(&(0x7f0000000140), 0xd, 0x3501)
close(0x3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001d00000020000180140002006e657464657673696d30000000000000080003"], 0x34}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'vxcan0\x00', <r3=>0x0})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000280)={'syztnl1\x00', &(0x7f0000000200)={'ip6_vti0\x00', <r4=>0x0, 0x4, 0x57, 0x8, 0x3, 0x29, @mcast2, @remote, 0x80, 0x1, 0x5, 0x9}})
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'team0\x00', <r5=>0x0})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000400)={'sit0\x00', &(0x7f0000000300)={'gretap0\x00', <r6=>0x0, 0x20, 0x80, 0xd, 0x3, {{0x2c, 0x4, 0x0, 0x0, 0xb0, 0x66, 0x0, 0x6, 0x4, 0x0, @loopback, @multicast2, {[@timestamp_addr={0x44, 0x4c, 0xb8, 0x1, 0x9, [{@private=0xa010101, 0x8}, {@empty, 0x80000000}, {@loopback, 0xffff}, {@broadcast, 0xfffffff8}, {@remote, 0x1}, {@dev={0xac, 0x14, 0x14, 0x2d}, 0x400}, {@rand_addr=0x64010100, 0x80000000}, {@empty, 0x8f}, {@empty, 0xd}]}, @noop, @end, @ra={0x94, 0x4, 0x1}, @generic={0x83, 0x6, "628d2fd1"}, @generic={0x82, 0x5, "92a323"}, @cipso={0x86, 0x19, 0x3, [{0x1, 0x10, "9ed7362b3b78aa18f30ccd358eb3"}, {0x0, 0x3, 'I'}]}, @noop, @ssrr={0x89, 0xf, 0x28, [@empty, @multicast1, @multicast1]}, @lsrr={0x83, 0x13, 0x1e, [@broadcast, @rand_addr=0x64010102, @empty, @rand_addr=0x64010102]}]}}}}})
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x401c5820, &(0x7f0000000080)={0x8})
fstat(r7, &(0x7f0000000300))
syz_genetlink_get_family_id$tipc(&(0x7f0000000840), r7)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000004c0)={'gretap0\x00', &(0x7f0000000440)={'gretap0\x00', <r8=>0x0, 0x1, 0x7, 0x200, 0x3, {{0xc, 0x4, 0x3, 0x6, 0x30, 0x65, 0x0, 0x0, 0x29, 0x0, @multicast2, @empty, {[@ssrr={0x89, 0x7, 0xd8, [@initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp={0x44, 0x10, 0xdc, 0x0, 0x8, [0x9f, 0x0, 0x24e]}, @end, @ra={0x94, 0x4}]}}}}})
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x3, 0x0, {0x0, 0x0, 0x0, r10, {0x0, 0x4}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_plug={{0x9}, {0xc, 0x2, {0x0, 0xffff0001}}}]}, 0x3c}}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000580)={0x1, 0x58, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r11=>0x0}}, 0x10)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000600)={0x11, 0x0, <r12=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000005c0)=0xa)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000000800)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000640)={0x154, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}]}]}, 0x154}, 0x1, 0x0, 0x0, 0x24008004}, 0x8804)

5m35.178859356s ago: executing program 1 (id=140):
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYBLOB], 0x48}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400210100000000000000", @ANYRES32=r1, @ANYBLOB="08000400ffffffff08000200e0"], 0x28}}, 0x4048001)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400212100000000000000000200"], 0x28}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@ipv4_newaddr={0x20, 0x14, 0x121, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}, [@IFA_LOCAL={0x8, 0x2, @dev}]}, 0x20}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv4_deladdr={0x18, 0x15, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}}, 0x18}}, 0x0)

5m20.117926122s ago: executing program 32 (id=140):
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYBLOB], 0x48}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400210100000000000000", @ANYRES32=r1, @ANYBLOB="08000400ffffffff08000200e0"], 0x28}}, 0x4048001)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400212100000000000000000200"], 0x28}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@ipv4_newaddr={0x20, 0x14, 0x121, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}, [@IFA_LOCAL={0x8, 0x2, @dev}]}, 0x20}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv4_deladdr={0x18, 0x15, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}}, 0x18}}, 0x0)

5m6.593175025s ago: executing program 2 (id=512):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
r3 = openat$kvm(0x0, &(0x7f0000000080), 0x2382, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r4, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0xfa7})
ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, 0x0)

5m6.333352086s ago: executing program 2 (id=516):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
write$binfmt_script(r0, &(0x7f0000000340)={'#! ', './file0/file0'}, 0x11)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x200100, 0x0)

5m5.693832547s ago: executing program 2 (id=519):
r0 = openat$thread_pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
fchdir(r0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000000080)=""/43, 0x2b)

5m5.575474476s ago: executing program 2 (id=522):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

5m4.742897256s ago: executing program 2 (id=529):
r0 = socket$packet(0x11, 0x2, 0x300)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB="b40000001900010000000000000000001d0109004d0011806f9886ff8308eb1d7c1bbdbe316057"], 0xb4}}, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="4400000002000000000000000000000c0007800800114000000000050004000000000009000300686173683a69702c6d61058a0000000000"], 0x44}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb0958730", 0x4c}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)
sendto$packet(r0, 0x0, 0x0, 0x0, &(0x7f0000000400)={0x11, 0x88a8, 0x0, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}}, 0x14)

5m4.7425542s ago: executing program 2 (id=530):
lstat(&(0x7f0000000300)='./file0\x00', 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000400)={0x0, 0x0, @ioapic={0xdddd1000, 0x6, 0x10001, 0xf, 0x0, [{0xc, 0x0, 0xb, '\x00', 0x8}, {0xf, 0x5, 0xfc, '\x00', 0x5}, {0x5, 0xab, 0x5, '\x00', 0xc}, {0xa8, 0xc0, 0x7, '\x00', 0x1}, {0x0, 0xec, 0x9, '\x00', 0x2}, {0x5, 0x8, 0x1e, '\x00', 0x7}, {0x40, 0x4, 0xd, '\x00', 0x5}, {0x80, 0x9, 0x6, '\x00', 0x4}, {0x60, 0x3, 0x7f, '\x00', 0x6}, {0x80, 0x1, 0x7, '\x00', 0x1}, {0x8, 0x2f, 0xa3, '\x00', 0x2}, {0x6, 0xfe, 0x10, '\x00', 0x5}, {0x5, 0x4, 0x80, '\x00', 0x5}, {0x40, 0x6, 0x0, '\x00', 0xfd}, {0x1, 0xfc, 0x6, '\x00', 0x6}, {0x81, 0x6, 0x10}, {0x7, 0x2, 0x0, '\x00', 0x9}, {0x9, 0x0, 0x3, '\x00', 0x7}, {0x7, 0x40, 0x8, '\x00', 0xd}, {0x2, 0x50, 0x9, '\x00', 0x4}, {0xc, 0xf, 0xd5, '\x00', 0xb}, {0x2, 0x4c, 0x3, '\x00', 0x2}, {0x4, 0xc0, 0x7, '\x00', 0x6}, {0x6, 0xf7, 0x0, '\x00', 0xe}]}})
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f00000001c0))
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r4, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r4, 0x0)
mount$9p_unix(&(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f00000000c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000100), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=unix'])
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x201f6, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
accept4(r4, 0x0, &(0x7f0000000200), 0x800)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000300000008711e0e1740000102030109022400010108300709040008020301062c0921ffff0301220903090581030004030780"], &(0x7f0000000640)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x250, 0x48, 0x7d, 0x9, 0x8, 0xac}, 0x1f, &(0x7f00000001c0)={0x5, 0xf, 0x1f, 0x3, [@ptm_cap={0x3}, @ext_cap={0x7, 0x10, 0x2, 0x18, 0x8, 0x2, 0x5}, @ssp_cap={0x10, 0x10, 0xa, 0x4, 0x1, 0x3ff, 0xf, 0x1ff, [0x3fc0]}]}, 0x8, [{0x24, &(0x7f00000006c0)=@string={0x24, 0x3, "11cf00ce2836c9bbbda786eb8ddddc06b75a6432c4a363bbc6a02a743617514deb66"}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0x42a}}, {0xf2, &(0x7f0000000440)=@string={0xf2, 0x3, "1f44087cfe7a812119f2fbeeeee451e65c9986355beb8942ddb527a46f8578c9f04b06b18717aff272b4409bdd9edc938bb044369daefa661d007d4c550451f12c133b997d18098094b0c7989a11802a792c0641af7ad6c17ab452b6bbebb6c2e3923ee1372633f40709a4ff405d538a1cf983babf4dd5e8586d43389be19f8391adba46b89133852c9930a251cf419b71152987bcdf091abf6c29742d314b56abca74574442830e1740097b285b291f5b3a5dbccf5c56563d7cd05bfa3bd3fb67a95835e3798972ffa3a5db63d1688c7c8b4e2bbb2bab920ae4ea8295e18b356a705e6b059d5a10ecca9fb0868a50a3"}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x44b}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x40d}}, {0xa2, &(0x7f0000000340)=@string={0xa2, 0x3, "8de41de25810d03cdcbb7d53c73be4f638d5aed30c58820bc2723187efbb6f70a0d040c6a4f870697e44536240d15db9bfe7a6133fb5e6965a4ada88efd0b5e231eff77457592ad025ebbf51d3f480ccf900b02723f97a025acabca9ea5e21f63212bd03618cd8085ad33e985c1505a6c373b2d1b49427febee91e5a74496779cdf29cff48587e8f4c0b8abb13aeb7bc8194e0af24925b365db06ff14f56d743"}}, {0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x100a}}, {0x78, &(0x7f0000000580)=@string={0x78, 0x3, "64a5d7ae0b6a7c8029e44f80e63cd4fedcfcdbb21a77f77c903158085a15a7290002c37221980e52b6690a3c28962b70e893477d0de41b8881a11ed0644e70517eb0f4fc84720abab1b0a067ad0ac946b989d5e129b361fe90813d8a27f011ab1b1249aee34c6a21b9d7dcd7fd66e325536f1aee524d"}}]})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
mlockall(0x4)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)

4m49.512048861s ago: executing program 33 (id=530):
lstat(&(0x7f0000000300)='./file0\x00', 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000400)={0x0, 0x0, @ioapic={0xdddd1000, 0x6, 0x10001, 0xf, 0x0, [{0xc, 0x0, 0xb, '\x00', 0x8}, {0xf, 0x5, 0xfc, '\x00', 0x5}, {0x5, 0xab, 0x5, '\x00', 0xc}, {0xa8, 0xc0, 0x7, '\x00', 0x1}, {0x0, 0xec, 0x9, '\x00', 0x2}, {0x5, 0x8, 0x1e, '\x00', 0x7}, {0x40, 0x4, 0xd, '\x00', 0x5}, {0x80, 0x9, 0x6, '\x00', 0x4}, {0x60, 0x3, 0x7f, '\x00', 0x6}, {0x80, 0x1, 0x7, '\x00', 0x1}, {0x8, 0x2f, 0xa3, '\x00', 0x2}, {0x6, 0xfe, 0x10, '\x00', 0x5}, {0x5, 0x4, 0x80, '\x00', 0x5}, {0x40, 0x6, 0x0, '\x00', 0xfd}, {0x1, 0xfc, 0x6, '\x00', 0x6}, {0x81, 0x6, 0x10}, {0x7, 0x2, 0x0, '\x00', 0x9}, {0x9, 0x0, 0x3, '\x00', 0x7}, {0x7, 0x40, 0x8, '\x00', 0xd}, {0x2, 0x50, 0x9, '\x00', 0x4}, {0xc, 0xf, 0xd5, '\x00', 0xb}, {0x2, 0x4c, 0x3, '\x00', 0x2}, {0x4, 0xc0, 0x7, '\x00', 0x6}, {0x6, 0xf7, 0x0, '\x00', 0xe}]}})
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f00000001c0))
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r4, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r4, 0x0)
mount$9p_unix(&(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f00000000c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000100), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=unix'])
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x201f6, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
accept4(r4, 0x0, &(0x7f0000000200), 0x800)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000300000008711e0e1740000102030109022400010108300709040008020301062c0921ffff0301220903090581030004030780"], &(0x7f0000000640)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x250, 0x48, 0x7d, 0x9, 0x8, 0xac}, 0x1f, &(0x7f00000001c0)={0x5, 0xf, 0x1f, 0x3, [@ptm_cap={0x3}, @ext_cap={0x7, 0x10, 0x2, 0x18, 0x8, 0x2, 0x5}, @ssp_cap={0x10, 0x10, 0xa, 0x4, 0x1, 0x3ff, 0xf, 0x1ff, [0x3fc0]}]}, 0x8, [{0x24, &(0x7f00000006c0)=@string={0x24, 0x3, "11cf00ce2836c9bbbda786eb8ddddc06b75a6432c4a363bbc6a02a743617514deb66"}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0x42a}}, {0xf2, &(0x7f0000000440)=@string={0xf2, 0x3, "1f44087cfe7a812119f2fbeeeee451e65c9986355beb8942ddb527a46f8578c9f04b06b18717aff272b4409bdd9edc938bb044369daefa661d007d4c550451f12c133b997d18098094b0c7989a11802a792c0641af7ad6c17ab452b6bbebb6c2e3923ee1372633f40709a4ff405d538a1cf983babf4dd5e8586d43389be19f8391adba46b89133852c9930a251cf419b71152987bcdf091abf6c29742d314b56abca74574442830e1740097b285b291f5b3a5dbccf5c56563d7cd05bfa3bd3fb67a95835e3798972ffa3a5db63d1688c7c8b4e2bbb2bab920ae4ea8295e18b356a705e6b059d5a10ecca9fb0868a50a3"}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x44b}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x40d}}, {0xa2, &(0x7f0000000340)=@string={0xa2, 0x3, "8de41de25810d03cdcbb7d53c73be4f638d5aed30c58820bc2723187efbb6f70a0d040c6a4f870697e44536240d15db9bfe7a6133fb5e6965a4ada88efd0b5e231eff77457592ad025ebbf51d3f480ccf900b02723f97a025acabca9ea5e21f63212bd03618cd8085ad33e985c1505a6c373b2d1b49427febee91e5a74496779cdf29cff48587e8f4c0b8abb13aeb7bc8194e0af24925b365db06ff14f56d743"}}, {0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x100a}}, {0x78, &(0x7f0000000580)=@string={0x78, 0x3, "64a5d7ae0b6a7c8029e44f80e63cd4fedcfcdbb21a77f77c903158085a15a7290002c37221980e52b6690a3c28962b70e893477d0de41b8881a11ed0644e70517eb0f4fc84720abab1b0a067ad0ac946b989d5e129b361fe90813d8a27f011ab1b1249aee34c6a21b9d7dcd7fd66e325536f1aee524d"}}]})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
mlockall(0x4)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)

1m44.941698204s ago: executing program 3 (id=3571):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@ipv6_delrule={0x38, 0x18, 0x1, 0x70bd25, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x3}, [@FRA_DST={0x14, 0x7, @loopback={0xfe80}}, @FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x4, 0x1}]}, 0x38}}, 0x0)

1m44.941034574s ago: executing program 3 (id=3572):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x30, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}]}, 0x30}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r6, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r7, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1000000000000)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000011ac0)={'wlan0\x00', <r11=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r9, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000080)={0x24, r10, 0x1, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0xb16a}]}, 0x24}, 0x1, 0x0, 0x0, 0x20004080}, 0x40000)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000000)=ANY=[@ANYBLOB="010000"])
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
r12 = socket(0x2, 0x2, 0x1)
bind$unix(r12, &(0x7f0000000000)=@abs, 0x6e)
bind$unix(0xffffffffffffffff, &(0x7f0000000000)=@abs, 0x6e)
r13 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/icmp\x00')
preadv(r13, &(0x7f00000007c0)=[{&(0x7f0000000880)=""/175, 0xaf}], 0x1, 0x9, 0x2081)
ioctl$KVM_GET_NESTED_STATE(r8, 0xc080aebe, &(0x7f0000000940)={{0x0, 0x0, 0x80}})

1m44.770867291s ago: executing program 3 (id=3577):
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_SPLICE={0x1e, 0x48, 0x0, @fd, 0x3, {}, 0xa6, 0x3})
io_uring_enter(r0, 0x47f9, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_IO_FLUSHER(0x43, 0x1)
prctl$PR_SET_IO_FLUSHER(0x43, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r4, 0xfffffffc)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000040), 0x10)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x30, r7, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x6}]}]}, 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10) (fail_nth: 6)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r8, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
setsockopt$bt_BT_SECURITY(r8, 0x112, 0x4, &(0x7f0000003000)={0x1, 0x4}, 0x5f)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r9, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x20, r10, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1a}]}]}, 0x20}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000300)=@newsa={0x154, 0x10, 0x1, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in6=@local, 0x0, 0x0, 0x2000, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@remote, 0x14, 0x6c}, @in=@empty=0x14, {0x0, 0x1000, 0x6, 0xfffffff7ffffffff, 0x0, 0x0, 0x1000000000000000, 0x2}, {0x0, 0x4, 0x0, 0xfffffffffffffffc}, {0x0, 0x401, 0x3}, 0x0, 0x0, 0x2, 0x1, 0x6}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x70bd29, 0x70bd2d, 0x70bd2b, 0x70bd2a, 0xa5d}}]}, 0x154}, 0x1, 0x0, 0x0, 0x4004050}, 0x0)

1m44.711513898s ago: executing program 3 (id=3578):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000004700)={'team0\x00', <r2=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000002c0)=ANY=[@ANYBLOB="a0000000", @ANYRES16=r1, @ANYBLOB="05042bbd7000fedbdf250100000008000100", @ANYRES32=r2, @ANYBLOB="8400028040000100240001006d6f6465000000000000000000000000000000000000002243daec2c5af60f0005000300051f000010000400"], 0xa0}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)

1m44.591796388s ago: executing program 3 (id=3579):
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, 0x0, 0x24008040)
syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x418000)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000090000082502000000000000000109025c00020100f92a0904000001020900050004000001053408fa6e0d240f01c3893102000d000a0006471a01000019058117a84fc6a04787840c0b8ae7ee02016e3d450b3276f59c1b0c63c926fb8b4c66c3a048d16eda1da52418b042d43bf23673c8887144a8eb56e9ad3d3bb773bcebbb46fdd45b9a995c2f2b02134202b07ee62d44738bfcc3de00"/169], 0x0)
r0 = syz_open_dev$vim2m(&(0x7f0000019080), 0x401, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0xb, 0x1, 0x0, "adbdeec74e9e4aea00000000000000a902552f08cefca462dda36c7451f8e500"})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000080)={0x8})
io_uring_enter(r1, 0x10fd, 0x8, 0x3, &(0x7f0000000000)={[0x1]}, 0x8)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, 0x0, 0x24008040) (async)
syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x418000) (async)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000090000082502000000000000000109025c00020100f92a0904000001020900050004000001053408fa6e0d240f01c3893102000d000a0006471a01000019058117a84fc6a04787840c0b8ae7ee02016e3d450b3276f59c1b0c63c926fb8b4c66c3a048d16eda1da52418b042d43bf23673c8887144a8eb56e9ad3d3bb773bcebbb46fdd45b9a995c2f2b02134202b07ee62d44738bfcc3de00"/169], 0x0) (async)
syz_open_dev$vim2m(&(0x7f0000019080), 0x401, 0x2) (async)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0xb, 0x1, 0x0, "adbdeec74e9e4aea00000000000000a902552f08cefca462dda36c7451f8e500"}) (async)
syz_open_dev$char_usb(0xc, 0xb4, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000080)={0x8}) (async)
io_uring_enter(r1, 0x10fd, 0x8, 0x3, &(0x7f0000000000)={[0x1]}, 0x8) (async)

