last executing test programs:

3.000197311s ago: executing program 1 (id=269):
r0 = socket$netlink(0x10, 0x3, 0x0) (async)
r1 = socket$inet6(0xa, 0x3, 0x5) (async)
r2 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x7734, 0x80, 0x0, 0x34f}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) (async)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x101, 0x4})
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x4}]}, 0x10) (async, rerun: 32)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) (async, rerun: 32)
syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x8b7c, 0x800, 0x200007, 0x22}, &(0x7f0000000940)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000440)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x40, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000001c0)='./file0\x00', 0x8, 0x204800, 0x23456}) (async)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/icmp\x00')
preadv(r7, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/136, 0x88}], 0x1, 0xfc, 0x1) (async)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r6, &(0x7f0000000300)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x38, 0x0, r7, &(0x7f00000002c0)={0x10000000}, r0, 0x1, 0x0, 0x1, {0x0, r8}})
r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x14000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r9, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'}) (async, rerun: 32)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x15523ea56aa22b9a, 0x0, 0x0, 0x0, 0x12345}) (async, rerun: 32)
io_uring_enter(r2, 0x47bc, 0x0, 0x0, 0x0, 0x0)
r10 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000300)={'bond0\x00', <r11=>0x0}) (async, rerun: 32)
r12 = socket$netlink(0x10, 0x3, 0xe) (rerun: 32)
sendmsg$nl_route_sched(r12, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@gettfilter={0x44, 0x2e, 0x2, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r11, {0x10, 0x19}, {0x8, 0x8}, {0xc}}, [{0x8, 0xb, 0x5}, {0x8, 0xb, 0x5afa}, {0x8}, {0x8}]}, 0x44}}, 0x0) (async)
r13 = syz_open_dev$dri(&(0x7f0000000480), 0xf2ef, 0x0) (async)
r14 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r14, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r14, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000480)=[<r15=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r13, 0xc01064c8, &(0x7f0000000240)={0x1, 0x0, &(0x7f00000001c0)=[<r16=>0x0]})
ioctl$DRM_IOCTL_MODE_SETPLANE(r13, 0xc03064b7, &(0x7f0000000280)={r15, 0x0, r16, 0x6, 0xe478, 0x9, 0x797, 0x280000, 0x0, 0x10, 0x1, 0x1})
r17 = syz_open_dev$usbfs(&(0x7f0000000080), 0xfffffffffffe, 0x56c002)
ioctl$USBDEVFS_CONTROL(r17, 0xc0105500, &(0x7f0000000000)={0x80, 0x6, 0x301, 0x0, 0xe0, 0x101, 0x0})

2.898811325s ago: executing program 1 (id=272):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x5, 0x52, 0x8, 0xfffffff2, 0x3}) (async)
mount$fuse(0x0, &(0x7f0000002880)='.\x00', &(0x7f00000028c0), 0x4001, &(0x7f0000000180)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) (async)
write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x1, 0x400000000000000}}, 0x28)

2.819217898s ago: executing program 1 (id=273):
mkdir(&(0x7f0000000040)='./file0\x00', 0x1)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000004780)={0x18, 0x0, 0x0, {0x6}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0)
getresuid(0x0, &(0x7f0000000480)=<r3=>0x0, &(0x7f0000000400)=<r4=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,access=', @ANYRESDEC=r4])
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180), 0x8, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@fscache}, {@nodevmap}], [{@uid_lt={'uid<', r3}}, {@obj_user={'obj_user', 0x3d, 'overlay\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, '@,'}}, {@euid_eq={'euid', 0x3d, r3}}]}})
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x1000000, &(0x7f0000000140)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

2.733321811s ago: executing program 1 (id=276):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x34014c40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0xfeffffffffffffff, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3966, 0x1, 0x8000, 0xfffffffc, r2, r3, 0x3, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x80101, 0x101)
write$tcp_congestion(r4, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r4, r0)
write$FUSE_NOTIFY_POLL(r0, &(0x7f0000000100)={0xfffffffffffffeab, 0x1, 0x1f, {0x2}}, 0xffffffe8)

2.439826984s ago: executing program 1 (id=283):
r0 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_QUERYMENU(r0, 0xc02c5625, &(0x7f0000000040)={0x98f907, 0x4, @value=0x9})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000540)=ANY=[@ANYRES32=r3, @ANYRES32=r2, @ANYBLOB='\a'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r3, &(0x7f0000000240), &(0x7f0000000140)=@tcp6=r1}, 0x20)
sendmmsg$inet6(r1, &(0x7f0000008c00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000180)="50558c", 0x3}], 0x1}}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000a80)="fb24ba96", 0xc3fd}, {0x0, 0x11}], 0x2}}], 0x2, 0x20004810)

2.334894685s ago: executing program 1 (id=284):
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r1 = syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000402505a8a4410001020b0109021b00010100c00009040000020701010009050102"], 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000030000000000000000000000850000008700000085000000070000009500"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0xe, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0810", 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
syz_usb_control_io$printer(r1, 0x0, &(0x7f00000011c0)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001180)={0x20, 0x0, 0x1}})
syz_open_dev$char_usb(0xc, 0xb4, 0x0) (async)
pselect6(0x40, &(0x7f0000000080)={0x5, 0x0, 0x120000000000, 0x2, 0x500, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f0000000180)={0x3fe, 0x7, 0x0, 0x9, 0x86, 0x800, 0x80000002}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.879797137s ago: executing program 0 (id=292):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e21, 0x81, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x2e}}, 0x2}, 0x1c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, r2, 0x100, 0x70bd2c, 0x4, {0x5}, [@L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0xc3}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @local}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x5}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x4}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e1f}]}, 0x3c}}, 0x20000084)

1.820186637s ago: executing program 0 (id=294):
syz_emit_ethernet(0x4e, &(0x7f0000000780)={@local, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00 \x00', 0x18, 0x3a, 0xff, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @local, {[], @mld={0x187, 0x0, 0x0, 0x0, 0x0, @local}}}}}}, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000001cc0)={0x2020}, 0x2020)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000500)={0x230, r1, 0x4, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @loopback}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0xbf41, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7}}}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe94e}]}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8527}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}]}]}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3f5}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1ff}]}, @TIPC_NLA_NODE={0x50, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x779}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY={0x3d, 0x4, {'gcm(aes)\x00', 0x15, "41ac082cb022641805ab0e88ce588ff29c53c0d32d"}}]}, @TIPC_NLA_MEDIA={0x50, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_WIN={0x8}]}]}, @TIPC_NLA_BEARER={0xe8, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x54158319}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x1, @remote, 0x3}}, {0x14, 0x2, @in={0x2, 0x4e24, @broadcast}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @multicast2}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x63, @private2, 0x2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_NAME={0xe, 0x1, @l2={'eth', 0x3a, 'xfrm0\x00'}}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}]}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10}]}]}]}, 0x230}, 0x1, 0x0, 0x0, 0x8000}, 0x4008040)
r2 = socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x3b6, &(0x7f00000009c0)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x6, 0x6, "0712c2", 0x0, 0x21, 0xfe, @mcast2, @mcast2, {[@dstopts={0x1d, 0x0, '\x00', [@pad1, @ra={0x5, 0x2, 0x7}, @padn={0x1, 0x0, [0x0, 0x0, 0x0, 0x0]}]}, @dstopts={0x4, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x40}, @calipso={0x7, 0x0, {0x1, 0x0, 0x9, 0xa1c1, [0x0]}}, @padn={0x1, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x0, {0x3, 0x0, 0x7, 0x7, [0xf, 0x2, 0x10]}}, @enc_lim={0x4, 0x1, 0x7}, @hao={0xc9, 0x0, @rand_addr=' \x01\x00'}]}, @hopopts={0x11, 0x0, '\x00', [@generic={0xf3, 0x0, "f05c7260f671cc9c7c3997b9cdbcfec86a5c047cee3baf243c885cd5cff14650742363815bfbaac199"}, @generic={0xff, 0x0, "eb24fb252ec49706173119120f50d103d39853c22340cee0553cac1b06f2078b31004d952262d72bd466cb5f77224a9da9f9a3a8cce1175fe239bd4650b37b2170b2cf40b388aa699c62eb6a22ef432b6ea9"}]}, @routing={0x73, 0x0, 0x1, 0xd4, 0x0, [@remote, @private1={0xfc, 0x1, '\x00', 0x1}, @remote, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @remote, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}, @srh={0x5e, 0x0, 0x4, 0x0, 0x1, 0x50, 0xe, [@private1={0xfc, 0x1, '\x00', 0x1}, @private1]}, @routing={0x2e, 0x0, 0x3, 0x6, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01']}, @dstopts={0x2, 0x0, '\x00', [@hao={0xc9, 0x0, @loopback}, @padn={0x1, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x5}, @pad1]}, @hopopts={0x88, 0x0, '\x00', [@generic={0x5, 0x0, "b4fdca537acdb41d7e0e0b07d608bf6181168456913db6efdf7a0d31740106f7d3085d5d59b01978d71cf3ae6ff5d5f9e42b002eec862073d01a545eba4c0e0173b8fb97bf299e3905fa3737e39440f7f0a01a6a91216aba7fbe797c123c"}]}], {{0x4e20, 0x4e24, 0x0, 0x1, 0x7, 0x0, 0x0, 0xe, 0x1, "3274fa", 0xfe, "b3185a"}, "30964547e7557d6f475a6f7994302c61a48bc60e25d90d628ef20570e42a2c35ca9c8d85e7c511a08fe8b9dd1321a0c0b2cc1699a33924dca91d174a2ca4fdf617593f3946112f12bd2ba393aa2d575d32741e311b2aa8e99394bddd545382d5ff833ce9054c26885af336f07dcd52db76268edd6863d50d3226dfb18fe5c71ba3b16dc7a5b3568915c7194968dcdecc9a47797cfdf8b9cfbaa68a4474992d4629c292f8ad955c3369755b23f456ddbb901c0048c42c1efb408599e3c793878245355a16aca76d55b61d8fe943567f93435683eb02b3f5f6f0c5dc6ff243a0"}}}}}}, 0x0)
r3 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bond0\x00'})
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001080)={0x18, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r4, @ANYBLOB="0000000002000000b705000008000000850000005e00000095"], &(0x7f0000000300)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x28, 0x10, 0x503, 0x70bd28, 0xffffffff, {0x0, 0xcf, 0x0, 0x0, 0x808b, 0x54087}, [@IFLA_TXQLEN={0x8, 0xd, 0x20000000}]}, 0x28}, 0x1, 0x0, 0x0, 0x40150}, 0x0)

1.819955232s ago: executing program 0 (id=295):
r0 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_QUERYMENU(r0, 0xc02c5625, &(0x7f0000000040)={0x98f907, 0x4, @value=0x9})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000540)=ANY=[@ANYRES32=r3, @ANYRES32=r2, @ANYBLOB='\a'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r3, &(0x7f0000000240), &(0x7f0000000140)=@tcp6=r1}, 0x20)
sendmmsg$inet6(r1, &(0x7f0000008c00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000180)="50558c", 0x3}], 0x1}}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000a80)="fb24ba96", 0xc3fd}, {0x0, 0x11}], 0x2}}], 0x2, 0x20004810) (fail_nth: 2)

1.76937563s ago: executing program 0 (id=297):
r0 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_QUERYMENU(r0, 0xc02c5625, &(0x7f0000000040)={0x98f907, 0x4, @value=0x9})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x9a}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x103c41, 0x10)
flock(r4, 0x2)
ioctl$VIDIOC_S_TUNER(r4, 0x4054561e, &(0x7f0000000240)={0xe, "6b6c6465f8b3d4bca2061b0fdd5aa48e37f9c0f8997e63a08544ce7aaa7e3aa2", 0x7, 0x9, 0x5, 0x76, 0x10, 0x1, 0x81, 0x400})
r5 = openat$ttynull(0xffffffffffffff9c, &(0x7f00000001c0), 0x140001, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000200)=0xd)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000540)=ANY=[@ANYRES32=r3, @ANYRES32=r2, @ANYBLOB='\a'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r3, &(0x7f0000000240), &(0x7f0000000140)=@tcp6=r1}, 0x20)
sendmmsg$inet6(r1, &(0x7f0000008c00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000740)="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", 0x144}], 0x1}}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000a80)="fb24ba96", 0x4}, {0x0}], 0x2}}], 0x2, 0x20004810)

1.769146941s ago: executing program 0 (id=298):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
poll(&(0x7f0000001240)=[{r0, 0x8400}, {}, {}], 0x3, 0x3)
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, &(0x7f0000000100)={0x40000000, 0x0, 0x4c14aed0}) (async)
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, &(0x7f0000000100)={0x40000000, 0x0, 0x4c14aed0})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000480), 0x1a1040, 0x0)
ioctl$AUTOFS_IOC_FAIL(r1, 0x4c80, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x4}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x4}}, './file0\x00'})
sendto$l2tp(r2, &(0x7f0000000040)="c4328d00cdd35ebe25c0a64eb35cb32dbd064940598f894a30ed76cc0cef8b795f158491ee793363f6c3ced5f3fa01f4cf7efef1bf4339644d959758dfab005162a91686b0be10065f2a62c69f17c4e49e93b0d70505ad676fe7316c608ac3ea6bb98bf145185c5a259a269fd8e7ed13474dfa05abd6ddfd8c01389c", 0x7c, 0x44800, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10)

