last executing test programs:

5.614711256s ago: executing program 0 (id=674):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000000300)=""/102400, 0x19000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket(0x23, 0x5, 0x5)
mknodat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x0, 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/address_bits', 0x0, 0x0)
symlinkat(&(0x7f0000000000)='./file2/file0\x00', 0xffffffffffffffff, &(0x7f0000000180)='./file2\x00')
ioctl$FAT_IOCTL_SET_ATTRIBUTES(0xffffffffffffffff, 0x40047211, &(0x7f0000000180))
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RELDISP(0xffffffffffffffff, 0x5605)
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ffb000/0x2000)=nil)
r2 = socket$inet(0x2, 0x3, 0x0)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000200)=ANY=[], 0x10)
ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f0000000080))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = syz_open_dev$radio(&(0x7f00000003c0), 0x2, 0x2)
ioctl$VIDIOC_LOG_STATUS(r3, 0x5646, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x2, 0x1, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private0}}]}, 0x60}}, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000019300)=ANY=[@ANYBLOB="020100030c00000000000000005668cd000000050005000000d6563bce5580ceaee02f0b317fbf9d8800000a0000ffffff7f0300000000000000000000ffff00000000000000000000000005000600000000000a00000000000000fc000000000000000000000000000000000000000000005a"], 0x60}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000180100002020692500000000002020207b1af8ff00000000bf1eae6efb00000007010000f8ffffffb7020076366b2100b70300000000000085000000710000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='jbd2_handle_stats\x00', r6}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x54}]}, &(0x7f0000000080)='syzkaller\x00', 0x4, 0x98, &(0x7f00000000c0)=""/152}, 0x80)
writev(r1, 0x0, 0x0)

3.535987409s ago: executing program 0 (id=686):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00'}, 0x10)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000440)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f0000000400)='%+9llu \x00'}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, r1}, 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00'}, 0x10)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b0400000000000000000200000024000480200001800700010063740000140002800800024000000011080004400000000f0900010073797a30000000000900020073797a320000000014000000110001"], 0x78}}, 0x0)

3.225972333s ago: executing program 2 (id=690):
ioperm(0x0, 0x1, 0x95d)
sched_setscheduler(0x0, 0x300000000000000, 0x0)

3.22545771s ago: executing program 2 (id=691):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r2 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$sock_int(r2, 0x1, 0x20, &(0x7f00000000c0), 0x4)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
sendmmsg(r2, &(0x7f0000008dc0)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000840)="229f9a510112e917ce61aa978699f9d866ed2b438f8523aab038d975bc9664a543912569e3e7974b8ea719572413e9ead743f3b5590e595cbc8c4712ac56109b1bfe768a918c38c5ed76f2652ddf0c65c0c268203dbb8e53eb13dfc3d481d1feb1049be0594bd836fc", 0x69}, {&(0x7f0000001e40)="02c8a72dbf45a2267bb266d0a56dfa014d7ba1182d06f9b4e174d07986cc71b71a41a41da19ffd4cf644fb3e531a8dce6b777e08f2c64fdfb7cabe1411312e8d38b341d91d54aa276dc2785d964f935bf56cf24031c099ef66f9ab4094c3e950fab75b242e456ad6f0424d000d50f2aed630e9108ad58ac27724a7890f0e7f0df08be6fa8bec74a1f3c6e4fbfb5d99668e64b3b4ca83ca6fb51affce9df480dcc77e60fc7f88bbfc714258da532e5de087b46f259ee727794505", 0xba}, {&(0x7f0000000740)="4b796d53df07ea702c66ec20493a65902a9b9a65fea32748bdb2e4ad7b028841a524520f9612b57c34d257383f6566c2bc4ba673012cca9a7075e4389f121e26b69eb2514758d5b4e5d68100be55e3a1295ddf0800000059719e01a71e2ac894edf24d6c6975e01910d37e2f0235c854d4ad3f1de901e286ffbef0e01c33adc7eabb6324e5d21b559b362b499cf805cdc6874c577eb9162d019f7291c18ddb", 0x9f}, {&(0x7f0000000a40)="262e6da9fd22009a351aeb0b4629a92442095e1f36c4b9d3779a800671b076ea8e29f893ac4ec65135bb79a91c75ca4481170ddb8c7dd8e7aeacdc60d265d4efbefb80d48d3c10b09ea76f39f61ad351ceb893e7fdf26cd887322fb01bcdab7ece435e97f0b51e6f20d53354f08c8316f0b57a5ce901a221b4068428cda5dc076f5bfec9cc49f46393c1d81c1b10dcfab7be030035541786d46a225734c86d54d13f6dd993b8c5b4046a5b49c357002c5b49b6ed9c67d94eb968970ae38abb8081f2f05d82404d27f710007be654dc009ea47d0591df909a640a68c7223e473ada1e2a4fc1a4ef1ffcac6e6f1ec1a7ad8fe4f6e48320f07b8f7721d2f5f2e7818915ffab795bcf271a24f7913249fd5512a1d085d6031cb47caaeb6491139a613f84ad7bc1d6c105cabb96bf598b3e445605a70085739da608007a8dbb4ea3577d3559e6f9e028ff54712539f622f930e52bedc1054dd5ff169753b0cdba03244b8614b815425c42c9c97f30be6bbf5954fe2d6f21c540e1e7447dbd63fe0c91067b9b74e8d67544157beb7f242a3f4295d30eb3944f146419adc0a7b90f90b9c1361fff80bd1014f716c2fcab63254ddb85af93787adf3ff9091b2ae90ed06d7f3b51a05ec8cdc66f03a3fd9a0e2555e6809617a640f232d5731288bd8c782e1035b63382c5b1e8d3a470ce8adf8aeeaedb4bf4e93219d4579cbf8d96d45f5affd73dcb9868f6717c4dcc05741e50c788fcc0fc05ebf9d1ce394ebf26203c4ac27c17b19fe6d69ae47edfb3b966c0da7e28859002c094b1e5e6ef43864347a1693bd7c25620aac9efa5f97f5a82d5f0affcef7013fa7f9a9016fe013c4be71f5e52d4eae306e80b1a01a299d977de462daaa54b7ccf16d4dc49d0f0e134564d824c91d9bde816769d60ee9a322d438da9135627f2c0bd24f1f1dbbee5f91afe3e16a89cefa4ffb30c88e7b7c18d615f72551d1cf1ec96974627c7ddc956e2f391391d9f4897ea00152d5e0bb76d24c123fa983ba200e982cdf32c70a3761594b1e54962619ba485f3ae8f2e98998630ec1335eb88994b8652f5fca596f8335c2d1bb4deadafe61e3eb3e682e49700baa4b5c4d93272b7b0da1357b08f2f9ed2b97859433c5212f1e1cfb434140220dbee3f81a8902f813ba54c4602f200a19bf9a9784734f1df915d54560d042ef0d6865f205ae2469c39411177ee7242035f05aea768cce32299be88a8314b39a0f9c12fd8abeeffba65b5056634ad74d81ecbdb2567213dd4e0907308297c1f79ac532a4d164d5b8e1f7617eeaae9d585c1c303fa4f081abf1295172ad2e0de2900292bd7adeac5a4164b5f39b472c5b2ace5860d335f4e2e5f61c657864988b036f1bea83f648878d14593eac10ac3ff2b3cbf6e80111845fefdb872519be2b9ab68c098deb276ffbd33b455493e295247660c12b5a998ae429d15f2a708bc450fe1dcaf2d598cefe0285adecf91b50480f5f55623a1003926b37e11f1beb58584524f8fff842e84e864f45772c18d313110a473036d421754df151ad1e17cee4f76449e61794dc6372d1ce1ede26488efaec32bb8c3d9b818870d16eb0cc3098c5bc5aaac54c6b4f1d30c47ce5187836275d8e07791c4999ee495b9209a6d4e5746506b2827b6efbac77fb68f6dc3c1e3e82beda337f7257ec47097482cbfc534bdb2730e4a87b450289418661dc8fd8853fd16bab4d2d0bf18edf9132b500be0578bd1890275230ba831b738bba0d63383839866277bfe1632342e1cef4d51a83e92e76140cf3c36f0d976574ab6e0f7c1105c8882b1290b461a6c16d79f89c49c842804a13f30f46a64f3bbfeeaafd649ff7cf7c4438d040d8665963db676287b8d31f8238b820619dfefb467d44a366a9cb2f19a29b47896f422f00b47bd1e444690fb9db9c86949dbbab1c915d81c6b2b234b11606c05eb139fc584e31f2da5729c5e2b7a89932cdfbea61bab95c304b509e7ff67b796c087415cd0726271a2f78070a613003eeb2a98ab213b084800be98a01a07474d0e1d8cbbbd5d9a47430886d0ead43166903b5f0a8b301ecae3641b40f16d2173d8d0c563a0bdc1beb72ba904ba6e3786c57f22a687036ed6bb7df2f3c6d755b37eb15b3358354d2a5ed09ae5c2b69a752e20de17f2750e14ac38e2ef7c00e1d24e1bab573673b60a2398be464d27c8746b80cfdedb894c6e4baab78753d09f91bac1eb3c44ae21a194f23ee0803c15d297f7486f5a3ce1b2e7e90e4210698a80bf8c308a97217fb2f7037a64679ae7e82ceb3e611a5e8f242a57fb3a944bfc657f3c82c36d0f24baf91b597dd80040945fc9e2317a89641522fb963e5e64a03c113dd07c5ba030e71394b48d16834f1c8b18fa02e901a4731615faeeb2be67df5406fc7a280f8b7f8d9e2012eee03e746af00b6f20464d480a6ec149a9a2edb874a7276bcd94bc79908e106f06a65ef47f209f17eb2320379797a33ac9540d1c1c7e9fbc14d65ab52727a51aa9b6921d323540c8f7191836554b74d2dde8355fe5c5690bd7b7aacbc61f462d76305009666682c81f33fc0a08395372191ee6e0626493fa2fe769a3f91d33bafc76dc48c271faa6dd1be2a4252c59665c7f534706c51438bdabe42045ce4b4e114da07a5935e47b41781840c3538bfd1690a62d0399021600a4232ca8525b9d79c44066ca72f781ae1de66db975121dc065054e1bc55f20e8f1b2dfa353f4b9c9e16aba1c00f23850a5d79a84c5854fb6cafce510ae09054aa71fe9b9a71198a87a28b1bb0fb7c68f002cf7abb0e932725ae5298809b590523f73f3bba7ccecc332351a97324d42176257c02f997510d6bd3d1f7cc17c6f8a4e94c32e1808494ec993f846b42ac0f81c1e5b74c0c7bf21f103a13bbff1fe2692615c3fdb1c5ea70e4ec69a45cff43bf5828d30e15f389a98a329da2cca2286e1f2b336b13e0ee151a5ab5f840b1bfe9ebd2520ec10fa9152295af91ea553dc2a454075bf121b1cf7f48168e5dd06adcbbf915828bdc74ff21fee95058d1aeff7823bd9829ad824de0512aed377dda04d126ed660d9af6e1956fa28b5ae3c30cfbe7a5ff756925ad5379d456334b95ccaa399c9b1960423536229474d8b8959d058ce9dff2aecea9db329d04f0f2464d9cc4a40b5e1a5e3a5e0a7ed3ed225d5b3ba2612042dc133b3ef44f36b3b301ab75496ee51e62b50646f475868afa9e3474a6a55e3268b9326d9c83876c466712fc1abd92906ba08b5a9e7fe432e52d0839cabf995d2b5a060666d91462e114473da6ccb0025c60194c7c26dc2b09c89f76f121c405166def98c23497944b645a718894bd9ec0862ee6dc129ff401ff15953e54dc606bab0246f5c9039e69d6df5609b8cea92ef035256da46d1f0b4be579786b09f5534f8a0fc865518cead4eeb028a742df5b3f70abf677741cda6c409f10c8b091ad6254a61196c235c8c571274e4a7b85db212ad1d3e635a9bf26541eae9681400a851c3cebb5f2cc8cc0271101c2228fc407d91cbb7c2d26510c88705749c9c535b6a230baa19e5bf8042bb21749b2521ee2638010a09538b2321cc96f7e9e20baf0cbb1f8b474aa0004fbbe2ce30da33dd56900bea76427c0e0e91187a52eac1af35306764f7b509bd52fd7b485ce2c74510858aee7746d78150b767961498ede9f937af5ef5bb05c8ffe0b89eac915128231b1809e5c6e9cf04da6a46a153233ad2f6e6b47653bf383c10b4c8a5148627acb3c5aa1b81370c2fce51a077a94839fe5218f11f16c62baa40e5c76810d7f0cc9cc9d7b2203a548e419e383bb33bd6049cb51eeb825ccc45822f12f99c03ac294fa55a37127638b69c53eaa3bad47aa9062e8523406048bd24d2431125dc4f9b71b164c1ec47b7c484adea9fbc01201f82a3798a39b0055edbf5dbd5764bc174c01e3460c821ef500136816cf2b87bc35ed5476d3e0ce7edc46660a980e72e036ee466d8d3d4fad0a88a7fcd5ac71e7b0ab9dc398666e0e8dadb58303390a45416d754a2c9dadf710d238d4c8aa3faf9ffca7d59b276f139a54d56e7fac33e4d687e07c6a464e80f494b0d82d31de44efde35080aa2d5bfec585436fa80e2bef7bdee5f7a5a690bcd9bbad5d77ca2688122056f14a927c80093a1ca09c6f4acec51585b3d0b34f231a530107ba76b6e959c01350f7d67ffca6caea1228bb9ec5715edf1e2ca24e2699687cd8ff57b4d099ab36941dafe32d1738e0d436aad8cdffe1755613f51fa054ab83e2675ad4ef97f7077c8f9a96a2c70f2217946ff92bdeea1abb58e0750f4fe881e5ef4d700cd5d98b57bc547902c4e5de3acaa4ca29e09c39a109307129d8aece75a92839f2d22a4492a1a0d66ce0c4aca8ca9a44b047c17baf9f972f67ee4f78f4838ffbc860c0f13a624a1d9a9282beb26e78ca33fb09d3d0e4d697becf9d3739f3aacff96cf4c65267a4b3a4f1187ce8b6b173745ae85a93fcb93bec1640d72e3158445c57e0d59b0163f88d3721189025bddaab1201979dc8cbe334e7a04eb48e8568827d230a40b898b230dcb9009258e29ad10163a5d93ac6db5a66ed6c3e35628e94ac25d433dd65df5eda610d915e2703679544c7b7cc29dfb17fb7af8a1d6fa92ae5f1018c1c3fa060851b1494ba572670b96faa27b6e428d741ff4ad5526b7495e0fcd59d172425f83e61e11ee99c76c0b230109dcdf50b1656af89990e444ed15766c0790252ee96fb1bc0f451f9c3aaa436eb31da58645b19cb6369aaeab9c753c14bb560a4f50a5dca24ee3f4403bbe69420b95b519a1ed114eeb16aea3c2809427712ddccc45c243046b82022ad3eded3cd9a2662745b2e71e6d6b0d52c7d2e3622e1f9dda116c86e700bbfd5ac5a34ac839e76e0d406b1c56ea23420b6d976905a4a13ba0488813d884977ccd3d10084eaaea5a1a8fb7bea3cd3af3d3198b552e34f0795c4a0dfaa5d154c61520a72911d7ad96e22b91a88bf855b85af1688ec35114a48aae9ec9b584bf9673e6e3f6ba4d23f6c63bbb38723ce0a70408031ccbfa1fd36e0cfa22b117291f030e5f4c01b0240654abf60bb3ae0759d6c0f6be8c42d4db123234e3783bf43e7114eb2cdbdd46f21f242427efe274e25e85ba2abb27bcb70fb2b6a3ce2f8d8a31598b16e7ca395d5b444f2dfaf143cb051d99571ecdd0ed4545f03af4eb85634131dc542e480434ff59c0bf3a5efe05a147f6922666e3afdcf5520db1ab071f485733ea9e6c179284590664163f39bba9e0c1b25e6e5e9937a67886f77dd1bfe54b1e34a603f20ab78d426b9767bf347c540c5c7d7525258459a14f8d3f38423b28b8010e5df084381dbe1b7d98e6d91bea9ea482c1eddd2fc59db3219e5433631c2172089fedd2e7c91893b50e7d162eabb924aac5c6af19c3f75b4197cb0a54242e3d6a6fa67d89047bc0e6a47d51f85dd0bc8f3f96820c325206d4c99087805025432a091572c63a2dbfdc1a02fec12f73fb459da131081785e5612b97f7596a2ca4cd26960f4473c2bb51134634c39f695870c94c8bbcdf3a6d4fd99b0b2700309a50fb9d319eaaa0e8d485dfda4066b8386bce7d231e6f1b7cbe7f6e8a304b8b6555340c69f59e9208444c59a2bbcd9358a5e46666e33a25a8a2fa3389f7685a13cdf423784b14b7c7621e2c758275df45a5c3e0ce4089d056c71979da186a4139261feb5c7b4740bfacf83c8b1a0e0c2a2f2dfbcaa594a4a52c3986419ebf2556ee6a2feb2d8ad1f49d54d05f910a752726a9db8e2b7fecf1184", 0x1000}, {&(0x7f0000001a40)="34ea407df951fd13ed172ab187c9bae13df795c626ad8f2c796ff21a24b6a92729f86e2843cc678ad9deaee0f3a81eb88f8dee8944ead901154f3e3348bb086d5b5262e486984677cb35ff82241d29c0f5c76e8aedd09f40c3e9683d28a22594322db6b0894cf9137a2daee0b472361cc2dcebced35c6bf63c39e1924c8c440ff3b938405a2c09c474286fb6f3351cd1fea66368d01fb1c1cac325027d1d68b0c36e47b1", 0xa4}, {&(0x7f0000001b00)="1ab3e3b5fbca2f7717db75ed00"/27, 0x1b}, {&(0x7f0000001b40)="9f8d02801390aa5b51f1b221efc67a009cfc841cd54f26aa40784e25df8aa8646b07013ac08bad455e53022607173b54d035791a611d9727f04c59abf3f1b3b28a4931b7ddb8468c770f79e4f9b217cf4caa43ad0110fda50ced6d6dbe087ba62ff011075b27cba8914767d014409b47209f63e4b410c7c536de4f7aa6ad7888211956939e8b8e1a191ef228ed9c0e40f189e2b740ea19fed5c36c02d89e148455a92f8880f8d285fdc2ab713ef6a9a9f26dbd389b9bfb79bdeb3c1f160f8b5f2b89ce981736a2327c785606336d911b6e3c8b3dd27e826f72aa", 0xda}, {&(0x7f0000001c40)="f236d13013f8fef6783637e06aa1a659f55445f6afe90e5af97fa44f1ec58d81b00647ec070236f24243282c1c1d46f9735cc0acd173f338df77a044f5f66bd7441abbc73b556d3d5994eb456c34275a69e8eecbd93ba4954bbb517efdc987c843f67d8c54e7c596d83e79ef4974b79f4d4df2bf6e51cebc4929dd2a19961df88c141585135eb7b9fbdf806dbd8d4e2f60fa5a63da495b51adea630dab33592583273d46d3781103fee514", 0xab}, {&(0x7f0000002440)="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", 0x315}, {&(0x7f0000001d40)="28a4d17f0d300cf3ce9ce29a0b18d65ca5bfac8eaa998e3f1055fa69c805aca4262b6307d7828b5e4e0e3f4415422a6bf0fd61d4674fbee24a4b2b12afdcab29ced89a40003abec91526725910ba97ed539fec87910fe33f2f154ca55dc4cdeb96c5ee33acc64884b7d949f8a9d356fcfd72410a0246b317382d7def5992bef64916e268f2c8d331b3b3e1e3585f676c91880eea67191e3819208dc766b704ff59a9951bcbb369ab33bd1efec6e3dd6311a677feb17f7378fee9f2536dcaa1e744d8ba", 0xc3}, {&(0x7f0000000500)="fa6fa00d0b9a85dded9cd968c1a9f47a9b14ae9ba32ee6f4bbe2b112d93d98190b4478ddf656e8a5f3fd1b977b22d27f8ac866636e2ca3bf75d936ceba1e", 0x3e}], 0xb}}], 0x1, 0x48010)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1fe8ffff0000000000003b00000008000300", @ANYRES32=r3, @ANYBLOB="21003300d0800000080211000000080211000001505050505050000000000000", @ANYRES8], 0x40}}, 0x0)
r4 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ifreq(r6, 0x89a3, &(0x7f0000000000)={'bridge0\x00', @ifru_addrs=@l2={0x1f, 0x0, @fixed}})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REGISTER_BEACONS(r6, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYRESDEC=r7, @ANYRES16=r7, @ANYBLOB="040028530f00fbdbdf2555000000080001005000670ba28478c601041a10d00359795937286b2b0cd5a6d621e21c63810000000000000040004f0000009fb1058f45693499f96b65747bba6b29e8307e5b1bbfe883b52afbf5573855d9f1eb451c6bb0af9eab99c1526346f9116f06f43cff846f28a7608802e9cdebe47e3f92435d91913644320d1ad3a1f71b7419d6a7fca112e207f6f1d9abb183e6c433f80a801b"], 0x28}, 0x1, 0x0, 0x0, 0x4000010}, 0xc854)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_COALESCE(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000000)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r10, @ANYBLOB="0c0099000000006ef81e61000800020000000000"], 0x30}}, 0x0)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000080)={&(0x7f0000001fc0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="00022dbd7000fbdbdf251300000008000300", @ANYRES32=r10, @ANYBLOB="05001301000000006bf13f5f86ec0f5ed55fc8523bf66f8c4799b566882ab7e17e967051dd586d113e18bb79f998981f3031384331da12d006196c77e5f021dcf1f36a0814e4370e075a8ebeb04fb743d74810f4623a697ca356e46d8bca37ae4965d80a3da4d55a4d54823a5a53bbe21a3eb62561a3435466fcf448136ed389e8dd0630aa8c12b26345b94f7dc80f5e0cf532101e0283417d6c8ef7007b2bc35d498521b223e948c83c0af3091ee10bf606d7257fac76dd4534f884fb8e3b7e2db538832bf1b3b246d98569ddf3945ab5e67e7dec9334dc7d4015398ea189884d8b9528d33fe2ebaf74b1b428e56093af5c722f"], 0x24}, 0x1, 0x0, 0x0, 0x4041}, 0x40090)
sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x200a000}, 0xc, &(0x7f0000000540)={&(0x7f0000000240)={0x38, r1, 0x300, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0xffffff31, 0x7e}}}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x40c0}, 0x800)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(r5, &(0x7f0000000480)={&(0x7f0000000380), 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, r11, 0x1}, 0x14}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0xb0, r11, 0x4, 0x70bd27, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010101}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x6}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}]}, @MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_ADDR={0x20, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0xa}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private0}]}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x8000}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x38, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast2}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x46}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}]}, 0xb0}}, 0x10004890)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000600)={0x0, 0xd3, "96021509841aa04151ccb93d59a3f1249d32f4e145f2ec9e0f29b96b78165682eabce6a6c7add4f7847f03736f5de703be31046bb616b3d829ed09438bf457b423aa1d8be360fdc52278dd4db92cb66902030a66b74e9881f49f2902f40d5ab85ffdd75f10467ed0f341294ee21374cf42ffe7a1661e75464feeb2e43411c372cbed1ade51c7dd9fe1314b6fcb0cc6881551d2dcf18c7e0a84497d354abc5fe0a340aa2c099265b2423a16b5d95ee7d31d427801d01225cbe87fcb94406b389ea3c9779e68efc1ff6bc9a5485f7e92be705959"}, &(0x7f0000000700)=0xdb)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f00000005c0)={'ip6gre0\x00', &(0x7f0000000140)={'ip6tnl0\x00', <r12=>0x0, 0x4, 0x2, 0x1, 0x9, 0x10, @dev={0xfe, 0x80, '\x00', 0xb}, @loopback, 0x40, 0x80, 0x80000000, 0x8000}})
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x18, 0xd540, 0xf87, 0x3, 0x2a, r4, 0x9, '\x00', r12, 0xffffffffffffffff, 0x4, 0x3, 0x3}, 0x48)
r13 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs/binder1\x00', 0x0, 0x0)
r14 = epoll_create(0x5)
epoll_ctl$EPOLL_CTL_ADD(r14, 0x1, r13, &(0x7f00000000c0))
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r13, 0x40046208, 0x0)