1m43.941422761s ago: executing program 3 (id=3581):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x202, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='vfat\x00', 0x200000, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="6800000015000100000000000000ff00fe8800000000000000000000800000010000000000000000000000000000000000040000000000000000b10000000000", @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\f\x00\b'], 0x68}}, 0x0)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000000000)=0x1)

1m28.810712168s ago: executing program 34 (id=3581):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x202, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='vfat\x00', 0x200000, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="6800000015000100000000000000ff00fe8800000000000000000000800000010000000000000000000000000000000000040000000000000000b10000000000", @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\f\x00\b'], 0x68}}, 0x0)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000000000)=0x1)

4.080194405s ago: executing program 5 (id=4507):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000100), 0x0, 0x80002)
ioctl$SNDRV_PCM_IOCTL_DROP(r3, 0x4143, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000007c0)=ANY=[@ANYBLOB="280300002d00090027bd70006000000004000000130317"], 0x328}}, 0x84)

3.824974808s ago: executing program 5 (id=4511):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x800000001fe, 0x82)
r1 = dup(r0)
ioctl$USBDEVFS_CONNECTINFO(r1, 0x40085511, &(0x7f0000000140))
r2 = socket(0x10, 0x80002, 0x0)
unshare(0x68060200)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e0021a5553f8c6b23cbff070000e5373526a01edb"], 0x1c}}, 0x0)
recvmmsg$unix(r2, &(0x7f0000001540)=[{{0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f0000000140)=""/151, 0x97}, {&(0x7f0000000200)=""/223, 0xdf}, {&(0x7f0000001580)=""/4098, 0x1002}, {&(0x7f0000000340)=""/157, 0x9d}, {&(0x7f00000013c0)=""/89, 0x59}, {&(0x7f0000001480)=""/62, 0x3e}], 0x6}}], 0x1, 0x34000, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000040), 0x6, 0x0)
ioctl$SCSI_IOCTL_STOP_UNIT(r3, 0x5319)

3.701925025s ago: executing program 5 (id=4512):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffff7f}]})
syz_usb_disconnect(r0)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000340))
r4 = dup(r3)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000000)={0x1, r4})
close_range(r1, 0xffffffffffffffff, 0x0)

2.833660154s ago: executing program 6 (id=4521):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34665c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbccbddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e712a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd13f4cec49669e443dcb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ef8dba2f23b01a9ae44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af40000000000000005f58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef07000000000000006da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405a07feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09c0e5a3bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea10d3cfb41b92ecbb422a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f74562adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b4412331d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225a53072423b907c6682f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd100fcffff007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711c6529ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a22c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29008000000000000005ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc030ea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efd936b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800001f00000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351b9332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d9890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56be76acb7654a195bc3e98df3a5dffd5b0783883ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a138d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fce43d8c53a8031e64026e0d36b6401064c49a729f11ab377f7132c5232bb80195dd5d43d29646a9378eea0761b7ed9d2172e33ed87c7413c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a828b07f1dc7df9c8e5da22dfb9dacbf5529e4e994128d835f85465173ea7bbcc519a0c9798ce8b1b07567e3e07169c8c3e4da8bf725c050000000000000000000000000000000000000000004775abdf0c62728eb55a9e2849a1ce05bed60dfe4cc9fa43f9684297c02382c0a35829be7a86305792a9d2e80ca9e8fc50f31f6e0fa810303da03d8b74b42c1ebaf16bb343256405a3a07229a54de09a97b269cd29e8b2f0b0d46c51a6a93eec37f4bc6e29a8e19120ae050ab682662e9b2cc3263a4aba62b63ca9123a53c0f4bf3c4463b8144c89bf058a0af0ae9fc2b7cdfc4817703e267cddc193637d7fd97646090da37093657643daae3840c7f5c10f93524f7ae4791ec6e9d9722e5f670ccb358e051a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000003880)=ANY=[@ANYBLOB="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"/4545], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000500)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="2f4d6655baa5afe959f300000000000000000000004e22721b118653331e6a26b77f1fe1b5223b7c96f10604937a6036039caa49de6fb33410f5907f7c3297d64d8129e95b3cb1", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000001c0)={@cgroup=r0, r2, 0x2f, 0x18, 0x4, @void, @value=r1}, 0x20)
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x73, &(0x7f00000000c0)={0x0, 0x7, 0x0, 0x1}, &(0x7f0000000100)=0x18)
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r5, 0xc0d05605, &(0x7f00000003c0)={0x1, @pix={0x9, 0x6, 0x34325241, 0x5, 0x17, 0x2, 0x4, 0x4, 0x1, 0x0, 0x1, 0x2}})
close(r3)
r6 = syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
pipe2$watch_queue(&(0x7f0000000580)={0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x80)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000006c0)={{0xffffffffffffffff, <r9=>0xffffffffffffffff}, &(0x7f00000005c0), &(0x7f0000000600)}, 0x20)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000e00)=@bpf_lsm={0x1d, 0x25, &(0x7f0000000700)=@raw=[@printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x8}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8000}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r8}}, @printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x401}}, @tail_call={{0x18, 0x2, 0x1, 0x0, r9}}, @jmp={0x5, 0x1, 0x8, 0x6, 0x2, 0x10, 0xfffffffffffffff0}], &(0x7f0000000840)='GPL\x00', 0x8, 0xcc, &(0x7f0000000880)=""/204, 0x41000, 0x12, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000980)={0x2, 0x2}, 0x8, 0x10, &(0x7f00000009c0)={0x0, 0x2, 0x6, 0x1}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000d80)=[{0x2, 0x3, 0x5, 0x9}, {0x0, 0x3, 0x3, 0x1}, {0x4, 0x3, 0x4, 0x9}, {0x4, 0x5, 0x2, 0xa}, {0x3, 0x3, 0x9, 0xa}], 0x10, 0x8001, @void, @value}, 0x94)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000240), 0xffffffffffffffff)
r11 = gettid()
process_vm_writev(r11, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x8)
sendmsg$DEVLINK_CMD_PORT_GET(r7, &(0x7f00000004c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x60, r10, 0x4, 0x70bd26, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}]}, 0x60}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@typedef={0x4, 0x0, 0x0, 0x7}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0x8}, @union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x2}]}]}, {0x0, [0x0, 0x0, 0x0, 0xda]}}, 0x0, 0x52, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
tkill(r6, 0x13)
tkill(r6, 0x12)
r12 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r12, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=@newlink={0x78, 0x10, 0x503, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1244c}, [@IFLA_LINKINFO={0x58, 0x12, 0x0, 0x1, @vti={{0x8}, {0x4c, 0x2, 0x0, 0x1, [@IFLA_VTI_LOCAL={0x8, 0x4, @private=0xa010101}, @IFLA_VTI_REMOTE={0x8, 0x5, @private=0xa0100fe}, @IFLA_VTI_LOCAL={0x8, 0x4, @rand_addr=0x64010102}, @vti_common_policy=[@IFLA_VTI_FWMARK={0x8, 0x6, 0x2d616b45}, @IFLA_VTI_LINK={0x8}, @IFLA_VTI_IKEY={0x8, 0x2, 0x5}, @IFLA_VTI_FWMARK={0x8, 0x6, 0xe}, @IFLA_VTI_FWMARK={0x8, 0x6, 0x4}, @IFLA_VTI_IKEY={0x8, 0x2, 0x9}]]}}}]}, 0x78}}, 0x0)
wait4(r6, 0x0, 0x4000000a, 0x0)

2.240237512s ago: executing program 6 (id=4526):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$unix(0xffffffffffffffff, &(0x7f000000a600)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYRES32=r0], 0x30, 0x4080}}], 0x1, 0x880)
mount$tmpfs(0x0, &(0x7f0000002040)='./file0\x00', 0x0, 0x1000000, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40041}, 0x8084)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4008090)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='net_prio.prioidx\x00', 0x0, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000002240)={0xde4, 0x0, 0x10, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0x1f4, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x50e0000}, @ETHTOOL_A_BITSET_BITS={0x190, 0x3, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '$\'+}\xc8#\x00'}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}]}, {0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'grpquota_block_hardlimit'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'tmpfs\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'tmpfs\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '{\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'grpquota_block_hardlimit'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'grpquota_block_hardlimit'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '-\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'grpquota_block_hardlimit'}, @ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'grpquota_block_hardlimit'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'tmpfs\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x45}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\x8e*\\/\x00'}]}]}, @ETHTOOL_A_BITSET_MASK={0x55, 0x5, "ed1e9b94435c649e4b63d01eb8c6b89ea957d337a0dc7c9976a9dcf49807633707ae9877590f4e7d213b3f45c9aecfd226a54e4491ee47fdf7ab4e2f5871fd6281ffd74d03f9fac6d9afcf2969dd8deaa6"}]}, @ETHTOOL_A_FEATURES_WANTED={0x110, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x104, 0x3, 0x0, 0x1, [{0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '/[\'@-#\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffff1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x24}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '.\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, '/dev/ptmx\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, '[@$-\'*.\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'grpquota_block_hardlimit'}]}, {0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xb}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfff}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ',\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'tmpfs\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, '/dev/ptmx\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xe}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x40}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6376}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x80}]}, @ETHTOOL_A_FEATURES_WANTED={0xab4, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0xaad, 0x5, "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"}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0xde4}, 0x1, 0x0, 0x0, 0x40004}, 0x400)
write$binfmt_aout(r1, &(0x7f0000000180)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000dc0))
read(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_open_pts(r1, 0x101000)
r4 = dup3(r3, r1, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x17)

2.111546988s ago: executing program 4 (id=4528):
r0 = socket$inet6(0xa, 0x2, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x1})
clock_settime(0x0, &(0x7f0000000040))
sendto$inet6(r0, &(0x7f0000000800)="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", 0x5ab, 0x4000800, &(0x7f0000000080)={0xa, 0x5e1f, 0x0, @mcast2}, 0x1c)
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
r2 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
ioctl$CEC_S_MODE(r2, 0x40046109, &(0x7f0000000040)=0xd0)
close_range(r2, 0xffffffffffffffff, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f0000000180)={0x0, 0x9, 0x0, 0x4}, 0x10)
r4 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r1, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000080)="1a5d97a2c23cf7dd8395b0dfe220806daa42dfebe21bbbada408f44f7be129f2714b561c97682952f5576afc6acefa09bcc8830ccedbafe3da557fe39161fe68367436ac884474bd", 0x0, 0x48)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000100)="47c887d1be5d1778bc03b690712ba19a8f68eb6472bb68c607d1eec6365584988ebb122dcc65e3da7571fb0d7dfbda8144860be1d0a1127fd3d5ec2aa14f328745ac90e9b12993e4", 0x0, 0x48)
r5 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x52a02, 0x0)
syz_io_uring_setup(0x7b4b, &(0x7f0000000440)={0x0, 0xb8c7, 0x80, 0x3, 0x32}, &(0x7f0000000280)=<r6=>0x0, &(0x7f00000002c0))
r7 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r7, 0x720, &(0x7f0000000040)={0x0, 0x7, 0x4, &(0x7f0000000000)={0x1d, "67d60edc3620031d451e5aa44d3cdb5637321451672f37163f5c64b821c4b14563"}})
syz_io_uring_setup(0x77d4, &(0x7f0000000300)={0x0, 0xbcc8, 0x0, 0x3, 0x6, 0x0, r5}, &(0x7f0000000380), &(0x7f00000003c0)=<r8=>0x0)
syz_io_uring_submit(r6, r8, &(0x7f0000000400)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x10, 0x0, @fd_index=0x1, 0x15a, 0x0, 0x21, 0x2, 0x1})
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@empty, 0x1, 0x1, 0x2, 0xc, 0x944, 0x4}, &(0x7f00000000c0)=0x20)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x4e24, @local}, 0x10)

1.948361665s ago: executing program 4 (id=4529):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r0, &(0x7f0000000040), 0x0, 0xe, 0x0)

1.945938218s ago: executing program 5 (id=4530):
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000040)="390000951300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fdd411efc40800040000000000000000", 0x39}], 0x1)

1.945775904s ago: executing program 4 (id=4531):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@ipv6_delrule={0x38, 0x18, 0x1, 0x70bd25, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x3}, [@FRA_DST={0x14, 0x7, @loopback}, @FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x4, 0x1}]}, 0x38}, 0x1, 0xb00}, 0x0)

1.896516341s ago: executing program 4 (id=4532):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r0, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000340)="b9cd14c222ee3c0c", 0x8}], 0x1}}], 0x1, 0x20008000)
setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000080)=@ccm_128={{0x303}, "f1a0f9fff9e440b4", "881aae83544dfa6412f91b9057e3f415", "9dca43b6", "9ecb592c6ee49fbd"}, 0x28)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @remote}, 0x10, 0x0}}], 0x1, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000280)="fd72c91726872af17284cbbecb2360cff1988314f6cc09c4c07f0b44d9c16a610f294283b780b506b765d798ca8ab5adc7424057689ee5685dc17105c83aa4ed88bbfc7fef38b630105a17b9c6febfaef81e3242f4b460a05490dce8fd165641538fff4d4f46f9e24217a754881ce31e40b204d9126e3103f7aedd9c3194c82a62744ab6", 0x84}, {&(0x7f0000000140)="6eaf642e3153e85605490ed6ed506c0b5fbe97b802000000e4e9a5fe3374be07f0ff6d000000000695c2bf2eb6c66e035fe97c9c6299245552da815d5c2465ac0ab800"/80, 0x50}], 0x3, &(0x7f0000000040), 0x0, 0x24008001}, 0x24004841)

1.896419375s ago: executing program 5 (id=4533):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f00000000c0)=0x1)
readv(r0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/24, 0xfd90}], 0x1)

1.817812694s ago: executing program 4 (id=4534):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (fail_nth: 58)

1.817384248s ago: executing program 0 (id=4535):
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0xa002, 0x0)
ioctl$IOCTL_STOP_ACCEL_DEV(r0, 0x40096101, &(0x7f0000000340)={{}, 0x7})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="340000003e0007010300000000000000017c0000040042800c00018006000600843b0000100002800c0009"], 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000040)=0x8001)
getpgid(0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006c40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20040001)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=@newqdisc={0x5c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x2c, 0x2, {{0x9, 0x3, 0x0, 0x6, 0xfffffffa, 0x22}, [@TCA_NETEM_CORR={0x10, 0x1, {0x0, 0x81, 0x3}}]}}}]}, 0x5c}}, 0x800)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x21, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14080, 0x10000}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r6}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000), 0x13f}}, 0x20)
socket(0x10, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
write$binfmt_elf64(r1, &(0x7f0000000780)=ANY=[], 0x78)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0x4)
shutdown(r1, 0x1)

1.469437373s ago: executing program 6 (id=4536):
r0 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
mlockall(0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000001, 0x13, r0, 0xa401000000000000)

1.468900356s ago: executing program 0 (id=4537):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="23090000000000000000010000000500070000000000080009", @ANYRES32], 0x3c}}, 0x0)

1.46708173s ago: executing program 6 (id=4538):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x202, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r3, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b9000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000200)={{0xeeef0000, 0x5000, 0x8, 0x0, 0x6, 0x3, 0x7, 0x10, 0x1, 0xfe, 0x5, 0x6}, {0x1, 0x2000, 0xb, 0x3, 0x5, 0x9, 0x1, 0x5, 0x7, 0x6, 0xab, 0x7}, {0x8080000, 0x0, 0xa, 0x8, 0x47, 0x4, 0xa, 0x0, 0x6, 0x40, 0x3, 0x2}, {0x6000, 0x2, 0xf, 0x0, 0x9, 0x3, 0x9, 0xf9, 0x10, 0x9, 0x8, 0xfc}, {0xeeee0000, 0x4, 0xa, 0x4, 0xf8, 0x80, 0x5, 0x8, 0x0, 0x5, 0x5, 0x6}, {0x80a0000, 0xf000, 0x10, 0x7f, 0x6, 0xbe, 0xfa, 0x88, 0x5, 0x8, 0x3, 0x5}, {0xdddd1000, 0x100d01, 0x10, 0x5, 0xc, 0x40, 0xe, 0x4, 0x0, 0xcf, 0x6, 0x8}, {0xeeef0000, 0x0, 0xf, 0x4, 0xa0, 0x6, 0x9, 0x2, 0x8, 0x6, 0xec, 0x40}, {0xeeee0000, 0xa}, {0x1000, 0xfffc}, 0x0, 0x0, 0x3000, 0x0, 0xf, 0xa906fb40464c6b39, 0x8000000, [0x7fff, 0x3, 0x7, 0x9]})

1.344509006s ago: executing program 0 (id=4539):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000440)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000480)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fbdbdf252100000008000300", @ANYRES32=r2, @ANYBLOB="0a0006"], 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x840)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$SIOCGSTAMP(r3, 0x8906, &(0x7f0000000000))
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r4, &(0x7f0000000480)={0x2, 0x4e22, @empty}, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x80000, 0x0)
listen(r4, 0x1ff)
sendto$inet(r4, &(0x7f00000004c0)="ab", 0x1, 0x20c0, &(0x7f00000001c0)={0x2, 0x4e22, @loopback=0x7f0000c0}, 0x10)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x4b)
close(r5)
r6 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r5, 0xc06864a1, &(0x7f0000000300)={0x0, 0xfffffffffffffe7a, r7, <r8=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r5, 0xc06864ce, &(0x7f0000000600)={r8, 0xb23, 0x0, 0x0, 0x3, [<r9=>0x0, 0x0, 0x0, <r10=>0x0], [0x800000], [0x0, 0x1001000, 0x3], [0x39b7, 0xfffffffffffffffd, 0xe8a6, 0x3]})
ioctl$DRM_IOCTL_MODE_ADDFB2(r5, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x3ff, 0x34325241, 0x0, [r9, 0x0, 0x0, r10], [0x2b8]})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f0000000100)={'syztnl0\x00', &(0x7f0000000040)={'erspan0\x00', 0x0, 0x20, 0x20, 0xff, 0xfffffffc, {{0x1e, 0x4, 0x2, 0x16, 0x78, 0x66, 0x0, 0x4, 0x29, 0x0, @empty, @rand_addr=0x64010102, {[@lsrr={0x83, 0x1f, 0x75, [@dev={0xac, 0x14, 0x14, 0x22}, @loopback, @empty, @multicast2, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @generic={0x88, 0x11, "458addd1511f9be2af7c0c70c40e27"}, @timestamp_addr={0x44, 0x1c, 0x88, 0x1, 0x0, [{@dev={0xac, 0x14, 0x14, 0x25}}, {@loopback, 0x52a7}, {@broadcast, 0x80000000}]}, @ra={0x94, 0x4}, @rr={0x7, 0x13, 0x3c, [@initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, @remote, @local]}]}}}}})

1.344316006s ago: executing program 4 (id=4540):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffff7f}]})
syz_usb_disconnect(r0)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f0000000740)=""/51, 0x0})
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000340))
r4 = dup(r3)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000000)={0x1, r4})
close_range(r1, 0xffffffffffffffff, 0x0)

1.203866709s ago: executing program 6 (id=4541):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r0, &(0x7f0000000040)=[{&(0x7f0000000180)=""/119, 0x77}, {&(0x7f00000008c0)=""/103, 0x67}], 0x2, 0xe, 0x0)

1.11213444s ago: executing program 0 (id=4542):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000100), 0x0, 0x80002)
ioctl$SNDRV_PCM_IOCTL_DROP(r3, 0x4143, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000007c0)=ANY=[@ANYBLOB="280300002d00090027bd70008c00000004000000130317"], 0x328}}, 0x84)

1.111912398s ago: executing program 6 (id=4543):
syz_usb_connect(0x1, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904010001faf40d00090582239f"], 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x80400, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
close_range(r0, 0xffffffffffffffff, 0x10000000000000)