1.700163606s ago: executing program 0 (id=299):
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000000)={0x1, 0xfffffffd, 0x8bd0, 0xffff, 0x0, "4a073b267df2e98c69ba36c5095c911abad88f", 0x4, 0x7})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0x7)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

1.159762604s ago: executing program 3 (id=304):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x44080)
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, &(0x7f0000000140)={0x17c04, r0, 0x7f, 0x8, 0xffffffffffffffff, 0x100000000})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000040)={0x11119001, 0x1c000, 0x3})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x6, 0x9, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4002004c4, 0x1006, 0x45c5, 0xc597, 0x7, 0x6, 0xffffffffffffffff, 0x8000, 0x80000004000000, 0xc], 0x80a0000, 0x2010d3})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f47"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

238.468721ms ago: executing program 2 (id=308):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000f5000100000000001f1bd6b517b5db092f36b1a923eab74e497a58f39ed0ba72e2a642f3fbd055cc17c2dc822c992b27a260b0f0308561868ce53c293b2b403da69142"], 0x14}], 0x1, 0x0, 0x0, 0x20000004}, 0x140000c4)

189.835698ms ago: executing program 2 (id=309):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x200000000000000) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1b00000000000000000000008000000000891f68e2051a02706bf0f0f67efbcef11185d71f558ccd999a", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000018010000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11}, 0x94) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r3, @ANYBLOB="08000100", @ANYRES32=r4], 0x90}}, 0x0) (async)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b0000000000000000000000000004000000000049a36d1ab691090000008e272e072f050000000c83bc", @ANYRES64=r4, @ANYBLOB='\x00'/20, @ANYBLOB="fb1eeba911b4e5f6595cf705249489f66a09176731b86d3d2db86331b59f202b0c2fcca52c0c325d3f758e6b7978488c2a95b6f77f2b022af7b2415d791d9d7380ff101bf52e56a0abe33b80c225c367f07794d5853fab0ae2fefa18057cbae598253e46c06860ca84b8126f731a4e00b674dc0685804268b0c78c2029c80b0cc52858987742512d5a0e980842", @ANYRESHEX=r0, @ANYBLOB='\x00'/28], 0x48) (async)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="020000000400000008"], 0x48) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000) (async)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x1000000, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@xino_on}]})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) (async)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)

189.669838ms ago: executing program 3 (id=310):
timer_settime(0x0, 0x1, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000002c0)=ANY=[@ANYBLOB="e00000027f0000010100000002"], 0x18)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000040)={'lo\x00'})
writev(r1, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025fec000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)

174.687981ms ago: executing program 2 (id=311):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610430000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48) (async)
r0 = syz_clone(0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000300)={0x73622a85, 0x0, 0x40})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) (async)
r4 = dup3(r3, r2, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) (async)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0}) (async, rerun: 32)
ioctl$EVIOCSKEYCODE(r4, 0x40084504, &(0x7f0000000140)=[0x4, 0x7]) (async, rerun: 32)
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) (async)
r5 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x804, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000100))
r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000700), 0x82840)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r6, 0x80045400, 0x0) (async, rerun: 32)
r7 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) (rerun: 32)
sendmsg(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)}, 0x0) (async)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, 0x0) (async)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100000000000000000000000000000000000000000a0060", @ANYRESOCT], 0xb8}}, 0x20040014) (async)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300020000000000fedbdf25fc000000000000000000000000000000ac1414bb00000000000000000000000000000004000000000a0060803b00"], 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x50)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={0x0, 0xb8}}, 0x0) (async)
setsockopt$MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r4, &(0x7f0000000200)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000480)={&(0x7f0000000500)={0x30, 0x3, 0x8, 0x201, 0x0, 0x0, {0x5}, [@CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_CLOSED={0x8, 0x1, 0x1, 0x0, 0x2}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8035}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x88f8}]}, 0x30}, 0x1, 0x0, 0x0, 0x801}, 0x48002) (async)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, 0x0, 0x0) (async)
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r9, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc00000000000000"], 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0) (async)
sendmsg$nl_xfrm(r9, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0xaa3, 0xfffffffffffffff8}, {0x0, 0x8}}}, 0xb8}}, 0x0) (async)
dup(r1)

173.432229ms ago: executing program 3 (id=312):
syz_emit_ethernet(0x6e, &(0x7f0000000280)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "000210", 0x38, 0x3a, 0x0, @remote, @mcast2, {[], @time_exceed={0x3, 0x0, 0x0, 0x6, '\x00', {0xf, 0x6, "d86998", 0x6, 0x2f, 0xff, @empty, @private2={0xfc, 0x2, '\x00', 0x1}, [@srh={0x2c, 0x0, 0x4, 0x0, 0x53, 0x0, 0x5}]}}}}}}}, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4c, &(0x7f0000001800), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x5, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000004830000000000000fa40000007010000080020007500feff0000820095"], &(0x7f0000000100)='GPL\x00', 0x8, 0xef, &(0x7f0000000000)=""/239, 0x40f00, 0x40}, 0x94)

100.337692ms ago: executing program 2 (id=313):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x3, &(0x7f0000000040)=[{0x5, 0x2, 0x3, 0xfffffffc}, {0x8, 0x40, 0x1}, {0x40, 0x0, 0xe5, 0x3}]})
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0x40345410, &(0x7f0000000080)={{0x3, 0x3}})
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r0, 0x80e85411, 0xfffffffffffffffe)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000500000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="0000000000000000660002000000000018000000ffffffd000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x48, &(0x7f0000000340)=""/222}, 0x90)

98.313603ms ago: executing program 3 (id=314):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={r0, 0xffffffffffffffff, 0x4, 0x0, @void}, 0x10) (async)
unshare(0x64000600) (async, rerun: 32)
unshare(0x4010000) (rerun: 32)

94.845297ms ago: executing program 2 (id=315):
r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BLKPG(r0, 0x1269, &(0x7f0000000100)={0x1, 0x0, 0x98, &(0x7f0000000040)={0x8, 0x180000000000, 0x7}})
ioctl$BLKPBSZGET(r0, 0x127b, &(0x7f0000000140))
preadv(r0, &(0x7f00000003c0)=[{&(0x7f0000000180)=""/46, 0x2e}, {&(0x7f00000001c0)=""/250, 0xfa}, {&(0x7f00000002c0)=""/196, 0xc4}], 0x3, 0x4, 0x5bc5c8b2)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), r0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f0000000680)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000480)={0x1b8, r1, 0x300, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_REKEY_DATA={0x7c, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "b77ef1ce60f16f57"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "6d256866003bbbeb"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "2a96bfacf5c93f1d"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0xfe}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="0392b6818d5f7234010d6968bab0481a39fbdba11003729d13f024fb8b8bfa34"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "e97be15fd183ba9a"}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="f5f7e51f725377dfae6cb583f9522544"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x3}]}, @NL80211_ATTR_REKEY_DATA={0x78, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="d9fc9453b838971e0cddba8b72e4256dcde8c096e9ac2f65"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "954cfa478fcb4e47"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="264298287b77e5eac1c76f3b697055ac"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="52b64e5d5e3fff90da88301ea92461c6"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="8c8cb7993061ec92b93900d252192725cb0746dc0616799c"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0xfcb2}]}, @NL80211_ATTR_REKEY_DATA={0x8c, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="7c65c9b930e17a9c745ea21a9972742d4c98abfbef77bebbad03a2e477679515"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "7810e4d4d065e53f"}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="3c9cf160218f908ba14fa3ffcf6f35f2"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "46055b9356dfe154"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="3546c5b385ee891f3a7b028e2d6700d86dab5562b24643a7c5f9926cfdfdadcf"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="c8315ec63e0bc87115851287ceeec803"}]}, @NL80211_ATTR_REKEY_DATA={0x24, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="1d8034b89b411f277d13fbeb71487bd0"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "f40915e65e33f92e"}]}]}, 0x1b8}, 0x1, 0x0, 0x0, 0x4}, 0x800)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, &(0x7f00000006c0))
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4, 0x10, r0, 0x53df6000)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000740), r0)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f0000000800)={&(0x7f0000000700), 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x38, r2, 0x300, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x6, 0x41}}}}, [@NL80211_ATTR_NOACK_MAP={0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x9}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
read$midi(0xffffffffffffffff, &(0x7f0000000840)=""/233, 0xe9)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000940)=0x8, 0x4)
sendto$inet(r0, &(0x7f0000000980)="cfbb89b6c58e5d8de854ab3897a55d22f9395a98a69312f50f704a921adaa79edd4b2cb019c81418dee7b741683304f2145dd51ca08d843317d359fcf29ef4c31ffa21174758acefe5d8e848258ef9b4171b15382f8e81cceb2711d23f4991d65a1b55bf808f8a00651a9eb62ac161b77e0de0c3f30cc7e914834a86998f88664dfff563269547a496e21dc066d7195408ef8ec018deeb", 0x97, 0x800, &(0x7f0000000a40)={0x2, 0x4e22, @multicast2}, 0x10)
ioctl$BTRFS_IOC_FS_INFO(r0, 0x8400941f, &(0x7f0000000a80))
r3 = signalfd(r0, &(0x7f0000000e80)={[0x6]}, 0x8)
read$midi(r3, &(0x7f0000000ec0)=""/36, 0x24)
write$binfmt_misc(r0, &(0x7f0000000f00)="2975b591b4e5f2fb3e11a37d40c0118ff2e6abc8dcccacde971ab4bf7bcf1e7852b6d1179813e45a897d6ea36f933c4f675c119bc3728031bf0f8f8f9084d4017d0e48bc55f71f156018914729f7c6ecb285daaa3ca563822b01088fc505520b4b235187436f", 0x66)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r0, 0xf502, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000fc0), r3)
sendmsg$NL80211_CMD_SET_COALESCE(r3, &(0x7f0000001200)={&(0x7f0000000f80)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000011c0)={&(0x7f0000001000)={0x184, r4, 0x100, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x6, 0x3a}}}}, [@NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x154, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x1}}, {0x78, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0x74, 0x2, "3edff78b03fafc93ec3c5be12e3b662388ee2d917bf8345125f3ed779a0f4ea44af73c99fc1ea6a3163483099c96b2b9100db934b8eb54f2a9ef6428f7fe33cbe2d7a1be1d07b1b5615243cd600aa1b8bf24c06c5f3f754c48c3281d8d306edc6d309dd2fece4ca0958eb2cac5369a98"}}, {0xcc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0xc6, 0x1, "14857d55f96c8942b958b1a264fcdea658f34973c854bd2de074c34ee362923c0883bee8b7fefcdd9cea5a039a761e3693a5e493af1624b970ae8167a86273e29d41699d9243bd78641560eb25d2ffff6027b7d4b126436b05d788864542e36920124585e0df4e32104bc9aa106f46744a401c32a57420ba305a675c3abae1f60dd9f078c9ebd7a08e17d8421c78c9112a9a852c978350b8968ce671dce344b87a360ff84a519e521670fa7ca30a06906e84c4d2b5640d25d9813dff17bc5dced796"}}]}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}]}, 0x184}, 0x1, 0x0, 0x0, 0xa041}, 0x40800)
ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f0000001240)=0x7)
r5 = accept$alg(0xffffffffffffffff, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r5, 0x80489439, &(0x7f0000001280))
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000001340)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r3, &(0x7f0000001400)={&(0x7f0000001300)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000013c0)={&(0x7f0000001380)={0x28, r2, 0x8, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x9f0, 0x28}}}}, [@NL80211_ATTR_STA_VLAN={0x8, 0x14, r6}]}, 0x28}, 0x1, 0x0, 0x0, 0x200008c4}, 0x20000000)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000001440)={{{@in=@initdev, @in=@multicast2}}, {{@in6=@local}, 0x0, @in=@empty}}, &(0x7f0000001540)=0xe8)
getsockopt$MISDN_TIME_STAMP(r3, 0x0, 0x1, &(0x7f0000001580), &(0x7f00000015c0)=0x4)
ioctl$SIOCX25SFACILITIES(r0, 0x89e3, &(0x7f0000001600)={0x52, 0x2a7c, 0x8, 0xb, 0x1000})
ioctl$SIOCX25SFACILITIES(r3, 0x89e3, &(0x7f0000001640)={0x58, 0x9, 0xc, 0x4, 0x4})
ioctl$SNDCTL_SEQ_NRSYNTHS(0xffffffffffffffff, 0x8004510a, &(0x7f00000016c0))

