last executing test programs:

2m39.071781377s ago: executing program 2 (id=757):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi0\x00', 0x8080, 0x0)
syz_clone3(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000580)='net/raw6\x00')
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, 0x0, 0x0, 0x0)
r3 = socket$caif_seqpacket(0x25, 0x5, 0x5)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000008680)={0x2b48, 0x2d, 0x100, 0x70bd2b, 0x0, {0x4}, [@nested={0x2b34, 0xef, 0x0, 0x1, [@typed={0x8, 0x54, 0x0, 0x0, @ipv4=@private=0xa010100}, @nested={0x2b28, 0xd9, 0x0, 0x1, [@generic="2e0b817fccd79a4b8cb9e643f850d0edc9563f8573bc05744d1182f2", @nested={0x67, 0x138, 0x0, 0x1, [@typed={0xb, 0x19, 0x0, 0x0, @str='dt2815\x00'}, @typed={0x8, 0x124, 0x0, 0x0, @u32=0x40}, @typed={0x8, 0x21, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x8, 0xa8, 0x0, 0x0, @u32=0x10000}, @nested={0x4, 0xbc}, @typed={0x8, 0x11f, 0x0, 0x0, @pid}, @generic="210b62856fa690193146c251006fb69f9aa5660975cdfb5b69c8d8ddeb33012d6c5f95b56086005ee339e8f491516eba9c76c1"]}, @nested={0xc, 0x13b, 0x0, 0x1, [@nested={0x4, 0x9c}, @nested={0x4, 0x8d}]}, @nested={0x12a, 0x69, 0x0, 0x1, [@nested={0x4, 0x97}, @nested={0x4, 0xcb}, @typed={0xc, 0x47, 0x0, 0x0, @u64=0xcd}, @generic="59e93668355c15d668a24ef5b992a76eda8239dd061014294772bf664bc5de2f63c9566f66b1e8eb40d829558e8dc01c25302c8bd9192efb552055535faa9001d88c11c8ce1f", @typed={0x8, 0x8c, 0x0, 0x0, @pid=r2}, @generic="113faa72f0a0b3d46d2cc3ad19ef2cc5dda28269ed1ef11c951331b2c35593f5489738ae9081c0324b2e58ef9287f4a499a4c87f3c8f332a8324b5369c4840bbfc74f39cf6a4ed861097ea5284c7ed65fca5d58e65fc4195aaae31b05de0c57bcc56aadc4c1a935fe962718fc9d5046808b44bdaeb17f71a1300cc229c61f26207326e31f8eacac83bf9891ec8c130a217978066d87ffd5e787243778cd92ea417c49889a200a8bdb55e75c1e5604835f182b69e76c0ec3ac9d40244b2229ed2", @nested={0x4, 0x32}]}, @generic, @nested={0x2710, 0xe3, 0x0, 0x1, [@generic="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", @nested={0x170b, 0xb4, 0x0, 0x1, [@typed={0x8, 0x1a, 0x0, 0x0, @u32=0x1}, @nested={0xe4, 0x8e, 0x0, 0x1, [@generic="2ac4ab954cae5d84ea2c925b9d5770ef728e569ca039fcedd03620db32df4978eda407c0817c6a1f9d0e339d14c4fceeee04711f9bb39c0747ea0a502ef7823e45b2cada25e5f5f71ed0dc2dd1f92ec92aa4c8f82ad1efcf8735b3ebc2af12811f692bd020c8f0a9a117aa69059d93a0c06e53fd4cbfaa90cf7b993d35dd91b14af970dd576d7ef05b09e80c9fbe9ba3b5b451bb516b0ed007cfc726aac6b6cbe8d5a17c50364629ed35c81508fee6d01a2fe8bfa4cffc1fbca48b8fe3a48b1c349402d0facc9b44d35a9b17d31164196118d8e61e22eaa91768c03b", @nested={0x4, 0x3e}]}, @nested={0x83, 0x13b, 0x0, 0x1, [@generic="ee61e4c478bc6224ec33dd420740ed05d9b02eeef796552504f890c88e3d531e11caf7ac9dfc6dd628401788b741d3de626d58ce1df650e99abe2c8f671a7909cb099fc40e5d64580b61f9973c947f5c72260fd3b4e7f3c36d742d96b2024bac8bf2edda4cc31817390e8c798c9f007a57210f", @typed={0xc, 0x1, 0x0, 0x0, @u64=0x6ff}]}, @generic="64a2868e4ed5f4205951d4af72880c25625bc0beed60251ff1af9680ca834f98592e1faf0f1ffc41b40b8bbf3cf5565a5c3c430980856c65a81b644e27722f411aae45c9192405d832b4c247cb65b5a9504dfc2dd17df97e1080cbd47378a7fff3afdfab9f59b9228b1a9d2edd08284a5dc9be526fb3d94788675cd6215589005987f50acd897fbea6db3a7978d16757fb0e1679749a57a28e7bb95b79caf91d071dc34ccd7df6f667ce6c86a658beee77191cf43b33c5801142f8eb92668fac499bb73de82eecc713e7d443fae695ed343befcb", @generic="ab1f2bb4226299a4baee767f7308290eea2f19dc3c0f00", @nested={0x1030, 0xbc, 0x0, 0x1, [@nested={0x4, 0x138}, @typed={0x8, 0x140, 0x0, 0x0, @fd=r3}, @typed={0x1004, 0x57, 0x0, 0x0, @binary="1be25760fd728f3887f63e1e2b5d23f47f78ea47594fbad29ac38bdaf7d360cb78c4599d0e79d0d79b1ff52a2b140fa9352c497a210cb02119055b3b86506ed1ae24a795f68a0504b097e982b1c86ebb40a700d5e85a37957aafcb61feca3a3b388ead581e4fd8dea48bb50f26c154434581702b6559736f85d694eede23fa15cda0d9ccd2ef1187b941aa8ca9691918119946983b3b32332d49c03e0db0427242b4759eb4ae61803a2a6ba7647d2c07958de5b615a93f6a87c104911d909a2eed881e843789782244199be538e5e3082904497f29e971e7c3815adbebada1a9a013735f3f0923789da1b3a7a5072dc5686f9949d118b4d287628215a8c3416ae7175f31e52b17db0c3e6e8473ee5c778095e0b35771f30d4f96df304630ad398f60f785785550ceead6583e349b2a43721c99bd3f95081ead8f3f4e7cffc482314152acd5e2ca9d823e254ceb1cd03854fdbd00c416391424add89d8e3c87abb096025d122c64b71ae715747c631961ae67d0c8066419f102aa63e7c3e90820a9fa2bc079628645ec7e55a46ea9f86e8e759fcd7cb19bb0e0736436a64698f7213ae4a462f98da1e7069048a56a8664c8ccb4ce25a9b92e09bae911839ff7a4d8fde4e1c52c23b404de64930cd6eb13f8e6a526a2fbd546a03a1002b3a56c8a60e7f3c19946ddac1b88016b1de399340f2fbfbcfaf7460ba78968c68f7a4a28abfd5cce85c0e488e4a50da2405de5a4038bd14ea7649f20051b289d9e4f2b6b78afcd79b3039ac546b810d7f37504c475d5072dec9227f25f5449331b7d74493b20be55f2fc4b7e2c27535cc78978ff849df1032b66368b5bdd30e0816e0eec1aab5eba73544ec10a62cb03fbb13007239bde5cadccfefe7aa5c10d47dd2e91260705df42d63bb410f8d48ffcd2923e4cf3744dcd29849f4a47badbf5dc7aa692360a955782b64b48caf515fe1502d89f220fccff998e0850b3688f13dfa6bef27624d31efd875eb9bfc910d3d7e33c2549294a3a389ca88a98cc42b607ebb9b3d2b27715b3828f874bc6b96ccdbe7e23a7802efccb7a0bf6dbc60f1c6056dbe885cd746b5c7880361231cd44bb81dfb691b37278c42a6b4ae9372a32db8bd22c220f09d72087e33aa000618382575570c22ff76224eb5d46a094fb84951ea4d7e83547360f0ac59312fbee3a4942dcb8d46a8f6ea7cfd3e1af3dfc1f09f36016e4ced62e434242c9ca61a3cfdee68e82fb5fb52c67619e57e9921233a8eabf681b2156b2fd9ae9d5d3e4f6a87120a1adbfc544744bf5e8445046508ec054c47f9e9f4a2f98c706de6f93a5f8c614cfa44f36cfac9196daf82068835186c0b26fa17f22f96351a9f06627e5f22c415426c33e2a3737ef8a091da68cf9dbf88d36500aa2adc17d8826df3d3becae75792e539f2f29b0646302eb816d0005c4dfb8074be3288a6c611286246c79a2c41ea89d54f31d258a813a1f24b46d3c5f5add9b73799f9b782e4aae7c44011eef84b8d248b204ad67281d4aa3b306ef0cb83d6483c93d40d106e5480cb1de1dc92ed397a5303f7c1ab24ffcd98a688472eeda15a3f050522fb378ee517d5905adf7ebe733763bcd63475df16800f3fa4a5e3e507412b9c62ca75667c18687376c60956f480de8d9f0f93d1e07ff741dbb5bc16c14b841c0ca221097ac0eda07bfd96171a1cbb0652322e30e50151306b22f7b020aaa23fa52a13cc4246335818ee44e4dfd2deef762cc4eb2736fc221bd675c2ca3810173ecff83deaca25f8c194480ab9dd7cc3161c7d0e1bb3217675507b039e9f7b1dffbac2df800808202de6302c8d44b7db693bd157a16374c1f61b794cc7073f0a58344400430f78c507884a406e5aeb13b4403c716f1334becd7a3576b4a5d65863cee73e4031081c46d2f5fbd938094b74bc7e1ac57281234f9b2b4a10c108cb7fd51c481c91e46ea6428808e871bb47abe799cb0198359e5d7d919fbf10a97c3b19de75e53eb824b4fba216e47d737a4247248ea62451ba6dc4448cab77e1cf39f840c390d4148b6fa73302cfc825f1093abd14d94cb17ce67d6be3048d00ef3a8eced45b21ff3f995352bdbb836118599aa8bcfd6580c2041f6ff6fa3b02a89e1379f32a91ce0e3c26b26227018ccf75c304fca2f3b63b45099e320f5cc7094373f376486b4f82c37f957e609958848baf4cd957c520743b54d0582eacdaece5f84233d5f09638d74887bd3f7a8abdf308c61e79029d384ddafd5afa9936f2fc36be30451dde2c06606f6f79b730ecae93fdaf451041545a42637aba1bb0b00195e4e0518d0cbd653a14f09942a3517393870e935365aa54542c3f30726b72da9082819f41aa1486a90ac62adf5b7feebcfe78b125adb8e048c1fa537851808ab09ba559c4163e5d4b0dcedfaf6fb37a5ee80e6c475c6baa5d488d31c4cd58ec30c9a22cbedd0c4c653bef1a7839e713a06de5545a51a3d58d4859fed72fd3d2cf0114c555d907980d766487c8c891b831f56a6321d399b3f84d73bdab1d897196cc8fcd80942238db20a85eba63293b71b4e87799abbab5cb2fc61912c90dbeaf7b8f1f8b2d39527039a03afd9c5109bae3697ac222b21f5d1b41e55f81b97dfb36a0e8af0b6edc95e5a738676c4d1f6944c9f37694437c81640dfee4d5309771737db75d406f3a9a6ee0cf61e729ebe2ed8653d65f02d8ee76ec07c85cfb95b7a3ca1e1c287d22aea48a9a2b961fb31701f194c3f0779ebc1fbf6c0137cf4ed5eb3eb9b931f49be644ab225cb3c64d08cb6117eaf765d978951e9fe87aef8886a6f4a040a602be2256310efd1c7940860bcb3a624d3a89ee04faffc3e474f0f22643140c7f169f87a43cc77241621b075db749271046cbec9a11ec79980289f905863e87ad3330f6fb1d4be39c16b42eaba5cc8efd8a9f94ce25355f999db7fa46101a66d9451e0878db498a3b1298576c78f4905d2158c26733eb3da62a6483be1dfb38c06ee8d1bf3253722ef77c72f7d9949eda40686ad7e503ff70afc112ef8d3532f967c301ffd497577950efe44acb42d7c17bb40af28d9d9a5edd122e26b386fa1f364b609bb666827650045bd61cdcbb44765820099f23c11e82567147571f62eff6e80e1b8966acede6533c85305efb0d9c36ff60feb6d30cc56c21f92cfe24985c9ffe692e613349ee731f954a5815fb0a66da6186b36a6ff709c307ab0ce486c3d384b42fda4b43d321ff6ad778c1c56f5f6171f7a518f2dc22a6bca78b6f656d91c9bb79c15c2d1261720761dd9af3578089843ce2093c88578dc0d864a99b49ffdb73d89d7f36bd3e15df9a6a6c0abec2665277b2695e1de1a97c31cedd97e53ecf26ff0cb3df5e6c69ee213fced2845736557ced610b909e4902b56a38c1132b8913269f6728ac11860b5716d0fdbf22e2c808f7505538005b736a56601123ebfdbb2d7b29fb688805979185a9ac2e8366a28105e84bf45b3b0cbecbd81a211c3dc73206801e3dfb9b4b3acda3b66c885c0c1a7e4bed8557d6aa3c8d9f6a4836a5e02060ae0cf8b859a84d034d37714b16da60f6ce3edf9626d9a35670832db90b650ba2598a230e1bc4ac6f0d6c158fe3441031120a82b90d2e2480aab65155941ca45468ef4fe4ee17c48272c54ed626e84b523c3bb5991866a7b2839da189d6ca8329fe727d1e63490b3aa1d41537f4c6639c81e437af6468f3a6e982aa36669329fa03db69154f50c568ef1463c1c8e1136894b6694761f01ca8ed02037b525391508987cfbf39fecf3457c360a7e9be48763904d0a6579615cdf0161bb7abce11833272fd8f7cc4680aa39169e65321966b11546fec361382da461894f03298f60324efb8774314915da628829be422cb31772fef40db18707dc71b896e78309361f7acdd69a2a1fd045f1b1e5329238dcacf7b2f16df1d3f37127382d1d6cd30f37d1e332b7c43b65eaaf6eb4db29a88ccc0dbe0a44562d41f5f0444139b7cbacd1ef86dbf3e4d8d2f9e46ed50b692d387513e4b61de1b05f92adf553d4f55597e9c1abec53e52becdad8df48beb6d8dfd89e58c40261e55efb175b7a9ec2490aed06506271a3bd1b56c48d21bb86e4842ecdffe1fd1e6dc24de4ca63d7d32a26f85b727db4ed3cda7ac34929cff8f35aa9d11ef4d80125378cfa1b33c1bc25bc7bcf632f685f20081d8aed8721a13808ae14064970bae9345a288c0291d422e5a3a7fc0c9da575351acda6fcb55bf86670ec58e0179f87eda1eb9441baf0ab2325a1341654c223f416b763e7c368137e3c72fad38dd0cf86d1573070c0e56aeb7b637f324ae7092e8e330f6e97467d3293f61697e282b0f8e78dc031904e49108eb0ec77bef803087c5bb8ca01fb5faf6ba944034696adb1c89e67d8340d703718459e6a51a1b2e43209c1a7c07a05c17ad6bb0d5aed1b93f40cb36ffe0f71fd787bcf3a804c27d534bd6f5aaee0c55a2b9531e13554ecc8c7bbdae76385cb2b1223cc4ec2796794eea1d22dd15b894ee9b4b403041f68641455dce795782b9242d0a2052868b4cf54ce4d9a7f27f5eedabe495a75f7998ea0482e54f15440d84664a65a3f7c107825a065a990a20aac30093c722b9e7004063b045b21ee7000ffece84c7f0493cd69d7f513dc9f770fb373ab998fb51f03f57773dea3a58146a66c4bf19fd4507abfe8f595a3da4b1c00c16142948315ad8f1783139827a6b0818f7e8ac92c988a5a6fb67e73bd0160838ca4fa2945ffdf7934f29f4d0b327e29387fde2d6567f2a37a83996b6cea1c2eca360c5b2495230c6a36df13948a3d935d0972d19553064363c08e98a69b3e0a36851391ae8d1dc579ffa911798d964ab17125c50d27e5ac3591e55090bd413ef7d9e93072d9fa41e4f4a62327f2730f94a108e9300b423df49d9b9e6d5703319a95a4660ec6b0e7af48ec5dc932e3f42a21bbfd3313ef532d69eadad5d86fa64546a379ac3e5d5cf0033c7dbbc80307a387f0606779eac84f65d453154819d11ee0c04da43b20c8840bb6cf025bf3de17a213f9afbd3c8de3ff947fdcad2f5aadb6bcac8908aaa34ceb876ac5c0efc3fccefee80ab92f7b3514386e908e169cd970952a501a3a75efb0706f1fe12701b7a2f9bd4d3a1697dd1bb607608a6ef1240b0daffdeb3949d3eb447ed557657fadfd81f4645223571bd8ce2591c61e33a9f5ecf5828e3b93049451dde2b62aeef7ad430b94b60a797e4301a47129f83f8eb4b7bb72bfef83140ec5f3c0c7d686dd612a8be2570c03038bb42128e86d49caa2fcf504c4004ff1649baa0f6bd07f00d516f08ee4fb6e5709f6cc22245d78260b5610e9fcdaab2d14cd6fa600ea927294081de1412dff2e1ed5980609b2b8bca68b10c8cc8e40a437fb4d7ea88aea7323092801748fee151f8adec5f035b12871180b923e5d84bc38f0e8c0b5f3940107f538bd012e4b08f57c297571f1f8ff6ff99d590ebf6b80913627de908e038425ef99be1e83126b038d10e72f949aad5132afdc50308e0abbbf5c88a730db3d16abe2ff77ab213f688e1fcaf25827e1f091050912e13bdb2e70f6cc4148adb234be188d0ce9aa4982080fde423ab692f1d7890b74303f6c1d910cd6ef5231bf6de21d2364626a07ad7931ddddf5a0bdeabc4e200563773ae29f49ab657ccb533d7491490b07631080fd42464d7506041466c47eacaa746e001b7059b86e0fe94cd16437cfa8103c13655d2de73fe26b5cc57bf7db8311f3d541fd8b79194759c48fbc1c0b0a82dd3fd569a5"}, @nested={0x4, 0x124}, @typed={0x14, 0x2f, 0x0, 0x0, @ipv6=@empty}, @nested={0x4, 0xad}]}, @nested={0x47c, 0xe5, 0x0, 0x1, [@generic="f0d0611644d60fd054e54b6ff861ade3447394d4dee6081d21d28f6bda0eac3dc04ae26c18dd138d9f3b9c09b802dd91f9c235ebaa1bf80cc6d354dfb9b555f5", @nested={0x4, 0xd2}, @generic="c03f32f620849f0bf8615ddff9703c6db34820fa7b882528b870a58c9a52f8fcc4", @generic="1e02062625036d1c4396e7a7d303df869da8f669e6f8c3e3e955ba94801c5bfbe679e9e4d47502dafa960919fceb21b3492dce9e786e210c6c29f45848f92ebfa0bb16b9c6acc2cecee3c263e4a51a8d3d24dd7940a431353b0c00982da4847a46cca263f3fae3d5d1ed6d750964ccfc27a8009880a18c371d55cbdc21ca9d9a4c7d87fb51fd4c03e586327f3719f523ee88f049c5d0b2b5c4ef7e32aa7ea40da8863b7b9114e662480de11e2db6daeddbe9cbd95885a0f0428b3b8b74", @generic="b01d57b47ded9ee46bf741e16a3e942f44e733827f38aec1ffd47258774b5a7e58c002092fe88e01713c213327cf5e8bd22b6facc791464a7d7b7cec84b86aa6be2ba886915a6b9833e3031ba42a0600e408ad377a1a683df1a1cf62c316215ee703a087806b7be4bc3032497b07ef605b87c5a6608fb3659e2857e67d0b583d8e2b27f1096ad2051844a0058e2e2a935fb93e67b70d627e2168f35aeb8af9cac81ca4372762ba1c3547e6cd1f63ed5b055d2766a403fea4fc114065025f1c8ca2ea5fb3568b415f43482bad3626a86729a99b9639446961bfe2c23f6532a5945095", @typed={0x14, 0xae, 0x0, 0x0, @ipv6=@mcast2}, @nested={0x25e, 0x9f, 0x0, 0x1, [@generic="30cc43748062716e8910e4eae48d73f647571809f4ee7b040a6bca0d4fb523766847da0086f374a03fa62d7e39fafbd54104f1c5a557c892b81530ac1bc910e6a00f47f9d9409e4f347d698f7241ec54ba3d000885b39f8b394acf56b5bc969b12a4bbfe1c63acfb4f9d9f7581c4cf425687c753999eb3c3a374d8bb416272bd746e5a81e7e356670b9699238afb91833d331ad6dbe27df1ab36a5dd7b04455aca128f299d919f5270aecc5508cc43648b2345e159e2b4e202af135710b728227a3e14e5e8c73d15ba223bca82d67c15637cd46e25ff094ee86a8b2a38e4d519c1a0bc3059eb3929d2a91ae86937", @nested={0x16b, 0x135, 0x0, 0x1, [@nested={0x4, 0x4c}, @typed={0x8, 0x14e, 0x0, 0x0, @pid}, @generic="c9ac173c0cdceef846fc5f9bb90f831ca6986925097506c386f489afcd5a727d6e6b07c3d2b5615cb6f1774cd893c5bab5eebd725712bfcc0e8a9c21875edb9fbadbd667c842c8cd2db3fe862bb5bcda48f262f46becee00fffcd1867d3d819652909f3215f60f3a31d0", @typed={0x4, 0x14c}, @generic="18c108f37a3e3d7592384788f4bc817281949541c9d26c50298ef9cc025d4021d4f1bfbf3bb1ec16a29c8faf4da8fd32d477489c903a9bdcf242cba3a49f574b0d47992369b887463cf931819f9196cc89c08fd66e311282f4ca7bb1a95de391172da30ef42f66f31f025cc700a76521f1a824b288ce403f64323886b64d75a20a6740a8d52b8d2477c2d82645066feb3e4019292ec98f868a17651f299de3c83155e1b8d39be227635a78dedc91118498485d22cb50fdd2e86f385af28109c13cdeb4ac62c0bba02badfddbce11a1e9d04a29cbc0c14c56b5bf1485cc087b1931", @typed={0x8, 0x151, 0x0, 0x0, @pid}, @nested={0x4, 0x55}]}]}]}, @generic]}]}, @typed={0xdb, 0x5d, 0x0, 0x0, @binary="4d5542d5431e1b451997ae0c5dff90aece006ebded186f523e090d608c428ce057e3ebdad4ba15c5f9ce2d04dc9645a0e1cbdc89dd47faa45d9589cc86ac67a4f3541f84b1d7a4293cf5d66dfaa307e4e075ad704f967e62ef17c6522922d8112fd12288acda512312611965a536f6a44b20094826837192c8ab86df52325b46db12716931ddec0965ba6f75db542a55f8f17cf5d043ef7e9daa3f1344819fccabcd4bef9916276f06524653ffb4b53f72c6cfcf9a10724815e6f72aa8cbcd1dc8c02672f1aa8e37ec13c9acc75d132b4a229569c81211"}, @nested={0x17c, 0x70, 0x0, 0x1, [@generic, @nested={0x4, 0xbe}, @nested={0x4, 0x7e}, @nested={0x4, 0x139}, @typed={0x8, 0x60, 0x0, 0x0, @str='.#(\x00'}, @generic="a302aabcf59abad1ef9d6a8cc4cfb90af5c633f19ec2a77206eb6ae0b51ad0a5ea9f52360cfd01b4202977a77425a8d894e5c68af37c00239b78c983af52e676b89260ace1978e23bf774286c79e9d4c0045bf93af3167cc5b3b559b7cef21efc02c242aa185d46c3f521dac6e8eede8852e57286c99b2b91c4952a0f89c426afe3d94b839dd358bc11087dbd70bd9351cc6b955ea2905769abb12b91eb279fa404dfb7cdfdfcf33e5389c0f458c7d6499e97be87d45e50e2b4d7d9b3eacd8fbf5b66b0debb05a6cbdd501af4961766a06efdafb88f77714871bbea5bd64b57dbba95370cd0d538ebb16c00852954fed9445934ebbaf31", @generic="234c585344a993166c9bd57a9a913be8951b8ae262ba4d9bf426b1c5dea94f8c47aaa0085158d7a0947fe138d8cfe20c3db133b4ce85e55d652105a60e73fc35106fd11cf176f65ca6edfce5268e5a878c923076affaa103b5f615aaa9a0ca50cde190ee7b16237be02eb497e2"]}]}]}]}, 0x2b48}}, 0x84)
ioctl$COMEDI_POLL(r0, 0x640f)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000180)={'dt2815\x00', [0xee, 0x80008000, 0x1, 0xa, 0x0, 0x0, 0x1, 0x5, 0x1001, 0x1, 0x8, 0x8, 0x6, 0x4, 0xfdff, 0x6, 0xffffffa7, 0x9, 0xfffffffd, 0x65c, 0x400, 0x10004, 0x800, 0xe2df, 0xd, 0x4e, 0x4, 0x3, 0x7, 0x5, 0x5]})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, 0x0, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, 0x0)
r7 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r9 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000b, 0x12, r9, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
io_submit(0x0, 0x0, 0x0)
write$selinux_load(r7, &(0x7f0000000000)=ANY=[], 0x2000)