3.112303745s ago: executing program 2 (id=692):
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x4)
syz_usbip_server_init(0x1)
newfstatat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280), 0x800)
r1 = add_key$keyring(&(0x7f00000004c0), &(0x7f0000000500)={'syz', 0x2}, 0x0, 0x0, 0x0)
r2 = add_key(&(0x7f00000003c0)='dns_resolver\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000080)="00000102", 0xfffff, r1)
keyctl$describe(0x6, r2, &(0x7f0000000380)=""/46, 0x2e)
keyctl$get_persistent(0x16, 0x0, 0x0)
personality(0x400000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107842, 0x0)
r5 = openat(r4, &(0x7f0000000080)='./file1\x00', 0x0, 0x0)
add_key$user(&(0x7f0000000480), &(0x7f0000000580)={'syz', 0x1}, &(0x7f00000005c0)="034a91a2554a1cf19a05a3db4b5f6cb3099facf013fa95cc64439dff5dd75e4e04de145939911bf7275db17738c17d763097d9e07c290db2ce1d38a7c607b2e095182fe0468c85c34327f219d43236d1f35312d99b69a2b70b3b979bca0db5120ff788d22125bf436fbdcac215ae6330f7c1459531187af0", 0x78, 0x0)
openat$cgroup_devices(r4, &(0x7f00000003c0)='devices.deny\x00', 0x2, 0x0)
fcntl$setlease(r3, 0x400, 0x2)
fsetxattr$trusted_overlay_redirect(r5, &(0x7f0000000040), 0x0, 0x0, 0x0)
fremovexattr(r5, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00')
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000800)=ANY=[@ANYRES32=r0, @ANYRES8=r1, @ANYBLOB="05fcffffff11000000400600c17e5f2f108ad98bb57d45292c33e195d17b722243fce9", @ANYBLOB="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", @ANYRESOCT=r5], 0x24}, 0x1, 0x0, 0x0, 0x100008d0}, 0x44000)
sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="280000004f3db150e6becfa41b01cd07d6cfc323a4484349d4006e7b41dad00b2bd17e7039a311182cdedac90dfbed6428e51304038b14e8531c47e007f1765f75dc001e8d43c99491bd286f7bd5ff525b65e3225064687987bbbd860c547669c767219da04734dd7bd75c5c768c579366", @ANYRES16=r6, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r7, @ANYBLOB="0a0034000202020202020000"], 0x28}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="48f4ff00", @ANYRES32=r5, @ANYRES64=r0, @ANYRES32=r9, @ANYBLOB="2c003300d0000000ffffffffffff08021100000050505050505000000f037206030303030303750400000000"], 0x48}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD_XDP(0x21, &(0x7f00000001c0)={0x12, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x90)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r8)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r3, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYRESDEC=r3], 0x34}, 0x1, 0x0, 0x0, 0x24040005}, 0x44094)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x6000003, 0x42031, 0xffffffffffffffff, 0x0)

2.958563576s ago: executing program 0 (id=693):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$GTP_CMD_DELPDP(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14}, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000080)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000480)=@newqdisc={0x54, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}}, {0x4}}]}]}, 0x54}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0xff9e, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x2c, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x0, 0xffff}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x2}]}, 0x2c}}, 0x0)

2.9583119s ago: executing program 0 (id=694):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000000300)=""/102400, 0x19000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket(0x23, 0x5, 0x5)
mknodat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x0, 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/address_bits', 0x0, 0x0)
symlinkat(&(0x7f0000000000)='./file2/file0\x00', 0xffffffffffffffff, &(0x7f0000000180)='./file2\x00')
ioctl$FAT_IOCTL_SET_ATTRIBUTES(0xffffffffffffffff, 0x40047211, &(0x7f0000000180))
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RELDISP(0xffffffffffffffff, 0x5605)
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ffb000/0x2000)=nil)
r2 = socket$inet(0x2, 0x0, 0x0)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000200)=ANY=[], 0x10)
ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f0000000080))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = syz_open_dev$radio(&(0x7f00000003c0), 0x2, 0x2)
ioctl$VIDIOC_LOG_STATUS(r3, 0x5646, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x2, 0x1, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private0}}]}, 0x60}}, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000019300)=ANY=[@ANYBLOB="020100030c00000000000000005668cd000000050005000000d6563bce5580ceaee02f0b317fbf9d8800000a0000ffffff7f0300000000000000000000ffff00000000000000000000000005000600000000000a00000000000000fc000000000000000000000000000000000000000000005a"], 0x60}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000180100002020692500000000002020207b1af8ff00000000bf1eae6efb00000007010000f8ffffffb7020076366b2100b70300000000000085000000710000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='jbd2_handle_stats\x00', r6}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x54}]}, &(0x7f0000000080)='syzkaller\x00', 0x4, 0x98, &(0x7f00000000c0)=""/152}, 0x80)
writev(r1, 0x0, 0x0)

2.490062568s ago: executing program 2 (id=695):
socket$vsock_stream(0x28, 0x1, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000100)=0x4)
openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0xb00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, &(0x7f0000000080)={0x3ff}, 0x0, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
socket$kcm(0x29, 0x2, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), 0xffffffffffffffff)

2.005542723s ago: executing program 1 (id=698):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000540)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000680)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000030000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0xfea7)

1.956866947s ago: executing program 1 (id=699):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mount$tmpfs(0x7000000, &(0x7f0000000280)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB=','])

1.906036028s ago: executing program 1 (id=700):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @remote}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYRES16=r0], 0x18}, 0x44)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000900)=ANY=[@ANYBLOB="b8000000", @ANYRES16=r2, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r3, @ANYBLOB="99003300800000000802110000010802110000005050505050500000000000020000000000001450000100000001000000000000000000055204ae00b1c63dd7b491c177437106ee993b2fea6481428d6527ca2e7de1304562418971140f333d67d150364234b3364c3f2cdfc554649b0a1b937587cb6010de5a210a89207e0c48d9eab32923619bbf252d25030000002a01003c040003a1040000009c404f215f56e5a5e6fbb5"], 0xb8}}, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000480)=@mangle={'mangle\x00', 0x44, 0x6, 0x418, 0x2b0, 0x210, 0x2b0, 0x2b0, 0x98, 0x380, 0x380, 0x380, 0x380, 0x380, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@unspec=@connlimit={{0x40}}]}, @ECN={0x28}}, {{@ip={@loopback, @multicast2, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mac={{0x30}, {@multicast}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x478)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f00000000c0)={{0x2, 0x4e23, @empty}, {0x1, @broadcast}, 0x8, {0x2, 0x4e21, @broadcast}, 'dummy0\x00'})
r5 = socket$inet6(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r5, 0x29, 0x1a, &(0x7f0000000040)=0x9, 0x4)
setsockopt$inet6_mreq(r5, 0x29, 0x1d, &(0x7f0000000200)={@empty}, 0x14)
syz_emit_ethernet(0x4e, &(0x7f00000004c0)=ANY=[@ANYBLOB="0180c20000000180c200000086dd6000af0000183a00fe8100000000000000000000000000bbff02000000000000000000000000000188009078000000000000000000000000a353c1e0b652782a"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002680)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00'}, 0x90)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
sync()
r6 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r6, 0x40045532, &(0x7f0000000100))
r7 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r7, 0x80045017, 0x0)
r8 = syz_open_dev$sndpcmp(&(0x7f0000000040), 0x0, 0xa2465)
ioctl$SNDRV_PCM_IOCTL_REWIND(r8, 0xc0884113, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0x6, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000300007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

