last executing test programs:

56.646922193s ago: executing program 0 (id=1203):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0xfff5, &(0x7f00000002c0)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x20, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x68}}, 0x0)

47.35151837s ago: executing program 0 (id=1203):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0xfff5, &(0x7f00000002c0)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x20, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x68}}, 0x0)

37.881291111s ago: executing program 0 (id=1203):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0xfff5, &(0x7f00000002c0)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x20, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x68}}, 0x0)

27.865480844s ago: executing program 0 (id=1203):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0xfff5, &(0x7f00000002c0)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x20, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x68}}, 0x0)

18.799846394s ago: executing program 0 (id=1203):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0xfff5, &(0x7f00000002c0)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x20, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x68}}, 0x0)

9.480241015s ago: executing program 0 (id=1203):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0xfff5, &(0x7f00000002c0)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x20, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x68}}, 0x0)

6.8309915s ago: executing program 1 (id=1467):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)='minix\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000019300), 0x80000, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000000280)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
socket$kcm(0xf, 0x3, 0x2)
fanotify_init(0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000000000000000000000001000000000481047b2770d44be4de425"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x10)
r2 = socket$igmp(0x2, 0x3, 0x2)
ioctl$BTRFS_IOC_SUBVOL_CREATE(0xffffffffffffffff, 0x89e0, 0x0)
setsockopt$MRT_INIT(0xffffffffffffffff, 0x0, 0xc8, &(0x7f0000000800), 0x4)
setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f00000001c0)={0x1, 0x4, 0x0, 0x0, @vifc_lcl_ifindex, @loopback}, 0x10)
setsockopt$MRT_DONE(r2, 0x0, 0xc9, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x3, 0xe, &(0x7f0000000200)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r3 = socket$inet6(0xa, 0x5, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0xfffffeffffff7f7e, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
getsockopt$inet6_buf(r3, 0x29, 0x3d, &(0x7f0000000240)=""/139, &(0x7f0000000000)=0x896f1acec34526fb)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x6, 0x0, 0x0, 0x0, 0x800000000991b, 0x400000000000ffff, 0x80, 0x9}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000019280)=ANY=[@ANYBLOB="aaaab1aaaaaa8af4be7d90048bffffffffffff0800450000240000000000119078e00000010000000080004e0b001090780200000000000000ad7847f158f66c5f12b707bf53f11f001ef1e9f024979faba2a1a325cc5d05782da7c917ce0e02"], 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/mnt\x00')
setns(r4, 0x8000000)
getpid()
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r5}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)

5.920324175s ago: executing program 1 (id=1471):
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000002c0), 0x0)
openat$vimc1(0xffffff9c, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000d80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000100))
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r3, 0x89f7, &(0x7f0000000580)={'sit0\x00', &(0x7f00000004c0)={@private=0xa010102, 0x0, 0x0, 0x70, 0x0, [{}, {@initdev}, {@initdev}, {@local}, {}, {@remote}, {@broadcast}]}})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0)
socket$packet(0x11, 0x3, 0x300)
syz_emit_ethernet(0xfdef, &(0x7f0000000c00)=ANY=[@ANYBLOB="bbbbbbbbbbbbaa8aaaaaaa00080045000014000000020000907800000002e000000289c649d98a7b858f589b72e842a04f615d8b043d262677a09e65c95c1af4b2482a32edcdeb5c5dfa0af47bbd401fb729c2faaebc7ab782b9c909a6c780e55d8abdc0bef5358bd15f5e9f3f46885b7ca165ca28a7d1d17db566ecd0c62b3832b46b37ccf892a731a1e8f188e750684707e9d8dda5b6dbd8562bbbb9916bf9100485fe6a2962c81c73087e4feec654e508024808c9202f28113599f431e026bf9dbe7cf612a853a58e8f14785f883554bd41c3cae0d149598ff8622a39460900801e41152b81dae6220b5ea60bb50e0dcb2a2acd5c8e24ac66"], 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newtaction={0x84, 0x30, 0x1, 0x0, 0x0, {0x7a}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x80000001}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xce}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x84}}, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r7)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000001ac0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r6)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r4, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000003c0)={&(0x7f0000001b00)={0x6b8, r8, 0x8, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x9, 0x4b}}}}, [@NL80211_ATTR_TID_CONFIG={0x4}, @NL80211_ATTR_TID_CONFIG={0x694, 0x11d, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x98}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9a}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x10}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x43}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}]}, {0x528, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xdc}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x208, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x30, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xa, 0x2, 0x4, 0x9, 0x3, 0x0, 0x5]}}, @NL80211_TXRATE_HE_LTF={0x5}]}, @NL80211_BAND_6GHZ={0x8c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x4a, 0x2, [{0x2}, {0x1, 0xa}, {0x0, 0x1}, {0x5, 0x6}, {0x5, 0x6}, {0x2, 0x9}, {0x1, 0x9}, {0x5, 0x4}, {0x4, 0x4}, {0x1}, {0x2, 0x6}, {0x1, 0x1}, {0x4, 0x7}, {0x2, 0xa}, {0x6, 0x4}, {0x6, 0x7}, {0x1, 0x8}, {0x1, 0x8}, {0x1, 0xa}, {0x2, 0x7}, {0x0, 0x9}, {0x5, 0x8}, {0x2, 0xa}, {0x2, 0x8}, {0x4, 0x3}, {0x4, 0x8}, {0x7, 0x1}, {0x0, 0x8}, {0x5, 0x2}, {0x5, 0x7}, {0x7, 0x7}, {0x1, 0x7}, {0x1, 0x4}, {0x7, 0x9}, {0x0, 0x3}, {0x5}, {0x2, 0x9}, {0x2, 0x4}, {0x1, 0x8}, {0x2, 0x7}, {0x3, 0xa}, {0x3, 0x9}, {0x3, 0x9}, {0x2, 0x8}, {0x3, 0x3}, {0x2, 0x3}, {0x2}, {0x4, 0x9}, {0x2, 0x6}, {0x0, 0x3}, {0x7, 0x5}, {0x7, 0x9}, {}, {0x5, 0x9}, {0x2}, {0x3, 0x7}, {0x0, 0x2}, {0x2, 0x3}, {0x0, 0x3}, {0x7, 0x4}, {0x6, 0xa}, {0x5, 0x8}, {0x4, 0x3}, {0x1, 0x6}, {0x4, 0x9}, {0x0, 0x3}, {0x5, 0x5}, {0x4}, {0x7, 0x9}, {0x0, 0x2}]}, @NL80211_TXRATE_HT={0x17, 0x2, [{0x0, 0xa}, {0x4, 0x6}, {0x4, 0xa}, {0x3, 0x5}, {0x2, 0x9}, {0x0, 0x7}, {0x7, 0x2}, {0x1}, {0x5, 0x2}, {0x5, 0x7}, {0x7, 0x1}, {0x0, 0x4}, {0x1, 0x5}, {0x2, 0x4}, {0x1, 0x5}, {0x2, 0x4}, {0x7, 0x8}, {0x0, 0x3}, {0x7, 0x8}]}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x9, 0x4, 0x1, 0x2, 0x8, 0x3, 0x7, 0x400]}}]}, @NL80211_BAND_6GHZ={0xc4, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x24, 0x1, [0x1b, 0x2, 0xc, 0x1c, 0x36, 0x6, 0x5, 0x18, 0xb, 0x12, 0x12, 0x18, 0x1b, 0x5, 0x6, 0x18, 0x2, 0x48, 0x6, 0x6c, 0x16, 0x48, 0x5, 0x5, 0x60, 0x36, 0x1, 0x16, 0x30, 0x36, 0x30, 0x9]}, @NL80211_TXRATE_LEGACY={0x8, 0x1, [0x12, 0x68, 0x3, 0x9]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xfe0, 0x81, 0x4, 0x9, 0x5, 0xc, 0x1, 0x5]}}, @NL80211_TXRATE_HT={0x42, 0x2, [{0x7, 0x3}, {}, {0x0, 0x6}, {0x2, 0x7}, {0x6, 0x1}, {0x6, 0x3}, {0x0, 0x3}, {0x7, 0x3}, {0x2, 0x6}, {0x0, 0x5}, {0x0, 0x1}, {0x1, 0x3}, {0x2, 0xa}, {0x0, 0xa}, {0x7, 0x9}, {0x4, 0x2}, {0x2, 0x6}, {0x4, 0x6}, {0x7, 0xa}, {0x4, 0xa}, {0x7, 0x2}, {0x7, 0x1}, {0x7, 0x9}, {0x7, 0xa}, {0x2, 0x1}, {0x1, 0x7}, {0x0, 0x2}, {0x1, 0x1}, {0x7, 0x3}, {0x5, 0x3}, {0x2, 0x2}, {0x5, 0x1}, {0x3, 0x2}, {0x4, 0x5}, {0x4, 0x3}, {0x2, 0x4}, {0x5, 0x2}, {0x5, 0xa}, {0x7, 0x7}, {0x0, 0x6}, {0x2}, {0x0, 0x2}, {0x1, 0x7}, {0x1, 0x6}, {0x3, 0xa}, {0x3, 0x2}, {}, {0x2, 0x4}, {0x7}, {0x4, 0x6}, {0x3, 0x6}, {0x1, 0x3}, {0x5, 0x5}, {}, {0x6, 0xa}, {0x0, 0x9}, {0x4, 0x3}, {0x4, 0x3}, {0x4, 0x9}, {0x2, 0x7}, {0x0, 0x17}, {0x2, 0x3}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xf, 0xff, 0x3ff, 0x0, 0x5, 0xe, 0x8, 0xa]}}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE_LTF={0x5}]}, @NL80211_BAND_5GHZ={0x84, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x1, 0x3, 0x81, 0x6, 0x8, 0x5, 0x4, 0xa]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x81, 0x4, 0x0, 0x3, 0x4, 0x8, 0xd]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x3, 0xf, 0xfffe, 0x3, 0x9b4, 0x7742, 0x4, 0x1]}}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x2, 0xfff, 0xffff, 0x1, 0x6, 0x9a, 0x4, 0x3]}}, @NL80211_TXRATE_LEGACY={0x20, 0x1, [0xb, 0xc, 0x60, 0xc, 0x24, 0x6, 0x2, 0x4, 0x2, 0x3, 0x18, 0x24, 0x60, 0x6c, 0xc, 0x4, 0x1, 0x36, 0x21, 0x24, 0xb, 0x3, 0x6, 0x24, 0x12, 0x3, 0x9, 0x18]}]}]}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x2f0, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x80, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x8, 0x1, 0x725, 0x1, 0x5ab7, 0xfff7, 0x2]}}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0xdcb8, 0xb4d0, 0x3, 0xfff0, 0x3, 0x81e, 0x9]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xfbff, 0xfff7, 0x2, 0x3, 0x9, 0x0, 0x8139, 0x8]}}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HT={0x20, 0x2, [{0x3, 0x5}, {0x3, 0x2}, {0x5, 0x6}, {0x6, 0x5}, {0x0, 0x7}, {0x3, 0x9}, {0x0, 0xa}, {0x1, 0x9}, {0x0, 0x3}, {0x1, 0x6}, {0x1, 0x7}, {0x0, 0x2}, {0x4, 0x9}, {0x0, 0xa}, {0x5, 0x3}, {0x5, 0x4}, {0x2, 0x4}, {0x2, 0xa}, {0x1, 0x9}, {0x0, 0x7}, {0x5, 0x7}, {0x4}, {0x0, 0x5}, {0x2, 0x1}, {0x1, 0x5}, {0x0, 0x7}, {0x3, 0x2}, {0x5, 0x6}]}]}, @NL80211_BAND_5GHZ={0x58, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x24, 0x0, 0x24, 0x24, 0x1, 0x9, 0x30, 0x9, 0x52, 0x2, 0x1b, 0x36, 0xc, 0x6c, 0x24, 0x6, 0x1b, 0x4, 0x1b, 0x1b, 0x31, 0x1b, 0x2, 0xaafe90ba551d1e69, 0x6]}, @NL80211_TXRATE_HT={0x22, 0x2, [{0x4, 0x7}, {0x3, 0x6}, {0x3, 0x5}, {0x3, 0x2}, {0x5, 0x7}, {0x4, 0xa}, {0x4, 0x2}, {0x1, 0x2}, {0x4}, {0x2, 0xa}, {0x6, 0x8}, {0x6, 0x7}, {0x6, 0xa}, {0x0, 0x5}, {0x5, 0x3}, {0x1, 0xa}, {0x2, 0xa}, {0x4, 0x5}, {0x1, 0x6}, {0x5, 0x5}, {0x5, 0xa}, {0x4, 0x5}, {0x2, 0x5}, {0x0, 0x7}, {0x0, 0x3}, {0x0, 0x3}, {0x7, 0xa}, {0x4, 0x6}, {0x0, 0x8}, {0x6, 0x3}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}]}, @NL80211_BAND_5GHZ={0x10c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x13, 0x1, [0xb, 0x3, 0x6c, 0xc, 0x12, 0x12, 0x36, 0x30, 0xb, 0x16, 0x1, 0x5, 0x2, 0x36, 0x72]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x9eb0, 0x3, 0x2, 0x2, 0x3, 0xfe00, 0x800, 0x100]}}, @NL80211_TXRATE_HT={0x42, 0x2, [{0x1}, {0x0, 0x6}, {0x3, 0x4}, {0x7, 0x7}, {0x4, 0x5}, {0x5, 0xa}, {0x7, 0x7}, {0x4, 0x5}, {0x6, 0x4}, {0x6, 0x1}, {0x4, 0x4}, {0x7, 0xa}, {0x0, 0x4}, {0x1, 0x4}, {0x0, 0x2}, {0x4, 0x1}, {0x1, 0xa}, {0x3, 0xa}, {0x5, 0xa}, {}, {0x6, 0x3}, {0x2, 0x3}, {0x1, 0x5}, {0x7}, {0x4, 0xa}, {0x5, 0x2}, {0x7, 0x2}, {0x5, 0x2}, {0x4, 0xa}, {0x2}, {0x0, 0xa}, {0x6, 0xa}, {0x1, 0x3}, {0x1, 0x3}, {0x4, 0x4}, {0x5, 0x7}, {0x3, 0x9}, {0x2}, {0x2, 0x1}, {0x5, 0x6}, {0x3, 0x4}, {0x0, 0x2}, {0x1, 0x9}, {0x7, 0x7}, {0x4}, {0x0, 0x7}, {0x1, 0x7}, {0x0, 0x3}, {0x4, 0x4}, {0x0, 0x4}, {0x0, 0x1}, {0x4}, {0x5, 0x1}, {0x2}, {0x6, 0x5}, {0x3, 0x6}, {0x5}, {0x6, 0x3}, {0x4, 0x3}, {0x4, 0x6}, {0x2, 0x5}, {0x7, 0x1}]}, @NL80211_TXRATE_HT={0xb, 0x2, [{0x4, 0xa}, {0x5}, {0x6, 0x8}, {0x1, 0xa}, {0x1, 0x7}, {0x3, 0x4}, {0x5, 0x4}]}, @NL80211_TXRATE_LEGACY={0x13, 0x1, [0x1b, 0x1b, 0x60, 0x6c, 0x48, 0x9, 0x9, 0x4, 0x30, 0x2, 0x1b, 0x60, 0x1b, 0x3c, 0x48]}, @NL80211_TXRATE_HT={0x4e, 0x2, [{0x2, 0x8}, {0x2, 0x6}, {0x1, 0x9}, {0x7, 0x6}, {0x6, 0xa}, {0x4, 0x3}, {0x4, 0x3}, {0x5, 0x8}, {0x7, 0x6}, {0x0, 0x8}, {0x1, 0x6}, {0x6, 0x3}, {0x1, 0x2}, {0x7, 0x5}, {0x1, 0x4}, {0x2, 0x3}, {0x2, 0x7}, {0x0, 0x3}, {0x1}, {0x0, 0x9}, {0x4, 0xa}, {0x7, 0x6}, {0x1, 0x4}, {0x1, 0x4}, {0x7, 0x4}, {0x1, 0x8}, {0x4, 0x2}, {0x7, 0x7}, {0x2, 0x7}, {0x6}, {0x7, 0x1}, {0x1, 0x7}, {0x4, 0x7}, {0x1, 0x6}, {0x2, 0xa}, {0x1, 0x3}, {0x0, 0x6}, {0x1, 0xa}, {0x4, 0x5}, {0x5}, {0x1, 0x1}, {0x4, 0x9}, {0x4, 0x8}, {0x1, 0x9}, {0x1, 0x2}, {0x0, 0x9}, {0x7, 0x2}, {0x5, 0x8}, {0x5, 0x4}, {0x7, 0x2}, {0x1}, {0x1, 0x4}, {0x7, 0x1}, {0x6, 0x8}, {0x3, 0x1}, {0x5, 0xa}, {0x0, 0x7}, {0x5, 0xa}, {0x5, 0x7}, {0x0, 0x9}, {0x1, 0x2}, {0x7, 0x9}, {}, {0x7}, {0x0, 0x5}, {0x3, 0x8}, {0x7, 0x5}, {0x2, 0x2}, {0x0, 0x8}, {0x3, 0x6}, {0x3, 0x5}, {0x6, 0x1}, {0x0, 0x9}, {0x6, 0x6}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x7, 0x5c07, 0x2, 0x30fc, 0x7, 0x3, 0x8, 0x1]}}, @NL80211_TXRATE_LEGACY={0x6, 0x1, [0x3, 0x36]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}]}, @NL80211_BAND_2GHZ={0x38, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HT={0x1b, 0x2, [{0x0, 0x4}, {0x4, 0x9}, {0x3, 0x5}, {0x5, 0x9}, {0x1, 0x2}, {0x7, 0x7}, {0x1, 0xa}, {0x1, 0x4}, {0x4, 0x1}, {0x5, 0x1}, {0x0, 0x3}, {0x2, 0x1}, {0x3, 0xa}, {0x0, 0x2}, {0x3, 0x9}, {0x2, 0x1}, {0x0, 0xa}, {0x1, 0x5}, {0x7, 0x1}, {0x7, 0x4}, {0x4, 0x1}, {0x3, 0x2}, {0x6, 0x1}]}]}, @NL80211_BAND_5GHZ={0x20, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0xa, 0x1, [0x24, 0x5, 0x26, 0x1, 0x60, 0x2]}]}, @NL80211_BAND_6GHZ={0xb0, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0xbfcd, 0x6, 0x8, 0x10, 0x1, 0xb1, 0x9e]}}, @NL80211_TXRATE_HT={0x1b, 0x2, [{0x2, 0x5}, {0x7, 0xa}, {0x6, 0xa}, {0x4}, {0x3, 0x7}, {0x3, 0x9}, {0x3, 0x2}, {0x2, 0x3}, {0x6, 0x7}, {0x1, 0x3}, {0x1, 0x5}, {0x5, 0x6}, {0x4, 0xa}, {0x5, 0x7}, {0x0, 0x6}, {0x7, 0x8}, {0x0, 0x4}, {0x6, 0xa}, {0x3, 0x7}, {0x0, 0x5}, {0x5}, {0x1, 0x5}, {0x0, 0x7}]}, @NL80211_TXRATE_HT={0x37, 0x2, [{0x7, 0x5}, {}, {0x3, 0x7}, {0x0, 0x8}, {0x6, 0xa}, {0x4, 0x6}, {0x7, 0x1}, {0x4}, {0x5, 0x6}, {0x1, 0x1}, {0x4, 0x1}, {0x0, 0x7}, {0x0, 0x7}, {0x5, 0x3}, {0x6, 0x6}, {0x2, 0x1}, {0x3, 0x2}, {0x0, 0x4}, {0x4, 0x2}, {0x7, 0x4}, {0x2, 0x6}, {0x5}, {0x2, 0x4}, {0x0, 0x5}, {0x7, 0x8}, {0x0, 0x8}, {0x2}, {0x0, 0x9}, {0x1, 0x8}, {0x3, 0x6}, {0x7, 0x9}, {0x1, 0x6}, {0x2, 0x2}, {0x4, 0x6}, {0x1, 0x7}, {0x5, 0x9}, {0x1, 0x6}, {0x3, 0x1}, {}, {0x7, 0x1}, {0x7, 0x4}, {0x1, 0x4}, {0x1, 0x7}, {0x5, 0x6}, {0x0, 0x3}, {0x5, 0x5}, {0x2, 0x2}, {0x6, 0xa}, {0x1, 0x8}, {0x0, 0x8}, {0x7, 0x1}]}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x20, 0x6c, 0xb, 0x0, 0x6c, 0x36, 0x36, 0x9, 0xb, 0xc, 0x36, 0x1b, 0x1b, 0xb, 0x6c, 0x48, 0xc, 0x36, 0x48, 0x24, 0x3, 0x24, 0x0, 0x18, 0x0, 0x12, 0x5, 0x12, 0x12]}]}]}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}]}, {0x38, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x2a}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x9}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x30}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xaa}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xe4}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x45}]}, {0x50, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xc0}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x88}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0xfe}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xb60}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xf8}]}]}]}, 0x6b8}, 0x1, 0x0, 0x0, 0x82}, 0x20000010)

5.480790575s ago: executing program 3 (id=1474):
r0 = userfaultfd(0x1)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000380), 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000006000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='jbd2_write_superblock\x00', r4}, 0x10)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r5)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYRES64=r3], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='jbd2_write_superblock\x00', r6}, 0x10)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r7 = inotify_init1(0x0)
fcntl$setown(r7, 0x8, 0xffffffffffffffff)
fcntl$getownex(r7, 0x10, &(0x7f0000000140)={0x0, <r8=>0x0})
r9 = syz_open_procfs(r8, &(0x7f0000000040)='fd/4\x00')
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r9, 0x40086610, &(0x7f0000000180)={@id={0x40000, 0x0, @b}})
listen(r1, 0xfffffffe)
r10 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r1, 0x28, 0x2, &(0x7f00000000c0), 0x8)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00>'], 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={0xffffffffffffffff, 0xe0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x7, &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r12=>0x0, 0x40000d2, &(0x7f00000002c0)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000300), &(0x7f0000000340), 0x8, 0x80, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000200000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r13}, 0x10)
syz_clone3(&(0x7f0000000ac0)={0x40000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, &(0x7f0000000a40)=[0x0], 0x1}, 0x58)
connect$vsock_stream(r10, &(0x7f0000000280), 0x10)
writev(r10, &(0x7f0000000240)=[{&(0x7f00000001c0)="01", 0x1}], 0x1)
r14 = accept$alg(r1, 0x0, 0x0)
recvmmsg(r14, &(0x7f0000005340)=[{{0x0, 0x0, &(0x7f0000002e00)=[{&(0x7f00000006c0)=""/50, 0x32}], 0x1}, 0xef5}], 0x1, 0x0, 0x0)
sync_file_range(r0, 0xc17, 0xffffffffffffff18, 0x0)