2m38.860962187s ago: executing program 2 (id=759):
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
getsockopt$ax25_int(r0, 0x101, 0xa, &(0x7f0000000000), &(0x7f0000000ec0)=0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x80200, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="36f2f00fb074000f22c164f0fe8c996366b9800000c00f326635000400000f300f79aec6960f01c4ea4c006c00ba4300b0ceee2626f087bafaff36660f388008", 0x40}], 0x1, 0x51, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r6, 0xc008ae88, &(0x7f0000000340)=ANY=[@ANYBLOB="05000000000000e684000040"])
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x18, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xffffffff, 0xffffffff}, 0x48)

2m38.653380315s ago: executing program 2 (id=765):
syz_io_uring_setup(0xa0, &(0x7f00000002c0)={0x0, 0x80089b8, 0x308c, 0x0, 0x207}, &(0x7f0000000140), &(0x7f00000000c0))

2m38.653198945s ago: executing program 2 (id=766):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2m37.722437811s ago: executing program 2 (id=779):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0x48980, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
r1 = syz_io_uring_setup(0x23c, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x40, 0x0, r4, 0x0, 0x0, 0x0, 0xebec93e830f96115})
io_uring_enter(r1, 0x7f5f, 0x4000000, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x86)
mount$fuse(0x0, 0x0, 0x0, 0x1930bd, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x2, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
setpgid(0x0, r5)
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000cc0)=@bpf_ext={0x1c, 0x1c, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000bc45", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000085000000c6000000950000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000010001007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000008200000018270000", @ANYRES32, @ANYBLOB="0000000001000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000600)='syzkaller\x00', 0xffffffff, 0xb1, &(0x7f0000000640)=""/177, 0x41100, 0x33, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000880)={0x1, 0x4}, 0x8, 0x10, &(0x7f00000008c0)={0x1, 0x6, 0x10, 0x9}, 0x10, 0x15f14, 0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000c80)=[{0x0, 0x4, 0x8, 0x5}, {0x5, 0x2, 0x0, 0xa}, {0x1, 0x5, 0x10, 0xb}, {0x4, 0x5, 0xe, 0xc}], 0x10, 0x80000001}, 0x94)
r7 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r6}, 0x8)
r8 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r7, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x300080c1)
setsockopt$sock_attach_bpf(r8, 0x1, 0x9, &(0x7f0000000800)=r7, 0x4)
statfs(&(0x7f0000001140)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x5, &(0x7f0000002500)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48)
r9 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TCFLSH(r9, 0x400455c8, 0x20000000009)
read$FUSE(r7, &(0x7f000000b640)={0x2020}, 0x2020)
read$FUSE(r9, &(0x7f00000075c0)={0x2020}, 0x2020)
r10 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f0000000240)={0x0, <r11=>0x0}, &(0x7f0000000280)=0x5)
setuid(r11)
getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f00000007c0), &(0x7f0000000800)=0xc)
read$FUSE(r9, &(0x7f0000009600)={0x2020}, 0x2020)
ioctl$NS_GET_OWNER_UID(r9, 0xb704, &(0x7f0000000900))

2m37.663429368s ago: executing program 2 (id=781):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000000040000cd00000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PPPIOCSFLAGS1(r1, 0x40047459, &(0x7f00000002c0)=0x800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='net_dev_xmit\x00', r3}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e)
r5 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r5, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix={0x7, 0x400, 0x494e4f4b, 0x4, 0xa958, 0x5, 0x0, 0x856, 0x0, 0x2, 0x0, 0x6}})

2m22.619831198s ago: executing program 32 (id=781):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000000040000cd00000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PPPIOCSFLAGS1(r1, 0x40047459, &(0x7f00000002c0)=0x800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='net_dev_xmit\x00', r3}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e)
r5 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r5, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix={0x7, 0x400, 0x494e4f4b, 0x4, 0xa958, 0x5, 0x0, 0x856, 0x0, 0x2, 0x0, 0x6}})

1m48.84337778s ago: executing program 4 (id=1467):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, 0x0, 0x0)
unshare(0x22020600)
r1 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
r2 = fsmount(r1, 0x0, 0x4)
r3 = openat$cgroup_pressure(r2, 0x0, 0x2, 0x0)
read(r3, &(0x7f0000000040)=""/252, 0xfc)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @link_local, @void, {@ipv4={0x8100, @tcp={{0x5, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0xa, 0x0, 0x0, 0x0, 0x0, {[@md5sig={0x1d, 0x12, "d285b6853bc4dc54c6910c1d66f8841a"}]}}}}}}}, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0)

1m48.843185562s ago: executing program 4 (id=1468):
bpf$MAP_CREATE(0x21000000, &(0x7f0000000000)=@base={0x18, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xffffffff, 0xffffffff}, 0x48)

1m48.784897954s ago: executing program 4 (id=1469):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000180)=0x4)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000240)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x4, [@var={0xe, 0x0, 0x0, 0xe, 0x1, 0x3}]}, {0x0, [0x30, 0x61]}}, &(0x7f0000000400)=""/147, 0x2c, 0x93, 0x1, 0x7fff, 0x10000}, 0x28)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x48c}, 0x50)
r4 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0)
read$FUSE(r4, &(0x7f0000002240)={0x2020}, 0x2020)
writev(r4, &(0x7f0000002140)=[{&(0x7f0000000040)='T01\n', 0x4}, {&(0x7f0000000080)="37c870ef0c000000e20ecbf61fc3", 0xe}], 0x2)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000680)={{0xffffffffffffffff, <r5=>0xffffffffffffffff}, &(0x7f0000000540), &(0x7f0000000640)='%pS    \x00'}, 0x20)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000ffff1a40d8048200b7ce0102829709021200010000000009040000000202"], 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$igmp(0x2, 0x3, 0x2)
sendmsg$inet(r7, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x11}}, 0x10, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000007"], 0x18}, 0x2000c8d0)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\t\x00', @ANYRES16=r8, @ANYBLOB="000228bd7000fbdbdf250200000005003d000600000008003f"], 0x24}, 0x1, 0x0, 0x0, 0x4008091}, 0x41)
sendmsg$NL80211_CMD_SET_COALESCE(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010020000000000000000200000008000300", @ANYRES32=r9], 0x28}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x6, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x82}}, &(0x7f0000000080)='syzkaller\x00', 0x5665, 0xf8, &(0x7f0000000300)=""/248, 0x41100, 0x8, '\x00', r1, @fallback=0x1c, r2, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0)={0x1, 0xd, 0x7ff}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f00000006c0)=[r3, r4, r5, 0x1], 0x0, 0x10, 0x7}, 0x94)
r10 = socket$unix(0x1, 0x1, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r12, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r12, {0x0, 0x1}, {0x0, 0xb}, {0xb, 0xb}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4048000)

1m47.482950972s ago: executing program 4 (id=1485):
syz_emit_ethernet(0x32, &(0x7f0000000000)={@multicast, @empty, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @multicast1}, {{0x0, 0x6558, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d8621b", 0x0, "2c17a9"}}}}}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="600000000206050000000000000000000000000005000100070000000900020073797a3000000000140007800800124040000000080013400000000014000300686173683a69702c706f72742c6970000500050002000000050004"], 0x60}}, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
r2 = socket$kcm(0x2, 0x3, 0x2)
sendmsg$inet(r2, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x10}, @multicast1}}}, @ip_retopts={{0x10}}], 0x30}, 0x8040)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
setresuid(0xee00, 0xee01, 0x0)
r3 = syz_clone(0x2000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_pidfd_open(r3, 0x0)
process_madvise(r4, 0x0, 0x0, 0x19, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
getsockopt$packet_int(r5, 0x107, 0xa, 0xfffffffffffffffe, &(0x7f0000000000))
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="66643ded", @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="f6f01e2c00"])
r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r8, 0x4008ae89, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000000000000ff000040"])

1m46.864397776s ago: executing program 4 (id=1494):
socket$l2tp(0x2, 0x2, 0x73)
ioctl$VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f00000001c0)={0x6, @pix={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000000), 0x0, &(0x7f00000004c0), 0x8002, 0x0)
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000000)='./file0\x00')
rmdir(&(0x7f00000000c0)='./file0/file0/..\x00')

1m46.792165321s ago: executing program 4 (id=1496):
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x58de, 0xb, 0x1, {0x1, @raw_data="1af9ebae8a7c18bdc45133f2b6f27ce19a7a6e442c82d3c6f40845c417475e4055f9d27ed1d6872f275b8279a006049501ed4ecb9e91b8e7eb6033e5d7d91d7c3d87741f1d3c2680b191f147476b85951346e98e6e9a1e5a6766e64b84e052a51dd12edf9d1d26e08291f7711bd87195694a9516c4fc0e9151fb774e27670d19589060fe7b98cf9d58d6cc96212f33a1e1705dbb873ca532f70ab81ab53dd1e3d29583773ba1c6696a029febe240371ceab542eaca8ad6703b3a29732094c541999ed04059ce9dd5"}, 0x22})

1m46.752692252s ago: executing program 33 (id=1496):
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x58de, 0xb, 0x1, {0x1, @raw_data="1af9ebae8a7c18bdc45133f2b6f27ce19a7a6e442c82d3c6f40845c417475e4055f9d27ed1d6872f275b8279a006049501ed4ecb9e91b8e7eb6033e5d7d91d7c3d87741f1d3c2680b191f147476b85951346e98e6e9a1e5a6766e64b84e052a51dd12edf9d1d26e08291f7711bd87195694a9516c4fc0e9151fb774e27670d19589060fe7b98cf9d58d6cc96212f33a1e1705dbb873ca532f70ab81ab53dd1e3d29583773ba1c6696a029febe240371ceab542eaca8ad6703b3a29732094c541999ed04059ce9dd5"}, 0x22})

1m22.943226015s ago: executing program 3 (id=1984):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x2, 0x2000)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f00000000c0)={<r1=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc03064ca, &(0x7f0000000140)={&(0x7f0000000040)=[r1, r1, r1], &(0x7f0000000100)=[0xe1d, 0x1c00000000000000, 0x400, 0x101], 0xa288f0f, 0x3, 0x4})
ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(r0, 0xc02064cc, &(0x7f00000001c0)={r1, r1, 0x0, 0x80000001, 0x2})
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x2, &(0x7f0000000080)=[{0x8, 0xf5, 0x6, 0x5}, {0x4, 0xb, 0x2, 0xa}]})
close_range(r2, 0xffffffffffffffff, 0x0)

1m22.943085229s ago: executing program 3 (id=1985):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-serpent-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000240)=[{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000001c40)="b72d0bdcbf98015ad928c56730c6d7ef47972e475bfd32372cea25f3fc19b9866673f6b732153768822facf24dfd62f9d03e71c4c6e4fdd9cfa557e53b85d26f199c246bc8b990218959c2c01873d94c238463792d70b8cc652d4793b5284edf932609411b558c1b913e66db0484a0455dd460f20918f1eb1ffa007a685d8d18455a063ee6efb413c9b3229c2f23ba68a489b7d7e244da3d16b13526a75c8e3e002f6ceb48fa8cd8cb2395c611e683850077e0ffec957686605cfc927486c028c26530819aa88bf211f13f58436cb4d12a5bfe4dffa31fc6ee", 0xd9}], 0x1, &(0x7f0000000540)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x840}], 0x1, 0x0)
recvmsg$unix(r1, &(0x7f0000001c00)={0x0, 0x0, &(0x7f0000001bc0)=[{&(0x7f0000001940)=""/216, 0xd8}], 0x1, 0x0, 0xf500}, 0x2)

1m22.883280314s ago: executing program 3 (id=1986):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8002, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x2c0000, 0x28)
rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file1\x00')
creat(&(0x7f0000000440)='./file0\x00', 0x4000000)

1m22.882582148s ago: executing program 3 (id=1987):
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000040)={0x80, 0x3, 0x2, 0x1, 0x40, "bee34e0626588a22b2d012000040f94233a5bd", 0x6, 0x2})
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x1a3081, 0x0) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x1a3081, 0x0)
r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f0000000080)=0x14)
close(r1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x400000, 0x14, "3eccd8000000000000000010000000040100"})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0xf9)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000280)=0xb3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000240)=0x6) (async)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000240)=0x6)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000380)=0x43)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='oom_adj\x00')
preadv(r2, &(0x7f0000000300)=[{&(0x7f0000000140)=""/126, 0x7e}], 0x1, 0x0, 0x0) (async)
preadv(r2, &(0x7f0000000300)=[{&(0x7f0000000140)=""/126, 0x7e}], 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000100)={0xd, 0x8, 0x3, 0x7fff, 0x1}) (async)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000100)={0xd, 0x8, 0x3, 0x7fff, 0x1})
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) (async)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000008) (async)
mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000008)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)