918.246332ms ago: executing program 0 (id=4544):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$unix(0xffffffffffffffff, &(0x7f000000a600)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYRES32=r0], 0x30, 0x4080}}], 0x1, 0x880)
mount$tmpfs(0x0, &(0x7f0000002040)='./file0\x00', 0x0, 0x1000000, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40041}, 0x8084)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4008090)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='net_prio.prioidx\x00', 0x0, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000002240)={0xde4, 0x0, 0x10, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0x1f4, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x50e0000}, @ETHTOOL_A_BITSET_BITS={0x190, 0x3, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '$\'+}\xc8#\x00'}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}]}, {0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'grpquota_block_hardlimit'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'tmpfs\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'tmpfs\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '{\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'grpquota_block_hardlimit'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'grpquota_block_hardlimit'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '-\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'grpquota_block_hardlimit'}, @ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'grpquota_block_hardlimit'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'tmpfs\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x45}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\x8e*\\/\x00'}]}]}, @ETHTOOL_A_BITSET_MASK={0x55, 0x5, "ed1e9b94435c649e4b63d01eb8c6b89ea957d337a0dc7c9976a9dcf49807633707ae9877590f4e7d213b3f45c9aecfd226a54e4491ee47fdf7ab4e2f5871fd6281ffd74d03f9fac6d9afcf2969dd8deaa6"}]}, @ETHTOOL_A_FEATURES_WANTED={0x110, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x104, 0x3, 0x0, 0x1, [{0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '/[\'@-#\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffff1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x24}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '.\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, '/dev/ptmx\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, '[@$-\'*.\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'grpquota_block_hardlimit'}]}, {0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xb}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfff}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ',\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'tmpfs\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, '/dev/ptmx\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xe}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x40}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6376}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x80}]}, @ETHTOOL_A_FEATURES_WANTED={0xab4, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0xaad, 0x5, "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"}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0xde4}, 0x1, 0x0, 0x0, 0x40004}, 0x400)
write$binfmt_aout(r1, &(0x7f0000000180)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000dc0))
read(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_open_pts(r1, 0x101000)
r4 = dup3(r3, r1, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x17)

917.909397ms ago: executing program 5 (id=4545):
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r0, &(0x7f0000000180)={&(0x7f0000000000), 0xc, &(0x7f0000000140)={&(0x7f0000000040)=@getstat={0xe0, 0x15, 0x8, 0x70bd28, 0x25dfdbfb, {{'ctr(des3_ede)\x00'}, '\x00', '\x00', 0x6400, 0x400}, ["", "", "", ""]}, 0xe0}, 0x1, 0x0, 0x0, 0x20000852}, 0x7e814cb836cbef24)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'veth0_to_batadv\x00', <r2=>0x0})
sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000001540)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001500)={&(0x7f0000000240)={0x12b8, 0x13, 0x200, 0x70bd2c, 0x25dfdbfd, {0x1, 0x7, 0xbc, 0x0, {0x4e23, 0x4e21, [0x7fff, 0x1, 0x1, 0x1ff], [0x1, 0x5, 0x5, 0x3], r2, [0x2b, 0x2]}, 0x4, 0x7}, [@INET_DIAG_REQ_BYTECODE={0xb3, 0x1, "384471a9de328a481d14a1727f047420e93fb23a5cce52c1eacc598d530d59f40b35bce975c4cfc12c595504a95a73dcb583365b4b6895143f354bdfa474c4561f488566de8969eedc96a914600ac8ced37d6fac7ab44590f2887b2ee7f988309f6efd142a6898d4b2671e6b25a827acec66e994c429a1ff9c730d96947ab34eb47011a88fa4bf4ccca69b7b135d6a59c33561192dc489a92ed22c61194957cc2cc8800eeec820cdabd144fb9ec7c5"}, @INET_DIAG_REQ_BYTECODE={0x1004, 0x1, "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"}, @INET_DIAG_REQ_BYTECODE={0xd5, 0x1, "91c5632add60f4be5269f5aa4f4353b782098b305e446aadf6d8397df9ed9f684db004e4113626f2f18036a8806ae64ad12d64f626a8862e3dfed83ad68eb5195be2a13906143b20e8b8199f42aa37f41d066bcdc96df45384b98f3d3b2ab5df9d719e410952d183a62acc03e8eac22add59a1ad6230145c7cfa2c235bf184e38dc008c8df793f0e3070acb22bcb89c79cfe31a0db9b814e3afb3efb97ac3961bef00e11950d093392f7cfd35d790cb5bc69fbcdd09c1fe61a22eaba65612b63a7e47aec96e2c1205b30d95ef16d2cbf4f"}, @INET_DIAG_REQ_BYTECODE={0xda, 0x1, "decd8c8d2a3d6e5ca72ef3476244c27d30cb0aea019d17dd7a63fdd34b33de1bf2580c363c19cf505e8c84b5b74ebf7033d368ffe815cbcced817a8fa229954b85de4b84bb4ba32a6bb2cfedb5822652d0132ea4fdf625e20eecb46568870e17a2be7bfcea7bc6e1a84475fdb12e07b97aeb49c324c03d4f50ad0cad38adc44dcd576572ef17cd6c63506d64eba9c6a749022f249cdc55c26e32bcf3615fd6492d821061b4a4944fdbba93c88955830a228b43b49a272b5f1167f701ddc3bd897ae84f39038a758534f55e4f5dd98d6f08ca2c86970d"}]}, 0x12b8}, 0x1, 0x0, 0x0, 0x4000000}, 0x40880)
getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000001580)={0x0, 0x0, 0xd0, 0x3, 0x5, 0x733, 0x6, 0x5, {<r3=>0x0, @in={{0x2, 0x4e24, @multicast2}}, 0x4, 0x4, 0x4, 0x2, 0x3}}, &(0x7f0000001640)=0xb0)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000001680)={r3, 0x6, 0x6, 0x7, 0x1, 0x3}, 0x14)
ioctl$CDROMVOLCTRL(0xffffffffffffffff, 0x530a, &(0x7f00000016c0)={0x1, 0x0, 0xff, 0x10})
r4 = syz_open_dev$hiddev(&(0x7f0000001700), 0x3, 0x0)
ioctl$HIDIOCGREPORT(r4, 0x400c4807, &(0x7f0000001740)={0x3, 0x2, 0x2})
r5 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000001780), 0x40040, 0x0)
splice(r5, &(0x7f00000017c0)=0xffffffffffff54e4, r0, &(0x7f0000001800)=0x18, 0x3, 0xf)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_rose_SIOCADDRT(r4, 0x890b, &(0x7f0000001840)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x1, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={'nr', 0x0}, 0x2, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @null, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]})
r6 = openat$rtc(0xffffffffffffff9c, &(0x7f00000018c0), 0x4000, 0x0)
ioctl$RTC_WIE_OFF(r6, 0x7010)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000001940)={'wg2\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f0000001a80)={&(0x7f0000001900)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001a40)={&(0x7f0000001980)=@bridge_dellink={0x9c, 0x11, 0x2, 0x70bd28, 0x25dfdbfd, {0x7, 0x0, 0x0, r7, 0x4000}, [@IFLA_CARRIER_CHANGES={0x8}, @IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_XFRM_IF_ID={0x8, 0x2, 0x4}, @IFLA_XFRM_LINK={0x8, 0x1, 0x2}, @IFLA_XFRM_LINK={0x8, 0x1, 0x2}, @IFLA_XFRM_IF_ID={0x8, 0x2, 0x2}, @IFLA_XFRM_IF_ID={0x8, 0x2, 0x1}]}}}, @IFLA_IFALIAS={0x14, 0x14, 'macsec0\x00'}, @IFLA_IFNAME={0x14, 0x3, 'syzkaller1\x00'}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_CARRIER={0x5, 0x21, 0x9c}]}, 0x9c}, 0x1, 0x0, 0x0, 0x200000c0}, 0x40011)
socket$pppl2tp(0x18, 0x1, 0x1)
bind$xdp(r5, &(0x7f0000001ac0)={0x2c, 0x8, r7, 0xe}, 0x10)
read$FUSE(r5, &(0x7f0000001b00)={0x2020, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}, 0x2020)
ioctl$TIOCSPGRP(r5, 0x5410, &(0x7f0000003b40)=r8)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000003b80)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x40, 0xc12, 0x30, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xd8, 0x0, 0xff, [{{0x9, 0x4, 0x0, 0x8a, 0x1, 0x3, 0x1, 0x1, 0x6, {0x9, 0x21, 0xfff9, 0x2, 0x1, {0x22, 0x32}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x5, 0x1, 0x5}}}}}]}}]}}, &(0x7f0000004000)={0xa, &(0x7f0000003bc0)={0xa, 0x6, 0x310, 0x6, 0x8, 0x1, 0x20, 0x8}, 0x1cd, &(0x7f0000003c00)={0x5, 0xf, 0x1cd, 0x6, [@generic={0xd6, 0x10, 0x2, "2dd9814ede0482e7682473ce0a9396ae627dea54103a1ecf0581c2d5955004bfab7931f2df2dddcef9e06beeaa1298cdd01332fd5bff11b3ca2f27f85855f5b0f95be2ea86ae8fb64bf3db9b1afdc41ccf66c9bc142b455213a4c919e9c76068de1ca4ddae6aa5c25bbe548edeecdd1d656ad824ff3c4b5341e0e33845595f6ae5712f76750cf6fa5412ef144947d300b356ad3984c27f69040771309751fcd5826282584e927d21c43ba9b6e4f65d0d76930ffaff086fd9cf1e0100ab207bf7d15cba8315d7ea33d9116d174678f952ac392d"}, @generic={0xc8, 0x10, 0x4, "e2b52545493919e9b51ad6fc99bfce3dc4ca07b83edb17a48cb3c4e1bd2eb5b972305f1f2713e74a1cc81a48040ccf289c68b4e8b85f4ebda9aec9c08a43ce824a05c9ef27cf4b00cedcdd01577348ee4d805ad5a4e7be28597996d98103a1e09f1140196885c7ff889bece39af193a754ea1ff7368fc499af1f5e5381bd940e01552b9c11f3afd8e19f37123d992b29fae6086e421408c02301c48267a26a475d0722cdbe73b07eb7d1357b529df47d4425c44bc94ef185aa033cdb3b138589b1783afe6e"}, @ptm_cap={0x3}, @ssp_cap={0x10, 0x10, 0xa, 0x9b, 0x1, 0x6, 0xf00, 0x7, [0xff00c0]}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "dc6bd2f6b86125a25a2f3881700b9680"}, @ptm_cap={0x3}]}, 0x5, [{0x4, &(0x7f0000003e00)=@lang_id={0x4, 0x3, 0x402}}, {0x27, &(0x7f0000003e40)=@string={0x27, 0x3, "43e513394324b78a5da33b172cfe8062de2ca4eafb9c6540b42f37e61fa4c1823c85e26eb1"}}, {0x90, &(0x7f0000003e80)=@string={0x90, 0x3, "776c180a9cf497f89cb8ad064b19dbbe0a142975ec1040f88e44cab51523c825a2e728c9ecd4c1a4e91d2905d0903439c874dc437dfc218728c84dee5aeeb0bed6be4ed8f830d60de76b0198ef1e240f101277b3a245bba531621895ebdaff8edd04e91bbe0718bf5b01be4beac71abb45fba051df927b470e58f1709ff09dd1a6aedab7e3e94681c4ecd5991b74"}}, {0x4, &(0x7f0000003f40)=@lang_id={0x4, 0x3, 0x443}}, {0x54, &(0x7f0000003f80)=@string={0x54, 0x3, "20a4ae3d57ced4c54b8b426ac02706399b774d701dbadacd9ab9a29498cec09c21476a1a1ef928029ca1fc248204f352bc21c531619dd25419d03b2e7cc41d859512967f2591f54dff86e88710c64a5744d0"}}]})
sendmsg$AUDIT_TTY_SET(0xffffffffffffffff, &(0x7f0000004140)={&(0x7f0000004080), 0xc, &(0x7f0000004100)={&(0x7f00000040c0)={0x18, 0x3f9, 0x800, 0x70bd2c, 0x25dfdbfb, {}, [""]}, 0x18}, 0x1, 0x0, 0x0, 0x200000c0}, 0x0)
r9 = landlock_create_ruleset(&(0x7f0000004180)={0x84, 0x1, 0x2}, 0x18, 0x0)
ioctl$INCFS_IOC_PERMIT_FILL(r6, 0x40046721, &(0x7f00000041c0)={r9})
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
arch_prctl$ARCH_SET_GS(0x1001, &(0x7f0000004200))
ioctl$sock_rose_SIOCADDRT(r5, 0x890b, &(0x7f0000004240)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x353c, @default, @netrom={'nr', 0x0}, 0x5, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]})
sendmsg$L2TP_CMD_TUNNEL_CREATE(r5, &(0x7f00000043c0)={&(0x7f00000042c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000004380)={&(0x7f0000004340)={0x2c, 0x0, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x4}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e24}, @L2TP_ATTR_SEND_SEQ={0x5, 0x13, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)

0s ago: executing program 0 (id=4546):
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f0000000080)="0f06baf80c66b885b8ab8f66efbafc0cec650f01d16766c7442400f58743706b66c74424029cde4eb06766c744240600000000670f011c2464670f01c266b9800000c00f326635010000000f30670f38cc537c2ed2910030b86a008ed80f01b7a04a", 0x62}], 0x1, 0x79, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 34)

kernel console output (not intermixed with test programs):