1.795964013s ago: executing program 1 (id=701):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00'}, 0x10)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000440)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f0000000400)='%+9llu \x00'}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, r1}, 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00'}, 0x10)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b0400000000000000000200000024000480200001800700010063740000140002800800024000000011080004400000000f0900010073797a30000000000900020073797a320000000014000000110001"], 0x78}}, 0x0)

1.378660805s ago: executing program 2 (id=704):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x4}}}, {0x28, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CMP_OP={0x8}, @NFTA_CMP_DATA={0x8, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4}]}, @NFTA_CMP_SREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xe0}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000440)='GPL\x00'}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={0x0, r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0)
symlinkat(&(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)
write$nbd(r3, &(0x7f0000000240)={0x1000000, 0x0, 0x0, 0x0, 0x200000, "82b0cfc4337965941538be02000000000000000000007400a391793ba7f40000000000fdf700"/48}, 0x40)
r4 = socket$netlink(0x10, 0x3, 0x4)
io_setup(0x7f, &(0x7f0000000100)=<r5=>0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
io_destroy(r5)
write(r4, &(0x7f0000005c00)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27)
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000001400)={{{@in=@local, @in=@multicast2}}, {{@in6}, 0x0, @in=@initdev}}, &(0x7f0000000000)=0xe8)
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$UHID_CREATE(r6, &(0x7f0000002380)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000000c0)=""/33, 0x21}}, 0x120)
write$UHID_DESTROY(r6, &(0x7f0000000100), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r7 = syz_open_dev$sg(&(0x7f0000000080), 0x8000000000000001, 0x400)
ioctl$SG_GET_RESERVED_SIZE(r7, 0x2272, &(0x7f0000000140))
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r8}, 0x10)
write$UHID_INPUT(r6, &(0x7f00000003c0)={0x8, {"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", 0x1000}}, 0x1006)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x76, 0x0, 0x0)

1.182301773s ago: executing program 1 (id=705):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f0000000000)=@nullb, &(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='xfs\x00', 0x390, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00'}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_usb_connect$hid(0xf63067478e218e8, 0x36, &(0x7f00000000c0)=ANY=[], 0x0)
ioctl$SNAPSHOT_GET_IMAGE_SIZE(r2, 0x8008330e, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'veth0_vlan\x00', <r4=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r1, r4, 0x25, 0x0, @void}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000280)={'veth0_vlan\x00'})
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000640)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4}, 0x90)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00'}, 0x80)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r7}, 0x10)
r9 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r8}, 0x8)
close(r9)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x22, 0x0, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000ff89cd7ee7f4f1c1df7a6f79"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
r11 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000001c0)='rpcgss_oid_to_mech\x00', r10}, 0x10)
r12 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r11}, 0x8)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000040)={r12, r6, 0x0, r12}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

888.9451ms ago: executing program 2 (id=708):
sendmsg$key(0xffffffffffffffff, 0x0, 0x44000014)
r0 = gettid()
sched_setaffinity(r0, 0x8, &(0x7f0000000280)=0x8)
r1 = syz_open_dev$MSR(&(0x7f0000000080), 0x1, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
chdir(0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
eventfd2(0x0, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
syz_open_dev$video(&(0x7f00000000c0), 0x9, 0x0)
rseq(&(0x7f0000000180)={0x0, 0x0, 0x0, 0x2}, 0x20, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000000)={0xfc, 0xa00}, 0x0, 0x0, 0x0, 0x0)

888.345041ms ago: executing program 3 (id=709):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000000)=0x100, 0x4)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = fsopen(&(0x7f00000001c0)='tmpfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
fsmount(r2, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r2, 0x7, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000007100000000000000000a20000000000a01010000000700000000010000000900010073797a30000000002c000000ba0a01"], 0xb0}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
r4 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r4, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
writev(0xffffffffffffffff, &(0x7f0000000300), 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000180)={&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000000300)=""/207, 0xcf, 0x0, &(0x7f0000000200)=""/91, 0x5b}, &(0x7f0000000400)=0x40)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000580), 0x4)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x10012, r5, 0x0)
setsockopt$inet_mreqsrc(r4, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f0000000500)=@filename='./file0\x00', &(0x7f00000002c0)='./file0\x00', &(0x7f0000000540)='exfat\x00', 0x40, 0x0)
write$binfmt_script(r3, 0x0, 0x0)

566.175554ms ago: executing program 3 (id=710):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r2 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$sock_int(r2, 0x1, 0x20, &(0x7f00000000c0), 0x4)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
sendmmsg(r2, &(0x7f0000008dc0)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000840)="229f9a510112e917ce61aa978699f9d866ed2b438f8523aab038d975bc9664a543912569e3e7974b8ea719572413e9ead743f3b5590e595cbc8c4712ac56109b1bfe768a918c38c5ed76f2652ddf0c65c0c268203dbb8e53eb13dfc3d481d1feb1049be0594bd836fc", 0x69}, {&(0x7f0000001e40)="02c8a72dbf45a2267bb266d0a56dfa014d7ba1182d06f9b4e174d07986cc71b71a41a41da19ffd4cf644fb3e531a8dce6b777e08f2c64fdfb7cabe1411312e8d38b341d91d54aa276dc2785d964f935bf56cf24031c099ef66f9ab4094c3e950fab75b242e456ad6f0424d000d50f2aed630e9108ad58ac27724a7890f0e7f0df08be6fa8bec74a1f3c6e4fbfb5d99668e64b3b4ca83ca6fb51affce9df480dcc77e60fc7f88bbfc714258da532e5de087b46f259ee727794505", 0xba}, {&(0x7f0000000740)="4b796d53df07ea702c66ec20493a65902a9b9a65fea32748bdb2e4ad7b028841a524520f9612b57c34d257383f6566c2bc4ba673012cca9a7075e4389f121e26b69eb2514758d5b4e5d68100be55e3a1295ddf0800000059719e01a71e2ac894edf24d6c6975e01910d37e2f0235c854d4ad3f1de901e286ffbef0e01c33adc7eabb6324e5d21b559b362b499cf805cdc6874c577eb9162d019f7291c18ddb", 0x9f}, {&(0x7f0000000a40)="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", 0x1000}, {&(0x7f0000001a40)="34ea407df951fd13ed172ab187c9bae13df795c626ad8f2c796ff21a24b6a92729f86e2843cc678ad9deaee0f3a81eb88f8dee8944ead901154f3e3348bb086d5b5262e486984677cb35ff82241d29c0f5c76e8aedd09f40c3e9683d28a22594322db6b0894cf9137a2daee0b472361cc2dcebced35c6bf63c39e1924c8c440ff3b938405a2c09c474286fb6f3351cd1fea66368d01fb1c1cac325027d1d68b0c36e47b1", 0xa4}, {&(0x7f0000001b00)="1ab3e3b5fbca2f7717db75ed00"/27, 0x1b}, {&(0x7f0000001b40)="9f8d02801390aa5b51f1b221efc67a009cfc841cd54f26aa40784e25df8aa8646b07013ac08bad455e53022607173b54d035791a611d9727f04c59abf3f1b3b28a4931b7ddb8468c770f79e4f9b217cf4caa43ad0110fda50ced6d6dbe087ba62ff011075b27cba8914767d014409b47209f63e4b410c7c536de4f7aa6ad7888211956939e8b8e1a191ef228ed9c0e40f189e2b740ea19fed5c36c02d89e148455a92f8880f8d285fdc2ab713ef6a9a9f26dbd389b9bfb79bdeb3c1f160f8b5f2b89ce981736a2327c785606336d911b6e3c8b3dd27e826f72aa", 0xda}, {&(0x7f0000001c40)="f236d13013f8fef6783637e06aa1a659f55445f6afe90e5af97fa44f1ec58d81b00647ec070236f24243282c1c1d46f9735cc0acd173f338df77a044f5f66bd7441abbc73b556d3d5994eb456c34275a69e8eecbd93ba4954bbb517efdc987c843f67d8c54e7c596d83e79ef4974b79f4d4df2bf6e51cebc4929dd2a19961df88c141585135eb7b9fbdf806dbd8d4e2f60fa5a63da495b51adea630dab33592583273d46d3781103fee514cb30eef6cd1917154003d055", 0xb7}, {&(0x7f0000002440)="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", 0x315}, {&(0x7f0000001d40)="28a4d17f0d300cf3ce9ce29a0b18d65ca5bfac8eaa998e3f1055fa69c805aca4262b6307d7828b5e4e0e3f4415422a6bf0fd61d4674fbee24a4b2b12afdcab29ced89a40003abec91526725910ba97ed539fec87910fe33f2f154ca55dc4cdeb96c5ee33acc64884b7d949f8a9d356fcfd72410a0246b317382d7def5992bef64916e268f2c8d331b3b3e1e3585f676c91880eea67191e3819208dc766b704ff59a9951bcbb369ab33bd1efec6e3dd6311a677feb17f7378fee9f2536dcaa1e744d8ba", 0xc3}, {&(0x7f0000000500)="fa6fa00d0b9a85dded9cd968c1a9f47a9b14ae9ba32ee6f4bbe2b112d93d98190b4478ddf656e8a5f3fd1b977b22d27f8ac866636e2ca3bf75d936ceba1e", 0x3e}], 0xb}}], 0x1, 0x48010)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1fe8ffff0000000000003b00000008000300", @ANYRES32=r3, @ANYBLOB="21003300d0800000080211000000080211000001505050505050000000000000", @ANYRES8], 0x40}}, 0x0)
r4 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ifreq(r6, 0x89a3, &(0x7f0000000000)={'bridge0\x00', @ifru_addrs=@l2={0x1f, 0x0, @fixed}})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REGISTER_BEACONS(r6, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYRESDEC=r7, @ANYRES16=r7, @ANYBLOB="040028530f00fbdbdf2555000000080001005000670ba28478c601041a10d00359795937286b2b0cd5a6d621e21c63810000000000000040004f0000009fb1058f45693499f96b65747bba6b29e8307e5b1bbfe883b52afbf5573855d9f1eb451c6bb0af9eab99c1526346f9116f06f43cff846f28a7608802e9cdebe47e3f92435d91913644320d1ad3a1f71b7419d6a7fca112e207f6f1d9abb183e6c433f80a801b"], 0x28}, 0x1, 0x0, 0x0, 0x4000010}, 0xc854)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_COALESCE(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000000)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r10, @ANYBLOB="0c0099000000006ef81e61000800020000000000"], 0x30}}, 0x0)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000080)={&(0x7f0000001fc0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="00022dbd7000fbdbdf251300000008000300", @ANYRES32=r10, @ANYBLOB="05001301000000006bf13f5f86ec0f5ed55fc8523bf66f8c4799b566882ab7e17e967051dd586d113e18bb79f998981f3031384331da12d006196c77e5f021dcf1f36a0814e4370e075a8ebeb04fb743d74810f4623a697ca356e46d8bca37ae4965d80a3da4d55a4d54823a5a53bbe21a3eb62561a3435466fcf448136ed389e8dd0630aa8c12b26345b94f7dc80f5e0cf532101e0283417d6c8ef7007b2bc35d498521b223e948c83c0af3091ee10bf606d7257fac76dd4534f884fb8e3b7e2db538832bf1b3b246d98569ddf3945ab5e67e7dec9334dc7d4015398ea189884d8b9528d33fe2ebaf74b1b428e56093af5c722f"], 0x24}, 0x1, 0x0, 0x0, 0x4041}, 0x40090)
sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x200a000}, 0xc, &(0x7f0000000540)={&(0x7f0000000240)={0x38, r1, 0x300, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0xffffff31, 0x7e}}}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x40c0}, 0x800)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(r5, &(0x7f0000000480)={&(0x7f0000000380), 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, r11, 0x1}, 0x14}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0xb0, r11, 0x4, 0x70bd27, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010101}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x6}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}]}, @MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_ADDR={0x20, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0xa}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private0}]}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x8000}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x38, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast2}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x46}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}]}, 0xb0}}, 0x10004890)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000600)={0x0, 0xd3, "96021509841aa04151ccb93d59a3f1249d32f4e145f2ec9e0f29b96b78165682eabce6a6c7add4f7847f03736f5de703be31046bb616b3d829ed09438bf457b423aa1d8be360fdc52278dd4db92cb66902030a66b74e9881f49f2902f40d5ab85ffdd75f10467ed0f341294ee21374cf42ffe7a1661e75464feeb2e43411c372cbed1ade51c7dd9fe1314b6fcb0cc6881551d2dcf18c7e0a84497d354abc5fe0a340aa2c099265b2423a16b5d95ee7d31d427801d01225cbe87fcb94406b389ea3c9779e68efc1ff6bc9a5485f7e92be705959"}, &(0x7f0000000700)=0xdb)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f00000005c0)={'ip6gre0\x00', &(0x7f0000000140)={'ip6tnl0\x00', <r12=>0x0, 0x4, 0x2, 0x1, 0x9, 0x10, @dev={0xfe, 0x80, '\x00', 0xb}, @loopback, 0x40, 0x80, 0x80000000, 0x8000}})
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x18, 0xd540, 0xf87, 0x3, 0x2a, r4, 0x9, '\x00', r12, 0xffffffffffffffff, 0x4, 0x3, 0x3}, 0x48)
r13 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs/binder1\x00', 0x0, 0x0)
r14 = epoll_create(0x5)
epoll_ctl$EPOLL_CTL_ADD(r14, 0x1, r13, &(0x7f00000000c0))
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r13, 0x40046208, 0x0)

381.261969ms ago: executing program 3 (id=711):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000040)={0x14, r1, 0x607, 0x0, 0x0, {0x27}}, 0x14}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, &(0x7f0000000200))

274.267583ms ago: executing program 0 (id=712):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000800)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$UI_SET_PROPBIT(r0, 0x80086301, 0x0)

273.722387ms ago: executing program 3 (id=713):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
r1 = accept4$phonet_pipe(0xffffffffffffffff, 0x0, 0x0, 0x0)
getsockopt$PNPIPE_IFINDEX(r1, 0x113, 0x2, 0x0, &(0x7f00000006c0))
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'team0\x00', <r2=>0x0})
r3 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @dev={0xfe, 0x80, '\x00', 0x25}}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="000000000000000000100000040000000800030011"], 0x54}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="180100000061cddd3fd22000000000000000000000850000000500007404aa383f63a4759d56ca760f6ee64397f59257134b7b1af8ff00000000bfa100000000000007010000f8ff"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r4 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r4, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @multicast2}}, 0x24)
sendmmsg(r4, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001880)=[{{0x0, 0x2, 0x0}}], 0xf000, 0x10002, 0x0)
setsockopt$inet6_IPV6_RTHDR(r4, 0x29, 0x39, 0x0, 0x48)

273.323995ms ago: executing program 1 (id=714):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00'}, 0x10)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000440)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f0000000400)='%+9llu \x00'}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, r1}, 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x9, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000018410000fdffffff0000000000000000b9051800fcffffff183026c70109d15779900000000000009510b5b76b00000000000000"], &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r3}, 0x10)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b0400000000000000000200000024000480200001800700010063740000140002800800024000000011080004400000000f0900010073797a30000000000900020073797a320000000014000000110001"], 0x78}}, 0x0)