94.140039ms ago: executing program 2 (id=316):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000880)=ANY=[@ANYRESOCT=r0, @ANYRES32=r0], 0x1c}, 0x1, 0x0, 0x0, 0x4008085}, 0x4000000)
sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002}, 0x0)
r1 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
r2 = syz_open_dev$vim2m(&(0x7f00000009c0), 0x2, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r2, 0xc008561c, &(0x7f0000000380)={0xf0f001, 0x2})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r3=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r3})
close_range(r1, r1, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, 0x0)
r5 = fanotify_init(0x200, 0x0)
fanotify_mark(r5, 0x1, 0x4800003e, r4, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000940)='/proc/sysvipc/shm\x00', 0x0, 0x0)
r7 = add_key$user(&(0x7f00000002c0), &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000140)="ed", 0x1, 0xfffffffffffffffe)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000900)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r8}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f00001d6000/0x1000)=nil, 0x1000, 0x17)
keyctl$set_timeout(0xf, r7, 0x7ffc)
read$FUSE(r6, &(0x7f0000003d80)={0x2020}, 0x1a4e)
r9 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x8)
fanotify_mark(r5, 0x71, 0x40000009, r9, 0x0)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
getsockopt(r11, 0xff, 0x1, 0x0, &(0x7f0000000000))
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r10, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000240)=""/80, 0x50}, {&(0x7f00000002c0)=""/180, 0xb4}, {&(0x7f0000000440)=""/217, 0xd9}, {&(0x7f0000000540)=""/248, 0xf8}, {&(0x7f0000000640)=""/74, 0x4a}], 0x5)
syz_clone(0x41800000, &(0x7f0000000180)="43320b5ac2487dcbf8ac9ae1988ff1", 0xf, &(0x7f0000000740), &(0x7f0000000780), &(0x7f00000007c0)="824fd66bb716440f2f816edfc20086040f85500aec9b490bb9b23c9780c22955989c1f89fb33c191e8f9b76ae25d0344fb43e744e6b030bcd38b00b807125db020b0beaeb19b9a90328cb1263e955e9ff0e88cf84d90fcc10772e4797c994d7ee1085f48794ae8391002ee2ff810818e9a61e60667479f46847abe96cbe50d9d6ea61f8a46b04201382758")
r12 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r12, 0xc04064a0, &(0x7f0000000980)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1})

334.603µs ago: executing program 3 (id=317):
r0 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_QUERYMENU(r0, 0xc02c5625, &(0x7f0000000040)={0x98f907, 0x4, @value=0x9})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000540)=ANY=[@ANYRES32=r3, @ANYRES32=r2, @ANYBLOB='\a'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r3, &(0x7f0000000240), &(0x7f0000000140)=@tcp6=r1}, 0x20)
sendmmsg$inet6(r1, &(0x7f0000008c00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000180)="50558c", 0x3}], 0x1}}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000a80)="fb24ba96", 0xc3fd}, {0x0, 0x11}], 0x2}}], 0x2, 0x20004810) (fail_nth: 4)

0s ago: executing program 3 (id=318):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080), 0x8)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/uevent_helper', 0x8aa01, 0x118)
write$FUSE_NOTIFY_POLL(r0, &(0x7f0000002540)={0x18, 0x1, 0x0, {0x5}}, 0x18)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000200)={'syztnl1\x00', &(0x7f0000000180)={'syztnl2\x00', <r1=>0x0, 0x29, 0x1, 0x6, 0x0, 0x0, @private0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x26}}, 0x7, 0x7, 0x3, 0x3b3b}})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1b00"/20, @ANYRES32=r0, @ANYBLOB="00000800000000eaffffff000000000000000000", @ANYRES32=r1, @ANYRES32, @ANYBLOB="03000000020000000300"/28], 0x50)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r2, &(0x7f00000002c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0xe64, 0x5, 0x10, "0062ba7d82000000000000000000f7ffffff00"})
r3 = syz_open_pts(r2, 0x0)
r4 = dup3(r3, r2, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x17)
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000480)=0xffffffffffffffff, 0x4)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r6 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000ec0)={'#! ', './file0', [{0x20, '\xb3{myT\xfb@\x1a\x82\x84\x10=\xd5\xc4[\x93\x8d\xe0\xdb\xd7l\x9f\'\xd9\x0f\xff\xc4X\x89v\x8c\xab*l?r\x95\x90\xc5\xd4\xfd\x11GQ\x1c\xb1\x04%/8B\xad\xd0\x8e\xc2\xd3\xb8\xaf\x0f\f\x87\x8dE\xd4S\xe2\xb6\xfc\xa1\xf8q\xa3_\xcd%\x1c\xae\x9f*\x1e\xbai\x8c\xaf[%o\x8f`\x16\xc5\x86\xb1\xd3\xc7H\xbf\xf6\x85\x96\x10\xca\xc3\v\xd7\x82\'Z\x8c\xa2d\x1b\x00\xa7\x91\xd9\x10\x1b<\xb5\xc1;h\xd0\x8f\xb5Z4\xd0d8~\xe3'}, {0x20, 'rpJ\xd5\xe4<u\xc4\x93\xce\xb8\x9b\xa1|W\a\xf2=\x04\xa4\xf4\xa6\xc1\x19\xf4\xf6Nd\xfc\xf1\xf6\xfe?\x13M\xeb\x9d\x85\x152\xd5\xf4\xe8|YB\x9c\xd8\x88\x8a\xccRU\xea\xf4:\xe9|\xb3\xd1v\x9e(\x18\x06\xccP<\xa8^P\x8c\x03P\x9e\xdb\x94\xc2\xa2\xa0K\x9c\x1b\xeb\xc8q\xa3Oa|\a|\xe6\xb4f\xd6\xb8\xf9d\xb3*%\nN\v\xfal\x12\xbe\xb5\xdbC\xef \xfa\xda\x11 DVa\xdb\xd3\xbdN\x17y\xca\xf1p\xc2\xf2+\x900\x17\x81\xa8d\x84\x16k\t\x91\x03\xc1o\xae\xae\x9c\x19\n\xe55\xcf.\xfb]\xb7\x83\x988\xa0\x13!|\xa9\x9e\xc1\x05\xe5-k3\x9aUZ\xe6\r\x99\x17j|\x1e%|M\xf6w\x1avrT/\xaa8\xd0\x87{\xe1\x19\xe7\xa7\xdb\xe7B\xefs\\d\x84\xab\xa7\xcf5\x10M\r}\x9e#\x8c[\x92\nf\x9f&\x06\xe4\x19:\xcc(\xbc\xbf\xda(I\x8d\xffC\xae\x98\xa2\x940]\x90\xdao\xe4\xbb\xfa\x91\xd4\xc6,\xc0\xf6\xea\xe5\x83X|-\xe0\xc3|\xbb\x1a\xc4\xc3!\xbffO\xaa0\x85+QTW\x9bN\x7fw\x90\x1e,\xd9\n\xc8d\xe4`\xc4\x95\x924\xe4\xa6\xdd\x1a \x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00bZ\x11\x01v\xc8\xfcU\xe2\xfc\xe3\xa3'}, {0x20, '\x12~\x85\xecZ@\xb5\x18\xec\x182\xc9L\xdc\xb2\x81\xdam\xa8\xc5{\x92\x14\xce\xf2\xb8\xf7\xa9\xa7\x00X \x93t\x91!%\xff\x13\xdc\aIY\x0e\xb4zh\\\x06\r\xe8^Z\x81\xb8$:P\x83\x98_\xa1\x98\xd6\xd2g-\xefr\x14<\xd1\xb84\x94\xa09\x9f\x12I\xed\xd5dT#f\xb4\xf3\x88\xcf\xde\x00\xd4\x81WN\xca\xb5c\xbf\r\xb0Q\xa9\xbaC\xd2\xa2\x1d~\xc5D(\x92A\x12f\x83fn\xd0\xb6\x02\x116t:|\x94\xc7\xac\xf6\xbc~m\xd6\xd1\xe5\xe0\xdd\xc2\x9cl#\x85\xab\xe7\xa9\xcb\"\xd2\x97\x10\xa5\xa8\xc1\x8d@U\a]Gi^\xd2\xdf\xb0\xa5!\x836\x92\xc9\x92\xe4'}], 0xa, "7bad65c4da5338577febf62ca63250224c76e2027f000000000000007e2ac7fe2e31a2e87e3eb8000000000000002c65e7495fe9afeb28bb60e91e23e104f6dbbf40e1fc2ab1a77fd9f600000000000000"}, 0x2dc)
r8 = syz_init_net_socket$llc(0x1a, 0x3, 0x0)
getsockopt$IP_SET_OP_GET_BYNAME(r8, 0x1, 0x53, &(0x7f00000000c0)={0x6, 0x7, 'syz0\x00'}, &(0x7f00000006c0)=0x28)
r9 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
syncfs(r5)
unshare(0x66020280)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="10000000040000000800000002"], 0x48)
r11 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r11, 0x29, 0x46, 0x0, 0x0)
ioctl$UFFDIO_POISON(r0, 0xc020aa08, &(0x7f0000000780)={{&(0x7f0000730000/0x1000)=nil, 0x1000}, 0x1})
getsockopt$inet6_int(r11, 0x29, 0x46, 0x0, &(0x7f0000000140))
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r10, &(0x7f00000000c0), &(0x7f0000000000)=""/10, 0x2}, 0x20)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000600)=@bpf_tracing={0x1a, 0x1f, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000e0000000000300000018110000", @ANYBLOB="532f743999d972c566de4aa5661651af4c98c0060954fc00eae8d8e603d9325ef2250d6391afa46101642cabc098133d12ddd0a38025c4f62c9598f556588a49b54d881029855aefb1d1e3209f76af7f32786f7b31fdb6f4b14363d38e415c7056a3be0c81e92249c42b115cebb4aef10881f5cc6550d1603e32c357e4031b9963e74581aff4c164fe862a62d868743c5eb1457036ff", @ANYBLOB="000000000000000e8902000014000000b703000000000000850000008300009cbeff00bf0900000000000055090100000000009500000000000000182700005b3e0422f568b29adb893259134299ec", @ANYRES32=r4, @ANYBLOB="00000000050000001834000003000000000000000000000085100000080000008510000000000000180000009500000000000000d700000018190000", @ANYRES32=r7, @ANYBLOB="000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000085200000030000000e7c683504000000bf91000000000000b7020000010000008500000001000000b7000000000000009500000000000000"], &(0x7f00000003c0)='syzkaller\x00', 0xfef9, 0x5a, &(0x7f0000000400)=""/90, 0x41100, 0x0, '\x00', 0x0, 0x18, r5, 0x8, &(0x7f00000004c0)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000500)={0x2, 0x6, 0x5, 0x5}, 0x10, 0x1ff99, r9, 0x5, &(0x7f0000000540), &(0x7f0000000580)=[{0x0, 0x5, 0xd, 0x5}, {0x3, 0x2, 0x8, 0x2}, {0x3, 0x4, 0x6, 0x7}, {0x1, 0x3, 0x5, 0xa}, {0x2, 0x6, 0x4}], 0x10, 0x3}, 0x94)

kernel console output (not intermixed with test programs):