5.398579632s ago: executing program 3 (id=1475):
r0 = userfaultfd(0x1)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000380), 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000006000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='jbd2_write_superblock\x00', r4}, 0x10)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r5)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYRES64=r3], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='jbd2_write_superblock\x00', r6}, 0x10)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r7 = inotify_init1(0x0)
fcntl$setown(r7, 0x8, 0xffffffffffffffff)
fcntl$getownex(r7, 0x10, &(0x7f0000000140)={0x0, <r8=>0x0})
r9 = syz_open_procfs(r8, &(0x7f0000000040)='fd/4\x00')
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r9, 0x40086610, &(0x7f0000000180)={@id={0x40000, 0x0, @b}})
listen(r1, 0xfffffffe)
r10 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r1, 0x28, 0x2, &(0x7f00000000c0), 0x8)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={0xffffffffffffffff, 0xe0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x7, &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r12=>0x0, 0x40000d2, &(0x7f00000002c0)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000300), &(0x7f0000000340), 0x8, 0x80, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000200000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r13}, 0x10)
syz_clone3(&(0x7f0000000ac0)={0x40000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, &(0x7f0000000a40)=[0x0], 0x1}, 0x58)
connect$vsock_stream(r10, &(0x7f0000000280), 0x10)
writev(r10, &(0x7f0000000240)=[{&(0x7f00000001c0)="01", 0x1}], 0x1)
r14 = accept$alg(r1, 0x0, 0x0)
recvmmsg(r14, &(0x7f0000005340)=[{{0x0, 0x0, &(0x7f0000002e00)=[{&(0x7f00000006c0)=""/50, 0x32}], 0x1}, 0xef5}], 0x1, 0x0, 0x0)
sync_file_range(r0, 0xc17, 0xffffffffffffff18, 0x0)

5.302719308s ago: executing program 3 (id=1476):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
gettid()
r1 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x103382)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = memfd_create(&(0x7f0000000200)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05', 0x0)
ftruncate(r5, 0x80079a0)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2010, r5, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
lseek(r5, 0x1003ff, 0x4)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000ec0)=ANY=[@ANYBLOB="940000", @ANYRES16=r6, @ANYBLOB="050000000000000000000f00000008000300", @ANYRES32=r7, @ANYBLOB="42000e0080000000ffffffffffff080211000000505050505050c0ff000000000000000064000aa80406000000000000060200003c0401fb28177606000000000600000008000c006400000008000d00000000000a0034000202020202020000080035000010000008007e"], 0x94}}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r8 = eventfd(0x0)
r9 = getpid()
r10 = getpid()
process_vm_readv(r10, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000000400)=""/80, 0x50}], 0x1, 0x0)
r11 = epoll_create1(0x0)
ptrace$ARCH_SET_GS(0x1e, r9, &(0x7f0000000080), 0x1001)
kcmp$KCMP_EPOLL_TFD(r9, r10, 0x7, r8, &(0x7f0000000000)={r11, r8, 0xfffffff8})
ioctl$KVM_GET_PIT(r3, 0xc048ae65, &(0x7f00000000c0))
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r1)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1e0000000000000005000000000400005d060000", @ANYRES32, @ANYBLOB="0000008000000000000010000000000000008019", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00@\x00'/28], 0x48)

4.220834383s ago: executing program 1 (id=1477):
prlimit64(0x0, 0xe, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x12, r1, 0x0)
ftruncate(r1, 0x8979)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6000, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r2, 0x125d, &(0x7f0000001080))
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x3, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
r3 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_CONTINUE(r3, 0xc020aa08, &(0x7f0000000240)={{&(0x7f0000c00000/0x400000)=nil, 0x400000}})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
open(&(0x7f0000000600)='./file0\x00', 0x4c420, 0xa1)

4.220393815s ago: executing program 2 (id=1478):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f00000001c0)=ANY=[@ANYRES64], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket(0x1d, 0x800, 0x4)
r3 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
syz_socket_connect_nvme_tcp()
ioctl$FS_IOC_READ_VERITY_METADATA(r1, 0xc0286687, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000040), 0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
syz_emit_ethernet(0xe, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaa000000000000008864450100280000000000069078ac1414bbe000000200000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], 0x0)
ioctl$int_in(r3, 0x5452, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x23, 0x0, 0x400)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
r5 = io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1000})
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000000e50000850000007d0000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000980)={r7, 0xfca804a0, 0x0, 0x0, 0x0, 0x0, 0x9ffc, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x28)

3.11189959s ago: executing program 2 (id=1479):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000280)={'vxcan1\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x6, 0x5, &(0x7f00000001c0)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r2, &(0x7f0000000140)={0x60000000})
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_clone3(&(0x7f0000000580)={0x0, 0x0, &(0x7f0000000040), &(0x7f0000000180), {0x2a}, &(0x7f0000000400), 0x0, 0x0, &(0x7f0000000540)=[0x0], 0x1, {r3}}, 0x58)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r4 = fsopen(&(0x7f0000000300)='securityfs\x00', 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x9, &(0x7f0000000080)={@cgroup=r5, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04120800aaaaaaaaaa1001"], 0xb)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x114}], 0x1}, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_usb_connect(0x0, 0x3f, &(0x7f0000000040)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f0002000000"], 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$alg(0x26, 0x5, 0x0)
socketpair(0x9, 0x805, 0x465, &(0x7f0000000100))
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00'})
socket(0x2, 0x3, 0x9)

2.132906453s ago: executing program 3 (id=1480):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
clock_adjtime(0xffffffd3, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0), 0x802, 0x0)
r2 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r2, &(0x7f0000000400)={'#! ', './file0'}, 0xb)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB="2ca8a1bb975ddc966ad6d5a04c1b33", @ANYRESHEX=r3, @ANYBLOB=',\x00'])
openat$qrtrtun(0xffffff9c, &(0x7f0000000140), 0x202202)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
utimensat(0xffffffffffffffff, 0x0, 0x0, 0x100)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ip_mr_cache\x00')
preadv(r4, 0x0, 0x0, 0x4b5, 0x0)
r5 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x1c, 0x0, &(0x7f0000cab000))
write$vga_arbiter(r1, &(0x7f0000000000)=@other={'lock', ' ', 'io'}, 0x8)
write$vga_arbiter(r1, &(0x7f00000001c0)=@other={'decodes', ' ', 'none'}, 0xd)
close(0xffffffffffffffff)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x24)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3a8, 0x0, 0x0, 0xffffff6a, 0x180, 0x0, 0x2d8, 0x258, 0x258, 0x2d8, 0x258, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @local, [], [], 'wg2\x00', 'macvlan1\x00', {}, {}, 0x11}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x0, 0x0, 0x9}}, @common=@unspec=@connlimit={{0x40}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz1\x00'}}}, {{@ipv6={@local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'vxcan1\x00', 'team0\x00'}, 0x0, 0x118, 0x158, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@dst={{0x48}}]}, @common=@inet=@TCPOPTSTRIP={0x40}}], {{'\x00', 0x0, 0xa8, 0xd0, 0x3d6}, {0x28}}}}, 0x408)
write$binfmt_misc(r6, &(0x7f0000000200)=ANY=[@ANYBLOB="1c00000007"], 0xd)

1.918067566s ago: executing program 1 (id=1481):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
clock_adjtime(0xffffffd3, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0), 0x802, 0x0)
r2 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r2, &(0x7f0000000400)={'#! ', './file0'}, 0xb)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB="2ca8a1bb975ddc966ad6d5a04c1b33", @ANYRESHEX=r3, @ANYBLOB=',\x00'])
openat$qrtrtun(0xffffff9c, &(0x7f0000000140), 0x202202)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
utimensat(0xffffffffffffffff, 0x0, 0x0, 0x100)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ip_mr_cache\x00')
preadv(r4, 0x0, 0x0, 0x4b5, 0x0)
socket(0x10, 0x2, 0x0)
write$vga_arbiter(r1, &(0x7f00000001c0)=@other={'decodes', ' ', 'none'}, 0xd)
close(0xffffffffffffffff)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x24)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3a8, 0x0, 0x0, 0xffffff6a, 0x180, 0x0, 0x2d8, 0x258, 0x258, 0x2d8, 0x258, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @local, [], [], 'wg2\x00', 'macvlan1\x00', {}, {}, 0x11}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x0, 0x0, 0x9}}, @common=@unspec=@connlimit={{0x40}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz1\x00'}}}, {{@ipv6={@local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'vxcan1\x00', 'team0\x00'}, 0x0, 0x118, 0x158, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@dst={{0x48}}]}, @common=@inet=@TCPOPTSTRIP={0x40}}], {{'\x00', 0x0, 0xa8, 0xd0, 0x3d6}, {0x28}}}}, 0x408)
write$binfmt_misc(r5, &(0x7f0000000200)=ANY=[@ANYBLOB="1c00000007"], 0xd)

1.568660591s ago: executing program 2 (id=1482):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="0100000007000000612200000200000000000000", @ANYRES32, @ANYBLOB="0000000000000000000000000a000000000079d9", @ANYRES32=r3, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x34, r1, 0x431, 0x70bd28, 0x0, {}, [@ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x2}, @ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x34}}, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000280)={0x1c0, r1, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_HEADER={0x8c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x114, 0x2, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0xd}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}]}, 0x1c0}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000)

1.476393563s ago: executing program 2 (id=1483):
r0 = userfaultfd(0x1)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000380), 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000006000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='jbd2_write_superblock\x00', r4}, 0x10)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r5)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYRES64=r3], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='jbd2_write_superblock\x00', r6}, 0x10)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r7 = inotify_init1(0x0)
fcntl$setown(r7, 0x8, 0xffffffffffffffff)
fcntl$getownex(r7, 0x10, &(0x7f0000000140)={0x0, <r8=>0x0})
r9 = syz_open_procfs(r8, &(0x7f0000000040)='fd/4\x00')
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r9, 0x40086610, &(0x7f0000000180)={@id={0x40000, 0x0, @b}})
listen(r1, 0xfffffffe)
r10 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r1, 0x28, 0x2, &(0x7f00000000c0), 0x8)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00>'], 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={0xffffffffffffffff, 0xe0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x7, &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r12=>0x0, 0x40000d2, &(0x7f00000002c0)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000300), &(0x7f0000000340), 0x8, 0x80, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000200000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r13}, 0x10)
syz_clone3(&(0x7f0000000ac0)={0x40000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, &(0x7f0000000a40)=[0x0], 0x1}, 0x58)
connect$vsock_stream(r10, &(0x7f0000000280), 0x10)
writev(r10, &(0x7f0000000240)=[{&(0x7f00000001c0)="01", 0x1}], 0x1)
r14 = accept$alg(r1, 0x0, 0x0)
recvmmsg(r14, &(0x7f0000005340)=[{{0x0, 0x0, &(0x7f0000002e00)=[{&(0x7f00000006c0)=""/50, 0x32}], 0x1}, 0xef5}], 0x1, 0x0, 0x0)
sync_file_range(r0, 0xc17, 0xffffffffffffff18, 0x0)

1.035782929s ago: executing program 3 (id=1484):
socket$inet(0x2, 0x80001, 0x84)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000240), &(0x7f00000003c0)=r5}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r4, r1, 0x25, 0x2, @val=@tcx={@void, @value}}, 0x40)
syz_emit_ethernet(0xbe, &(0x7f0000000400)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x25}, @void, {@ipv4={0x500, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x4, 0x88, 0x0, @local}, {0x0, 0x0, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "3a2655686d5e04500e51141806d0ceec01ba132f6d3ef07e0108a8dd246e3b33", "ad5ee02041ac94ac71b1397afdfc77f5cf96f336c5deed9e2b8189b51e017b8bc88756550ff314bfcc334c9b79bca830", "2b4578a4e1942d35021f270b8ad2780329ccdcf4bc6656503fed9c1a", {"ba48c3ff4264adef4a12e8380742a29c", "dee363d876f19f2d4b2d21e2d63bbcbc"}}}}}}}, 0x0)

1.03463981s ago: executing program 2 (id=1485):
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x0, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="2dfcee104b87a2330f6c69fe0400798104b6accbc26981a9c5c1b79db45aa11c9ff806801a78f3b7150486b9900ceda02ef0bc7a05f1e31013c5a0a1031254c49828729ad5f299e888c4f2ac6f1114b95eb46eb699a12762536340991cb61f61974ca6cdd007a2a283225349101bf10b54159b31a21b438ec4de37acf54c6656e6e8bc8fb9609239daee87eed5706ddaf3dae8330417e29a7017a5fd9e8930c4ed65f402761cca22c07f3f10a1e8cbe265a4b99e043e7d2a632bf9"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x0, 0x30}, 0xc)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x3}, 0x8)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e23, 0x5, @loopback}, 0x1c)
sendto$inet6(r2, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f00000004c0)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendto$inet6(r2, &(0x7f0000000c80)="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", 0x34000, 0x0, 0x0, 0x0)
write$binfmt_elf64(r2, &(0x7f0000001040)=ANY=[@ANYBLOB="7f454c46000000000000000000000000000000000000000000000000000000004000"/43], 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={0x0, r1}, 0x10)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x200402, 0x0)
socket$alg(0x26, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffc000, 0x1)
ppoll(&(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f00000040c0)={0x0, 0x21}, &(0x7f0000004080))
syz_clone(0x25080011, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x2000000e, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