 ADU100  now attached to /dev/usb/adutux0
[  358.546557][T17965] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4258'.
[  358.550507][T17965] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4258'.
[  358.604350][T11053] usb 11-1: new low-speed USB device number 10 using dummy_hcd
[  358.612219][T17967] netlink: 'syz.4.4259': attribute type 9 has an invalid length.
[  358.660672][   T10] usb 10-1: USB disconnect, device number 43
[  358.782355][T11053] usb 11-1: config 0 has an invalid interface number: 1 but max is 0
[  358.785005][T11053] usb 11-1: config 0 has no interface number 0
[  358.786978][T11053] usb 11-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  358.790490][T11053] usb 11-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  358.793854][T11053] usb 11-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  358.800545][T11053] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.807461][T11053] usb 11-1: config 0 descriptor??
[  358.813506][T17962] raw-gadget.2 gadget.6: fail, usb_ep_enable returned -22
[  358.827791][T11053] iowarrior 11-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  359.026915][ T6985] usb 11-1: USB disconnect, device number 10
[  359.078150][T17977] netlink: 'syz.4.4262': attribute type 23 has an invalid length.
[  359.259570][T17979] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4263'.
[  359.262441][T17979] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4263'.
[  359.409161][T17987] 9pnet_fd: p9_fd_create_unix (17987): problem connecting socket: ./file1: -111
[  359.432662][T17986] binder: 17984:17986 ioctl 40046205 0 returned -22
[  359.643267][T17996] FAULT_INJECTION: forcing a failure.
[  359.643267][T17996] name failslab, interval 1, probability 0, space 0, times 0
[  359.648294][T17996] CPU: 3 UID: 0 PID: 17996 Comm: syz.0.4268 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  359.648310][T17996] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.648316][T17996] Call Trace:
[  359.648321][T17996]  <TASK>
[  359.648325][T17996]  dump_stack_lvl+0x16c/0x1f0
[  359.648361][T17996]  should_fail_ex+0x512/0x640
[  359.648380][T17996]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  359.648397][T17996]  should_failslab+0xc2/0x120
[  359.648413][T17996]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  359.648426][T17996]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  359.648440][T17996]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  359.648453][T17996]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  359.648470][T17996]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  359.648489][T17996]  mmu_topup_memory_caches+0x25/0x170
[  359.648502][T17996]  kvm_mmu_load+0xd9/0x22a0
[  359.648515][T17996]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  359.648532][T17996]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  359.648549][T17996]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  359.648562][T17996]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  359.648573][T17996]  ? __pfx_kvm_mmu_load+0x10/0x10
[  359.648584][T17996]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  359.648600][T17996]  ? kvm_check_and_inject_events+0x71c/0x1310
[  359.648616][T17996]  vcpu_run+0x34eb/0x5500
[  359.648629][T17996]  ? __lock_acquire+0xb8a/0x1c90
[  359.648650][T17996]  ? __pfx_vcpu_run+0x10/0x10
[  359.648664][T17996]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  359.648676][T17996]  ? __local_bh_enable_ip+0xa4/0x120
[  359.648692][T17996]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  359.648704][T17996]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  359.648720][T17996]  kvm_vcpu_ioctl+0x5eb/0x1690
[  359.648734][T17996]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  359.648751][T17996]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  359.648767][T17996]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  359.648787][T17996]  ? hook_file_ioctl_common+0x145/0x410
[  359.648808][T17996]  ? selinux_file_ioctl+0x180/0x270
[  359.648822][T17996]  ? selinux_file_ioctl+0xb4/0x270
[  359.648836][T17996]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  359.648853][T17996]  __x64_sys_ioctl+0x18e/0x210
[  359.648867][T17996]  do_syscall_64+0xcd/0x4c0
[  359.648883][T17996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.648894][T17996] RIP: 0033:0x7fbc25d8e929
[  359.648903][T17996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.648914][T17996] RSP: 002b:00007fbc26bb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  359.648924][T17996] RAX: ffffffffffffffda RBX: 00007fbc25fb5fa0 RCX: 00007fbc25d8e929
[  359.648931][T17996] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  359.648937][T17996] RBP: 00007fbc26bb9090 R08: 0000000000000000 R09: 0000000000000000
[  359.648943][T17996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  359.648949][T17996] R13: 0000000000000000 R14: 00007fbc25fb5fa0 R15: 00007ffc6cdffe28
[  359.648963][T17996]  </TASK>
[  359.834834][ T6985] usb 10-1: new low-speed USB device number 44 using dummy_hcd
[  360.012059][ T6985] usb 10-1: config 0 has an invalid interface number: 1 but max is 0
[  360.012077][ T6985] usb 10-1: config 0 has no interface number 0
[  360.012097][ T6985] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  360.012111][ T6985] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  360.012129][ T6985] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  360.012141][ T6985] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.014885][ T6985] usb 10-1: config 0 descriptor??
[  360.022507][T17989] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  360.027985][ T6985] iowarrior 10-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  360.061164][T18005] hfs: can't find a HFS filesystem on dev sr0
[  360.244074][T18010] batman_adv: batadv0: Removing interface: dummy0
[  360.271521][T18010] team0: Port device hsr_slave_0 removed
[  360.297591][ T6009] usb 10-1: USB disconnect, device number 44
[  360.305468][T18010] team0: Port device vlan0 removed
[  360.309358][T18010] gretap1: left promiscuous mode
[  360.320487][T18010] bridge0: port 1(gretap1) entered disabled state
[  360.469391][T18015] binder: 18013:18015 ioctl 40046205 0 returned -22
[  360.554508][ T6985] usb 11-1: new high-speed USB device number 11 using dummy_hcd
[  360.704567][ T6985] usb 11-1: Using ep0 maxpacket: 8
[  360.714446][ T6985] usb 11-1: config 168 descriptor has 1 excess byte, ignoring
[  360.716852][ T6985] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  360.722944][ T6985] usb 11-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  360.728395][ T6985] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  360.731832][ T6985] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  360.746280][ T6985] usb 11-1: config 168 descriptor has 1 excess byte, ignoring
[  360.748675][ T6985] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  360.752062][ T6985] usb 11-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  360.761434][ T6985] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  360.767604][ T6985] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  360.773834][ T6985] usb 11-1: config 168 descriptor has 1 excess byte, ignoring
[  360.776475][ T6985] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  360.779994][ T6985] usb 11-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  360.787022][ T6985] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  360.790558][ T6985] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  360.817688][ T6985] usb 11-1: string descriptor 0 read error: -22
[  360.819782][ T6985] usb 11-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  360.822609][ T6985] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  360.845743][ T6985] adutux 11-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  361.058410][ T6000] usb 11-1: USB disconnect, device number 11
[  361.061844][T18043] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4286'.
[  361.070716][T18045] FAULT_INJECTION: forcing a failure.
[  361.070716][T18045] name failslab, interval 1, probability 0, space 0, times 0
[  361.078744][T18045] CPU: 0 UID: 0 PID: 18045 Comm: syz.4.4283 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  361.078762][T18045] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.078768][T18045] Call Trace:
[  361.078772][T18045]  <TASK>
[  361.078777][T18045]  dump_stack_lvl+0x16c/0x1f0
[  361.078797][T18045]  should_fail_ex+0x512/0x640
[  361.078811][T18045]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  361.078827][T18045]  should_failslab+0xc2/0x120
[  361.078842][T18045]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  361.078855][T18045]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  361.078875][T18045]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  361.078887][T18045]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  361.078904][T18045]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  361.078923][T18045]  mmu_topup_memory_caches+0x25/0x170
[  361.078937][T18045]  kvm_mmu_load+0xd9/0x22a0
[  361.078950][T18045]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  361.078967][T18045]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  361.078984][T18045]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  361.078997][T18045]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  361.079008][T18045]  ? __pfx_kvm_mmu_load+0x10/0x10
[  361.079019][T18045]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  361.079034][T18045]  ? kvm_check_and_inject_events+0x71c/0x1310
[  361.079051][T18045]  vcpu_run+0x34eb/0x5500
[  361.079064][T18045]  ? __lock_acquire+0xb8a/0x1c90
[  361.079085][T18045]  ? __pfx_vcpu_run+0x10/0x10
[  361.079099][T18045]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  361.079111][T18045]  ? __local_bh_enable_ip+0xa4/0x120
[  361.079128][T18045]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  361.079140][T18045]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  361.079156][T18045]  kvm_vcpu_ioctl+0x5eb/0x1690
[  361.079171][T18045]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  361.079187][T18045]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  361.079204][T18045]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  361.079223][T18045]  ? hook_file_ioctl_common+0x145/0x410
[  361.079244][T18045]  ? selinux_file_ioctl+0x180/0x270
[  361.079258][T18045]  ? selinux_file_ioctl+0xb4/0x270
[  361.079272][T18045]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  361.079285][T18045]  __x64_sys_ioctl+0x18e/0x210
[  361.079299][T18045]  do_syscall_64+0xcd/0x4c0
[  361.079316][T18045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.079327][T18045] RIP: 0033:0x7f193b58e929
[  361.079336][T18045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.079346][T18045] RSP: 002b:00007f193c3b8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  361.079356][T18045] RAX: ffffffffffffffda RBX: 00007f193b7b6080 RCX: 00007f193b58e929
[  361.079363][T18045] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009
[  361.079369][T18045] RBP: 00007f193c3b8090 R08: 0000000000000000 R09: 0000000000000000
[  361.079375][T18045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  361.079381][T18045] R13: 0000000000000001 R14: 00007f193b7b6080 R15: 00007fff378acc98
[  361.079395][T18045]  </TASK>
[  361.181755][T18043] team0: Mode "" not found
[  361.288170][T18048] binder: 18047:18048 ioctl 40046205 0 returned -22
[  361.627002][   T40] kauditd_printk_skb: 1475 callbacks suppressed
[  361.627014][   T40] audit: type=1400 audit(1750720706.266:64512): avc:  denied  { recv } for  pid=23 comm="ksoftirqd/2" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=57910 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  361.642801][   T40] audit: type=1400 audit(1750720706.266:64513): avc:  denied  { recv } for  pid=23 comm="ksoftirqd/2" saddr=127.0.0.1 src=57910 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  361.654527][   T40] audit: type=1400 audit(1750720706.266:64514): avc:  denied  { recv } for  pid=5846 comm="sshd-session" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=57910 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  361.667512][   T40] audit: type=1400 audit(1750720706.266:64515): avc:  denied  { recv } for  pid=0 comm="swapper/1" saddr=10.0.2.2 src=43094 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  361.679701][   T40] audit: type=1400 audit(1750720706.276:64516): avc:  denied  { recv } for  pid=5846 comm="sshd-session" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=57910 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  361.689848][   T40] audit: type=1400 audit(1750720706.286:64517): avc:  denied  { allowed } for  pid=18061 comm="syz.4.4292" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  361.697854][   T40] audit: type=1400 audit(1750720706.286:64518): avc:  denied  { create } for  pid=18061 comm="syz.4.4292" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  361.706282][   T40] audit: type=1400 audit(1750720706.286:64519): avc:  denied  { map } for  pid=18061 comm="syz.4.4292" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=145552 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  361.713949][   T40] audit: type=1400 audit(1750720706.286:64520): avc:  denied  { read write } for  pid=18061 comm="syz.4.4292" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=145552 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  361.721051][T18062] audit: audit_backlog=65 > audit_backlog_limit=64
[  361.804355][T11053] usb 10-1: new low-speed USB device number 45 using dummy_hcd
[  361.970010][T11053] usb 10-1: config 0 has an invalid interface number: 1 but max is 0
[  361.972327][T11053] usb 10-1: config 0 has no interface number 0
[  361.974091][T11053] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  361.984310][T11053] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  361.987641][T11053] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  361.990319][T11053] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  362.045063][T11053] usb 10-1: config 0 descriptor??
[  362.049507][T18060] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  362.062804][T11053] iowarrior 10-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  362.086472][T18074] netlink: 'syz.6.4297': attribute type 23 has an invalid length.
[  362.277475][T18060] netlink: zone id is out of range
[  362.279101][T18060] netlink: zone id is out of range
[  362.280675][T18060] netlink: zone id is out of range
[  362.282172][T18060] netlink: zone id is out of range
[  362.283660][T18060] netlink: zone id is out of range
[  362.289965][T18060] netlink: zone id is out of range
[  362.292165][T18060] netlink: zone id is out of range
[  362.293995][T18060] netlink: zone id is out of range
[  362.296389][T18060] netlink: zone id is out of range
[  362.297893][T18060] netlink: zone id is out of range
[  362.390514][ T6985] usb 10-1: USB disconnect, device number 45
[  362.560164][T18091] binder: 18090:18091 ioctl 40046205 0 returned -22
[  362.784338][   T61] usb 5-1: new low-speed USB device number 34 using dummy_hcd
[  362.836427][ T6985] usb 10-1: new high-speed USB device number 46 using dummy_hcd
[  362.953133][   T61] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  362.956556][   T61] usb 5-1: config 0 has no interface number 0
[  362.958599][   T61] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  362.962450][   T61] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  362.967170][   T61] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  362.970101][   T61] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  362.980831][   T61] usb 5-1: config 0 descriptor??
[  362.988525][T18089] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  362.988712][ T6985] usb 10-1: Using ep0 maxpacket: 8
[  363.003108][ T6985] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  363.008479][   T61] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  363.019640][ T6985] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  363.023908][ T6985] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  363.032529][ T6985] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  363.037002][ T6985] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  363.046430][ T6985] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  363.050557][ T6985] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  363.054290][ T6985] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  363.058054][ T6985] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  363.061868][ T6985] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  363.070858][ T6985] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  363.075416][ T6985] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  363.080029][ T6985] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  363.083759][ T6985] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  363.087242][ T6985] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  363.101480][ T6985] usb 10-1: string descriptor 0 read error: -22
[  363.103545][ T6985] usb 10-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  363.107501][ T6985] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  363.119006][ T6985] adutux 10-1:168.0: ADU100  now attached to /dev/usb/adutux1
[  363.201526][   T10] usb 5-1: USB disconnect, device number 34
[  363.331430][ T6985] usb 10-1: USB disconnect, device number 46
[  363.409417][T18100] FAULT_INJECTION: forcing a failure.
[  363.409417][T18100] name failslab, interval 1, probability 0, space 0, times 0
[  363.413683][T18100] CPU: 1 UID: 0 PID: 18100 Comm: syz.6.4307 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  363.413707][T18100] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  363.413717][T18100] Call Trace:
[  363.413724][T18100]  <TASK>
[  363.413732][T18100]  dump_stack_lvl+0x16c/0x1f0
[  363.413759][T18100]  should_fail_ex+0x512/0x640
[  363.413780][T18100]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  363.413804][T18100]  should_failslab+0xc2/0x120
[  363.413834][T18100]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  363.413856][T18100]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  363.413880][T18100]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  363.413901][T18100]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  363.413929][T18100]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  363.413960][T18100]  mmu_topup_memory_caches+0x25/0x170
[  363.413983][T18100]  kvm_mmu_load+0xd9/0x22a0
[  363.414004][T18100]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  363.414032][T18100]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  363.414061][T18100]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  363.414081][T18100]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  363.414099][T18100]  ? __pfx_kvm_mmu_load+0x10/0x10
[  363.414118][T18100]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  363.414144][T18100]  ? kvm_check_and_inject_events+0x71c/0x1310
[  363.414193][T18100]  vcpu_run+0x34eb/0x5500
[  363.414210][T18100]  ? kvm_mmu_post_init_vm+0x269/0x370
[  363.414236][T18100]  ? __lock_acquire+0xb8a/0x1c90
[  363.414271][T18100]  ? __pfx_vcpu_run+0x10/0x10
[  363.414296][T18100]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  363.414330][T18100]  ? __local_bh_enable_ip+0xa4/0x120
[  363.414359][T18100]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  363.414379][T18100]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  363.414408][T18100]  kvm_vcpu_ioctl+0x5eb/0x1690
[  363.414432][T18100]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  363.414461][T18100]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  363.414488][T18100]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  363.414522][T18100]  ? hook_file_ioctl_common+0x145/0x410
[  363.414558][T18100]  ? selinux_file_ioctl+0x180/0x270
[  363.414580][T18100]  ? selinux_file_ioctl+0xb4/0x270
[  363.414624][T18100]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  363.414648][T18100]  __x64_sys_ioctl+0x18e/0x210
[  363.414672][T18100]  do_syscall_64+0xcd/0x4c0
[  363.414700][T18100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.414718][T18100] RIP: 0033:0x7fdea2f8e929
[  363.414734][T18100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.414753][T18100] RSP: 002b:00007fdea3df3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  363.414770][T18100] RAX: ffffffffffffffda RBX: 00007fdea31b5fa0 RCX: 00007fdea2f8e929
[  363.414781][T18100] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  363.414792][T18100] RBP: 00007fdea3df3090 R08: 0000000000000000 R09: 0000000000000000
[  363.414802][T18100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  363.414813][T18100] R13: 0000000000000000 R14: 00007fdea31b5fa0 R15: 00007ffe182b6858
[  363.414844][T18100]  </TASK>
[  363.951391][T18098] ipt_REJECT: ECHOREPLY no longer supported.
[  364.197168][T18114] binder: 18113:18114 ioctl 40046205 0 returned -22
[  364.223514][T18108] tmpfs: Bad value for 'huge'
[  364.402523][T18124] netlink: 'syz.6.4316': attribute type 1 has an invalid length.
[  364.438617][T18124] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  364.542049][T18136] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4320'.
[  364.545220][T18136] netlink: 64 bytes leftover after parsing attributes in process `syz.6.4320'.
[  364.548051][T18136] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4320'.
[  364.612692][T18140] binder: 18139:18140 ioctl 40046205 0 returned -22
[  364.623152][T18140] binder_alloc: 18139: binder_alloc_buf, no vma
[  364.739891][T18142] FAULT_INJECTION: forcing a failure.
[  364.739891][T18142] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  364.745827][T18142] CPU: 0 UID: 0 PID: 18142 Comm: syz.6.4323 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  364.745853][T18142] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  364.745866][T18142] Call Trace:
[  364.745873][T18142]  <TASK>
[  364.745882][T18142]  dump_stack_lvl+0x16c/0x1f0
[  364.745914][T18142]  should_fail_ex+0x512/0x640
[  364.745944][T18142]  should_fail_alloc_page+0xe7/0x130
[  364.745970][T18142]  prepare_alloc_pages+0x3c2/0x610
[  364.745991][T18142]  ? rcu_is_watching+0x12/0xc0
[  364.746016][T18142]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  364.746050][T18142]  ? kasan_save_stack+0x42/0x60
[  364.746072][T18142]  ? kasan_save_stack+0x33/0x60
[  364.746093][T18142]  ? kasan_save_track+0x14/0x30
[  364.746113][T18142]  ? __kasan_kmalloc+0xaa/0xb0
[  364.746134][T18142]  ? __kvmalloc_node_noprof+0x27b/0x620
[  364.746157][T18142]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  364.746181][T18142]  ? mmu_topup_memory_caches+0xbc/0x170
[  364.746202][T18142]  ? kvm_mmu_load+0xd9/0x22a0
[  364.746219][T18142]  ? vcpu_run+0x34eb/0x5500
[  364.746236][T18142]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  364.746255][T18142]  ? kvm_vcpu_ioctl+0x5eb/0x1690
[  364.746274][T18142]  ? __x64_sys_ioctl+0x18e/0x210
[  364.746292][T18142]  ? do_syscall_64+0xcd/0x4c0
[  364.746315][T18142]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.746335][T18142]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  364.746377][T18142]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  364.746401][T18142]  ? policy_nodemask+0xea/0x4e0
[  364.746430][T18142]  alloc_pages_mpol+0x1fb/0x550
[  364.746457][T18142]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  364.746483][T18142]  ? trace_kmalloc+0x2b/0xd0
[  364.746508][T18142]  ? __kvmalloc_node_noprof+0x298/0x620
[  364.746534][T18142]  alloc_pages_noprof+0x131/0x390
[  364.746560][T18142]  get_free_pages_noprof+0x10/0xb0
[  364.746586][T18142]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  364.746662][T18142]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  364.746697][T18142]  mmu_topup_memory_caches+0xbc/0x170
[  364.746720][T18142]  kvm_mmu_load+0xd9/0x22a0
[  364.746741][T18142]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  364.746770][T18142]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  364.746798][T18142]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  364.746820][T18142]  ? __pfx_kvm_mmu_load+0x10/0x10
[  364.746837][T18142]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  364.746860][T18142]  ? kvm_check_and_inject_events+0x71c/0x1310
[  364.746884][T18142]  vcpu_run+0x34eb/0x5500
[  364.746905][T18142]  ? __lock_acquire+0xb8a/0x1c90
[  364.746938][T18142]  ? __pfx_vcpu_run+0x10/0x10
[  364.746963][T18142]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  364.746979][T18142]  ? __local_bh_enable_ip+0xa4/0x120
[  364.747004][T18142]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  364.747021][T18142]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  364.747053][T18142]  kvm_vcpu_ioctl+0x5eb/0x1690
[  364.747077][T18142]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  364.747105][T18142]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  364.747131][T18142]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  364.747160][T18142]  ? hook_file_ioctl_common+0x145/0x410
[  364.747189][T18142]  ? selinux_file_ioctl+0x180/0x270
[  364.747207][T18142]  ? selinux_file_ioctl+0xb4/0x270
[  364.747231][T18142]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  364.747254][T18142]  __x64_sys_ioctl+0x18e/0x210
[  364.747276][T18142]  do_syscall_64+0xcd/0x4c0
[  364.747305][T18142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.747324][T18142] RIP: 0033:0x7fdea2f8e929
[  364.747341][T18142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.747357][T18142] RSP: 002b:00007fdea3df3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  364.747375][T18142] RAX: ffffffffffffffda RBX: 00007fdea31b5fa0 RCX: 00007fdea2f8e929
[  364.747387][T18142] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009
[  364.747398][T18142] RBP: 00007fdea3df3090 R08: 0000000000000000 R09: 0000000000000000
[  364.747410][T18142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  364.747421][T18142] R13: 0000000000000000 R14: 00007fdea31b5fa0 R15: 00007ffe182b6858
[  364.747449][T18142]  </TASK>
[  364.944280][   T10] usb 10-1: new high-speed USB device number 47 using dummy_hcd
[  365.104267][   T10] usb 10-1: Using ep0 maxpacket: 8
[  365.120367][   T10] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  365.122827][   T10] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  365.134242][   T10] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  365.139104][   T10] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  365.143866][   T10] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  365.168777][   T10] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  365.171237][   T10] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  365.184239][   T10] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  365.192226][   T10] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  365.196015][   T10] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  365.204925][   T10] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  365.208746][   T10] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  365.212552][   T10] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  365.219069][   T10] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  365.222754][   T10] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  365.246804][   T10] usb 10-1: string descriptor 0 read error: -22
[  365.248930][   T10] usb 10-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  365.251991][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  365.286203][   T10] adutux 10-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  365.490334][ T6985] usb 10-1: USB disconnect, device number 47
[  365.558709][T18165] netlink: 'syz.4.4331': attribute type 23 has an invalid length.
[  365.751027][T18170] binder: 18168:18170 ioctl 40046205 0 returned -22
[  365.766277][T18170] binder_alloc: 18168: binder_alloc_buf, no vma
[  365.878867][T18175] input: syz0 as /devices/virtual/input/input17
[  366.375664][   T29] usb 5-1: new low-speed USB device number 35 using dummy_hcd
[  366.541543][   T29] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  366.545033][   T29] usb 5-1: config 0 has no interface number 0
[  366.547715][   T29] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  366.564517][   T29] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  366.571424][   T29] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  366.578030][   T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  366.583843][   T29] usb 5-1: config 0 descriptor??
[  366.591577][T18183] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  366.596582][T18154] ipt_REJECT: ECHOREPLY no longer supported.
[  366.609460][   T29] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  366.645711][   T40] kauditd_printk_skb: 1472 callbacks suppressed
[  366.645726][   T40] audit: type=1400 audit(1750720711.286:65991): avc:  denied  { ioctl } for  pid=18186 comm="syz.5.4340" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  366.727094][   T40] audit: type=1400 audit(1750720711.366:65992): avc:  denied  { ioctl } for  pid=18186 comm="syz.5.4340" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  366.784620][   T60] usb 10-1: new low-speed USB device number 48 using dummy_hcd
[  366.788700][   T40] audit: type=1400 audit(1750720711.426:65993): avc:  denied  { ioctl } for  pid=18186 comm="syz.5.4340" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  366.798135][   T40] audit: type=1400 audit(1750720711.426:65994): avc:  denied  { ioctl } for  pid=18186 comm="syz.5.4340" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  366.802257][T18188] tmpfs: Bad value for 'huge'