[   44.158313][   T40] audit: type=1400 audit(1757583313.339:60): avc:  denied  { rlimitinh } for  pid=5884 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   44.164773][   T40] audit: type=1400 audit(1757583313.339:61): avc:  denied  { siginh } for  pid=5884 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '[localhost]:28953' (ED25519) to the list of known hosts.
[   45.417935][   T40] audit: type=1400 audit(1757583314.629:62): avc:  denied  { name_bind } for  pid=5933 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   45.437751][   T40] audit: type=1400 audit(1757583314.649:63): avc:  denied  { write } for  pid=5934 comm="sh" path="pipe:[3848]" dev="pipefs" ino=3848 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   45.455198][   T40] audit: type=1400 audit(1757583314.659:64): avc:  denied  { execute } for  pid=5934 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   45.461783][   T40] audit: type=1400 audit(1757583314.659:65): avc:  denied  { execute_no_trans } for  pid=5934 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   47.381811][   T40] audit: type=1400 audit(1757583316.589:66): avc:  denied  { mounton } for  pid=5934 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   47.384316][ T5934] cgroup: Unknown subsys name 'net'
[   47.499609][ T5934] cgroup: Unknown subsys name 'cpuset'
[   47.505481][ T5934] cgroup: Unknown subsys name 'rlimit'
[   47.752643][ T5955] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   48.434655][ T5934] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   51.343790][   T40] kauditd_printk_skb: 13 callbacks suppressed
[   51.343800][   T40] audit: type=1400 audit(1757583320.549:80): avc:  denied  { execmem } for  pid=5960 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   51.556327][   T40] audit: type=1400 audit(1757583320.759:81): avc:  denied  { create } for  pid=5964 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   51.563341][   T40] audit: type=1400 audit(1757583320.759:82): avc:  denied  { read write } for  pid=5964 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   51.570844][   T40] audit: type=1400 audit(1757583320.759:83): avc:  denied  { open } for  pid=5964 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   51.578241][   T40] audit: type=1400 audit(1757583320.779:84): avc:  denied  { ioctl } for  pid=5966 comm="syz-executor" path="socket:[5999]" dev="sockfs" ino=5999 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   51.590502][ T5968] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   51.594409][ T5976] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   51.597088][ T5976] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   51.600252][ T5976] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   51.602769][ T5976] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   51.605480][ T5974] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   51.607781][ T5973] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   51.611008][   T40] audit: type=1400 audit(1757583320.819:85): avc:  denied  { read } for  pid=5965 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   51.611546][ T5973] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   51.611570][ T5974] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   51.612564][ T5974] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   51.614825][ T5974] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   51.615025][ T5980] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   51.615094][ T5974] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   51.617645][   T40] audit: type=1400 audit(1757583320.819:86): avc:  denied  { open } for  pid=5965 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   51.617733][ T5980] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   51.622230][ T5973] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   51.624134][   T40] audit: type=1400 audit(1757583320.819:87): avc:  denied  { mounton } for  pid=5965 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   51.624170][ T5980] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   51.626170][ T5980] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   51.626900][ T5980] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   51.627088][ T5973] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   51.627524][ T5973] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   51.807595][   T40] audit: type=1400 audit(1757583321.019:88): avc:  denied  { module_request } for  pid=5966 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   51.847098][ T5966] chnl_net:caif_netlink_parms(): no params data found
[   51.883614][ T5965] chnl_net:caif_netlink_parms(): no params data found
[   51.954342][ T5964] chnl_net:caif_netlink_parms(): no params data found
[   51.994407][ T5966] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.997013][ T5966] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.999402][ T5966] bridge_slave_0: entered allmulticast mode
[   52.001975][ T5966] bridge_slave_0: entered promiscuous mode
[   52.005675][ T5966] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.009034][ T5966] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.011262][ T5966] bridge_slave_1: entered allmulticast mode
[   52.013787][ T5966] bridge_slave_1: entered promiscuous mode
[   52.113249][ T5977] chnl_net:caif_netlink_parms(): no params data found
[   52.120114][ T5965] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.122896][ T5965] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.125791][ T5965] bridge_slave_0: entered allmulticast mode
[   52.129449][ T5965] bridge_slave_0: entered promiscuous mode
[   52.134552][ T5966] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.139033][ T5966] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.170056][ T5965] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.172331][ T5965] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.174572][ T5965] bridge_slave_1: entered allmulticast mode
[   52.177273][ T5965] bridge_slave_1: entered promiscuous mode
[   52.265108][ T5966] team0: Port device team_slave_0 added
[   52.273580][ T5964] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.275836][ T5964] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.278506][ T5964] bridge_slave_0: entered allmulticast mode
[   52.281233][ T5964] bridge_slave_0: entered promiscuous mode
[   52.285073][ T5965] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.288878][ T5966] team0: Port device team_slave_1 added
[   52.319052][ T5964] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.321323][ T5964] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.323553][ T5964] bridge_slave_1: entered allmulticast mode
[   52.326118][ T5964] bridge_slave_1: entered promiscuous mode
[   52.329688][ T5965] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.346931][ T5977] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.349273][ T5977] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.351513][ T5977] bridge_slave_0: entered allmulticast mode
[   52.354046][ T5977] bridge_slave_0: entered promiscuous mode
[   52.430197][ T5966] batman_adv: batadv0: Adding interface: batadv_slave_0
[   52.432387][ T5966] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   52.440403][ T5966] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   52.444574][ T5977] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.448240][ T5977] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.450603][ T5977] bridge_slave_1: entered allmulticast mode
[   52.454278][ T5977] bridge_slave_1: entered promiscuous mode
[   52.479191][ T5964] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.484195][ T5965] team0: Port device team_slave_0 added
[   52.486824][ T5966] batman_adv: batadv0: Adding interface: batadv_slave_1
[   52.489012][ T5966] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   52.496688][ T5966] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   52.528332][ T5964] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.533093][ T5965] team0: Port device team_slave_1 added
[   52.563742][ T5977] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.610946][ T5965] batman_adv: batadv0: Adding interface: batadv_slave_0
[   52.613203][ T5965] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   52.621676][ T5965] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   52.628177][ T5977] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.645256][ T5964] team0: Port device team_slave_0 added
[   52.648714][ T5965] batman_adv: batadv0: Adding interface: batadv_slave_1
[   52.650882][ T5965] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   52.658826][ T5965] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   52.694557][ T5964] team0: Port device team_slave_1 added
[   52.746130][ T5977] team0: Port device team_slave_0 added
[   52.751435][ T5966] hsr_slave_0: entered promiscuous mode
[   52.753773][ T5966] hsr_slave_1: entered promiscuous mode
[   52.776271][ T5964] batman_adv: batadv0: Adding interface: batadv_slave_0
[   52.779277][ T5964] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   52.790315][ T5964] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   52.794947][ T5977] team0: Port device team_slave_1 added
[   52.826636][ T5964] batman_adv: batadv0: Adding interface: batadv_slave_1
[   52.828979][ T5964] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   52.836821][ T5964] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   52.922477][ T5977] batman_adv: batadv0: Adding interface: batadv_slave_0
[   52.924683][ T5977] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   52.933498][ T5977] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   52.938128][ T5977] batman_adv: batadv0: Adding interface: batadv_slave_1
[   52.940353][ T5977] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   52.948438][ T5977] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   52.961983][ T5965] hsr_slave_0: entered promiscuous mode
[   52.964425][ T5965] hsr_slave_1: entered promiscuous mode
[   52.966503][ T5965] debugfs: 'hsr0' already exists in 'hsr'
[   52.968696][ T5965] Cannot create hsr debugfs directory
[   53.025232][ T5964] hsr_slave_0: entered promiscuous mode
[   53.027988][ T5964] hsr_slave_1: entered promiscuous mode
[   53.030056][ T5964] debugfs: 'hsr0' already exists in 'hsr'
[   53.031906][ T5964] Cannot create hsr debugfs directory
[   53.055134][ T5977] hsr_slave_0: entered promiscuous mode
[   53.057344][ T5977] hsr_slave_1: entered promiscuous mode
[   53.059375][ T5977] debugfs: 'hsr0' already exists in 'hsr'
[   53.061171][ T5977] Cannot create hsr debugfs directory
[   53.337645][ T5966] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   53.343137][ T5966] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   53.347377][ T5966] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   53.356170][ T5966] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   53.382881][ T5965] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   53.387438][ T5965] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   53.397421][ T5965] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   53.406000][ T5965] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   53.446803][ T5977] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   53.458011][ T5977] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   53.465745][ T5977] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   53.480247][ T5977] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   53.515307][ T5964] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   53.524614][ T5964] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   53.528944][ T5964] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   53.536542][ T5964] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   53.556056][ T5966] 8021q: adding VLAN 0 to HW filter on device bond0
[   53.579790][ T5965] 8021q: adding VLAN 0 to HW filter on device bond0
[   53.605114][ T5966] 8021q: adding VLAN 0 to HW filter on device team0
[   53.611640][ T5965] 8021q: adding VLAN 0 to HW filter on device team0
[   53.621723][   T96] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.624236][   T96] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.632631][   T96] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.634932][   T96] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.646875][   T96] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.647752][ T5980] Bluetooth: hci0: command tx timeout
[   53.649407][   T96] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.653581][ T5980] Bluetooth: hci2: command tx timeout
[   53.653608][ T5968] Bluetooth: hci1: command tx timeout
[   53.662193][ T5977] 8021q: adding VLAN 0 to HW filter on device bond0
[   53.679254][ T5966] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   53.682785][ T5966] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   53.692720][ T1175] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.694905][ T1175] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.709984][ T5977] 8021q: adding VLAN 0 to HW filter on device team0
[   53.718442][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.720600][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.727527][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.727552][ T5968] Bluetooth: hci3: command tx timeout
[   53.729813][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.732651][   T40] audit: type=1400 audit(1757583322.939:89): avc:  denied  { sys_module } for  pid=5966 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   53.741188][ T5964] 8021q: adding VLAN 0 to HW filter on device bond0
[   53.767038][ T5964] 8021q: adding VLAN 0 to HW filter on device team0
[   53.778622][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.780978][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.787983][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.790312][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.819119][ T5966] 8021q: adding VLAN 0 to HW filter on device batadv0
[   53.860907][ T5966] veth0_vlan: entered promiscuous mode
[   53.866771][ T5966] veth1_vlan: entered promiscuous mode
[   53.876725][ T5965] 8021q: adding VLAN 0 to HW filter on device batadv0
[   53.899317][ T5966] veth0_macvtap: entered promiscuous mode
[   53.908107][ T5966] veth1_macvtap: entered promiscuous mode
[   53.920351][ T5965] veth0_vlan: entered promiscuous mode
[   53.930641][ T5965] veth1_vlan: entered promiscuous mode
[   53.934506][ T5977] 8021q: adding VLAN 0 to HW filter on device batadv0
[   53.939416][ T5966] batman_adv: batadv0: Interface activated: batadv_slave_0
[   53.948339][ T5966] batman_adv: batadv0: Interface activated: batadv_slave_1
[   53.961188][ T5964] 8021q: adding VLAN 0 to HW filter on device batadv0
[   53.966851][ T1144] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   53.971998][ T1144] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   53.980273][ T1144] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   53.984120][ T1144] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   53.996565][ T5965] veth0_macvtap: entered promiscuous mode
[   54.009396][ T5977] veth0_vlan: entered promiscuous mode
[   54.012554][ T5965] veth1_macvtap: entered promiscuous mode
[   54.028347][ T5977] veth1_vlan: entered promiscuous mode
[   54.063714][ T5965] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.070567][ T5965] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.073563][ T5964] veth0_vlan: entered promiscuous mode
[   54.076859][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.079686][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.086178][   T60] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.088966][   T60] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.095542][   T60] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.098953][   T60] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.105702][ T5977] veth0_macvtap: entered promiscuous mode