980.854126ms ago: executing program 3 (id=1486):
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000002c0), 0x0)
openat$vimc1(0xffffff9c, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000d80)=ANY=[@ANYBLOB="b702000014000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c03406910927c6b0b55b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831b538dfd8e012e79578e51bc5af65ff7ae735ffc8191a9bb0a83099e90f4580d760551b5b342f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c41146dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea086e95767d42b4e54861d0227dbfd2e6d28715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c62fd5d5aec84222fff0d7216fdb0d3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2ef0ae4f390a8337841cef386e22cc2200000000000001ff9682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2acb72e7ead0509d380578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e2331d01ce99a069694124d37cef099ece729aa218f9f44ad06a223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e48455b5a8b90dfae158b94f50adeb8fc500404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ffa3c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe4a3ced846891180604b6dd2499d16d7d9158ffffff069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a331bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99ff987900040000009feb121c49e07dbed4894ee7f8249dbae3428d2129ecfce1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39e00213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd9205218ee0200e2ff08644fb94c06003dc39050f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e906049fe86e09c58e273cd905deb28c13c1ed1c9cae846b03008cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4e62b445c00f576b2b5cc7f819abd0f891fab9d3f2e82c5f6fcf1e54f5a2d38708194cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935000000009c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b4749c28eb5167e9936ed327fb237a56224e49d9ea956d1798571b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecf743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be182724d95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd0403a099f32468f1561f058960d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f281e6bad1e5aa6d901c279eb156c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b4c6936531effce7115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cd082027c641ec4355eb4acff90756d1a1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8cc3fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b402bbab76fbb9d8a917df5b2e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128ab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380b3e365f84a3e5b116ae3e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627aaefb7eee403502734137ff47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb79f5589829b6b0679b5d65a00000000000000000000000000000000000000faff0000bab50bc8508a9644d3e7c328b0ff22035c8073f8d5f0e3da7339fc81d4ab3ef2857ef70a81d8a1628da28c942571880e22df7cabae56d5ff5e483c4a6e9b3f9dbd7f538a80b00f97e47895b3201c5126feca0888956a7d76ef45af7d87b308117a9ea24dcda2bc42cf20942c31268a400a221d7b1622585094e9dd83c7f4acdd7f5c23d8b730bf03118261edada8b8487a3b1b7548a420cc91f12bf70bb1df3bfe7d4b92ad6fcbf401efd6eb004cf20016ad8d1dad136dd856ffca238b39482811f9c8524bf182f1956a3d044423927df28880bbd11c06407220df8e1d1d483d947d990dc1a170200a63a83ab25a0040b641959ad3e776b4bb4852fea12983dc18b7404914a6137dc4a78f1e0d331c60a9019c21698cd18753491df962f496f2395563e9c3d7b1228d0e488cf7e50a29541aa757f2e2ee9ff4433d65db0de5a123d569e39dce481156cbec584c9a32a8e3b032fa003192c891d83119bc950abac9147b47800acd9a207b5ceb7e8ed1d91c000000000000000000000000000000141258373281153fa27e586ea82650f070d8851ac9e7acb37a6479d4017b5b5af3ff4c91235df4f657d77e386a329aec4d766369c86b62b01ceb028c901d99eced99b46b43016b9f5351a45a8cb4ea110ba700000000000000883416b6eff6a793c71deb7d780c4f51d86ece127c0714144916f397d398ad2fe72b710b932c15c2369cb5d2d2f6ae420672c4a626195a891ac51825077fbc286aa3866bbf18a4a8b836ea8c90af0d5f0aff55b50bc18c27875ed2628b91224b7fa91811ccd7c1b1a92bac529df90000000000000000000000004000301b5557b674a86db8c4bfd58ff30000000000000000000000e8f1ed2ea68b0569be17bd73c0633ed4acaaef9e9f7d21998f55b71b26af7e284b1cc4685d740a9d106380dd8cb78f9d9c8cf59b155bc569ddd3098417286bec31896306410a60acadb0f3fb44d30b82986b792635155fa3d562d3aa09452cbb201b0dfed6412837bc2237acf7ca5997ee1898541f4a1c4031e240ccc80ee8fad036ce04409c4630821b8b99be5a3f72afc458f8417544014a67ae4ad31b15c8e13c9f0cdee4abefd0ed28a4a55dd992a748008822d05f13b1a8112d7f41e3bf28bcc1b0963798bed4e0db07d0574016276aa28a86eb33d20a5d58f58201edcef1253b02aac4c74427322ec24809bb059c41db9ee1c3e728c76c5ade17df0a7fc74229ea1a525ee42e8eac3675cb18d6c06748e93179c382f331dde2eea7eab2da71c2ea7086c0c71b6e3d837fdfdc1a5285c471b11eb3311a9f7459a57f7174d000000000000000000000000000000000000000000000008c6987f5d91d640fe5d83d4489b382fe3d3e49c23dcee2af69ba44ab575f354ed026cbf37acc05331084088093fa14152ee6d861dc27a69a9a563c0feb8b27fb7d4586b35a6f181793d5b73e231e7a2d1a6f564a06adc348b9a1c1017f908f99e136b04a0d"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000100))
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r3, 0x89f7, &(0x7f0000000580)={'sit0\x00', &(0x7f00000004c0)={@private=0xa010102, 0x0, 0x0, 0x70, 0x0, [{}, {@initdev}, {@initdev}, {@local}, {}, {@remote}, {@broadcast}]}})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0)
socket$packet(0x11, 0x3, 0x300)
syz_emit_ethernet(0xfdef, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newtaction={0x84, 0x30, 0x1, 0x0, 0x0, {0x7a}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x80000001}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xce}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x84}}, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r7)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000001ac0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r6)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r4, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000003c0)={&(0x7f0000001b00)={0x6b8, r8, 0x8, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x9, 0x4b}}}}, [@NL80211_ATTR_TID_CONFIG={0x4}, @NL80211_ATTR_TID_CONFIG={0x694, 0x11d, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x98}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9a}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x10}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x43}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}]}, {0x528, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xdc}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x208, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x30, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xa, 0x2, 0x4, 0x9, 0x3, 0x0, 0x5]}}, @NL80211_TXRATE_HE_LTF={0x5}]}, @NL80211_BAND_6GHZ={0x8c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x4a, 0x2, [{0x2}, {0x1, 0xa}, {0x0, 0x1}, {0x5, 0x6}, {0x5, 0x6}, {0x2, 0x9}, {0x1, 0x9}, {0x5, 0x4}, {0x4, 0x4}, {0x1}, {0x2, 0x6}, {0x1, 0x1}, {0x4, 0x7}, {0x2, 0xa}, {0x6, 0x4}, {0x6, 0x7}, {0x1, 0x8}, {0x1, 0x8}, {0x1, 0xa}, {0x2, 0x7}, {0x0, 0x9}, {0x5, 0x8}, {0x2, 0xa}, {0x2, 0x8}, {0x4, 0x3}, {0x4, 0x8}, {0x7, 0x1}, {0x0, 0x8}, {0x5, 0x2}, {0x5, 0x7}, {0x7, 0x7}, {0x1, 0x7}, {0x1, 0x4}, {0x7, 0x9}, {0x0, 0x3}, {0x5}, {0x2, 0x9}, {0x2, 0x4}, {0x1, 0x8}, {0x2, 0x7}, {0x3, 0xa}, {0x3, 0x9}, {0x3, 0x9}, {0x2, 0x8}, {0x3, 0x3}, {0x2, 0x3}, {0x2}, {0x4, 0x9}, {0x2, 0x6}, {0x0, 0x3}, {0x7, 0x5}, {0x7, 0x9}, {}, {0x5, 0x9}, {0x2}, {0x3, 0x7}, {0x0, 0x2}, {0x2, 0x3}, {0x0, 0x3}, {0x7, 0x4}, {0x6, 0xa}, {0x5, 0x8}, {0x4, 0x3}, {0x1, 0x6}, {0x4, 0x9}, {0x0, 0x3}, {0x5, 0x5}, {0x4}, {0x7, 0x9}, {0x0, 0x2}]}, @NL80211_TXRATE_HT={0x17, 0x2, [{0x0, 0xa}, {0x4, 0x6}, {0x4, 0xa}, {0x3, 0x5}, {0x2, 0x9}, {0x0, 0x7}, {0x7, 0x2}, {0x1}, {0x5, 0x2}, {0x5, 0x7}, {0x7, 0x1}, {0x0, 0x4}, {0x1, 0x5}, {0x2, 0x4}, {0x1, 0x5}, {0x2, 0x4}, {0x7, 0x8}, {0x0, 0x3}, {0x7, 0x8}]}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x9, 0x4, 0x1, 0x2, 0x8, 0x3, 0x7, 0x400]}}]}, @NL80211_BAND_6GHZ={0xc4, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x24, 0x1, [0x1b, 0x2, 0xc, 0x1c, 0x36, 0x6, 0x5, 0x18, 0xb, 0x12, 0x12, 0x18, 0x1b, 0x5, 0x6, 0x18, 0x2, 0x48, 0x6, 0x6c, 0x16, 0x48, 0x5, 0x5, 0x60, 0x36, 0x1, 0x16, 0x30, 0x36, 0x30, 0x9]}, @NL80211_TXRATE_LEGACY={0x8, 0x1, [0x12, 0x68, 0x3, 0x9]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xfe0, 0x81, 0x4, 0x9, 0x5, 0xc, 0x1, 0x5]}}, @NL80211_TXRATE_HT={0x42, 0x2, [{0x7, 0x3}, {}, {0x0, 0x6}, {0x2, 0x7}, {0x6, 0x1}, {0x6, 0x3}, {0x0, 0x3}, {0x7, 0x3}, {0x2, 0x6}, {0x0, 0x5}, {0x0, 0x1}, {0x1, 0x3}, {0x2, 0xa}, {0x0, 0xa}, {0x7, 0x9}, {0x4, 0x2}, {0x2, 0x6}, {0x4, 0x6}, {0x7, 0xa}, {0x4, 0xa}, {0x7, 0x2}, {0x7, 0x1}, {0x7, 0x9}, {0x7, 0xa}, {0x2, 0x1}, {0x1, 0x7}, {0x0, 0x2}, {0x1, 0x1}, {0x7, 0x3}, {0x5, 0x3}, {0x2, 0x2}, {0x5, 0x1}, {0x3, 0x2}, {0x4, 0x5}, {0x4, 0x3}, {0x2, 0x4}, {0x5, 0x2}, {0x5, 0xa}, {0x7, 0x7}, {0x0, 0x6}, {0x2}, {0x0, 0x2}, {0x1, 0x7}, {0x1, 0x6}, {0x3, 0xa}, {0x3, 0x2}, {}, {0x2, 0x4}, {0x7}, {0x4, 0x6}, {0x3, 0x6}, {0x1, 0x3}, {0x5, 0x5}, {}, {0x6, 0xa}, {0x0, 0x9}, {0x4, 0x3}, {0x4, 0x3}, {0x4, 0x9}, {0x2, 0x7}, {0x0, 0x17}, {0x2, 0x3}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xf, 0xff, 0x3ff, 0x0, 0x5, 0xe, 0x8, 0xa]}}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE_LTF={0x5}]}, @NL80211_BAND_5GHZ={0x84, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x1, 0x3, 0x81, 0x6, 0x8, 0x5, 0x4, 0xa]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x81, 0x4, 0x0, 0x3, 0x4, 0x8, 0xd]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x3, 0xf, 0xfffe, 0x3, 0x9b4, 0x7742, 0x4, 0x1]}}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x2, 0xfff, 0xffff, 0x1, 0x6, 0x9a, 0x4, 0x3]}}, @NL80211_TXRATE_LEGACY={0x20, 0x1, [0xb, 0xc, 0x60, 0xc, 0x24, 0x6, 0x2, 0x4, 0x2, 0x3, 0x18, 0x24, 0x60, 0x6c, 0xc, 0x4, 0x1, 0x36, 0x21, 0x24, 0xb, 0x3, 0x6, 0x24, 0x12, 0x3, 0x9, 0x18]}]}]}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x2f0, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x80, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x8, 0x1, 0x725, 0x1, 0x5ab7, 0xfff7, 0x2]}}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0xdcb8, 0xb4d0, 0x3, 0xfff0, 0x3, 0x81e, 0x9]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xfbff, 0xfff7, 0x2, 0x3, 0x9, 0x0, 0x8139, 0x8]}}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HT={0x20, 0x2, [{0x3, 0x5}, {0x3, 0x2}, {0x5, 0x6}, {0x6, 0x5}, {0x0, 0x7}, {0x3, 0x9}, {0x0, 0xa}, {0x1, 0x9}, {0x0, 0x3}, {0x1, 0x6}, {0x1, 0x7}, {0x0, 0x2}, {0x4, 0x9}, {0x0, 0xa}, {0x5, 0x3}, {0x5, 0x4}, {0x2, 0x4}, {0x2, 0xa}, {0x1, 0x9}, {0x0, 0x7}, {0x5, 0x7}, {0x4}, {0x0, 0x5}, {0x2, 0x1}, {0x1, 0x5}, {0x0, 0x7}, {0x3, 0x2}, {0x5, 0x6}]}]}, @NL80211_BAND_5GHZ={0x58, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x24, 0x0, 0x24, 0x24, 0x1, 0x9, 0x30, 0x9, 0x52, 0x2, 0x1b, 0x36, 0xc, 0x6c, 0x24, 0x6, 0x1b, 0x4, 0x1b, 0x1b, 0x31, 0x1b, 0x2, 0xaafe90ba551d1e69, 0x6]}, @NL80211_TXRATE_HT={0x22, 0x2, [{0x4, 0x7}, {0x3, 0x6}, {0x3, 0x5}, {0x3, 0x2}, {0x5, 0x7}, {0x4, 0xa}, {0x4, 0x2}, {0x1, 0x2}, {0x4}, {0x2, 0xa}, {0x6, 0x8}, {0x6, 0x7}, {0x6, 0xa}, {0x0, 0x5}, {0x5, 0x3}, {0x1, 0xa}, {0x2, 0xa}, {0x4, 0x5}, {0x1, 0x6}, {0x5, 0x5}, {0x5, 0xa}, {0x4, 0x5}, {0x2, 0x5}, {0x0, 0x7}, {0x0, 0x3}, {0x0, 0x3}, {0x7, 0xa}, {0x4, 0x6}, {0x0, 0x8}, {0x6, 0x3}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}]}, @NL80211_BAND_5GHZ={0x10c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x13, 0x1, [0xb, 0x3, 0x6c, 0xc, 0x12, 0x12, 0x36, 0x30, 0xb, 0x16, 0x1, 0x5, 0x2, 0x36, 0x72]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x9eb0, 0x3, 0x2, 0x2, 0x3, 0xfe00, 0x800, 0x100]}}, @NL80211_TXRATE_HT={0x42, 0x2, [{0x1}, {0x0, 0x6}, {0x3, 0x4}, {0x7, 0x7}, {0x4, 0x5}, {0x5, 0xa}, {0x7, 0x7}, {0x4, 0x5}, {0x6, 0x4}, {0x6, 0x1}, {0x4, 0x4}, {0x7, 0xa}, {0x0, 0x4}, {0x1, 0x4}, {0x0, 0x2}, {0x4, 0x1}, {0x1, 0xa}, {0x3, 0xa}, {0x5, 0xa}, {}, {0x6, 0x3}, {0x2, 0x3}, {0x1, 0x5}, {0x7}, {0x4, 0xa}, {0x5, 0x2}, {0x7, 0x2}, {0x5, 0x2}, {0x4, 0xa}, {0x2}, {0x0, 0xa}, {0x6, 0xa}, {0x1, 0x3}, {0x1, 0x3}, {0x4, 0x4}, {0x5, 0x7}, {0x3, 0x9}, {0x2}, {0x2, 0x1}, {0x5, 0x6}, {0x3, 0x4}, {0x0, 0x2}, {0x1, 0x9}, {0x7, 0x7}, {0x4}, {0x0, 0x7}, {0x1, 0x7}, {0x0, 0x3}, {0x4, 0x4}, {0x0, 0x4}, {0x0, 0x1}, {0x4}, {0x5, 0x1}, {0x2}, {0x6, 0x5}, {0x3, 0x6}, {0x5}, {0x6, 0x3}, {0x4, 0x3}, {0x4, 0x6}, {0x2, 0x5}, {0x7, 0x1}]}, @NL80211_TXRATE_HT={0xb, 0x2, [{0x4, 0xa}, {0x5}, {0x6, 0x8}, {0x1, 0xa}, {0x1, 0x7}, {0x3, 0x4}, {0x5, 0x4}]}, @NL80211_TXRATE_LEGACY={0x13, 0x1, [0x1b, 0x1b, 0x60, 0x6c, 0x48, 0x9, 0x9, 0x4, 0x30, 0x2, 0x1b, 0x60, 0x1b, 0x3c, 0x48]}, @NL80211_TXRATE_HT={0x4e, 0x2, [{0x2, 0x8}, {0x2, 0x6}, {0x1, 0x9}, {0x7, 0x6}, {0x6, 0xa}, {0x4, 0x3}, {0x4, 0x3}, {0x5, 0x8}, {0x7, 0x6}, {0x0, 0x8}, {0x1, 0x6}, {0x6, 0x3}, {0x1, 0x2}, {0x7, 0x5}, {0x1, 0x4}, {0x2, 0x3}, {0x2, 0x7}, {0x0, 0x3}, {0x1}, {0x0, 0x9}, {0x4, 0xa}, {0x7, 0x6}, {0x1, 0x4}, {0x1, 0x4}, {0x7, 0x4}, {0x1, 0x8}, {0x4, 0x2}, {0x7, 0x7}, {0x2, 0x7}, {0x6}, {0x7, 0x1}, {0x1, 0x7}, {0x4, 0x7}, {0x1, 0x6}, {0x2, 0xa}, {0x1, 0x3}, {0x0, 0x6}, {0x1, 0xa}, {0x4, 0x5}, {0x5}, {0x1, 0x1}, {0x4, 0x9}, {0x4, 0x8}, {0x1, 0x9}, {0x1, 0x2}, {0x0, 0x9}, {0x7, 0x2}, {0x5, 0x8}, {0x5, 0x4}, {0x7, 0x2}, {0x1}, {0x1, 0x4}, {0x7, 0x1}, {0x6, 0x8}, {0x3, 0x1}, {0x5, 0xa}, {0x0, 0x7}, {0x5, 0xa}, {0x5, 0x7}, {0x0, 0x9}, {0x1, 0x2}, {0x7, 0x9}, {}, {0x7}, {0x0, 0x5}, {0x3, 0x8}, {0x7, 0x5}, {0x2, 0x2}, {0x0, 0x8}, {0x3, 0x6}, {0x3, 0x5}, {0x6, 0x1}, {0x0, 0x9}, {0x6, 0x6}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x7, 0x5c07, 0x2, 0x30fc, 0x7, 0x3, 0x8, 0x1]}}, @NL80211_TXRATE_LEGACY={0x6, 0x1, [0x3, 0x36]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}]}, @NL80211_BAND_2GHZ={0x38, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HT={0x1b, 0x2, [{0x0, 0x4}, {0x4, 0x9}, {0x3, 0x5}, {0x5, 0x9}, {0x1, 0x2}, {0x7, 0x7}, {0x1, 0xa}, {0x1, 0x4}, {0x4, 0x1}, {0x5, 0x1}, {0x0, 0x3}, {0x2, 0x1}, {0x3, 0xa}, {0x0, 0x2}, {0x3, 0x9}, {0x2, 0x1}, {0x0, 0xa}, {0x1, 0x5}, {0x7, 0x1}, {0x7, 0x4}, {0x4, 0x1}, {0x3, 0x2}, {0x6, 0x1}]}]}, @NL80211_BAND_5GHZ={0x20, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0xa, 0x1, [0x24, 0x5, 0x26, 0x1, 0x60, 0x2]}]}, @NL80211_BAND_6GHZ={0xb0, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0xbfcd, 0x6, 0x8, 0x10, 0x1, 0xb1, 0x9e]}}, @NL80211_TXRATE_HT={0x1b, 0x2, [{0x2, 0x5}, {0x7, 0xa}, {0x6, 0xa}, {0x4}, {0x3, 0x7}, {0x3, 0x9}, {0x3, 0x2}, {0x2, 0x3}, {0x6, 0x7}, {0x1, 0x3}, {0x1, 0x5}, {0x5, 0x6}, {0x4, 0xa}, {0x5, 0x7}, {0x0, 0x6}, {0x7, 0x8}, {0x0, 0x4}, {0x6, 0xa}, {0x3, 0x7}, {0x0, 0x5}, {0x5}, {0x1, 0x5}, {0x0, 0x7}]}, @NL80211_TXRATE_HT={0x37, 0x2, [{0x7, 0x5}, {}, {0x3, 0x7}, {0x0, 0x8}, {0x6, 0xa}, {0x4, 0x6}, {0x7, 0x1}, {0x4}, {0x5, 0x6}, {0x1, 0x1}, {0x4, 0x1}, {0x0, 0x7}, {0x0, 0x7}, {0x5, 0x3}, {0x6, 0x6}, {0x2, 0x1}, {0x3, 0x2}, {0x0, 0x4}, {0x4, 0x2}, {0x7, 0x4}, {0x2, 0x6}, {0x5}, {0x2, 0x4}, {0x0, 0x5}, {0x7, 0x8}, {0x0, 0x8}, {0x2}, {0x0, 0x9}, {0x1, 0x8}, {0x3, 0x6}, {0x7, 0x9}, {0x1, 0x6}, {0x2, 0x2}, {0x4, 0x6}, {0x1, 0x7}, {0x5, 0x9}, {0x1, 0x6}, {0x3, 0x1}, {}, {0x7, 0x1}, {0x7, 0x4}, {0x1, 0x4}, {0x1, 0x7}, {0x5, 0x6}, {0x0, 0x3}, {0x5, 0x5}, {0x2, 0x2}, {0x6, 0xa}, {0x1, 0x8}, {0x0, 0x8}, {0x7, 0x1}]}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x20, 0x6c, 0xb, 0x0, 0x6c, 0x36, 0x36, 0x9, 0xb, 0xc, 0x36, 0x1b, 0x1b, 0xb, 0x6c, 0x48, 0xc, 0x36, 0x48, 0x24, 0x3, 0x24, 0x0, 0x18, 0x0, 0x12, 0x5, 0x12, 0x12]}]}]}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}]}, {0x38, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x2a}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x9}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x30}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xaa}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xe4}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x45}]}, {0x50, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xc0}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x88}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0xfe}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xb60}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xf8}]}]}]}, 0x6b8}, 0x1, 0x0, 0x0, 0x82}, 0x20000010)

933.045814ms ago: executing program 1 (id=1487):
r0 = openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, 0x0)
mkdir(0x0, 0x0)
mount(0x0, 0x0, &(0x7f0000000000)='tmpfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000040)='./file0\x00')
umount2(&(0x7f00000000c0)='./file0\x00', 0xd)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'})
io_uring_setup(0x5f6, &(0x7f0000000240))
io_uring_enter(0xffffffffffffffff, 0x54ce, 0x0, 0xf, &(0x7f0000000000), 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000002000000000000000100001b020000000000000100000000000000000000b9324e59df357c153200fb5c888c4212cbc08b1e77c71b7ac5bef0b6a1838a98a9dcfac9d782f78c539a79272c92f24a7aaad5c3900f206cd43325def7c4495cd38ad3303d0e46c42d6834eb0d7f51ccca0841a717201dd35641e37e4c01662aa3eb35c819ce91633eef7ab9f7897d2bc1dd84a5e51ae970f2be5263948c8a33ff0d7344e2034823bab9768ddb84699a9406f11fd98f1e20ec4a6d418655f178f781a693b2b0f24ecd46"], 0x0, 0x32, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f00000005c0), 0x1000)
socket$inet_udplite(0x2, 0x2, 0x88)
socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
getpid()
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f00000004c0)=[{0x6, 0x0, 0x0, 0xe}]}, 0x10)
bind$inet6(r2, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r2, &(0x7f0000847fff), 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r3, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
listen(r3, 0xda90)
accept4(r3, 0x0, 0x0, 0x0)
ioctl$VIDIOC_G_SELECTION(0xffffffffffffffff, 0xc040565e, &(0x7f0000001a80))
fsopen(&(0x7f0000000340)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000040)='ro\x00', 0x0, 0x0)

178.625426ms ago: executing program 2 (id=1488):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000100)="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"/714, 0x2ca, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='hybla\x00', 0x6)
recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x46, 0x407006}, 0x104)
shutdown(r0, 0x1)

0s ago: executing program 1 (id=1489):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0x490420}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r2, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ecc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb190df08747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb81035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22263e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485e4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6bb06500f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784776f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2205eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e44312c24c2ce8e642bb73c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a768cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d0500e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad24c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc5908", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
syz_fuse_handle_req(r2, &(0x7f0000006340)="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", 0x2000, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
io_setup(0x202, &(0x7f0000000200)=<r5=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000e80)={0x18, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000), 0x4)
io_submit(r5, 0x140b, &(0x7f0000000700)=[&(0x7f0000000440)={0x18, 0x7000000, 0x4, 0x1, 0x0, r4, &(0x7f0000000180)='\x00', 0x1001}])
lsetxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)=@known='security.apparmor\x00', &(0x7f0000000240)='\x00', 0x1, 0x0)
dup3(r1, r2, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)={0x14, 0x3, 0x1, 0x101}, 0x14}}, 0x0)

kernel console output (not intermixed with test programs):