1m22.502300621s ago: executing program 3 (id=1997):
r0 = socket(0x1a, 0x6, 0x41000)
setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1, 0x8, 0x0, 0x401}, 0xc)
unshare(0x22020400)
r1 = eventfd(0x2)
syz_io_uring_setup(0x7793, &(0x7f0000000440)={0x0, 0x251b9, 0x26, 0x6, 0x2d7, 0x0, r1}, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x9, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r4, r1, 0x11, 0x0, @void}, 0x10)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x84, 0x0)
move_pages(0x0, 0x1, &(0x7f00000001c0)=[&(0x7f0000000000/0x800000)=nil], &(0x7f0000000200)=[0x1], &(0x7f0000000240), 0x2)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r6, 0xc0b45545, 0x0)
r7 = syz_clone(0x8000, &(0x7f00000004c0)="7b6a5165adc0c0bfdfa9ef3322a0fae8111672b7a9b84293ff42eca02bb2b6110be2ac2481a301fea994997a3381276e2b7c13a8f0aced45188bb492929526fcf58398b5b4d09579983906a882807360485feaa67c977dc3e6d7e211f68ad744941c77bcb6f44ca53aac9ae31fd3afa4a75b03fd3af3200fdb75f19be26191688744d9b37134448fe87289413f231bbf2bf0c4b84e6fd0312f408bb44144def96c441fbb650fe1eff43d50946a6f2c669b1f91a03f8f9c3d5fd51e9979bc56b6caeb7fcec5e28221873f6b587cf0d953615c4d0628125c6825754af92e17d0cffe18c076342683bd02ac88c9597abe63638ec9743b8de982ac9b9e92d9420477d7da70884d32d8d10d6b7cfef684faec26fbdc14e5cb19179844c51e1a56a54ad96dd6edc5bdea36ca6b70919865e9e78dad983168d79cc244c74e83544a541dc8a83bc45bef3c69b08666e9653c79a73667dd611d5947785eafd595ffefb8ae70b8bbf54ea44f1806376d7d567942eac2a480df54c2eed736fcc691150403e5819a885c8533340c635b6206baf79a3a8d62b9b061f5d03cd0bccae33d9e4bc09a65a5555464be1b32462e37895a651c51b6fd5167e8dc039e7d60caa6c58e34aeed31d84d9a864735677a9dc1404fae307e04db5ab6f03b16db271507f576b919012e9a40f7ff6213daa26a58cd19869c1f83b3d7689698f8e71134ed36e2f51a1d701b9cd4c0c2bff10f62b8360d854bc1e9ca2b89db0e0cda4b76e48c702d6f628e073250388e5fb8de0134233ef714bda1a485c2462d354e1c289afe209616aa1e12ce714887d8bed6bbdeeb94b04a8c5e6abef3172e725276be0bf8c6f51287cc8b21dd1826214de3f736fad8c9c4e37065ae90374f5bf2d898300d8a4ecd6ec9028355c1986ccf77fa123c732e619543780873784c9818eef59ce1f48fbe25176d80f66e6876d6654c63b0fe931f850b21ecd128a4f3155824c1609ffa38c872b445b48d16af3861809e556a358fb2ea6bcc6da961bd27035cfe52a9d7f30931760f9f46d9aea01c663822b4a2a9ddba7c0910292ea29e8ee3af37c785cbbbdbe8c3b8588ad5487c7ba31a9d7e14acbdb0aa39111f98de8b891f0fecd871cb8faeadaeab634d7832c867bddfd28abd68b7198eb85e03a9b20d1905f23c10d433d5cb087f49d9be1775a259628424e01e5aa0b7f3f5237650affee2626c8bba14ac9c97c4249aef506c4205e5ecf1ef9bb2573bf5b06be76cfe4edb44b2379ad0352398c702bbcc8470fd19f417fb66a031d91f18065fbb52cb44665a3cd79d5a9f6844dc28d2fe01543116882af69b8735c7c76fcd184b6c653c1b5f6f4cdb7b5ac63cea2edc6093ae9e044b629eb8a8c776348cc31376c97684a13aebd0180e709e007a0dbd202dbe54988d363aacb9926be0db16957983590584e24f074e320fe1c82b5b75d1d6183d1553193bc90d42d19fbcf60836122241324e4c6c46850b4a31804687127b4cca6fbd1d5675a6ea659de9c13e758d3abdde77f9d3b857a9ae19f1cb39a5130ada328b8e5c94870a3e61a17831ebf305ac844f7da295fbbb2e617ab3e633d909e50c68ae2d74853f3678a5d1ffe56634f8b333554f80f6ce028fc954694ae9a0218dd3596fd83f55f869c5fc50d7f41f6f1eb00ac21a796fa222a7f1c4357730b7d917a5c8360718927f734f7a49bc0d4df80c9bb1c327a812dfee911bfc43a25f14e52352bc4029ebfe8c4621b4f8c3bb285218d168ba2c1d38ccf8938a70dbb3f7d09c81139117e3174d1226ac15ca9f48284b5c521a3a89d94852edfbc5e70a031702d413701fe00a6c1f70cdf59778dd0f8be2ae7d53f75eb66c2e69b6b078ab68defe56b15179f4933e6e8a6f7a9f7347b02687ebb68aab7798615bdcc65c718020d68e3561b9d848936ac788c341a2b7574a377c4bc396ec77c0ad67971f4903632a5f45a6f43f80129171bcf918d2e4d979bc2232eee1dcf34931adcdf2d885bd13b737105cbbeecdfd1b5702a513c9e42ea3ae0a5e78b39fba684d9679d1a2d5eae07419269617ca6815e475131a45a25fdce3a3af57a30d3fcbb5ff1332e4fd8a4d767ee3078f597887fa917ea4c61cbe23f263c1b2004712a625f5ddb0404e7f7299934b353e2cb4e556b5420e33a739dbb3f95cc03f2011270047e028731fe6e387e101f8a6619d59600103697364dd506e365ccb39487f047c949cc43fae438a76f3888322cae3f8e03b51b39739f60cc75052f301505e9c48c3122caa815de01a569665c20c11e5b5e14a3fc0886f099d1729e533bd6440e0c6d894bbf320587a4eea7f8df5add3d0a9c96e966faaaf6b8fd7758508250cbd8768d5ef3b4f20a788d0d8a31b68d76b6aab69d158766a60e62a4d8727721125323431a22678b6aded6cfff0e48bae6ef91bc84e446ae69ca27aa14afdfd411eca827cc87316e51c191c5528a2f2a500adb24788337d811b790eac5cf8a362281c1e51fd36f5fd78eacd87af501f07c594138dba0268f8e13cb5f32603622b160d8f59b3fcde41f44578cf0fba69ce354d40ecc324e30e8c9ac1ef8ac15de0fcbf16e88dc6211e795934e8115bfd77c837bceedd1016feb6932c557cb55454d49433214f194d8824aa679f0628fc7466e70b3b7706d3781aa330dfb8af08d7ccc0e56242959bdf297e219604a48b5ad858a3e71f9da19dab71aca0ecbc5f64834855324c94c65c01e4836ab3f49294865dfaaf8615c23bd7313447700576449dc8dc2c8aa8e6accc1abe72e1f2effbd467d4ec89ed5df50170845876b192f3458d431e2c78a4af8c91e1fbb3db6fba3a369c6655423039170afbf84872d4a073f28537059bebb4927835fc7a5914fa64ce2fe8362cd9a408d76380276ab96c9d3e65b662a5e3dd1208d3cdbd8e1847a12927d4fb13d9c1e5a49d1cdd4e851ecd498025ea4e715a8c6fa25049024958727b64dd054be913823b0b352f2401226da5e7fd3d5c82af9102c96b81309bab0916a367c989f40081806aa7bf1750fdbc470f7f5a5eea5b5a1b9cd741550969d9cf2958c720e6091685495adf84a907ee741de2956328189133f4cf6acfb43fa0d5fbed6b43a18dac53d885bb1190db579989a431e3f6dd926e97f65482ea2b25e8089cb4f9b184c3f5fff2304632cfc1acfc8fdfa945d743ecf0114d2484629c0ffcda8ed6280f3e63066703d9e82d41a30b8ca2a563d7c2e7e39e13b149400b1f5c57907c054c9abcc5bc24ec6b3a2d99ffd20eaee2879174d65365b3182766b906b4fbcc8c807f8ca91dcbbbd0361123a6f04712f8f6da01f9c5becff485cc7f90085967d08dd39b1cfe49ed65717491cc6214fa4962fe4fc3bb864e2bc6b78133a200a55463ec47f6f06ee35cb1b8986f5663a7cbe946fa4f7a6129e5854bfc33d3a33e6c76f51b0b26989e360629f0b7b61fe83e5f634a6e5bb5dcfb713eab63faf3ab61deacbd897185bf2488d4d3f74b06b9cbc53814f3dfadb786f6c363d500ab045b1081c24d4fa65c59b6eb0a4a4a3250d9db02e58b0496bba10b2865941c2d8146f149f08cddcdac8907aaf141496e543229f4c1cdba5c966e6f8a3c5292a264e03b08f62e53a489f5e609e74be7ff7628d266582fa7ae13e83fa1018589c06ca4e4f715cd4d04f7a65db5aad8322c9f7c181161885df83a760b6dae8afb33774c1001d5f942379270687852b696a3451c6205089896585ee7c93fa47a028eed9e523961d0eb253fbbc9041c379648e382666cbf14b37f872afddbe06d6b693c69b08de3162cc9e748b2cfcb221e211598f9e5986c5529e2f7a9818dcdbd0208fcc09b6f809e7fb6ff691626a9a057765bf3e175290aa2206b2d9f773bc1d5fab94d46a2bcb2f6fdb5423dd3e2305e9560b52c1d998fa5b0c533861563116a185aef614b3f6b883fc2908045482a7f5599d8253dbff7ad82ec29dda6dead8d10e2df7dcd4688cbec71c50913e18375984272a9a0ed82d68eb51ace118400e0b0faecc7664b5fede1e3aaec9e9164320644e7d0e8271a71885a426cb184670955afba7c17c98c36e167b8ae793a2ca1964f0ef7e4740df381d37b87d5a94612a991b71fcbc5bc83c39815623f7789b1717530c70fb5369e3e6622820bd13363d46302f315dce06f4fbe3c2181d0b57e623343b187a9d5fcbe6d143260d47b86f1a26c940296b6428e536b3a4eefe1b74c6afa105f2a06edaa7cb6ea4ac9a946abda473ad76697eefed224c60fce9e69a0e4ff47951d1edcdc83003f71a6866ecb0b56d13844322edbb7ef233ecc82faa978bd3acfa6f54784b1013be3403bd6e0344596aeaf45b7d10bc1fdd4f2e46758d61af470acf44052e23429de148c88d1a8c335f7ef93df2f45a125195cb650b98cfdd1536ae11a8fed0b1081babee679f88dd75dc6f4c6fa900434aefbf3bc3b7ea37c49d12522a450f1f4000bdc9181d1580526371897e867dc62d3bca8bd3b7bf8104e7274d06c033a16e7c837f555556d45945dba2d449b1bcc5b3dfed2dfec74647c72d51ae55b2beaac7d032dcb723419abc9e1686d26e666e9f678c0a254a7752c99ef142a58930fb5517ecf569ea45ce14a5045a87381d322e1118cc81246064f8be51f18fbad04347a38dbd25071e35dc2e606248f52cc618fc89c06c4f1ee3d8d6e142584387cf0fbcf8bf66a142dba6e26ab47edc727e48497b231d316bbbfb9516522ffaa393895c8df20a61cbdb123a2f1f69520070c0e7322e986d5e0cf869443a563ccb6882bc7cfaba9ed4811bef321dc1f6d5158ab39147f511dcb97557377b3246dab135c88039e1bfb70c2d29d11946a5a05d6848074d3f47bf8f2a90da74d0336eee6d39d59b827435e5bad6056b316f0d8a84cfb3d393d26556caece43888608cd50c246538199698c2d09a9b7829d09a524d81e9a7cd96a188eb8bc623be8aebb0f2f0821515973733ae91cb2ad3fbbd3863e03ef448665b41217e88eabcbf68ca45544e6f0cb065be32ffa35dd551d2fd5eaf99a0e1602f88c33bfa57338c1b2a0dd15ba3e7259f385f3cffd6890bf876cd2b21bf6f17a7357c05bd028fdd712f18dca438c780eed2157a74f3746c6ba07d7fe69c320edb2dacfff7f74f7d491ae937c3e2d3f580d2502b470fb94860a830b25704768e3bcef060677d3dd5b519194811a48c5e8cc7add0c44827422429ef8c3e1dab90f6b1db713eff4c9943819620d521d962a72e785883dedee29504a9d2457e5b5f997c93dc7ef43bf26719266327436c715831b6175c9d38cbbb7c8447e82d22516b25e532c4d0774920ab0016aa06cd5df9050a750a5c9174b8178b7ed439d4a6ac2e5afb988b6e755a39bbe335845b2ccf911cc452c29c79752caa32724d3652f83ceb94ae090093fc9acd918c40d422fadc16d9b2ccb599faaa9199db80ee6e7868c7408f956fca074d8eaa209b99a4d5bbda7050444aad0f9f3031a9355d27f5e790776c04be54bfa3540b2d0ba35044b75c1d5230ec7c33621762f83031f2e959a9417d9f43310770552961cda5b959d2b15b24d649b0540d62846b3ee5e81a785cc422f432dad5ad767d8e487f676c08ebfa80a8414d1a1478c84f6d9f277f9f97cc92ea0b9a5b27b116ccf00d2fe0a56bc5fa40fb1117f1dcc7ab2c65392add88fd929ee4138ce1350471d9dcd96d885fb65c0b86279688e31763d95e8cdd13a5e4e9da9000532551510a66be1a8c56f46056d9fa7bffdef97fc6d956c0739a8e00fcdb33294e81411f6a9be", 0x1000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)="5c8c7770cd7d99ae64a2cb73959e775bbe667ecfd6157914aedab13bef128259226fa927b53811cf26b3dcd9e7901e4e6073a536b1cf3b37754f38e90b5e5c2e638e743d5415681420e52edac1e7bc2d907e3466495cd07a641337306ef65c12b48969917f6ab4bb7c4ab86d8c0d55cfed5e86e6db4b3cadf7cea06bd32cfc4ca3ff2d1b7a7609e8b531d6d09c0575a851908e3f1d0159a67f35c4cab23631ff9dfbadecc4c227c328bda082b438e48fee115c3332826a02a2139fe6c378af200d8ae5d35c9d1083d7c6d73222d6ad39b38f99eb59894c9a92cb9c8393d4bf5ab557c39b3b8bd25050cf796cf55c64797102")
sched_setscheduler(r7, 0x2, &(0x7f0000000240)=0x9)
setsockopt$MRT6_FLUSH(r0, 0x29, 0xd4, &(0x7f0000000080)=0xc, 0x4)
unshare(0x10000000)

1m22.502007598s ago: executing program 3 (id=1999):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f00000001c0)={0x1d, r1}, 0x10)
close(r0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0xb6be0980d2a06f16, 0x0)

1m22.424860409s ago: executing program 34 (id=1999):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f00000001c0)={0x1d, r1}, 0x10)
close(r0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0xb6be0980d2a06f16, 0x0)

2.908878684s ago: executing program 0 (id=3832):
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmmsg$unix(r0, 0x0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newqdisc={0x24, 0x29, 0xa19702d202eff97b, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r2, {0x0, 0x3f}, {0xffff, 0xffff}, {0x0, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080)

2.867702911s ago: executing program 0 (id=3834):
r0 = socket(0x15, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x271d, 0x0, &(0x7f0000000040))

2.860742171s ago: executing program 0 (id=3835):
r0 = socket(0x15, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x271d, 0x0, &(0x7f0000000040)) (fail_nth: 1)

2.78210715s ago: executing program 0 (id=3836):
r0 = socket(0x25, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x271d, 0x0, &(0x7f0000000040))

2.782007091s ago: executing program 0 (id=3837):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x54, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0x40, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "c040f542f8d1d80a5c5176e4dfb3c9767817514a"}}]}]}, 0x54}, 0x1, 0x0, 0x8000000, 0x4}, 0x4000004)

2.730295853s ago: executing program 0 (id=3839):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet(0x2, 0x2, 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000240)={0x0, 0xffffffffffffffa5, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYRESOCT], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x4004006)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
dup(r3)
syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
r4 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_OUTPUT(r4, 0x8004562e, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r5, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f00000009c0)={0x24, r6, 0x1, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0x29}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000)
socket$inet6_mptcp(0xa, 0x1, 0x106)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000070601080000001e000000000a00000405000100070000"], 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)
r9 = syz_usb_connect(0x5, 0x2d, 0x0, 0x0)
syz_usb_disconnect(r9)
socket$kcm(0x10, 0x2, 0x4)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$tipc2(&(0x7f0000001000), r10)
sendmsg$TIPC_NL_PEER_REMOVE(r10, &(0x7f0000000980)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f00000009c0)={0x20, r11, 0x1, 0x70bd27, 0x25dfdbff, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8000}]}]}, 0x20}, 0x1, 0x0, 0x0, 0xa000}, 0x8004)
close_range(r0, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)

1.889921253s ago: executing program 6 (id=3857):
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000000)=@random="53181109140413", 0x7, 0x601)

1.88890643s ago: executing program 6 (id=3859):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000002c0)=ANY=[@ANYBLOB="98030000", @ANYRES16=r2, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffff"], 0x398}, 0x1, 0x0, 0x0, 0x804}, 0x0)

1.808407746s ago: executing program 6 (id=3860):
r0 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)={0x0, 0x1, [@local]})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
mount$9p_fd(0x0, &(0x7f00000005c0)='./file1\x00', &(0x7f0000000100), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

1.808269043s ago: executing program 6 (id=3861):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x28}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
recvmsg$kcm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000680)=""/233, 0xe9}, 0x10062)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
ioctl$KVM_RUN(r3, 0xae80, 0xf0ffffffffffff)

1.646131718s ago: executing program 6 (id=3865):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e22, @empty}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005a40)=[{{&(0x7f0000000340)={0x2, 0x4e22, @loopback}, 0x10, &(0x7f0000001740)=[{&(0x7f0000000380)='6', 0x1}], 0x1}}], 0x1, 0xd0)
listen(r0, 0x1ff)
sendto$inet(r0, &(0x7f00000004c0)="ab", 0x1, 0x20c0, &(0x7f00000001c0)={0x2, 0x4e22, @loopback=0x7f0000c0}, 0x10)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
mlock2(&(0x7f0000549000/0x1000)=nil, 0x1000, 0x0)
syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x129d02, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r1, 0x40085112, &(0x7f00000001c0)=@e={0xff, 0xa, 0xc, 0x2, @SEQ_CONTROLLER=0xfe, 0x8, 0x6, 0x5})
munlockall()
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

1.110961417s ago: executing program 5 (id=3888):
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmmsg$unix(r0, 0x0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newqdisc={0x24, 0x29, 0xa19702d202eff97b, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r2, {0x0, 0xe00}, {0xffff, 0xffff}, {0x0, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080)

1.042306109s ago: executing program 5 (id=3889):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=@newqdisc={0x4c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x9, 0x3, 0x0, 0x6, 0xfffffffa, 0x22}}}}]}, 0x4c}}, 0x800)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000200000000000000000008"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x21}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
write$binfmt_elf64(r0, &(0x7f0000000780)=ANY=[], 0x78)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_VENDOR(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f00000001c0)={0x24, r5, 0x62c21a4ade68aba1, 0x0, 0x25dfdbfb, {{0x32}, {@val={0x8, 0x1, 0x60}, @val={0x8, 0x3, r7}, @void}}}, 0x24}, 0x1, 0x0, 0x0, 0x48d4}, 0x40010)
shutdown(r0, 0x1)
r8 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000100)=0x3)
read(r8, 0x0, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='fusectl\x00', 0x200000, 0x0)

1.016665687s ago: executing program 5 (id=3890):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x9, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000611948000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x5}, 0x94) (async)
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x82000000003, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r0, 0xc02c564a, &(0x7f0000000040)={0x0, 0x56595559, 0x2, @stepwise={0x8, 0x8, 0x7ff, 0x4, 0xaeae, 0x84a}})
r1 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000080)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x0}, 0x90) (async)
r4 = socket(0x10, 0x3, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000003c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r4, 0x0, 0x0, 0x0, 0x200440c0, 0x1}) (async)
io_uring_enter(r1, 0x27e2, 0x0, 0x0, 0x0, 0x0)
r5 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x0)
shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000000140)=""/204) (async)
getsockname$packet(r5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000100)=0x14)

952.436368ms ago: executing program 5 (id=3891):
r0 = socket$kcm(0x10, 0x2, 0x4)
close(r0)
socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)="5c0000007a006bcd9e3fe3dc6e08ffa607000004000000007ea60864160af36504005425198bc3488bc3a0e69ee517d34460bc24eab556a705251e4e82949a3651f668c3664402682fb6e27bbfa83b5cae0300c9fcd1938037e786a6", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x40000)

952.249759ms ago: executing program 5 (id=3892):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x28}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
recvmsg$kcm(r2, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)=""/233, 0xe9}, 0x10062)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
ioctl$KVM_RUN(r3, 0xae80, 0xffff8000)

731.777904ms ago: executing program 5 (id=3893):
r0 = syz_usb_connect(0x2, 0x36, &(0x7f0000001180)=ANY=[@ANYRESDEC], 0x0)
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000180)={0xfffffffffffffcd2, 0x0, &(0x7f0000000280)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x28000000000000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x3, 0x2, 0x3, 0x3}, {0x5, 0x7, 0x5, 0x5}]})
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x3, 0x7fff0000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

401.448012ms ago: executing program 6 (id=3902):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x80, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r2 = io_uring_setup(0x4ccd, &(0x7f0000000a40)={0x0, 0x1002, 0x400, 0x1ff, 0xfffffbff, 0x0, r0})
r3 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000000)=0x639)
r4 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r4, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
pselect6(0x40, &(0x7f0000000100)={0x0, 0x200000008, 0x0, 0x4cb, 0x8, 0x0, 0x1}, 0x0, &(0x7f0000000240)={0x1f, 0xfffffffffffffffe, 0x9, 0x0, 0x0, 0x10, 0x4}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0)
r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000002180)={0x2020}, 0x2020)
write$FUSE_DIRENT(r6, &(0x7f0000002140)=ANY=[@ANYBLOB="100000000000000005ee80886d46369f"], 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000980)=ANY=[@ANYBLOB="440000001a00010028bd7000fedbdf2481808000000000000000000014000100fc0200"/48], 0x44}}, 0x884)
ioctl$KVM_CREATE_VCPU(r5, 0xaece, 0x1)
ioctl$BTRFS_IOC_DEFRAG(0xffffffffffffffff, 0x50009402, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
r8 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[], 0x0)
syz_usb_control_io(r8, 0x0, 0x0)
syz_usb_control_io(r8, &(0x7f0000000100)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180), 0x2}}, 0x20)
r9 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
setsockopt$rose(r9, 0x104, 0x2, &(0x7f0000000000)=0x9b67, 0x4)
ioctl$KVM_CAP_X2APIC_API(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000040)={0x81, 0x0, 0x2})

211.816673ms ago: executing program 1 (id=3906):
r0 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi1\x00', 0x2180, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000080)={'ni_daq_700\x00', [0x2f00, 0x80008000, 0x1, 0xa, 0x0, 0x0, 0x1, 0xf, 0x1001, 0x1, 0x8, 0x1, 0x1006, 0x4, 0xffff, 0x6, 0xffffffa7, 0x40000009, 0xfffffffd, 0x1, 0x3ff, 0x10000, 0x800, 0xe2df, 0x9, 0x1, 0x1, 0x3, 0x7, 0x5, 0x5]}) (async)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0) (async)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@mcast2, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000000100)=0xe8) (async)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000100)={'\x00', 0x0, 0x0, {0xfffffffffffffff8, 0x2}, {0x6, 0x6}, 0xab4, [0xe6, 0x7a, 0x14, 0x4000000005, 0x40, 0x66, 0x1, 0x5f, 0xa, 0x1, 0xc, 0x0, 0x6, 0xffdffffffffffff7, 0x621, 0x8000a]})
r4 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000000), 0x169101, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r4, 0xc008640a, &(0x7f0000000180)) (async)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_IOAS_MAP(r5, 0x3b85, &(0x7f0000000100)={0x28, 0x4, r6, 0x0, 0x0, 0x0, 0xfffffffffffffffd}) (async)
r7 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
r8 = socket$netlink(0x10, 0x3, 0xa)
ioctl$IOMMU_IOAS_ALLOC(r8, 0x3b81, &(0x7f0000000480)={0xc})
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000040)={0x0, <r9=>0x0}, &(0x7f0000000080)=0xc)
mount$9p_virtio(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f0000000400)={'trans=virtio,', {[{@access_uid={'access', 0x3d, r9}}]}}) (async)
ioctl$COMEDI_SETRSUBD(r0, 0x6410) (async)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route_sched(r2, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)=@newtfilter={0x34, 0x2c, 0x8, 0x8, 0x25dfdbfe, {0x0, 0x0, 0x0, r10, {0x10, 0x9}, {0x4, 0xfff2}, {0x5, 0xf}}, [@TCA_CHAIN={0x8, 0xb, 0x3}, @TCA_CHAIN={0x8, 0xb, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x40041}, 0x4008882) (async)
r11 = socket(0x2, 0x80805, 0x0) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000500)=[@in={0x2, 0x4e21, @private=0xa010102}]}, &(0x7f0000000100)=0x10) (async)
r12 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r12, 0x84, 0xc, &(0x7f0000000240)=@assoc_value={<r13=>0x0}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r11, 0x84, 0x23, &(0x7f00000001c0)={r13, 0x9}, 0x8) (async)
setsockopt$inet_sctp_SCTP_MAXSEG(r7, 0x84, 0xd, &(0x7f00000004c0)=@assoc_id=r13, 0x4) (async)
capset(&(0x7f0000000140)={0x20071026}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x84, 0xffffffff, 0x7})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"/2944], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x4a)
sendmsg$netlink(r2, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000140)=ANY=[@ANYBLOB="1800000012000100020000000001000008008100", @ANYRES32=r3, @ANYBLOB], 0x18}], 0x1}, 0x4040000) (async)
sendmsg$kcm(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080c30000000e8fe55a1190015000600142603600e1209004000f8ff0700a80016000a0004400a080000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x4)

91.588311ms ago: executing program 1 (id=3907):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000340)={0x14, r0, 0x4196ccce67868bab, 0x0, 0xffffff9e}, 0x14}, 0x1, 0x0, 0x0, 0x20040090}, 0x8000)

91.442922ms ago: executing program 1 (id=3908):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0xc, 0x0, &(0x7f0000000180)='GPL\x00', 0x8}, 0x94)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004c000078ac1414000a0101004414050300000000000000000a010101000000008903ce070200"/62, @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='\\'], 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f1068", 0x9, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="480000001000050400"/18, @ANYBLOB="ebffffffffffffff280012800b0001"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

88.439783ms ago: executing program 1 (id=3909):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x2, 0x8001036, r0, 0x0)
r2 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'lo\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newaddr={0x64, 0x14, 0x9535393fea6295b5, 0x70bd27, 0x25dfdbff, {0xa, 0x17, 0x0, 0xff, r3}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_ADDRESS={0x14, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @IFA_FLAGS={0x8, 0x8, 0x288}, @IFA_RT_PRIORITY={0x8, 0x9, 0x5}, @IFA_CACHEINFO={0x14, 0x6, {0x7f, 0x94a, 0x8001, 0x6}}]}, 0x64}, 0x1, 0x0, 0x0, 0x2004c040}, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
ioctl$SIOCGETNODEID(r4, 0x89e1, &(0x7f0000000040)={0x3})