[   54.114874][ T5964] veth1_vlan: entered promiscuous mode
[   54.125183][ T5977] veth1_macvtap: entered promiscuous mode
[   54.129382][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.131863][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.151437][ T5977] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.165453][ T5977] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.169487][ T5964] veth0_macvtap: entered promiscuous mode
[   54.177039][ T5964] veth1_macvtap: entered promiscuous mode
[   54.178682][ T5966] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   54.192199][   T46] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.205963][   T46] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.208805][   T46] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.211427][   T46] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.221736][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.224194][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.232478][ T5964] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.253524][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.255884][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.255964][ T5964] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.271264][   T60] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.274043][   T60] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.276727][   T60] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.289246][   T60] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.297367][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.299909][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.349042][ T6055] ipvlan2: entered promiscuous mode
[   54.351896][ T6055] bridge0: port 3(ipvlan2) entered blocking state
[   54.354010][ T6055] bridge0: port 3(ipvlan2) entered disabled state
[   54.356145][ T6055] ipvlan2: entered allmulticast mode
[   54.358108][ T6055] bridge0: entered allmulticast mode
[   54.360864][ T6055] ipvlan2: left allmulticast mode
[   54.362472][ T6055] bridge0: left allmulticast mode
[   54.374861][   T96] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.378959][   T96] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.385110][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.388658][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.406868][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.410423][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.286893][ T6082] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9'.
[   55.737244][ T5968] Bluetooth: hci1: command tx timeout
[   55.737627][ T5973] Bluetooth: hci0: command tx timeout
[   55.740709][ T5980] Bluetooth: hci2: command tx timeout
[   55.807628][ T5980] Bluetooth: hci3: command tx timeout
[   55.889405][ T6104] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10'.
[   55.897102][ T6104] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10'.
[   55.901626][ T6104] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10'.
[   55.906245][ T6104] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10'.
[   55.922158][ T6104] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=6104 comm=syz.1.10
[   56.013101][ T6107] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[   56.070561][ T6109] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (65416116 ns). Using initial count to start timer.
[   56.072005][ T6111] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.11'.
[   56.375242][ T6129] netlink: 'syz.1.18': attribute type 12 has an invalid length.
[   56.381957][   T40] kauditd_printk_skb: 63 callbacks suppressed
[   56.381970][   T40] audit: type=1400 audit(1757583325.589:153): avc:  denied  { mount } for  pid=6128 comm="syz.1.18" name="/" dev="autofs" ino=9764 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[   57.223229][   T40] audit: type=1400 audit(1757583326.429:154): avc:  denied  { unmount } for  pid=5977 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[   57.251463][   T40] audit: type=1400 audit(1757583326.459:155): avc:  denied  { create } for  pid=6133 comm="syz.1.20" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   57.257494][   T40] audit: type=1400 audit(1757583326.459:156): avc:  denied  { connect } for  pid=6133 comm="syz.1.20" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   57.263259][   T40] audit: type=1400 audit(1757583326.469:157): avc:  denied  { name_bind } for  pid=6133 comm="syz.1.20" src=3618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   57.270068][   T40] audit: type=1400 audit(1757583326.469:158): avc:  denied  { create } for  pid=6133 comm="syz.1.20" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   57.276091][   T40] audit: type=1400 audit(1757583326.469:159): avc:  denied  { setopt } for  pid=6133 comm="syz.1.20" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   57.296587][   T40] audit: type=1400 audit(1757583326.499:160): avc:  denied  { map_create } for  pid=6135 comm="syz.1.21" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   57.305030][ T6136] netlink: 'syz.1.21': attribute type 4 has an invalid length.
[   57.325691][   T40] audit: type=1400 audit(1757583326.529:161): avc:  denied  { setopt } for  pid=6137 comm="syz.2.22" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   57.333256][   T40] audit: type=1400 audit(1757583326.529:162): avc:  denied  { read } for  pid=6137 comm="syz.2.22" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   57.377608][ T6141] netlink: 8 bytes leftover after parsing attributes in process `syz.2.22'.
[   57.427706][ T6143] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (65416116 ns). Using initial count to start timer.
[   57.807871][ T5980] Bluetooth: hci1: command tx timeout
[   57.809712][ T5980] Bluetooth: hci2: command tx timeout
[   57.811419][ T5980] Bluetooth: hci0: command tx timeout
[   57.887281][ T5980] Bluetooth: hci3: command tx timeout
[   58.192920][ T6163] netlink: 'syz.2.31': attribute type 4 has an invalid length.
[   58.303673][ T6171] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.30'.
[   59.073663][ T6182] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (65416116 ns). Using initial count to start timer.
[   59.191505][ T6185] binder: 6184:6185 unknown command 0
[   59.193349][ T6185] binder: 6184:6185 ioctl c0306201 200000000300 returned -22
[   59.225932][ T6187] random: crng reseeded on system resumption
[   59.349489][ T6190] netlink: 'syz.3.41': attribute type 4 has an invalid length.
[   59.462716][ T6197] warning: `syz.3.43' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   59.534426][ T6201] netlink: 'syz.3.45': attribute type 1 has an invalid length.
[   59.537100][ T6201] netlink: 228 bytes leftover after parsing attributes in process `syz.3.45'.
[   59.592865][ T6205] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (65416116 ns). Using initial count to start timer.
[   59.593746][ T6207] capability: warning: `syz.1.48' uses deprecated v2 capabilities in a way that may be insecure
[   59.667294][ T6210] could not allocate digest TFM handle blake2s-224-arm
[   59.741859][ T6210] could not allocate digest TFM handle vmac64(aes-fixed-time)
[   59.765700][ T6220] netlink: 12 bytes leftover after parsing attributes in process `syz.3.50'.
[   59.778744][ T6220] macvlan0: entered promiscuous mode
[   59.781351][ T6220] batadv_slave_1: entered promiscuous mode
[   59.798458][ T6229] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   59.833925][ T6229] nbd: must specify a size in bytes for the device
[   59.856005][ T6236] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   59.897837][ T5980] Bluetooth: hci0: command tx timeout
[   59.897898][ T5973] Bluetooth: hci2: command tx timeout
[   59.898115][ T5968] Bluetooth: hci1: command tx timeout
[   59.967259][ T5973] Bluetooth: hci3: command tx timeout
[   59.996935][ T6234] overlay: Unknown parameter 'dont_hash'
[   60.030810][ T6256] syz.3.62 uses obsolete (PF_INET,SOCK_PACKET)
[   60.034370][ T6256] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=55 sclass=netlink_route_socket pid=6256 comm=syz.3.62
[   61.088729][ T6275] Can't find a SQUASHFS superblock on nullb0
[   61.161926][ T6280] FAULT_INJECTION: forcing a failure.
[   61.161926][ T6280] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   61.166011][ T6280] CPU: 3 UID: 0 PID: 6280 Comm: syz.1.70 Not tainted syzkaller #0 PREEMPT(full) 
[   61.166024][ T6280] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.166030][ T6280] Call Trace:
[   61.166034][ T6280]  <TASK>
[   61.166038][ T6280]  dump_stack_lvl+0x16c/0x1f0
[   61.166061][ T6280]  should_fail_ex+0x512/0x640
[   61.166077][ T6280]  _copy_from_user+0x2e/0xd0
[   61.166093][ T6280]  drm_ioctl+0x4fb/0xc30
[   61.166110][ T6280]  ? __pfx_drm_mode_getfb+0x10/0x10
[   61.166121][ T6280]  ? __pfx_drm_ioctl+0x10/0x10
[   61.166140][ T6280]  ? selinux_file_ioctl+0x180/0x270
[   61.166156][ T6280]  ? selinux_file_ioctl+0xb4/0x270
[   61.166171][ T6280]  ? __pfx_drm_ioctl+0x10/0x10
[   61.166186][ T6280]  __x64_sys_ioctl+0x18b/0x210
[   61.166203][ T6280]  do_syscall_64+0xcd/0x4c0
[   61.166218][ T6280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.166229][ T6280] RIP: 0033:0x7fa293f8eba9
[   61.166238][ T6280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.166247][ T6280] RSP: 002b:00007fa294d5b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   61.166257][ T6280] RAX: ffffffffffffffda RBX: 00007fa2941d5fa0 RCX: 00007fa293f8eba9
[   61.166263][ T6280] RDX: 0000200000000040 RSI: 00000000c01c64ad RDI: 0000000000000004
[   61.166269][ T6280] RBP: 00007fa294d5b090 R08: 0000000000000000 R09: 0000000000000000
[   61.166275][ T6280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.166280][ T6280] R13: 00007fa2941d6038 R14: 00007fa2941d5fa0 R15: 00007fff87342488
[   61.166293][ T6280]  </TASK>
[   61.218055][    C3] vkms_vblank_simulate: vblank timer overrun
[   61.250549][ T6282] futex_wake_op: syz.1.71 tries to shift op by 32; fix this program
[   61.254478][ T6284] vivid-001: disconnect
[   61.257293][ T6284] vivid-001: reconnect
[   61.265359][ T6284] vlan2: entered allmulticast mode
[   61.266981][ T6284] bond0: entered allmulticast mode
[   61.270210][ T6284] bond_slave_0: entered allmulticast mode
[   61.272601][ T6284] bond_slave_1: entered allmulticast mode
[   61.299226][ T6289] vivid-007: kernel_thread() failed
[   61.388681][ T6308] FAULT_INJECTION: forcing a failure.
[   61.388681][ T6308] name failslab, interval 1, probability 0, space 0, times 1
[   61.392689][ T6308] CPU: 1 UID: 0 PID: 6308 Comm: syz.3.79 Not tainted syzkaller #0 PREEMPT(full) 
[   61.392702][ T6308] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.392708][ T6308] Call Trace:
[   61.392713][ T6308]  <TASK>
[   61.392717][ T6308]  dump_stack_lvl+0x16c/0x1f0
[   61.392734][ T6308]  should_fail_ex+0x512/0x640
[   61.392747][ T6308]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   61.392765][ T6308]  should_failslab+0xc2/0x120
[   61.392777][ T6308]  __kmalloc_cache_noprof+0x6a/0x3e0
[   61.392799][ T6308]  ? idr_alloc+0xdd/0x130
[   61.392813][ T6308]  ? vma_node_allow+0x56/0x300
[   61.392830][ T6308]  vma_node_allow+0x56/0x300
[   61.392845][ T6308]  drm_gem_handle_create_tail+0x1e1/0x4d0
[   61.392863][ T6308]  drm_mode_getfb+0x434/0x5a0
[   61.392875][ T6308]  drm_ioctl_kernel+0x1f4/0x3e0
[   61.392889][ T6308]  ? __pfx_drm_mode_getfb+0x10/0x10
[   61.392900][ T6308]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   61.392918][ T6308]  drm_ioctl+0x5c9/0xc30
[   61.392933][ T6308]  ? __pfx_drm_mode_getfb+0x10/0x10
[   61.392944][ T6308]  ? __pfx_drm_ioctl+0x10/0x10
[   61.392964][ T6308]  ? selinux_file_ioctl+0x180/0x270
[   61.392979][ T6308]  ? selinux_file_ioctl+0xb4/0x270
[   61.392994][ T6308]  ? __pfx_drm_ioctl+0x10/0x10
[   61.393013][ T6308]  __x64_sys_ioctl+0x18b/0x210
[   61.393030][ T6308]  do_syscall_64+0xcd/0x4c0
[   61.393044][ T6308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.393055][ T6308] RIP: 0033:0x7eff6718eba9
[   61.393064][ T6308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.393074][ T6308] RSP: 002b:00007eff67f70038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   61.393083][ T6308] RAX: ffffffffffffffda RBX: 00007eff673d5fa0 RCX: 00007eff6718eba9
[   61.393089][ T6308] RDX: 0000200000000040 RSI: 00000000c01c64ad RDI: 0000000000000004
[   61.393096][ T6308] RBP: 00007eff67f70090 R08: 0000000000000000 R09: 0000000000000000
[   61.393101][ T6308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.393107][ T6308] R13: 00007eff673d6038 R14: 00007eff673d5fa0 R15: 00007ffeeadc2e38
[   61.393119][ T6308]  </TASK>
[   61.428116][ T6312] 9pnet_rdma: rdma_create_trans (6312): problem binding to privport: 13
[   61.453412][   T40] kauditd_printk_skb: 82 callbacks suppressed
[   61.453425][   T40] audit: type=1400 audit(1757583330.659:245): avc:  denied  { connect } for  pid=6313 comm="syz.3.82" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   61.456142][ T6314] pimreg3: entered allmulticast mode
[   61.510865][   T40] audit: type=1400 audit(1757583330.719:246): avc:  denied  { bind } for  pid=6319 comm="syz.3.84" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   61.511719][ T6320] Bluetooth: MGMT ver 1.23
[   61.519299][   T40] audit: type=1400 audit(1757583330.719:247): avc:  denied  { write } for  pid=6319 comm="syz.3.84" path="socket:[10586]" dev="sockfs" ino=10586 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   61.635035][ T6325] __nla_validate_parse: 3 callbacks suppressed
[   61.635045][ T6325] netlink: 36 bytes leftover after parsing attributes in process `syz.3.85'.
[   61.808275][ T6331] Zero length message leads to an empty skb
[   61.839291][   T40] audit: type=1400 audit(1757583331.049:248): avc:  denied  { ioctl } for  pid=6333 comm="syz.3.89" path="socket:[10076]" dev="sockfs" ino=10076 ioctlcmd=0x9365 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   61.851338][   T40] audit: type=1400 audit(1757583331.049:249): avc:  denied  { create } for  pid=6333 comm="syz.3.89" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   61.860707][   T40] audit: type=1400 audit(1757583331.049:250): avc:  denied  { ioctl } for  pid=6333 comm="syz.3.89" path="socket:[10077]" dev="sockfs" ino=10077 ioctlcmd=0xf509 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   61.868831][ T6342] FAULT_INJECTION: forcing a failure.
[   61.868831][ T6342] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.876746][ T6342] CPU: 0 UID: 0 PID: 6342 Comm: syz.1.90 Not tainted syzkaller #0 PREEMPT(full) 
[   61.876768][ T6342] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.876778][ T6342] Call Trace:
[   61.876784][ T6342]  <TASK>
[   61.876791][ T6342]  dump_stack_lvl+0x16c/0x1f0
[   61.876819][ T6342]  should_fail_ex+0x512/0x640
[   61.876845][ T6342]  _copy_to_user+0x32/0xd0
[   61.876873][ T6342]  drm_ioctl+0x5eb/0xc30
[   61.876901][ T6342]  ? __pfx_drm_mode_getfb+0x10/0x10
[   61.876920][ T6342]  ? __pfx_drm_ioctl+0x10/0x10
[   61.876954][ T6342]  ? selinux_file_ioctl+0x180/0x270
[   61.876979][ T6342]  ? selinux_file_ioctl+0xb4/0x270
[   61.877005][ T6342]  ? __pfx_drm_ioctl+0x10/0x10
[   61.877035][ T6342]  __x64_sys_ioctl+0x18b/0x210
[   61.877063][ T6342]  do_syscall_64+0xcd/0x4c0
[   61.877088][ T6342]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.877106][ T6342] RIP: 0033:0x7fa293f8eba9
[   61.877132][ T6342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.877149][ T6342] RSP: 002b:00007fa294d5b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   61.877167][ T6342] RAX: ffffffffffffffda RBX: 00007fa2941d5fa0 RCX: 00007fa293f8eba9