136.350669ms ago: executing program 3 (id=715):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f0000000280)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000240)={&(0x7f0000000940)=ANY=[@ANYRES16=r0], 0x164}}, 0x4) (async)
r1 = getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}, 0x90) (async)
syz_clone3(&(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = syz_io_uring_setup(0x0, &(0x7f0000000080), 0x0, 0x0) (async)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90324fc602f00001550000100053582c137153e370248018000f017", 0x2b}], 0x1}, 0x0) (async)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, &(0x7f0000000400)={0x44, &(0x7f0000000040)=ANY=[@ANYBLOB="00010c"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0xb, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa10000000000000701000002feffffb702000008000000b70300000000000085000000ca0000009500000000000000c65978346e13ea257f4bf5ca8412f71ed538ebba119bb4b2cdc90bb71e8a87e9c405a6731f2210ea3bed54bd0712ea863dbf44ba21e02b135e5c18ab3d1a6758ec34d5d6bc19ef498cbdcc0f8cbaee0cd0f202a2a993f888d6df0e5b9da3ab21d62eb0"], &(0x7f0000000580)='syzkaller\x00', 0x6}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) (async)
move_pages(r1, 0x39, &(0x7f00000006c0)=[&(0x7f0000878000/0x1000)=nil], &(0x7f0000000380)=[0x1], 0xfffffffffffffffe, 0x1) (async)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0)) (async)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a) (async)
socket$packet(0x11, 0x3, 0x300) (async)
io_uring_setup(0x7d4, &(0x7f0000000700)={0x0, 0xabfd, 0x40, 0x0, 0x0, 0x0, r2})
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x41, 0x0) (async)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) (async)
listen(r4, 0x0) (async)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000000000093000040"]) (async)
ioctl$KVM_RUN(r7, 0xae80, 0x0) (async)
mount$9p_tcp(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=tcp,port=0x0000000000004e22'])
syz_open_dev$vim2m(&(0x7f0000000080), 0x0, 0x2)

135.87483ms ago: executing program 0 (id=716):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x4}}}, {0x28, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CMP_OP={0x8}, @NFTA_CMP_DATA={0x8, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4}]}, @NFTA_CMP_SREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xe0}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000440)='GPL\x00'}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={0x0, r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0)
symlinkat(&(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)
write$nbd(r3, &(0x7f0000000240)={0x1000000, 0x0, 0x0, 0x0, 0x200000, "82b0cfc4337965941538be02000000000000000000007400a391793ba7f40000000000fdf700"/48}, 0x40)
r4 = socket$netlink(0x10, 0x3, 0x4)
io_setup(0x7f, &(0x7f0000000100)=<r5=>0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
io_destroy(r5)
write(r4, &(0x7f0000005c00)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27)
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000001400)={{{@in=@local, @in=@multicast2}}, {{@in6}, 0x0, @in=@initdev}}, &(0x7f0000000000)=0xe8)
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$UHID_CREATE(r6, &(0x7f0000002380)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000000c0)=""/33, 0x21}}, 0x120)
write$UHID_DESTROY(r6, &(0x7f0000000100), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r7 = syz_open_dev$sg(&(0x7f0000000080), 0x8000000000000001, 0x400)
ioctl$SG_GET_RESERVED_SIZE(r7, 0x2272, &(0x7f0000000140))
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r8}, 0x10)
write$UHID_INPUT(r6, &(0x7f00000003c0)={0x8, {"af0017fef6cac234b620d307e5e6c2c606e2f2ab320e7a3ca8796870d47be5a4cf5b1b53f50a743e751a3a0f7413c438796811aebd9a070f86a26f8a2d1b4a5518fae4726564bbb6293b9e267f2ed01c33bf7d187214734803de91c7a7692829c56a072854eb8a30e653fee4329b85dfe562a2f353a5eb507a09cb11bdb0ef1df3461bb13759b84fb73a290a5347a0882d4d9e02924c259e6ff9bf04dc8f11f89601e4de62a41d0344451576bc98cc94e50acadde707c23b477344c7a48b83d6a5de4dee3c9da1abb64f8cbd75811e5996d03c6ce39c2ed9ec329ae8ee870bd69e012863cb99702873ac4846de7929c803e2a98061bb313b036b98a8d23f0dbd559459d53bca6c2c9e101d809a6ba00247266918a7585b3a2f10aedee5c8bab8a0669b0d2f784f021a719e868e055b2a9974ee4e0e3baae8e4e5e42f576e2be3b0bb1c104fd6129e4909722912e4a873655ebaf23fa02795746e0e03afc991987ef7e10695c681180ca633549890bb8c6876ceaa77568544b03c7814d84219a1e6a84b2978b365d05770e9a9b27a295419df35b3125f2ca5276a3eabc42a3a0411c81ffa02095050c4c82f43f3381ce7f35711c1fc83550f7770b697ee77f0a5f037d98bfe8dff1932f1beabf0cdd34fe3ad87ba4b499ef99d593623b7f74e927072e4e86da41161498093c8ea32be9dd6cb171b96b2f64c97b47c6e19c295eb8ddfef41b8c6d70422e55330e2c943fe3771ae5d35121fb5649d5f92c7b69000b79300cb13771757608851c05e6534c74d5d9339a213faa1a23194db81d45efdc961cd559f24e9b4d6990b6b2b804a61827985ca044fd10ef7777eb842975757747c5cb1bd02d4deb54876f3e97290987a70a214140f022991751708cf7d358be884cac3b4eb94fa5feb4bec289c7b9309f85609c47fc2eb73c6fa16c4fdd0414efe519a17ce1556e1c591bdda95476dc38fe1920e7552542f558fd6ac1b61e152fb8066ac87b43c627655e8337356d508932b2d31e9dd7923fd037b5ce0eac695fe5ebf1303995634c6638a6a577f7ce00f7577359342805b09856f57fc2a559fbba97abfb3b63a91ac2a3806e6567bf657bcd7487a011e7766adf8bb659fe9dd855febfbd6bdd505f15bd513e60f26d1f3ffe3674251048afa704048693cd3c976c15ed2133c6d4dea777354ab9c62df72e22f10d060ec1f6f42deaa393e9ff5db4fc194707b701f14f81924e29a9e7ede940309183c04ee63265cbca32b30fe157ed28c64121d9b2ffca60e2aa8ce00d7d2d8ff5fd479df431aa25a53802c4f2608a6dfd61d0bf5e5f00cfb6c7035a009f1913a3f638ac5efc841876b2ec664a4957658908d5efa62a9286668a8ca5820a5f7bc32cb6479db8a2d2b4d153d7d54bca3e096ba34e90ca6b6f6863504a5cbb1711f40a9c0c0737228b5a55c9044ff09778085e307498a4c79a874e31eadb07ca6fe15c22dab474418b0f68c47b2d0e3ba644794331035129ec68fb483966540ab359ad05a2e3b1412cc61797f98b5dc6d8878a39a841ec25b720707139fe1915711c95fd322c9589136ea972a41ceb39af5e8d582d2739f24a8ee387610a43984d3b426e00d7fa6c0cfb4e351327ea9a87b21709d8c3f2484c2f06b788e924f20e68605b44e2f0a7e7a6c277230cd2c72fce914aa13ebae4623a5b402a5d5f00cf5b0e51583739e32a452c4e4b1fcbaaf930f1d18d23ce3b2b31803a83707b9aa865bb91fd4126a79a69cf3914e23e45ae3512d2b50c4c7b2c9a6e11f36d45d8123a3822dfbe4236bb3c6c78303f765c93f35978a8651314dbdfd131f1f259218ecd2d9125dd960f9950a5636192e17292db25225a30130788c07cc94dadefd14a441c1b73114b16e7fb0554a81f52453aecef0052192c67f6a4cde5a8e0d2c1101cbf9fea30a8e1a579d5ca6ce495b510ac704f0804c025f778c658d82fea5fc15f6074ce9806c5b8a48d815fb7090355b918a2bd16955b9a6dfdbb445316211eacc25fb97fc806deefec434ef50f1223322f4539ec6a35f2917cf06e412fc3d435dd6341a55c9597f6145aadef596857d712005297b8cc2153ef142c34600c4c7d0140b7cf998a056de4802beb5d9450e9878544ed1b878a34e6af36821fbe3b9b8cb0d6e6b6722054ad230463f7a3c5841af7713ecf01fd723fc688df488a008a3bf5c7a4f93b8b8ecc378c4b59ceaa87931d4740701c7613dd4ae57bf26d45cf916cb002d2e5bc5a1454ae99782deab5e76abc4d8caa7f4b4b5fb1633674394588eb07894ba7b25c6dd22599885ad97e4d24388f083368e3bbb0a574bef5967cdf4b038c564b25504d4185e65b80944aa2a1782fb1f32ea3fcb6f7a3b1bc5cf2bebb967e67b211b205e746a229fea8a8e67aa195a58f374f511631580a702eb92f6161cf657d949c04211d598acf12518dfa9a7b9797148b7d8554f187a6a3aa4512e84d03b5c77f89023c16cee7ce5386da04aa17e5b91c157d7940ed6c0cc134cc784594f33e5cbc09ac09594f8cccd63def91db18ac8ba4c7805374c6fed3d5632eab11e95729c08ad6448a31cb025bc92985e0146d0bb95fa7f7d5f2245629806e6df80a76354cf23d13b1909268a24678fc8e0f802a6c17b1e4618a5812d8c728fe7437d6ebc37b8f37bfda7792be21502a9e1787838e6fd48ebb0718071f62f1ce9e91840e572d5386e751c0cbaf397b1693df1ba2299aef65b7a5d4b06615b2c336a9ee3408a4c649e8fc993bf310d4c2d65e66efa7aed829634a0b5848c0bb4a775af90d09be0ac71d2b2c9f08376631f55cf66af4ec50f7a95c2e72c65c829141403b920ccd3c6df4dd5fbc5cf2297da8ae23b53acd655237ed8490b34059dcb0e6c5955f54627863009e2c166ea8d28b9794bb5d1a5acbdd2d855a3017d33c27730ec0d652b6e9cbdc9e10e4380ae777434d463decbf3650c6bedc430388c31fe572519be53b059c36ebbbeb7e7d79f5823f6cd483745cd1fd2c2f19793d2f7eae642d5d707ba988370e730a5a05e80061ba16a24c5ad7b1c064a38885d64956299643cb0aab2e5d659ebb1466b361eb04a561593c9945e42d2162285f3c5dfc50292ff6c8246783a26bbc1b12534f6db5e52993ba080cce223212270a9a106a98bad4b1cd4850744cc8588c715fb37de04eb4bdaf32c9cca3a80bea0bc3bc8d2abd43ac8ac2bc784d96c1244e7c44846ff42848f470fe1a41c01e77f370913fca6039ac716f8f50d0966b0b54e60f5be82616bb90ac7ce881c9cd9d883e1e50103398dc6a63e59aef7f1354ca936ac34bfe8c463b443e806f86d323dc850ead3eb2c64879f38e2e1f2a45b657bd90a8d8f187cf0536286198f8207853b4127d23deeb76808ccd9c6eca025cf90b18382b2a18f4ddc3e060871ae3e638f517d1678b7a918890d5098cd2b06cb21bb65dc3255f936302712081bbb84b72d4bb7c5139f25396504ad68685c3a8a15bba6d8c7a9537a8ac85f1ebb534833410d77744a1b8a512e1c7d735b4f04377252837e22c3934965c03678c43d7cb7e4fee54f1fe95d211261a1b8d7f47356522579b98ccd6de9bf08a525cfdfce6d701b2ee62a3fccd1f4e69eab38dc32f4cb656ffa6aa07e8749ad2d96c38df3bb69f6d5a54e52fd4c657c9a81520c20503ba236b568b38853d521d31c962456fe76bd4bb0eee0b598299390be01bd3d55d5a2dacd0e3ed93bddc2b7bb2afdd8600247e776e6e40dc317d9928ffc50e9f21364fba01ef2c05c15c59fb21c8fa2a2035328b46ec006babb79fbd0e97ff1bf1106c6b1eadc95750cee1abc85915c3f5752b9bc014c134de689ea80c3da726c8fcca3dbbce1e75c7e3324802a5af3ce5c0da68c1b9c805b34234cd005ecf8e892c2149315b5404ffeaa3884be94d7629b08b41ce25e743dfb4b968f647584e7ee02af2fa5347d26b571a473cff97a661b31ea7b4c8b3aef303743cbe19090f4a266f78d39c37b6c52c0c8c2cc5a4cdc96d10efaa7b6bc520d51f2f91b4b5408b7a0d4d9909a2df0780147d40110addc8c0374e289a27b357e9da5ac88a8683dc3be044af37270fca70a38adc0e83c745ee89e80d0a806f033d2d0c022dbb226c1f80569d7529d188ae661ae2cd5286cd3f965fedaacb8679b6e7497a352db4cd9b087e89c3323bafda47ff33d1cbdba0ffbd9b1de4f6435aeeed00c60e0f6d81961df49d57e3c67af6ca37a02ca60aeadb69fe0ca734af02958fa10214f29847fe08f592daaea5d993b2bbd7e444f883a0fd88d4abfcdca5d4f4305afc55ff81d01e5e772db94a4650d53b24be82db133a6c8c2cfca6de22b63d90dd009849022c10ab225a005c4b88f56fe1f29c4d2011ada41a9c315a989d0332411d192bf2e195030bd3aff221344cab637970338079cf0f4c2eebb40521aba1ec97467ff0205bd01aff68c3a3d24c2748b5716d859f1a52f8abf4464e246b57089f3dd08d9cde208204e30509d6069944d15961b1c969e54bcd59e03952568b4bb4c25640f09aeceb162ff8e886e8b0abbf950510a256075c951cb4c4e8e6281b17b71925ceac8e8f0b78a41f865a9fa093841f91f01d7c62ee341544041fc9fcbebbc7412a956bdd38ad05fb6c90a169fc4f22dd7a895fd193365a6d6950b153c7003618f00c1c269e035d9b9770bc8970c04b64bd7bee63386297b2e508e168cbd54bc7ed68184a4b627ec164fe40467c4d8e19dc94e254fa5fb3ae8045f5ceb1812569415adf0f6e9131454c154f1b9e9332ec8e336338f3278fb6da9d42e2cbb7ff23bb6cc9629401471b1f68d891844db8231ed81098ceae6bc7280f0a3051c4bb83f507fdff3052c9724ab0882cad6cf74d9e8c78abfdda13ea18f5a84dfa21e4ebcf1702feeeac51605dcf969c46829b16884ec38712d977d2c2d1a14b3233713100f7053e8394e7357863c2269eef0d07afa6b9991f7a7bd14c826cbd6bc5f03f2256baf19ccfccc3aa1f02875f458906d78a730698cf16bce2a60ad687b10ccdd5f9032313cee634a55894831f92a135c69b29f11ce16e3c789846ba98ee51e182b20936570edd8e7d1cb90e1ec6c02731db64bf8eea75144105f0653914857c22d237bd03902957513c1dea03ba04d666ca2f8afc3b3706397c704b619e2512fadcaa90f23d6de09c15c1f165a6db29803799b61962240d58b045e939cd5fe443ba0a6a991ae9e4cc97f0fcdc9ee4dd21a9128a208afb56758d01a545d95fe8d291985c5be00b4826b46911ce3da26eaade5331daa2a1730c0fac3de2c672cb725859b2ffd67d5a1eea2a66bc9fc9005b63efa132d9d30b90cf7c51547f6ca9e5d038ce8c147451e7d5d73e16dd87c9a90792884b7cf91f1a355ab759a5867991c465993691a7ad959351ba6b9cd1af13dd55983fd893df1add73bc4a38b87fe2551a3569b100e4971848da4eb88051ff0f24e76a6c42d1ae470967c9e607eabc9db89d6c94e5d1a4e26ffca46be2000572b3caf35dfd92b8029fe4fa49c304d272e0cd8e49d6ce86e605e11bbd02e28ed94fe2f389f052f97d7e9dc6a16eb8819871e528983398fb98f6c226c7d72c89361ef4ba4cc97a2ab256b28df208363800b8712b61c0377bc4a8904878b5de1c45da8b83dba6e5e5799724d9cd515dcb7430e73321cdc0ebe4a1208baae9819382e118615bada569192a7c2b7823ce08495310040c4c2dbc28fc29ce5bbcfb266e7c36a8900e8d578023c16ffbb956d0abf68124aced56deb0d1a149e4cc0ec8554b7862ae647a8", 0x1000}}, 0x1006)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x76, 0x0, 0x0)