 T9595] R13: 0000000000000001 R14: 00007f4f5fb36130 R15: 00007fff7ce24b68
[  242.955047][ T9595]  </TASK>
[  242.956306][    C3] vkms_vblank_simulate: vblank timer overrun
[  243.304363][   T56] Bluetooth: Can't get state to change to load configuration err
[  243.306471][   T56] Bluetooth: Loading sysconfig file failed
[  243.308109][   T56] ath3k 6-1:0.0: probe with driver ath3k failed with error -16
[  243.313976][   T56] usb 6-1: USB disconnect, device number 15
[  243.566753][   T39] audit: type=1400 audit(1726616211.957:902): avc:  denied  { listen } for  pid=9597 comm="syz.3.1242" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  243.706572][ T1107] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  243.847114][   T39] audit: type=1326 audit(1726616212.237:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9605 comm="syz.1.1245" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2cd7def9 code=0x7ffc0000
[  243.848307][ T9606] FAULT_INJECTION: forcing a failure.
[  243.848307][ T9606] name failslab, interval 1, probability 0, space 0, times 0
[  243.858898][ T9606] CPU: 3 UID: 0 PID: 9606 Comm: syz.1.1245 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  243.862874][ T9606] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  243.866455][ T9606] Call Trace:
[  243.867646][ T9606]  <TASK>
[  243.868280][   T39] audit: type=1326 audit(1726616212.237:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9605 comm="syz.1.1245" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2cd7def9 code=0x7ffc0000
[  243.868533][ T9606]  dump_stack_lvl+0x16c/0x1f0
[  243.868553][ T9606]  should_fail_ex+0x497/0x5b0
[  243.874856][   T39] audit: type=1326 audit(1726616212.237:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9605 comm="syz.1.1245" exe="/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f8c2cd7def9 code=0x7ffc0000
[  243.876217][ T9606]  ? fs_reclaim_acquire+0xae/0x160
[  243.877451][   T39] audit: type=1326 audit(1726616212.237:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9605 comm="syz.1.1245" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2cd7def9 code=0x7ffc0000
[  243.883615][ T9606]  should_failslab+0xc2/0x120
[  243.883639][ T9606]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  243.883651][ T9606]  ? audit_log_start+0x2bc/0x7e0
[  243.883663][ T9606]  audit_log_start+0x2bc/0x7e0
[  243.883673][ T9606]  ? __pfx_audit_log_start+0x10/0x10
[  243.883684][ T9606]  ? __pfx_lock_release+0x10/0x10
[  243.883699][ T9606]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  243.883714][ T9606]  ? migrate_enable+0x1a8/0x260
[  243.883728][ T9606]  ? __pfx_migrate_enable+0x10/0x10
[  243.883747][ T9606]  audit_seccomp+0x61/0x280
[  243.883762][ T9606]  __seccomp_filter+0x816/0xf40
[  243.898317][   T39] audit: type=1326 audit(1726616212.237:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9605 comm="syz.1.1245" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2cd7def9 code=0x7ffc0000
[  243.899596][ T9606]  ? __pfx___seccomp_filter+0x10/0x10
[  243.901136][   T39] audit: type=1326 audit(1726616212.237:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9605 comm="syz.1.1245" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f8c2cd7def9 code=0x7ffc0000
[  243.903034][ T9606]  ? fput+0x30/0x390
[  243.915767][   T39] audit: type=1326 audit(1726616212.237:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9605 comm="syz.1.1245" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2cd7def9 code=0x7ffc0000
[  243.917337][ T9606]  ? ksys_read+0x1ab/0x260
[  243.935053][ T9606]  __secure_computing+0x26c/0x3f0
[  243.936502][ T9606]  syscall_trace_enter+0x8b/0x240
[  243.938209][ T9606]  do_syscall_64+0x1ee/0x250
[  243.939840][ T9606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.941913][ T9606] RIP: 0033:0x7f8c2cd7c9df
[  243.943435][ T9606] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  243.949933][ T9606] RSP: 002b:00007f8c2db11030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  243.953358][ T9606] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8c2cd7c9df
[  243.956272][ T9606] RDX: 0000000000000001 RSI: 00007f8c2db110a0 RDI: 0000000000000003
[  243.959311][ T9606] RBP: 00007f8c2db11090 R08: 0000000000000000 R09: 0000000000000000
[  243.962112][ T9606] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  243.965187][ T9606] R13: 0000000000000000 R14: 00007f8c2cf35f80 R15: 00007ffde960d0c8
[  243.968010][ T9606]  </TASK>
[  243.969206][    C3] vkms_vblank_simulate: vblank timer overrun
[  244.003275][ T5345] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  244.011538][ T5345] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  244.016733][ T5345] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  244.022893][ T5345] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  244.026228][ T5345] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  244.031275][ T5345] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  244.099363][ T9615] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1244'.
[  244.263706][ T9617] 9pnet_fd: Insufficient options for proto=fd
[  244.299115][ T9617] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  244.371691][ T9617] xt_CT: No such helper "snmp_trap"
[  244.393001][ T9617] Bluetooth: MGMT ver 1.23
[  244.548878][ T1420] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  244.601073][ T9608] chnl_net:caif_netlink_parms(): no params data found
[  244.701083][ T1420] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  244.705059][ T1420] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  244.711007][ T1420] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  244.714529][ T1420] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.727367][ T1420] usb 7-1: config 0 descriptor??
[  244.734530][ T1420] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  244.834354][ T9608] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.837163][ T9608] bridge0: port 1(bridge_slave_0) entered disabled state
[  244.840322][ T9608] bridge_slave_0: entered allmulticast mode
[  244.843952][ T9608] bridge_slave_0: entered promiscuous mode
[  244.849206][ T9608] bridge0: port 2(bridge_slave_1) entered blocking state
[  244.852040][ T9608] bridge0: port 2(bridge_slave_1) entered disabled state
[  244.855458][ T9608] bridge_slave_1: entered allmulticast mode
[  244.871354][ T9608] bridge_slave_1: entered promiscuous mode
[  244.980428][ T9629] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[  244.984500][ T9608] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  245.002488][ T9608] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  245.023302][ T9603] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=775 (12400 ns) > initial count (11120 ns). Using initial count to start timer.
[  245.086714][ T9608] team0: Port device team_slave_0 added
[  245.095142][ T9608] team0: Port device team_slave_1 added
[  245.153903][ T9608] batman_adv: batadv0: Adding interface: batadv_slave_0
[  245.156416][ T9608] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  245.165361][ T9608] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  245.171619][ T9608] batman_adv: batadv0: Adding interface: batadv_slave_1
[  245.174114][ T9608] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  245.187155][ T9608] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  245.260660][ T5350] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  245.268707][ T5350] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  245.271407][ T9608] hsr_slave_0: entered promiscuous mode
[  245.274558][ T5350] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  245.279080][ T9608] hsr_slave_1: entered promiscuous mode
[  245.281544][ T5350] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  245.284307][ T9608] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  245.287091][ T9608] Cannot create hsr debugfs directory
[  245.289922][ T5350] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  245.293221][ T5350] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  245.486736][ T1107] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.580463][ T1107] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.678863][ T1107] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.688840][ T9634] chnl_net:caif_netlink_parms(): no params data found
[  245.767006][ T9634] bridge0: port 1(bridge_slave_0) entered blocking state
[  245.769357][ T9634] bridge0: port 1(bridge_slave_0) entered disabled state
[  245.771438][ T9634] bridge_slave_0: entered allmulticast mode
[  245.773926][ T9634] bridge_slave_0: entered promiscuous mode
[  245.777381][ T9634] bridge0: port 2(bridge_slave_1) entered blocking state
[  245.780121][ T9634] bridge0: port 2(bridge_slave_1) entered disabled state
[  245.782100][ T9634] bridge_slave_1: entered allmulticast mode
[  245.784576][ T9634] bridge_slave_1: entered promiscuous mode
[  245.829526][ T9634] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  245.834787][ T9634] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  245.924808][ T9634] team0: Port device team_slave_0 added
[  245.930920][ T9634] team0: Port device team_slave_1 added
[  245.990177][ T1107] bridge_slave_1: left allmulticast mode
[  245.992117][ T1107] bridge_slave_1: left promiscuous mode
[  245.996673][ T1107] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.011894][ T1107] bridge_slave_0: left allmulticast mode
[  246.013374][ T1107] bridge_slave_0: left promiscuous mode
[  246.015374][ T1107] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.148699][ T5345] Bluetooth: hci0: command tx timeout
[  246.425696][ T1107] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  246.430855][ T1107] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  246.435674][ T1107] bond0 (unregistering): Released all slaves
[  246.494412][ T9634] batman_adv: batadv0: Adding interface: batadv_slave_0
[  246.496885][ T9634] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  246.506760][ T9634] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  246.513876][ T9634] batman_adv: batadv0: Adding interface: batadv_slave_1
[  246.516268][ T9634] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  246.525668][ T9634] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  246.660720][ T9634] hsr_slave_0: entered promiscuous mode
[  246.663963][ T9634] hsr_slave_1: entered promiscuous mode
[  246.666719][ T9634] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  246.668824][ T9634] Cannot create hsr debugfs directory
[  246.952493][   T64] usb 7-1: USB disconnect, device number 13
[  246.970726][ T1107] hsr_slave_0: left promiscuous mode
[  246.973942][ T1107] hsr_slave_1: left promiscuous mode
[  246.976356][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  246.980634][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_0
[  246.983969][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  246.986580][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_1
[  247.019593][ T1107] veth1_macvtap: left promiscuous mode
[  247.021156][ T1107] veth0_macvtap: left promiscuous mode
[  247.022962][ T1107] veth1_vlan: left promiscuous mode
[  247.024360][ T1107] veth0_vlan: left promiscuous mode
[  247.063955][   T39] kauditd_printk_skb: 12 callbacks suppressed
[  247.063965][   T39] audit: type=1400 audit(1726616215.457:920): avc:  denied  { ioctl } for  pid=9654 comm="syz.2.1256" path="socket:[31626]" dev="sockfs" ino=31626 ioctlcmd=0x8916 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  247.348474][ T5345] Bluetooth: hci1: command tx timeout
[  248.148721][ T1107] team0 (unregistering): Port device team_slave_1 removed
[  248.228447][ T5345] Bluetooth: hci0: command tx timeout
[  248.241019][ T1107] team0 (unregistering): Port device team_slave_0 removed
[  249.178073][   T39] audit: type=1400 audit(1726616217.577:921): avc:  denied  { write } for  pid=9664 comm="syz.1.1259" name="hpet" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  249.202658][ T9634] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.299006][ T9634] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.405668][ T9634] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.438688][ T5345] Bluetooth: hci1: command tx timeout
[  249.486727][ T9680] overlayfs: missing 'lowerdir'
[  249.529038][ T9634] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.571873][ T9680] syzkaller1: entered promiscuous mode
[  249.573898][ T9680] syzkaller1: entered allmulticast mode
[  249.733414][ T1107] bond0: left allmulticast mode
[  249.735325][ T1107] bond_slave_0: left allmulticast mode
[  249.736960][ T1107] bond_slave_1: left allmulticast mode
[  249.741788][ T1107] bridge0: port 3(bond0) entered disabled state
[  249.750435][ T1107] bridge_slave_1: left allmulticast mode
[  249.752076][ T1107] bridge_slave_1: left promiscuous mode
[  249.753747][ T1107] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.767290][ T1107] bridge_slave_0: left allmulticast mode
[  249.769668][ T1107] bridge_slave_0: left promiscuous mode
[  249.772608][ T1107] bridge0: port 1(bridge_slave_0) entered disabled state
[  250.299297][ T1107] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  250.301997][ T1107] bond_slave_0: left promiscuous mode
[  250.305435][ T1107] infiniband syz2: set down
[  250.312599][ T1107] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  250.315933][ T1107] bond_slave_1: left promiscuous mode
[  250.318605][ T5345] Bluetooth: hci0: command tx timeout
[  250.320948][ T1107] bond0 (unregistering): Released all slaves
[  250.442881][ T1107] tipc: Disabling bearer <udp:syz2>
[  250.447121][ T1107] tipc: Left network mode
[  250.466033][ T9608] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  250.472679][ T9608] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  250.477763][ T9608] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  250.497617][ T9608] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  250.705840][ T9683] block nbd2: shutting down sockets
[  250.902558][ T9634] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  250.962441][ T9634] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  250.973700][ T9634] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  251.025439][ T9634] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  251.082804][ T9695] 9pnet_fd: Insufficient options for proto=fd
[  251.100221][ T9695] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  251.146304][ T9608] 8021q: adding VLAN 0 to HW filter on device bond0
[  251.192936][ T9695] xt_CT: No such helper "snmp_trap"
[  251.197809][ T1107] hsr_slave_0: left promiscuous mode
[  251.216070][ T1107] hsr_slave_1: left promiscuous mode
[  251.225198][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  251.230135][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_0
[  251.233967][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  251.236595][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_1
[  251.241283][ T1107] batman_adv: batadv0: Removing interface: ipvlan1
[  251.302060][ T1107] veth1_macvtap: left promiscuous mode
[  251.304415][ T1107] veth0_macvtap: left promiscuous mode
[  251.306762][ T1107] veth1_vlan: left promiscuous mode
[  251.310405][ T1107] veth0_vlan: left promiscuous mode
[  251.509351][ T5345] Bluetooth: hci1: command tx timeout
[  252.398482][ T5345] Bluetooth: hci0: command tx timeout
[  252.746277][ T1107] team0 (unregistering): Port device team_slave_1 removed
[  252.849208][ T1107] team0 (unregistering): Port device team_slave_0 removed
[  253.292096][   T62] smc: removing ib device syz2
[  253.593389][ T5345] Bluetooth: hci1: command tx timeout
[  254.279772][ T9714] netlink: 'syz.2.1269': attribute type 10 has an invalid length.
[  254.283975][ T9608] 8021q: adding VLAN 0 to HW filter on device team0
[  254.302449][ T1105] bridge0: port 1(bridge_slave_0) entered blocking state
[  254.305201][ T1105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  254.326077][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[  254.329107][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[  254.409293][ T9634] 8021q: adding VLAN 0 to HW filter on device bond0
[  254.445626][ T9634] 8021q: adding VLAN 0 to HW filter on device team0
[  254.458021][ T1104] bridge0: port 1(bridge_slave_0) entered blocking state
[  254.460702][ T1104] bridge0: port 1(bridge_slave_0) entered forwarding state
[  254.473567][ T1105] bridge0: port 2(bridge_slave_1) entered blocking state
[  254.476450][ T1105] bridge0: port 2(bridge_slave_1) entered forwarding state
[  254.682646][ T9608] 8021q: adding VLAN 0 to HW filter on device batadv0
[  254.724702][ T9608] veth0_vlan: entered promiscuous mode
[  254.737206][ T9634] 8021q: adding VLAN 0 to HW filter on device batadv0
[  254.751563][ T9608] veth1_vlan: entered promiscuous mode
[  254.800164][ T9608] veth0_macvtap: entered promiscuous mode
[  254.810576][ T9608] veth1_macvtap: entered promiscuous mode
[  254.815081][ T9634] veth0_vlan: entered promiscuous mode
[  254.824426][ T9730] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1271'.
[  254.834304][ T9634] veth1_vlan: entered promiscuous mode
[  254.839750][ T9608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  254.842596][ T9608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  254.845708][ T9608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  254.849758][ T9608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  254.853339][ T9608] batman_adv: batadv0: Interface activated: batadv_slave_0
[  254.864354][ T9608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  254.867564][ T9608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  254.873225][ T9608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  254.875965][ T9608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  254.879866][ T9608] batman_adv: batadv0: Interface activated: batadv_slave_1
[  254.883994][ T9608] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  254.886387][ T9608] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  254.889315][ T9608] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  254.891580][ T9608] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  254.951045][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  254.953799][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  254.956845][ T9634] veth0_macvtap: entered promiscuous mode
[  254.976937][ T9634] veth1_macvtap: entered promiscuous mode
[  254.985433][ T1104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  254.987816][ T1104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  255.011874][ T9634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  255.015175][ T9634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.017887][ T9634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  255.021553][ T9634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.024973][ T9634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  255.029148][ T9634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.035543][ T9634] batman_adv: batadv0: Interface activated: batadv_slave_0
[  255.053230][ T9634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.056994][ T9634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.060836][ T9634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.064814][ T9634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.069094][ T9634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.073970][ T9634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.078732][ T9634] batman_adv: batadv0: Interface activated: batadv_slave_1
[  255.086389][ T9634] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  255.090435][ T9634] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  255.093400][ T9634] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  255.095905][ T9634] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  255.184945][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  255.189629][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  255.219260][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  255.221970][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  255.592288][ T1380] ieee802154 phy0 wpan0: encryption failed: -22
[  255.594673][ T1380] ieee802154 phy1 wpan1: encryption failed: -22
[  255.654004][ T5347] udevd[5347]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  256.433024][ T1107] IPVS: stop unused estimator thread 0...
[  256.720647][ T1107] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.745629][ T9753] syz.2.1275 (9753): drop_caches: 2
[  257.007893][ T5350] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  257.013957][ T5350] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  257.031164][ T5350] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  257.033936][ T5350] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  257.037392][ T5350] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  257.041904][ T5350] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  257.159529][ T9756] chnl_net:caif_netlink_parms(): no params data found
[  257.329566][ T9756] bridge0: port 1(bridge_slave_0) entered blocking state
[  257.333061][ T9756] bridge0: port 1(bridge_slave_0) entered disabled state
[  257.336143][ T9756] bridge_slave_0: entered allmulticast mode
[  257.345627][ T9756] bridge_slave_0: entered promiscuous mode
[  257.360732][ T9756] bridge0: port 2(bridge_slave_1) entered blocking state
[  257.363568][ T9756] bridge0: port 2(bridge_slave_1) entered disabled state
[  257.366324][ T9756] bridge_slave_1: entered allmulticast mode
[  257.377705][ T9756] bridge_slave_1: entered promiscuous mode
[  257.452201][ T9769] netlink: 'syz.2.1277': attribute type 1 has an invalid length.
[  257.455084][ T9769] netlink: 'syz.2.1277': attribute type 2 has an invalid length.
[  257.875654][ T9775] FAULT_INJECTION: forcing a failure.
[  257.875654][ T9775] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  257.880514][ T9775] CPU: 0 UID: 0 PID: 9775 Comm: syz.3.1279 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  257.884284][ T9775] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  257.888104][ T9775] Call Trace:
[  257.889479][ T9775]  <TASK>
[  257.890650][ T9775]  dump_stack_lvl+0x16c/0x1f0
[  257.892552][ T9775]  should_fail_ex+0x497/0x5b0
[  257.894444][ T9775]  _copy_from_user+0x30/0xf0
[  257.896230][ T9775]  kstrtouint_from_user+0xd7/0x1c0
[  257.898104][ T9775]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  257.900071][ T9775]  ? __pfx_lock_acquire+0x10/0x10
[  257.901825][ T9775]  proc_fail_nth_write+0x84/0x250
[  257.903581][ T9775]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  257.905490][ T9775]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  257.907463][ T9775]  vfs_write+0x28e/0x1140
[  257.909016][ T9775]  ? __fdget_pos+0xe8/0x170
[  257.910622][ T9775]  ? __pfx_vfs_write+0x10/0x10
[  257.912163][ T9775]  ? __pfx___mutex_lock+0x10/0x10
[  257.913485][ T9775]  ? __fget_files+0x244/0x3f0
[  257.914795][ T9775]  ksys_write+0x12f/0x260
[  257.916342][ T9775]  ? __pfx_ksys_write+0x10/0x10
[  257.918091][ T9775]  do_syscall_64+0xcd/0x250
[  257.918362][ T9546] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  257.919728][ T9775]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.919754][ T9775] RIP: 0033:0x7f07a9d7c9df
[  257.919771][ T9775] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  257.933045][ T9775] RSP: 002b:00007f07a97de030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  257.936525][ T9775] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f07a9d7c9df
[  257.939699][ T9775] RDX: 0000000000000001 RSI: 00007f07a97de0a0 RDI: 0000000000000005
[  257.943309][ T9775] RBP: 00007f07a97de090 R08: 0000000000000000 R09: 0000000000000000
[  257.946109][ T9775] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  257.948787][ T9775] R13: 0000000000000000 R14: 00007f07a9f36058 R15: 00007fff5eaeef88
[  257.951526][ T9775]  </TASK>
[  258.068397][ T9546] usb 6-1: Using ep0 maxpacket: 8
[  258.080363][ T9546] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  258.095260][ T9546] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  258.100401][ T9546] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  258.105654][ T9546] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  258.116103][ T9546] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  258.121589][ T9546] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  258.349951][ T9546] usb 6-1: usb_control_msg returned -32
[  258.352111][ T9546] usbtmc 6-1:16.0: can't read capabilities
[  258.736228][ T9756] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  258.756834][ T9756] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  258.798022][ T9778] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  258.805945][ T9778] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  258.825041][ T9756] team0: Port device team_slave_0 added
[  258.831244][ T9756] team0: Port device team_slave_1 added
[  258.912472][ T9783] 9pnet_fd: Insufficient options for proto=fd
[  258.917332][ T9756] batman_adv: batadv0: Adding interface: batadv_slave_0
[  258.919290][ T9756] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  258.927024][ T9756] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  258.932947][ T9756] batman_adv: batadv0: Adding interface: batadv_slave_1
[  258.935214][ T9756] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  258.940609][ T9783] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  258.942211][ T9756] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  259.003672][ T9783] xt_CT: No such helper "snmp_trap"
[  259.015288][ T9783] Bluetooth: MGMT ver 1.23
[  259.061111][ T1107] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.077215][ T9756] hsr_slave_0: entered promiscuous mode
[  259.080821][ T9756] hsr_slave_1: entered promiscuous mode
[  259.085627][ T9788] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1280'.
[  259.110619][ T5345] Bluetooth: hci0: command tx timeout
[  259.189898][ T1107] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.291480][ T1107] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.494639][ T1107] bridge_slave_1: left allmulticast mode
[  259.496782][ T1107] bridge_slave_1: left promiscuous mode
[  259.500598][ T1107] bridge0: port 2(bridge_slave_1) entered disabled state
[  259.509172][ T1107] bridge_slave_0: left allmulticast mode
[  259.511963][ T1107] bridge_slave_0: left promiscuous mode
[  259.514236][ T1107] bridge0: port 1(bridge_slave_0) entered disabled state
[  259.848472][ T9798] 9pnet_fd: Insufficient options for proto=fd
[  259.867667][ T9798] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  259.974923][ T9798] xt_CT: No such helper "snmp_trap"
[  260.056196][ T1107] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  260.067293][ T1107] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  260.081385][ T1107] bond0 (unregistering): Released all slaves
[  260.797447][ T9546] usb 7-1: new full-speed USB device number 14 using dummy_hcd
[  260.857815][ T1420] usb 6-1: USB disconnect, device number 16
[  260.858060][ T1107] hsr_slave_0: left promiscuous mode
[  260.869694][ T1107] hsr_slave_1: left promiscuous mode
[  260.873302][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  260.877007][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_0
[  260.879762][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  260.882115][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_1
[  260.915816][ T1107] veth1_macvtap: left promiscuous mode
[  260.917828][ T1107] veth0_macvtap: left promiscuous mode
[  260.924187][ T1107] veth1_vlan: left promiscuous mode
[  260.926227][ T1107] veth0_vlan: left promiscuous mode
[  260.950005][ T9546] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  260.952850][ T9546] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  260.956731][ T9546] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 64
[  260.960227][ T9546] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  260.962620][ T9546] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  260.979194][ T9804] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  260.982428][ T9546] hub 7-1:1.0: bad descriptor, ignoring hub
[  260.984090][ T9546] hub 7-1:1.0: probe with driver hub failed with error -5
[  260.987149][ T9546] cdc_wdm 7-1:1.0: skipping garbage
[  260.989305][ T9546] cdc_wdm 7-1:1.0: skipping garbage
[  260.991827][ T9546] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  260.993403][ T9546] cdc_wdm 7-1:1.0: Unknown control protocol
[  261.198353][ T5345] Bluetooth: hci0: command tx timeout
[  261.256150][ T9804] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  261.260001][ T9804] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  262.359559][ T1107] team0 (unregistering): Port device team_slave_1 removed
[  262.521426][ T1107] team0 (unregistering): Port device team_slave_0 removed
[  263.198961][ T9546] usb 7-1: USB disconnect, device number 14
[  263.274010][ T5345] Bluetooth: hci0: command tx timeout
[  263.686779][ T9824] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1286'.
[  263.732617][ T9756] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  263.746015][ T9756] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  263.769603][ T9756] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  263.791028][ T9756] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  263.885423][ T9837] 9pnet_fd: Insufficient options for proto=fd
[  263.906491][ T9837] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  264.042975][ T9837] xt_CT: No such helper "snmp_trap"
[  264.166117][ T9756] 8021q: adding VLAN 0 to HW filter on device bond0
[  264.190886][ T9756] 8021q: adding VLAN 0 to HW filter on device team0
[  264.201187][ T1105] bridge0: port 1(bridge_slave_0) entered blocking state
[  264.203744][ T1105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  264.212465][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[  264.214548][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[  264.347413][ T9846] 9pnet_fd: Insufficient options for proto=fd
[  264.371876][ T9846] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  264.432452][ T9846] xt_CT: No such helper "snmp_trap"
[  264.865222][ T9756] 8021q: adding VLAN 0 to HW filter on device batadv0
[  264.947567][ T9756] veth0_vlan: entered promiscuous mode
[  264.955374][ T9756] veth1_vlan: entered promiscuous mode
[  264.999880][ T9756] veth0_macvtap: entered promiscuous mode
[  265.007281][ T9756] veth1_macvtap: entered promiscuous mode
[  265.023122][ T9756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  265.026290][ T9756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  265.030517][ T9756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  265.033364][ T9756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  265.036162][ T9756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  265.046897][ T9756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  265.051202][ T9756] batman_adv: batadv0: Interface activated: batadv_slave_0
[  265.068653][ T9756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  265.071734][ T9756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  265.074848][ T9756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  265.078086][ T9756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  265.082240][ T9756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  265.085907][ T9756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  265.092228][ T9756] batman_adv: batadv0: Interface activated: batadv_slave_1
[  265.101347][ T9756] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  265.104741][ T9756] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  265.108078][ T9756] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  265.113138][ T9756] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  265.201491][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  265.204662][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  265.241410][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  265.247928][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  265.275604][ T9860] netlink: 'syz.1.1293': attribute type 10 has an invalid length.
[  265.348403][ T5345] Bluetooth: hci0: command tx timeout
[  265.668176][ T9865] 9pnet_fd: Insufficient options for proto=fd
[  265.688360][ T9865] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  265.735890][ T9865] xt_CT: No such helper "snmp_trap"
[  266.242524][ T9872] IPVS: Error joining to the multicast group
[  266.287693][   T39] audit: type=1400 audit(1726616234.677:922): avc:  denied  { bind } for  pid=9871 comm="syz.2.1298" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  266.708814][ T1107] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.814924][ T9879] FAULT_INJECTION: forcing a failure.
[  266.814924][ T9879] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  266.819907][ T9879] CPU: 3 UID: 0 PID: 9879 Comm: syz.2.1300 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  266.823749][ T9879] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  266.827413][ T9879] Call Trace:
[  266.828594][ T9879]  <TASK>
[  266.829651][ T9879]  dump_stack_lvl+0x16c/0x1f0
[  266.831376][ T9879]  should_fail_ex+0x497/0x5b0
[  266.833016][ T9879]  _copy_to_user+0x30/0xc0
[  266.834663][ T9879]  simple_read_from_buffer+0xd0/0x160
[  266.836699][ T9879]  proc_fail_nth_read+0x198/0x270
[  266.838745][ T9879]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  266.840558][ T9879]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  266.842493][ T9879]  vfs_read+0x1ce/0xbd0
[  266.843947][ T9879]  ? __fdget_pos+0xe8/0x170
[  266.845528][ T9879]  ? __pfx_vfs_read+0x10/0x10
[  266.847159][ T9879]  ? __pfx___mutex_lock+0x10/0x10
[  266.848908][ T9879]  ? __fget_files+0x244/0x3f0
[  266.850566][ T9879]  ksys_read+0x12f/0x260
[  266.852013][ T9879]  ? __pfx_ksys_read+0x10/0x10
[  266.853648][ T9879]  do_syscall_64+0xcd/0x250
[  266.855454][ T9879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.857639][ T9879] RIP: 0033:0x7f680557c93c
[  266.859201][ T9879] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  266.865714][ T9879] RSP: 002b:00007f68063c3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  266.868540][ T9879] RAX: ffffffffffffffda RBX: 00007f6805735f80 RCX: 00007f680557c93c
[  266.871242][ T9879] RDX: 000000000000000f RSI: 00007f68063c30a0 RDI: 0000000000000003
[  266.873923][ T9879] RBP: 00007f68063c3090 R08: 0000000000000000 R09: 0000000020000300
[  266.876604][ T9879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.879301][ T9879] R13: 0000000000000000 R14: 00007f6805735f80 R15: 00007ffeb03ddf48
[  266.882011][ T9879]  </TASK>
[  267.207504][ T9885] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1302'.
[  267.371041][ T5350] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  267.375426][ T5350] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  267.381243][ T5350] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  267.394986][ T5350] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  267.403162][ T5350] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  267.406981][ T5350] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  267.488412][   T10] usb 8-1: new full-speed USB device number 11 using dummy_hcd
[  267.488461][   T63] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  267.628413][   T10] usb 8-1: device descriptor read/64, error -71
[  267.638485][   T63] usb 6-1: Using ep0 maxpacket: 8
[  267.645047][   T63] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  267.651787][   T63] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  267.655005][   T63] usb 6-1: Product: syz
[  267.656606][   T63] usb 6-1: Manufacturer: syz
[  267.658644][   T63] usb 6-1: SerialNumber: syz
[  267.752178][ T1107] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.871825][ T9894] chnl_net:caif_netlink_parms(): no params data found
[  267.878335][   T10] usb 8-1: new full-speed USB device number 12 using dummy_hcd
[  267.911759][   T63] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 17 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  268.018375][   T10] usb 8-1: device descriptor read/64, error -71
[  268.061028][ T1107] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  268.086212][ T9894] bridge0: port 1(bridge_slave_0) entered blocking state
[  268.091011][ T9894] bridge0: port 1(bridge_slave_0) entered disabled state
[  268.093303][ T9894] bridge_slave_0: entered allmulticast mode
[  268.096389][ T9894] bridge_slave_0: entered promiscuous mode
[  268.100765][ T9894] bridge0: port 2(bridge_slave_1) entered blocking state
[  268.102918][ T9894] bridge0: port 2(bridge_slave_1) entered disabled state
[  268.105211][ T9894] bridge_slave_1: entered allmulticast mode
[  268.111754][ T9894] bridge_slave_1: entered promiscuous mode
[  268.112870][   T39] audit: type=1400 audit(1726616236.507:923): avc:  denied  { read write } for  pid=9889 comm="syz.1.1304" name="lp0" dev="devtmpfs" ino=2708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  268.126448][   T39] audit: type=1400 audit(1726616236.517:924): avc:  denied  { open } for  pid=9889 comm="syz.1.1304" path="/dev/usb/lp0" dev="devtmpfs" ino=2708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  268.137444][   T10] usb usb8-port1: attempt power cycle
[  268.179102][  T831] usb 6-1: USB disconnect, device number 17
[  268.188034][  T831] usblp0: removed
[  268.239812][ T1107] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  268.255487][ T9894] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  268.259432][ T9906] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  268.261545][ T9894] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  268.323116][ T9908] Bluetooth: MGMT ver 1.23
[  268.334454][ T9894] team0: Port device team_slave_0 added
[  268.345273][ T9894] team0: Port device team_slave_1 added
[  268.377607][ T9906] xt_CT: No such helper "snmp_trap"
[  268.406947][ T9894] batman_adv: batadv0: Adding interface: batadv_slave_0
[  268.409187][ T9894] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  268.417472][ T9894] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  268.422727][ T9894] batman_adv: batadv0: Adding interface: batadv_slave_1
[  268.425274][ T9894] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  268.435489][ T9894] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  268.488317][   T10] usb 8-1: new full-speed USB device number 13 using dummy_hcd
[  268.509491][   T10] usb 8-1: device descriptor read/8, error -71
[  268.540422][ T9894] hsr_slave_0: entered promiscuous mode
[  268.549635][ T9894] hsr_slave_1: entered promiscuous mode
[  268.552599][ T9894] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  268.555346][ T9894] Cannot create hsr debugfs directory
[  268.627068][ T1107] bridge_slave_1: left allmulticast mode
[  268.628843][ T1107] bridge_slave_1: left promiscuous mode
[  268.631052][ T1107] bridge0: port 2(bridge_slave_1) entered disabled state
[  268.641498][ T1107] bridge_slave_0: left allmulticast mode
[  268.643369][ T1107] bridge_slave_0: left promiscuous mode
[  268.645697][ T1107] bridge0: port 1(bridge_slave_0) entered disabled state
[  268.749335][   T10] usb 8-1: new full-speed USB device number 14 using dummy_hcd
[  268.790798][   T10] usb 8-1: device descriptor read/8, error -71
[  268.899972][   T10] usb usb8-port1: unable to enumerate USB device
[  269.206024][ T1107] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  269.214961][ T1107] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  269.223352][ T1107] bond0 (unregistering): Released all slaves
[  269.343978][ T9920] netlink: 'syz.2.1310': attribute type 10 has an invalid length.
[  269.509065][ T5350] Bluetooth: hci0: command tx timeout
[  269.587937][ T1107] hsr_slave_0: left promiscuous mode
[  269.591462][ T1107] hsr_slave_1: left promiscuous mode
[  269.594191][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  269.596331][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_0
[  269.601051][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  269.603442][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_1
[  269.651568][ T1107] veth1_macvtap: left promiscuous mode
[  269.653643][ T1107] veth0_macvtap: left promiscuous mode
[  269.656044][ T1107] veth1_vlan: left promiscuous mode
[  269.658318][ T1107] veth0_vlan: left promiscuous mode
[  270.687346][ T9940] FAULT_INJECTION: forcing a failure.
[  270.687346][ T9940] name failslab, interval 1, probability 0, space 0, times 0
[  270.691791][ T9940] CPU: 1 UID: 0 PID: 9940 Comm: syz.2.1313 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  270.694402][ T9940] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  270.697556][ T9940] Call Trace:
[  270.698692][ T9940]  <TASK>
[  270.699771][ T9940]  dump_stack_lvl+0x16c/0x1f0
[  270.699804][ T9940]  should_fail_ex+0x497/0x5b0
[  270.703682][ T9940]  ? fs_reclaim_acquire+0xae/0x160