[   61.877178][ T6342] RDX: 0000200000000040 RSI: 00000000c01c64ad RDI: 0000000000000004
[   61.877188][ T6342] RBP: 00007fa294d5b090 R08: 0000000000000000 R09: 0000000000000000
[   61.877198][ T6342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.877208][ T6342] R13: 00007fa2941d6038 R14: 00007fa2941d5fa0 R15: 00007fff87342488
[   61.877231][ T6342]  </TASK>
[   61.902614][ T6344] netlink: 'syz.3.92': attribute type 4 has an invalid length.
[   61.950155][   T40] audit: type=1400 audit(1757583331.159:251): avc:  denied  { getopt } for  pid=6345 comm="syz.1.93" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   62.039431][ T6364] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (65416116 ns). Using initial count to start timer.
[   62.049393][   T40] audit: type=1400 audit(1757583331.259:252): avc:  denied  { mounton } for  pid=6365 comm="syz.1.99" path="/32/file0" dev="tmpfs" ino=194 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   62.302802][ T6379] netlink: 'syz.3.103': attribute type 4 has an invalid length.
[   62.336904][ T6381] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=19984 sclass=netlink_route_socket pid=6381 comm=syz.3.104
[   62.355565][   T40] audit: type=1400 audit(1757583331.559:253): avc:  denied  { name_bind } for  pid=6382 comm="syz.0.105" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   62.362319][   T40] audit: type=1400 audit(1757583331.559:254): avc:  denied  { node_bind } for  pid=6382 comm="syz.0.105" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   62.524523][ T6388] ipvlan2: entered promiscuous mode
[   62.531185][ T6388] bridge0: port 3(ipvlan2) entered blocking state
[   62.533290][ T6388] bridge0: port 3(ipvlan2) entered disabled state
[   62.535444][ T6388] ipvlan2: entered allmulticast mode
[   62.538781][ T6388] bridge0: entered allmulticast mode
[   62.541377][ T6388] ipvlan2: left allmulticast mode
[   62.542994][ T6388] bridge0: left allmulticast mode
[   62.589119][ T6398] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (65416116 ns). Using initial count to start timer.
[   62.741137][ T6412] overlayfs: failed to clone upperpath
[   62.789950][ T6415] ptrace attach of "/syz-executor exec"[5965] was attempted by "/syz-executor exec"[6415]
[   62.840086][ T6419] No control pipe specified
[   62.872886][ T6424] usb usb9: usbfs: process 6424 (syz.2.119) did not claim interface 0 before use
[   63.376317][ T6456] netlink: 'syz.2.130': attribute type 1 has an invalid length.
[   63.378990][ T6456] netlink: 224 bytes leftover after parsing attributes in process `syz.2.130'.
[   63.379211][ T6458] netlink: 64 bytes leftover after parsing attributes in process `syz.1.131'.
[   63.385878][ T6458] netlink: 64 bytes leftover after parsing attributes in process `syz.1.131'.
[   63.505487][ T6473] No control pipe specified
[   63.546237][ T6476] netlink: 12 bytes leftover after parsing attributes in process `syz.1.137'.
[   63.565004][ T6476] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[   63.569148][ T6476] bond1: (slave wireguard0): Error -95 calling set_mac_address
[   63.827591][ T6491] netlink: 'syz.1.141': attribute type 4 has an invalid length.
[   63.856091][ T6493] netlink: 8 bytes leftover after parsing attributes in process `syz.1.142'.
[   63.860372][ T6493] openvswitch: netlink: push_nsh: missing base or metadata attributes
[   63.863182][ T6493] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   64.171077][ T6508] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   64.299734][ T6514] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (65416116 ns). Using initial count to start timer.
[   64.384201][ T6520] netlink: 'syz.0.150': attribute type 4 has an invalid length.
[   64.420286][ T6523] autofs: Bad value for 'fd'
[   64.621911][ T6549] netlink: 4 bytes leftover after parsing attributes in process `syz.3.159'.
[   64.625820][ T6549] bridge_slave_1: left allmulticast mode
[   64.628887][ T6542] process 'syz.2.158' launched './file0' with NULL argv: empty string added
[   64.631672][ T6549] bridge_slave_1: left promiscuous mode
[   64.635037][ T6549] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.653850][ T6549] bridge_slave_0: left allmulticast mode
[   64.655689][ T6549] bridge_slave_0: left promiscuous mode
[   64.658336][ T6549] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.672372][ T6555] autofs: Bad value for 'fd'
[   64.755164][ T6560] netlink: 'syz.2.162': attribute type 4 has an invalid length.
[   64.806504][ T6563] netlink: 28 bytes leftover after parsing attributes in process `syz.2.163'.
[   64.855503][ T6570] netlink: 16 bytes leftover after parsing attributes in process `syz.3.165'.
[   65.796163][ T6588] netlink: 'syz.3.171': attribute type 4 has an invalid length.
[   65.943635][ T6598] : entered promiscuous mode
[   66.222182][ T6623] netlink: 'syz.2.181': attribute type 4 has an invalid length.
[   66.623037][ T6632] netlink: 'syz.1.184': attribute type 16 has an invalid length.
[   66.626338][ T6632] netlink: 'syz.1.184': attribute type 17 has an invalid length.
[   66.629354][ T6641] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   66.635608][   T40] kauditd_printk_skb: 31 callbacks suppressed
[   66.635621][   T40] audit: type=1400 audit(1757583335.839:286): avc:  denied  { create } for  pid=6640 comm="syz.2.186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[   66.646521][   T40] audit: type=1400 audit(1757583335.849:287): avc:  denied  { sys_admin } for  pid=6640 comm="syz.2.186" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[   66.651377][ T6641] netlink: 28 bytes leftover after parsing attributes in process `syz.2.186'.
[   66.660568][   T40] audit: type=1400 audit(1757583335.869:288): avc:  denied  { setopt } for  pid=6640 comm="syz.2.186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   66.669822][ T6632] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.672263][ T6632] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.725071][ T6632] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   66.732711][ T6632] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   66.814773][ T6641] team0: Cannot enslave team device to itself
[   66.817812][   T60] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   66.820769][   T60] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   66.825092][   T60] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   66.828675][   T60] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   66.851413][   T40] audit: type=1400 audit(1757583336.059:289): avc:  denied  { create } for  pid=6644 comm="syz.1.187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   66.858835][   T40] audit: type=1400 audit(1757583336.059:290): avc:  denied  { getopt } for  pid=6644 comm="syz.1.187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   66.865330][   T40] audit: type=1400 audit(1757583336.059:291): avc:  denied  { getattr } for  pid=6644 comm="syz.1.187" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=13531 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   67.446012][   T40] audit: type=1400 audit(1757583336.649:292): avc:  denied  { mount } for  pid=6653 comm="syz.2.190" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   67.808910][   T40] audit: type=1400 audit(1757583337.009:293): avc:  denied  { setopt } for  pid=6675 comm="syz.2.196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   67.815458][ T6676] netlink: 12 bytes leftover after parsing attributes in process `syz.2.196'.
[   67.818976][   T40] audit: type=1400 audit(1757583337.019:294): avc:  denied  { ioctl } for  pid=6675 comm="syz.2.196" path="/dev/sg0" dev="devtmpfs" ino=721 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   68.633504][ T6715] overlayfs: failed to clone upperpath
[   68.636212][ T6716] netlink: 8 bytes leftover after parsing attributes in process `syz.0.210'.
[   68.667224][   T40] audit: type=1400 audit(1757583337.869:295): avc:  denied  { name_connect } for  pid=6717 comm="syz.1.212" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   68.669837][ T6718] =======================================================
[   68.669837][ T6718] WARNING: The mand mount option has been deprecated and
[   68.669837][ T6718]          and is ignored by this kernel. Remove the mand
[   68.669837][ T6718]          option from the mount to silence this warning.
[   68.669837][ T6718] =======================================================
[   68.714391][ T6720] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6720 comm=syz.1.213
[   68.720916][ T6720] validate_nla: 3 callbacks suppressed
[   68.720925][ T6720] netlink: 'syz.1.213': attribute type 1 has an invalid length.
[   68.739795][ T6720] bond2: (slave bridge1): making interface the new active one
[   68.743198][ T6720] bond2: (slave bridge1): Enslaving as an active interface with an up link
[   68.794317][ T6725] 9pnet_fd: Insufficient options for proto=fd
[   68.958805][ T6731] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.217'.
[   69.737683][ T6747] netlink: 'syz.2.223': attribute type 4 has an invalid length.
[   69.771313][ T6752] nbd: socks must be embedded in a SOCK_ITEM attr
[   69.952474][ T6764] netlink: 16 bytes leftover after parsing attributes in process `syz.2.229'.
[   70.072747][ T6767] 9pnet_fd: Insufficient options for proto=fd
[   70.228942][ T6773] overlayfs: conflicting options: userxattr,redirect_dir=on
[   70.228952][ T6774] overlayfs: conflicting options: userxattr,redirect_dir=on
[   70.464742][ T6789] bridge2: entered promiscuous mode
[   70.598136][ T6793] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.240'.
[   70.754334][ T6795] fuse: Bad value for 'user_id'
[   70.756036][ T6795] fuse: Bad value for 'user_id'
[   71.180833][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[   71.221581][ T6807] netlink: 32 bytes leftover after parsing attributes in process `syz.0.245'.
[   71.592660][ T6817] overlay: ./file0 is not a directory
[   71.909426][ T6829] overlayfs: failed to clone upperpath
[   72.127037][ T6840] netlink: 68 bytes leftover after parsing attributes in process `syz.0.256'.
[   72.132261][ T6840] netlink: 8 bytes leftover after parsing attributes in process `syz.0.256'.
[   72.136162][ T6840] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1537 sclass=netlink_route_socket pid=6840 comm=syz.0.256
[   72.141583][ T6840] netlink: 12 bytes leftover after parsing attributes in process `syz.0.256'.
[   72.145671][ T6840] CUSE: unknown device info ""
[   72.147647][ T6840] CUSE: zero length info key specified
[   72.274749][ T6850] netlink: 'syz.0.260': attribute type 4 has an invalid length.
[   72.315708][ T6854] 9p: Unknown access argument 18446744073709551615: -34
[   72.385231][ T6857] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.261'.
[   73.283640][ T6871] netlink: 4 bytes leftover after parsing attributes in process `syz.2.267'.
[   73.286454][ T6871] bridge_slave_1: left allmulticast mode
[   73.288514][ T6871] bridge_slave_1: left promiscuous mode
[   73.290354][ T6871] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.292482][ T6873] netlink: 68 bytes leftover after parsing attributes in process `syz.0.268'.
[   73.299380][ T6871] bridge_slave_0: left allmulticast mode
[   73.301158][ T6871] bridge_slave_0: left promiscuous mode
[   73.303208][ T6871] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.340343][   T40] kauditd_printk_skb: 14 callbacks suppressed
[   73.340354][   T40] audit: type=1400 audit(1757583342.549:310): avc:  denied  { cmd } for  pid=6874 comm="syz.1.269" path="socket:[12669]" dev="sockfs" ino=12669 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   73.392217][   T40] audit: type=1400 audit(1757583342.599:311): avc:  denied  { create } for  pid=6874 comm="syz.1.269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[   73.474759][   T40] audit: type=1400 audit(1757583342.679:312): avc:  denied  { setattr } for  pid=6883 comm="syz.0.270" path="/proc/185/net/netlink" dev="proc" ino=4026532876 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   73.480626][ T6884] netlink: 4 bytes leftover after parsing attributes in process `syz.0.270'.
[   73.522994][ T6896] 9p: Unknown access argument 18446744073709551615: -34
[   73.542774][ T6898] netlink: 'syz.2.274': attribute type 4 has an invalid length.
[   73.581299][ T6900] overlayfs: failed to clone upperpath
[   73.827650][ T6175] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   73.835468][   T40] audit: type=1400 audit(1757583343.039:313): avc:  denied  { read } for  pid=6915 comm="syz.0.280" name="nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   73.844311][   T40] audit: type=1400 audit(1757583343.039:314): avc:  denied  { open } for  pid=6915 comm="syz.0.280" path="/dev/nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   73.851583][   T40] audit: type=1400 audit(1757583343.039:315): avc:  denied  { ioctl } for  pid=6915 comm="syz.0.280" path="/dev/nvram" dev="devtmpfs" ino=631 ioctlcmd=0x7040 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   73.859782][   T40] audit: type=1400 audit(1757583343.039:316): avc:  denied  { create } for  pid=6915 comm="syz.0.280" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[   73.867069][   T40] audit: type=1400 audit(1757583343.039:317): avc:  denied  { write } for  pid=6915 comm="syz.0.280" path="socket:[13863]" dev="sockfs" ino=13863 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[   73.999535][ T6175] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[   74.002567][ T6175] usb 7-1: config 0 interface 0 has no altsetting 0
[   74.006475][ T6175] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[   74.011981][ T6175] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[   74.014542][ T6175] usb 7-1: Product: syz
[   74.015946][ T6175] usb 7-1: Manufacturer: syz
[   74.017487][ T6175] usb 7-1: SerialNumber: syz
[   74.021246][ T6175] usb 7-1: config 0 descriptor??
[   74.030024][ T6175] usb 7-1: selecting invalid altsetting 0
[   74.214872][ T6933] FAULT_INJECTION: forcing a failure.
[   74.214872][ T6933] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   74.219337][ T6933] CPU: 3 UID: 0 PID: 6933 Comm: syz.3.285 Not tainted syzkaller #0 PREEMPT(full) 
[   74.219350][ T6933] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.219356][ T6933] Call Trace:
[   74.219360][ T6933]  <TASK>
[   74.219364][ T6933]  dump_stack_lvl+0x16c/0x1f0
[   74.219397][ T6933]  should_fail_ex+0x512/0x640
[   74.219418][ T6933]  _copy_from_user+0x2e/0xd0
[   74.219433][ T6933]  copy_msghdr_from_user+0x98/0x160
[   74.219447][ T6933]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   74.219462][ T6933]  ? __pfx__kstrtoull+0x10/0x10
[   74.219476][ T6933]  ___sys_sendmsg+0xfe/0x1d0
[   74.219490][ T6933]  ? __pfx____sys_sendmsg+0x10/0x10
[   74.219509][ T6933]  ? find_held_lock+0x2b/0x80
[   74.219531][ T6933]  __sys_sendmmsg+0x200/0x420
[   74.219546][ T6933]  ? __pfx___sys_sendmmsg+0x10/0x10
[   74.219563][ T6933]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   74.219588][ T6933]  ? fput+0x9b/0xd0
[   74.219602][ T6933]  ? ksys_write+0x1ac/0x250
[   74.219613][ T6933]  ? __pfx_ksys_write+0x10/0x10
[   74.219625][ T6933]  __x64_sys_sendmmsg+0x9c/0x100
[   74.219638][ T6933]  ? lockdep_hardirqs_on+0x7c/0x110
[   74.219650][ T6933]  do_syscall_64+0xcd/0x4c0
[   74.219664][ T6933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.219675][ T6933] RIP: 0033:0x7eff6718eba9
[   74.219684][ T6933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.219694][ T6933] RSP: 002b:00007eff67f70038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   74.219703][ T6933] RAX: ffffffffffffffda RBX: 00007eff673d5fa0 RCX: 00007eff6718eba9
[   74.219709][ T6933] RDX: 0000000000000002 RSI: 0000200000008c00 RDI: 0000000000000004