0s ago: executing program 3 (id=717):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0xc00, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c"])

kernel console output (not intermixed with test programs):

 116.914433][   T56] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  116.918579][   T56] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  116.922216][   T56] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  116.926037][   T56] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  116.931057][   T56] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  116.937111][   T56] hid-generic 0000:0000:0000.000A: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  116.979013][ T5276] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  116.983158][ T5276] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  116.989830][ T5276] usb 8-1: New USB device found, idVendor=0497, idProduct=c001, bcdDevice=cd.43
[  116.993889][ T5276] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  116.997228][ T5276] usb 8-1: Product: syz
[  117.000354][ T5276] usb 8-1: Manufacturer: syz
[  117.002448][ T5276] usb 8-1: SerialNumber: syz
[  117.007023][ T5276] usb 8-1: config 0 descriptor??
[  117.522480][ T6228] input: syz1 as /devices/virtual/input/input8
[  117.587197][ T5202] udevd[5202]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  117.644254][ T6230] xt_TPROXY: Can be used only with -p tcp or -p udp
[  117.907739][ T4634] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  117.920302][ T4634] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  117.925572][ T4634] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  117.933719][ T4634] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  117.938395][ T4634] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  117.943315][ T4634] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  118.140460][ T6236] chnl_net:caif_netlink_parms(): no params data found
[  118.312605][   T79] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.348917][ T6252] xt_TPROXY: Can be used only with -p tcp or -p udp
[  118.445234][   T79] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.459792][ T5208] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  118.467252][ T5208] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  118.468040][ T6236] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.473790][ T6236] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.474024][ T5208] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  118.476934][ T6236] bridge_slave_0: entered allmulticast mode
[  118.484409][ T6236] bridge_slave_0: entered promiscuous mode
[  118.484991][ T5208] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  118.490064][ T6236] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.491135][ T5208] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  118.493733][ T6236] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.497735][ T5208] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  118.500398][ T6236] bridge_slave_1: entered allmulticast mode
[  118.501482][ T6236] bridge_slave_1: entered promiscuous mode
[  118.632153][   T79] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.645924][ T6256] dvmrp0: entered allmulticast mode
[  118.651144][ T6257] dvmrp0: left allmulticast mode
[  118.662597][ T6257] FAULT_INJECTION: forcing a failure.
[  118.662597][ T6257] name failslab, interval 1, probability 0, space 0, times 0
[  118.667815][ T6257] CPU: 2 PID: 6257 Comm: syz.2.255 Not tainted 6.10.0-syzkaller #0
[  118.671285][ T6257] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  118.676048][ T6257] Call Trace:
[  118.677568][ T6257]  <TASK>
[  118.678911][ T6257]  dump_stack_lvl+0x16c/0x1f0
[  118.681014][ T6257]  should_fail_ex+0x497/0x5b0
[  118.683235][ T6257]  should_failslab+0x9/0x20
[  118.685219][ T6257]  kmem_cache_alloc_node_noprof+0x71/0x310
[  118.687877][ T6257]  ? __alloc_skb+0x2b1/0x380
[  118.689974][ T6257]  ? __pfx_lock_release+0x10/0x10
[  118.692306][ T6257]  __alloc_skb+0x2b1/0x380
[  118.694377][ T6257]  ? __pfx___alloc_skb+0x10/0x10
[  118.696578][ T6257]  ? rtnl_prop_list_size+0x220/0x2d0
[  118.698942][ T6257]  ? if_nlmsg_size+0x606/0x9f0
[  118.700973][ T6257]  rtmsg_ifinfo_build_skb+0x81/0x280
[  118.703308][ T6257]  unregister_netdevice_many_notify+0x953/0x19f0
[  118.705942][ T6257]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  118.708808][ T6257]  mroute_clean_tables+0x27a/0xb10
[  118.710969][ T6257]  ? __pfx_mroute_clean_tables+0x10/0x10
[  118.713267][ T6257]  ? cap_capable+0x1cf/0x240
[  118.715179][ T6257]  ? __might_fault+0xe3/0x190
[  118.717105][ T6257]  ip_mroute_setsockopt+0x9f0/0x1440
[  118.719248][ T6257]  ? __pfx_ip_mroute_setsockopt+0x10/0x10
[  118.721485][ T6257]  ? avc_has_perm_noaudit+0x119/0x3a0
[  118.723807][ T6257]  ? __lock_acquire+0xc5d/0x3b30
[  118.725944][ T6257]  ? avc_has_perm_noaudit+0x143/0x3a0
[  118.728120][ T6257]  do_ip_setsockopt+0x2e8/0x38b0
[  118.730177][ T6257]  ? __pfx_avc_has_perm+0x10/0x10
[  118.732355][ T6257]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  118.734808][ T6257]  ? sock_has_perm+0x25a/0x2f0
[  118.736897][ T6257]  ? __pfx_sock_has_perm+0x10/0x10
[  118.739224][ T6257]  ? selinux_netlbl_socket_setsockopt+0x142/0x440
[  118.742109][ T6257]  ip_setsockopt+0x59/0xf0
[  118.744134][ T6257]  raw_setsockopt+0xb8/0x290
[  118.746220][ T6257]  ? __pfx_raw_setsockopt+0x10/0x10
[  118.748455][ T6257]  ? selinux_socket_setsockopt+0x6a/0x80
[  118.750860][ T6257]  ? sock_common_setsockopt+0x2e/0xf0
[  118.753180][ T6257]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  118.755860][ T6257]  do_sock_setsockopt+0x222/0x480
[  118.758111][ T6257]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  118.760581][ T6257]  ? __fget_light+0x173/0x210
[  118.762697][ T6257]  __sys_setsockopt+0x1a4/0x270
[  118.764721][ T6257]  ? __pfx___sys_setsockopt+0x10/0x10
[  118.766849][ T6257]  ? fput+0x32/0x390
[  118.768541][ T6257]  ? ksys_write+0x1ab/0x260
[  118.770538][ T6257]  ? __pfx_ksys_write+0x10/0x10
[  118.772431][ T6257]  __x64_sys_setsockopt+0xbd/0x160
[  118.774720][ T6257]  ? do_syscall_64+0x91/0x250
[  118.776603][ T6257]  ? lockdep_hardirqs_on+0x7c/0x110
[  118.778865][ T6257]  do_syscall_64+0xcd/0x250
[  118.780828][ T6257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.783390][ T6257] RIP: 0033:0x7ff83a575bd9
[  118.785367][ T6257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.793795][ T6257] RSP: 002b:00007ff83b2e9048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  118.797473][ T6257] RAX: ffffffffffffffda RBX: 00007ff83a704038 RCX: 00007ff83a575bd9
[  118.800886][ T6257] RDX: 00000000000000d4 RSI: 0000000000000000 RDI: 0000000000000003
[  118.804489][ T6257] RBP: 00007ff83b2e90a0 R08: 0000000000000004 R09: 0000000000000000
[  118.808009][ T6257] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000002
[  118.811466][ T6257] R13: 000000000000006e R14: 00007ff83a704038 R15: 00007ffd2bbe0388
[  118.814915][ T6257]  </TASK>
[  118.826843][ T6236] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  118.834458][ T6236] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  118.861847][   T79] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.959780][ T6236] team0: Port device team_slave_0 added
[  118.984047][ T6236] team0: Port device team_slave_1 added
[  119.129224][ T6236] batman_adv: batadv0: Adding interface: batadv_slave_0
[  119.132288][ T6236] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.146487][ T6236] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  119.152868][ T6236] batman_adv: batadv0: Adding interface: batadv_slave_1
[  119.177268][ T6236] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.186954][ T6236] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  119.431065][ T6236] hsr_slave_0: entered promiscuous mode
[  119.435244][ T6236] hsr_slave_1: entered promiscuous mode
[  119.444633][ T6236] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  119.449594][ T6236] Cannot create hsr debugfs directory
[  119.471227][ T6253] chnl_net:caif_netlink_parms(): no params data found
[  119.479680][   T79] bridge_slave_0: left allmulticast mode
[  119.482143][   T79] bridge_slave_0: left promiscuous mode
[  119.485618][   T79] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.542008][  T827] usb 8-1: USB disconnect, device number 10
[  119.570635][   T39] kauditd_printk_skb: 20 callbacks suppressed
[  119.570649][   T39] audit: type=1400 audit(1721074501.519:407): avc:  denied  { create } for  pid=6266 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  119.585965][   T39] audit: type=1400 audit(1721074501.519:408): avc:  denied  { write } for  pid=6266 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.eth2.link" dev="tmpfs" ino=2702 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  119.627173][   T39] audit: type=1400 audit(1721074501.519:409): avc:  denied  { append } for  pid=6266 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" dev="tmpfs" ino=2702 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  119.697162][   T39] audit: type=1400 audit(1721074501.639:410): avc:  denied  { unlink } for  pid=6273 comm="rm" name="resolv.conf.eth2.link" dev="tmpfs" ino=2702 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  119.766702][ T6279] xt_TPROXY: Can be used only with -p tcp or -p udp
[  119.988094][ T4634] Bluetooth: hci4: command tx timeout
[  120.133421][   T79] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  120.144004][   T79] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  120.157232][   T79] bond0 (unregistering): Released all slaves
[  120.548116][ T4634] Bluetooth: hci2: command tx timeout
[  120.720104][ T6253] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.723539][ T6253] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.726733][ T6253] bridge_slave_0: entered allmulticast mode
[  120.730848][ T6253] bridge_slave_0: entered promiscuous mode
[  120.796883][   T39] audit: type=1400 audit(1721074502.739:411): avc:  denied  { setopt } for  pid=6294 comm="syz.3.263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  120.812624][ T6253] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.815934][ T6253] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.830056][ T6253] bridge_slave_1: entered allmulticast mode
[  120.833470][ T6253] bridge_slave_1: entered promiscuous mode
[  120.858161][   T39] audit: type=1326 audit(1721074502.799:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6294 comm="syz.3.263" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb8a4575bd9 code=0x0
[  120.923340][   T79] hsr_slave_0: left promiscuous mode
[  120.927097][   T79] hsr_slave_1: left promiscuous mode
[  120.942606][   T79] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  120.946106][   T79] batman_adv: batadv0: Removing interface: batadv_slave_0
[  120.952330][   T79] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  120.955932][   T79] batman_adv: batadv0: Removing interface: batadv_slave_1
[  120.997666][   T79] veth1_macvtap: left promiscuous mode
[  121.001107][   T79] veth0_macvtap: left promiscuous mode
[  121.004790][   T79] veth1_vlan: left promiscuous mode
[  121.007464][   T79] veth0_vlan: left promiscuous mode
[  121.855133][ T6310] xt_TPROXY: Can be used only with -p tcp or -p udp
[  122.076673][ T4634] Bluetooth: hci4: command tx timeout
[  122.123866][   T79] team0 (unregistering): Port device team_slave_1 removed
[  122.207477][   T79] team0 (unregistering): Port device team_slave_0 removed
[  122.638999][ T4634] Bluetooth: hci2: command tx timeout
[  123.145949][ T6253] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  123.186067][ T6253] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  123.343082][ T6253] team0: Port device team_slave_0 added
[  123.352401][ T6253] team0: Port device team_slave_1 added
[  123.618511][ T6253] batman_adv: batadv0: Adding interface: batadv_slave_0
[  123.621402][ T6253] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  123.648824][ T6253] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  123.655928][ T6253] batman_adv: batadv0: Adding interface: batadv_slave_1
[  123.663115][ T6253] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  123.686281][ T6253] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  123.867057][ T6253] hsr_slave_0: entered promiscuous mode
[  123.872565][ T6253] hsr_slave_1: entered promiscuous mode
[  123.876167][ T6253] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  123.879391][ T6253] Cannot create hsr debugfs directory
[  124.109962][   T79] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.149186][ T6236] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  124.156753][ T6236] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  124.158296][ T4634] Bluetooth: hci4: command tx timeout
[  124.165028][ T6236] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  124.210808][ T6236] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  124.245489][   T79] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.342890][   T79] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.454284][   T79] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.560290][ T6236] 8021q: adding VLAN 0 to HW filter on device bond0
[  124.578835][ T6236] 8021q: adding VLAN 0 to HW filter on device team0
[  124.595600][  T826] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.598476][  T826] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.611606][  T826] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.615290][  T826] bridge0: port 2(bridge_slave_1) entered forwarding state
[  124.694176][ T6236] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  124.714242][ T4634] Bluetooth: hci2: command tx timeout
[  124.810231][   T79] bridge_slave_0: left allmulticast mode
[  124.812963][   T79] bridge_slave_0: left promiscuous mode
[  124.816002][   T79] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.978099][   T56] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  125.168317][   T56] usb 7-1: Using ep0 maxpacket: 8
[  125.175265][   T56] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  125.179684][   T56] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  125.183808][   T56] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 31016, setting to 1024
[  125.188765][   T56] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  125.193607][   T56] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  125.198966][   T56] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  125.202936][   T56] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.291671][   T79] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  125.297984][   T79] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  125.305203][   T79] bond0 (unregistering): Released all slaves
[  125.430697][   T56] usb 7-1: GET_CAPABILITIES returned 0
[  125.432988][   T56] usbtmc 7-1:16.0: can't read capabilities
[  125.500349][ T6236] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.593938][ T6236] veth0_vlan: entered promiscuous mode
[  125.605467][ T6236] veth1_vlan: entered promiscuous mode
[  125.636709][   T56] usb 7-1: USB disconnect, device number 5
[  125.718737][ T6236] veth0_macvtap: entered promiscuous mode
[  125.725274][ T6236] veth1_macvtap: entered promiscuous mode
[  125.780712][   T79] hsr_slave_0: left promiscuous mode
[  125.783888][   T79] hsr_slave_1: left promiscuous mode
[  125.787274][   T79] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  125.792585][   T79] batman_adv: batadv0: Removing interface: batadv_slave_0