[  366.811686][   T40] audit: type=1400 audit(1750720711.426:65995): avc:  denied  { ioctl } for  pid=18186 comm="syz.5.4340" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  366.824410][   T40] audit: type=1400 audit(1750720711.436:65996): avc:  denied  { mounton } for  pid=18152 comm="syz.6.4326" path="/159/file0" dev="tmpfs" ino=857 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  366.831546][   T40] audit: type=1400 audit(1750720711.446:65997): avc:  denied  { read } for  pid=18152 comm="syz.6.4326" name="system" dev="devtmpfs" ino=712 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  366.840487][   T40] audit: type=1400 audit(1750720711.446:65998): avc:  denied  { read open } for  pid=18152 comm="syz.6.4326" path="/dev/dma_heap/system" dev="devtmpfs" ino=712 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  366.849250][   T40] audit: type=1400 audit(1750720711.456:65999): avc:  denied  { ioctl } for  pid=18152 comm="syz.6.4326" path="/dev/dma_heap/system" dev="devtmpfs" ino=712 ioctlcmd=0xf000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  366.862662][   T40] audit: type=1400 audit(1750720711.456:66000): avc:  denied  { read } for  pid=18152 comm="syz.6.4326" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  366.919623][ T6009] usb 5-1: USB disconnect, device number 35
[  366.956987][T18191] xt_hashlimit: size too large, truncated to 1048576
[  366.979386][   T60] usb 10-1: config 0 has an invalid interface number: 1 but max is 0
[  366.982561][   T60] usb 10-1: config 0 has no interface number 0
[  366.987125][   T60] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  366.991328][   T60] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  366.994955][   T60] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  366.997814][   T60] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  367.007673][   T60] usb 10-1: config 0 descriptor??
[  367.016763][T18187] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  367.024059][   T60] iowarrior 10-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  367.229916][ T6009] usb 10-1: USB disconnect, device number 48
[  367.250857][T18197] FAULT_INJECTION: forcing a failure.
[  367.250857][T18197] name failslab, interval 1, probability 0, space 0, times 0
[  367.255573][T18197] CPU: 0 UID: 0 PID: 18197 Comm: syz.6.4342 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  367.255589][T18197] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  367.255595][T18197] Call Trace:
[  367.255600][T18197]  <TASK>
[  367.255604][T18197]  dump_stack_lvl+0x16c/0x1f0
[  367.255640][T18197]  should_fail_ex+0x512/0x640
[  367.255655][T18197]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  367.255671][T18197]  should_failslab+0xc2/0x120
[  367.255686][T18197]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  367.255699][T18197]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  367.255719][T18197]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  367.255735][T18197]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  367.255757][T18197]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  367.255776][T18197]  mmu_topup_memory_caches+0x25/0x170
[  367.255791][T18197]  kvm_mmu_load+0xd9/0x22a0
[  367.255803][T18197]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  367.255820][T18197]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  367.255838][T18197]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  367.255856][T18197]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  367.255867][T18197]  ? __pfx_kvm_mmu_load+0x10/0x10
[  367.255878][T18197]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  367.255893][T18197]  ? kvm_check_and_inject_events+0x71c/0x1310
[  367.255910][T18197]  vcpu_run+0x34eb/0x5500
[  367.255920][T18197]  ? kvm_mmu_post_init_vm+0x269/0x370
[  367.255936][T18197]  ? __lock_acquire+0xb8a/0x1c90
[  367.255956][T18197]  ? __pfx_vcpu_run+0x10/0x10
[  367.255970][T18197]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  367.255983][T18197]  ? __local_bh_enable_ip+0xa4/0x120
[  367.255999][T18197]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  367.256011][T18197]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  367.256027][T18197]  kvm_vcpu_ioctl+0x5eb/0x1690
[  367.256041][T18197]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  367.256058][T18197]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  367.256075][T18197]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  367.256094][T18197]  ? hook_file_ioctl_common+0x145/0x410
[  367.256115][T18197]  ? selinux_file_ioctl+0x180/0x270
[  367.256129][T18197]  ? selinux_file_ioctl+0xb4/0x270
[  367.256143][T18197]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  367.256156][T18197]  __x64_sys_ioctl+0x18e/0x210
[  367.256170][T18197]  do_syscall_64+0xcd/0x4c0
[  367.256187][T18197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.256198][T18197] RIP: 0033:0x7fdea2f8e929
[  367.256207][T18197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.256217][T18197] RSP: 002b:00007fdea3df3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  367.256228][T18197] RAX: ffffffffffffffda RBX: 00007fdea31b5fa0 RCX: 00007fdea2f8e929
[  367.256234][T18197] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  367.256240][T18197] RBP: 00007fdea3df3090 R08: 0000000000000000 R09: 0000000000000000
[  367.256246][T18197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  367.256252][T18197] R13: 0000000000000000 R14: 00007fdea31b5fa0 R15: 00007ffe182b6858
[  367.256266][T18197]  </TASK>
[  367.667244][T18204] binder: 18203:18204 ioctl 40046205 0 returned -22
[  367.686679][T18204] binder_alloc: 18203: binder_alloc_buf, no vma
[  368.004314][ T6985] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  368.154366][ T6985] usb 5-1: Using ep0 maxpacket: 8
[  368.161326][ T6985] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  368.163691][ T6985] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  368.171079][ T6985] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  368.174926][ T6985] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  368.179461][ T6985] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  368.189367][ T6985] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  368.192197][ T6985] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  368.197532][ T6985] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  368.201893][ T6985] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  368.205995][ T6985] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  368.216002][ T6985] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  368.219241][ T6985] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  368.222817][ T6985] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  368.227095][ T6985] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  368.231632][ T6985] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  368.245564][ T6985] usb 5-1: string descriptor 0 read error: -22
[  368.247632][ T6985] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  368.250653][ T6985] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  368.268994][ T6985] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  368.476157][ T6985] usb 5-1: USB disconnect, device number 36
[  369.120308][T18230] binder: 18229:18230 ioctl 40046205 0 returned -22
[  369.301264][T18234] netlink: 1624 bytes leftover after parsing attributes in process `syz.0.4358'.
[  369.737911][T18219] ipt_REJECT: ECHOREPLY no longer supported.
[  369.920990][T18218] tmpfs: Bad value for 'huge'
[  370.209916][T18250] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4363'.
[  370.290121][T18250] team0: Mode "" not found
[  370.345536][T18253] FAULT_INJECTION: forcing a failure.
[  370.345536][T18253] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  370.351135][T18253] CPU: 1 UID: 0 PID: 18253 Comm: syz.4.4364 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  370.351161][T18253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  370.351172][T18253] Call Trace:
[  370.351180][T18253]  <TASK>
[  370.351189][T18253]  dump_stack_lvl+0x16c/0x1f0
[  370.351219][T18253]  should_fail_ex+0x512/0x640
[  370.351246][T18253]  should_fail_alloc_page+0xe7/0x130
[  370.351275][T18253]  prepare_alloc_pages+0x3c2/0x610
[  370.351294][T18253]  ? rcu_is_watching+0x12/0xc0
[  370.351319][T18253]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  370.351345][T18253]  ? kasan_save_stack+0x42/0x60
[  370.351365][T18253]  ? kasan_save_stack+0x33/0x60
[  370.351385][T18253]  ? kasan_save_track+0x14/0x30
[  370.351405][T18253]  ? __kasan_kmalloc+0xaa/0xb0
[  370.351423][T18253]  ? __kvmalloc_node_noprof+0x27b/0x620
[  370.351443][T18253]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  370.351467][T18253]  ? mmu_topup_memory_caches+0xbc/0x170
[  370.351487][T18253]  ? kvm_mmu_load+0xd9/0x22a0
[  370.351504][T18253]  ? vcpu_run+0x34eb/0x5500
[  370.351521][T18253]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  370.351541][T18253]  ? kvm_vcpu_ioctl+0x5eb/0x1690
[  370.351560][T18253]  ? __x64_sys_ioctl+0x18e/0x210
[  370.351577][T18253]  ? do_syscall_64+0xcd/0x4c0
[  370.351599][T18253]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.351621][T18253]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  370.351662][T18253]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  370.351687][T18253]  ? policy_nodemask+0xea/0x4e0
[  370.351714][T18253]  alloc_pages_mpol+0x1fb/0x550
[  370.351741][T18253]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  370.351767][T18253]  ? trace_kmalloc+0x2b/0xd0
[  370.351790][T18253]  ? __kvmalloc_node_noprof+0x298/0x620
[  370.351816][T18253]  alloc_pages_noprof+0x131/0x390
[  370.351841][T18253]  get_free_pages_noprof+0x10/0xb0
[  370.351867][T18253]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  370.351889][T18253]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  370.351922][T18253]  mmu_topup_memory_caches+0xbc/0x170
[  370.351944][T18253]  kvm_mmu_load+0xd9/0x22a0
[  370.351965][T18253]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  370.351992][T18253]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  370.352020][T18253]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  370.352042][T18253]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  370.352059][T18253]  ? __pfx_kvm_mmu_load+0x10/0x10
[  370.352085][T18253]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  370.352111][T18253]  ? kvm_check_and_inject_events+0x71c/0x1310
[  370.352137][T18253]  vcpu_run+0x34eb/0x5500
[  370.352154][T18253]  ? kvm_mmu_post_init_vm+0x269/0x370
[  370.352180][T18253]  ? __lock_acquire+0xb8a/0x1c90
[  370.352214][T18253]  ? __pfx_vcpu_run+0x10/0x10
[  370.352239][T18253]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  370.352259][T18253]  ? __local_bh_enable_ip+0xa4/0x120
[  370.352285][T18253]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  370.352305][T18253]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  370.352333][T18253]  kvm_vcpu_ioctl+0x5eb/0x1690
[  370.352358][T18253]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  370.352387][T18253]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  370.352415][T18253]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  370.352448][T18253]  ? hook_file_ioctl_common+0x145/0x410
[  370.352484][T18253]  ? selinux_file_ioctl+0x180/0x270
[  370.352506][T18253]  ? selinux_file_ioctl+0xb4/0x270
[  370.352530][T18253]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  370.352552][T18253]  __x64_sys_ioctl+0x18e/0x210
[  370.352575][T18253]  do_syscall_64+0xcd/0x4c0
[  370.352602][T18253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.352619][T18253] RIP: 0033:0x7f193b58e929
[  370.352634][T18253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.352651][T18253] RSP: 002b:00007f193c3d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  370.352691][T18253] RAX: ffffffffffffffda RBX: 00007f193b7b5fa0 RCX: 00007f193b58e929
[  370.352703][T18253] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009
[  370.352714][T18253] RBP: 00007f193c3d9090 R08: 0000000000000000 R09: 0000000000000000
[  370.352726][T18253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  370.352737][T18253] R13: 0000000000000000 R14: 00007f193b7b5fa0 R15: 00007fff378acc98
[  370.352763][T18253]  </TASK>
[  370.529196][T18256] binder: 18255:18256 ioctl 40046205 0 returned -22
[  370.638612][T18261] netlink: 'syz.5.4367': attribute type 1 has an invalid length.
[  370.641838][T18261] netlink: 105116 bytes leftover after parsing attributes in process `syz.5.4367'.
[  370.714623][   T10] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  370.855967][T18267] netlink: 1624 bytes leftover after parsing attributes in process `syz.5.4370'.
[  370.874904][   T10] usb 5-1: Using ep0 maxpacket: 8
[  370.886766][   T10] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  370.889531][   T10] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  370.893822][   T10] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  370.901289][   T10] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  370.905883][   T10] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  370.912666][   T10] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  370.918945][   T10] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  370.922449][   T10] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  370.927895][   T10] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  370.931320][   T10] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  370.942001][   T10] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  370.944916][   T10] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  370.948352][   T10] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  370.952566][   T10] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  370.958105][   T10] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  370.972239][   T10] usb 5-1: string descriptor 0 read error: -22
[  370.974625][   T10] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  370.977434][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  371.007756][   T10] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  371.197233][   T29] usb 5-1: USB disconnect, device number 37
[  371.934668][   T40] kauditd_printk_skb: 1294 callbacks suppressed
[  371.934686][   T40] audit: type=1400 audit(1750720716.576:67295): avc:  denied  { recv } for  pid=5847 comm="syz-executor" saddr=127.0.0.1 src=57910 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  371.948071][   T40] audit: type=1400 audit(1750720716.576:67296): avc:  denied  { recv } for  pid=5847 comm="syz-executor" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=57910 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  371.958224][   T40] audit: type=1400 audit(1750720716.576:67297): avc:  denied  { recv } for  pid=0 comm="swapper/1" saddr=10.0.2.2 src=43094 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  371.971370][   T40] audit: type=1400 audit(1750720716.576:67298): avc:  denied  { recv } for  pid=5847 comm="syz-executor" saddr=127.0.0.1 src=57910 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  371.981091][   T40] audit: type=1400 audit(1750720716.576:67299): avc:  denied  { recv } for  pid=0 comm="swapper/1" saddr=10.0.2.2 src=43094 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  371.989417][   T40] audit: type=1400 audit(1750720716.576:67300): avc:  denied  { recv } for  pid=5847 comm="syz-executor" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=57910 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  372.002402][   T40] audit: type=1400 audit(1750720716.576:67301): avc:  denied  { recv } for  pid=0 comm="swapper/1" saddr=10.0.2.2 src=43094 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  372.013084][   T40] audit: type=1400 audit(1750720716.576:67302): avc:  denied  { recv } for  pid=5847 comm="syz-executor" saddr=127.0.0.1 src=57910 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  372.024996][   T40] audit: type=1400 audit(1750720716.576:67303): avc:  denied  { recv } for  pid=0 comm="swapper/1" saddr=10.0.2.2 src=43094 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  372.032765][   T40] audit: type=1400 audit(1750720716.576:67304): avc:  denied  { recv } for  pid=0 comm="swapper/1" saddr=10.0.2.2 src=43094 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  372.201912][T18282] binder: 18281:18282 ioctl 40046205 0 returned -22
[  372.800868][T18290] netlink: 'syz.5.4378': attribute type 23 has an invalid length.
[  373.012809][T18295] netlink: 1624 bytes leftover after parsing attributes in process `syz.5.4380'.
[  373.163714][T18280] ipt_REJECT: ECHOREPLY no longer supported.
[  373.434324][T18296] tmpfs: Bad value for 'huge'
[  373.484244][ T6009] usb 10-1: new high-speed USB device number 49 using dummy_hcd
[  373.644378][ T6009] usb 10-1: Using ep0 maxpacket: 8
[  373.653948][ T6009] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  373.659898][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  373.663443][ T6009] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  373.671025][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  373.676335][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  373.683529][ T6009] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  373.689328][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  373.692976][ T6009] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  373.697761][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  373.701235][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  373.710567][ T6009] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  373.713904][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  373.720772][ T6009] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  373.725592][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  373.729719][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  373.754920][ T6009] usb 10-1: string descriptor 0 read error: -22
[  373.757363][ T6009] usb 10-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  373.761313][ T6009] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.788432][ T6009] adutux 10-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  373.990360][ T6985] usb 10-1: USB disconnect, device number 49
[  374.059172][T18313] binder: 18312:18313 ioctl 40046205 0 returned -22
[  374.072413][T18313] binder: BINDER_SET_CONTEXT_MGR already set
[  374.075262][T18313] binder: 18312:18313 ioctl 4018620d 200000000040 returned -16
[  374.205596][T18320] FAULT_INJECTION: forcing a failure.
[  374.205596][T18320] name failslab, interval 1, probability 0, space 0, times 0
[  374.209609][T18320] CPU: 2 UID: 0 PID: 18320 Comm: syz.0.4388 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  374.209625][T18320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  374.209632][T18320] Call Trace:
[  374.209636][T18320]  <TASK>
[  374.209641][T18320]  dump_stack_lvl+0x16c/0x1f0
[  374.209659][T18320]  should_fail_ex+0x512/0x640
[  374.209674][T18320]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  374.209691][T18320]  should_failslab+0xc2/0x120
[  374.209707][T18320]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  374.209720][T18320]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  374.209735][T18320]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  374.209748][T18320]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  374.209765][T18320]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  374.209783][T18320]  mmu_topup_memory_caches+0x25/0x170
[  374.209797][T18320]  kvm_mmu_load+0xd9/0x22a0
[  374.209809][T18320]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  374.209826][T18320]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  374.209844][T18320]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  374.209857][T18320]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  374.209867][T18320]  ? __pfx_kvm_mmu_load+0x10/0x10
[  374.209879][T18320]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  374.209894][T18320]  ? kvm_check_and_inject_events+0x71c/0x1310
[  374.209911][T18320]  vcpu_run+0x34eb/0x5500
[  374.209924][T18320]  ? __lock_acquire+0xb8a/0x1c90
[  374.209944][T18320]  ? __pfx_vcpu_run+0x10/0x10
[  374.209958][T18320]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  374.209973][T18320]  ? __local_bh_enable_ip+0xa4/0x120
[  374.209990][T18320]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  374.210002][T18320]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  374.210018][T18320]  kvm_vcpu_ioctl+0x5eb/0x1690
[  374.210032][T18320]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  374.210049][T18320]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  374.210066][T18320]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  374.210086][T18320]  ? hook_file_ioctl_common+0x145/0x410
[  374.210107][T18320]  ? selinux_file_ioctl+0x180/0x270
[  374.210121][T18320]  ? selinux_file_ioctl+0xb4/0x270
[  374.210135][T18320]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  374.210149][T18320]  __x64_sys_ioctl+0x18e/0x210
[  374.210162][T18320]  do_syscall_64+0xcd/0x4c0
[  374.210179][T18320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.210190][T18320] RIP: 0033:0x7fbc25d8e929
[  374.210199][T18320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  374.210210][T18320] RSP: 002b:00007fbc26b98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  374.210220][T18320] RAX: ffffffffffffffda RBX: 00007fbc25fb6080 RCX: 00007fbc25d8e929
[  374.210227][T18320] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  374.210234][T18320] RBP: 00007fbc26b98090 R08: 0000000000000000 R09: 0000000000000000
[  374.210240][T18320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  374.210246][T18320] R13: 0000000000000001 R14: 00007fbc25fb6080 R15: 00007ffc6cdffe28
[  374.210260][T18320]  </TASK>
[  375.114789][ T6009] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  375.275925][ T6009] usb 5-1: Using ep0 maxpacket: 8
[  375.302094][ T6009] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  375.304946][ T6009] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  375.310025][ T6009] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  375.318976][ T6009] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  375.322616][ T6009] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  375.332665][ T6009] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  375.338448][ T6009] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  375.341888][ T6009] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  375.347886][ T6009] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  375.351616][ T6009] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  375.362321][ T6009] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  375.366875][ T6009] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  375.371412][ T6009] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  375.376790][ T6009] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  375.381004][ T6009] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  375.401340][ T6009] usb 5-1: string descriptor 0 read error: -22
[  375.403368][ T6009] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  375.408353][ T6009] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  375.423701][ T6009] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  375.623433][ T6009] usb 5-1: USB disconnect, device number 38
[  375.929923][T18343] binder: 18342:18343 ioctl 40046205 0 returned -22
[  375.940896][T18343] binder: BINDER_SET_CONTEXT_MGR already set
[  375.942907][T18343] binder: 18342:18343 ioctl 4018620d 200000000040 returned -16
[  376.334591][ T6000] usb 10-1: new low-speed USB device number 50 using dummy_hcd
[  376.489705][ T6000] usb 10-1: config 0 has an invalid interface number: 1 but max is 0
[  376.492271][ T6000] usb 10-1: config 0 has no interface number 0
[  376.494967][ T6000] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  376.498421][ T6000] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  376.501752][ T6000] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  376.506091][ T6000] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  376.512853][ T6000] usb 10-1: config 0 descriptor??
[  376.527253][T18347] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  376.536857][ T6000] iowarrior 10-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  376.676577][T18333] ipt_REJECT: ECHOREPLY no longer supported.
[  376.740722][T11053] usb 10-1: USB disconnect, device number 50
[  376.946583][   T40] kauditd_printk_skb: 1772 callbacks suppressed
[  376.946594][   T40] audit: type=1400 audit(1750720721.586:68483): avc:  denied  { write } for  pid=18355 comm="syz.4.4403" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  376.955983][   T40] audit: type=1400 audit(1750720721.596:68484): avc:  denied  { read } for  pid=18355 comm="syz.4.4403" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  376.965368][   T40] audit: type=1400 audit(1750720721.596:68485): avc:  denied  { read } for  pid=18355 comm="syz.4.4403" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  376.972061][   T40] audit: type=1400 audit(1750720721.606:68486): avc:  denied  { recv } for  pid=28 comm="ksoftirqd/1" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=57910 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  376.991107][   T40] audit: type=1400 audit(1750720721.606:68487): avc:  denied  { recv } for  pid=28 comm="ksoftirqd/1" saddr=127.0.0.1 src=57910 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  377.003569][   T40] audit: type=1400 audit(1750720721.606:68488): avc:  denied  { recv } for  pid=28 comm="ksoftirqd/1" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=57910 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  377.013182][   T40] audit: type=1400 audit(1750720721.606:68489): avc:  denied  { recv } for  pid=5846 comm="sshd-session" saddr=10.0.2.2 src=43094 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  377.022278][   T40] audit: type=1400 audit(1750720721.606:68490): avc:  denied  { recv } for  pid=5846 comm="sshd-session" saddr=10.0.2.2 src=43094 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  377.032593][   T40] audit: type=1400 audit(1750720721.616:68491): avc:  denied  { prog_load } for  pid=18358 comm="syz.6.4405" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  377.040598][   T40] audit: type=1400 audit(1750720721.616:68492): avc:  denied  { recv } for  pid=5846 comm="sshd-session" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=57910 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  377.083061][T18361] bond1: (slave ip6gretap1): Releasing backup interface
[  377.189706][T18365] binder: 18364:18365 ioctl 40046205 0 returned -22
[  377.198926][T18365] binder: BINDER_SET_CONTEXT_MGR already set
[  377.200845][T18365] binder: 18364:18365 ioctl 4018620d 200000000040 returned -16
[  377.444779][ T6009] usb 9-1: new high-speed USB device number 48 using dummy_hcd
[  377.494808][T18379] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  377.497118][T18379] IPv6: NLM_F_CREATE should be set when creating new route
[  377.530665][ T5946] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  377.537826][ T5946] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  377.541706][ T5946] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  377.547213][ T5946] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  377.550238][ T5946] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  377.594669][ T6009] usb 9-1: Using ep0 maxpacket: 8
[  377.601680][ T6009] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  377.603937][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  377.608306][ T6009] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  377.611829][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  377.615605][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  377.621904][ T6009] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  377.624374][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  377.627830][ T6009] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  377.631377][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  377.635717][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  377.642172][ T6009] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  377.645705][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  377.649233][ T6009] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  377.652816][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  377.656680][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  377.671096][ T6009] usb 9-1: string descriptor 0 read error: -22
[  377.673128][ T6009] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  377.677525][ T6009] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  377.691217][ T6009] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  377.789069][T18380] chnl_net:caif_netlink_parms(): no params data found
[  377.805446][T18388] netlink: 64 bytes leftover after parsing attributes in process `syz.6.4416'.
[  377.860733][T18388] team0: Mode "" not found
[  377.900406][ T6985] usb 9-1: USB disconnect, device number 48
[  377.968103][T18380] bridge0: port 1(bridge_slave_0) entered blocking state
[  377.980600][T18380] bridge0: port 1(bridge_slave_0) entered disabled state
[  377.982989][T18380] bridge_slave_0: entered allmulticast mode
[  377.994272][T18380] bridge_slave_0: entered promiscuous mode
[  377.999222][T18380] bridge0: port 2(bridge_slave_1) entered blocking state