[   74.219715][ T6933] RBP: 00007eff67f70090 R08: 0000000000000000 R09: 0000000000000000
[   74.219721][ T6933] R10: 0000000020004810 R11: 0000000000000246 R12: 0000000000000001
[   74.219727][ T6933] R13: 00007eff673d6038 R14: 00007eff673d5fa0 R15: 00007ffeeadc2e38
[   74.219740][ T6933]  </TASK>
[   74.232081][ T6175] usb 7-1: USB disconnect, device number 2
[   74.262998][ T6935] 9p: Unknown access argument 18446744073709551615: -34
[   74.311665][   T40] audit: type=1400 audit(1757583343.519:318): avc:  denied  { create } for  pid=6936 comm="syz.0.287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   74.318500][   T40] audit: type=1400 audit(1757583343.519:319): avc:  denied  { getopt } for  pid=6936 comm="syz.0.287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   74.532104][ T6961] input input5: cannot allocate more than FF_MAX_EFFECTS effects
[   75.170652][ T6975] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.948178][ T6994] FAULT_INJECTION: forcing a failure.
[   75.948178][ T6994] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.953921][ T6994] CPU: 2 UID: 0 PID: 6994 Comm: syz.2.306 Not tainted syzkaller #0 PREEMPT(full) 
[   75.953943][ T6994] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.953953][ T6994] Call Trace:
[   75.953959][ T6994]  <TASK>
[   75.953966][ T6994]  dump_stack_lvl+0x16c/0x1f0
[   75.953993][ T6994]  should_fail_ex+0x512/0x640
[   75.954019][ T6994]  _copy_from_iter+0x29f/0x1720
[   75.954046][ T6994]  ? __lock_acquire+0xb97/0x1ce0
[   75.954073][ T6994]  ? tcp_leave_memory_pressure+0x1f/0x100
[   75.954108][ T6994]  ? __pfx__copy_from_iter+0x10/0x10
[   75.954131][ T6994]  ? __sk_mem_raise_allocated+0x94d/0x1670
[   75.954157][ T6994]  ? skb_page_frag_refill+0x11d/0x5c0
[   75.954191][ T6994]  sk_msg_memcopy_from_iter+0x415/0x600
[   75.954219][ T6994]  tcp_bpf_sendmsg+0x79b/0x1b80
[   75.954252][ T6994]  ? __pfx_tcp_bpf_sendmsg+0x10/0x10
[   75.954328][ T6994]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[   75.954362][ T6994]  ? __import_iovec+0x1dd/0x650
[   75.954386][ T6994]  ? __might_fault+0xe3/0x190
[   75.954402][ T6994]  ? __might_fault+0x13b/0x190
[   75.954419][ T6994]  ? __pfx_tcp_bpf_sendmsg+0x10/0x10
[   75.954439][ T6994]  inet6_sendmsg+0x119/0x140
[   75.954466][ T6994]  ____sys_sendmsg+0x705/0xc70
[   75.954493][ T6994]  ? copy_msghdr_from_user+0x10a/0x160
[   75.954514][ T6994]  ? __pfx_____sys_sendmsg+0x10/0x10
[   75.954545][ T6994]  ? __pfx__kstrtoull+0x10/0x10
[   75.954569][ T6994]  ___sys_sendmsg+0x134/0x1d0
[   75.954592][ T6994]  ? __pfx____sys_sendmsg+0x10/0x10
[   75.954625][ T6994]  ? find_held_lock+0x2b/0x80
[   75.954663][ T6994]  __sys_sendmmsg+0x200/0x420
[   75.954688][ T6994]  ? __pfx___sys_sendmmsg+0x10/0x10
[   75.954719][ T6994]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   75.954753][ T6994]  ? fput+0x9b/0xd0
[   75.954776][ T6994]  ? ksys_write+0x1ac/0x250
[   75.954794][ T6994]  ? __pfx_ksys_write+0x10/0x10
[   75.954818][ T6994]  __x64_sys_sendmmsg+0x9c/0x100
[   75.954839][ T6994]  ? lockdep_hardirqs_on+0x7c/0x110
[   75.954860][ T6994]  do_syscall_64+0xcd/0x4c0
[   75.954884][ T6994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.954901][ T6994] RIP: 0033:0x7fbaefb8eba9
[   75.954916][ T6994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.954932][ T6994] RSP: 002b:00007fbaf0a7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   75.954948][ T6994] RAX: ffffffffffffffda RBX: 00007fbaefdd5fa0 RCX: 00007fbaefb8eba9
[   75.954959][ T6994] RDX: 0000000000000002 RSI: 0000200000008c00 RDI: 0000000000000004
[   75.954969][ T6994] RBP: 00007fbaf0a7d090 R08: 0000000000000000 R09: 0000000000000000
[   75.954978][ T6994] R10: 0000000020004810 R11: 0000000000000246 R12: 0000000000000001
[   75.954988][ T6994] R13: 00007fbaefdd6038 R14: 00007fbaefdd5fa0 R15: 00007ffe73977068
[   75.955011][ T6994]  </TASK>
[   76.173014][ T7005] netlink: 'syz.3.310': attribute type 4 has an invalid length.
[   76.240354][ T6975] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.090483][ T6975] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.187562][    C1] ------------[ cut here ]------------
[   77.189761][    C1] WARNING: CPU: 1 PID: 7022 at net/ipv4/af_inet.c:156 inet_sock_destruct+0x684/0x830
[   77.192682][    C1] Modules linked in:
[   77.194288][    C1] CPU: 1 UID: 0 PID: 7022 Comm: syz.2.316 Not tainted syzkaller #0 PREEMPT(full) 
[   77.198764][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.202391][    C1] RIP: 0010:inet_sock_destruct+0x684/0x830
[   77.204627][    C1] Code: 0f 0b 90 e9 12 fe ff ff e8 c9 2a a8 f7 90 0f 0b 90 e9 5e fe ff ff e8 bb 2a a8 f7 90 0f 0b 90 e9 94 fe ff ff e8 ad 2a a8 f7 90 <0f> 0b 90 e9 d3 fe ff ff e8 6f 8a 0e f8 e9 d7 fc ff ff 4c 89 ff e8
[   77.210723][    C1] RSP: 0018:ffffc900006a0d90 EFLAGS: 00010246
[   77.212939][    C1] RAX: 0000000000000000 RBX: ffff88802b94a880 RCX: ffffffff8a1362f7
[   77.216235][    C1] RDX: ffff888058b9c880 RSI: ffffffff8a136423 RDI: 0000000000000005
[   77.218843][    C1] RBP: 0000000000000ffd R08: 0000000000000005 R09: 0000000000000000
[   77.221419][    C1] R10: 0000000000000ffd R11: 0000000000000000 R12: ffff88802b94a880
[   77.223937][    C1] R13: ffff88802b94a910 R14: ffffc900006a0e90 R15: 0000000000000002
[   77.226658][    C1] FS:  00007fbaf0a7d6c0(0000) GS:ffff8880d67b5000(0000) knlGS:0000000000000000
[   77.229698][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   77.232458][    C1] CR2: 00007eff673d7dac CR3: 000000003bf7d000 CR4: 0000000000352ef0
[   77.235373][    C1] Call Trace:
[   77.236462][    C1]  <IRQ>
[   77.237434][    C1]  ? inet6_cleanup_sock+0x117/0x210
[   77.239125][    C1]  ? __pfx_inet6_sock_destruct+0x10/0x10
[   77.240922][    C1]  __sk_destruct+0x84/0x9a0
[   77.242413][    C1]  ? rcu_core+0x797/0x1530
[   77.243855][    C1]  rcu_core+0x799/0x1530
[   77.245274][    C1]  ? __pfx_rcu_core+0x10/0x10
[   77.246822][    C1]  handle_softirqs+0x219/0x8e0
[   77.248490][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[   77.250240][    C1]  __irq_exit_rcu+0x109/0x170
[   77.251753][    C1]  irq_exit_rcu+0x9/0x30
[   77.253274][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   77.255060][    C1]  </IRQ>
[   77.256035][    C1]  <TASK>
[   77.257026][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   77.259132][    C1] RIP: 0010:write_comp_data+0x11/0x90
[   77.260868][    C1] Code: cc cc 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 49 89 d2 49 89 f8 49 89 f1 65 48 8b 15 b7 27 1b 12 <65> 8b 05 c8 27 1b 12 a9 00 01 ff 00 74 1d f6 c4 01 74 67 a9 00 00
[   77.266998][    C1] RSP: 0018:ffffc90005f97718 EFLAGS: 00000202
[   77.269019][    C1] RAX: 0000000000000002 RBX: 0000000000000002 RCX: ffffffff8a48f6ef
[   77.271604][    C1] RDX: ffff888058b9c880 RSI: 0000000000000087 RDI: 0000000000000003
[   77.274361][    C1] RBP: ffffffff8cf69f00 R08: 0000000000000003 R09: 0000000000000087
[   77.276918][    C1] R10: 000000000000003a R11: 0000000000000000 R12: 000000000000003a
[   77.280158][    C1] R13: 0000000000000003 R14: 0000000000000002 R15: ffff888059a687c0
[   77.283453][    C1]  ? rawv6_init_sk+0x4f/0x190
[   77.285490][    C1]  __sanitizer_cov_trace_switch+0x54/0x90
[   77.287554][    C1]  rawv6_init_sk+0x4f/0x190
[   77.289068][    C1]  ? __pfx_rawv6_init_sk+0x10/0x10
[   77.290675][    C1]  inet6_create+0xb2d/0x12b0
[   77.292200][    C1]  ? inet6_create+0x7f/0x12b0
[   77.293714][    C1]  __sock_create+0x335/0x8d0
[   77.295206][    C1]  inet_ctl_sock_create+0x94/0x230
[   77.296852][    C1]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[   77.298727][    C1]  ? proc_create_net_data+0x155/0x1c0
[   77.300984][    C1]  ndisc_net_init+0x89/0x250
[   77.302939][    C1]  ? __pfx_ndisc_net_init+0x10/0x10
[   77.304890][    C1]  ? __pfx_ip6mr_net_init+0x10/0x10
[   77.306716][    C1]  ? ip6mr_net_init+0x2d8/0x4e0
[   77.308370][    C1]  ? __pfx_ndisc_net_init+0x10/0x10
[   77.310009][    C1]  ops_init+0x1df/0x5f0
[   77.311322][    C1]  setup_net+0x10f/0x380
[   77.312721][    C1]  ? lockdep_init_map_type+0x5c/0x280
[   77.314412][    C1]  ? __pfx_setup_net+0x10/0x10
[   77.315875][    C1]  ? debug_mutex_init+0x37/0x70
[   77.317498][    C1]  copy_net_ns+0x2a6/0x5f0
[   77.318906][    C1]  create_new_namespaces+0x3ea/0xa90
[   77.320579][    C1]  copy_namespaces+0x468/0x560
[   77.322162][    C1]  copy_process+0x2822/0x7690
[   77.324131][    C1]  ? __pfx_copy_process+0x10/0x10
[   77.325768][    C1]  ? futex_private_hash_put+0x176/0x300
[   77.327592][    C1]  ? futex_private_hash_put+0x18a/0x300
[   77.329362][    C1]  kernel_clone+0xfc/0x930
[   77.330779][    C1]  ? __pfx_kernel_clone+0x10/0x10
[   77.332401][    C1]  __do_sys_clone+0xce/0x120
[   77.333889][    C1]  ? __pfx___do_sys_clone+0x10/0x10
[   77.335558][    C1]  ? find_held_lock+0x2b/0x80
[   77.337094][    C1]  ? xfd_validate_state+0x61/0x180
[   77.338784][    C1]  do_syscall_64+0xcd/0x4c0
[   77.340236][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.342442][    C1] RIP: 0033:0x7fbaefb8eba9
[   77.343882][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.350003][    C1] RSP: 002b:00007fbaf0a7cfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   77.352632][    C1] RAX: ffffffffffffffda RBX: 00007fbaefdd5fa0 RCX: 00007fbaefb8eba9
[   77.355130][    C1] RDX: 0000200000000740 RSI: 0000200000000180 RDI: 0000000041800000
[   77.357702][    C1] RBP: 00007fbaefc11e19 R08: 00002000000007c0 R09: 00002000000007c0
[   77.360321][    C1] R10: 0000200000000780 R11: 0000000000000206 R12: 0000000000000000
[   77.363006][    C1] R13: 00007fbaefdd6038 R14: 00007fbaefdd5fa0 R15: 00007ffe73977068
[   77.365671][    C1]  </TASK>
[   77.366711][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   77.369130][    C1] CPU: 1 UID: 0 PID: 7022 Comm: syz.2.316 Not tainted syzkaller #0 PREEMPT(full) 
[   77.372149][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.375763][    C1] Call Trace:
[   77.376912][    C1]  <IRQ>
[   77.377916][    C1]  dump_stack_lvl+0x3d/0x1f0
[   77.379432][    C1]  vpanic+0x6e8/0x7a0
[   77.380723][    C1]  ? __pfx_vpanic+0x10/0x10
[   77.382310][    C1]  ? inet_sock_destruct+0x684/0x830
[   77.384010][    C1]  panic+0xca/0xd0
[   77.385358][    C1]  ? __pfx_panic+0x10/0x10
[   77.386851][    C1]  ? check_panic_on_warn+0x1f/0xb0
[   77.388609][    C1]  check_panic_on_warn+0xab/0xb0
[   77.390251][    C1]  __warn+0xf6/0x3c0
[   77.391549][    C1]  ? inet_sock_destruct+0x684/0x830
[   77.393355][    C1]  report_bug+0x3c3/0x580
[   77.394805][    C1]  ? inet_sock_destruct+0x684/0x830
[   77.396564][    C1]  handle_bug+0x184/0x210
[   77.398012][    C1]  exc_invalid_op+0x17/0x50
[   77.399508][    C1]  asm_exc_invalid_op+0x1a/0x20
[   77.401174][    C1] RIP: 0010:inet_sock_destruct+0x684/0x830
[   77.403120][    C1] Code: 0f 0b 90 e9 12 fe ff ff e8 c9 2a a8 f7 90 0f 0b 90 e9 5e fe ff ff e8 bb 2a a8 f7 90 0f 0b 90 e9 94 fe ff ff e8 ad 2a a8 f7 90 <0f> 0b 90 e9 d3 fe ff ff e8 6f 8a 0e f8 e9 d7 fc ff ff 4c 89 ff e8
[   77.409435][    C1] RSP: 0018:ffffc900006a0d90 EFLAGS: 00010246
[   77.411458][    C1] RAX: 0000000000000000 RBX: ffff88802b94a880 RCX: ffffffff8a1362f7
[   77.414498][    C1] RDX: ffff888058b9c880 RSI: ffffffff8a136423 RDI: 0000000000000005
[   77.416962][    C1] RBP: 0000000000000ffd R08: 0000000000000005 R09: 0000000000000000
[   77.419438][    C1] R10: 0000000000000ffd R11: 0000000000000000 R12: ffff88802b94a880
[   77.421912][    C1] R13: ffff88802b94a910 R14: ffffc900006a0e90 R15: 0000000000000002
[   77.424516][    C1]  ? inet_sock_destruct+0x557/0x830
[   77.426185][    C1]  ? inet_sock_destruct+0x683/0x830
[   77.427900][    C1]  ? inet6_cleanup_sock+0x117/0x210
[   77.429617][    C1]  ? __pfx_inet6_sock_destruct+0x10/0x10
[   77.431445][    C1]  __sk_destruct+0x84/0x9a0
[   77.433229][    C1]  ? rcu_core+0x797/0x1530
[   77.434813][    C1]  rcu_core+0x799/0x1530
[   77.436166][    C1]  ? __pfx_rcu_core+0x10/0x10
[   77.437670][    C1]  handle_softirqs+0x219/0x8e0
[   77.439218][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[   77.440846][    C1]  __irq_exit_rcu+0x109/0x170
[   77.442339][    C1]  irq_exit_rcu+0x9/0x30
[   77.443683][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   77.445474][    C1]  </IRQ>
[   77.446418][    C1]  <TASK>
[   77.447366][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   77.449309][    C1] RIP: 0010:write_comp_data+0x11/0x90
[   77.450991][    C1] Code: cc cc 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 49 89 d2 49 89 f8 49 89 f1 65 48 8b 15 b7 27 1b 12 <65> 8b 05 c8 27 1b 12 a9 00 01 ff 00 74 1d f6 c4 01 74 67 a9 00 00
[   77.456897][    C1] RSP: 0018:ffffc90005f97718 EFLAGS: 00000202
[   77.458854][    C1] RAX: 0000000000000002 RBX: 0000000000000002 RCX: ffffffff8a48f6ef
[   77.461321][    C1] RDX: ffff888058b9c880 RSI: 0000000000000087 RDI: 0000000000000003
[   77.464129][    C1] RBP: ffffffff8cf69f00 R08: 0000000000000003 R09: 0000000000000087
[   77.466629][    C1] R10: 000000000000003a R11: 0000000000000000 R12: 000000000000003a
[   77.469164][    C1] R13: 0000000000000003 R14: 0000000000000002 R15: ffff888059a687c0
[   77.471643][    C1]  ? rawv6_init_sk+0x4f/0x190
[   77.473149][    C1]  __sanitizer_cov_trace_switch+0x54/0x90
[   77.474955][    C1]  rawv6_init_sk+0x4f/0x190
[   77.476407][    C1]  ? __pfx_rawv6_init_sk+0x10/0x10
[   77.478059][    C1]  inet6_create+0xb2d/0x12b0
[   77.479555][    C1]  ? inet6_create+0x7f/0x12b0
[   77.481103][    C1]  __sock_create+0x335/0x8d0
[   77.482701][    C1]  inet_ctl_sock_create+0x94/0x230
[   77.484349][    C1]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[   77.486181][    C1]  ? proc_create_net_data+0x155/0x1c0
[   77.487984][    C1]  ndisc_net_init+0x89/0x250
[   77.489524][    C1]  ? __pfx_ndisc_net_init+0x10/0x10
[   77.491233][    C1]  ? __pfx_ip6mr_net_init+0x10/0x10
[   77.492915][    C1]  ? ip6mr_net_init+0x2d8/0x4e0
[   77.494514][    C1]  ? __pfx_ndisc_net_init+0x10/0x10
[   77.496184][    C1]  ops_init+0x1df/0x5f0
[   77.497570][    C1]  setup_net+0x10f/0x380
[   77.498998][    C1]  ? lockdep_init_map_type+0x5c/0x280
[   77.500723][    C1]  ? __pfx_setup_net+0x10/0x10
[   77.502368][    C1]  ? debug_mutex_init+0x37/0x70
[   77.503964][    C1]  copy_net_ns+0x2a6/0x5f0
[   77.505447][    C1]  create_new_namespaces+0x3ea/0xa90
[   77.507145][    C1]  copy_namespaces+0x468/0x560
[   77.508597][    C1]  copy_process+0x2822/0x7690
[   77.510181][    C1]  ? __pfx_copy_process+0x10/0x10
[   77.511852][    C1]  ? futex_private_hash_put+0x176/0x300
[   77.513697][    C1]  ? futex_private_hash_put+0x18a/0x300
[   77.515530][    C1]  kernel_clone+0xfc/0x930
[   77.516997][    C1]  ? __pfx_kernel_clone+0x10/0x10
[   77.518617][    C1]  __do_sys_clone+0xce/0x120
[   77.520158][    C1]  ? __pfx___do_sys_clone+0x10/0x10
[   77.521833][    C1]  ? find_held_lock+0x2b/0x80
[   77.523419][    C1]  ? xfd_validate_state+0x61/0x180
[   77.525090][    C1]  do_syscall_64+0xcd/0x4c0
[   77.526602][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.528528][    C1] RIP: 0033:0x7fbaefb8eba9
[   77.529989][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.536075][    C1] RSP: 002b:00007fbaf0a7cfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   77.538747][    C1] RAX: ffffffffffffffda RBX: 00007fbaefdd5fa0 RCX: 00007fbaefb8eba9
[   77.541283][    C1] RDX: 0000200000000740 RSI: 0000200000000180 RDI: 0000000041800000
[   77.543817][    C1] RBP: 00007fbaefc11e19 R08: 00002000000007c0 R09: 00002000000007c0
[   77.546350][    C1] R10: 0000200000000780 R11: 0000000000000206 R12: 0000000000000000
[   77.548889][    C1] R13: 00007fbaefdd6038 R14: 00007fbaefdd5fa0 R15: 00007ffe73977068
[   77.551497][    C1]  </TASK>
[   77.553260][    C1] Kernel Offset: disabled
[   77.554655][    C1] Rebooting in 86400 seconds..