[  125.796189][   T79] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  125.800169][   T79] batman_adv: batadv0: Removing interface: batadv_slave_1
[  125.846816][   T79] veth1_macvtap: left promiscuous mode
[  125.849678][   T79] veth0_macvtap: left promiscuous mode
[  125.852352][   T79] veth1_vlan: left promiscuous mode
[  125.854807][   T79] veth0_vlan: left promiscuous mode
[  126.237981][ T4634] Bluetooth: hci4: command tx timeout
[  126.406800][   T39] audit: type=1400 audit(1721074508.349:413): avc:  denied  { watch watch_reads } for  pid=6379 comm="syz.2.273" path="/syzcgroup/unified/syz2" dev="cgroup2" ino=40 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  126.424361][   T39] audit: type=1400 audit(1721074508.369:414): avc:  denied  { setopt } for  pid=6379 comm="syz.2.273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  126.798068][ T4634] Bluetooth: hci2: command tx timeout
[  126.916875][   T79] team0 (unregistering): Port device team_slave_1 removed
[  127.009990][   T79] team0 (unregistering): Port device team_slave_0 removed
[  127.726703][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  127.731010][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.735368][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  127.739542][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.744925][ T6236] batman_adv: batadv0: Interface activated: batadv_slave_0
[  127.786739][ T6253] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  127.804524][ T6253] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  127.825022][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  127.830530][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.834804][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  127.854989][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.861662][ T6236] batman_adv: batadv0: Interface activated: batadv_slave_1
[  127.867322][ T6236] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  127.872242][ T6236] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  127.881553][ T6236] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  127.885577][ T6236] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  127.894415][ T6253] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  127.914255][ T6253] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  127.927376][ T6392] xt_TPROXY: Can be used only with -p tcp or -p udp
[  127.927549][ T6390] xt_TPROXY: Can be used only with -p tcp or -p udp
[  128.145194][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  128.151425][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  128.199607][ T6253] 8021q: adding VLAN 0 to HW filter on device bond0
[  128.218876][ T6253] 8021q: adding VLAN 0 to HW filter on device team0
[  128.244861][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  128.250088][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  128.269413][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.272601][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.299665][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.303585][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.432606][   T39] audit: type=1400 audit(1721074510.379:415): avc:  denied  { mount } for  pid=6236 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  128.464637][ T6253] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  128.596478][ T6417] raw_sendmsg: syz.1.250 forgot to set AF_INET. Fix it!
[  128.603695][   T39] audit: type=1400 audit(1721074510.539:416): avc:  denied  { write } for  pid=6414 comm="syz.1.250" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  128.740075][ T6253] 8021q: adding VLAN 0 to HW filter on device batadv0
[  128.829289][ T6253] veth0_vlan: entered promiscuous mode
[  128.857043][ T6253] veth1_vlan: entered promiscuous mode
[  128.924772][ T6253] veth0_macvtap: entered promiscuous mode
[  128.931645][ T6253] veth1_macvtap: entered promiscuous mode
[  128.955515][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  128.960186][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  128.964621][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  128.969382][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  128.974104][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  128.978960][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  128.984973][ T6253] batman_adv: batadv0: Interface activated: batadv_slave_0
[  128.997184][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.001881][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.006283][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.011484][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.015775][ T6253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.027536][ T6253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.032634][ T6253] batman_adv: batadv0: Interface activated: batadv_slave_1
[  129.040476][ T6253] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  129.049572][ T6253] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  129.053057][ T6253] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  129.056796][ T6253] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  129.213407][ T1141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.216586][ T1141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.231066][   T39] audit: type=1400 audit(1721074511.179:417): avc:  denied  { connect } for  pid=6430 comm="syz.1.282" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  129.262963][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.266401][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.906392][   T39] audit: type=1400 audit(1721074511.849:418): avc:  denied  { bind } for  pid=6436 comm="syz.2.283" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  130.065110][   T39] audit: type=1400 audit(1721074512.009:419): avc:  denied  { append } for  pid=6444 comm="syz.3.285" name="nullb0" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  130.124304][   T39] audit: type=1400 audit(1721074512.069:420): avc:  denied  { read } for  pid=6447 comm="syz.0.286" path="socket:[16016]" dev="sockfs" ino=16016 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  130.152169][   T39] audit: type=1400 audit(1721074512.069:421): avc:  denied  { bind } for  pid=6447 comm="syz.0.286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  130.162429][   T39] audit: type=1400 audit(1721074512.069:422): avc:  denied  { node_bind } for  pid=6447 comm="syz.0.286" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  130.210762][ T6448] mkiss: ax0: crc mode is auto.
[  130.224700][ T6449] sp0: Synchronizing with TNC
[  130.243441][    C3] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  130.264053][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.294904][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.313069][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.325283][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.368145][  T826] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  130.413409][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.421553][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.438751][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.450038][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.457350][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.484848][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.499016][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.505110][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.512049][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.517037][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.522516][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.530161][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.535673][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.548190][  T826] usb 8-1: Using ep0 maxpacket: 32
[  130.554234][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.554791][  T826] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  130.559594][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.562867][  T826] usb 8-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  130.571366][  T826] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.579107][  T826] usb 8-1: config 0 descriptor??
[  130.584109][  T826] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  130.607736][ T6457] /dev/nullb0: Can't open blockdev
[  130.613431][ T6458] /dev/nullb0: Can't open blockdev
[  130.623026][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.644130][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.653253][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.659622][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.663702][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.680552][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.685493][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.690647][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.695793][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.701282][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.715471][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.721150][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.727088][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.732993][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.739173][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.743874][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.753364][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.760910][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.766808][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.773867][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.807931][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.813589][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.819376][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.824210][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.828765][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.855721][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.862026][ T6461] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  130.869155][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.872051][ T6461] netlink: 328 bytes leftover after parsing attributes in process `syz.3.285'.
[  130.873718][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.882883][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.887647][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.892845][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.897342][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.902175][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.902834][  T828] usb 8-1: USB disconnect, device number 11
[  130.906812][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.916193][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.922411][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.927072][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.936544][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.942795][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.947580][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.954096][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.960253][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.964971][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.971218][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.977186][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.982211][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.986722][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  130.996464][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  131.001510][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  131.006112][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  131.011395][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  131.015984][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  131.021171][ T6442] 9pnet_fd: p9_fd_create_tcp (6442): problem connecting socket to 127.0.0.1
[  131.553198][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  131.553213][   T39] audit: type=1400 audit(1721074513.499:427): avc:  denied  { append } for  pid=6472 comm="syz.1.294" name="iommu" dev="devtmpfs" ino=634 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  131.642593][ T6479] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  131.648956][   T39] audit: type=1400 audit(1721074513.589:428): avc:  denied  { setattr } for  pid=6477 comm="syz.3.296" name="NETLINK" dev="sockfs" ino=13851 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  131.673009][   T39] audit: type=1400 audit(1721074513.599:429): avc:  denied  { map } for  pid=6477 comm="syz.3.296" path="socket:[13853]" dev="sockfs" ino=13853 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  131.681682][   T39] audit: type=1400 audit(1721074513.599:430): avc:  denied  { read accept } for  pid=6477 comm="syz.3.296" path="socket:[13853]" dev="sockfs" ino=13853 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  131.929989][ T6396] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  132.115179][ T6396] usb 7-1: too many configurations: 12, using maximum allowed: 8
[  132.143530][ T6396] usb 7-1: New USB device found, idVendor=5bd3, idProduct=317c, bcdDevice= 4.5e
[  132.147465][ T6396] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.160877][ T6396] usb 7-1: config 0 descriptor??
[  132.180205][   T39] audit: type=1400 audit(1721074514.129:431): avc:  denied  { unmount } for  pid=6253 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  132.420822][ T6479] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(9)
[  132.423868][ T6479] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  132.429807][ T6479] vhci_hcd vhci_hcd.0: Device attached
[  132.628497][  T828] vhci_hcd: vhci_device speed not set
[  132.632120][ T6505] warning: `syz.1.303' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  132.698012][  T828] usb 17-2: new full-speed USB device number 2 using vhci_hcd
[  133.262843][ T6497] vhci_hcd: connection reset by peer
[  133.265863][ T6396] usb 7-1: string descriptor 0 read error: -71
[  133.273051][   T79] vhci_hcd: stop threads
[  133.274972][ T6396] usb 7-1: USB disconnect, device number 6
[  133.283791][   T79] vhci_hcd: release socket
[  133.286686][   T79] vhci_hcd: disconnect device
[  133.548552][ T6509] netlink: 28 bytes leftover after parsing attributes in process `syz.0.304'.
[  133.556766][   T39] audit: type=1400 audit(1721074515.499:432): avc:  denied  { remount } for  pid=6508 comm="syz.0.304" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  134.155061][ T6516] 9pnet_fd: Insufficient options for proto=fd
[  134.158047][   T39] audit: type=1400 audit(1721074516.099:433): avc:  denied  { read write } for  pid=6513 comm="syz.0.306" dev="sockfs" ino=16249 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  134.842462][ T4634] Bluetooth: hci2: Malformed LE Event: 0x1b
[  135.408490][ T6546] netlink: 12 bytes leftover after parsing attributes in process `syz.3.315'.
[  135.412872][ T6546] netlink: 12 bytes leftover after parsing attributes in process `syz.3.315'.
[  135.421481][ T6546] netlink: 12 bytes leftover after parsing attributes in process `syz.3.315'.
[  135.425434][ T6546] netlink: 12 bytes leftover after parsing attributes in process `syz.3.315'.
[  135.436120][ T6546] netlink: 12 bytes leftover after parsing attributes in process `syz.3.315'.
[  135.454667][ T6546] netlink: 12 bytes leftover after parsing attributes in process `syz.3.315'.