[  270.705895][ T9940]  should_failslab+0xc2/0x120
[  270.707684][ T9940]  kmem_cache_alloc_node_noprof+0x71/0x310
[  270.709687][ T9940]  ? __alloc_skb+0x2b1/0x380
[  270.711285][ T9940]  __alloc_skb+0x2b1/0x380
[  270.712817][ T9940]  ? __pfx___alloc_skb+0x10/0x10
[  270.714517][ T9940]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  270.716640][ T9940]  netlink_alloc_large_skb+0x69/0x130
[  270.718782][ T9940]  netlink_sendmsg+0x689/0xd70
[  270.720761][ T9940]  ? __pfx_netlink_sendmsg+0x10/0x10
[  270.722981][ T9940]  ? __import_iovec+0x1fd/0x6e0
[  270.724787][ T9940]  ____sys_sendmsg+0xaaf/0xc90
[  270.726582][ T9940]  ? copy_msghdr_from_user+0x10b/0x160
[  270.728615][ T9940]  ? __pfx_____sys_sendmsg+0x10/0x10
[  270.730486][ T9940]  ? __pfx___lock_acquire+0x10/0x10
[  270.732353][ T9940]  ___sys_sendmsg+0x135/0x1e0
[  270.734050][ T9940]  ? __pfx____sys_sendmsg+0x10/0x10
[  270.735908][ T9940]  ? find_held_lock+0x2d/0x110
[  270.737613][ T9940]  ? ksys_write+0x21c/0x260
[  270.739302][ T9940]  ? __fget_light+0x173/0x210
[  270.741060][ T9940]  __sys_sendmsg+0x117/0x1f0
[  270.742826][ T9940]  ? __pfx___sys_sendmsg+0x10/0x10
[  270.744872][ T9940]  do_syscall_64+0xcd/0x250
[  270.746644][ T9940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.748893][ T9940] RIP: 0033:0x7f680557def9
[  270.750516][ T9940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  270.757683][ T9940] RSP: 002b:00007f68063c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  270.760706][ T9940] RAX: ffffffffffffffda RBX: 00007f6805735f80 RCX: 00007f680557def9
[  270.763656][ T9940] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  270.766583][ T9940] RBP: 00007f68063c3090 R08: 0000000000000000 R09: 0000000000000000
[  270.769465][ T9940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  270.772213][ T9940] R13: 0000000000000000 R14: 00007f6805735f80 R15: 00007ffeb03ddf48
[  270.774919][ T9940]  </TASK>
[  271.588642][ T5350] Bluetooth: hci0: command tx timeout
[  271.609652][ T1107] team0 (unregistering): Port device team_slave_1 removed
[  271.786258][ T1107] team0 (unregistering): Port device team_slave_0 removed
[  272.920016][ T9943] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  272.932928][ T9943] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  273.445978][ T9894] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  273.472240][ T9894] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  273.490013][ T9894] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  273.501389][ T9894] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  273.633950][ T9894] 8021q: adding VLAN 0 to HW filter on device bond0
[  273.675569][ T5350] Bluetooth: hci0: command tx timeout
[  273.703054][ T9894] 8021q: adding VLAN 0 to HW filter on device team0
[  273.711376][ T1104] bridge0: port 1(bridge_slave_0) entered blocking state
[  273.713341][ T1104] bridge0: port 1(bridge_slave_0) entered forwarding state
[  273.724225][   T74] bridge0: port 2(bridge_slave_1) entered blocking state
[  273.726824][   T74] bridge0: port 2(bridge_slave_1) entered forwarding state
[  274.050111][ T9894] 8021q: adding VLAN 0 to HW filter on device batadv0
[  274.103072][T10005] 9pnet_fd: Insufficient options for proto=fd
[  274.135514][T10005] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  274.215447][ T9894] veth0_vlan: entered promiscuous mode
[  274.237816][ T9894] veth1_vlan: entered promiscuous mode
[  274.259198][T10006] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1327'.
[  274.262314][T10006] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1327'.
[  274.283675][ T9894] veth0_macvtap: entered promiscuous mode
[  274.299123][ T9894] veth1_macvtap: entered promiscuous mode
[  274.345951][ T9894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  274.350048][ T9894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  274.354256][ T9894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  274.357952][ T9894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  274.363415][ T9894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  274.367340][ T9894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  274.374805][ T9894] batman_adv: batadv0: Interface activated: batadv_slave_0
[  274.387277][ T9894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  274.394189][ T9894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  274.397665][ T9894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  274.401440][ T9894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  274.404925][ T9894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  274.408749][ T9894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  274.414931][ T9894] batman_adv: batadv0: Interface activated: batadv_slave_1
[  274.433842][ T9894] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  274.436865][ T9894] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  274.445931][ T9894] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  274.450633][ T9894] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  274.523490][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  274.532559][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  274.581092][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  274.583557][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  274.885806][T10022] FAULT_INJECTION: forcing a failure.
[  274.885806][T10022] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  274.893771][T10022] CPU: 3 UID: 0 PID: 10022 Comm: syz.3.1329 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  274.896528][T10022] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  274.900191][T10022] Call Trace:
[  274.901445][T10022]  <TASK>
[  274.902577][T10022]  dump_stack_lvl+0x16c/0x1f0
[  274.903944][T10022]  should_fail_ex+0x497/0x5b0
[  274.905292][T10022]  _copy_to_user+0x30/0xc0
[  274.906716][T10022]  simple_read_from_buffer+0xd0/0x160
[  274.908695][T10022]  proc_fail_nth_read+0x198/0x270
[  274.910574][T10022]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  274.912539][T10022]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  274.914229][T10022]  vfs_read+0x1ce/0xbd0
[  274.915648][T10022]  ? snd_seq_ioctl+0x2b1/0x3f0
[  274.917261][T10022]  ? __fdget_pos+0xe8/0x170
[  274.918683][T10022]  ? __pfx_vfs_read+0x10/0x10
[  274.920298][T10022]  ? __pfx___mutex_lock+0x10/0x10
[  274.922229][T10022]  ? __fget_files+0x244/0x3f0
[  274.924171][T10022]  ksys_read+0x12f/0x260
[  274.925737][T10022]  ? __pfx_ksys_read+0x10/0x10
[  274.927505][T10022]  do_syscall_64+0xcd/0x250
[  274.929170][T10022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.931326][T10022] RIP: 0033:0x7f07a9d7c93c
[  274.932938][T10022] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  274.939247][T10022] RSP: 002b:00007f07a97ff030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  274.941534][T10022] RAX: ffffffffffffffda RBX: 00007f07a9f35f80 RCX: 00007f07a9d7c93c
[  274.944250][T10022] RDX: 000000000000000f RSI: 00007f07a97ff0a0 RDI: 0000000000000004
[  274.947142][T10022] RBP: 00007f07a97ff090 R08: 0000000000000000 R09: 0000000000000000
[  274.949949][T10022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  274.952742][T10022] R13: 0000000000000000 R14: 00007f07a9f35f80 R15: 00007fff5eaeef88
[  274.955380][T10022]  </TASK>
[  275.836657][T10039] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1333'.
[  275.940547][ T1104] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.792590][ T5345] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  276.797402][ T5345] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  276.803179][ T5345] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  276.807906][ T5345] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  276.813303][ T5345] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  276.816247][ T5345] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  277.011644][T10047] chnl_net:caif_netlink_parms(): no params data found
[  277.391074][ T1104] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.405318][T10047] bridge0: port 1(bridge_slave_0) entered blocking state
[  277.408407][T10047] bridge0: port 1(bridge_slave_0) entered disabled state
[  277.410538][T10047] bridge_slave_0: entered allmulticast mode
[  277.412869][T10047] bridge_slave_0: entered promiscuous mode
[  277.419140][T10047] bridge0: port 2(bridge_slave_1) entered blocking state
[  277.422186][T10047] bridge0: port 2(bridge_slave_1) entered disabled state
[  277.425155][T10047] bridge_slave_1: entered allmulticast mode
[  277.431172][T10047] bridge_slave_1: entered promiscuous mode
[  277.434128][T10059] fuse: Unknown parameter 'ro tmode'
[  277.512198][T10047] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  277.517274][T10047] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  277.583022][ T1104] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.621978][   T39] audit: type=1400 audit(1726616246.017:925): avc:  denied  { setattr } for  pid=10060 comm="syz.1.1337" name="dsp" dev="devtmpfs" ino=1125 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1
[  277.667599][T10047] team0: Port device team_slave_0 added
[  277.705581][ T1104] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.724270][T10047] team0: Port device team_slave_1 added
[  277.765916][T10047] batman_adv: batadv0: Adding interface: batadv_slave_0
[  277.767988][T10047] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  277.778777][T10047] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  277.782515][   T39] audit: type=1400 audit(1726616246.177:926): avc:  denied  { append } for  pid=10069 comm="syz.3.1339" name="card2" dev="devtmpfs" ino=641 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  277.792824][T10047] batman_adv: batadv0: Adding interface: batadv_slave_1
[  277.795481][T10047] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  277.804508][T10047] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  277.888997][T10047] hsr_slave_0: entered promiscuous mode
[  277.892049][T10047] hsr_slave_1: entered promiscuous mode
[  278.020787][T10072] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1340'.
[  278.025973][T10072] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1340'.
[  278.073430][T10072] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1340'.
[  278.077112][T10072] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1340'.
[  278.080894][T10072] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1340'.
[  278.106456][T10072] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1340'.
[  278.129858][ T1104] bridge_slave_1: left allmulticast mode
[  278.131925][ T1104] bridge_slave_1: left promiscuous mode
[  278.134060][ T1104] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.140251][ T1104] bridge_slave_0: left allmulticast mode
[  278.143712][ T1104] bridge_slave_0: left promiscuous mode
[  278.147588][ T1104] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.472472][T10085] 9pnet_fd: Insufficient options for proto=fd
[  278.481179][T10085] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  278.541491][T10088] Bluetooth: MGMT ver 1.23
[  278.543276][T10085] xt_CT: No such helper "snmp_trap"
[  278.649955][ T1104] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  278.665528][ T1104] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  278.670751][ T1104] bond0 (unregistering): Released all slaves
[  278.873406][ T5345] Bluetooth: hci0: command tx timeout
[  279.095162][ T1104] hsr_slave_0: left promiscuous mode
[  279.099471][ T1104] hsr_slave_1: left promiscuous mode
[  279.117418][ T1104] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  279.128384][ T1104] batman_adv: batadv0: Removing interface: batadv_slave_0
[  279.131789][ T1104] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  279.134283][ T1104] batman_adv: batadv0: Removing interface: batadv_slave_1
[  279.164173][ T1104] veth1_macvtap: left promiscuous mode
[  279.166130][ T1104] veth0_macvtap: left promiscuous mode
[  279.169229][ T1104] veth1_vlan: left promiscuous mode
[  279.171258][ T1104] veth0_vlan: left promiscuous mode
[  280.375064][T10112] FAULT_INJECTION: forcing a failure.
[  280.375064][T10112] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  280.379747][T10112] CPU: 0 UID: 0 PID: 10112 Comm: syz.1.1348 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  280.383477][T10112] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  280.386951][T10112] Call Trace:
[  280.388109][T10112]  <TASK>
[  280.389068][T10112]  dump_stack_lvl+0x16c/0x1f0
[  280.390628][T10112]  should_fail_ex+0x497/0x5b0
[  280.392256][T10112]  _copy_from_iter+0x2a1/0x1550
[  280.393933][T10112]  ? __alloc_skb+0x1fe/0x380
[  280.395761][T10112]  ? __pfx__copy_from_iter+0x10/0x10
[  280.397815][T10112]  ? __virt_addr_valid+0x5e/0x590
[  280.399569][T10112]  ? __phys_addr_symbol+0x30/0x80
[  280.401227][T10112]  ? __check_object_size+0x497/0x720
[  280.402937][T10112]  netlink_sendmsg+0x813/0xd70
[  280.404524][T10112]  ? __pfx_netlink_sendmsg+0x10/0x10
[  280.406273][T10112]  ? __import_iovec+0x1fd/0x6e0
[  280.407983][T10112]  ____sys_sendmsg+0xaaf/0xc90
[  280.409701][T10112]  ? copy_msghdr_from_user+0x10b/0x160
[  280.411570][T10112]  ? __pfx_____sys_sendmsg+0x10/0x10
[  280.413795][T10112]  ? __pfx___lock_acquire+0x10/0x10
[  280.415585][T10112]  ___sys_sendmsg+0x135/0x1e0
[  280.417242][T10112]  ? __pfx____sys_sendmsg+0x10/0x10
[  280.418992][T10112]  ? find_held_lock+0x2d/0x110
[  280.420557][T10112]  ? ksys_write+0x21c/0x260
[  280.421813][T10112]  ? __fget_light+0x173/0x210
[  280.423025][T10112]  __sys_sendmsg+0x117/0x1f0
[  280.424404][T10112]  ? __pfx___sys_sendmsg+0x10/0x10
[  280.425980][T10112]  do_syscall_64+0xcd/0x250
[  280.427151][T10112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.428885][T10112] RIP: 0033:0x7f8c2cd7def9
[  280.430390][T10112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.437199][T10112] RSP: 002b:00007f8c2db11038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  280.440327][T10112] RAX: ffffffffffffffda RBX: 00007f8c2cf35f80 RCX: 00007f8c2cd7def9
[  280.443013][T10112] RDX: 0000000000010804 RSI: 0000000020000200 RDI: 0000000000000004
[  280.445641][T10112] RBP: 00007f8c2db11090 R08: 0000000000000000 R09: 0000000000000000
[  280.447775][T10112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.450055][T10112] R13: 0000000000000000 R14: 00007f8c2cf35f80 R15: 00007ffde960d0c8
[  280.452577][T10112]  </TASK>
[  280.750489][ T1104] team0 (unregistering): Port device team_slave_1 removed
[  280.896426][ T1104] team0 (unregistering): Port device team_slave_0 removed
[  280.958413][ T5345] Bluetooth: hci0: command tx timeout
[  281.377582][   T39] audit: type=1400 audit(1726616249.777:927): avc:  denied  { write } for  pid=10122 comm="syz.2.1351" name="btrfs-control" dev="devtmpfs" ino=1151 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  281.971796][T10120] netlink: 'syz.1.1350': attribute type 12 has an invalid length.
[  282.176470][   T39] audit: type=1400 audit(1726616250.567:928): avc:  denied  { watch watch_reads } for  pid=10137 comm="syz.2.1356" path="/proc/1064" dev="proc" ino=35604 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  282.214692][   T39] audit: type=1400 audit(1726616250.607:929): avc:  denied  { connect } for  pid=10137 comm="syz.2.1356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  282.377651][T10047] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  282.382462][T10047] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  282.386520][T10047] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  282.395829][T10047] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  282.474216][T10047] 8021q: adding VLAN 0 to HW filter on device bond0
[  282.514839][T10047] 8021q: adding VLAN 0 to HW filter on device team0
[  282.536761][ T1105] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.539869][ T1105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  282.585604][ T1105] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.588384][ T1105] bridge0: port 2(bridge_slave_1) entered forwarding state
[  282.966908][T10047] 8021q: adding VLAN 0 to HW filter on device batadv0
[  283.001681][T10171] 9pnet_fd: Insufficient options for proto=fd
[  283.029034][ T5345] Bluetooth: hci0: command tx timeout
[  283.041419][T10171] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  283.080598][T10047] veth0_vlan: entered promiscuous mode
[  283.088470][T10047] veth1_vlan: entered promiscuous mode
[  283.108882][T10171] xt_CT: No such helper "snmp_trap"
[  283.108938][T10047] veth0_macvtap: entered promiscuous mode
[  283.126537][T10047] veth1_macvtap: entered promiscuous mode
[  283.152877][T10047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.160018][T10047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.164112][T10047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.167902][T10047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.188447][T10047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.192472][T10047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.209586][T10047] batman_adv: batadv0: Interface activated: batadv_slave_0
[  283.218082][T10047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.223087][T10047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.227298][T10047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.231774][T10047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.234421][T10047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.237270][T10047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.245456][T10047] batman_adv: batadv0: Interface activated: batadv_slave_1
[  283.261688][T10047] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  283.265229][T10047] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  283.268863][T10047] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  283.272436][T10047] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  283.350232][T10178] netlink: 'syz.1.1360': attribute type 10 has an invalid length.
[  283.357169][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.366051][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.396748][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.399917][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.884427][T10182] FAULT_INJECTION: forcing a failure.
[  283.884427][T10182] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  283.889201][T10182] CPU: 2 UID: 0 PID: 10182 Comm: syz.3.1361 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  283.892821][T10182] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  283.896413][T10182] Call Trace:
[  283.897573][T10182]  <TASK>
[  283.898618][T10182]  dump_stack_lvl+0x16c/0x1f0
[  283.900246][T10182]  should_fail_ex+0x497/0x5b0
[  283.901881][T10182]  strncpy_from_user+0x38/0x320
[  283.903615][T10182]  getname_flags.part.0+0x8f/0x550
[  283.905398][T10182]  getname_flags+0x93/0xf0
[  283.906960][T10182]  user_path_at+0x24/0x60
[  283.908459][T10182]  path_listxattr+0x99/0x160
[  283.909819][T10182]  ? ksys_write+0x1ab/0x260
[  283.911362][T10182]  ? __pfx_path_listxattr+0x10/0x10
[  283.913145][T10182]  do_syscall_64+0xcd/0x250
[  283.914737][T10182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.916826][T10182] RIP: 0033:0x7f07a9d7def9
[  283.918408][T10182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  283.924911][T10182] RSP: 002b:00007f07a97de038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c3
[  283.927972][T10182] RAX: ffffffffffffffda RBX: 00007f07a9f36058 RCX: 00007f07a9d7def9
[  283.930829][T10182] RDX: ffffffffffffffb1 RSI: 0000000000000000 RDI: 0000000020000280
[  283.933804][T10182] RBP: 00007f07a97de090 R08: 0000000000000000 R09: 0000000000000000
[  283.936564][T10182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  283.938745][T10182] R13: 0000000000000000 R14: 00007f07a9f36058 R15: 00007fff5eaeef88
[  283.940899][T10182]  </TASK>
[  283.995907][T10186] FAULT_INJECTION: forcing a failure.
[  283.995907][T10186] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  284.001865][T10186] CPU: 2 UID: 0 PID: 10186 Comm: syz.3.1363 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  284.005766][T10186] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  284.010387][T10186] Call Trace:
[  284.011744][T10186]  <TASK>
[  284.012801][T10186]  dump_stack_lvl+0x16c/0x1f0
[  284.014471][T10186]  should_fail_ex+0x497/0x5b0
[  284.015987][T10186]  _copy_from_iter+0x2a1/0x1550
[  284.017886][T10186]  ? __alloc_skb+0x1fe/0x380
[  284.019517][T10186]  ? __pfx__copy_from_iter+0x10/0x10
[  284.021363][T10186]  ? __virt_addr_valid+0x5e/0x590
[  284.023165][T10186]  ? __phys_addr_symbol+0x30/0x80
[  284.024918][T10186]  ? __check_object_size+0x497/0x720
[  284.026758][T10186]  netlink_sendmsg+0x813/0xd70
[  284.028348][T10186]  ? __pfx_netlink_sendmsg+0x10/0x10
[  284.030270][T10186]  ? __import_iovec+0x1fd/0x6e0
[  284.032061][T10186]  ____sys_sendmsg+0xaaf/0xc90
[  284.033812][T10186]  ? copy_msghdr_from_user+0x10b/0x160
[  284.035772][T10186]  ? __pfx_____sys_sendmsg+0x10/0x10
[  284.037611][T10186]  ? __pfx___lock_acquire+0x10/0x10
[  284.039420][T10186]  ___sys_sendmsg+0x135/0x1e0
[  284.041037][T10186]  ? __pfx____sys_sendmsg+0x10/0x10
[  284.042940][T10186]  ? find_held_lock+0x2d/0x110
[  284.044678][T10186]  ? ksys_write+0x21c/0x260
[  284.046345][T10186]  ? __fget_light+0x173/0x210
[  284.047996][T10186]  __sys_sendmsg+0x117/0x1f0
[  284.049610][T10186]  ? __pfx___sys_sendmsg+0x10/0x10
[  284.051405][T10186]  do_syscall_64+0xcd/0x250
[  284.053033][T10186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.055243][T10186] RIP: 0033:0x7f07a9d7def9
[  284.056908][T10186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.063841][T10186] RSP: 002b:00007f07a97ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  284.066826][T10186] RAX: ffffffffffffffda RBX: 00007f07a9f35f80 RCX: 00007f07a9d7def9
[  284.069768][T10186] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[  284.072308][T10186] RBP: 00007f07a97ff090 R08: 0000000000000000 R09: 0000000000000000
[  284.074404][T10186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.076563][T10186] R13: 0000000000000000 R14: 00007f07a9f35f80 R15: 00007fff5eaeef88
[  284.078916][T10186]  </TASK>
[  284.180114][T10197] netlink: 'syz.3.1365': attribute type 12 has an invalid length.
[  284.186408][   T39] audit: type=1400 audit(1726616252.577:930): avc:  denied  { setopt } for  pid=10195 comm="syz.1.1366" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  285.087376][   T39] audit: type=1400 audit(1726616253.477:931): avc:  denied  { map } for  pid=10205 comm="syz.2.1370" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  285.413555][ T1105] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.540393][T10214] netlink: 'syz.3.1372': attribute type 10 has an invalid length.
[  285.542879][T10214] ipvlan1: entered promiscuous mode
[  285.546154][T10214] batman_adv: batadv0: Adding interface: ipvlan1
[  285.551146][T10214] batman_adv: batadv0: The MTU of interface ipvlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  285.560391][T10214] batman_adv: batadv0: Not using interface ipvlan1 (retrying later): interface not active
[  285.988347][ T5345] Bluetooth: hci1: command tx timeout
[  286.332261][T10221] tracefs: Unknown parameter 'b±Fs	µÚì'
[  286.729047][ T5350] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  286.736192][ T5350] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  286.742505][ T5350] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  286.755834][   T39] audit: type=1400 audit(1726616255.147:932): avc:  denied  { read } for  pid=10232 comm="syz.3.1379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  286.769338][ T5350] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  286.773023][ T5350] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  286.776712][ T5350] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  287.123388][T10242] chnl_net:caif_netlink_parms(): no params data found
[  287.238122][T10242] bridge0: port 1(bridge_slave_0) entered blocking state
[  287.246524][T10242] bridge0: port 1(bridge_slave_0) entered disabled state
[  287.248847][T10242] bridge_slave_0: entered allmulticast mode
[  287.253978][T10242] bridge_slave_0: entered promiscuous mode
[  287.258732][T10242] bridge0: port 2(bridge_slave_1) entered blocking state
[  287.261598][T10242] bridge0: port 2(bridge_slave_1) entered disabled state
[  287.265113][T10242] bridge_slave_1: entered allmulticast mode
[  287.280964][T10242] bridge_slave_1: entered promiscuous mode
[  287.355253][T10242] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  287.370100][T10242] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  287.500044][ T1105] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.521241][T10242] team0: Port device team_slave_0 added
[  287.529833][T10242] team0: Port device team_slave_1 added
[  287.593612][ T1105] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.617569][T10242] batman_adv: batadv0: Adding interface: batadv_slave_0
[  287.620755][T10242] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  287.633970][T10242] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  287.639868][T10242] batman_adv: batadv0: Adding interface: batadv_slave_1
[  287.642308][T10242] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  287.653965][T10242] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  287.691978][ T1105] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.761364][T10268] netlink: 'syz.1.1383': attribute type 10 has an invalid length.
[  287.823461][T10242] hsr_slave_0: entered promiscuous mode
[  287.826038][T10242] hsr_slave_1: entered promiscuous mode
[  287.829200][T10242] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  287.831784][T10242] Cannot create hsr debugfs directory
[  287.949326][ T1105] bridge_slave_1: left allmulticast mode
[  287.951022][ T1105] bridge_slave_1: left promiscuous mode
[  287.952971][ T1105] bridge0: port 2(bridge_slave_1) entered disabled state
[  287.963897][ T1105] bridge_slave_0: left allmulticast mode
[  287.965520][ T1105] bridge_slave_0: left promiscuous mode
[  287.967118][ T1105] bridge0: port 1(bridge_slave_0) entered disabled state
[  288.411642][ T1105] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  288.420239][ T1105] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  288.425641][ T1105] bond0 (unregistering): Released all slaves
[  288.805516][ T1105] hsr_slave_0: left promiscuous mode
[  288.809089][ T1105] hsr_slave_1: left promiscuous mode
[  288.817176][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  288.820741][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_0
[  288.824358][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  288.827146][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_1
[  288.868595][ T5345] Bluetooth: hci0: command tx timeout
[  288.886919][ T1105] veth1_macvtap: left promiscuous mode
[  288.891783][ T1105] veth0_macvtap: left promiscuous mode
[  288.894099][ T1105] veth1_vlan: left promiscuous mode
[  288.896203][ T1105] veth0_vlan: left promiscuous mode
[  290.387244][ T1105] team0 (unregistering): Port device team_slave_1 removed
[  290.498159][ T1105] team0 (unregistering): Port device team_slave_0 removed
[  290.948384][ T5345] Bluetooth: hci0: command tx timeout
[  291.717270][T10287] netlink: 'syz.1.1389': attribute type 12 has an invalid length.
[  292.154066][T10242] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  292.512623][T10242] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  292.570458][T10242] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  292.607780][T10242] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  292.866185][T10242] 8021q: adding VLAN 0 to HW filter on device bond0
[  292.886593][T10242] 8021q: adding VLAN 0 to HW filter on device team0
[  292.893860][ T1107] bridge0: port 1(bridge_slave_0) entered blocking state
[  292.896718][ T1107] bridge0: port 1(bridge_slave_0) entered forwarding state
[  292.911102][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[  292.913867][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[  293.028542][ T5345] Bluetooth: hci0: command tx timeout
[  293.061182][T10242] 8021q: adding VLAN 0 to HW filter on device batadv0
[  293.106683][T10242] veth0_vlan: entered promiscuous mode
[  293.118460][T10242] veth1_vlan: entered promiscuous mode
[  293.152275][T10242] veth0_macvtap: entered promiscuous mode
[  293.158134][T10242] veth1_macvtap: entered promiscuous mode
[  293.186004][T10242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  293.190675][T10242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.193894][T10242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  293.197757][T10242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.201087][T10242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  293.204146][T10242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.209387][T10242] batman_adv: batadv0: Interface activated: batadv_slave_0
[  293.246570][T10242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  293.250563][T10242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.253965][T10242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  293.257636][T10242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.261756][T10242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  293.265428][T10242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.276811][T10242] batman_adv: batadv0: Interface activated: batadv_slave_1
[  293.283265][T10242] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  293.285775][T10242] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  293.289828][T10242] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  293.292994][T10242] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  293.357449][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  293.360515][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  293.393587][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  293.396214][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  293.986147][T10343] FAULT_INJECTION: forcing a failure.
[  293.986147][T10343] name failslab, interval 1, probability 0, space 0, times 0
[  293.991106][T10343] CPU: 2 UID: 0 PID: 10343 Comm: syz.3.1399 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  293.994009][T10343] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  293.996943][T10343] Call Trace:
[  293.997839][T10343]  <TASK>
[  293.998720][T10343]  dump_stack_lvl+0x16c/0x1f0
[  294.000363][T10343]  should_fail_ex+0x497/0x5b0
[  294.001683][T10343]  ? fs_reclaim_acquire+0xae/0x160
[  294.003385][T10343]  should_failslab+0xc2/0x120
[  294.004806][T10343]  __kmalloc_noprof+0xcb/0x400
[  294.006253][T10343]  ? d_absolute_path+0x137/0x1b0
[  294.007609][T10343]  tomoyo_encode2+0x100/0x3e0
[  294.009026][T10343]  tomoyo_encode+0x29/0x50
[  294.010473][T10343]  tomoyo_realpath_from_path+0x19d/0x720
[  294.012300][T10343]  tomoyo_path_number_perm+0x245/0x590
[  294.014111][T10343]  ? tomoyo_path_number_perm+0x232/0x590
[  294.016064][T10343]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  294.017997][T10343]  ? __fget_files+0x244/0x3f0
[  294.019662][T10343]  security_file_ioctl+0x9b/0x240
[  294.021427][T10343]  __x64_sys_ioctl+0xbb/0x210
[  294.023111][T10343]  do_syscall_64+0xcd/0x250
[  294.024718][T10343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.026848][T10343] RIP: 0033:0x7f07a9d7def9
[  294.028396][T10343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.034963][T10343] RSP: 002b:00007f07a97ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  294.038066][T10343] RAX: ffffffffffffffda RBX: 00007f07a9f35f80 RCX: 00007f07a9d7def9
[  294.040993][T10343] RDX: 0000000020000100 RSI: 00000000c0a85322 RDI: 0000000000000004
[  294.045819][T10343] RBP: 00007f07a97ff090 R08: 0000000000000000 R09: 0000000000000000
[  294.045847][T10343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  294.051398][T10343] R13: 0000000000000000 R14: 00007f07a9f35f80 R15: 00007fff5eaeef88
[  294.051417][T10343]  </TASK>
[  294.056586][T10343] ERROR: Out of memory at tomoyo_realpath_from_path.
[  294.061016][ T5345] Bluetooth: hci1: Unknown advertising packet type: 0x73
[  294.061147][ T5345] Bluetooth: hci1: adv larger than maximum supported
[  294.065367][ T5345] Bluetooth: hci1: Unknown advertising packet type: 0x20
[  294.068044][ T5345] Bluetooth: hci1: Malformed LE Event: 0x0d
[  294.078625][  T831] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  294.192217][   T39] audit: type=1400 audit(1726616262.587:933): avc:  denied  { read } for  pid=10345 comm="syz.3.1400" name="usbmon0" dev="devtmpfs" ino=723 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  294.198921][   T39] audit: type=1400 audit(1726616262.587:934): avc:  denied  { open } for  pid=10345 comm="syz.3.1400" path="/dev/usbmon0" dev="devtmpfs" ino=723 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  294.206885][   T39] audit: type=1400 audit(1726616262.597:935): avc:  denied  { map } for  pid=10345 comm="syz.3.1400" path="/dev/usbmon0" dev="devtmpfs" ino=723 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  294.218381][  T831] usb 6-1: device descriptor read/64, error -71
[  294.254853][   T39] audit: type=1400 audit(1726616262.647:936): avc:  denied  { map } for  pid=10348 comm="syz.2.1401" path="socket:[33539]" dev="sockfs" ino=33539 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  294.264041][   T39] audit: type=1400 audit(1726616262.647:937): avc:  denied  { read } for  pid=10348 comm="syz.2.1401" path="socket:[33539]" dev="sockfs" ino=33539 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  294.324387][   T39] audit: type=1400 audit(1726616262.717:938): avc:  denied  { mount } for  pid=10351 comm="syz.3.1402" name="/" dev="pstore" ino=5533 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  294.409910][T10356] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1404'.
[  294.413085][T10356] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1404'.
[  294.458429][  T831] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  294.462968][T10358] syz.2.1405 (10358) used greatest stack depth: 20688 bytes left
[  294.509481][T10359] netlink: 'syz.3.1404': attribute type 1 has an invalid length.
[  294.512377][T10359] netlink: 512 bytes leftover after parsing attributes in process `syz.3.1404'.
[  294.568390][T10362] RDS: rds_bind could not find a transport for 2001::1, load rds_tcp or rds_rdma?
[  294.608392][  T831] usb 6-1: device descriptor read/64, error -71
[  294.718660][  T831] usb usb6-port1: attempt power cycle
[  294.820884][T10365] 9pnet_fd: Insufficient options for proto=fd
[  294.855580][T10365] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  294.906089][T10365] xt_CT: No such helper "snmp_trap"
[  294.930673][T10369] 9pnet_fd: Insufficient options for proto=fd
[  294.969095][T10369] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  295.022194][T10369] xt_CT: No such helper "snmp_trap"
[  295.068394][  T831] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  295.100763][  T831] usb 6-1: device descriptor read/8, error -71
[  295.418392][  T831] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  295.442181][  T831] usb 6-1: device descriptor read/8, error -71
[  295.467876][ T1104] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.559827][  T831] usb usb6-port1: unable to enumerate USB device
[  296.408420][   T39] audit: type=1400 audit(1726616264.797:939): avc:  denied  { ioctl } for  pid=10374 comm="syz.3.1410" path="socket:[38547]" dev="sockfs" ino=38547 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  296.446912][T10381] pim6reg1: entered promiscuous mode
[  296.448735][T10381] pim6reg1: entered allmulticast mode
[  296.459198][T10378] can: request_module (can-proto-0) failed.
[  296.576834][ T5350] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  296.585539][ T5350] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  296.591790][ T5350] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  296.602432][ T5350] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  296.607822][ T5350] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  296.612933][ T5350] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  296.767359][T10384] chnl_net:caif_netlink_parms(): no params data found
[  296.830940][ T1104] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.935986][ T1104] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  297.093565][ T1104] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  297.126934][T10384] bridge0: port 1(bridge_slave_0) entered blocking state
[  297.129102][T10384] bridge0: port 1(bridge_slave_0) entered disabled state
[  297.130999][T10384] bridge_slave_0: entered allmulticast mode
[  297.133334][T10384] bridge_slave_0: entered promiscuous mode
[  297.176245][   T39] audit: type=1326 audit(1726616265.567:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10397 comm="syz.3.1412" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f07a9d7def9 code=0x0
[  297.206205][T10384] bridge0: port 2(bridge_slave_1) entered blocking state
[  297.209546][T10384] bridge0: port 2(bridge_slave_1) entered disabled state
[  297.212146][T10384] bridge_slave_1: entered allmulticast mode
[  297.214843][T10384] bridge_slave_1: entered promiscuous mode
[  297.281127][T10384] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  297.289496][T10384] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  297.398738][T10384] team0: Port device team_slave_0 added
[  297.428888][T10384] team0: Port device team_slave_1 added
[  297.520147][T10402] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1413'.
[  297.544963][T10384] batman_adv: batadv0: Adding interface: batadv_slave_0
[  297.547113][T10384] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  297.554985][T10384] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  297.559170][ T1104] bridge_slave_1: left allmulticast mode
[  297.561241][ T1104] bridge_slave_1: left promiscuous mode
[  297.563432][ T1104] bridge0: port 2(bridge_slave_1) entered disabled state
[  297.572292][ T1104] bridge_slave_0: left allmulticast mode
[  297.574105][ T1104] bridge_slave_0: left promiscuous mode
[  297.576035][ T1104] bridge0: port 1(bridge_slave_0) entered disabled state
[  297.926479][ T5350] Bluetooth: hci2: Unknown advertising packet type: 0x73
[  297.938392][ T5350] Bluetooth: hci2: adv larger than maximum supported
[  297.943903][ T5350] Bluetooth: hci2: Malformed LE Event: 0x0d
[  297.970522][ T1104] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  297.975500][ T1104] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  297.980411][ T1104] bond0 (unregistering): Released all slaves
[  297.986423][T10384] batman_adv: batadv0: Adding interface: batadv_slave_1
[  297.988365][T10384] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  297.996178][T10384] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  298.049403][T10409] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[  298.145518][T10384] hsr_slave_0: entered promiscuous mode
[  298.149100][T10384] hsr_slave_1: entered promiscuous mode
[  298.346165][T10423] netlink: 'syz.3.1417': attribute type 1 has an invalid length.
[  298.467618][ T1104] hsr_slave_0: left promiscuous mode
[  298.471501][ T1104] hsr_slave_1: left promiscuous mode
[  298.474205][ T1104] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  298.476852][ T1104] batman_adv: batadv0: Removing interface: batadv_slave_0
[  298.481574][ T1104] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  298.484451][ T1104] batman_adv: batadv0: Removing interface: batadv_slave_1
[  298.513739][ T1104] veth1_macvtap: left promiscuous mode
[  298.515527][ T1104] veth0_macvtap: left promiscuous mode
[  298.517134][ T1104] veth1_vlan: left promiscuous mode
[  298.518681][ T1104] veth0_vlan: left promiscuous mode
[  298.715502][ T5345] Bluetooth: hci0: command tx timeout
[  298.783087][T10430] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[  299.680136][ T1104] team0 (unregistering): Port device team_slave_1 removed
[  299.800332][ T1104] team0 (unregistering): Port device team_slave_0 removed
[  299.836052][T10439] overlayfs: missing 'workdir'
[  299.859418][   T39] audit: type=1400 audit(1726616268.247:941): avc:  denied  { append } for  pid=10438 comm="syz.2.1421" name="rtc0" dev="devtmpfs" ino=867 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  300.299444][ T5345] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  300.325316][ T5350] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  300.325430][ T5345] Bluetooth: hci4: command 0x1003 tx timeout
[  300.328611][ T5353] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  300.333649][ T5353] Bluetooth: hci1: Injecting HCI hardware error event
[  300.360002][ T5350] Bluetooth: hci1: hardware error 0x00
[  300.798478][ T5353] Bluetooth: hci0: command tx timeout