VM DIAGNOSIS:
09:35:46  Registers:
info registers vcpu 0

CPU#0
RAX=00000000000dc3f7 RBX=0000000000000000 RCX=ffffffff8b946c29 RDX=0000000000000000
RSI=ffffffff8de52618 RDI=ffffffff8c162d00 RBP=fffffbfff1c52ef8 RSP=ffffffff8e207e08
R8 =0000000000000001 R9 =ffffed100d486655 R10=ffff88806a4332ab R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e2977c0 R14=ffffffff90ab6d90 R15=0000000000000000
RIP=ffffffff8b94578f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d66b5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007eff67f4fd58 CR3=000000004f7fe000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=0000000020080810 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe739773f0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe73977576
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe73977576 00007ffe7397757c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbaefc12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbaefc12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbaefc12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbaefc12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbaefc12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbaefc12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000055 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85647c75 RDI=ffffffff9b1150a0 RBP=ffffffff9b115060 RSP=ffffc900006a0700
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000055 R14=ffffffff9b115060 R15=ffffffff85647c10
RIP=ffffffff85647c9f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fbaf0a7d6c0 ffffffff 00c00000
GS =0000 ffff8880d67b5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007eff673d7dac CR3=000000003bf7d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000104080 Opmask01=0000000000000000 Opmask02=00000000013f0017 Opmask03=0000000000000000
Opmask04=00000000ffffdfff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 746e65696c635f73 666e2f74656e2f73
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000556d269d59c0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05a2ff1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ff00
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373261e55ee3483 7373261b03d8dd59
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 dfb0b7282689992c 7373737625a11aac
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000556d269dff30 0000556d269d59c0 0000556d26a3a860 0000556d269e2ca0
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 005600051f40494c 43055c5155484005 424b4c55554c4e53 004057005b1a0f00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000556d269e7420 0000556d269dbe18 0000000000000051 000000000000302e
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 003a756b733a322e 392d3533712d6370 7276633a3174633a 554d45516e76633a
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322e392d3533712d 63707276703a2939 3030322c39484349 2b35335128435064
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7261646e6174536e 703a554d45516e76 733a302e3072623a 343130322f31302f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000014100 000000000000303d 44440045525f5346 0054242044492065
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000001 RBX=0000000000000200 RCX=1ffffffff21573ea RDX=0000000000000000
RSI=0000000000000200 RDI=ffffffff89b0534f RBP=ffffffff89b0534f RSP=ffffc90005e07958
R8 =0000000000000005 R9 =0000000000000000 R10=0000000080000200 R11=0000000000000000
R12=ffffc90003925000 R13=ffffc90005e07ab0 R14=ffffc90005e07c40 R15=0000000000000000
RIP=ffffffff817c3d35 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007fa294d5b6c0 ffffffff 00c00000
GS =0000 ffff8880d68b5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005555876ed808 CR3=0000000033412000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=0000000020080810 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 26ebef7a8dd5ea78 2d642fe2693283e2
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5a4644610a537287 7f6d27c751d52743
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2b58bd3a9e3aece6 e689ac04dbd8dbd6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f3b0324b2bd8fcf2 6ef98b6399d176a9
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000033c0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00002fd400002fd5 8001000000002fd5
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 061af80064586e00 64addc0000002fd5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 80010000640f9200 00002fd580010000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6484000080010000 80010000fea54e00
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e51c5f8baa2ae0d d2eafa5720200f83
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ab54c64b225816c3 d142f24702af3521
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffffffff976ca1f8 RBX=00000000000000a3 RCX=ffffffff95ddc460 RDX=0000000000000111
RSI=0000000000000342 RDI=ffffffff97621e08 RBP=0000000000000030 RSP=ffffc90006366c00
R8 =ffffffff95dd8480 R9 =00000000000002a0 R10=ffffc90006366da0 R11=0000000000000000
R12=ffffffff81974ec0 R13=ffffc90006366ca0 R14=ffffffff819759d0 R15=ffffffff976b4318
RIP=ffffffff81976ec3 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007eff67f706c0 ffffffff 00c00000
GS =0000 ffff8880d69b5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c471f8c CR3=00000000605d8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffeeadc3346
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffeeadc3346 00007ffeeadc334c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007eff67212e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007eff67212e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007eff67212e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007eff67212e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007eff67212ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007eff67212fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100000085 00000001000002b7 00000000000091bf 0000000435687c0e
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000095 00000000000000b7 0000000100000004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000091bf 0000000435687c0e 0000000300002085 0000008600000085
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff367045b15e3c74 68d8622a86fe64c1 f4af8145e763991b 03e457c3323e60d1
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5065ccf58108f1ae b4eb5c112bc44922 e9810cbea356705c 418ed36343b1f4b6
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fd317b6f78327faf 769f20e3d1b1ef5a 852910884db5498a 5856f598952cf6c4
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2580a3d0dd123d13 98c0ab2c640161a4 af91630d25f25e32 d903e6d8e8ea00fc
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 cc3a19e406269f66 0a925b8c239e7d0d 4d1035cfa7ab8464 5c73ef42e7dba7e7
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000