[  378.001611][T18380] bridge0: port 2(bridge_slave_1) entered disabled state
[  378.003927][T18380] bridge_slave_1: entered allmulticast mode
[  378.011786][T18380] bridge_slave_1: entered promiscuous mode
[  378.035650][T18397] binder: 18396:18397 ioctl 40046205 0 returned -22
[  378.050912][T18380] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  378.057647][T18380] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  378.110072][T18380] team0: Port device team_slave_0 added
[  378.123317][T18380] team0: Port device team_slave_1 added
[  378.170380][T18380] batman_adv: batadv0: Adding interface: batadv_slave_0
[  378.172675][T18380] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  378.184264][T18380] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  378.190034][T18380] batman_adv: batadv0: Adding interface: batadv_slave_1
[  378.192212][T18380] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  378.203503][T18380] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  378.210877][T18400] FAULT_INJECTION: forcing a failure.
[  378.210877][T18400] name failslab, interval 1, probability 0, space 0, times 0
[  378.215031][T18400] CPU: 3 UID: 0 PID: 18400 Comm: syz.6.4419 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  378.215047][T18400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  378.215054][T18400] Call Trace:
[  378.215058][T18400]  <TASK>
[  378.215062][T18400]  dump_stack_lvl+0x16c/0x1f0
[  378.215082][T18400]  should_fail_ex+0x512/0x640
[  378.215096][T18400]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  378.215117][T18400]  should_failslab+0xc2/0x120
[  378.215135][T18400]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  378.215148][T18400]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  378.215164][T18400]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  378.215177][T18400]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  378.215194][T18400]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  378.215213][T18400]  mmu_topup_memory_caches+0x25/0x170
[  378.215228][T18400]  kvm_mmu_load+0xd9/0x22a0
[  378.215241][T18400]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  378.215258][T18400]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  378.215276][T18400]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  378.215289][T18400]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  378.215300][T18400]  ? __pfx_kvm_mmu_load+0x10/0x10
[  378.215311][T18400]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  378.215327][T18400]  ? kvm_check_and_inject_events+0x71c/0x1310
[  378.215343][T18400]  vcpu_run+0x34eb/0x5500
[  378.215353][T18400]  ? kvm_mmu_post_init_vm+0x269/0x370
[  378.215368][T18400]  ? __lock_acquire+0xb8a/0x1c90
[  378.215389][T18400]  ? __pfx_vcpu_run+0x10/0x10
[  378.215403][T18400]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  378.215415][T18400]  ? __local_bh_enable_ip+0xa4/0x120
[  378.215431][T18400]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  378.215443][T18400]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  378.215460][T18400]  kvm_vcpu_ioctl+0x5eb/0x1690
[  378.215474][T18400]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  378.215491][T18400]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  378.215508][T18400]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  378.215543][T18400]  ? hook_file_ioctl_common+0x145/0x410
[  378.215564][T18400]  ? selinux_file_ioctl+0x180/0x270
[  378.215577][T18400]  ? selinux_file_ioctl+0xb4/0x270
[  378.215592][T18400]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  378.215605][T18400]  __x64_sys_ioctl+0x18e/0x210
[  378.215619][T18400]  do_syscall_64+0xcd/0x4c0
[  378.215635][T18400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.215646][T18400] RIP: 0033:0x7fdea2f8e929
[  378.215656][T18400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  378.215666][T18400] RSP: 002b:00007fdea3df3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  378.215676][T18400] RAX: ffffffffffffffda RBX: 00007fdea31b5fa0 RCX: 00007fdea2f8e929
[  378.215683][T18400] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009
[  378.215689][T18400] RBP: 00007fdea3df3090 R08: 0000000000000000 R09: 0000000000000000
[  378.215695][T18400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  378.215701][T18400] R13: 0000000000000000 R14: 00007fdea31b5fa0 R15: 00007ffe182b6858
[  378.215715][T18400]  </TASK>
[  378.276901][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  378.326874][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  378.350891][T18380] hsr_slave_0: entered promiscuous mode
[  378.353332][T18380] hsr_slave_1: entered promiscuous mode
[  378.356032][T18380] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  378.358506][T18380] Cannot create hsr debugfs directory
[  378.521551][T18380] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  378.616035][T18380] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  378.687688][T18380] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  378.738143][T18412] netlink: 'syz.4.4424': attribute type 2 has an invalid length.
[  378.740732][T18412] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.4424'.
[  378.746300][T18412] nbd: must specify a device to reconfigure
[  378.758823][T18380] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  378.931489][T18380] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  378.936983][T18380] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  378.946737][T18380] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  378.952026][T18380] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  379.088434][T18380] 8021q: adding VLAN 0 to HW filter on device bond0
[  379.108937][T18380] 8021q: adding VLAN 0 to HW filter on device team0
[  379.118823][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  379.118853][T18424] binder: 18423:18424 ioctl 40046205 0 returned -22
[  379.121088][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  379.127867][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  379.130106][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  379.265677][T18429] netlink: 'syz.6.4428': attribute type 23 has an invalid length.
[  379.510766][T18380] 8021q: adding VLAN 0 to HW filter on device batadv0
[  379.520601][T18436] net_ratelimit: 394 callbacks suppressed
[  379.520616][T18436] IPv6: addrconf: prefix option has invalid lifetime
[  379.634676][ T5946] Bluetooth: hci0: command tx timeout
[  379.726955][T18436] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  379.730869][T18436] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  379.735970][T18436] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  379.739716][T18436] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  379.747692][T18436] netdevsim netdevsim6 netdevsim0: left promiscuous mode
[  379.808708][T18380] veth0_vlan: entered promiscuous mode
[  379.822213][T18380] veth1_vlan: entered promiscuous mode
[  379.865231][T18380] veth0_macvtap: entered promiscuous mode
[  379.873676][T18380] veth1_macvtap: entered promiscuous mode
[  379.898814][T18380] batman_adv: batadv0: Interface activated: batadv_slave_0
[  379.911462][T18380] batman_adv: batadv0: Interface activated: batadv_slave_1
[  379.922066][T18380] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  379.925350][T18380] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  379.928369][T18380] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  379.931169][T18380] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  379.974381][ T6985] usb 9-1: new high-speed USB device number 49 using dummy_hcd
[  380.053836][   T79] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  380.056594][   T79] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  380.109229][ T1236] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  380.111720][ T1236] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  380.124885][ T6985] usb 9-1: Using ep0 maxpacket: 8
[  380.139631][ T6985] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  380.142390][ T6985] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  380.148689][ T6985] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  380.158606][ T6985] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  380.162672][ T6985] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  380.162915][T18447] FAULT_INJECTION: forcing a failure.
[  380.162915][T18447] name failslab, interval 1, probability 0, space 0, times 0
[  380.179310][ T6985] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  380.182472][ T6985] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  380.188516][ T6985] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  380.192151][ T6985] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  380.200949][ T6985] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  380.210763][ T6985] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  380.213889][ T6985] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  380.219683][ T6985] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  380.220719][T18447] CPU: 2 UID: 0 PID: 18447 Comm: syz.5.4433 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  380.220737][T18447] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  380.220744][T18447] Call Trace:
[  380.220748][T18447]  <TASK>
[  380.220752][T18447]  dump_stack_lvl+0x16c/0x1f0
[  380.220771][T18447]  should_fail_ex+0x512/0x640
[  380.220786][T18447]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  380.220802][T18447]  should_failslab+0xc2/0x120
[  380.220819][T18447]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  380.220832][T18447]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  380.220846][T18447]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  380.220859][T18447]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  380.220876][T18447]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  380.220895][T18447]  mmu_topup_memory_caches+0x25/0x170
[  380.220909][T18447]  kvm_mmu_load+0xd9/0x22a0
[  380.220921][T18447]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  380.220938][T18447]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  380.220956][T18447]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  380.220969][T18447]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  380.220979][T18447]  ? __pfx_kvm_mmu_load+0x10/0x10
[  380.220991][T18447]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  380.221007][T18447]  ? kvm_check_and_inject_events+0x71c/0x1310
[  380.221023][T18447]  vcpu_run+0x34eb/0x5500
[  380.221037][T18447]  ? __lock_acquire+0xb8a/0x1c90
[  380.221057][T18447]  ? __pfx_vcpu_run+0x10/0x10
[  380.221071][T18447]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  380.221083][T18447]  ? __local_bh_enable_ip+0xa4/0x120
[  380.221099][T18447]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  380.221111][T18447]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  380.221128][T18447]  kvm_vcpu_ioctl+0x5eb/0x1690
[  380.221143][T18447]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  380.221160][T18447]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  380.221178][T18447]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  380.221198][T18447]  ? hook_file_ioctl_common+0x145/0x410
[  380.221219][T18447]  ? selinux_file_ioctl+0x180/0x270
[  380.221232][T18447]  ? selinux_file_ioctl+0xb4/0x270
[  380.221247][T18447]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  380.221260][T18447]  __x64_sys_ioctl+0x18e/0x210
[  380.221273][T18447]  do_syscall_64+0xcd/0x4c0
[  380.221290][T18447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.221301][T18447] RIP: 0033:0x7f728a78e929
[  380.221310][T18447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  380.221320][T18447] RSP: 002b:00007f72885f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  380.221331][T18447] RAX: ffffffffffffffda RBX: 00007f728a9b6080 RCX: 00007f728a78e929
[  380.221337][T18447] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  380.221343][T18447] RBP: 00007f72885f6090 R08: 0000000000000000 R09: 0000000000000000
[  380.221349][T18447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  380.221355][T18447] R13: 0000000000000001 R14: 00007f728a9b6080 R15: 00007ffe62493c28
[  380.221370][T18447]  </TASK>
[  380.322186][ T6985] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  380.326625][ T6985] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  380.350861][ T6985] usb 9-1: string descriptor 0 read error: -22
[  380.352932][ T6985] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  380.358098][ T6985] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  380.379824][ T6985] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  380.406913][T18453] binder: 18452:18453 ioctl 40046205 0 returned -22
[  380.589774][ T6985] usb 9-1: USB disconnect, device number 49
[  381.137876][T18475] binder: 18474:18475 ioctl 40046205 0 returned -22
[  381.145392][T18475] binder: BINDER_SET_CONTEXT_MGR already set
[  381.147316][T18475] binder: 18474:18475 ioctl 4018620d 200000000040 returned -16
[  381.347471][T18486] kvm: emulating exchange as write
[  381.524393][   T24] usb 10-1: new low-speed USB device number 51 using dummy_hcd
[  381.599971][T18497] netlink: 64 bytes leftover after parsing attributes in process `syz.0.4453'.
[  381.603803][T18497] team0: No ports can be present during mode change
[  381.703693][   T24] usb 10-1: config 0 has an invalid interface number: 1 but max is 0
[  381.706617][   T24] usb 10-1: config 0 has no interface number 0
[  381.708606][   T24] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  381.712009][   T24] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  381.715500][ T5946] Bluetooth: hci0: command tx timeout
[  381.718304][   T24] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  381.721133][   T24] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  381.726203][   T24] usb 10-1: config 0 descriptor??
[  381.730935][T18485] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  381.737937][   T24] iowarrior 10-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  381.766572][T18502] binder: 18501:18502 ioctl 40046205 0 returned -22
[  381.772755][T18502] binder: BINDER_SET_CONTEXT_MGR already set
[  381.774826][T18502] binder: 18501:18502 ioctl 4018620d 200000000040 returned -16
[  381.940833][T18508] FAULT_INJECTION: forcing a failure.
[  381.940833][T18508] name failslab, interval 1, probability 0, space 0, times 0
[  381.943277][   T24] usb 10-1: USB disconnect, device number 51
[  381.945238][T18508] CPU: 3 UID: 0 PID: 18508 Comm: syz.6.4459 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  381.945254][T18508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  381.945261][T18508] Call Trace:
[  381.945265][T18508]  <TASK>
[  381.945270][T18508]  dump_stack_lvl+0x16c/0x1f0
[  381.945289][T18508]  should_fail_ex+0x512/0x640
[  381.945304][T18508]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  381.945320][T18508]  should_failslab+0xc2/0x120
[  381.945336][T18508]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  381.945349][T18508]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  381.945364][T18508]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  381.945377][T18508]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  381.945394][T18508]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  381.945412][T18508]  mmu_topup_memory_caches+0x25/0x170
[  381.945426][T18508]  kvm_mmu_load+0xd9/0x22a0
[  381.945438][T18508]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  381.945455][T18508]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  381.945473][T18508]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  381.945486][T18508]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  381.945497][T18508]  ? __pfx_kvm_mmu_load+0x10/0x10
[  381.945508][T18508]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  381.945523][T18508]  ? kvm_check_and_inject_events+0x71c/0x1310
[  381.945540][T18508]  vcpu_run+0x34eb/0x5500
[  381.945551][T18508]  ? kvm_mmu_post_init_vm+0x269/0x370
[  381.945565][T18508]  ? __lock_acquire+0xb8a/0x1c90
[  381.945587][T18508]  ? __pfx_vcpu_run+0x10/0x10
[  381.945601][T18508]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  381.945613][T18508]  ? __local_bh_enable_ip+0xa4/0x120
[  381.945629][T18508]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  381.945641][T18508]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  381.945657][T18508]  kvm_vcpu_ioctl+0x5eb/0x1690
[  381.945672][T18508]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  381.945688][T18508]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  381.945705][T18508]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  381.945725][T18508]  ? hook_file_ioctl_common+0x145/0x410
[  381.945746][T18508]  ? selinux_file_ioctl+0x180/0x270
[  381.945759][T18508]  ? selinux_file_ioctl+0xb4/0x270
[  381.945774][T18508]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  381.945787][T18508]  __x64_sys_ioctl+0x18e/0x210
[  381.945801][T18508]  do_syscall_64+0xcd/0x4c0
[  381.945818][T18508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.945829][T18508] RIP: 0033:0x7fdea2f8e929
[  381.945838][T18508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.945849][T18508] RSP: 002b:00007fdea3df3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  381.945860][T18508] RAX: ffffffffffffffda RBX: 00007fdea31b5fa0 RCX: 00007fdea2f8e929
[  381.945867][T18508] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009
[  381.945873][T18508] RBP: 00007fdea3df3090 R08: 0000000000000000 R09: 0000000000000000
[  381.945879][T18508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  381.945885][T18508] R13: 0000000000000000 R14: 00007fdea31b5fa0 R15: 00007ffe182b6858
[  381.945899][T18508]  </TASK>
[  381.955802][   T40] kauditd_printk_skb: 1334 callbacks suppressed
[  381.955812][   T40] audit: type=1400 audit(1750720726.586:69827): avc:  denied  { recv } for  pid=28 comm="ksoftirqd/1" saddr=127.0.0.1 src=57910 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  382.075750][   T40] audit: type=1400 audit(1750720726.616:69828): avc:  denied  { ioctl } for  pid=18505 comm="syz.0.4458" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  382.083633][   T40] audit: type=1400 audit(1750720726.686:69829): avc:  denied  { ioctl } for  pid=18505 comm="syz.0.4458" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  382.105270][T11053] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  382.110016][   T40] audit: type=1400 audit(1750720726.746:69830): avc:  denied  { ioctl } for  pid=18505 comm="syz.0.4458" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  382.121940][   T40] audit: type=1400 audit(1750720726.756:69831): avc:  denied  { ioctl } for  pid=18505 comm="syz.0.4458" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  382.129710][   T40] audit: type=1400 audit(1750720726.756:69832): avc:  denied  { ioctl } for  pid=18505 comm="syz.0.4458" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  382.177121][   T40] audit: type=1400 audit(1750720726.816:69833): avc:  denied  { recv } for  pid=5847 comm="syz-executor" saddr=127.0.0.1 src=57910 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  382.186000][   T40] audit: type=1400 audit(1750720726.816:69834): avc:  denied  { recv } for  pid=0 comm="swapper/1" saddr=10.0.2.2 src=43094 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  382.198986][   T40] audit: type=1400 audit(1750720726.826:69835): avc:  denied  { ioctl } for  pid=18505 comm="syz.0.4458" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  382.209085][   T40] audit: type=1400 audit(1750720726.826:69836): avc:  denied  { read write } for  pid=16488 comm="syz-executor" name="loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  382.264693][T11053] usb 5-1: Using ep0 maxpacket: 8
[  382.274332][T11053] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  382.276707][T11053] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  382.280192][T11053] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  382.283762][T11053] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  382.288667][T11053] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  382.300244][T11053] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  382.302608][T11053] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  382.306995][T11053] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  382.311215][T11053] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  382.315551][T11053] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  382.323296][T11053] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  382.326578][T11053] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  382.330396][T11053] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  382.334009][T11053] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  382.337545][T11053] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  382.352599][T11053] usb 5-1: string descriptor 0 read error: -22
[  382.357283][T11053] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  382.360091][T11053] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  382.376192][T11053] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  382.583081][T11053] usb 5-1: USB disconnect, device number 39
[  382.924881][T18529] netlink: 'syz.5.4466': attribute type 23 has an invalid length.
[  383.108245][T18531] binder: 18530:18531 ioctl 40046205 0 returned -22
[  383.115912][T18531] binder: BINDER_SET_CONTEXT_MGR already set
[  383.117899][T18531] binder: 18530:18531 ioctl 4018620d 200000000040 returned -16
[  383.432200][T18544] FAULT_INJECTION: forcing a failure.
[  383.432200][T18544] name failslab, interval 1, probability 0, space 0, times 0
[  383.437106][T18544] CPU: 3 UID: 0 PID: 18544 Comm: syz.0.4473 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  383.437122][T18544] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  383.437129][T18544] Call Trace:
[  383.437133][T18544]  <TASK>
[  383.437137][T18544]  dump_stack_lvl+0x16c/0x1f0
[  383.437156][T18544]  should_fail_ex+0x512/0x640
[  383.437171][T18544]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  383.437187][T18544]  should_failslab+0xc2/0x120
[  383.437203][T18544]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  383.437216][T18544]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  383.437230][T18544]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  383.437243][T18544]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  383.437260][T18544]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  383.437278][T18544]  mmu_topup_memory_caches+0x25/0x170
[  383.437292][T18544]  kvm_mmu_load+0xd9/0x22a0
[  383.437304][T18544]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  383.437321][T18544]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  383.437339][T18544]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  383.437352][T18544]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  383.437363][T18544]  ? __pfx_kvm_mmu_load+0x10/0x10
[  383.437374][T18544]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  383.437389][T18544]  ? kvm_check_and_inject_events+0x71c/0x1310
[  383.437406][T18544]  vcpu_run+0x34eb/0x5500
[  383.437416][T18544]  ? kvm_mmu_post_init_vm+0x269/0x370
[  383.437431][T18544]  ? __lock_acquire+0xb8a/0x1c90
[  383.437452][T18544]  ? __pfx_vcpu_run+0x10/0x10
[  383.437466][T18544]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  383.437478][T18544]  ? __local_bh_enable_ip+0xa4/0x120
[  383.437494][T18544]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  383.437505][T18544]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  383.437522][T18544]  kvm_vcpu_ioctl+0x5eb/0x1690
[  383.437536][T18544]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  383.437553][T18544]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  383.437569][T18544]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  383.437589][T18544]  ? hook_file_ioctl_common+0x145/0x410
[  383.437610][T18544]  ? selinux_file_ioctl+0x180/0x270
[  383.437623][T18544]  ? selinux_file_ioctl+0xb4/0x270
[  383.437638][T18544]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  383.437656][T18544]  __x64_sys_ioctl+0x18e/0x210
[  383.437670][T18544]  do_syscall_64+0xcd/0x4c0
[  383.437687][T18544]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.437698][T18544] RIP: 0033:0x7f2becf8e929
[  383.437707][T18544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.437717][T18544] RSP: 002b:00007f2beddbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  383.437728][T18544] RAX: ffffffffffffffda RBX: 00007f2bed1b5fa0 RCX: 00007f2becf8e929
[  383.437735][T18544] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  383.437741][T18544] RBP: 00007f2beddbe090 R08: 0000000000000000 R09: 0000000000000000
[  383.437747][T18544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  383.437753][T18544] R13: 0000000000000000 R14: 00007f2bed1b5fa0 R15: 00007ffc7ec9a868
[  383.437767][T18544]  </TASK>
[  383.547424][T18547] netlink: 1688 bytes leftover after parsing attributes in process `syz.6.4474'.
[  383.550198][    C3] vkms_vblank_simulate: vblank timer overrun
[  383.794297][ T5946] Bluetooth: hci0: command tx timeout
[  383.970022][T18554] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  383.991672][T18558] afs: Unknown parameter 'dynile0'
[  384.314643][T18570] netlink: 1688 bytes leftover after parsing attributes in process `syz.6.4484'.
[  384.424812][   T61] usb 9-1: new high-speed USB device number 50 using dummy_hcd
[  384.584880][   T61] usb 9-1: Using ep0 maxpacket: 8
[  384.607452][   T61] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  384.609946][   T61] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  384.614371][   T61] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  384.618409][   T61] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  384.622211][   T61] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  384.634856][   T61] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  384.639378][   T61] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  384.644004][   T61] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  384.649046][   T61] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  384.653637][   T61] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  384.671061][   T61] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  384.674048][   T61] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  384.684997][   T61] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  384.689828][   T61] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  384.701794][   T61] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  384.712890][T18582] dvmrp1: entered allmulticast mode
[  384.732715][   T61] usb 9-1: string descriptor 0 read error: -22
[  384.735592][   T61] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  384.739325][   T61] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  384.765041][   T61] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  384.799107][T18587] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4491'.
[  384.802535][T18587] netlink: 64 bytes leftover after parsing attributes in process `syz.6.4491'.
[  384.812707][T18587] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4491'.
[  384.967484][   T61] usb 9-1: USB disconnect, device number 50
[  385.006911][T18595] netlink: 1688 bytes leftover after parsing attributes in process `syz.0.4495'.
[  385.011010][T18593] FAULT_INJECTION: forcing a failure.
[  385.011010][T18593] name failslab, interval 1, probability 0, space 0, times 0
[  385.018517][T18593] CPU: 0 UID: 0 PID: 18593 Comm: syz.6.4494 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  385.018533][T18593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  385.018539][T18593] Call Trace:
[  385.018543][T18593]  <TASK>
[  385.018548][T18593]  dump_stack_lvl+0x16c/0x1f0
[  385.018568][T18593]  should_fail_ex+0x512/0x640
[  385.018587][T18593]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  385.018604][T18593]  should_failslab+0xc2/0x120
[  385.018620][T18593]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  385.018632][T18593]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  385.018647][T18593]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  385.018659][T18593]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  385.018676][T18593]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  385.018695][T18593]  mmu_topup_memory_caches+0x25/0x170
[  385.018709][T18593]  kvm_mmu_load+0xd9/0x22a0
[  385.018721][T18593]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  385.018738][T18593]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  385.018756][T18593]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  385.018769][T18593]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  385.018780][T18593]  ? __pfx_kvm_mmu_load+0x10/0x10
[  385.018791][T18593]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  385.018807][T18593]  ? kvm_check_and_inject_events+0x71c/0x1310
[  385.018864][T18593]  vcpu_run+0x34eb/0x5500
[  385.018879][T18593]  ? __lock_acquire+0xb8a/0x1c90
[  385.018900][T18593]  ? __pfx_vcpu_run+0x10/0x10
[  385.018914][T18593]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  385.018926][T18593]  ? __local_bh_enable_ip+0xa4/0x120
[  385.018942][T18593]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  385.018954][T18593]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  385.018971][T18593]  kvm_vcpu_ioctl+0x5eb/0x1690