[  135.460545][ T6546] netlink: 12 bytes leftover after parsing attributes in process `syz.3.315'.
[  135.466894][ T6546] netlink: 12 bytes leftover after parsing attributes in process `syz.3.315'.
[  135.527019][   T39] audit: type=1400 audit(1721074517.449:434): avc:  denied  { name_bind } for  pid=6542 comm="syz.3.315" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  135.532108][ T6551] bridge_slave_1: left allmulticast mode
[  135.537398][ T6551] bridge_slave_1: left promiscuous mode
[  135.540300][ T6551] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.558542][   T39] audit: type=1400 audit(1721074517.499:435): avc:  denied  { create } for  pid=6552 comm="syz.2.318" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  135.569082][   T39] audit: type=1400 audit(1721074517.519:436): avc:  denied  { ioctl } for  pid=6552 comm="syz.2.318" path="socket:[14790]" dev="sockfs" ino=14790 ioctlcmd=0x89f4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  135.640896][ T6544] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=55 sclass=netlink_route_socket pid=6544 comm=syz.3.315
[  135.661940][ T6544] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=55 sclass=netlink_route_socket pid=6544 comm=syz.3.315
[  135.853951][ T6565] Cannot find del_set index 0 as target
[  135.935923][ T6570] xt_TPROXY: Can be used only with -p tcp or -p udp
[  136.374422][ T6589] __nla_validate_parse: 12 callbacks suppressed
[  136.374438][ T6589] netlink: 4 bytes leftover after parsing attributes in process `syz.0.331'.
[  136.709124][ T6597] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1043 sclass=netlink_route_socket pid=6597 comm=syz.2.334
[  137.030845][ T6605] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1043 sclass=netlink_route_socket pid=6605 comm=syz.3.337
[  137.828171][  T828] vhci_hcd: vhci_device speed not set
[  138.156864][ T6641] FAULT_INJECTION: forcing a failure.
[  138.156864][ T6641] name failslab, interval 1, probability 0, space 0, times 0
[  138.180333][ T6641] CPU: 1 PID: 6641 Comm: syz.2.348 Not tainted 6.10.0-syzkaller #0
[  138.184144][ T6641] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.188535][ T6641] Call Trace:
[  138.190130][ T6641]  <TASK>
[  138.191480][ T6641]  dump_stack_lvl+0x16c/0x1f0
[  138.193678][ T6641]  should_fail_ex+0x497/0x5b0
[  138.195995][ T6641]  should_failslab+0x9/0x20
[  138.198086][ T6641]  kmalloc_trace_noprof+0x6b/0x300
[  138.200522][ T6641]  ? nfnl_err_add+0x4e/0x2d0
[  138.202556][ T6641]  nfnl_err_add+0x4e/0x2d0
[  138.204563][ T6641]  nfnetlink_rcv_batch+0xe45/0x24d0
[  138.206883][ T6641]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  138.209515][ T6641]  ? find_held_lock+0x2d/0x110
[  138.211691][ T6641]  ? avc_has_perm_noaudit+0x119/0x3a0
[  138.214080][ T6641]  ? avc_has_perm_noaudit+0x143/0x3a0
[  138.216437][ T6641]  ? __nla_parse+0x40/0x60
[  138.218484][ T6641]  nfnetlink_rcv+0x3c3/0x430
[  138.220526][ T6641]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  138.222851][ T6641]  netlink_unicast+0x542/0x820
[  138.224929][ T6641]  ? __pfx_netlink_unicast+0x10/0x10
[  138.227253][ T6641]  netlink_sendmsg+0x8b8/0xd70
[  138.229583][ T6641]  ? __pfx_netlink_sendmsg+0x10/0x10
[  138.232038][ T6641]  ? __import_iovec+0x1fd/0x6e0
[  138.234144][ T6641]  ____sys_sendmsg+0xab5/0xc90
[  138.236288][ T6641]  ? copy_msghdr_from_user+0x10b/0x160
[  138.238731][ T6641]  ? __pfx_____sys_sendmsg+0x10/0x10
[  138.241055][ T6641]  ? find_held_lock+0x2d/0x110
[  138.243153][ T6641]  ? __pfx___lock_acquire+0x10/0x10
[  138.245441][ T6641]  ___sys_sendmsg+0x135/0x1e0
[  138.247529][ T6641]  ? __pfx____sys_sendmsg+0x10/0x10
[  138.249791][ T6641]  ? ksys_write+0x21c/0x260
[  138.251755][ T6641]  ? __fget_light+0x173/0x210
[  138.253693][ T6641]  __sys_sendmsg+0x117/0x1f0
[  138.255745][ T6641]  ? __pfx___sys_sendmsg+0x10/0x10
[  138.258139][ T6641]  do_syscall_64+0xcd/0x250
[  138.260189][ T6641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.262822][ T6641] RIP: 0033:0x7ff83a575bd9
[  138.264800][ T6641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.272564][ T6641] RSP: 002b:00007ff83b30a048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  138.276214][ T6641] RAX: ffffffffffffffda RBX: 00007ff83a703f60 RCX: 00007ff83a575bd9
[  138.279740][ T6641] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  138.283262][ T6641] RBP: 00007ff83b30a0a0 R08: 0000000000000000 R09: 0000000000000000
[  138.286843][ T6641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  138.290415][ T6641] R13: 000000000000000b R14: 00007ff83a703f60 R15: 00007ffd2bbe0388
[  138.293554][ T6641]  </TASK>
[  138.501134][ T6651] netlink: 'syz.3.351': attribute type 1 has an invalid length.
[  138.504457][ T6651] netlink: 112865 bytes leftover after parsing attributes in process `syz.3.351'.
[  138.508830][ T6651] netlink: 'syz.3.351': attribute type 1 has an invalid length.
[  138.702101][ T6662] FAULT_INJECTION: forcing a failure.
[  138.702101][ T6662] name failslab, interval 1, probability 0, space 0, times 0
[  138.709432][ T6662] CPU: 1 PID: 6662 Comm: syz.1.356 Not tainted 6.10.0-syzkaller #0
[  138.711898][ T1359] ieee802154 phy0 wpan0: encryption failed: -22
[  138.712937][ T6662] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.715765][ T1359] ieee802154 phy1 wpan1: encryption failed: -22
[  138.720331][ T6662] Call Trace:
[  138.720342][ T6662]  <TASK>
[  138.720349][ T6662]  dump_stack_lvl+0x16c/0x1f0
[  138.720375][ T6662]  should_fail_ex+0x497/0x5b0
[  138.720389][ T6662]  should_failslab+0x9/0x20
[  138.720404][ T6662]  kmem_cache_alloc_node_noprof+0x71/0x310
[  138.734030][ T6662]  ? __alloc_skb+0x2b1/0x380
[  138.736037][ T6662]  __alloc_skb+0x2b1/0x380
[  138.737955][ T6662]  ? __pfx___alloc_skb+0x10/0x10
[  138.740115][ T6662]  ? tcp_fastopen_active_should_disable+0xbf/0x2e0
[  138.742851][ T6662]  ? __pfx_tcp_fastopen_active_should_disable+0x10/0x10
[  138.745776][ T6662]  tcp_stream_alloc_skb+0x34/0x570
[  138.748172][ T6662]  tcp_connect+0x35d8/0x5250
[  138.750025][ T6662]  ? mark_held_locks+0x9f/0xe0
[  138.751826][ T6662]  ? __pfx_tcp_connect+0x10/0x10
[  138.753766][ T6662]  ? __pfx_tcp_fastopen_defer_connect+0x10/0x10
[  138.756400][ T6662]  ? xfrm_lookup_route+0x6a/0x200
[  138.758326][ T6662]  tcp_v4_connect+0x14f7/0x1b80
[  138.759833][ T6662]  ? __pfx_tcp_v4_connect+0x10/0x10
[  138.761770][ T6662]  ? mptcp_token_new_connect+0x1e2/0x610
[  138.763884][ T6662]  mptcp_connect+0x661/0xd20
[  138.765838][ T6662]  __inet_stream_connect+0x3c7/0x1020
[  138.768227][ T6662]  ? __pfx___inet_stream_connect+0x10/0x10
[  138.770644][ T6662]  tcp_sendmsg_fastopen+0x3d7/0x700
[  138.772805][ T6662]  mptcp_sendmsg+0x14c3/0x1f20
[  138.774846][ T6662]  ? sock_has_perm+0x25a/0x2f0
[  138.776995][ T6662]  ? __pfx_sock_has_perm+0x10/0x10
[  138.779179][ T6662]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  138.781292][ T6662]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  138.783364][ T6662]  inet_sendmsg+0x119/0x140
[  138.785262][ T6662]  __sys_sendto+0x42c/0x4e0
[  138.787238][ T6662]  ? __pfx___sys_sendto+0x10/0x10
[  138.789371][ T6662]  ? ksys_write+0x1ab/0x260
[  138.791369][ T6662]  ? __pfx_ksys_write+0x10/0x10
[  138.793441][ T6662]  __x64_sys_sendto+0xe0/0x1c0
[  138.795625][ T6662]  ? do_syscall_64+0x91/0x250
[  138.797594][ T6662]  ? lockdep_hardirqs_on+0x7c/0x110
[  138.799902][ T6662]  do_syscall_64+0xcd/0x250
[  138.801874][ T6662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.804355][ T6662] RIP: 0033:0x7f7474375bd9
[  138.806309][ T6662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.813592][ T6662] RSP: 002b:00007f74751ae048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  138.816614][ T6662] RAX: ffffffffffffffda RBX: 00007f7474503f60 RCX: 00007f7474375bd9
[  138.819497][ T6662] RDX: 0000000000000001 RSI: 0000000020000480 RDI: 0000000000000003
[  138.824089][ T6662] RBP: 00007f74751ae0a0 R08: 0000000020000540 R09: 0000000000000010
[  138.827442][ T6662] R10: 0000000020040040 R11: 0000000000000246 R12: 0000000000000002
[  138.830948][ T6662] R13: 000000000000000b R14: 00007f7474503f60 R15: 00007ffff9cc57c8
[  138.834011][ T6662]  </TASK>
[  138.909060][ T6666] netlink: 'syz.2.358': attribute type 11 has an invalid length.
[  138.913124][   T39] kauditd_printk_skb: 2 callbacks suppressed
[  138.913139][   T39] audit: type=1400 audit(1721074520.859:439): avc:  denied  { create } for  pid=6664 comm="syz.1.357" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  138.918792][   T39] audit: type=1400 audit(1721074520.859:440): avc:  denied  { write } for  pid=6664 comm="syz.1.357" path="socket:[14019]" dev="sockfs" ino=14019 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  139.150994][ T6677] capability: warning: `syz.3.363' uses deprecated v2 capabilities in a way that may be insecure
[  139.235318][ T5243] hid-generic 0000:0000:0000.000B: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  139.291411][ T6681] REISERFS warning (device nullb0): super-6502 reiserfs_getopt: unknown mount option "í��*ñ�/›÷j9	=Ø‘Š(˜Ãp\r}ÖzÞ×ÿ™œ
[  139.291411][ T6681] F€=ç®ÓÏ9ì@¿´¸/˜Zp‰ô-
[  139.291411][ T6681] [()ê/핯ʶ³…¶M¡$ÙH¶8ì£I£w¨ŸÇƒZöyÙcè„¡àÁ§3Ëyo昞þXìy&oT;ðl…âd=]«VôžÅ­pr·|7H¬rÔÖj°�o"åŒW@0ô0Z¾÷W(N<Ý-ŠŒèwœ’Ÿœ]h~Ð`k¤øéê‹
²¾¯§Î¦úšân$xêÄ–ÍKà�ëŠ%žàâœÒÛ+˜¨^3‘­øKÏù0ötˆI¸¨ƒ­o‘�íéÕȨVôgnå–AÙÊÒ[墡mŽµeIÞ“=8ÍŒ9¾vzŸµßÐL:ï&s0Æ­Ytô¨Ê¼Øp¢f xò±ü\ÖPTkV$ÏÛ¹ÊëÚS…Ï€J±inœ2®=¼k7(rÀȺZÁRú‚ë’‡„j3uM+”6OŠ§Ÿ>9�¶;ø<jöYµ÷i�z/&×L‘¯Æ.Äò︿õ�×`	vMA¡|Ft–>×Åpà: ½IÏ
ý¬å¯²óÔÕ%퇨Úùj)�P?}´5"gó‡JtRA$Mí—ö—ÇÙiÿÕESC<ªÍÿ»æntäá»
ùI¬ï&ÏÌJëçGHflÀÓ³d’ÔÍÂB!µj	+Abíê"ËŠ8eÞáÞ…1ÚT{4#ªìrÌæÏfŸJjŽ«~)Ô–"
[  139.377423][   T39] audit: type=1400 audit(1721074521.319:441): avc:  denied  { setopt } for  pid=6679 comm="syz.0.362" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  139.389505][   T39] audit: type=1400 audit(1721074521.319:442): avc:  denied  { read } for  pid=6679 comm="syz.0.362" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  139.526484][   T39] audit: type=1400 audit(1721074521.469:443): avc:  denied  { getopt } for  pid=6687 comm="syz.3.364" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  139.552005][ T6691] veth0_macvtap: left promiscuous mode
[  139.786184][ T6697] mac80211_hwsim hwsim9 veth0_vlan: renamed from wlan1 (while UP)
[  139.799772][   T39] audit: type=1400 audit(1721074521.749:444): avc:  denied  { write } for  pid=6698 comm="syz.0.368" name="sg0" dev="devtmpfs" ino=705 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  139.851015][ T6697] netlink: 'syz.3.366': attribute type 3 has an invalid length.
[  139.877757][ T6697] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.366'.
[  140.135113][ T6396] hid-generic 0000:0000:0000.000C: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  140.146588][ T6734] xt_TPROXY: Can be used only with -p tcp or -p udp
[  140.198455][ T6736] REISERFS warning (device nullb0): super-6502 reiserfs_getopt: unknown mount option "í��*ñ�/›÷j9	=Ø‘Š(˜Ãp\r}ÖzÞ×ÿ™œ
[  140.198455][ T6736] F€=ç®ÓÏ9ì@¿´¸/˜Zp‰ô-
[  140.198455][ T6736] [()ê/핯ʶ³…¶M¡$ÙH¶8ì£I£w¨ŸÇƒZöyÙcè„¡àÁ§3Ëyo昞þXìy&oT;ðl…âd=]«VôžÅ­pr·|7H¬rÔÖj°�o"åŒW@0ô0Z¾÷W(N<Ý-ŠŒèwœ’Ÿœ]h~Ð`k¤øéê‹
²¾¯§Î¦úšân$xêÄ–ÍKà�ëŠ%žàâœÒÛ+˜¨^3‘­øKÏù0ötˆI¸¨ƒ­o‘�íéÕȨVôgnå–AÙÊÒ[墡mŽµeIÞ“=8ÍŒ9¾vzŸµßÐL:ï&s0Æ­Ytô¨Ê¼Øp¢f xò±ü\ÖPTkV$ÏÛ¹ÊëÚS…Ï€J±inœ2®=¼k7(rÀȺZÁRú‚ë’‡„j3uM+”6OŠ§Ÿ>9�¶;ø<jöYµ÷i�z/&×L‘¯Æ.Äò︿õ�×`	vMA¡|Ft–>×Åpà: ½IÏ
ý¬å¯²óÔÕ%퇨Úùj)�P?}´5"gó‡JtRA$Mí—ö—ÇÙiÿÕESC<ªÍÿ»æntäá»
ùI¬ï&ÏÌJëçGHflÀÓ³d’ÔÍÂB!µj	+Abíê"ËŠ8eÞáÞ…1ÚT{4#ªìrÌæÏfŸJjŽ«~)Ô–"
[  140.204777][ T6738] FAULT_INJECTION: forcing a failure.
[  140.204777][ T6738] name failslab, interval 1, probability 0, space 0, times 0
[  140.244374][ T6738] CPU: 1 PID: 6738 Comm: syz.2.374 Not tainted 6.10.0-syzkaller #0
[  140.248518][ T6738] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  140.253350][ T6738] Call Trace:
[  140.254946][ T6738]  <TASK>
[  140.256224][ T6738]  dump_stack_lvl+0x16c/0x1f0
[  140.258477][ T6738]  should_fail_ex+0x497/0x5b0
[  140.260672][ T6738]  should_failslab+0x9/0x20
[  140.262873][ T6738]  __kmalloc_noprof+0xcf/0x410
[  140.264865][ T6738]  ? rcu_is_watching+0x12/0xc0
[  140.266944][ T6738]  p9_fcall_init+0x97/0x260
[  140.268916][ T6738]  p9_tag_alloc+0x21c/0x870
[  140.270861][ T6738]  ? __pfx_p9_tag_alloc+0x10/0x10
[  140.272976][ T6738]  ? hlock_class+0x4e/0x130
[  140.274999][ T6738]  p9_client_prepare_req+0x19f/0x4d0
[  140.277271][ T6738]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  140.279733][ T6738]  ? hlock_class+0x4e/0x130
[  140.281661][ T6738]  ? mark_lock+0xb5/0xc60
[  140.283527][ T6738]  ? __pfx___lock_acquire+0x10/0x10
[  140.285722][ T6738]  p9_client_rpc+0x1c3/0xc10
[  140.287416][ T6738]  ? __pfx_p9_client_rpc+0x10/0x10
[  140.289245][ T6738]  ? find_held_lock+0x2d/0x110
[  140.291398][ T6738]  ? p9_fid_create+0x26a/0x470
[  140.293733][ T6738]  ? mark_held_locks+0x9f/0xe0
[  140.295909][ T6738]  ? rcu_is_watching+0x12/0xc0
[  140.298318][ T6738]  p9_client_attach+0x157/0x2b0
[  140.300494][ T6738]  ? __pfx_p9_client_attach+0x10/0x10
[  140.303061][ T6738]  ? selinux_inode_listxattr+0x103/0x160
[  140.305568][ T6738]  v9fs_fid_lookup+0x9a8/0xf20
[  140.307786][ T6738]  ? trace_kmalloc+0x2d/0xe0
[  140.309858][ T6738]  v9fs_listxattr+0x20/0x130
[  140.312056][ T6738]  ? __pfx_v9fs_listxattr+0x10/0x10
[  140.314582][ T6738]  vfs_listxattr+0xb7/0x140
[  140.316576][ T6738]  listxattr+0x69/0x190
[  140.318601][ T6738]  path_listxattr+0xc3/0x160
[  140.320904][ T6738]  ? ksys_write+0x1ab/0x260
[  140.323060][ T6738]  ? __pfx_path_listxattr+0x10/0x10
[  140.325102][ T6738]  do_syscall_64+0xcd/0x250
[  140.326831][ T6738]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.329201][ T6738] RIP: 0033:0x7ff83a575bd9
[  140.331260][ T6738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.340425][ T6738] RSP: 002b:00007ff83b30a048 EFLAGS: 00000246 ORIG_RAX: 00000000000000c2
[  140.343977][ T6738] RAX: ffffffffffffffda RBX: 00007ff83a703f60 RCX: 00007ff83a575bd9
[  140.347222][ T6738] RDX: 00000000ffffff8c RSI: 0000000000000000 RDI: 0000000020000100
[  140.350391][ T6738] RBP: 00007ff83b30a0a0 R08: 0000000000000000 R09: 0000000000000000
[  140.353965][ T6738] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  140.357185][ T6738] R13: 000000000000000b R14: 00007ff83a703f60 R15: 00007ffd2bbe0388
[  140.360480][ T6738]  </TASK>
[  140.598818][   T39] audit: type=1400 audit(1721074522.549:445): avc:  denied  { mounton } for  pid=6747 comm="syz.3.377" path="/proc/267/task" dev="proc" ino=14084 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  140.907557][ T6755] syz.1.379: vmalloc error: size 12288, failed to allocate pages, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[  140.918392][ T6755] CPU: 3 PID: 6755 Comm: syz.1.379 Not tainted 6.10.0-syzkaller #0
[  140.921650][ T6755] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  140.925671][ T6755] Call Trace:
[  140.927006][ T6755]  <TASK>
[  140.928269][ T6755]  dump_stack_lvl+0x16c/0x1f0
[  140.930399][ T6755]  warn_alloc+0x24d/0x3a0
[  140.932308][ T6755]  ? __pfx_warn_alloc+0x10/0x10
[  140.934423][ T6755]  ? __pfx_lock_release+0x10/0x10
[  140.936574][ T6755]  ? mark_held_locks+0x9f/0xe0
[  140.938611][ T6755]  __vmalloc_node_range_noprof+0x12b8/0x1520
[  140.941118][ T6755]  ? __vcalloc_noprof+0x4d/0x80
[  140.943213][ T6755]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  140.946613][ T6755]  ? rcu_is_watching+0x12/0xc0
[  140.948817][ T6755]  ? trace_contention_end+0xea/0x140
[  140.951164][ T6755]  ? __mutex_lock+0x1a6/0x9c0
[  140.953516][ T6755]  ? __vcalloc_noprof+0x4d/0x80