[  301.145051][T10442] ALSA: mixer_oss: invalid OSS volume ''
[  301.835190][T10384] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  301.841847][T10384] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  301.847421][T10384] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  301.853374][T10384] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  301.929363][T10384] 8021q: adding VLAN 0 to HW filter on device bond0
[  301.944255][T10384] 8021q: adding VLAN 0 to HW filter on device team0
[  301.957874][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[  301.960588][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[  301.982249][ T1105] bridge0: port 2(bridge_slave_1) entered blocking state
[  301.984382][ T1105] bridge0: port 2(bridge_slave_1) entered forwarding state
[  302.180706][T10384] 8021q: adding VLAN 0 to HW filter on device batadv0
[  302.226812][T10384] veth0_vlan: entered promiscuous mode
[  302.236791][T10384] veth1_vlan: entered promiscuous mode
[  302.267235][T10384] veth0_macvtap: entered promiscuous mode
[  302.276598][T10384] veth1_macvtap: entered promiscuous mode
[  302.289062][T10384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  302.292421][T10384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  302.295475][T10384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  302.299510][T10384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  302.302531][T10384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  302.306030][T10384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  302.315763][T10384] batman_adv: batadv0: Interface activated: batadv_slave_0
[  302.326939][T10384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  302.330249][T10384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  302.333329][T10384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  302.336403][T10384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  302.338891][T10488] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[  302.340790][T10384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  302.345251][T10384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  302.349931][T10384] batman_adv: batadv0: Interface activated: batadv_slave_1
[  302.361365][T10384] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  302.363929][T10384] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  302.366544][T10384] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  302.369772][T10384] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  302.474965][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  302.477532][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  302.496859][ T1104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  302.499146][ T1104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  302.558328][ T5350] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  302.743925][T10498] input: syz0 as /devices/virtual/input/input20
[  304.050599][T10519] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[  304.480344][   T45] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.660609][ T5350] Bluetooth: hci2: Unknown advertising packet type: 0x73
[  305.660644][ T5350] Bluetooth: hci2: adv larger than maximum supported
[  305.663262][ T5350] Bluetooth: hci2: Malformed LE Event: 0x0d
[  305.687669][ T5353] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  305.692057][ T5353] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  305.694686][ T5353] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  305.700588][ T5353] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  305.705101][ T5353] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  305.708645][ T5353] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  305.783321][T10535] 9pnet_fd: Insufficient options for proto=fd
[  305.807452][T10535] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  305.864834][T10535] xt_CT: No such helper "snmp_trap"
[  305.901225][T10535] Bluetooth: MGMT ver 1.23
[  306.082780][   T45] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.096740][T10532] chnl_net:caif_netlink_parms(): no params data found
[  306.198423][   T45] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.369023][   T45] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.391573][T10532] bridge0: port 1(bridge_slave_0) entered blocking state
[  306.394373][T10532] bridge0: port 1(bridge_slave_0) entered disabled state
[  306.397395][T10532] bridge_slave_0: entered allmulticast mode
[  306.407770][T10532] bridge_slave_0: entered promiscuous mode
[  306.413073][T10532] bridge0: port 2(bridge_slave_1) entered blocking state
[  306.415203][T10532] bridge0: port 2(bridge_slave_1) entered disabled state
[  306.417122][T10532] bridge_slave_1: entered allmulticast mode
[  306.421093][T10532] bridge_slave_1: entered promiscuous mode
[  306.482106][T10532] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  306.510127][T10532] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  306.581701][T10550] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  306.604537][T10550] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  306.618302][   T39] audit: type=1400 audit(1726616274.997:942): avc:  denied  { read } for  pid=10546 comm="syz.2.1440" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  306.719474][T10532] team0: Port device team_slave_0 added
[  306.727082][T10532] team0: Port device team_slave_1 added
[  306.892409][T10532] batman_adv: batadv0: Adding interface: batadv_slave_0
[  306.897867][T10532] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  306.917619][T10532] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  306.943487][T10532] batman_adv: batadv0: Adding interface: batadv_slave_1
[  306.946083][T10532] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  306.963053][T10532] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  306.969793][   T45] bridge_slave_1: left allmulticast mode
[  306.972798][   T45] bridge_slave_1: left promiscuous mode
[  306.975140][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  306.986186][   T45] bridge_slave_0: left allmulticast mode
[  306.990297][   T45] bridge_slave_0: left promiscuous mode
[  306.993736][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.018848][T10564] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[  307.442208][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  307.450448][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  307.454662][   T45] bond0 (unregistering): Released all slaves
[  307.631161][T10532] hsr_slave_0: entered promiscuous mode
[  307.641294][T10532] hsr_slave_1: entered promiscuous mode
[  307.649679][T10532] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  307.651882][T10532] Cannot create hsr debugfs directory
[  307.843238][ T5350] Bluetooth: hci0: command tx timeout
[  307.925803][   T45] hsr_slave_0: left promiscuous mode
[  307.929362][   T45] hsr_slave_1: left promiscuous mode
[  307.931789][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  307.934093][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[  307.939823][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  307.942555][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[  307.983712][   T45] veth1_macvtap: left promiscuous mode
[  307.985540][   T45] veth0_macvtap: left promiscuous mode
[  307.987231][   T45] veth1_vlan: left promiscuous mode
[  307.988905][   T45] veth0_vlan: left promiscuous mode
[  308.425400][   T39] audit: type=1400 audit(1726616276.817:943): avc:  denied  { read } for  pid=10585 comm="syz.1.1446" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  308.434582][   T39] audit: type=1400 audit(1726616276.827:944): avc:  denied  { open } for  pid=10585 comm="syz.1.1446" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  309.334037][   T45] team0 (unregistering): Port device team_slave_1 removed
[  309.501241][   T45] team0 (unregistering): Port device team_slave_0 removed
[  309.918762][ T5350] Bluetooth: hci0: command tx timeout
[  310.092439][    T8] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  310.238278][    T8] usb 8-1: Using ep0 maxpacket: 16
[  310.241356][    T8] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  310.245034][    T8] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  310.248529][    T8] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  310.252865][    T8] usb 8-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  310.255988][    T8] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.260395][    T8] usb 8-1: config 0 descriptor??
[  310.485581][T10589] batadv_slave_0: entered allmulticast mode
[  310.492987][T10592] pim6reg: entered allmulticast mode
[  310.496970][T10595] pim6reg: left allmulticast mode
[  310.498527][T10595] batadv_slave_0: left allmulticast mode
[  310.523726][T10599] ptrace attach of "/syz-executor exec"[5349] was attempted by "/syz-executor exec"[10599]
[  310.630834][T10604] FAULT_INJECTION: forcing a failure.
[  310.630834][T10604] name failslab, interval 1, probability 0, space 0, times 0
[  310.635474][T10604] CPU: 2 UID: 0 PID: 10604 Comm: syz.1.1451 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  310.639223][T10604] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  310.643076][T10604] Call Trace:
[  310.644302][T10604]  <TASK>
[  310.645385][T10604]  dump_stack_lvl+0x16c/0x1f0
[  310.647119][T10604]  should_fail_ex+0x497/0x5b0
[  310.648838][T10604]  should_failslab+0xc2/0x120
[  310.650579][T10604]  kmem_cache_alloc_node_noprof+0x71/0x310
[  310.652657][T10604]  ? __alloc_skb+0x2b1/0x380
[  310.654427][T10604]  __alloc_skb+0x2b1/0x380
[  310.656022][T10604]  ? __pfx___alloc_skb+0x10/0x10
[  310.657776][T10604]  ? __print_lock_name+0x220/0x260
[  310.659599][T10604]  wireless_send_event+0x3c1/0xc70
[  310.661414][T10604]  ? __pfx___might_resched+0x10/0x10
[  310.663302][T10604]  ? __pfx_wireless_send_event+0x10/0x10
[  310.665247][T10604]  ioctl_standard_iw_point+0x65f/0xc10
[  310.667196][T10604]  ? __pfx_cfg80211_wext_siwencode+0x10/0x10
[  310.669337][T10604]  ? __pfx_ioctl_standard_iw_point+0x10/0x10
[  310.671489][T10604]  ? __mutex_lock+0x1a6/0x9c0
[  310.673154][T10604]  ? wext_handle_ioctl+0x21b/0x2c0
[  310.674957][T10604]  ? __pfx___mutex_lock+0x10/0x10
[  310.676790][T10604]  ? __pfx_cfg80211_wext_siwencode+0x10/0x10
[  310.679003][T10604]  ioctl_standard_call+0x191/0x210
[  310.680878][T10604]  ? __pfx_ioctl_private_call+0x10/0x10
[  310.682957][T10604]  ? __pfx_ioctl_standard_call+0x10/0x10
[  310.684948][T10604]  ? __pfx_cfg80211_wext_siwencode+0x10/0x10
[  310.687103][T10604]  wireless_process_ioctl+0x4e3/0x5e0
[  310.688988][T10604]  wext_handle_ioctl+0x23d/0x2c0
[  310.690815][T10604]  ? __pfx_wext_handle_ioctl+0x10/0x10
[  310.692804][T10604]  ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460
[  310.695116][T10604]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[  310.697359][T10604]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  310.699765][T10604]  sock_ioctl+0x3a6/0x6c0
[  310.701314][T10604]  ? __pfx_sock_ioctl+0x10/0x10
[  310.703059][T10604]  ? selinux_file_ioctl+0x180/0x270
[  310.704968][T10604]  ? selinux_file_ioctl+0xb4/0x270
[  310.706807][T10604]  ? __pfx_sock_ioctl+0x10/0x10
[  310.708542][T10604]  __x64_sys_ioctl+0x18d/0x210
[  310.710294][T10604]  do_syscall_64+0xcd/0x250
[  310.711903][T10604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.714048][T10604] RIP: 0033:0x7f8c2cd7def9
[  310.715672][T10604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.722503][T10604] RSP: 002b:00007f8c2db11038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  310.725576][T10604] RAX: ffffffffffffffda RBX: 00007f8c2cf35f80 RCX: 00007f8c2cd7def9
[  310.728449][T10604] RDX: 0000000020000040 RSI: 0000000000008b2a RDI: 0000000000000003
[  310.731199][T10604] RBP: 00007f8c2db11090 R08: 0000000000000000 R09: 0000000000000000
[  310.733989][T10604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  310.736832][T10604] R13: 0000000000000000 R14: 00007f8c2cf35f80 R15: 00007ffde960d0c8
[  310.739702][T10604]  </TASK>
[  310.781692][    T8] microsoft 0003:045E:07DA.000A: ignoring exceeding usage max
[  310.791857][    T8] microsoft 0003:045E:07DA.000A: unknown main item tag 0x5
[  310.794416][    T8] microsoft 0003:045E:07DA.000A: unknown main item tag 0x1
[  310.796913][    T8] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  310.800334][    T8] microsoft 0003:045E:07DA.000A: item fetching failed at offset 33/34
[  310.808948][    T8] microsoft 0003:045E:07DA.000A: parse failed
[  310.818886][    T8] microsoft 0003:045E:07DA.000A: probe with driver microsoft failed with error -22
[  310.987482][  T988] usb 8-1: USB disconnect, device number 15
[  311.249844][T10532] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  311.262864][T10532] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  311.267882][T10532] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  311.278805][T10532] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  311.335662][T10532] 8021q: adding VLAN 0 to HW filter on device bond0
[  311.346632][T10532] 8021q: adding VLAN 0 to HW filter on device team0
[  311.353485][   T74] bridge0: port 1(bridge_slave_0) entered blocking state
[  311.355484][   T74] bridge0: port 1(bridge_slave_0) entered forwarding state
[  311.402232][   T74] bridge0: port 2(bridge_slave_1) entered blocking state
[  311.404926][   T74] bridge0: port 2(bridge_slave_1) entered forwarding state
[  311.436151][T10532] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  311.439565][T10532] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  311.607218][T10532] 8021q: adding VLAN 0 to HW filter on device batadv0
[  311.637038][T10532] veth0_vlan: entered promiscuous mode
[  311.643700][T10532] veth1_vlan: entered promiscuous mode
[  311.665061][T10532] veth0_macvtap: entered promiscuous mode
[  311.671433][T10532] veth1_macvtap: entered promiscuous mode
[  311.681804][T10532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  311.684583][T10532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.687223][T10532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  311.691657][T10532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.694318][T10532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  311.697122][T10532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.702121][T10532] batman_adv: batadv0: Interface activated: batadv_slave_0
[  311.717049][T10532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  311.722222][T10532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.726101][T10532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  311.731859][T10532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.735135][T10532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  311.740024][T10532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.744889][T10532] batman_adv: batadv0: Interface activated: batadv_slave_1
[  311.750423][T10532] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  311.753441][T10532] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  311.756799][T10532] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  311.760395][T10532] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  311.926464][ T1104] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  311.931944][ T1104] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  311.965337][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  311.968321][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  311.988895][ T5350] Bluetooth: hci0: command tx timeout
[  313.769068][T10657] 9pnet_fd: Insufficient options for proto=fd
[  313.790249][T10657] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  313.826324][T10657] xt_CT: No such helper "snmp_trap"
[  313.836415][   T45] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  315.177304][T10664] tmpfs: Bad value for 'mpol'
[  315.191863][T10666] netlink: 'syz.3.1460': attribute type 29 has an invalid length.
[  315.200538][T10666] netlink: 'syz.3.1460': attribute type 29 has an invalid length.
[  315.376592][T10676] netlink: 'syz.2.1462': attribute type 10 has an invalid length.
[  315.426308][ T5353] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  315.433898][ T5353] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  315.437398][ T5353] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  315.441704][ T5353] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  315.444989][ T5353] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  315.447808][ T5353] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  315.529860][T10685] 9pnet_fd: Insufficient options for proto=fd
[  315.555111][T10685] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  315.611720][T10685] xt_CT: No such helper "snmp_trap"
[  315.632929][T10685] Bluetooth: MGMT ver 1.23
[  315.637517][T10679] chnl_net:caif_netlink_parms(): no params data found
[  315.868064][T10686] fuse: Bad value for 'fd'
[  315.972984][   T45] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.025229][T10679] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.028087][T10679] bridge0: port 1(bridge_slave_0) entered disabled state
[  316.030302][T10679] bridge_slave_0: entered allmulticast mode
[  316.033903][T10679] bridge_slave_0: entered promiscuous mode
[  316.043568][T10679] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.046498][T10679] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.049058][T10679] bridge_slave_1: entered allmulticast mode
[  316.052604][T10679] bridge_slave_1: entered promiscuous mode
[  316.114421][   T45] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.162612][T10679] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  316.168071][T10679] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  316.207678][   T45] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.246713][T10679] team0: Port device team_slave_0 added
[  316.257473][T10679] team0: Port device team_slave_1 added
[  316.302831][T10679] batman_adv: batadv0: Adding interface: batadv_slave_0
[  316.304699][T10679] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.314511][T10679] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  316.322384][T10679] batman_adv: batadv0: Adding interface: batadv_slave_1
[  316.324475][T10679] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.334131][T10679] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  316.530694][T10679] hsr_slave_0: entered promiscuous mode
[  316.536045][T10679] hsr_slave_1: entered promiscuous mode
[  316.549051][T10703] FAULT_INJECTION: forcing a failure.
[  316.549051][T10703] name failslab, interval 1, probability 0, space 0, times 0
[  316.553487][T10703] CPU: 3 UID: 0 PID: 10703 Comm: syz.3.1468 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  316.556986][T10703] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  316.560911][T10703] Call Trace:
[  316.562192][T10703]  <TASK>
[  316.563284][T10703]  dump_stack_lvl+0x16c/0x1f0
[  316.564971][T10703]  should_fail_ex+0x497/0x5b0
[  316.566608][T10703]  ? fs_reclaim_acquire+0xae/0x160
[  316.568380][T10703]  should_failslab+0xc2/0x120
[  316.570044][T10703]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  316.571912][T10703]  ? vm_area_dup+0x21/0x2f0
[  316.573540][T10703]  vm_area_dup+0x21/0x2f0
[  316.575148][T10703]  __split_vma+0x181/0x11c0
[  316.576830][T10703]  ? __pfx___split_vma+0x10/0x10
[  316.578839][T10703]  vma_modify+0x2b9/0x360
[  316.580374][T10703]  mlock_fixup+0x2e9/0x1070
[  316.582029][T10703]  apply_vma_lock_flags+0x24e/0x370
[  316.583852][T10703]  ? __pfx_apply_vma_lock_flags+0x10/0x10
[  316.585876][T10703]  ? __pfx_down_write_killable+0x10/0x10
[  316.587965][T10703]  do_mlock+0x25e/0x7c0
[  316.589782][T10703]  ? __pfx_do_mlock+0x10/0x10
[  316.591757][T10703]  ? fput+0x30/0x390
[  316.593215][T10703]  ? ksys_write+0x1ab/0x260
[  316.594835][T10703]  ? __pfx_ksys_write+0x10/0x10
[  316.596526][T10703]  __x64_sys_mlock2+0xbd/0x100
[  316.598210][T10703]  do_syscall_64+0xcd/0x250
[  316.599816][T10703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.601861][T10703] RIP: 0033:0x7f07a9d7def9
[  316.603360][T10703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  316.610238][T10703] RSP: 002b:00007f07a97ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000145
[  316.613281][T10703] RAX: ffffffffffffffda RBX: 00007f07a9f35f80 RCX: 00007f07a9d7def9
[  316.616064][T10703] RDX: 0000000000000000 RSI: 0000000000002000 RDI: 0000000020018000
[  316.618782][T10703] RBP: 00007f07a97ff090 R08: 0000000000000000 R09: 0000000000000000
[  316.621508][T10703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  316.624284][T10703] R13: 0000000000000000 R14: 00007f07a9f35f80 R15: 00007fff5eaeef88
[  316.627040][T10703]  </TASK>
[  316.692444][   T45] bridge_slave_1: left allmulticast mode
[  316.694755][   T45] bridge_slave_1: left promiscuous mode
[  316.697044][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.712190][   T45] bridge_slave_0: left allmulticast mode
[  316.714187][   T45] bridge_slave_0: left promiscuous mode
[  316.717023][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  317.037729][ T1380] ieee802154 phy0 wpan0: encryption failed: -22
[  317.041780][ T1380] ieee802154 phy1 wpan1: encryption failed: -22
[  317.212170][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  317.218081][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  317.223256][   T45] bond0 (unregistering): Released all slaves
[  317.390620][T10710] team_slave_0: entered allmulticast mode
[  317.518632][ T5350] Bluetooth: hci0: command tx timeout
[  317.746485][   T45] hsr_slave_0: left promiscuous mode
[  317.753285][T10732] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[  317.755585][   T45] hsr_slave_1: left promiscuous mode
[  317.761016][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  317.765243][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[  317.771028][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  317.774591][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[  317.839654][T10734] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[  317.854397][   T45] veth1_macvtap: left promiscuous mode
[  317.856929][   T45] veth0_macvtap: left promiscuous mode
[  317.859458][   T45] veth1_vlan: left promiscuous mode
[  317.861465][   T45] veth0_vlan: left promiscuous mode
[  319.073468][   T39] audit: type=1400 audit(1726616287.467:945): avc:  denied  { read } for  pid=10740 comm="syz.1.1477" name="file0" dev="tmpfs" ino=1934 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  319.156159][T10742] block device autoloading is deprecated and will be removed.
[  319.216509][   T39] audit: type=1400 audit(1726616287.607:946): avc:  denied  { append } for  pid=10740 comm="syz.1.1477" name="file0" dev="tmpfs" ino=1934 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  319.230714][T10746] can: request_module (can-proto-4) failed.
[  319.497905][   T45] team0 (unregistering): Port device team_slave_1 removed
[  319.600224][ T5350] Bluetooth: hci0: command tx timeout
[  319.771320][   T45] team0 (unregistering): Port device team_slave_0 removed
[  320.229897][   T39] audit: type=1400 audit(1726616288.627:947): avc:  denied  { mount } for  pid=10752 comm="syz.2.1479" name="/" dev="securityfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1
[  320.566621][ T4796] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  320.747468][ T4796] usb 7-1: Using ep0 maxpacket: 8
[  320.786949][ T4796] usb 7-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  320.792963][ T4796] usb 7-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  320.798295][ T4796] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  320.801945][ T4796] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  320.809553][ T4796] usbtmc 7-1:16.0: bulk endpoints not found
[  321.243524][T10760] 9pnet_fd: Insufficient options for proto=fd
[  321.259824][T10760] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  321.317170][T10760] xt_CT: No such helper "snmp_trap"
[  321.439130][T10768] 9pnet_fd: Insufficient options for proto=fd
[  321.476239][T10768] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  321.503641][T10679] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  321.509235][T10679] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  321.515186][T10679] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  321.523801][T10679] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  321.557185][ T4796] usb 7-1: USB disconnect, device number 15
[  321.597502][T10768] xt_CT: No such helper "snmp_trap"
[  321.668350][ T5350] Bluetooth: hci0: command tx timeout
[  321.702173][T10679] 8021q: adding VLAN 0 to HW filter on device bond0
[  321.768057][T10679] 8021q: adding VLAN 0 to HW filter on device team0
[  321.786389][ T1104] bridge0: port 1(bridge_slave_0) entered blocking state
[  321.788602][ T1104] bridge0: port 1(bridge_slave_0) entered forwarding state
[  321.861616][   T74] bridge0: port 2(bridge_slave_1) entered blocking state
[  321.864281][   T74] bridge0: port 2(bridge_slave_1) entered forwarding state
[  321.896333][T10783] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[  322.240877][T10679] 8021q: adding VLAN 0 to HW filter on device batadv0
[  322.330676][T10679] veth0_vlan: entered promiscuous mode
[  322.340984][T10679] veth1_vlan: entered promiscuous mode
[  322.371517][T10679] veth0_macvtap: entered promiscuous mode
[  322.377094][T10679] veth1_macvtap: entered promiscuous mode
[  322.392811][T10679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  322.395578][T10679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  322.398652][T10679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  322.398701][   T39] audit: type=1400 audit(1726616290.787:948): avc:  denied  { create } for  pid=10791 comm="syz.2.1485" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1
[  322.405361][T10679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  322.419218][T10679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  322.425992][T10679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  322.436410][T10679] batman_adv: batadv0: Interface activated: batadv_slave_0
[  322.457487][T10679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  322.466017][T10679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  322.473368][T10679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  322.478557][T10679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  322.484112][T10679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  322.488278][T10679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  322.507892][T10679] batman_adv: batadv0: Interface activated: batadv_slave_1
[  322.533833][T10679] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  322.536961][T10679] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  322.540318][T10679] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  322.544849][T10679] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  322.671859][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  322.675198][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  322.700328][ T1107] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  322.702397][ T1107] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  323.563691][T10806] ==================================================================
[  323.566621][T10806] BUG: KASAN: slab-use-after-free in iov_iter_advance+0x677/0x6c0
[  323.569062][T10806] Read of size 8 at addr ffff8880309f5520 by task syz.2.1485/10806
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  323.572769][T10806] 
[  323.574478][T10806] CPU: 3 UID: 0 PID: 10806 Comm: syz.2.1485 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  323.578155][T10806] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  323.581725][T10806] Call Trace:
[  323.582702][T10806]  <TASK>
[  323.583559][T10806]  dump_stack_lvl+0x116/0x1f0
[  323.584904][T10806]  print_report+0xc3/0x620
[  323.586139][T10806]  ? __virt_addr_valid+0x5e/0x590
[  323.587456][T10806]  ? __phys_addr+0xc6/0x150
[  323.588654][T10806]  kasan_report+0xd9/0x110
[  323.590046][T10806]  ? iov_iter_advance+0x677/0x6c0
[  323.591606][T10806]  ? iov_iter_advance+0x677/0x6c0
[  323.592963][T10806]  iov_iter_advance+0x677/0x6c0
[  323.594243][T10806]  ? netfs_buffer_append_folio+0x569/0x750
[  323.595797][T10806]  netfs_write_folio+0x745/0x18f0
[  323.597157][T10806]  netfs_writepages+0x2ba/0xb90
[  323.598556][T10806]  ? __pfx_netfs_writepages+0x10/0x10
[  323.600367][T10806]  ? do_raw_spin_lock+0x12d/0x2c0
[  323.602331][T10806]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  323.604387][T10806]  ? __pfx_netfs_writepages+0x10/0x10
[  323.606445][T10806]  do_writepages+0x1a3/0x7f0
[  323.608174][T10806]  ? __pfx_do_writepages+0x10/0x10
[  323.610081][T10806]  ? __pfx_lock_acquire+0x10/0x10
[  323.611987][T10806]  ? do_raw_spin_lock+0x12d/0x2c0
[  323.614149][T10806]  ? do_raw_spin_unlock+0x172/0x230
[  323.616237][T10806]  ? _raw_spin_unlock+0x28/0x50
[  323.618121][T10806]  ? wbc_attach_and_unlock_inode+0x597/0x940
[  323.620400][T10806]  filemap_fdatawrite_wbc+0x148/0x1c0
[  323.622401][T10806]  ? __lock_acquire+0xbdd/0x3ce0
[  323.624385][T10806]  __filemap_fdatawrite_range+0xba/0x100
[  323.626514][T10806]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  323.628808][T10806]  ? lock_acquire+0x1b1/0x560
[  323.630307][T10806]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  323.632088][T10806]  v9fs_dir_release+0x429/0x590
[  323.633808][T10806]  ? __pfx_v9fs_dir_release+0x10/0x10
[  323.635688][T10806]  ? __pfx___might_resched+0x10/0x10
[  323.637559][T10806]  ? __pfx_v9fs_dir_release+0x10/0x10
[  323.639493][T10806]  __fput+0x3f6/0xb60
[  323.641085][T10806]  task_work_run+0x14e/0x250
[  323.643004][T10806]  ? __pfx_task_work_run+0x10/0x10
[  323.645011][T10806]  ? switch_task_namespaces+0xeb/0x100
[  323.647126][T10806]  do_exit+0xaa3/0x2bb0
[  323.648625][T10806]  ? __pfx_do_exit+0x10/0x10
[  323.650313][T10806]  do_group_exit+0xd3/0x2a0
[  323.651875][T10806]  get_signal+0x25fb/0x2770
[  323.653058][T10806]  ? __pfx_get_signal+0x10/0x10
[  323.654445][T10806]  ? __pfx_force_sig_fault+0x10/0x10
[  323.656098][T10806]  arch_do_signal_or_restart+0x90/0x7e0
[  323.657533][T10806]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  323.659154][T10806]  ? spurious_kernel_fault+0x2f4/0x3c0
[  323.660719][T10806]  irqentry_exit_to_user_mode+0x13f/0x280
[  323.662286][T10806]  asm_exc_page_fault+0x26/0x30
[  323.663704][T10806] RIP: 0033:0x7f6805440397
[  323.665317][T10806] Code: Unable to access opcode bytes at 0x7f680544036d.
[  323.667852][T10806] RSP: 002b:00007f68063621a0 EFLAGS: 00010206
[  323.670168][T10806] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f680557def9
[  323.673058][T10806] RDX: 00007f68063621c0 RSI: 00007f68063622f0 RDI: 000000000000000b
[  323.675893][T10806] RBP: 00007f68055f0b76 R08: 0000000000000000 R09: 0000000000000000
[  323.678728][T10806] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  323.681247][T10806] R13: 0000000000000000 R14: 00007f6805736130 R15: 00007ffeb03ddf48
[  323.683637][T10806]  </TASK>
[  323.684792][T10806] 
[  323.685671][T10806] Allocated by task 10806:
[  323.687309][T10806]  kasan_save_stack+0x33/0x60
[  323.689030][T10806]  kasan_save_track+0x14/0x30
[  323.690744][T10806]  __kasan_kmalloc+0xaa/0xb0
[  323.692461][T10806]  netfs_buffer_append_folio+0x181/0x750
[  323.694540][T10806]  netfs_write_folio+0x542/0x18f0
[  323.696381][T10806]  netfs_writepages+0x2ba/0xb90
[  323.698186][T10806]  do_writepages+0x1a3/0x7f0
[  323.699874][T10806]  filemap_fdatawrite_wbc+0x148/0x1c0
[  323.701733][T10806]  __filemap_fdatawrite_range+0xba/0x100
[  323.703925][T10806]  v9fs_dir_release+0x429/0x590
[  323.705863][T10806]  __fput+0x3f6/0xb60
[  323.707513][T10806]  task_work_run+0x14e/0x250
[  323.709325][T10806]  do_exit+0xaa3/0x2bb0
[  323.710646][T10806]  do_group_exit+0xd3/0x2a0
[  323.711953][T10806]  get_signal+0x25fb/0x2770
[  323.713275][T10806]  arch_do_signal_or_restart+0x90/0x7e0
[  323.715302][T10806]  irqentry_exit_to_user_mode+0x13f/0x280
[  323.717370][T10806]  asm_exc_page_fault+0x26/0x30
[  323.719171][T10806] 
[  323.720070][T10806] Freed by task 74:
[  323.721621][T10806]  kasan_save_stack+0x33/0x60
[  323.723658][T10806]  kasan_save_track+0x14/0x30
[  323.725608][T10806]  kasan_save_free_info+0x3b/0x60
[  323.727496][T10806]  poison_slab_object+0xf7/0x160
[  323.729316][T10806]  __kasan_slab_free+0x32/0x50
[  323.730750][T10806]  kfree+0x12a/0x3b0
[  323.731818][T10806]  netfs_delete_buffer_head+0xa6/0x100
[  323.733383][T10806]  netfs_write_collection_worker+0x20f9/0x4f80
[  323.735960][T10806]  process_one_work+0x9c5/0x1b40
[  323.738013][T10806]  worker_thread+0x6c8/0xf00
[  323.739966][T10806]  kthread+0x2c1/0x3a0
[  323.741662][T10806]  ret_from_fork+0x45/0x80
[  323.743283][T10806]  ret_from_fork_asm+0x1a/0x30
[  323.745137][T10806] 
[  323.746022][T10806] The buggy address belongs to the object at ffff8880309f5400
[  323.746022][T10806]  which belongs to the cache kmalloc-512 of size 512
[  323.751093][T10806] The buggy address is located 288 bytes inside of
[  323.751093][T10806]  freed 512-byte region [ffff8880309f5400, ffff8880309f5600)
[  323.756343][T10806] 
[  323.757295][T10806] The buggy address belongs to the physical page:
[  323.759741][T10806] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x309f4
[  323.762835][T10806] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  323.765746][T10806] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  323.768567][T10806] page_type: 0xfdffffff(slab)
[  323.770385][T10806] raw: 00fff00000000040 ffff88801ac42c80 0000000000000000 dead000000000001
[  323.773000][T10806] raw: 0000000000000000 0000000080100010 00000001fdffffff 0000000000000000
[  323.775327][T10806] head: 00fff00000000040 ffff88801ac42c80 0000000000000000 dead000000000001
[  323.777574][T10806] head: 0000000000000000 0000000080100010 00000001fdffffff 0000000000000000
[  323.780033][T10806] head: 00fff00000000002 ffffea0000c27d01 ffffffffffffffff 0000000000000000
[  323.782510][T10806] head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000
[  323.785186][T10806] page dumped because: kasan: bad access detected
[  323.787894][T10806] page_owner tracks the page as allocated
[  323.790052][T10806] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 4839, tgid 4839 (udevd), ts 19140463048, free_ts 18426068853
[  323.797740][T10806]  post_alloc_hook+0x2d1/0x350
[  323.799509][T10806]  get_page_from_freelist+0x1351/0x2e50
[  323.801251][T10806]  __alloc_pages_noprof+0x22b/0x2460
[  323.803164][T10806]  alloc_slab_page+0x4e/0xf0
[  323.804849][T10806]  new_slab+0x84/0x260
[  323.806516][T10806]  ___slab_alloc+0xdac/0x1870
[  323.808454][T10806]  __slab_alloc.constprop.0+0x56/0xb0
[  323.810606][T10806]  __kmalloc_cache_noprof+0x2b4/0x300
[  323.812590][T10806]  do_epoll_create+0x62/0x470
[  323.814356][T10806]  __x64_sys_epoll_create1+0x30/0x40
[  323.816306][T10806]  do_syscall_64+0xcd/0x250
[  323.817967][T10806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.820025][T10806] page last free pid 4824 tgid 4824 stack trace:
[  323.822061][T10806]  free_unref_page+0x64a/0xe40
[  323.823356][T10806]  qlist_free_all+0x4e/0x140
[  323.824568][T10806]  kasan_quarantine_reduce+0x192/0x1e0
[  323.826004][T10806]  __kasan_slab_alloc+0x69/0x90
[  323.827279][T10806]  __kmalloc_noprof+0x199/0x400
[  323.828493][T10806]  tomoyo_supervisor+0x43d/0xea0
[  323.830000][T10806]  tomoyo_env_perm+0x193/0x210
[  323.831657][T10806]  tomoyo_find_next_domain+0xef9/0x2020
[  323.833098][T10806]  tomoyo_bprm_check_security+0x12b/0x1d0
[  323.834682][T10806]  security_bprm_check+0x1b9/0x1e0
[  323.836402][T10806]  bprm_execve+0x642/0x1960
[  323.838218][T10806]  do_execveat_common.isra.0+0x4f1/0x630
[  323.840320][T10806]  __x64_sys_execve+0x8c/0xb0
[  323.842016][T10806]  do_syscall_64+0xcd/0x250
[  323.843665][T10806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.845764][T10806] 
[  323.846413][T10806] Memory state around the buggy address:
[  323.848050][T10806]  ffff8880309f5400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  323.850891][T10806]  ffff8880309f5480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  323.853805][T10806] >ffff8880309f5500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  323.856716][T10806]                                ^
[  323.858595][T10806]  ffff8880309f5580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  323.861283][T10806]  ffff8880309f5600: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  323.863581][T10806] ==================================================================
[  323.868268][   T39] audit: type=1400 audit(1726616291.957:949): avc:  denied  { write } for  pid=5285 comm="syz-executor" path="pipe:[6193]" dev="pipefs" ino=6193 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  323.876313][T10806] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  323.878589][T10806] CPU: 3 UID: 0 PID: 10806 Comm: syz.2.1485 Not tainted 6.11.0-syzkaller-03917-ga940d9a43e62 #0
[  323.881492][T10806] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  323.885276][T10806] Call Trace:
[  323.886609][T10806]  <TASK>
[  323.887743][T10806]  dump_stack_lvl+0x3d/0x1f0
[  323.889540][T10806]  panic+0x70f/0x7f0
[  323.891001][T10806]  ? __pfx_panic+0x10/0x10
[  323.892619][T10806]  ? irqentry_exit+0x3b/0x90
[  323.894338][T10806]  ? lockdep_hardirqs_on+0x7c/0x110
[  323.896209][T10806]  ? preempt_schedule_thunk+0x1a/0x30
[  323.898144][T10806]  ? preempt_schedule_common+0x44/0xc0
[  323.900125][T10806]  ? check_panic_on_warn+0x1f/0xb0
[  323.902031][T10806]  check_panic_on_warn+0xab/0xb0
[  323.903878][T10806]  end_report+0x117/0x180
[  323.905481][T10806]  kasan_report+0xe9/0x110
[  323.907120][T10806]  ? iov_iter_advance+0x677/0x6c0
[  323.908871][T10806]  ? iov_iter_advance+0x677/0x6c0
[  323.910605][T10806]  iov_iter_advance+0x677/0x6c0
[  323.912360][T10806]  ? netfs_buffer_append_folio+0x569/0x750
[  323.914582][T10806]  netfs_write_folio+0x745/0x18f0
[  323.916407][T10806]  netfs_writepages+0x2ba/0xb90
[  323.918162][T10806]  ? __pfx_netfs_writepages+0x10/0x10
[  323.920034][T10806]  ? do_raw_spin_lock+0x12d/0x2c0
[  323.921854][T10806]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  323.923818][T10806]  ? __pfx_netfs_writepages+0x10/0x10
[  323.925712][T10806]  do_writepages+0x1a3/0x7f0
[  323.927403][T10806]  ? __pfx_do_writepages+0x10/0x10
[  323.929347][T10806]  ? __pfx_lock_acquire+0x10/0x10
[  323.931166][T10806]  ? do_raw_spin_lock+0x12d/0x2c0
[  323.933013][T10806]  ? do_raw_spin_unlock+0x172/0x230
[  323.934910][T10806]  ? _raw_spin_unlock+0x28/0x50
[  323.936633][T10806]  ? wbc_attach_and_unlock_inode+0x597/0x940
[  323.938686][T10806]  filemap_fdatawrite_wbc+0x148/0x1c0
[  323.940720][T10806]  ? __lock_acquire+0xbdd/0x3ce0
[  323.942704][T10806]  __filemap_fdatawrite_range+0xba/0x100
[  323.944872][T10806]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  323.947165][T10806]  ? lock_acquire+0x1b1/0x560
[  323.948931][T10806]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  323.951105][T10806]  v9fs_dir_release+0x429/0x590
[  323.952870][T10806]  ? __pfx_v9fs_dir_release+0x10/0x10
[  323.954809][T10806]  ? __pfx___might_resched+0x10/0x10
[  323.956713][T10806]  ? __pfx_v9fs_dir_release+0x10/0x10
[  323.958689][T10806]  __fput+0x3f6/0xb60
[  323.960184][T10806]  task_work_run+0x14e/0x250
[  323.961983][T10806]  ? __pfx_task_work_run+0x10/0x10
[  323.964043][T10806]  ? switch_task_namespaces+0xeb/0x100
[  323.966347][T10806]  do_exit+0xaa3/0x2bb0
[  323.967927][T10806]  ? __pfx_do_exit+0x10/0x10
[  323.969599][T10806]  do_group_exit+0xd3/0x2a0
[  323.971228][T10806]  get_signal+0x25fb/0x2770
[  323.972893][T10806]  ? __pfx_get_signal+0x10/0x10
[  323.974647][T10806]  ? __pfx_force_sig_fault+0x10/0x10
[  323.976555][T10806]  arch_do_signal_or_restart+0x90/0x7e0
[  323.978602][T10806]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  323.980809][T10806]  ? spurious_kernel_fault+0x2f4/0x3c0
[  323.982917][T10806]  irqentry_exit_to_user_mode+0x13f/0x280
[  323.985112][T10806]  asm_exc_page_fault+0x26/0x30
[  323.987023][T10806] RIP: 0033:0x7f6805440397
[  323.988679][T10806] Code: Unable to access opcode bytes at 0x7f680544036d.
[  323.991028][T10806] RSP: 002b:00007f68063621a0 EFLAGS: 00010206
[  323.992981][T10806] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f680557def9
[  323.995741][T10806] RDX: 00007f68063621c0 RSI: 00007f68063622f0 RDI: 000000000000000b
[  323.998483][T10806] RBP: 00007f68055f0b76 R08: 0000000000000000 R09: 0000000000000000
[  324.001224][T10806] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  324.004008][T10806] R13: 0000000000000000 R14: 00007f6805736130 R15: 00007ffeb03ddf48
[  324.006923][T10806]  </TASK>
[  324.008701][T10806] Kernel Offset: disabled
[  324.010290][T10806] Rebooting in 86400 seconds..