[  385.018985][T18593]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  385.019002][T18593]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  385.019020][T18593]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  385.019039][T18593]  ? hook_file_ioctl_common+0x145/0x410
[  385.019061][T18593]  ? selinux_file_ioctl+0x180/0x270
[  385.019074][T18593]  ? selinux_file_ioctl+0xb4/0x270
[  385.019089][T18593]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  385.019102][T18593]  __x64_sys_ioctl+0x18e/0x210
[  385.019117][T18593]  do_syscall_64+0xcd/0x4c0
[  385.019133][T18593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.019144][T18593] RIP: 0033:0x7fdea2f8e929
[  385.019153][T18593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  385.019164][T18593] RSP: 002b:00007fdea3df3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  385.019175][T18593] RAX: ffffffffffffffda RBX: 00007fdea31b5fa0 RCX: 00007fdea2f8e929
[  385.019181][T18593] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009
[  385.019187][T18593] RBP: 00007fdea3df3090 R08: 0000000000000000 R09: 0000000000000000
[  385.019193][T18593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  385.019199][T18593] R13: 0000000000000000 R14: 00007fdea31b5fa0 R15: 00007ffe182b6858
[  385.019214][T18593]  </TASK>
[  385.278479][T18601] loop8: detected capacity change from 0 to 79
[  385.286737][T18600] cgroup: Name too long
[  385.364894][T18599] loop8: detected capacity change from 79 to 78
[  385.368984][T18600] trusted_key: encrypted_key: keylen parameter is missing
[  385.417470][T18603] binder: BINDER_SET_CONTEXT_MGR already set
[  385.419550][T18603] binder: 18602:18603 ioctl 4018620d 200000000040 returned -16
[  385.754860][   T24] usb 11-1: new low-speed USB device number 12 using dummy_hcd
[  385.807939][T18620] netlink: 'syz.5.4504': attribute type 72 has an invalid length.
[  385.874912][ T5946] Bluetooth: hci0: command tx timeout
[  385.941679][   T24] usb 11-1: config 0 has an invalid interface number: 1 but max is 0
[  385.944349][   T24] usb 11-1: config 0 has no interface number 0
[  385.946304][   T24] usb 11-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  385.949915][   T24] usb 11-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  385.953154][   T24] usb 11-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  385.956540][   T24] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  385.962117][   T24] usb 11-1: config 0 descriptor??
[  385.966950][T18607] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  385.974779][   T24] iowarrior 11-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  386.111603][T18628] netlink: 'syz.5.4507': attribute type 23 has an invalid length.
[  386.180810][   T24] usb 11-1: USB disconnect, device number 12
[  386.674776][ T6009] usb 10-1: new high-speed USB device number 52 using dummy_hcd
[  386.824436][ T6009] usb 10-1: Using ep0 maxpacket: 8
[  386.827580][T18644] FAULT_INJECTION: forcing a failure.
[  386.827580][T18644] name failslab, interval 1, probability 0, space 0, times 0
[  386.832359][ T6009] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  386.832796][T18644] CPU: 3 UID: 0 PID: 18644 Comm: syz.0.4514 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  386.832823][T18644] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  386.832834][T18644] Call Trace:
[  386.832842][T18644]  <TASK>
[  386.832851][T18644]  dump_stack_lvl+0x16c/0x1f0
[  386.832911][T18644]  should_fail_ex+0x512/0x640
[  386.832942][T18644]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  386.832969][T18644]  should_failslab+0xc2/0x120
[  386.833000][T18644]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  386.833025][T18644]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  386.833049][T18644]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  386.833071][T18644]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  386.833099][T18644]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  386.833132][T18644]  mmu_topup_memory_caches+0x25/0x170
[  386.833155][T18644]  kvm_mmu_load+0xd9/0x22a0
[  386.833176][T18644]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  386.833204][T18644]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  386.833232][T18644]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  386.833254][T18644]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  386.833272][T18644]  ? __pfx_kvm_mmu_load+0x10/0x10
[  386.833291][T18644]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  386.833317][T18644]  ? kvm_check_and_inject_events+0x71c/0x1310
[  386.833345][T18644]  vcpu_run+0x34eb/0x5500
[  386.833361][T18644]  ? kvm_mmu_post_init_vm+0x269/0x370
[  386.833386][T18644]  ? __lock_acquire+0xb8a/0x1c90
[  386.833421][T18644]  ? __pfx_vcpu_run+0x10/0x10
[  386.833446][T18644]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  386.833466][T18644]  ? __local_bh_enable_ip+0xa4/0x120
[  386.833493][T18644]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  386.833513][T18644]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  386.833541][T18644]  kvm_vcpu_ioctl+0x5eb/0x1690
[  386.833567][T18644]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  386.833597][T18644]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  386.833625][T18644]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  386.833658][T18644]  ? hook_file_ioctl_common+0x145/0x410
[  386.833695][T18644]  ? selinux_file_ioctl+0x180/0x270
[  386.833717][T18644]  ? selinux_file_ioctl+0xb4/0x270
[  386.833741][T18644]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  386.833763][T18644]  __x64_sys_ioctl+0x18e/0x210
[  386.833786][T18644]  do_syscall_64+0xcd/0x4c0
[  386.833814][T18644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.833833][T18644] RIP: 0033:0x7f2becf8e929
[  386.833849][T18644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  386.833866][T18644] RSP: 002b:00007f2beddbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  386.833884][T18644] RAX: ffffffffffffffda RBX: 00007f2bed1b5fa0 RCX: 00007f2becf8e929
[  386.833902][T18644] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  386.833913][T18644] RBP: 00007f2beddbe090 R08: 0000000000000000 R09: 0000000000000000
[  386.833924][T18644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  386.833935][T18644] R13: 0000000000000000 R14: 00007f2bed1b5fa0 R15: 00007ffc7ec9a868
[  386.833962][T18644]  </TASK>
[  386.923394][T18647] netlink: 'syz.6.4515': attribute type 72 has an invalid length.
[  386.926290][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  386.969203][ T6009] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  386.972824][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  386.976311][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  386.981122][   T40] kauditd_printk_skb: 1489 callbacks suppressed
[  386.981133][   T40] audit: type=1400 audit(1750720731.616:71326): avc:  denied  { ioctl } for  pid=18639 comm="syz.5.4512" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  386.983149][ T6009] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  386.983259][   T40] audit: type=1400 audit(1750720731.616:71327): avc:  denied  { ioctl } for  pid=18639 comm="syz.5.4512" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  386.991463][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  386.994648][   T40] audit: type=1400 audit(1750720731.616:71328): avc:  denied  { ioctl } for  pid=18639 comm="syz.5.4512" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  387.001456][ T6009] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  387.006463][   T40] audit: type=1400 audit(1750720731.626:71329): avc:  denied  { ioctl } for  pid=18639 comm="syz.5.4512" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  387.012308][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  387.027895][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  387.032516][   T40] audit: type=1400 audit(1750720731.666:71330): avc:  denied  { ioctl } for  pid=18639 comm="syz.5.4512" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  387.034434][ T6009] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  387.041696][   T40] audit: type=1400 audit(1750720731.666:71331): avc:  denied  { ioctl } for  pid=18639 comm="syz.5.4512" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  387.042844][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  387.056947][ T6009] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  387.059633][   T40] audit: type=1400 audit(1750720731.666:71332): avc:  denied  { ioctl } for  pid=18639 comm="syz.5.4512" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  387.060604][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  387.073722][   T40] audit: type=1400 audit(1750720731.666:71333): avc:  denied  { recv } for  pid=5847 comm="syz-executor" saddr=127.0.0.1 src=57910 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  387.075082][ T6009] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  387.084725][ T6009] usb 10-1: string descriptor 0 read error: -22
[  387.088582][   T40] audit: type=1400 audit(1750720731.666:71334): avc:  denied  { ioctl } for  pid=18639 comm="syz.5.4512" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  387.089143][ T6009] usb 10-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  387.091435][   T40] audit: type=1400 audit(1750720731.676:71335): avc:  denied  { recv } for  pid=28 comm="ksoftirqd/1" saddr=10.0.2.2 src=43094 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  387.099825][ T6009] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  387.121512][ T6009] adutux 10-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  387.260343][T18653] binder: BINDER_SET_CONTEXT_MGR already set
[  387.262258][T18653] binder: 18652:18653 ioctl 4018620d 200000000040 returned -16
[  387.328656][ T6000] usb 10-1: USB disconnect, device number 52
[  387.539801][T18675] : entered promiscuous mode
[  387.570607][T18678] block device autoloading is deprecated and will be removed.
[  387.664214][T18667] md2: using deprecated bitmap file support
[  387.666115][T18667] md2: error: bitmap file must be a regular file
[  387.772839][T18682] netlink: 'syz.0.4527': attribute type 72 has an invalid length.
[  388.368076][T18700] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  388.381066][T18696] FAULT_INJECTION: forcing a failure.
[  388.381066][T18696] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  388.386129][T18696] CPU: 3 UID: 0 PID: 18696 Comm: syz.4.4534 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  388.386153][T18696] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  388.386164][T18696] Call Trace:
[  388.386171][T18696]  <TASK>
[  388.386178][T18696]  dump_stack_lvl+0x16c/0x1f0
[  388.386209][T18696]  should_fail_ex+0x512/0x640
[  388.386235][T18696]  should_fail_alloc_page+0xe7/0x130
[  388.386264][T18696]  prepare_alloc_pages+0x3c2/0x610
[  388.386282][T18696]  ? rcu_is_watching+0x12/0xc0
[  388.386307][T18696]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  388.386333][T18696]  ? kasan_save_stack+0x42/0x60
[  388.386353][T18696]  ? kasan_save_stack+0x33/0x60
[  388.386373][T18696]  ? kasan_save_track+0x14/0x30
[  388.386416][T18696]  ? __kasan_kmalloc+0xaa/0xb0
[  388.386433][T18696]  ? __kvmalloc_node_noprof+0x27b/0x620
[  388.386454][T18696]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  388.386478][T18696]  ? mmu_topup_memory_caches+0xbc/0x170
[  388.386498][T18696]  ? kvm_mmu_load+0xd9/0x22a0
[  388.386514][T18696]  ? vcpu_run+0x34eb/0x5500
[  388.386530][T18696]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  388.386550][T18696]  ? kvm_vcpu_ioctl+0x5eb/0x1690
[  388.386575][T18696]  ? __x64_sys_ioctl+0x18e/0x210
[  388.386595][T18696]  ? do_syscall_64+0xcd/0x4c0
[  388.386621][T18696]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.386642][T18696]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  388.386686][T18696]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  388.386712][T18696]  ? policy_nodemask+0xea/0x4e0
[  388.386741][T18696]  alloc_pages_mpol+0x1fb/0x550
[  388.386769][T18696]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  388.386797][T18696]  ? trace_kmalloc+0x2b/0xd0
[  388.386821][T18696]  ? __kvmalloc_node_noprof+0x298/0x620
[  388.386848][T18696]  alloc_pages_noprof+0x131/0x390
[  388.386875][T18696]  get_free_pages_noprof+0x10/0xb0
[  388.386906][T18696]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  388.386930][T18696]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  388.386965][T18696]  mmu_topup_memory_caches+0xbc/0x170
[  388.386989][T18696]  kvm_mmu_load+0xd9/0x22a0
[  388.387011][T18696]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  388.387041][T18696]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  388.387072][T18696]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  388.387095][T18696]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  388.387113][T18696]  ? __pfx_kvm_mmu_load+0x10/0x10
[  388.387133][T18696]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  388.387158][T18696]  ? kvm_check_and_inject_events+0x71c/0x1310
[  388.387184][T18696]  vcpu_run+0x34eb/0x5500
[  388.387201][T18696]  ? kvm_mmu_post_init_vm+0x269/0x370
[  388.387229][T18696]  ? __lock_acquire+0xb8a/0x1c90
[  388.387266][T18696]  ? __pfx_vcpu_run+0x10/0x10
[  388.387292][T18696]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  388.387311][T18696]  ? __local_bh_enable_ip+0xa4/0x120
[  388.387339][T18696]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  388.387358][T18696]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  388.387388][T18696]  kvm_vcpu_ioctl+0x5eb/0x1690
[  388.387413][T18696]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  388.387442][T18696]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  388.387471][T18696]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  388.387505][T18696]  ? hook_file_ioctl_common+0x145/0x410
[  388.387541][T18696]  ? selinux_file_ioctl+0x180/0x270
[  388.387563][T18696]  ? selinux_file_ioctl+0xb4/0x270
[  388.387594][T18696]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  388.387616][T18696]  __x64_sys_ioctl+0x18e/0x210
[  388.387638][T18696]  do_syscall_64+0xcd/0x4c0
[  388.387666][T18696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.387683][T18696] RIP: 0033:0x7f193b58e929
[  388.387699][T18696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.387717][T18696] RSP: 002b:00007f193c3d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  388.387734][T18696] RAX: ffffffffffffffda RBX: 00007f193b7b5fa0 RCX: 00007f193b58e929
[  388.387745][T18696] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009
[  388.387755][T18696] RBP: 00007f193c3d9090 R08: 0000000000000000 R09: 0000000000000000
[  388.387765][T18696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  388.387776][T18696] R13: 0000000000000000 R14: 00007f193b7b5fa0 R15: 00007fff378acc98
[  388.387802][T18696]  </TASK>
[  388.584015][T18700] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  388.713596][T18707] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4537'.
[  388.714028][  T214] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  388.721387][  T214] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  388.828056][T18713] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4539'.
[  388.828408][  T214] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  388.834254][  T214] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  388.922945][  T214] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  388.926436][  T214] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  389.013650][  T214] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  389.021227][  T214] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  389.044896][ T6009] usb 9-1: new high-speed USB device number 51 using dummy_hcd
[  389.064135][T18719] netlink: 'syz.0.4542': attribute type 23 has an invalid length.
[  389.195216][ T6009] usb 9-1: Using ep0 maxpacket: 8
[  389.211214][ T6009] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  389.215728][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  389.220140][T18722] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=18722 comm=syz.5.4545
[  389.220584][ T6009] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  389.235238][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  389.238957][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  389.252980][ T6009] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  389.256101][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  389.259620][ T6009] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  389.263335][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  389.269196][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  389.276317][ T6009] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  389.279374][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  389.282827][ T6009] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  389.284607][   T61] usb 11-1: new low-speed USB device number 13 using dummy_hcd
[  389.286800][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  389.292316][ T6009] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  389.306051][ T6009] usb 9-1: string descriptor 0 read error: -22
[  389.308143][ T6009] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  389.310926][ T6009] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.324998][ T6009] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  389.453583][   T61] usb 11-1: config 0 has an invalid interface number: 1 but max is 0
[  389.456759][   T61] usb 11-1: config 0 has no interface number 0
[  389.459593][   T61] usb 11-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  389.464603][   T61] usb 11-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  389.468999][   T61] usb 11-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  389.472703][   T61] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  389.474339][T11053] usb 10-1: new high-speed USB device number 53 using dummy_hcd
[  389.482320][   T61] usb 11-1: config 0 descriptor??
[  389.486549][T18717] raw-gadget.2 gadget.6: fail, usb_ep_enable returned -22
[  389.493554][   T61] iowarrior 11-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior1
[  389.529583][ T6009] usb 9-1: USB disconnect, device number 51
[  389.643675][T11053] usb 10-1: config 1 interface 0 has no altsetting 0
[  389.655341][T11053] usb 10-1: New USB device found, idVendor=0c12, idProduct=0030, bcdDevice= 0.40
[  389.659197][T11053] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.661742][T11053] usb 10-1: Product: 汷ਘ뢜ڭ᥋뻛ᐊ甩წ䒎뗊⌕◈줨퓬꓁ᷩԩ郐㤴瓈䏜ﱽ蜡젨뺰뻖ヸූ毧頁ữ༤ሐ덷䖢ꖻ戱锘軿ӝᯩ޾뼘ś䮾쟪묚﭅冠鋟䝻堎烱톝꺦럚腆駕琛
[  389.668989][T11053] usb 10-1: Manufacturer: 㤓⑃誷ꍝ᜻︬技Ⳟ鳻䁥⾴ꐟ苁蔼滢
[  389.672046][T11053] usb 10-1: SerialNumber: у
[  389.677208][T11053] usb 10-1: rejected 1 configuration due to insufficient available bus power
[  389.680061][T11053] usb 10-1: no configuration chosen from 1 choice
[  389.688873][  T214] bond0 (unregistering): Released all slaves
[  389.711738][   T61] usb 11-1: USB disconnect, device number 13
[  389.801663][  T214] bond1 (unregistering): Released all slaves
[  390.159704][T18727] FAULT_INJECTION: forcing a failure.
[  390.159704][T18727] name failslab, interval 1, probability 0, space 0, times 0
[  390.163639][T18727] CPU: 3 UID: 0 PID: 18727 Comm: syz.0.4546 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  390.163654][T18727] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  390.163662][T18727] Call Trace:
[  390.163667][T18727]  <TASK>
[  390.163672][T18727]  dump_stack_lvl+0x16c/0x1f0
[  390.163691][T18727]  should_fail_ex+0x512/0x640
[  390.163705][T18727]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  390.163722][T18727]  should_failslab+0xc2/0x120
[  390.163738][T18727]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  390.163751][T18727]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  390.163765][T18727]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  390.163777][T18727]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  390.163794][T18727]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  390.163813][T18727]  mmu_topup_memory_caches+0x25/0x170
[  390.163826][T18727]  kvm_mmu_load+0xd9/0x22a0
[  390.163838][T18727]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  390.163855][T18727]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  390.163873][T18727]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  390.163886][T18727]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  390.163896][T18727]  ? __pfx_kvm_mmu_load+0x10/0x10
[  390.163907][T18727]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  390.163923][T18727]  ? kvm_check_and_inject_events+0x71c/0x1310
[  390.163939][T18727]  vcpu_run+0x34eb/0x5500
[  390.163949][T18727]  ? kvm_mmu_post_init_vm+0x269/0x370
[  390.163964][T18727]  ? __lock_acquire+0xb8a/0x1c90
[  390.163985][T18727]  ? __pfx_vcpu_run+0x10/0x10
[  390.163999][T18727]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  390.164011][T18727]  ? __local_bh_enable_ip+0xa4/0x120
[  390.164027][T18727]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  390.164039][T18727]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  390.164055][T18727]  kvm_vcpu_ioctl+0x5eb/0x1690
[  390.164069][T18727]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  390.164086][T18727]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  390.164102][T18727]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  390.164122][T18727]  ? hook_file_ioctl_common+0x145/0x410
[  390.164154][T18727]  ? selinux_file_ioctl+0x180/0x270
[  390.164170][T18727]  ? selinux_file_ioctl+0xb4/0x270
[  390.164185][T18727]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  390.164198][T18727]  __x64_sys_ioctl+0x18e/0x210
[  390.164211][T18727]  do_syscall_64+0xcd/0x4c0
[  390.164228][T18727]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.164239][T18727] RIP: 0033:0x7f2becf8e929
[  390.164249][T18727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.164259][T18727] RSP: 002b:00007f2beddbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  390.164270][T18727] RAX: ffffffffffffffda RBX: 00007f2bed1b5fa0 RCX: 00007f2becf8e929
[  390.164277][T18727] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  390.164283][T18727] RBP: 00007f2beddbe090 R08: 0000000000000000 R09: 0000000000000000
[  390.164289][T18727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  390.164295][T18727] R13: 0000000000000000 R14: 00007f2bed1b5fa0 R15: 00007ffc7ec9a868
[  390.164309][T18727]  </TASK>
[  390.269038][  T214] ------------[ cut here ]------------
[  390.270778][  T214] Have pending ack frames!
[  390.272966][  T214] WARNING: CPU: 1 PID: 214 at net/mac80211/main.c:1715 ieee80211_free_ack_frame+0x5a/0x60
[  390.277225][  T214] Modules linked in:
[  390.285035][  T214] CPU: 1 UID: 0 PID: 214 Comm: kworker/u32:5 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  390.288999][  T214] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  390.292508][  T214] Workqueue: netns cleanup_net
[  390.294647][  T214] RIP: 0010:ieee80211_free_ack_frame+0x5a/0x60
[  390.296805][  T214] Code: 31 ff e8 09 e5 66 fe 31 c0 5b 5d c3 cc cc cc cc e8 eb 33 cf f6 c6 05 ae 9a a3 05 01 90 48 c7 c7 60 26 06 8d e8 e7 f6 8d f6 90 <0f> 0b 90 90 eb c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  390.302848][  T214] RSP: 0018:ffffc9000323f8d0 EFLAGS: 00010282
[  390.305270][  T214] RAX: 0000000000000000 RBX: ffff888053c0fcc0 RCX: ffffffff817ae248
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  390.307742][  T214] RDX: ffff888024adc880 RSI: ffffffff817ae255 RDI: 0000000000000001
[  390.311948][  T214] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  390.314751][  T214] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  390.317221][  T214] R13: ffffffff8aece970 R14: 0000000080000000 R15: 0000000000000000
[  390.319749][  T214] FS:  0000000000000000(0000) GS:ffff8880d6853000(0000) knlGS:0000000000000000
[  390.322665][  T214] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  390.324844][  T214] CR2: 00005555701fb808 CR3: 000000003b374000 CR4: 0000000000352ef0
[  390.327353][  T214] DR0: ffffffffffffffff DR1: 0000000000000047 DR2: 0000000000000005
[  390.329862][  T214] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  390.332370][  T214] Call Trace:
[  390.333435][  T214]  <TASK>
[  390.334473][  T214]  idr_for_each+0x143/0x270
[  390.335975][  T214]  ? __pfx_idr_for_each+0x10/0x10
[  390.337583][  T214]  ? kfree+0x2b4/0x4d0
[  390.338956][  T214]  ? kfree+0x2b4/0x4d0
[  390.340248][  T214]  ? kfree_const+0x55/0x60
[  390.341694][  T214]  ieee80211_free_hw+0x9c/0x2d0
[  390.343323][  T214]  ? kobject_put+0x210/0x5a0
[  390.345014][  T214]  hwsim_exit_net+0x3fd/0x7d0
[  390.346512][  T214]  ? __pfx_hwsim_exit_net+0x10/0x10
[  390.348211][  T214]  ? ip_vs_sync_net_cleanup+0x72/0xb0
[  390.349888][  T214]  ? __ip_vs_dev_cleanup_batch+0xb1/0x290
[  390.351728][  T214]  ? __pfx_hwsim_exit_net+0x10/0x10
[  390.353379][  T214]  ops_undo_list+0x2ee/0xab0
[  390.354951][  T214]  ? __pfx_ops_undo_list+0x10/0x10
[  390.356591][  T214]  ? __local_bh_enable_ip+0xa4/0x120
[  390.358296][  T214]  cleanup_net+0x408/0x890
[  390.359727][  T214]  ? __pfx_cleanup_net+0x10/0x10
[  390.361279][  T214]  ? rcu_is_watching+0x12/0xc0
[  390.362888][  T214]  process_one_work+0x9cc/0x1b70
[  390.364500][  T214]  ? __pfx_process_one_work+0x10/0x10
[  390.366183][  T214]  ? assign_work+0x1a0/0x250
[  390.367660][  T214]  worker_thread+0x6c8/0xf10
[  390.369112][  T214]  ? __pfx_worker_thread+0x10/0x10
[  390.370744][  T214]  kthread+0x3c2/0x780
[  390.372082][  T214]  ? __pfx_kthread+0x10/0x10
[  390.373634][  T214]  ? rcu_is_watching+0x12/0xc0
[  390.375389][  T214]  ? __pfx_kthread+0x10/0x10
[  390.376860][  T214]  ret_from_fork+0x5d4/0x6f0
[  390.378346][  T214]  ? __pfx_kthread+0x10/0x10
[  390.379824][  T214]  ret_from_fork_asm+0x1a/0x30
[  390.381317][  T214]  </TASK>
[  390.382350][  T214] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  390.384767][  T214] CPU: 1 UID: 0 PID: 214 Comm: kworker/u32:5 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[  390.388460][  T214] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  390.391929][  T214] Workqueue: netns cleanup_net
[  390.393502][  T214] Call Trace:
[  390.394592][  T214]  <TASK>
[  390.395557][  T214]  dump_stack_lvl+0x3d/0x1f0
[  390.397001][  T214]  panic+0x71c/0x800
[  390.398280][  T214]  ? __pfx_panic+0x10/0x10
[  390.399649][  T214]  ? show_trace_log_lvl+0x29b/0x3e0
[  390.401276][  T214]  ? check_panic_on_warn+0x1f/0xb0
[  390.402974][  T214]  ? ieee80211_free_ack_frame+0x5a/0x60
[  390.404708][  T214]  check_panic_on_warn+0xab/0xb0
[  390.406262][  T214]  __warn+0xf6/0x3c0
[  390.407506][  T214]  ? __pfx_vprintk_emit+0x10/0x10
[  390.409097][  T214]  ? ieee80211_free_ack_frame+0x5a/0x60
[  390.410828][  T214]  report_bug+0x3c3/0x580
[  390.412200][  T214]  ? ieee80211_free_ack_frame+0x5a/0x60
[  390.413941][  T214]  handle_bug+0x184/0x210
[  390.415252][  T214]  exc_invalid_op+0x17/0x50
[  390.416709][  T214]  asm_exc_invalid_op+0x1a/0x20
[  390.418267][  T214] RIP: 0010:ieee80211_free_ack_frame+0x5a/0x60
[  390.420190][  T214] Code: 31 ff e8 09 e5 66 fe 31 c0 5b 5d c3 cc cc cc cc e8 eb 33 cf f6 c6 05 ae 9a a3 05 01 90 48 c7 c7 60 26 06 8d e8 e7 f6 8d f6 90 <0f> 0b 90 90 eb c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  390.426171][  T214] RSP: 0018:ffffc9000323f8d0 EFLAGS: 00010282
[  390.428036][  T214] RAX: 0000000000000000 RBX: ffff888053c0fcc0 RCX: ffffffff817ae248
[  390.430478][  T214] RDX: ffff888024adc880 RSI: ffffffff817ae255 RDI: 0000000000000001
[  390.433031][  T214] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  390.435772][  T214] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  390.438272][  T214] R13: ffffffff8aece970 R14: 0000000080000000 R15: 0000000000000000
[  390.441208][  T214]  ? __pfx_ieee80211_free_ack_frame+0x10/0x10
[  390.443506][  T214]  ? __warn_printk+0x198/0x350
[  390.445067][  T214]  ? __warn_printk+0x1a5/0x350
[  390.446720][  T214]  idr_for_each+0x143/0x270
[  390.448343][  T214]  ? __pfx_idr_for_each+0x10/0x10
[  390.449901][  T214]  ? kfree+0x2b4/0x4d0
[  390.451322][  T214]  ? kfree+0x2b4/0x4d0
[  390.452618][  T214]  ? kfree_const+0x55/0x60
[  390.454174][  T214]  ieee80211_free_hw+0x9c/0x2d0
[  390.455993][  T214]  ? kobject_put+0x210/0x5a0
[  390.457460][  T214]  hwsim_exit_net+0x3fd/0x7d0
[  390.459054][  T214]  ? __pfx_hwsim_exit_net+0x10/0x10
[  390.460816][  T214]  ? ip_vs_sync_net_cleanup+0x72/0xb0
[  390.462525][  T214]  ? __ip_vs_dev_cleanup_batch+0xb1/0x290
[  390.464307][  T214]  ? __pfx_hwsim_exit_net+0x10/0x10
[  390.465959][  T214]  ops_undo_list+0x2ee/0xab0
[  390.467429][  T214]  ? __pfx_ops_undo_list+0x10/0x10
[  390.469034][  T214]  ? __local_bh_enable_ip+0xa4/0x120
[  390.470708][  T214]  cleanup_net+0x408/0x890
[  390.472146][  T214]  ? __pfx_cleanup_net+0x10/0x10
[  390.473774][  T214]  ? rcu_is_watching+0x12/0xc0
[  390.475277][  T214]  process_one_work+0x9cc/0x1b70
[  390.476860][  T214]  ? __pfx_process_one_work+0x10/0x10
[  390.478556][  T214]  ? assign_work+0x1a0/0x250
[  390.480002][  T214]  worker_thread+0x6c8/0xf10
[  390.481492][  T214]  ? __pfx_worker_thread+0x10/0x10
[  390.483163][  T214]  kthread+0x3c2/0x780
[  390.484466][  T214]  ? __pfx_kthread+0x10/0x10
[  390.485922][  T214]  ? rcu_is_watching+0x12/0xc0
[  390.487447][  T214]  ? __pfx_kthread+0x10/0x10
[  390.488930][  T214]  ret_from_fork+0x5d4/0x6f0
[  390.490403][  T214]  ? __pfx_kthread+0x10/0x10
[  390.491865][  T214]  ret_from_fork_asm+0x1a/0x30
[  390.493401][  T214]  </TASK>
[  390.495066][  T214] Kernel Offset: disabled
[  390.496453][  T214] Rebooting in 86400 seconds..