511.083µs ago: executing program 1 (id=3910):
r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x5, 0x1)
mq_timedsend(r0, &(0x7f0000000040)="65a7d5eeab4cc1b64ae1125cb0f04cdec85fbcbc19779c48b0e8f04870896364198cadd34aa2b57fe050d3ab", 0x2c, 0x1, &(0x7f0000000080))
clock_gettime(0x0, &(0x7f0000000140)={<r1=>0x0, <r2=>0x0})
mq_timedsend(r0, &(0x7f00000000c0)="4bb365f0b26071640520b68e0a7764da230971752391db79b17f88a4634954c64ea5982159d03e4c806aa4c89f0ee0dcbfb5225bd2285ecf3fdde56bac08fb23664182b9a72dd95923ece19ba099d3172a2be7f690303a2f38e6bf66861850c7b763746802ddd131424805", 0x6b, 0xd5d, &(0x7f0000000180)={r1, r2+10000000}) (async)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f00000001c0)={{0x89, @multicast1, 0x4e23, 0x3, 'sh\x00', 0x1, 0x4, 0x1d}, {@local, 0x4e23, 0x5, 0x5, 0x80, 0x1}}, 0x44) (async)
socket$nl_generic(0x10, 0x3, 0x10)
mq_unlink(&(0x7f0000000240)='\x00') (async)
mq_unlink(&(0x7f0000000280)='sh\x00') (async)
close(r0) (async, rerun: 32)
clock_gettime(0x0, &(0x7f0000000300)={<r3=>0x0, <r4=>0x0}) (rerun: 32)
futex(&(0x7f00000002c0)=0x1, 0x80, 0x1, &(0x7f0000000340)={r3, r4+10000000}, &(0x7f0000000380)=0x2, 0x1) (async)
getsockopt$WPAN_WANTLQI(r0, 0x0, 0x3, &(0x7f00000003c0), &(0x7f0000000400)=0x4) (async)
r5 = creat(&(0x7f0000000440)='./file0\x00', 0x1)
io_setup(0x4, &(0x7f0000000480)=<r6=>0x0)
r7 = socket$can_raw(0x1d, 0x3, 0x1)
io_submit(r6, 0x3, &(0x7f0000000640)=[&(0x7f0000000500)={0x0, 0x0, 0x0, 0x3, 0x2, r0, &(0x7f00000004c0)="8ac4", 0x2, 0x0, 0x0, 0x0, r0}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0xc, r7, &(0x7f0000000540)="eb723c2d644ca4", 0x7, 0x5, 0x0, 0x2, r5}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x6, 0x3, r5, &(0x7f00000005c0)="b3cd9fb8a830e380109721d385d87403e795ddcfa2397169d2485a", 0x1b, 0x81, 0x0, 0x2}]) (async, rerun: 64)
connect$l2tp6(r0, &(0x7f0000000680)={0xa, 0x0, 0x1000, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x4}, 0x20) (async, rerun: 64)
syz_emit_ethernet(0x1c, &(0x7f00000006c0)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x21}, @remote, @val={@void, {0x8100, 0x1}}, {@generic={0x10, "ac1846a81f30091766db"}}}, 0x0) (async)
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000002) (async, rerun: 64)
mq_timedsend(r0, &(0x7f0000000700)="7e7562afa910a28b8efb78c015536a678fe523cc5690", 0x16, 0x40, &(0x7f0000000740)={0x0, 0x3938700}) (async, rerun: 64)
socket$nl_rdma(0x10, 0x3, 0x14) (async)
syz_open_dev$loop(&(0x7f0000000780), 0x8000000000000000, 0x600001)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000800)={0x4, &(0x7f00000007c0)=[{0x1, 0x3, 0x5, 0xfab}, {0x4, 0xca, 0x1}, {0x3, 0x8, 0x1, 0x4}, {0x6, 0x81, 0x10, 0x1}]})
lsetxattr$security_ima(&(0x7f0000000840)='./file0\x00', &(0x7f0000000880), &(0x7f00000008c0)=@md5={0x1, "03599a0e0bb88d606e89aa7b0724bc73"}, 0x11, 0x0) (async)
rt_sigprocmask(0x1, &(0x7f0000000900), &(0x7f0000000940), 0x8) (async)
accept4(r5, &(0x7f0000000980)=@sco={0x1f, @none}, &(0x7f0000000a00)=0x80, 0x80800) (async)
pselect6(0x40, &(0x7f0000000a40)={0x8, 0x7, 0x800, 0x6, 0x4, 0x4, 0xc1, 0x4}, &(0x7f0000000a80)={0x85b, 0x5, 0x10, 0x0, 0x4, 0x1, 0x7f00000000000, 0x4}, &(0x7f0000000ac0)={0xffffffff, 0xfff, 0x72b, 0x5, 0xffffffffffffffff, 0x7cf, 0xb25d, 0x3}, &(0x7f0000000b00)={0x0, 0x3938700}, &(0x7f0000000b80)={&(0x7f0000000b40)={[0x92f]}, 0x8}) (async)
mq_timedsend(r0, &(0x7f0000000bc0)="7ae30f868485f6f037ad2a3451b5ab126349d9c025f5645137e3d88fd90b1dfc56a4617dff4dc624fa", 0x29, 0x80000000, &(0x7f0000000c00)={0x77359400})
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r0, 0xc0884113, &(0x7f0000000c40)={0x5, 0xa, 0x1, 0x8, 0x9, 0x100000000, 0x8000, 0xfa, 0x9, 0x2, 0x7, 0x4}) (async)
socket$nl_netfilter(0x10, 0x3, 0xc)

0s ago: executing program 1 (id=3911):
rt_sigtimedwait(&(0x7f0000000000)={[0x3]}, &(0x7f0000000040), &(0x7f00000000c0), 0x8)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000100)) (async)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000100)=<r0=>0x0)
ptrace$peeksig(0x4209, r0, &(0x7f0000000140)={0x2, 0x0, 0x3}, &(0x7f0000000180)=[{}, {}, {}])
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x4, &(0x7f0000000340)={0x4, &(0x7f0000000300)=[{0xe, 0x2, 0xbc, 0x80}, {0x81, 0x4, 0x54, 0xec}, {0x4, 0x2, 0x1, 0xffffffff}, {0x0, 0x80, 0x31, 0x6}]})
rt_sigsuspend(&(0x7f0000000380)={[0x7f]}, 0x8)
pidfd_send_signal(0xffffffffffffffff, 0x15, &(0x7f00000003c0)={0x37, 0x10, 0x2}, 0x0)
close_range(r1, r1, 0x2)
ptrace$PTRACE_GETSIGMASK(0x420a, r0, 0x8, &(0x7f0000000440)) (async)
ptrace$PTRACE_GETSIGMASK(0x420a, r0, 0x8, &(0x7f0000000440))
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000480), &(0x7f00000004c0)=0x4)
rt_sigqueueinfo(r0, 0x3b, &(0x7f0000000500)={0x1, 0x0, 0xa8})
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000580), 0x565202, 0x0)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f00000005c0)={0x0, 0x7}, &(0x7f0000000600)=0x8) (async)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f00000005c0)={<r3=>0x0, 0x7}, &(0x7f0000000600)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000680)={<r4=>r3, 0x40, &(0x7f0000000640)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x3d}}, @in={0x2, 0x4e24, @private=0xa010101}, @in={0x2, 0x4e21, @private=0xa010101}, @in={0x2, 0x4e20, @broadcast}]}, &(0x7f00000006c0)=0x10)
ptrace$PTRACE_SETSIGMASK(0x420b, r0, 0x8, &(0x7f0000000700)={[0x8]}) (async)
ptrace$PTRACE_SETSIGMASK(0x420b, r0, 0x8, &(0x7f0000000700)={[0x8]})
ptrace$peeksig(0x4209, r0, &(0x7f0000000740)={0x6, 0x0, 0x8}, &(0x7f0000000780)=[{}, {}, {}, {}, {}, {}, {}, {}])
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000b80)) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000b80)={0x0, <r5=>0x0})
kcmp(r5, r0, 0x6, r2, r1)
ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r2, 0x80045700, &(0x7f0000000c00)) (async)
ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r2, 0x80045700, &(0x7f0000000c00))
ioctl$COMEDI_SETRSUBD(r2, 0x6410)
waitid(0x1, r0, &(0x7f0000000c40), 0x1, &(0x7f0000000cc0)) (async)
waitid(0x1, r0, &(0x7f0000000c40), 0x1, &(0x7f0000000cc0))
ptrace$getsig(0x4202, r5, 0x7, &(0x7f0000000d80))
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000e00)={r4, 0x4, 0x30}, 0xc)
rt_tgsigqueueinfo(r5, r5, 0x2d, &(0x7f0000000e40)={0x9, 0x8, 0x1}) (async)
rt_tgsigqueueinfo(r5, r5, 0x2d, &(0x7f0000000e40)={0x9, 0x8, 0x1})
fcntl$F_GET_RW_HINT(r2, 0x40b, &(0x7f0000000ec0))
r6 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000f00), 0x4800, 0x0)
waitid$P_PIDFD(0x3, r6, 0x0, 0x2, &(0x7f0000000f40))
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000001000)={<r7=>r4, @in6={{0xa, 0x4e22, 0x95, @loopback, 0x1}}, 0x1cd6, 0x0, 0x9, 0x1000, 0x22, 0x4, 0xc}, &(0x7f00000010c0)=0x9c)
setsockopt$inet_sctp6_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f0000001100)={r7, 0x9}, 0x8)
ioctl$SIOCAX25GETINFOOLD(r2, 0x89e9, &(0x7f0000001140)) (async)
ioctl$SIOCAX25GETINFOOLD(r2, 0x89e9, &(0x7f0000001140))
write$tcp_congestion(r2, &(0x7f0000001180)='hybla\x00', 0x6) (async)
write$tcp_congestion(r2, &(0x7f0000001180)='hybla\x00', 0x6)

kernel console output (not intermixed with test programs):