VM DIAGNOSIS:
23:38:12  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffea0000d67ec0 RCX=ffffffff81f683c6 RDX=ffff88802a1a4880
RSI=ffffffff81f68429 RDI=ffffea0000d67ed8 RBP=ffff88801c9c1e70 RSP=ffffc90003c577c8
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000001 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff818c44a1 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f3a02a67d60 CR3=0000000024e3e000 CR4=00350ef0
DR0=0000000000000010 DR1=0000000000000006 DR2=0000000000000006 DR3=0000000000000003 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3a01f0b6a3 00007f3a01f0b6a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe4b68b160 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555d754c34 000055555d754c30
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555d74e4a8
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555d7dc5c1 000055555d7d8520
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555d751538 000055555d751530
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000037323335 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8c080054e003018c 100054d00303ffff ffff0454c0030210 0054b00304808297
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0102100001000000 080604014aca0488 1000548004010000 000806060133e404
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 83c08c080054e003 018c100054d00303 ffffffff0454c003 02100054b0030480
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8297941000018890 0301d78004018880 030188800454a003 14080054900303ff
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff045480030c 10000280041a0800 0c08000100000008 060a01499600616c
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000561d680f33e0 RCX=0000000000000000 RDX=ffffffffffffffff
RSI=0000000000000100 RDI=0000561d680f4a30 RBP=00007ffd3f442412 RSP=00007ffd3f442408
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000561d52adf937 R13=0000561d52ae1fe0 R14=0000561d680f3db0 R15=0000561d680ee2c0
RIP=0000561d52a433b0 RFL=00000286 [--S--P-] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA]
SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f7ff45d4d00 ffffffff 00c00000
GS =0000 0000000000000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffd3f43dcec CR3=00000000306b0000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=66d69b9e66d69b9e 66d69b9e66d69b9e 66d69b9e66d69b9e 66d69b9e66d69b9e 66d69b9e66d69b9e 66d69b9e66d69b9e 66d69b9e66d69b9e 66d69b9e66d69b9e
ZMM22=afdbe217afdbe217 afdbe217afdbe217 afdbe217afdbe217 afdbe217afdbe217 afdbe217afdbe217 afdbe217afdbe217 afdbe217afdbe217 afdbe217afdbe217
ZMM23=44c749f644c749f6 44c749f644c749f6 44c749f644c749f6 44c749f644c749f6 44c749f644c749f6 44c749f644c749f6 44c749f644c749f6 44c749f644c749f6
ZMM24=cd54d2f7cd54d2f7 cd54d2f7cd54d2f7 cd54d2f7cd54d2f7 cd54d2f7cd54d2f7 cd54d2f7cd54d2f7 cd54d2f7cd54d2f7 cd54d2f7cd54d2f7 cd54d2f7cd54d2f7
ZMM25=d9351115d9351115 d9351115d9351115 d9351115d9351115 d9351115d9351115 d9351115d9351115 d9351115d9351115 d9351115d9351115 d9351115d9351115
ZMM26=324b166b324b166b 324b166b324b166b 324b166b324b166b 324b166b324b166b 324b166b324b166b 324b166b324b166b 324b166b324b166b 324b166b324b166b
ZMM27=7add6fd47add6fd4 7add6fd47add6fd4 7add6fd47add6fd4 7add6fd47add6fd4 7add6fd47add6fd4 7add6fd47add6fd4 7add6fd47add6fd4 7add6fd47add6fd4
ZMM28=000001200000011f 0000011e0000011d 0000011c0000011b 0000011a00000119 0000011800000117 0000011600000115 0000011400000113 0000011200000111
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=b6130000b6130000 b6130000b6130000 b6130000b6130000 b6130000b6130000 b6130000b6130000 b6130000b6130000 b6130000b6130000 b6130000b6130000
info registers vcpu 2