VM DIAGNOSIS:
23:18:54  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000003294 RBX=ffffffff93f90ce8 RCX=0000000000003299 RDX=0000000000000054
RSI=0000000000003298 RDI=00000000000596b4 RBP=0000000000000005 RSP=ffffc90000067d18
R8 =0000000000003299 R9 =ffffffff95ecff12 R10=0000000000000000 R11=0000000000000001
R12=ffffffff97504578 R13=0000000000001346 R14=ffffffff97519a38 R15=dead000000000122
RIP=ffffffff819817f9 RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6753000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005555702165c8 CR3=000000003424e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000005000001 Opmask01=0000000040000000 Opmask02=0000000000000030 Opmask03=0000000000000000
Opmask04=00000000ffffffef Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffe058c22b 00007fffe058c22b
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffe058c730 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffe058c730 0000003000000018
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65746e6f63007325 203a726f72726520 64656e7275746572 2072657672657300
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40514b4a46005600 051f574a57574005 41404b5750514057 0557405357405600
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6d6d5f6d766b5f5f 203f20205d373237 3831545b5d373737 3336312e30393320
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20296c6c75662854 504d454552502030 2320653335613733 376534663837672d
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 32343030302d7265 6c6c616b7a79732d 3363722d302e3631 2e36206465746e69
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 617420746f4e2036 3435342e302e7a79 73203a6d6d6f4320 3732373831203a44
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 49502030203a4449 552033203a555043 205d373237383154 5b5d393336333631
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7320306874653d66 6974656e2032323d 747365642035312e 322e302e30313d72
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffc900066e0000 RBX=ffff888106b30000 RCX=ffffffff819c9c07 RDX=1ffff11020d6625a
RSI=ffffffff86a83f3f RDI=0000000000000016 RBP=0000000000000080 RSP=ffffc900006a0eb8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=ffffffff90a80f60 R13=dffffc0000000000 R14=ffff888106b312d0 R15=0000000000000000
RIP=ffffffff86a83f67 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6853000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005555701fb808 CR3=000000003b374000 CR4=00352ef0
DR0=ffffffffffffffff DR1=0000000000000047 DR2=0000000000000005 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000010000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe182b6be0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdea3011b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdea3011b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdea3011b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdea3011b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdea3011bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdea3011c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000044bd33 RBX=0000000000000002 RCX=ffffffff8b807c59 RDX=0000000000000000
RSI=ffffffff8de19f59 RDI=ffffffff8c157ba0 RBP=ffffed1003c53910 RSP=ffffc90000187df8
R8 =0000000000000001 R9 =ffffed100d4c6645 R10=ffff88806a63322b R11=0000000000000001
R12=0000000000000002 R13=ffff88801e29c880 R14=ffffffff90a81250 R15=0000000000000000
RIP=ffffffff8b8067bf RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6953000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f2beddbc568 CR3=000000000e382000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000003 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe62493fb0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f728a811b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f728a811b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f728a811b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f728a811b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f728a811bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f728a811c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000005 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000118
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000005 0000000000000000 0000000000000000 0000000000000118
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000007 RBX=0000000000000009 RCX=ffffffff95d82f98 RDX=0000000000000008
RSI=ffff8880294b2f80 RDI=ffff8880294b2440 RBP=ffffc90004227278 RSP=ffffc900042271e0
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000050 R11=0000000000000001
R12=ffff8880294b2f80 R13=0000000000000200 R14=0000000000000002 R15=ffff8880294b2440
RIP=ffffffff81984f1d RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6a53000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000001008 CR3=0000000030c0b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000f0000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055b1a805b600 000055b1a805b600
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffc5d76f90 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6b203f20205d3732 373831545b5d3536 373336312e303933 20205b203a6c656e
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343130322f31302f 343020312b32316f 70627e322d332e36 312e312d6e616962
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65642d332e36312e 3120534f4942202c 2939303032202c39 484349202b203533
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5128204350206472 61646e6174532055 4d4551203a656d61 6e20657261776472
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6148205d37323738 31545b5d34353633 36312e3039332020 5b203a6c656e7265
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000