] SELinux: ebitmap: truncated map
[  195.397986][T12912] SELinux: failed to load policy
[  195.537722][T12929] max out of range
[  195.550161][T12931] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2384'.
[  195.663124][ T6122] usb 11-1: new high-speed USB device number 12 using dummy_hcd
[  195.731278][T12954] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  195.733222][T12956] netlink: 'syz.1.2394': attribute type 1 has an invalid length.
[  195.781057][T12961] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  195.822818][ T6122] usb 11-1: Using ep0 maxpacket: 16
[  195.827511][ T6122] usb 11-1: config 1 interface 0 altsetting 255 endpoint 0x2 has an invalid bInterval 215, changing to 11
[  195.830937][ T6122] usb 11-1: config 1 interface 0 has no altsetting 0
[  195.832468][ T6122] usb 11-1: New USB device found, idVendor=046d, idProduct=c082, bcdDevice= 0.40
[  195.836406][ T6122] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.838929][ T6122] usb 11-1: Product: syz
[  195.840247][ T6122] usb 11-1: Manufacturer: syz
[  195.841731][ T6122] usb 11-1: SerialNumber: syz
[  196.013556][   T40] kauditd_printk_skb: 817 callbacks suppressed
[  196.013567][   T40] audit: type=1400 audit(451.946:1408): avc:  denied  { ioctl } for  pid=12960 comm="syz.5.2396" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  196.028833][   T40] audit: type=1400 audit(451.956:1409): avc:  denied  { prog_load } for  pid=12983 comm="syz.1.2406" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  196.035131][   T40] audit: type=1400 audit(451.956:1410): avc:  denied  { bpf } for  pid=12983 comm="syz.1.2406" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  196.041352][   T40] audit: type=1400 audit(451.956:1411): avc:  denied  { perfmon } for  pid=12983 comm="syz.1.2406" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  196.058076][   T40] audit: type=1400 audit(451.986:1412): avc:  denied  { allowed } for  pid=12863 comm="syz.6.2355" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  196.062071][T12864] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  196.064816][   T40] audit: type=1400 audit(451.986:1413): avc:  denied  { create } for  pid=12863 comm="syz.6.2355" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  196.066748][T12864] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  196.072817][ T6020] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[  196.073350][   T40] audit: type=1400 audit(451.986:1414): avc:  denied  { map } for  pid=12863 comm="syz.6.2355" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=67439 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  196.085108][   T40] audit: type=1400 audit(451.986:1415): avc:  denied  { read write } for  pid=12863 comm="syz.6.2355" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=67439 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  196.092644][   T40] audit: type=1400 audit(451.986:1416): avc:  denied  { read write } for  pid=12863 comm="syz.6.2355" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  196.099908][   T40] audit: type=1400 audit(451.986:1417): avc:  denied  { open } for  pid=12863 comm="syz.6.2355" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  196.203671][ T6020] usb 10-1: device descriptor read/64, error -71
[  196.280391][T12864] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  196.283586][T12864] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  196.443908][ T6020] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[  196.503006][T12864] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  196.506043][T12864] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  196.521163][ T6122] usbhid 11-1:1.0: can't add hid device: -71
[  196.525430][ T6122] usbhid 11-1:1.0: probe with driver usbhid failed with error -71
[  196.529883][ T6122] usb 11-1: USB disconnect, device number 12
[  196.583842][ T6020] usb 10-1: device descriptor read/64, error -71
[  196.692976][ T6020] usb usb10-port1: attempt power cycle
[  196.779665][T13028] __nla_validate_parse: 6 callbacks suppressed
[  196.779677][T13028] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2427'.
[  197.032891][ T6020] usb 10-1: new high-speed USB device number 17 using dummy_hcd
[  197.053571][ T6020] usb 10-1: device descriptor read/8, error -71
[  197.180268][T13043] max out of range
[  197.292800][ T6020] usb 10-1: new high-speed USB device number 18 using dummy_hcd
[  197.313526][ T6020] usb 10-1: device descriptor read/8, error -71
[  197.423201][ T6020] usb usb10-port1: unable to enumerate USB device
[  197.683727][T13086] kvm: kvm [13084]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x28
[  197.686587][T13086] kvm: kvm [13084]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc2) = 0x28
[  197.742145][T13099] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2446'.
[  197.777211][T13102] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2447'.
[  197.955361][T13108] overlayfs: failed to clone upperpath
[  198.003939][T13114] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  198.028104][T13116] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.060350][T13118] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2455'.
[  198.086560][T13116] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.176525][T13116] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.286951][T13116] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.358332][T13116] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  198.369922][T13116] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  198.375001][T13122] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(11)
[  198.377355][T13122] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  198.377763][T13116] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  198.380561][T13122] vhci_hcd vhci_hcd.0: Device attached
[  198.391303][T13123] vhci_hcd: connection closed
[  198.391507][   T12] vhci_hcd: stop threads
[  198.396153][T13116] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  198.398789][   T12] vhci_hcd: release socket
[  198.400207][   T12] vhci_hcd: disconnect device
[  198.846688][T13132] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2460'.
[  199.625443][T13151] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  199.681107][T13152] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2467'.
[  199.983286][T13158] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2469'.
[  199.986200][T13158] bond_slave_0: entered promiscuous mode
[  200.007951][T13158] Trying to write to read-only block-device nullb0
[  200.093648][T13160] max out of range
[  200.124859][T13162] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2471'.
[  200.162497][T13164] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2472'.
[  200.845695][T13185] netlink: 'syz.1.2480': attribute type 3 has an invalid length.
[  200.850829][T13185] netlink: 'syz.1.2480': attribute type 3 has an invalid length.
[  200.884432][T13187] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2481'.
[  201.023125][   T40] kauditd_printk_skb: 826 callbacks suppressed
[  201.023137][   T40] audit: type=1400 audit(456.956:2244): avc:  denied  { write } for  pid=13202 comm="syz.1.2490" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  201.044146][   T40] audit: type=1400 audit(456.976:2245): avc:  denied  { read write } for  pid=13198 comm="syz.5.2488" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  201.052049][   T40] audit: type=1400 audit(456.976:2246): avc:  denied  { open } for  pid=13198 comm="syz.5.2488" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  201.059359][   T40] audit: type=1400 audit(456.976:2247): avc:  denied  { ioctl } for  pid=13198 comm="syz.5.2488" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  201.067098][   T40] audit: type=1400 audit(456.976:2248): avc:  denied  { module_request } for  pid=13205 comm="syz.1.2491" kmod="crypto-cryptd(blake2b-160)" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  201.074647][   T40] audit: type=1400 audit(456.996:2249): avc:  denied  { module_request } for  pid=13205 comm="syz.1.2491" kmod="crypto-cryptd(blake2b-160)-all" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  201.095512][   T40] audit: type=1400 audit(457.026:2250): avc:  denied  { module_request } for  pid=13205 comm="syz.1.2491" kmod="crypto-cryptd(blake2b-160)" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  201.104549][   T40] audit: type=1400 audit(457.036:2251): avc:  denied  { create } for  pid=13205 comm="syz.1.2491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  201.113220][   T40] audit: type=1400 audit(457.036:2252): avc:  denied  { create } for  pid=13205 comm="syz.1.2491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  201.119683][   T40] audit: type=1400 audit(457.046:2253): avc:  denied  { write } for  pid=13205 comm="syz.1.2491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  201.127699][ T5957] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  201.136828][T13206] could not allocate digest TFM handle cryptd(blake2b-160)
[  201.137030][T13211] bridge2: entered promiscuous mode
[  201.158523][T13216] max out of range
[  201.325995][T13234] netlink: 'syz.1.2501': attribute type 14 has an invalid length.
[  201.363831][T13236] SELinux: ebitmap: truncated map
[  201.368707][T13236] SELinux: failed to load policy
[  201.449368][T13248] FAULT_INJECTION: forcing a failure.
[  201.449368][T13248] name failslab, interval 1, probability 0, space 0, times 0
[  201.453482][T13248] CPU: 1 UID: 0 PID: 13248 Comm: syz.5.2508 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  201.453496][T13248] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  201.453503][T13248] Call Trace:
[  201.453507][T13248]  <TASK>
[  201.453511][T13248]  dump_stack_lvl+0x16c/0x1f0
[  201.453530][T13248]  should_fail_ex+0x512/0x640
[  201.453545][T13248]  ? fs_reclaim_acquire+0xae/0x150
[  201.453557][T13248]  ? tomoyo_encode2+0x100/0x3e0
[  201.453571][T13248]  should_failslab+0xc2/0x120
[  201.453587][T13248]  __kmalloc_noprof+0xd2/0x510
[  201.453601][T13248]  ? d_absolute_path+0x136/0x1a0
[  201.453615][T13248]  tomoyo_encode2+0x100/0x3e0
[  201.453632][T13248]  tomoyo_encode+0x29/0x50
[  201.453645][T13248]  tomoyo_realpath_from_path+0x18f/0x6e0
[  201.453665][T13248]  tomoyo_path_number_perm+0x245/0x580
[  201.453678][T13248]  ? tomoyo_path_number_perm+0x237/0x580
[  201.453691][T13248]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  201.453706][T13248]  ? find_held_lock+0x2b/0x80
[  201.453733][T13248]  ? find_held_lock+0x2b/0x80
[  201.453746][T13248]  ? hook_file_ioctl_common+0x145/0x410
[  201.453766][T13248]  ? __fget_files+0x20e/0x3c0
[  201.453783][T13248]  security_file_ioctl+0x9b/0x240
[  201.453799][T13248]  __x64_sys_ioctl+0xb7/0x210
[  201.453813][T13248]  do_syscall_64+0xcd/0x4c0
[  201.453829][T13248]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.453840][T13248] RIP: 0033:0x7f58ea38e929
[  201.453849][T13248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.453859][T13248] RSP: 002b:00007f58eb2d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  201.453869][T13248] RAX: ffffffffffffffda RBX: 00007f58ea5b5fa0 RCX: 00007f58ea38e929
[  201.453875][T13248] RDX: 0000200000000040 RSI: 0000000080106408 RDI: 0000000000000003
[  201.453882][T13248] RBP: 00007f58eb2d2090 R08: 0000000000000000 R09: 0000000000000000
[  201.453888][T13248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  201.453894][T13248] R13: 0000000000000000 R14: 00007f58ea5b5fa0 R15: 00007ffc89dadb48
[  201.453907][T13248]  </TASK>
[  201.453917][T13248] ERROR: Out of memory at tomoyo_realpath_from_path.
[  201.587074][T13262] overlayfs: failed to clone upperpath
[  201.844747][T13302] __nla_validate_parse: 5 callbacks suppressed
[  201.844757][T13302] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2532'.
[  201.849485][T13302] netlink: 'syz.1.2532': attribute type 7 has an invalid length.
[  201.851866][T13302] netlink: 'syz.1.2532': attribute type 8 has an invalid length.
[  201.854995][T13302] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2532'.
[  202.092282][T13315] max out of range
[  202.126809][T13317] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2539'.
[  202.322099][T13331] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  202.331710][T13331] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  202.516212][T13335] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2546'.
[  202.556084][T13337] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=61462 sclass=netlink_xfrm_socket pid=13337 comm=syz.5.2547
[  202.561411][T13339] max out of range
[  202.601574][T13341] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2549'.
[  202.658617][T13347] nfs: Unknown parameter 'fscrlay'
[  202.757782][T13359] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2556'.
[  202.858903][T13367] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2559'.
[  202.914064][T13374] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=63 sclass=netlink_route_socket pid=13374 comm=syz.1.2562
[  202.963875][T13384] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2565'.
[  203.099795][T13399] max out of range
[  203.136318][T13406] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2574'.
[  203.217997][T13416] overlayfs: failed to clone upperpath
[  203.218013][T13418] netlink: 596 bytes leftover after parsing attributes in process `syz.5.2580'.
[  203.435329][T13448] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  203.445807][T13448] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  203.493734][T13460] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=13460 comm=syz.6.2596
[  203.694649][T13473] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  203.697718][T13473] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  203.700646][T13473] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  203.703440][T13473] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  203.706076][T13473] geneve2: entered promiscuous mode
[  203.707739][T13473] geneve2: entered allmulticast mode
[  204.522025][T13557] netlink: 'syz.5.2634': attribute type 29 has an invalid length.
[  204.535458][T13557] netlink: 'syz.5.2634': attribute type 29 has an invalid length.
[  205.335760][T13627] SELinux: ebitmap: truncated map
[  205.340791][T13627] SELinux: failed to load policy
[  205.411677][T13628] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.415176][T13628] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  205.485705][T13628] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.488909][T13628] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  205.546895][T13628] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.552150][T13628] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  205.617531][T13628] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.620614][T13628] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  205.739509][T13628] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  205.742121][T13628] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  205.754149][T13628] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  205.756724][T13628] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  205.763509][T13628] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  205.766064][T13628] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  205.772642][T13628] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  205.776680][T13628] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  206.054689][   T40] kauditd_printk_skb: 1120 callbacks suppressed
[  206.054700][   T40] audit: type=1400 audit(461.986:3372): avc:  denied  { create } for  pid=13675 comm="syz.1.2686" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  206.064549][   T40] audit: type=1400 audit(461.986:3373): avc:  denied  { write } for  pid=13675 comm="syz.1.2686" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  206.070775][   T40] audit: type=1400 audit(461.986:3374): avc:  denied  { read } for  pid=13675 comm="syz.1.2686" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  206.078585][   T40] audit: type=1400 audit(461.986:3375): avc:  denied  { ioctl } for  pid=13675 comm="syz.1.2686" path="socket:[74304]" dev="sockfs" ino=74304 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  206.079445][T13667] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  206.086649][   T40] audit: type=1400 audit(461.996:3376): avc:  denied  { prog_load } for  pid=13666 comm="syz.0.2682" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  206.089602][T13667] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.095671][   T40] audit: type=1400 audit(461.996:3377): avc:  denied  { bpf } for  pid=13666 comm="syz.0.2682" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  206.105150][   T40] audit: type=1400 audit(461.996:3378): avc:  denied  { create } for  pid=13666 comm="syz.0.2682" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  206.111425][   T40] audit: type=1400 audit(461.996:3379): avc:  denied  { write } for  pid=13666 comm="syz.0.2682" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  206.120340][   T40] audit: type=1400 audit(461.996:3380): avc:  denied  { read } for  pid=13666 comm="syz.0.2682" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  206.127109][   T40] audit: type=1400 audit(462.016:3381): avc:  denied  { create } for  pid=13678 comm="syz.1.2687" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  206.156994][T13667] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  206.160089][T13667] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.168242][T13685] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  206.177779][T13685] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  206.217597][T13667] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  206.220799][T13667] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.298418][T13667] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  206.302591][T13667] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.398788][T13667] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  206.401391][T13667] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  206.411470][T13667] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  206.414615][T13667] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  206.421392][T13667] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  206.424416][T13667] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  206.432333][T13667] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  206.435384][T13667] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  206.668622][T13710] SELinux: ebitmap: truncated map
[  206.674574][T13710] SELinux: failed to load policy
[  206.737669][T13717] max out of range
[  206.793817][T13722] No control pipe specified
[  206.883174][T13735] __nla_validate_parse: 15 callbacks suppressed
[  206.883185][T13735] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2710'.
[  206.897651][T13737] SELinux: ebitmap: truncated map
[  206.902867][T13737] SELinux: failed to load policy
[  207.059331][T13753] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2721'.
[  207.216668][T13775] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2729'.
[  207.224790][T13777] Invalid source name
[  207.225748][T13775] FAULT_INJECTION: forcing a failure.
[  207.225748][T13775] name failslab, interval 1, probability 0, space 0, times 0
[  207.226885][T13777] UBIFS error (pid: 13777): cannot open "./file0", error -22
[  207.230659][T13775] CPU: 0 UID: 0 PID: 13775 Comm: syz.5.2729 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  207.230675][T13775] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  207.230682][T13775] Call Trace:
[  207.230686][T13775]  <TASK>
[  207.230690][T13775]  dump_stack_lvl+0x16c/0x1f0
[  207.230708][T13775]  should_fail_ex+0x512/0x640
[  207.230723][T13775]  ? fs_reclaim_acquire+0xae/0x150
[  207.230735][T13775]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  207.230750][T13775]  should_failslab+0xc2/0x120
[  207.230766][T13775]  __kmalloc_noprof+0xd2/0x510
[  207.230783][T13775]  tomoyo_realpath_from_path+0xc2/0x6e0
[  207.230800][T13775]  ? tomoyo_profile+0x47/0x60
[  207.230817][T13775]  tomoyo_path_number_perm+0x245/0x580
[  207.230830][T13775]  ? tomoyo_path_number_perm+0x237/0x580
[  207.230844][T13775]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  207.230858][T13775]  ? find_held_lock+0x2b/0x80
[  207.230885][T13775]  ? find_held_lock+0x2b/0x80
[  207.230898][T13775]  ? hook_file_ioctl_common+0x145/0x410
[  207.230918][T13775]  ? __fget_files+0x20e/0x3c0
[  207.230936][T13775]  security_file_ioctl+0x9b/0x240
[  207.230952][T13775]  __x64_sys_ioctl+0xb7/0x210
[  207.230965][T13775]  do_syscall_64+0xcd/0x4c0
[  207.230981][T13775]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.230992][T13775] RIP: 0033:0x7f58ea38e929
[  207.231001][T13775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.231012][T13775] RSP: 002b:00007f58eb2d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  207.231022][T13775] RAX: ffffffffffffffda RBX: 00007f58ea5b5fa0 RCX: 00007f58ea38e929
[  207.231028][T13775] RDX: 0000200000004f40 RSI: 00000000000089f2 RDI: 0000000000000005
[  207.231035][T13775] RBP: 00007f58eb2d2090 R08: 0000000000000000 R09: 0000000000000000
[  207.231041][T13775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.231047][T13775] R13: 0000000000000000 R14: 00007f58ea5b5fa0 R15: 00007ffc89dadb48
[  207.231061][T13775]  </TASK>
[  207.231065][T13775] ERROR: Out of memory at tomoyo_realpath_from_path.
[  207.451445][T13801] SELinux: ebitmap: truncated map
[  207.457015][T13801] SELinux: failed to load policy
[  207.650619][T13811] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  207.654077][T13811] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  207.708468][T13811] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  207.711642][T13811] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  207.776354][T13811] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  207.779462][T13811] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  207.836594][T13811] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  207.839862][T13811] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  208.071468][T13852] netlink: 596 bytes leftover after parsing attributes in process `syz.5.2761'.
[  208.208461][T13872] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2768'.
[  208.216465][T13872] FAULT_INJECTION: forcing a failure.
[  208.216465][T13872] name failslab, interval 1, probability 0, space 0, times 0
[  208.220327][T13872] CPU: 0 UID: 0 PID: 13872 Comm: syz.6.2768 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  208.220341][T13872] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  208.220348][T13872] Call Trace:
[  208.220352][T13872]  <TASK>
[  208.220356][T13872]  dump_stack_lvl+0x16c/0x1f0
[  208.220375][T13872]  should_fail_ex+0x512/0x640
[  208.220389][T13872]  ? fs_reclaim_acquire+0xae/0x150
[  208.220402][T13872]  ? tomoyo_encode2+0x100/0x3e0
[  208.220416][T13872]  should_failslab+0xc2/0x120
[  208.220432][T13872]  __kmalloc_noprof+0xd2/0x510
[  208.220449][T13872]  tomoyo_encode2+0x100/0x3e0
[  208.220466][T13872]  tomoyo_encode+0x29/0x50
[  208.220480][T13872]  tomoyo_realpath_from_path+0x18f/0x6e0
[  208.220496][T13872]  ? tomoyo_profile+0x47/0x60
[  208.220514][T13872]  tomoyo_path_number_perm+0x245/0x580
[  208.220526][T13872]  ? tomoyo_path_number_perm+0x237/0x580
[  208.220540][T13872]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  208.220554][T13872]  ? find_held_lock+0x2b/0x80
[  208.220581][T13872]  ? find_held_lock+0x2b/0x80
[  208.220594][T13872]  ? hook_file_ioctl_common+0x145/0x410
[  208.220614][T13872]  ? __fget_files+0x20e/0x3c0
[  208.220631][T13872]  security_file_ioctl+0x9b/0x240
[  208.220647][T13872]  __x64_sys_ioctl+0xb7/0x210
[  208.220660][T13872]  do_syscall_64+0xcd/0x4c0
[  208.220676][T13872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.220687][T13872] RIP: 0033:0x7fb03078e929
[  208.220696][T13872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.220706][T13872] RSP: 002b:00007fb031555038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  208.220717][T13872] RAX: ffffffffffffffda RBX: 00007fb0309b5fa0 RCX: 00007fb03078e929
[  208.220723][T13872] RDX: 0000200000004f40 RSI: 00000000000089f2 RDI: 0000000000000005
[  208.220730][T13872] RBP: 00007fb031555090 R08: 0000000000000000 R09: 0000000000000000
[  208.220736][T13872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  208.220742][T13872] R13: 0000000000000000 R14: 00007fb0309b5fa0 R15: 00007ffd2730ae68
[  208.220756][T13872]  </TASK>
[  208.220766][T13872] ERROR: Out of memory at tomoyo_realpath_from_path.
[  208.315542][T13875] xt_l2tp: unknown flags: f1
[  208.349659][T13877] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2770'.
[  208.628561][T13887] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2774'.
[  209.040075][T13811] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  209.043617][T13811] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  209.047320][T13909] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2783'.
[  209.050445][T13811] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  209.053853][T13811] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  209.060531][T13811] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  209.063655][T13811] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  209.070745][T13811] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  209.073638][T13811] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  209.122673][T13916] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2786'.
[  209.178022][T13921] xt_l2tp: unknown flags: f1
[  209.363529][T13939] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2795'.
[  209.416320][T13942] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  209.420656][T13942] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  209.486007][T13942] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  209.489068][T13942] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  209.566607][T13942] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  209.570597][T13942] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  209.650255][T13972] max out of range
[  209.656963][T13942] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  209.660888][T13942] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  210.043916][T13995] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  211.033037][   T59] usb 11-1: new full-speed USB device number 13 using dummy_hcd
[  211.103251][   T40] kauditd_printk_skb: 840 callbacks suppressed
[  211.103268][   T40] audit: type=1400 audit(467.036:4222): avc:  denied  { ioctl } for  pid=14002 comm="syz.6.2819" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  211.183504][   T40] audit: type=1400 audit(467.116:4223): avc:  denied  { ioctl } for  pid=14002 comm="syz.6.2819" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  211.184352][   T59] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  211.195318][   T59] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  211.198789][   T59] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  211.201751][   T59] usb 11-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  211.206722][   T59] usb 11-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  211.209544][   T59] usb 11-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  211.212020][   T59] usb 11-1: Manufacturer: syz
[  211.215115][   T59] usb 11-1: config 0 descriptor??
[  211.217331][   T40] audit: type=1400 audit(467.146:4224): avc:  denied  { ioctl } for  pid=14002 comm="syz.6.2819" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x550a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  211.225636][   T40] audit: type=1400 audit(467.156:4225): avc:  denied  { unmount } for  pid=10325 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  211.236406][   T40] audit: type=1400 audit(467.166:4226): avc:  denied  { read write } for  pid=10325 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  211.243771][   T40] audit: type=1400 audit(467.166:4227): avc:  denied  { open } for  pid=10325 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  211.251001][   T40] audit: type=1400 audit(467.166:4228): avc:  denied  { ioctl } for  pid=10325 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  211.268194][   T40] audit: type=1400 audit(467.196:4229): avc:  denied  { read write } for  pid=10325 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  211.277736][   T40] audit: type=1400 audit(467.196:4230): avc:  denied  { open } for  pid=10325 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  211.285208][   T40] audit: type=1400 audit(467.196:4231): avc:  denied  { ioctl } for  pid=10325 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  211.473140][   T59] rc_core: IR keymap rc-hauppauge not found
[  211.475065][   T59] Registered IR keymap rc-empty
[  211.476665][   T59] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  211.502811][   T59] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  211.533867][   T59] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/rc/rc0
[  211.538489][   T59] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/rc/rc0/input10
[  211.545279][   T59] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  211.552953][ T5968] Bluetooth: hci3: command 0x0405 tx timeout
[  211.575275][   T59] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  211.592821][   T59] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  211.622796][   T59] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  211.652800][   T59] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  211.683927][   T59] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  211.702816][   T59] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  211.723898][   T59] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  211.742800][   T59] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  211.773037][   T59] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  211.804125][   T59] mceusb 11-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  211.806347][T14020] ISOFS: Unable to identify CD-ROM format.
[  211.806994][   T59] mceusb 11-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  211.813242][   T59] usb 11-1: USB disconnect, device number 13
[  212.188631][T14032] __nla_validate_parse: 6 callbacks suppressed
[  212.188642][T14032] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2831'.
[  212.573019][T13942] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  212.575615][T13942] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  212.582206][T13942] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  212.584953][T13942] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  212.591600][T13942] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  212.594360][T13942] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  212.600791][T13942] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  212.605892][T13942] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  212.649887][T14064] netlink: 596 bytes leftover after parsing attributes in process `syz.1.2844'.
[  212.671049][T14066] team0: No ports can be present during mode change
[  212.680540][T14068] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2847'.
[  212.812500][T14081] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2852'.
[  212.859856][T14086] overlayfs: failed to clone upperpath
[  212.894613][T14088] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2855'.
[  212.899302][T14088] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2855'.
[  212.991723][T14092] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  213.004249][T14092] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  213.025309][T14096] openvswitch: netlink: Key type 179 is out of range max 32
[  213.029656][T14096] tc_dump_action: action bad kind
[  213.081794][ T5957] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  213.131673][T14105] netlink: 'syz.6.2861': attribute type 25 has an invalid length.
[  213.149291][T14105] No buffer was provided with the request
[  213.192271][T14112] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2863'.
[  213.260807][T14120] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=54 sclass=netlink_route_socket pid=14120 comm=syz.6.2867
[  213.326363][T14127] IPVS: set_ctl: invalid protocol: 103 172.20.20.170:20003
[  213.457529][T14135] team0: No ports can be present during mode change
[  213.489463][T14137] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2874'.
[  213.537880][T14139] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2875'.
[  213.540762][T14139] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2875'.
[  213.702630][T14155] af_packet: tpacket_rcv: packet too big, clamped from 1 to 4294967272. macoff=96
[  213.765358][T14153] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.863239][T14153] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.867813][T14164] xt_hashlimit: size too large, truncated to 1048576
[  213.934378][T14153] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.002047][T14153] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.077941][T14153] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  214.084953][T14153] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  214.091594][T14153] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  214.099708][T14153] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  214.310892][T14178] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  214.455598][T14192] team0: No ports can be present during mode change
[  214.500265][T14198] fuse: Bad value for 'user_id'
[  214.501775][T14198] fuse: Bad value for 'user_id'
[  214.649723][T14208] SELinux: ebitmap: truncated map
[  214.654995][T14208] SELinux: failed to load policy
[  214.930016][T14232] overlay: Unknown parameter 'smackfsroot'
[  215.338579][T14260] team0: No ports can be present during mode change
[  215.630260][T14278] netlink: 'syz.5.2936': attribute type 4 has an invalid length.
[  215.644109][T14278] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  215.647024][ T1145] Bluetooth: hci4: Frame reassembly failed (-84)
[  216.018602][T14306] team0: Unable to change to the same mode the team is in
[  216.123313][   T40] kauditd_printk_skb: 889 callbacks suppressed
[  216.123325][   T40] audit: type=1400 audit(472.056:5121): avc:  denied  { write } for  pid=14310 comm="syz.0.2949" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  216.134099][   T40] audit: type=1400 audit(472.066:5122): avc:  denied  { create } for  pid=14317 comm="syz.1.2951" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  216.137684][T14318] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  216.140163][   T40] audit: type=1400 audit(472.066:5123): avc:  denied  { create } for  pid=14317 comm="syz.1.2951" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  216.150260][   T40] audit: type=1400 audit(472.066:5124): avc:  denied  { write } for  pid=14317 comm="syz.1.2951" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  216.150551][T14318] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  216.156638][   T40] audit: type=1400 audit(472.066:5125): avc:  denied  { read } for  pid=14317 comm="syz.1.2951" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  216.156660][   T40] audit: type=1400 audit(472.066:5126): avc:  denied  { ioctl } for  pid=14317 comm="syz.1.2951" path="socket:[77184]" dev="sockfs" ino=77184 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  216.156683][   T40] audit: type=1400 audit(472.076:5127): avc:  denied  { read write } for  pid=5953 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  216.156729][   T40] audit: type=1400 audit(472.076:5128): avc:  denied  { read write open } for  pid=5953 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  216.156752][   T40] audit: type=1400 audit(472.076:5129): avc:  denied  { ioctl } for  pid=5953 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  216.156775][   T40] audit: type=1400 audit(472.076:5130): avc:  denied  { create } for  pid=14317 comm="syz.1.2951" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  216.246765][T14320] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  216.250105][T14320] team0: No ports can be present during mode change
[  216.776707][T14342] SELinux: ebitmap: truncated map
[  216.782001][T14342] SELinux: failed to load policy
[  216.795749][T14346] team0: Unable to change to the same mode the team is in
[  216.863216][T14348] xt_cgroup: invalid path, errno=-2
[  216.926406][T14358] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  216.929269][T14358] syzkaller0: entered promiscuous mode
[  216.931126][T14358] syzkaller0: entered allmulticast mode
[  216.948103][T14358] tipc: Resetting bearer <eth:syzkaller0>
[  217.067974][T14357] tipc: Resetting bearer <eth:syzkaller0>
[  217.076703][T14357] tipc: Disabling bearer <eth:syzkaller0>
[  217.195116][T14384] __nla_validate_parse: 22 callbacks suppressed
[  217.195128][T14384] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2979'.
[  217.223708][T14386] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2980'.
[  217.234593][T14386] bridge1: port 1(veth0_to_bond) entered blocking state
[  217.236862][T14386] bridge1: port 1(veth0_to_bond) entered disabled state
[  217.239540][T14386] veth0_to_bond: entered allmulticast mode
[  217.242244][T14386] veth0_to_bond: entered promiscuous mode
[  217.251352][T14386] vlan2: entered allmulticast mode
[  217.253637][T14386] veth1: entered allmulticast mode