CPU#2
RAX=0000000000724a21 RBX=0000000000000002 RCX=ffffffff8b19c989 RDX=0000000000000000
RSI=ffffffff8b4cdac0 RDI=ffffffff8bb11ba0 RBP=ffffed1003b5b000 RSP=ffffc90000197e08
R8 =0000000000000001 R9 =ffffed100d506fd9 R10=ffff88806a837ecb R11=0000000000000000
R12=0000000000000002 R13=ffff88801dad8000 R14=ffffffff901dab18 R15=0000000000000000
RIP=ffffffff8b19dd6f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b2e01cff8 CR3=0000000040f9e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff813082df ffffffff813082df
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff813082df
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f07a9df199a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f07a9df19a7
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f07a9df19a1
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f07a9df19b5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f07a9df1a3b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f07a9df1b19
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff81308381 ffffffff81308372 ffffffff8130834d ffffffff8130832d
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff81325b1b ffffffff81325b1b ffffffff00040008 0000000f0010000c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8130834d ffffffff8130832d ffffffff81308323 ffffffff813082df
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8504e205 RDI=ffffffff9a68fb00 RBP=ffffffff9a68fac0 RSP=ffffc90003e16ee0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3330383838666666
R12=0000000000000000 R13=0000000000000020 R14=ffffffff8504e1a0 R15=0000000000000000
RIP=ffffffff8504e22f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f39fcbbc954 CR3=000000000db7c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000020000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 47af3e8958722d8d 4517fd49a979f98c
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 383ad5303840ef80 aadfbbe2322c2034
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 18c11f91e9c59be1 cdfcb5e29c92cc7d
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7f4c37033477ffec 651331356f6ff75c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 00000000000000b4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000034
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b3d17f83d79f26bc eb02e1e685429780
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b06a53ae6f78f47f 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 187a2c9f8459a1fc 650bc1e01ad20a7d
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 dbed6f7200000000 aa3031ddf04e3567
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 be7d380cc74adaa1 84e097c508960dfd
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f94ce1d74d2bb59b 47f240530185bc1e
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000