[  217.255458][T14386] bridge1: port 2(vlan2) entered blocking state
[  217.257455][T14386] bridge1: port 2(vlan2) entered disabled state
[  217.260239][T14386] vlan2: entered promiscuous mode
[  217.261855][T14386] veth1: entered promiscuous mode
[  217.266047][T14386] netlink: 'syz.0.2980': attribute type 11 has an invalid length.
[  217.268483][T14386] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2980'.
[  217.307675][T14396] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2985'.
[  217.315132][T14396] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2985'.
[  217.373087][T14398] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2986'.
[  217.386686][T14403] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2988'.
[  217.445065][T14409] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2991'.
[  217.647856][T14427] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2998'.
[  217.720765][ T5957] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  217.722181][T14434] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3001'.
[  217.763925][T14437] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  217.774183][T14437] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  217.807637][T14439] SELinux: ebitmap: truncated map
[  217.812625][T14439] SELinux: failed to load policy
[  217.864525][T14443] max out of range
[  218.083326][T14465] Unsupported ieee802154 address type: 0
[  218.133949][T14471] SELinux: ebitmap: truncated map
[  218.140342][T14471] SELinux: failed to load policy
[  218.201182][T14475] PM: Enabling pm_trace changes system date and time during resume.
[  218.201182][T14475] PM: Correct system time has to be restored manually after resume.
[  218.441656][T14498] FAULT_INJECTION: forcing a failure.
[  218.441656][T14498] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  218.445731][T14498] CPU: 0 UID: 0 PID: 14498 Comm: syz.5.3027 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  218.445745][T14498] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  218.445752][T14498] Call Trace:
[  218.445756][T14498]  <TASK>
[  218.445761][T14498]  dump_stack_lvl+0x16c/0x1f0
[  218.445779][T14498]  should_fail_ex+0x512/0x640
[  218.445796][T14498]  _copy_from_user+0x2e/0xd0
[  218.445812][T14498]  copy_msghdr_from_user+0x98/0x160
[  218.445827][T14498]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  218.445848][T14498]  ___sys_sendmsg+0xfe/0x1d0
[  218.445863][T14498]  ? __pfx____sys_sendmsg+0x10/0x10
[  218.445876][T14498]  ? __lock_acquire+0x622/0x1c90
[  218.445904][T14498]  __sys_sendmsg+0x16d/0x220
[  218.445919][T14498]  ? __pfx___sys_sendmsg+0x10/0x10
[  218.445939][T14498]  ? fput+0x70/0xf0
[  218.445951][T14498]  do_syscall_64+0xcd/0x4c0
[  218.445983][T14498]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.445995][T14498] RIP: 0033:0x7f58ea38e929
[  218.446004][T14498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.446015][T14498] RSP: 002b:00007f58eb2d2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  218.446025][T14498] RAX: ffffffffffffffda RBX: 00007f58ea5b5fa0 RCX: 00007f58ea38e929
[  218.446031][T14498] RDX: 0000000004000080 RSI: 0000200000001200 RDI: 0000000000000003
[  218.446038][T14498] RBP: 00007f58eb2d2090 R08: 0000000000000000 R09: 0000000000000000
[  218.446044][T14498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  218.446049][T14498] R13: 0000000000000000 R14: 00007f58ea5b5fa0 R15: 00007ffc89dadb48
[  218.446063][T14498]  </TASK>
[  218.667042][T14518] team0: No ports can be present during mode change
[  218.707481][T14522] Bluetooth: MGMT ver 1.23
[  218.796687][T14529] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  218.803636][T14529] max out of range
[  218.904089][T14544] xt_nfacct: accounting object `syz1' does not exists
[  219.393789][T14568] xt_l2tp: unknown flags: f1
[  219.451682][T14576] syz.6.3057: calling unsupported SCSI_IOCTL_SEND_COMMAND
[  219.457795][ T5957] Bluetooth: hci3: unexpected event for opcode 0x200f
[  219.458148][T14576] fuse: Invalid rootmode
[  219.592449][T14589] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  219.604113][T14589] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  219.664989][T14593] FAULT_INJECTION: forcing a failure.
[  219.664989][T14593] name failslab, interval 1, probability 0, space 0, times 0
[  219.668874][T14593] CPU: 2 UID: 0 PID: 14593 Comm: syz.6.3065 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  219.668888][T14593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  219.668894][T14593] Call Trace:
[  219.668899][T14593]  <TASK>
[  219.668903][T14593]  dump_stack_lvl+0x16c/0x1f0
[  219.668922][T14593]  should_fail_ex+0x512/0x640
[  219.668936][T14593]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  219.668952][T14593]  should_failslab+0xc2/0x120
[  219.668968][T14593]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  219.668983][T14593]  ? __alloc_skb+0x2b2/0x380
[  219.668999][T14593]  __alloc_skb+0x2b2/0x380
[  219.669012][T14593]  ? __pfx___alloc_skb+0x10/0x10
[  219.669027][T14593]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  219.669047][T14593]  netlink_alloc_large_skb+0x69/0x130
[  219.669059][T14593]  netlink_sendmsg+0x6a1/0xdd0
[  219.669071][T14593]  ? __pfx_netlink_sendmsg+0x10/0x10
[  219.669087][T14593]  ____sys_sendmsg+0xa95/0xc70
[  219.669098][T14593]  ? copy_msghdr_from_user+0x10a/0x160
[  219.669112][T14593]  ? __pfx_____sys_sendmsg+0x10/0x10
[  219.669129][T14593]  ___sys_sendmsg+0x134/0x1d0
[  219.669145][T14593]  ? __pfx____sys_sendmsg+0x10/0x10
[  219.669158][T14593]  ? __lock_acquire+0x622/0x1c90
[  219.669186][T14593]  __sys_sendmsg+0x16d/0x220
[  219.669204][T14593]  ? __pfx___sys_sendmsg+0x10/0x10
[  219.669224][T14593]  ? fput+0x70/0xf0
[  219.669235][T14593]  do_syscall_64+0xcd/0x4c0
[  219.669252][T14593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.669263][T14593] RIP: 0033:0x7fb03078e929
[  219.669272][T14593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.669282][T14593] RSP: 002b:00007fb031555038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  219.669293][T14593] RAX: ffffffffffffffda RBX: 00007fb0309b5fa0 RCX: 00007fb03078e929
[  219.669299][T14593] RDX: 0000000004000080 RSI: 0000200000001200 RDI: 0000000000000003
[  219.669305][T14593] RBP: 00007fb031555090 R08: 0000000000000000 R09: 0000000000000000
[  219.669312][T14593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.669318][T14593] R13: 0000000000000000 R14: 00007fb0309b5fa0 R15: 00007ffd2730ae68
[  219.669331][T14593]  </TASK>
[  219.741477][    C2] vkms_vblank_simulate: vblank timer overrun
[  219.946840][T14601] team0: No ports can be present during mode change
[  220.202237][T14611] max out of range
[  221.293234][T14629] overlayfs: statfs failed on './file0'
[  221.307257][   T40] kauditd_printk_skb: 898 callbacks suppressed
[  221.307270][   T40] audit: type=1400 audit(477.236:6029): avc:  denied  { unmount } for  pid=10325 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  221.321381][   T40] audit: type=1400 audit(477.246:6030): avc:  denied  { read write } for  pid=10325 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  221.329066][   T40] audit: type=1400 audit(477.256:6031): avc:  denied  { open } for  pid=10325 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  221.336929][   T40] audit: type=1400 audit(477.256:6032): avc:  denied  { ioctl } for  pid=10325 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  221.344925][   T40] audit: type=1400 audit(477.276:6033): avc:  denied  { create } for  pid=14630 comm="syz.5.3078" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  221.351191][   T40] audit: type=1400 audit(477.276:6034): avc:  denied  { ioctl } for  pid=14630 comm="syz.5.3078" path="socket:[78482]" dev="sockfs" ino=78482 ioctlcmd=0x89f2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  221.396839][   T40] audit: type=1400 audit(477.326:6035): avc:  denied  { read } for  pid=14630 comm="syz.5.3078" dev="nsfs" ino=4026533314 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  221.403678][   T40] audit: type=1400 audit(477.326:6036): avc:  denied  { open } for  pid=14630 comm="syz.5.3078" path="net:[4026533314]" dev="nsfs" ino=4026533314 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  221.410538][   T40] audit: type=1400 audit(477.326:6037): avc:  denied  { create } for  pid=14630 comm="syz.5.3078" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  221.416998][   T40] audit: type=1400 audit(477.326:6038): avc:  denied  { write } for  pid=14630 comm="syz.5.3078" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  221.575780][T14636] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.633036][ T5968] Bluetooth: hci2: command 0x040f tx timeout
[  221.648448][T14636] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.724623][T14636] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.784405][T14636] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.899746][T14636] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.915065][T14636] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.923505][T14636] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  221.930852][T14636] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  222.048519][T14649] geneve3: entered promiscuous mode
[  222.050200][T14649] geneve3: entered allmulticast mode
[  222.283955][T14667] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.297822][T14672] __nla_validate_parse: 19 callbacks suppressed
[  222.297833][T14672] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3095'.
[  222.302869][T14672] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  222.305511][T14672] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  222.368045][T14667] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.457415][T14667] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.471042][T14689] team0: No ports can be present during mode change
[  222.519480][T14667] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.735112][T14708] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3102'.
[  222.737839][T14708] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3102'.
[  223.237774][T14714] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  223.508113][T14721] netlink: 'syz.6.3107': attribute type 72 has an invalid length.
[  223.510593][T14721] netlink: 'syz.6.3107': attribute type 8 has an invalid length.
[  223.931342][T14740] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3113'.
[  224.178679][T14760] SELinux: ebitmap: truncated map
[  224.185328][T14760] SELinux: failed to load policy
[  224.501453][T14778] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3127'.
[  224.505489][T14778] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3127'.
[  224.549502][T14781] netlink: 'syz.6.3128': attribute type 3 has an invalid length.
[  224.553637][T14781] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  224.560004][T14783] tipc: Resetting bearer <eth:team0>
[  224.568136][T14781] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  224.634121][T14785] SELinux: ebitmap: truncated map
[  224.639204][T14785] SELinux: failed to load policy
[  225.151060][T14795] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3135'.
[  225.314993][T14805] team0: Unable to change to the same mode the team is in
[  225.464367][T14817] SELinux: ebitmap: truncated map
[  225.469385][T14817] SELinux: failed to load policy
[  225.695881][T14825] xt_l2tp: unknown flags: f1
[  225.805808][T14829] kvm: pic: single mode not supported
[  225.811326][T14829] kvm: pic: single mode not supported
[  225.928715][T14838] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  225.941309][T14838] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  225.997371][T14667] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  226.005047][T14667] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  226.011722][T14667] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  226.019089][T14667] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  226.089303][T14840] SELinux: ebitmap: truncated map
[  226.094722][T14840] SELinux: failed to load policy
[  226.184715][T14842] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3156'.
[  226.235059][T14844] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3157'.
[  226.329638][   T40] kauditd_printk_skb: 706 callbacks suppressed
[  226.329651][   T40] audit: type=1400 audit(482.256:6745): avc:  denied  { read write } for  pid=10325 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.339120][   T40] audit: type=1400 audit(482.256:6746): avc:  denied  { open } for  pid=10325 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.347121][   T40] audit: type=1400 audit(482.256:6747): avc:  denied  { ioctl } for  pid=10325 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.355347][   T40] audit: type=1400 audit(482.276:6748): avc:  denied  { create } for  pid=14845 comm="syz.5.3158" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  226.361582][   T40] audit: type=1400 audit(482.276:6749): avc:  denied  { write } for  pid=14845 comm="syz.5.3158" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  226.391921][   T40] audit: type=1400 audit(482.316:6750): avc:  denied  { read write } for  pid=10325 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.399401][   T40] audit: type=1400 audit(482.316:6751): avc:  denied  { open } for  pid=10325 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.407138][   T40] audit: type=1400 audit(482.316:6752): avc:  denied  { ioctl } for  pid=10325 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.417312][   T40] audit: type=1400 audit(482.346:6753): avc:  denied  { read write } for  pid=10325 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.425090][   T40] audit: type=1400 audit(482.346:6754): avc:  denied  { open } for  pid=10325 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.536022][T14865] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3165'.
[  226.664372][T14866] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.777359][T14866] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.836675][T14866] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.840105][T14885] SELinux: ebitmap: truncated map
[  226.847120][T14885] SELinux: failed to load policy
[  226.896922][T14866] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  227.242899][T14897] futex_wake_op: syz.6.3178 tries to shift op by 32; fix this program
[  227.558387][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  227.560824][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  227.595688][T14909] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  227.777256][T14918] __nla_validate_parse: 2 callbacks suppressed
[  227.777267][T14918] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3186'.
[  227.831608][T14925] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3189'.
[  227.838705][T14934] netlink: 'syz.1.3192': attribute type 64 has an invalid length.
[  227.841183][T14934] netlink: 'syz.1.3192': attribute type 4 has an invalid length.
[  227.844289][T14934] netlink: 152 bytes leftover after parsing attributes in process `syz.1.3192'.
[  227.927461][T14952] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3200'.
[  227.930084][T14952] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3200'.
[  227.932898][T14952] netlink: 'syz.6.3200': attribute type 11 has an invalid length.
[  227.950077][T14956] netlink: 596 bytes leftover after parsing attributes in process `syz.1.3201'.
[  228.175978][T14977] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3212'.
[  228.348259][T14986] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3216'.
[  228.531532][T14996] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3221'.
[  228.564275][T14999] can: request_module (can-proto-0) failed.
[  228.590915][T15009] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3225'.
[  228.596102][T15010] veth1_to_batadv: entered promiscuous mode
[  228.620563][T15008] SELinux: ebitmap: truncated map
[  228.625993][T15008] SELinux: failed to load policy
[  228.643367][T15013] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  228.645681][T15013] overlayfs: failed to set xattr on upper
[  228.647448][T15013] overlayfs: ...falling back to redirect_dir=nofollow.
[  228.650111][T15013] overlayfs: ...falling back to metacopy=off.
[  228.652086][T15013] overlayfs: ...falling back to index=off.
[  228.654001][T15013] overlayfs: ...falling back to uuid=null.
[  228.735281][T15021] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  228.744714][T15021] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  228.932299][T15028] syz.6.3232: attempt to access beyond end of device
[  228.932299][T15028] nbd6: rw=6144, sector=128, nr_sectors = 8 limit=0
[  228.940202][T15028] gfs2: error -5 reading superblock
[  230.035630][T14866] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  230.044656][T14866] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  230.051247][T14866] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  230.061923][T14866] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  230.111880][T15096] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  230.121565][T15096] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  230.199859][   T60] wlan0: Selected IBSS BSSID 50:50:50:50:50:50 based on configured SSID
[  230.317225][T15116] xt_l2tp: unknown flags: f1
[  230.445146][T15123] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  230.478659][T15120] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  230.482481][T15120] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  230.545990][T15120] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  230.549154][T15120] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  230.629119][T15120] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  230.634117][T15120] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  230.697273][T15120] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  230.701382][T15120] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  230.752941][ T2302] usb 11-1: new high-speed USB device number 14 using dummy_hcd
[  230.770949][T15120] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  230.775713][T15120] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  230.782666][T15120] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  230.785428][T15120] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  230.795194][T15120] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  230.797783][T15120] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  230.804572][T15120] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  230.807157][T15120] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  230.883724][ T2302] usb 11-1: device descriptor read/64, error -71
[  230.989642][T15137] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4)
[  230.991717][T15137] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  230.996184][T15137] vhci_hcd vhci_hcd.0: Device attached
[  230.998739][T15140] vhci_hcd: cannot find the pending unlink 1023
[  230.999163][T15137] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15137 comm=syz.5.3272
[  231.113533][T15140] vhci_hcd: connection closed
[  231.113786][   T13] vhci_hcd: stop threads
[  231.116673][   T13] vhci_hcd: release socket
[  231.118252][   T13] vhci_hcd: disconnect device
[  231.133424][ T2302] usb 11-1: new high-speed USB device number 15 using dummy_hcd
[  231.194496][   T53] vhci_hcd: vhci_device speed not set
[  231.247726][T15159] openvswitch: netlink: VXLAN extension 149 out of range max 1
[  231.284866][ T2302] usb 11-1: device descriptor read/64, error -71
[  231.299563][T15166] team0: No ports can be present during mode change
[  231.334184][   T40] kauditd_printk_skb: 786 callbacks suppressed
[  231.334195][   T40] audit: type=1400 audit(487.266:7541): avc:  denied  { read } for  pid=15167 comm="syz.0.3284" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  231.343648][   T40] audit: type=1400 audit(487.266:7542): avc:  denied  { open } for  pid=15167 comm="syz.0.3284" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  231.351144][   T40] audit: type=1400 audit(487.266:7543): avc:  denied  { ioctl } for  pid=15167 comm="syz.0.3284" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  231.357483][T15168] SELinux: ebitmap: truncated map
[  231.358889][   T40] audit: type=1400 audit(487.286:7544): avc:  denied  { load_policy } for  pid=15167 comm="syz.0.3284" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  231.364980][T15168] SELinux: failed to load policy
[  231.393471][ T2302] usb usb11-port1: attempt power cycle
[  231.393756][   T40] audit: type=1400 audit(487.326:7545): avc:  denied  { ioctl } for  pid=15122 comm="syz.6.3266" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  231.445078][   T40] audit: type=1400 audit(487.376:7546): avc:  denied  { read write } for  pid=5953 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  231.452271][   T40] audit: type=1400 audit(487.376:7547): avc:  denied  { open } for  pid=5953 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  231.459335][T15170] xt_l2tp: unknown flags: f1
[  231.459897][   T40] audit: type=1400 audit(487.376:7548): avc:  denied  { ioctl } for  pid=5953 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  231.470680][   T40] audit: type=1400 audit(487.396:7549): avc:  denied  { read write } for  pid=5953 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  231.479188][   T40] audit: type=1400 audit(487.396:7550): avc:  denied  { open } for  pid=5953 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  231.554740][T15174] netlink: 'syz.0.3287': attribute type 16 has an invalid length.
[  231.732878][ T2302] usb 11-1: new high-speed USB device number 16 using dummy_hcd
[  231.763894][ T2302] usb 11-1: device descriptor read/8, error -71
[  231.796778][T15189] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  231.807810][T15189] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  231.883975][T15191] SELinux: ebitmap: truncated map
[  231.892532][T15191] SELinux: failed to load policy
[  232.012877][ T2302] usb 11-1: new high-speed USB device number 17 using dummy_hcd
[  232.035634][ T2302] usb 11-1: device descriptor read/8, error -71
[  232.153960][ T2302] usb usb11-port1: unable to enumerate USB device
[  232.405927][T15219] SELinux: ebitmap: truncated map
[  232.412317][T15219] SELinux: failed to load policy
[  232.523901][T15221] binder: 15220:15221 ioctl c0306201 200000000040 returned -22
[  232.526961][T15221] binder: 15220:15221 ioctl c0306201 200000000640 returned -22
[  232.530370][T15221] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1
[  232.914605][T15245] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  232.916828][T15245] overlayfs: failed to set xattr on upper
[  232.918644][T15245] overlayfs: ...falling back to redirect_dir=nofollow.
[  232.920867][T15245] overlayfs: ...falling back to index=off.
[  232.922772][T15245] overlayfs: ...falling back to uuid=null.
[  232.924606][T15245] overlayfs: ...falling back to xino=off.
[  232.926583][T15245] overlayfs: conflicting lowerdir path
[  233.002368][T15260] team0: Unable to change to the same mode the team is in
[  233.015199][T15262] xt_l2tp: unknown flags: f1
[  233.081275][T15268] SELinux: ebitmap: truncated map
[  233.095298][T15268] SELinux: failed to load policy
[  233.414728][T15295] __nla_validate_parse: 15 callbacks suppressed
[  233.414740][T15295] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3333'.
[  233.482110][T15306] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3338'.
[  233.598613][T15321] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3342'.
[  233.642049][T15325] overlayfs: failed to resolve './file0': -2
[  233.691595][T15331] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  233.748149][T15336] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3347'.
[  233.823037][T15340] netlink: 596 bytes leftover after parsing attributes in process `syz.1.3350'.
[  234.427624][T15349] syz_tun: entered allmulticast mode
[  234.440351][T15349] 8021q: adding VLAN 0 to HW filter on device bond6
[  234.459553][T15352] syz_tun: left allmulticast mode
[  234.551893][T15363] max out of range
[  234.696942][T15375] netlink: 'syz.6.3361': attribute type 28 has an invalid length.
[  234.699415][T15375] netlink: 'syz.6.3361': attribute type 3 has an invalid length.
[  234.701830][T15375] netlink: 132 bytes leftover after parsing attributes in process `syz.6.3361'.
[  234.740642][T15377] netlink: 596 bytes leftover after parsing attributes in process `syz.6.3362'.
[  235.072782][ T5968] Bluetooth: hci3: command 0x0405 tx timeout
[  235.489849][T15384] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  235.500578][T15384] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  235.715522][T15391] netlink: 48 bytes leftover after parsing attributes in process `syz.6.3368'.
[  235.718413][T15391] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3368'.
[  235.752313][T15395] netlink: 48 bytes leftover after parsing attributes in process `syz.6.3369'.
[  236.266797][T15432] SELinux: ebitmap: truncated map
[  236.271810][T15432] SELinux: failed to load policy
[  236.350768][   T40] kauditd_printk_skb: 766 callbacks suppressed
[  236.350778][   T40] audit: type=1400 audit(492.276:8317): avc:  denied  { read write } for  pid=11820 comm="syz-executor" name="loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  236.355037][T15443] syz.5.3390 (15443) used obsolete PPPIOCDETACH ioctl
[  236.360403][   T40] audit: type=1400 audit(492.276:8318): avc:  denied  { open } for  pid=11820 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  236.370239][   T40] audit: type=1400 audit(492.276:8319): avc:  denied  { ioctl } for  pid=11820 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=664 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  236.378936][   T40] audit: type=1400 audit(492.286:8320): avc:  denied  { ioctl } for  pid=15442 comm="syz.5.3390" path="/dev/ppp" dev="devtmpfs" ino=730 ioctlcmd=0x743c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  236.386281][   T40] audit: type=1400 audit(492.296:8321): avc:  denied  { read write } for  pid=15442 comm="syz.5.3390" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  236.393226][   T40] audit: type=1400 audit(492.296:8322): avc:  denied  { open } for  pid=15442 comm="syz.5.3390" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  236.400152][   T40] audit: type=1400 audit(492.296:8323): avc:  denied  { ioctl } for  pid=15442 comm="syz.5.3390" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  236.407998][   T40] audit: type=1400 audit(492.296:8324): avc:  denied  { ioctl } for  pid=15442 comm="syz.5.3390" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  236.415986][   T40] audit: type=1400 audit(492.306:8325): avc:  denied  { prog_load } for  pid=15444 comm="syz.6.3391" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  236.422079][   T40] audit: type=1400 audit(492.306:8326): avc:  denied  { bpf } for  pid=15444 comm="syz.6.3391" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  236.612932][ T1026] usb 10-1: new high-speed USB device number 19 using dummy_hcd
[  236.727331][T15466] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  236.736339][T15466] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  236.763763][ T1026] usb 10-1: too many configurations: 9, using maximum allowed: 8
[  236.766975][ T1026] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  236.769761][ T1026] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  236.773660][ T1026] usb 10-1: config 0 interface 0 has no altsetting 0
[  236.776578][ T1026] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  236.779337][ T1026] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  236.782631][ T1026] usb 10-1: config 0 interface 0 has no altsetting 0
[  236.785568][ T1026] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  236.788351][ T1026] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  236.791746][ T1026] usb 10-1: config 0 interface 0 has no altsetting 0
[  236.794827][ T1026] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  236.797856][ T1026] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  236.801211][ T1026] usb 10-1: config 0 interface 0 has no altsetting 0
[  236.804123][ T1026] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  236.806997][ T1026] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  236.810817][ T1026] usb 10-1: config 0 interface 0 has no altsetting 0
[  236.813884][ T1026] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  236.816775][ T1026] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  236.820098][ T1026] usb 10-1: config 0 interface 0 has no altsetting 0
[  236.823567][ T1026] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  236.826330][ T1026] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  236.829537][ T1026] usb 10-1: config 0 interface 0 has no altsetting 0
[  236.832522][ T1026] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  236.835625][ T1026] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  236.838929][ T1026] usb 10-1: config 0 interface 0 has no altsetting 0
[  236.842876][ T1026] usb 10-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  236.845765][ T1026] usb 10-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  236.848325][ T1026] usb 10-1: Product: syz
[  236.849657][ T1026] usb 10-1: Manufacturer: syz
[  236.851146][ T1026] usb 10-1: SerialNumber: syz
[  236.854709][ T1026] usb 10-1: config 0 descriptor??
[  236.859430][ T1026] yurex 10-1:0.0: USB YUREX device now attached to Yurex #0
[  237.171132][    C0] usb 10-1: yurex_control_callback - control failed: -71
[  237.171221][   T59] usb 10-1: USB disconnect, device number 19
[  237.175757][T15483] yurex 10-1:0.0: yurex_write - failed to send bulk msg, error -19
[  237.181839][   T59] yurex 10-1:0.0: USB YUREX #0 now disconnected
[  237.286436][T15500] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  237.290625][T15500] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  237.325911][T15513] FAULT_INJECTION: forcing a failure.
[  237.325911][T15513] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  237.330780][T15513] CPU: 0 UID: 0 PID: 15513 Comm: syz.0.3418 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  237.330794][T15513] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  237.330801][T15513] Call Trace:
[  237.330804][T15513]  <TASK>
[  237.330808][T15513]  dump_stack_lvl+0x16c/0x1f0
[  237.330844][T15513]  should_fail_ex+0x512/0x640
[  237.330864][T15513]  _copy_from_user+0x2e/0xd0
[  237.330880][T15513]  copy_msghdr_from_user+0x98/0x160
[  237.330895][T15513]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  237.330916][T15513]  ___sys_sendmsg+0xfe/0x1d0
[  237.330931][T15513]  ? __pfx____sys_sendmsg+0x10/0x10
[  237.330944][T15513]  ? __lock_acquire+0x622/0x1c90
[  237.330973][T15513]  __sys_sendmsg+0x16d/0x220
[  237.330987][T15513]  ? __pfx___sys_sendmsg+0x10/0x10
[  237.331011][T15513]  do_syscall_64+0xcd/0x4c0
[  237.331027][T15513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.331038][T15513] RIP: 0033:0x7f374618e929
[  237.331047][T15513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.331058][T15513] RSP: 002b:00007f374707b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  237.331068][T15513] RAX: ffffffffffffffda RBX: 00007f37463b5fa0 RCX: 00007f374618e929
[  237.331075][T15513] RDX: 0000000010000800 RSI: 00002000000002c0 RDI: 0000000000000003
[  237.331087][T15513] RBP: 00007f374707b090 R08: 0000000000000000 R09: 0000000000000000
[  237.331093][T15513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  237.331100][T15513] R13: 0000000000000000 R14: 00007f37463b5fa0 R15: 00007fffd3d58428
[  237.331114][T15513]  </TASK>
[  237.399499][T15500] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  237.402588][T15500] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  237.419145][T15519] trusted_key: syz.6.3421 sent an empty control message without MSG_MORE.
[  237.495069][T15500] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  237.498408][T15500] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  237.584330][T15531] openvswitch: netlink: Tunnel attr 16370 out of range max 16
[  237.595894][T15500] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  237.602795][T15500] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  237.708811][T15500] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  237.711396][T15500] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  237.718881][T15500] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  237.722217][T15500] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  237.729421][T15500] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  237.731969][T15500] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  237.739008][T15500] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  237.741567][T15500] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  237.784201][T15546] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  237.787178][T15546] IPv6: NLM_F_CREATE should be set when creating new route
[  237.789441][T15546] IPv6: NLM_F_CREATE should be set when creating new route
[  237.791667][T15546] IPv6: NLM_F_CREATE should be set when creating new route
[  237.795210][T15546] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  237.849315][T15554] SELinux: ebitmap: truncated map
[  237.855314][T15554] SELinux: failed to load policy
[  237.977215][T15563] random: crng reseeded on system resumption
[  238.102115][T15567] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.131848][T15582] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  238.197602][T15567] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.218721][T15590] FAULT_INJECTION: forcing a failure.
[  238.218721][T15590] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  238.223228][T15590] CPU: 3 UID: 0 PID: 15590 Comm: syz.5.3451 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  238.223242][T15590] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  238.223249][T15590] Call Trace:
[  238.223253][T15590]  <TASK>
[  238.223258][T15590]  dump_stack_lvl+0x16c/0x1f0
[  238.223277][T15590]  should_fail_ex+0x512/0x640
[  238.223294][T15590]  should_fail_alloc_page+0xe7/0x130
[  238.223311][T15590]  prepare_alloc_pages+0x3c2/0x610
[  238.223325][T15590]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  238.223341][T15590]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  238.223358][T15590]  ? is_bpf_text_address+0x94/0x1a0
[  238.223371][T15590]  ? kernel_text_address+0x8d/0x100
[  238.223384][T15590]  ? __kernel_text_address+0xd/0x40
[  238.223395][T15590]  ? unwind_get_return_address+0x59/0xa0
[  238.223407][T15590]  ? arch_stack_walk+0xa6/0x100
[  238.223418][T15590]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  238.223440][T15590]  ? _kstrtoull+0x145/0x200
[  238.223451][T15590]  ? __pfx__kstrtoull+0x10/0x10
[  238.223461][T15590]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  238.223475][T15590]  ? policy_nodemask+0xea/0x4e0
[  238.223493][T15590]  alloc_pages_mpol+0x1fb/0x550
[  238.223509][T15590]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  238.223528][T15590]  folio_alloc_mpol_noprof+0x36/0x2f0
[  238.223540][T15590]  vma_alloc_folio_noprof+0xed/0x1e0
[  238.223550][T15590]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  238.223559][T15590]  ? find_held_lock+0x2b/0x80
[  238.223573][T15590]  ? __handle_mm_fault+0x1092/0x5490
[  238.223588][T15590]  __handle_mm_fault+0x2f21/0x5490
[  238.223604][T15590]  ? __pfx___handle_mm_fault+0x10/0x10
[  238.223616][T15590]  ? lock_vma_under_rcu+0x47d/0x970
[  238.223629][T15590]  ? lock_vma_under_rcu+0x47d/0x970
[  238.223652][T15590]  handle_mm_fault+0x589/0xd10
[  238.223664][T15590]  ? __pkru_allows_pkey+0x41/0xb0
[  238.223681][T15590]  do_user_addr_fault+0x60c/0x1370
[  238.223698][T15590]  ? rcu_is_watching+0x12/0xc0
[  238.223714][T15590]  exc_page_fault+0x5c/0xb0
[  238.223729][T15590]  asm_exc_page_fault+0x26/0x30
[  238.223739][T15590] RIP: 0033:0x7f58ea25b766
[  238.223748][T15590] Code: 9d 61 1b 00 e8 ab 39 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 41 57 b8 50 50 00 00 41 56 41 55 41 54 55 53 48 81 ec a8 10 00 00 <48> 89 7c 24 18 48 89 74 24 10 48 89 54 24 08 48 89 0c 24 4c 8b 74
[  238.223759][T15590] RSP: 002b:00007f58eb2d0f50 EFLAGS: 00010206
[  238.223769][T15590] RAX: 0000000000005050 RBX: 00007f58ea5b5fa0 RCX: 0000000000000000
[  238.223775][T15590] RDX: 0000000000000007 RSI: 0000200000000000 RDI: 0000200000000040
[  238.223781][T15590] RBP: 00007f58eb2d2090 R08: 0000000000000000 R09: 0000000000000000
[  238.223787][T15590] R10: 0000200000000040 R11: 0000000000000007 R12: 0000000000000001
[  238.223793][T15590] R13: 0000000000000001 R14: 00007f58ea5b5fa0 R15: 00007ffc89dadb48
[  238.223808][T15590]  </TASK>
[  238.223948][T15590] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  238.317492][T15567] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.356931][ T1148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  238.363144][ T1148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  238.380151][T15595] Bluetooth: MGMT ver 1.23
[  238.387349][T15567] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.412832][T15595] netlink: 'syz.0.3453': attribute type 9 has an invalid length.
[  238.435909][T15600] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=15600 comm=syz.5.3455
[  238.473306][T15567] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  238.484218][T15567] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  238.493617][T15567] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  238.501000][T15567] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  238.640331][T15619] tc_dump_action: action bad kind
[  238.681760][T15624] team0: No ports can be present during mode change
[  238.689380][T15619] program syz.6.3460 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  238.805512][T15632] SELinux: ebitmap: truncated map
[  238.810724][T15632] SELinux: failed to load policy
[  238.812687][T15638] __nla_validate_parse: 18 callbacks suppressed
[  238.812697][T15638] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3469'.
[  238.852124][T15642] netlink: 596 bytes leftover after parsing attributes in process `syz.0.3471'.
[  238.883282][T15646] netlink: 828 bytes leftover after parsing attributes in process `syz.0.3473'.
[  238.933239][ T5957] Bluetooth: hci1: SCO packet for unknown connection handle 200
[  239.017459][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  239.023306][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  239.076838][T15670] netlink: 804 bytes leftover after parsing attributes in process `syz.6.3484'.
[  239.098917][T15668] SELinux: ebitmap: truncated map
[  239.105317][T15668] SELinux: failed to load policy
[  239.109529][T15673] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16250 sclass=netlink_route_socket pid=15673 comm=syz.6.3485
[  239.302027][T15688] mac80211_hwsim hwsim13 syzkaller0: entered promiscuous mode
[  239.308580][T15688] mac80211_hwsim hwsim13 syzkaller0: entered allmulticast mode
[  239.328619][T15688] /dev/sr0: Can't open blockdev
[  239.338671][T15688] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  239.349649][T15688] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3492'.
[  239.537344][T15702] SELinux: ebitmap: truncated map
[  239.544705][T15702] SELinux: failed to load policy
[  239.651442][T15709] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3500'.
[  239.657684][T15709] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3500'.
[  239.698584][T15713] team0: No ports can be present during mode change
[  239.796583][T15724] netlink: 56 bytes leftover after parsing attributes in process `syz.5.3506'.
[  239.815175][T15731] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3509'.
[  239.834230][T15734] overlayfs: failed to clone upperpath
[  239.845394][T15733] SELinux: ebitmap: truncated map
[  239.850415][T15733] SELinux: failed to load policy
[  239.911726][T15736] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  239.911957][T15741] xt_l2tp: unknown flags: f1
[  240.049516][T15756] x_tables: duplicate underflow at hook 2
[  240.684281][T15739] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  240.687228][T15739] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  240.704775][T15739] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  240.707617][T15739] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  240.710199][T15739] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  240.723367][T15739] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  240.761399][T15774] sctp: [Deprecated]: syz.6.3527 (pid 15774) Use of int in max_burst socket option.
[  240.761399][T15774] Use struct sctp_assoc_value instead
[  240.768623][T15775] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3526'.
[  240.834651][T15786] xt_l2tp: unknown flags: f1
[  240.950654][T15801] xt_time: unknown flags 0xb4
[  241.012122][T15805] netlink: 'syz.6.3539': attribute type 4 has an invalid length.
[  241.021258][T15805] netlink: 'syz.6.3539': attribute type 4 has an invalid length.
[  241.064212][T15810] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  241.066578][T15810] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  241.343001][   T59] usb 11-1: new low-speed USB device number 18 using dummy_hcd
[  241.381811][   T40] kauditd_printk_skb: 1179 callbacks suppressed
[  241.381823][   T40] audit: type=1400 audit(497.306:9504): avc:  denied  { read write } for  pid=5953 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  241.393437][   T40] audit: type=1400 audit(497.306:9505): avc:  denied  { open } for  pid=5953 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  241.400766][   T40] audit: type=1400 audit(497.306:9506): avc:  denied  { ioctl } for  pid=5953 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  241.409031][   T40] audit: type=1400 audit(497.326:9507): avc:  denied  { prog_load } for  pid=15830 comm="syz.0.3547" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  241.415338][   T40] audit: type=1400 audit(497.326:9508): avc:  denied  { bpf } for  pid=15830 comm="syz.0.3547" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  241.421649][   T40] audit: type=1400 audit(497.326:9509): avc:  denied  { perfmon } for  pid=15830 comm="syz.0.3547" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  241.428930][   T40] audit: type=1400 audit(497.326:9510): avc:  denied  { read } for  pid=15830 comm="syz.0.3547" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  241.436156][   T40] audit: type=1400 audit(497.326:9511): avc:  denied  { read open } for  pid=15830 comm="syz.0.3547" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  241.443749][   T40] audit: type=1400 audit(497.326:9512): avc:  denied  { write } for  pid=15830 comm="syz.0.3547" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  241.450573][   T40] audit: type=1400 audit(497.326:9513): avc:  denied  { ioctl } for  pid=15830 comm="syz.0.3547" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  241.506269][   T59] usb 11-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  241.509475][   T59] usb 11-1: config 1 has 1 interface, different from the descriptor's value: 2
[  241.512256][   T59] usb 11-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  241.516831][   T59] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  241.520215][   T59] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  241.525004][   T59] usb 11-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  241.527943][   T59] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.533206][T15815] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  241.540012][   T59] hub 11-1:1.0: bad descriptor, ignoring hub
[  241.541995][   T59] hub 11-1:1.0: probe with driver hub failed with error -5
[  241.545655][   T59] cdc_wdm 11-1:1.0: skipping garbage
[  241.547278][   T59] cdc_wdm 11-1:1.0: skipping garbage
[  241.552358][   T59] cdc_wdm 11-1:1.0: cdc-wdm0: USB WDM device
[  241.554397][   T59] cdc_wdm 11-1:1.0: Unknown control protocol
[  241.588773][T15836] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=40570 sclass=netlink_route_socket pid=15836 comm=syz.1.3549
[  241.599102][T15838] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  241.599102][T15838]    program syz.0.3550 not setting count and/or reply_len properly
[  241.619682][T15838] tipc: Enabling <ib:lo> not permitted
[  241.621635][T15838] tipc: Enabling of bearer <ib:lo> rejected, failed to enable media
[  241.797596][T15868] xt_l2tp: unknown flags: f1
[  241.873265][T15875] sctp: [Deprecated]: syz.1.3563 (pid 15875) Use of int in max_burst socket option deprecated.
[  241.873265][T15875] Use struct sctp_assoc_value instead
[  241.878167][T15875] sctp: [Deprecated]: syz.1.3563 (pid 15875) Use of int in max_burst socket option deprecated.
[  241.878167][T15875] Use struct sctp_assoc_value instead
[  241.884095][T15875] sctp: [Deprecated]: syz.1.3563 (pid 15875) Use of int in max_burst socket option deprecated.
[  241.884095][T15875] Use struct sctp_assoc_value instead
[  241.888964][T15875] sctp: [Deprecated]: syz.1.3563 (pid 15875) Use of int in max_burst socket option deprecated.
[  241.888964][T15875] Use struct sctp_assoc_value instead
[  241.894015][T15875] sctp: [Deprecated]: syz.1.3563 (pid 15875) Use of int in max_burst socket option deprecated.
[  241.894015][T15875] Use struct sctp_assoc_value instead
[  241.898896][T15875] sctp: [Deprecated]: syz.1.3563 (pid 15875) Use of int in max_burst socket option deprecated.
[  241.898896][T15875] Use struct sctp_assoc_value instead
[  241.904171][T15875] sctp: [Deprecated]: syz.1.3563 (pid 15875) Use of int in max_burst socket option deprecated.
[  241.904171][T15875] Use struct sctp_assoc_value instead
[  241.909123][T15875] sctp: [Deprecated]: syz.1.3563 (pid 15875) Use of int in max_burst socket option deprecated.
[  241.909123][T15875] Use struct sctp_assoc_value instead
[  241.914009][T15875] sctp: [Deprecated]: syz.1.3563 (pid 15875) Use of int in max_burst socket option deprecated.
[  241.914009][T15875] Use struct sctp_assoc_value instead
[  241.918822][T15875] sctp: [Deprecated]: syz.1.3563 (pid 15875) Use of int in max_burst socket option deprecated.
[  241.918822][T15875] Use struct sctp_assoc_value instead
[  242.032926][ T5968] Bluetooth: hci1: command 0x0406 tx timeout
[  242.298037][T15815] usb 11-1: reset low-speed USB device number 18 using dummy_hcd
[  242.593030][T15815] usb 11-1: device descriptor read/64, error -71
[  242.752848][ T5968] Bluetooth: hci3: command 0x0405 tx timeout
[  242.752919][ T5957] Bluetooth: hci2: command 0x040f tx timeout
[  242.799290][T15923] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=42618 sclass=netlink_route_socket pid=15923 comm=syz.1.3583
[  242.976984][T15943] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15943 comm=syz.5.3590
[  242.983134][T15815] usb 11-1: reset low-speed USB device number 18 using dummy_hcd
[  243.254108][T15815] usb 11-1: device descriptor read/64, error -71
[  243.278528][T15976] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=61562 sclass=netlink_route_socket pid=15976 comm=syz.1.3605
[  243.654688][T15815] usb 11-1: reset low-speed USB device number 18 using dummy_hcd
[  243.693509][T15815] usb 11-1: device descriptor read/8, error -71
[  243.706594][T15999] xt_l2tp: unknown flags: f1
[  244.074655][T15815] usb 11-1: reset low-speed USB device number 18 using dummy_hcd
[  244.112814][ T5957] Bluetooth: hci1: command 0x0406 tx timeout
[  244.315028][T16014] __nla_validate_parse: 23 callbacks suppressed
[  244.315040][T16014] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3620'.
[  244.374174][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  244.376817][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  244.832821][ T5957] Bluetooth: hci3: command 0x0405 tx timeout
[  244.977149][T16026] netlink: 596 bytes leftover after parsing attributes in process `syz.1.3625'.
[  245.127735][T16035] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3629'.
[  245.130641][T16035] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3629'.
[  245.172238][T16037] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3630'.
[  245.175325][T16037] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3630'.
[  246.313065][T16069] netlink: 'syz.1.3641': attribute type 30 has an invalid length.
[  246.356090][T16075] netlink: 596 bytes leftover after parsing attributes in process `syz.1.3643'.
[  246.421890][   T40] kauditd_printk_skb: 505 callbacks suppressed
[  246.421907][   T40] audit: type=1400 audit(502.346:10019): avc:  denied  { create } for  pid=16079 comm="syz.1.3645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  246.424435][T16080] team0: Unable to change to the same mode the team is in
[  246.431596][   T40] audit: type=1400 audit(502.346:10020): avc:  denied  { write } for  pid=16079 comm="syz.1.3645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  246.443414][   T40] audit: type=1400 audit(502.346:10021): avc:  denied  { read } for  pid=16079 comm="syz.1.3645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  246.449563][   T40] audit: type=1400 audit(502.356:10022): avc:  denied  { ioctl } for  pid=16079 comm="syz.1.3645" path="socket:[87828]" dev="sockfs" ino=87828 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  246.460196][   T40] audit: type=1400 audit(502.386:10023): avc:  denied  { read write } for  pid=5953 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  246.470046][   T40] audit: type=1400 audit(502.386:10024): avc:  denied  { read write open } for  pid=5953 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  246.478052][   T40] audit: type=1400 audit(502.386:10025): avc:  denied  { ioctl } for  pid=5953 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  246.487709][   T40] audit: type=1400 audit(502.396:10026): avc:  denied  { create } for  pid=16081 comm="syz.1.3646" anonclass=[userfaultfd] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  246.495217][   T40] audit: type=1400 audit(502.406:10027): avc:  denied  { create } for  pid=16083 comm="syz.0.3647" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  246.501859][   T40] audit: type=1400 audit(502.406:10028): avc:  denied  { read } for  pid=16083 comm="syz.0.3647" dev="nsfs" ino=4026532886 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  246.916063][ T5968] Bluetooth: hci3: command 0x0405 tx timeout
[  246.991508][T16104] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  246.994720][T16104] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  246.999717][T16109] batadv_slave_1: entered promiscuous mode
[  247.045201][T16104] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  247.048262][T16104] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  247.106150][T16104] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  247.109195][T16104] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  247.195624][T16104] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  247.198677][T16104] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  247.242916][    T9] usb 10-1: new high-speed USB device number 20 using dummy_hcd
[  247.279907][T16104] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  247.282660][T16104] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  247.289547][T16104] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  247.292170][T16104] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  247.300513][T16104] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  247.303581][T16104] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  247.310227][T16104] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  247.313753][T16104] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  247.370914][T16116] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3659'.
[  247.392863][    T9] usb 10-1: Using ep0 maxpacket: 8
[  247.396025][    T9] usb 10-1: config 0 has an invalid interface number: 55 but max is 0
[  247.401795][    T9] usb 10-1: config 0 has no interface number 0
[  247.404012][    T9] usb 10-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  247.407348][    T9] usb 10-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  247.412875][    T9] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  247.416517][    T9] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  247.419544][    T9] usb 10-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  247.423689][    T9] usb 10-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  247.426552][    T9] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  247.433371][    T9] usb 10-1: config 0 descriptor??
[  247.612426][T16125] openvswitch: netlink: IP tunnel TTL not specified.
[  249.163202][T15815] usb 11-1: device descriptor read/8, error -110
[  249.276844][T15815] cdc_wdm 11-1:1.0: Error autopm - -16
[  249.276917][   T24] usb 11-1: USB disconnect, device number 18
[  249.284108][    T9] ldusb 10-1:0.55: LD USB Device #1 now attached to major 180 minor 1
[  249.287058][T16109] cdc_wdm 11-1:1.0: Error autopm - -16
[  249.299366][T16108] batadv_slave_1: left promiscuous mode
[  249.301543][ T6020] usb 10-1: USB disconnect, device number 20
[  249.309996][ T6020] ldusb 10-1:0.55: LD USB Device #1 now disconnected
[  249.312794][T16165] futex_wake_op: syz.1.3676 tries to shift op by 32; fix this program
[  249.588365][T16188] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  249.591714][T16188] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  249.675623][T16188] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  249.678797][T16188] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  249.758392][T16194] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3687'.
[  249.762211][T16194] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3687'.
[  249.797448][T16188] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  249.801529][T16188] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  249.839244][T16198] netlink: 596 bytes leftover after parsing attributes in process `syz.0.3689'.
[  249.855773][T16188] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  249.858840][T16188] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  249.962775][   T24] usb 11-1: new high-speed USB device number 19 using dummy_hcd
[  250.122843][   T24] usb 11-1: Using ep0 maxpacket: 16
[  250.126634][   T24] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  250.130070][   T24] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  250.134506][   T24] usb 11-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  250.138374][   T24] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.144682][   T24] usb 11-1: config 0 descriptor??
[  250.553047][   T24] shield 0003:0955:7214.000B: unknown main item tag 0x0
[  250.555387][   T24] shield 0003:0955:7214.000B: unknown main item tag 0x0
[  250.557561][   T24] shield 0003:0955:7214.000B: unknown main item tag 0x0
[  250.559731][   T24] shield 0003:0955:7214.000B: unknown main item tag 0x0
[  250.561975][   T24] shield 0003:0955:7214.000B: unknown main item tag 0x0
[  250.566767][   T24] input: HID 0955:7214 Haptics as /devices/virtual/input/input13
[  250.592332][   T24] shield 0003:0955:7214.000B: Registered Thunderstrike controller
[  250.595553][   T24] shield 0003:0955:7214.000B: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.6-1/input0
[  250.730830][T16208] team0: No ports can be present during mode change
[  250.757966][ T5968] Bluetooth: hci3: unexpected event for opcode 0x0c7b
[  250.760444][   T61] usb 11-1: USB disconnect, device number 19
[  250.763544][ T6020] shield 0003:0955:7214.000B: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  250.767331][ T6020] shield 0003:0955:7214.000B: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  250.770741][ T6020] shield 0003:0955:7214.000B: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  250.775115][ T6020] shield 0003:0955:7214.000B: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  250.957074][T16213] SELinux: ebitmap: truncated map
[  250.962051][T16213] SELinux: failed to load policy
[  251.348249][T16231] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3701'.
[  251.351093][T16231] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3701'.
[  251.410243][T16188] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  251.413185][T16188] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  251.420083][T16188] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  251.422664][T16188] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  251.434305][T16188] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  251.436917][T16188] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  251.445382][T16188] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  251.446885][   T40] kauditd_printk_skb: 465 callbacks suppressed
[  251.446896][   T40] audit: type=1400 audit(507.376:10492): avc:  denied  { read write } for  pid=16232 comm="syz.6.3702" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  251.448025][T16188] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  251.461212][   T40] audit: type=1400 audit(507.386:10493): avc:  denied  { read write } for  pid=5953 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  251.469310][   T40] audit: type=1400 audit(507.386:10494): avc:  denied  { open } for  pid=5953 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  251.483102][   T40] audit: type=1400 audit(507.386:10495): avc:  denied  { ioctl } for  pid=5953 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  251.493159][   T40] audit: type=1400 audit(507.386:10496): avc:  denied  { read write open } for  pid=16232 comm="syz.6.3702" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  251.502987][   T40] audit: type=1400 audit(507.386:10497): avc:  denied  { ioctl } for  pid=16232 comm="syz.6.3702" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  251.517239][   T40] audit: type=1400 audit(507.396:10498): avc:  denied  { create } for  pid=16234 comm="syz.0.3703" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  251.528516][   T40] audit: type=1400 audit(507.396:10499): avc:  denied  { ioctl } for  pid=16234 comm="syz.0.3703" path="socket:[89554]" dev="sockfs" ino=89554 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  251.538102][T16236] mkiss: ax0: crc mode is auto.
[  251.539277][   T40] audit: type=1400 audit(507.396:10500): avc:  denied  { module_request } for  pid=16234 comm="syz.0.3703" kmod="netdev-netdevsim0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  251.549470][   T40] audit: type=1400 audit(507.406:10501): avc:  denied  { read write } for  pid=16232 comm="syz.6.3702" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  251.564962][T16244] xt_l2tp: unknown flags: f1
[  251.615252][T16249] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  251.632346][T16237] mkiss: ax0: crc mode is auto.
[  251.670817][T16254] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3707'.
[  251.708602][T16256] netlink: 'syz.1.3710': attribute type 32 has an invalid length.
[  251.710927][T16256] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3710'.
[  251.713679][T16256] (unnamed net_device) (uninitialized): option coupled_control: invalid value (17)
[  251.786616][T16262] binder: 16261:16262 ioctl c0306201 200000000040 returned -22
[  251.897676][T16279] netlink: 'syz.1.3719': attribute type 10 has an invalid length.
[  251.902049][T16279] team0: Cannot enslave team device to itself
[  251.913626][   T59] usb 11-1: new high-speed USB device number 20 using dummy_hcd
[  251.930215][T16281] netlink: 596 bytes leftover after parsing attributes in process `syz.1.3720'.
[  251.960359][T16283] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3721'.
[  252.042954][   T59] usb 11-1: device descriptor read/64, error -71
[  252.292942][   T59] usb 11-1: new high-speed USB device number 21 using dummy_hcd
[  252.425030][   T59] usb 11-1: device descriptor read/64, error -71
[  252.438707][T16307] netfs: Couldn't get user pages (rc=-14)
[  252.456455][T16307] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3732'.
[  252.533482][   T59] usb usb11-port1: attempt power cycle
[  252.724094][T16335] overlayfs: failed to clone upperpath
[  252.893014][   T59] usb 11-1: new high-speed USB device number 22 using dummy_hcd
[  252.913750][   T59] usb 11-1: device descriptor read/8, error -71
[  252.917470][T16347] netlink: 'syz.1.3750': attribute type 1 has an invalid length.
[  252.942340][T16354] xt_l2tp: unknown flags: f1
[  253.053009][T16361] xt_CT: You must specify a L4 protocol and not use inversions on it
[  253.162835][   T59] usb 11-1: new high-speed USB device number 23 using dummy_hcd
[  253.183990][   T59] usb 11-1: device descriptor read/8, error -71
[  253.303958][   T59] usb usb11-port1: unable to enumerate USB device
[  253.532373][T16394] xt_l2tp: unknown flags: f1
[  253.592208][T16398] team0: No ports can be present during mode change
[  253.654087][T16400] SELinux: ebitmap: truncated map
[  253.659632][T16400] SELinux: failed to load policy
[  253.743416][T16403] xt_hashlimit: size too large, truncated to 1048576
[  253.843007][T16412] binder: binder_mmap: 16410 200000ffc000-200000fff000 bad vm_flags failed -1
[  254.004541][T16424] SELinux: ebitmap: truncated map
[  254.009703][T16424] SELinux: failed to load policy
[  254.490662][T16445] team0: No ports can be present during mode change
[  254.604494][T16458] tipc: Started in network mode
[  254.606077][T16458] tipc: Node identity fe80000000000000000000000000002a, cluster identity 4711
[  254.610761][T16458] tipc: Enabled bearer <udp:syz0>, priority 10
[  254.669181][T16463] SELinux: ebitmap: truncated map
[  254.676075][T16463] SELinux: failed to load policy
[  254.727590][T16473] xt_l2tp: unknown flags: f1
[  254.730350][T16459] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  254.733585][T16459] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.800915][T16459] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  254.808726][T16459] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.818531][T16482] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1 sclass=netlink_route_socket pid=16482 comm=syz.5.3801
[  254.888293][T16459] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  254.891393][T16459] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.046349][T16493] team0: No ports can be present during mode change
[  255.073853][T16459] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  255.076776][T16459] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.139607][T16459] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  255.142642][T16459] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  255.149794][T16459] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  255.152377][T16459] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  255.164367][T16459] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  255.167110][T16459] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  255.178899][T16459] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  255.182040][T16459] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  255.298233][T16498] SELinux: ebitmap: truncated map
[  255.303684][T16498] SELinux: failed to load policy
[  255.322868][   T61] usb 11-1: new high-speed USB device number 24 using dummy_hcd
[  255.395815][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  255.398027][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  255.494721][   T61] usb 11-1: Using ep0 maxpacket: 8
[  255.498132][   T61] usb 11-1: config index 0 descriptor too short (expected 301, got 45)
[  255.500644][   T61] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  255.504254][   T61] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  255.507262][   T61] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  255.510463][   T61] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  255.514523][   T61] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  255.517484][   T61] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  255.704383][T16520] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12 sclass=netlink_route_socket pid=16520 comm=syz.5.3815
[  255.730218][   T61] usb 11-1: GET_CAPABILITIES returned 0
[  255.732453][   T61] usbtmc 11-1:16.0: can't read capabilities
[  255.732926][    T9] tipc: Node number set to 4269801514
[  255.751604][T16522] fuse: Bad value for 'group_id'
[  255.753538][T16522] fuse: Bad value for 'group_id'
[  255.813670][T16525] SELinux: ebitmap: truncated map
[  255.818591][T16525] SELinux: failed to load policy
[  255.912029][T16527] __nla_validate_parse: 20 callbacks suppressed
[  255.912039][T16527] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3819'.
[  255.938667][   T24] usb 11-1: USB disconnect, device number 24
[  255.949466][T16532] xt_l2tp: unknown flags: f1
[  255.982039][T16536] xt_policy: input policy not valid in POSTROUTING and OUTPUT
[  256.064975][T16542] netlink: 596 bytes leftover after parsing attributes in process `syz.0.3825'.
[  256.133109][T16546] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3827'.
[  256.165605][T16548] vxfs: WRONG superblock magic 00000000 at 1
[  256.168480][T16548] vxfs: WRONG superblock magic 00000000 at 8
[  256.170490][T16548] vxfs: can't find superblock.
[  256.194630][T16550] SELinux: ebitmap: truncated map
[  256.199552][T16550] SELinux: failed to load policy
[  256.231601][T16548] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3828'.
[  256.235349][T16551] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3828'.
[  256.326474][T16571] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3831'.
[  256.364627][T16569] netlink: 104 bytes leftover after parsing attributes in process `syz.5.3833'.
[  256.473335][   T40] kauditd_printk_skb: 959 callbacks suppressed
[  256.473347][   T40] audit: type=1400 audit(512.406:11461): avc:  denied  { read write } for  pid=11820 comm="syz-executor" name="loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  256.483126][   T40] audit: type=1400 audit(512.406:11462): avc:  denied  { open } for  pid=11820 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  256.490283][   T40] audit: type=1400 audit(512.406:11463): avc:  denied  { ioctl } for  pid=11820 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=664 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  256.505918][   T40] audit: type=1400 audit(512.436:11464): avc:  denied  { read write } for  pid=16579 comm="syz.5.3838" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  256.514750][   T40] audit: type=1400 audit(512.436:11465): avc:  denied  { read write open } for  pid=16579 comm="syz.5.3838" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  256.521885][   T40] audit: type=1400 audit(512.436:11466): avc:  denied  { ioctl } for  pid=16579 comm="syz.5.3838" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  256.581280][   T40] audit: type=1400 audit(512.506:11467): avc:  denied  { create } for  pid=16585 comm="syz.6.3840" anonclass=[userfaultfd] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  256.588030][   T40] audit: type=1400 audit(512.506:11468): avc:  denied  { ioctl } for  pid=16585 comm="syz.6.3840" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=90072 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  256.596052][   T40] audit: type=1400 audit(512.516:11469): avc:  denied  { read write } for  pid=10325 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  256.603339][   T40] audit: type=1400 audit(512.516:11470): avc:  denied  { open } for  pid=10325 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  257.117236][T16606] xt_l2tp: unknown flags: f1
[  257.227570][T16625] netlink: 72 bytes leftover after parsing attributes in process `syz.1.3855'.
[  257.279542][T16632] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3854'.
[  257.298832][T16634] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3859'.
[  257.451830][T16649] tc_dump_action: action bad kind
[  257.628779][T16661] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5381 sclass=netlink_route_socket pid=16661 comm=syz.1.3869
[  257.752162][T16671] team0: Unable to change to the same mode the team is in
[  257.842850][   T24] usb 11-1: new high-speed USB device number 25 using dummy_hcd
[  257.994922][   T24] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  257.998489][   T24] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  258.001543][   T24] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  258.005456][   T24] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  258.012013][T16656] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  258.016793][   T24] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  258.249401][ T6527] usb 11-1: USB disconnect, device number 25
[  258.673393][ T6122] usb 10-1: new full-speed USB device number 21 using dummy_hcd
[  258.824953][ T6122] usb 10-1: device descriptor read/64, error -71
[  258.908605][T16745] team0: Unable to change to the same mode the team is in
[  258.966362][T16749] 9p: Unknown uid 00000000004294967295
[  259.062882][ T6122] usb 10-1: new full-speed USB device number 22 using dummy_hcd
[  259.092844][ T5994] usb 11-1: new high-speed USB device number 26 using dummy_hcd
[  259.192821][ T6122] usb 10-1: device descriptor read/64, error -71
[  259.222846][ T5994] usb 11-1: device descriptor read/64, error -71
[  259.303321][ T6122] usb usb10-port1: attempt power cycle
[  259.363657][ T1148] ------------[ cut here ]------------
[  259.365401][ T1148] WARNING: CPU: 2 PID: 1148 at net/mac80211/offchannel.c:404 ieee80211_start_next_roc+0x24c/0x2c0
[  259.368739][ T1148] Modules linked in:
[  259.370368][ T1148] CPU: 2 UID: 0 PID: 1148 Comm: kworker/u32:8 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  259.375899][ T1148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  259.379288][ T1148] Workqueue: events_unbound cfg80211_wiphy_work
[  259.381262][ T1148] RIP: 0010:ieee80211_start_next_roc+0x24c/0x2c0
[  259.383500][ T1148] Code: 7b 40 e8 d7 4c dc ff 48 83 c4 10 5b 5d e9 cc c2 c1 f6 e8 c7 c2 c1 f6 48 89 df e8 9f 61 ff ff e9 40 ff ff ff e8 b5 c2 c1 f6 90 <0f> 0b 90 e9 32 ff ff ff 48 c7 c7 44 a5 a9 90 e8 40 9e 28 f7 e9 db
[  259.389564][ T1148] RSP: 0018:ffffc90006587a68 EFLAGS: 00010293
[  259.391523][ T1148] RAX: 0000000000000000 RBX: ffff888057388e40 RCX: ffffffff8afa22c6
[  259.394180][ T1148] RDX: ffff888029b20000 RSI: ffffffff8afa23fb RDI: 0000000000000001
[  259.396685][ T1148] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  259.399180][ T1148] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001
[  259.401682][ T1148] R13: ffff88805738a8c8 R14: ffff888057388e40 R15: dffffc0000000000
[  259.404272][ T1148] FS:  0000000000000000(0000) GS:ffff8880d6918000(0000) knlGS:0000000000000000
[  259.407122][ T1148] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  259.409199][ T1148] CR2: 00007ff2e8f80f98 CR3: 0000000037bdf000 CR4: 0000000000352ef0
[  259.411706][ T1148] Call Trace:
[  259.412879][ T1148]  <TASK>
[  259.413884][ T1148]  __ieee80211_scan_completed+0x4fb/0xe40
[  259.415680][ T1148]  ieee80211_scan_work+0x3f1/0x2030
[  259.417365][ T1148]  ? __pfx___mutex_lock+0x10/0x10
[  259.418987][ T1148]  ? do_raw_spin_lock+0x12c/0x2b0
[  259.420578][ T1148]  ? __pfx_ieee80211_scan_work+0x10/0x10
[  259.422373][ T1148]  cfg80211_wiphy_work+0x3df/0x550
[  259.424069][ T1148]  process_one_work+0x9cf/0x1b70
[  259.425650][ T1148]  ? __pfx_process_one_work+0x10/0x10
[  259.427357][ T1148]  ? assign_work+0x1a0/0x250
[  259.428831][ T1148]  worker_thread+0x6c8/0xf10
[  259.430334][ T1148]  ? __pfx_worker_thread+0x10/0x10
[  259.431947][ T1148]  kthread+0x3c5/0x780
[  259.433358][ T1148]  ? __pfx_kthread+0x10/0x10
[  259.434856][ T1148]  ? rcu_is_watching+0x12/0xc0
[  259.436383][ T1148]  ? __pfx_kthread+0x10/0x10
[  259.438365][ T1148]  ret_from_fork+0x5d4/0x6f0
[  259.439848][ T1148]  ? __pfx_kthread+0x10/0x10
[  259.441309][ T1148]  ret_from_fork_asm+0x1a/0x30
[  259.442991][ T1148]  </TASK>
[  259.443999][ T1148] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  259.446287][ T1148] CPU: 2 UID: 0 PID: 1148 Comm: kworker/u32:8 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  259.449508][ T1148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  259.452887][ T1148] Workqueue: events_unbound cfg80211_wiphy_work
[  259.454880][ T1148] Call Trace:
[  259.455945][ T1148]  <TASK>
[  259.456896][ T1148]  dump_stack_lvl+0x3d/0x1f0
[  259.458416][ T1148]  panic+0x71c/0x800
[  259.459668][ T1148]  ? __pfx_panic+0x10/0x10
[  259.461126][ T1148]  ? show_trace_log_lvl+0x29b/0x3e0
[  259.462802][ T1148]  ? check_panic_on_warn+0x1f/0xb0
[  259.464462][ T1148]  ? ieee80211_start_next_roc+0x24c/0x2c0
[  259.466274][ T1148]  check_panic_on_warn+0xab/0xb0
[  259.467846][ T1148]  __warn+0xf6/0x3c0
[  259.469104][ T1148]  ? ieee80211_start_next_roc+0x24c/0x2c0
[  259.470901][ T1148]  report_bug+0x3c3/0x580
[  259.472292][ T1148]  ? ieee80211_start_next_roc+0x24c/0x2c0
[  259.474124][ T1148]  handle_bug+0x184/0x210
[  259.475540][ T1148]  exc_invalid_op+0x17/0x50
[  259.476982][ T1148]  asm_exc_invalid_op+0x1a/0x20
[  259.478548][ T1148] RIP: 0010:ieee80211_start_next_roc+0x24c/0x2c0
[  259.480534][ T1148] Code: 7b 40 e8 d7 4c dc ff 48 83 c4 10 5b 5d e9 cc c2 c1 f6 e8 c7 c2 c1 f6 48 89 df e8 9f 61 ff ff e9 40 ff ff ff e8 b5 c2 c1 f6 90 <0f> 0b 90 e9 32 ff ff ff 48 c7 c7 44 a5 a9 90 e8 40 9e 28 f7 e9 db
[  259.486515][ T1148] RSP: 0018:ffffc90006587a68 EFLAGS: 00010293
[  259.488435][ T1148] RAX: 0000000000000000 RBX: ffff888057388e40 RCX: ffffffff8afa22c6
[  259.490911][ T1148] RDX: ffff888029b20000 RSI: ffffffff8afa23fb RDI: 0000000000000001
[  259.493376][ T1148] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  259.495961][ T1148] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001
[  259.498444][ T1148] R13: ffff88805738a8c8 R14: ffff888057388e40 R15: dffffc0000000000
[  259.500933][ T1148]  ? ieee80211_start_next_roc+0x116/0x2c0
[  259.503140][ T1148]  ? ieee80211_start_next_roc+0x24b/0x2c0
[  259.504949][ T1148]  ? ieee80211_start_next_roc+0x24b/0x2c0
[  259.506777][ T1148]  __ieee80211_scan_completed+0x4fb/0xe40
[  259.508563][ T1148]  ieee80211_scan_work+0x3f1/0x2030
[  259.510234][ T1148]  ? __pfx___mutex_lock+0x10/0x10
[  259.511848][ T1148]  ? do_raw_spin_lock+0x12c/0x2b0
[  259.513442][ T1148]  ? __pfx_ieee80211_scan_work+0x10/0x10
[  259.515261][ T1148]  cfg80211_wiphy_work+0x3df/0x550
[  259.516889][ T1148]  process_one_work+0x9cf/0x1b70
[  259.518477][ T1148]  ? __pfx_process_one_work+0x10/0x10
[  259.520184][ T1148]  ? assign_work+0x1a0/0x250
[  259.521676][ T1148]  worker_thread+0x6c8/0xf10
[  259.523182][ T1148]  ? __pfx_worker_thread+0x10/0x10
[  259.524804][ T1148]  kthread+0x3c5/0x780
[  259.526144][ T1148]  ? __pfx_kthread+0x10/0x10
[  259.527608][ T1148]  ? rcu_is_watching+0x12/0xc0
[  259.529144][ T1148]  ? __pfx_kthread+0x10/0x10
[  259.530630][ T1148]  ret_from_fork+0x5d4/0x6f0
[  259.532111][ T1148]  ? __pfx_kthread+0x10/0x10
[  259.533499][ T1148]  ret_from_fork_asm+0x1a/0x30
[  259.535026][ T1148]  </TASK>
[  259.536740][ T1148] Kernel Offset: disabled
[  259.538136][ T1148] Rebooting in 86400 seconds..

VM DIAGNOSIS:
09:33:47  Registers:
info registers vcpu 0

CPU#0
RAX=00000000002c1c45 RBX=0000000000000000 RCX=ffffffff8b881c69 RDX=0000000000000000
RSI=ffffffff8de31064 RDI=ffffffff8c158660 RBP=fffffbfff1c52ef0 RSP=ffffffff8e207e08
R8 =0000000000000001 R9 =ffffed100d486645 R10=ffff88806a43322b R11=0000000000000001
R12=0000000000000000 R13=ffffffff8e297780 R14=ffffffff90a97350 R15=0000000000000000
RIP=ffffffff8b8807cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6718000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ff2e8fa1f98 CR3=000000002c51e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=00000000597b1742 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000400001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000070001000504 00000a000000001e
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3746211b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3746211b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3746211b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3746211b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3746211bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3746211c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3746385488 00007f3746385480 00007f3746385478 00007f3746385450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3746eed100 00007f3746385440 00007f3746380004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3746385498 00007f3746385490 00007f3746385488 00007f3746385480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000002733cf RBX=0000000000000001 RCX=ffffffff8b881c69 RDX=0000000000000000
RSI=ffffffff8de31064 RDI=ffffffff8c158660 RBP=ffffed1003bd7488 RSP=ffffc90000177df8
R8 =0000000000000001 R9 =ffffed100d4a6645 R10=ffff88806a53322b R11=0000000000000001
R12=0000000000000001 R13=ffff88801deba440 R14=ffffffff90a97350 R15=0000000000000000
RIP=ffffffff8b8807cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6818000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000001000 CR3=00000000307f2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=3a810b1eb6134bdc 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c1fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000001df8a
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555568376ce5 00005555683768d0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555683665b4 00005555683665b0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555568378054 0000555568377b50
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0308080042ac0344 080042a403408008 00429c0312080042 9403000400429003
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4080041208000288 0800010000040806 0a010cda02b80800 43800318020042b4
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000408060a016d 8c12080044880300 00000e0806448003 0840800e05438004
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a7d2080001000004 0806060122cc0002 0007101000448004 2208000288080001
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010c100046800401 000004080606017c ea00616c62796801 ffffffffffffffff
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f3084680030c1000 4680040100000408 0606017cea000200 0700616c62796801
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff f308468003458004 04a7d20800010000 040806060122cc45
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 800404a7d2080001 0000040806060122 cc00020007101000 4480042208000288
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000043 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff855bb315 RDI=ffffffff9b0c22a0 RBP=ffffffff9b0c2260 RSP=ffffc900065873d0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000043 R14=ffffffff9b0c2260 R15=ffffffff855bb2b0
RIP=ffffffff855bb33f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6918000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ff2e8f80f98 CR3=0000000037bdf000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffff800 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb031531f70 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb030811b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb030811b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb030811b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb030811b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb030811bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb030811c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000362e63 64755f796d6d7564
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000a0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffffffff973b4fb8 RBX=000000000004d0bb RCX=00000000ffa95d65 RDX=bd78799db04b6b3c
RSI=00000000fbec57c3 RDI=ffff888038f65370 RBP=ffff888038f64880 RSP=ffffc90007cef770
R8 =bd78799db04b6b3c R9 =0000000000000001 R10=0000000000000000 R11=0000000000000001
R12=ffff888038f65370 R13=ffff888038f65370 R14=000000004b49f26e R15=0000000000000003
RIP=ffffffff819864ee RFL=00000806 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f58eb2d26c0 ffffffff 00c00000
GS =0000 ffff8880d6a18000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ff2e8fa1f98 CR3=00000000612e7000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffff800 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f58eb2cff70 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f58ea411b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f58ea411b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f58ea411b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f58ea411b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f58ea411bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f58ea411c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000352e63 64755f796d6d7564
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000