[  140.955701][ T6755]  __vmalloc_noprof+0x6d/0x90
[  140.957715][ T6755]  ? __vcalloc_noprof+0x4d/0x80
[  140.960327][ T6755]  __vcalloc_noprof+0x4d/0x80
[  140.962970][ T6755]  kvm_arch_prepare_memory_region+0x319/0x890
[  140.965543][ T6755]  kvm_set_memslot+0x139/0x13e0
[  140.967636][ T6755]  ? kasan_save_track+0x14/0x30
[  140.969740][ T6755]  __kvm_set_memory_region+0xdc5/0x1530
[  140.972201][ T6755]  ? __pfx___kvm_set_memory_region+0x10/0x10
[  140.974967][ T6755]  kvm_vm_ioctl+0x1515/0x3de0
[  140.977090][ T6755]  ? hlock_class+0x4e/0x130
[  140.979182][ T6755]  ? mark_lock+0xb5/0xc60
[  140.981094][ T6755]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  140.983405][ T6755]  ? __pfx_mark_lock+0x10/0x10
[  140.985588][ T6755]  ? find_held_lock+0x2d/0x110
[  140.987909][ T6755]  ? tomoyo_path_number_perm+0x292/0x590
[  140.990256][ T6755]  ? __pfx_lock_release+0x10/0x10
[  140.992468][ T6755]  ? kfree+0x12a/0x3b0
[  140.994323][ T6755]  ? tomoyo_path_number_perm+0x467/0x590
[  140.996859][ T6755]  ? tomoyo_path_number_perm+0x190/0x590
[  140.999892][ T6755]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  141.002505][ T6755]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  141.005057][ T6755]  ? do_vfs_ioctl+0x515/0x1ad0
[  141.007330][ T6755]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  141.009847][ T6755]  ? selinux_file_ioctl+0x180/0x270
[  141.012285][ T6755]  ? selinux_file_ioctl+0xb4/0x270
[  141.014483][ T6755]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  141.016632][ T6755]  __x64_sys_ioctl+0x193/0x220
[  141.018733][ T6755]  do_syscall_64+0xcd/0x250
[  141.020830][ T6755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.023629][ T6755] RIP: 0033:0x7f7474375bd9
[  141.025704][ T6755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.036124][ T6755] RSP: 002b:00007f74751ae048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  141.039902][ T6755] RAX: ffffffffffffffda RBX: 00007f7474503f60 RCX: 00007f7474375bd9
[  141.043500][ T6755] RDX: 0000000020000080 RSI: 000000004020ae46 RDI: 0000000000000004
[  141.047033][ T6755] RBP: 00007f74751ae0a0 R08: 0000000000000000 R09: 0000000000000000
[  141.050648][ T6755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  141.054142][ T6755] R13: 000000000000000b R14: 00007f7474503f60 R15: 00007ffff9cc57c8
[  141.057209][ T6755]  </TASK>
[  141.059271][ T6755] Mem-Info:
[  141.061260][ T6755] active_anon:12896 inactive_anon:0 isolated_anon:0
[  141.061260][ T6755]  active_file:3252 inactive_file:47625 isolated_file:0
[  141.061260][ T6755]  unevictable:1000 dirty:39 writeback:0
[  141.061260][ T6755]  slab_reclaimable:10120 slab_unreclaimable:68839
[  141.061260][ T6755]  mapped:13698 shmem:6926 pagetables:732
[  141.061260][ T6755]  sec_pagetables:316 bounce:0
[  141.061260][ T6755]  kernel_misc_reclaimable:0
[  141.061260][ T6755]  free:527754 free_pcp:6012 free_cma:0
[  141.083679][ T6755] Node 0 active_anon:50296kB inactive_anon:0kB active_file:13008kB inactive_file:190428kB unevictable:2000kB isolated(anon):0kB isolated(file):0kB mapped:56776kB dirty:156kB writeback:0kB shmem:24168kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11536kB pagetables:2928kB sec_pagetables:1264kB all_unreclaimable? no
[  141.098944][ T6755] Node 1 active_anon:1536kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:2000kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  141.112012][ T6755] Node 0 DMA free:15360kB boost:0kB min:328kB low:408kB high:488kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  141.124302][ T6755] lowmem_reserve[]: 0 1317 0 0 0
[  141.126979][ T6755] Node 0 DMA32 free:462716kB boost:0kB min:28984kB low:36228kB high:43472kB reserved_highatomic:0KB active_anon:52776kB inactive_anon:0kB active_file:13008kB inactive_file:190428kB unevictable:2000kB writepending:156kB present:2080628kB managed:1377232kB mlocked:0kB bounce:0kB free_pcp:13512kB local_pcp:9156kB free_cma:0kB
[  141.141771][ T6755] lowmem_reserve[]: 0 0 0 0 0
[  141.144251][ T6755] Node 1 Normal free:1631916kB boost:0kB min:38268kB low:47832kB high:57396kB reserved_highatomic:0KB active_anon:1536kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:2000kB writepending:0kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:8716kB local_pcp:0kB free_cma:0kB
[  141.158367][ T6755] lowmem_reserve[]: 0 0 0 0 0
[  141.161895][ T6755] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  141.179598][ T6755] Node 0 DMA32: 0*4kB 109*8kB (UME) 88*16kB (UE) 99*32kB (UME) 100*64kB (UME) 40*128kB (UME) 73*256kB (UME) 40*512kB (UME) 24*1024kB (UME) 9*2048kB (UME) 88*4096kB (UM) = 459592kB
[  141.187063][ T6755] Node 1 Normal: 3*4kB (UM) 16*8kB (UM) 16*16kB (UM) 11*32kB (UM) 9*64kB (UM) 3*128kB (UM) 2*256kB (U) 7*512kB (UM) 6*1024kB (U) 5*2048kB (UM) 393*4096kB (M) = 1631916kB
[  141.196978][ T6755] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  141.201358][ T6755] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  141.209567][ T6755] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  141.213574][ T6755] Node 1 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  141.218319][ T6755] 60012 total pagecache pages
[  141.220486][ T6755] 0 pages in swap cache
[  141.222248][ T6755] Free swap  = 124156kB
[  141.224100][ T6755] Total swap = 124996kB
[  141.226095][ T6755] 1048443 pages RAM
[  141.227715][ T6755] 0 pages HighMem/MovableOnly
[  141.235406][ T6755] 254814 pages reserved
[  141.237278][ T6755] 0 pages cma reserved
[  141.438551][ T6769] fuse: Bad value for 'rootmode'
[  141.898098][   T39] audit: type=1400 audit(1721074523.849:446): avc:  denied  { execute } for  pid=6762 comm="syz.0.381" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=15096 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  142.124915][ T6774] xt_TPROXY: Can be used only with -p tcp or -p udp
[  142.255245][ T6396] hid-generic 0000:0000:0000.000D: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  142.281549][ T6780] dvmrp0: entered allmulticast mode
[  142.290569][ T6780] dvmrp0: left allmulticast mode
[  142.297340][ T6781] REISERFS warning (device nullb0): super-6502 reiserfs_getopt: unknown mount option "í��*ñ�/›÷j9	=Ø‘Š(˜Ãp\r}ÖzÞ×ÿ™œ
[  142.297340][ T6781] F€=ç®ÓÏ9ì@¿´¸/˜Zp‰ô-
[  142.297340][ T6781] [()ê/핯ʶ³…¶M¡$ÙH¶8ì£I£w¨ŸÇƒZöyÙcè„¡àÁ§3Ëyo昞þXìy&oT;ðl…âd=]«VôžÅ­pr·|7H¬rÔÖj°�o"åŒW@0ô0Z¾÷W(N<Ý-ŠŒèwœ’Ÿœ]h~Ð`k¤øéê‹
²¾¯§Î¦úšân$xêÄ–ÍKà�ëŠ%žàâœÒÛ+˜¨^3‘­øKÏù0ötˆI¸¨ƒ­o‘�íéÕȨVôgnå–AÙÊÒ[墡mŽµeIÞ“=8ÍŒ9¾vzŸµßÐL:ï&s0Æ­Ytô¨Ê¼Øp¢f xò±ü\ÖPTkV$ÏÛ¹ÊëÚS…Ï€J±inœ2®=¼k7(rÀȺZÁRú‚ë’‡„j3uM+”6OŠ§Ÿ>9�¶;ø<jöYµ÷i�z/&×L‘¯Æ.Äò︿õ�×`	vMA¡|Ft–>×Åpà: ½IÏ
ý¬å¯²óÔÕ%퇨Úùj)�P?}´5"gó‡JtRA$Mí—ö—ÇÙiÿÕESC<ªÍÿ»æntäá»
ùI¬ï&ÏÌJëçGHflÀÓ³d’ÔÍÂB!µj	+Abíê"ËŠ8eÞáÞ…1ÚT{4#ªìrÌæÏfŸJjŽ«~)Ô–"
[  142.372093][ T6777] dvmrp0: entered allmulticast mode
[  142.374850][ T6786] dvmrp0: left allmulticast mode
[  142.555985][ T4634] Bluetooth: hci1: unexpected event 0x06 length: 23 > 3
[  142.689944][   T39] audit: type=1400 audit(1721074524.629:447): avc:  denied  { name_connect } for  pid=6794 comm="syz.1.391" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  142.714892][   T39] audit: type=1400 audit(1721074524.659:448): avc:  denied  { name_bind } for  pid=6792 comm="syz.2.388" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[  142.798279][ T6802] netlink: 80 bytes leftover after parsing attributes in process `syz.2.388'.
[  142.827397][ T4634] Bluetooth: hci1: Malformed LE Event: 0x0d
[  143.093137][ T6808] cgroup: Invalid name
[  143.371443][ T6812] XFS (nullb0): Invalid superblock magic number
[  143.681905][ T6822] FAULT_INJECTION: forcing a failure.
[  143.681905][ T6822] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  143.689093][ T6822] CPU: 1 PID: 6822 Comm: syz.3.397 Not tainted 6.10.0-syzkaller #0
[  143.692997][ T6822] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.697545][ T6822] Call Trace:
[  143.699508][ T6822]  <TASK>
[  143.700771][ T6822]  dump_stack_lvl+0x16c/0x1f0
[  143.703484][ T6822]  should_fail_ex+0x497/0x5b0
[  143.706251][ T6822]  _copy_to_user+0x30/0xc0
[  143.708416][ T6822]  simple_read_from_buffer+0xd0/0x160
[  143.711020][ T6822]  proc_fail_nth_read+0x1b0/0x290
[  143.713235][ T6822]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  143.716059][ T6822]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  143.718804][ T6822]  vfs_read+0x1d4/0xbd0
[  143.720919][ T6822]  ? __fdget_pos+0xeb/0x180
[  143.723114][ T6822]  ? __pfx_vfs_read+0x10/0x10
[  143.725399][ T6822]  ? __pfx___mutex_lock+0x10/0x10
[  143.727751][ T6822]  ? __fget_files+0x256/0x400
[  143.730149][ T6822]  ksys_read+0x12f/0x260
[  143.732357][ T6822]  ? __pfx_ksys_read+0x10/0x10
[  143.734664][ T6822]  do_syscall_64+0xcd/0x250
[  143.736706][ T6822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.739507][ T6822] RIP: 0033:0x7fb8a45746bc
[  143.741811][ T6822] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  143.751564][ T6822] RSP: 002b:00007fb8a53e0040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  143.755794][ T6822] RAX: ffffffffffffffda RBX: 00007fb8a4703f60 RCX: 00007fb8a45746bc
[  143.759896][ T6822] RDX: 000000000000000f RSI: 00007fb8a53e00b0 RDI: 0000000000000004
[  143.763287][ T6822] RBP: 00007fb8a53e00a0 R08: 0000000000000000 R09: 0000000000000000
[  143.766947][ T6822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  143.771125][ T6822] R13: 000000000000000b R14: 00007fb8a4703f60 R15: 00007ffd3c703cf8
[  143.775440][ T6822]  </TASK>
[  143.825815][ T6825] cgroup: Invalid name
[  144.295662][   T39] kauditd_printk_skb: 2 callbacks suppressed
[  144.295732][   T39] audit: type=1326 audit(1721074526.239:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6839 comm="syz.1.401" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7474375bd9 code=0x0
[  144.758117][ T5276] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  144.948338][ T5276] usb 8-1: Using ep0 maxpacket: 32
[  144.954080][ T5276] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  144.958721][ T5276] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  144.965464][ T5276] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  144.968645][ T5276] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.971759][ T5276] usb 8-1: Product: syz
[  144.990268][ T5276] usb 8-1: Manufacturer: syz
[  144.992156][ T5276] usb 8-1: SerialNumber: syz
[  145.028851][ T4634] Bluetooth: hci2: unexpected event 0x06 length: 23 > 3
[  145.213920][ T5276] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 12 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  145.227366][ T6854] netlink: 80 bytes leftover after parsing attributes in process `syz.0.405'.
[  145.288828][ T4634] Bluetooth: hci2: Malformed LE Event: 0x0d
[  145.415193][ T6396] usb 8-1: USB disconnect, device number 12
[  145.432359][ T6396] usblp0: removed
[  145.615399][ T6874] xt_TPROXY: Can be used only with -p tcp or -p udp
[  145.618713][ T6866] vivid-000: =================  START STATUS  =================
[  145.622171][ T6866] vivid-000: Radio HW Seek Mode: Bounded
[  145.624955][ T6866] vivid-000: Radio Programmable HW Seek: false
[  145.628136][ T6866] vivid-000: RDS Rx I/O Mode: Block I/O
[  145.630607][ T6866] vivid-000: Generate RBDS Instead of RDS: false
[  145.633470][ T6866] vivid-000: RDS Reception: true
[  145.635653][ T6866] vivid-000: RDS Program Type: 0 inactive
[  145.643912][ T6866] vivid-000: RDS PS Name:  inactive
[  145.646770][ T6866] vivid-000: RDS Radio Text:  inactive
[  145.652389][ T6866] vivid-000: RDS Traffic Announcement: false inactive
[  145.658213][ T6866] vivid-000: RDS Traffic Program: false inactive
[  145.662662][ T6866] vivid-000: RDS Music: false inactive
[  145.667117][ T6866] vivid-000: ==================  END STATUS  ==================
[  145.766259][ T6882] netlink: 16 bytes leftover after parsing attributes in process `syz.0.416'.
[  145.993582][   T39] audit: type=1400 audit(1721074527.929:452): avc:  denied  { getopt } for  pid=6897 comm="syz.1.421" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  146.051320][ T6901] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  146.203935][ T6901] Cannot find add_set index 0 as target
[  146.457614][   T39] audit: type=1400 audit(1721074528.399:453): avc:  denied  { append } for  pid=6919 comm="syz.1.424" name="001" dev="devtmpfs" ino=748 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  146.690702][ T6944] xt_TPROXY: Can be used only with -p tcp or -p udp
[  146.777266][ T6947] XFS (nullb0): Invalid superblock magic number
[  147.015568][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.021435][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.024978][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.028298][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.031944][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.035122][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.038978][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.042612][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.045899][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.049935][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.053424][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.056926][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.061753][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.064743][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.068194][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.071800][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.076510][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x4
[  147.083353][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.086615][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.090014][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x2
[  147.093963][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.099260][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.103059][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.106849][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.111178][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.116489][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.120326][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.123794][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.126946][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.131092][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.134827][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.139083][  T828] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  147.144218][  T828] hid-generic 0000:0000:0000.000E: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  147.613116][ T6980] FAULT_INJECTION: forcing a failure.
[  147.613116][ T6980] name failslab, interval 1, probability 0, space 0, times 0
[  147.638124][ T6980] CPU: 2 PID: 6980 Comm: syz.3.436 Not tainted 6.10.0-syzkaller #0
[  147.641555][ T6980] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.645993][ T6980] Call Trace:
[  147.647425][ T6980]  <TASK>
[  147.648730][ T6980]  dump_stack_lvl+0x16c/0x1f0
[  147.650778][ T6980]  should_fail_ex+0x497/0x5b0
[  147.652827][ T6980]  should_failslab+0x9/0x20
[  147.663077][ T6980]  kmem_cache_alloc_node_noprof+0x71/0x310
[  147.665636][ T6980]  ? __alloc_skb+0x2b1/0x380
[  147.667625][ T6980]  __alloc_skb+0x2b1/0x380
[  147.669569][ T6980]  ? __pfx___alloc_skb+0x10/0x10
[  147.671743][ T6980]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  147.685150][ T6980]  netlink_alloc_large_skb+0x69/0x130
[  147.690646][ T6980]  netlink_sendmsg+0x689/0xd70
[  147.692722][ T6980]  ? __pfx_netlink_sendmsg+0x10/0x10
[  147.694995][ T6980]  ? __import_iovec+0x1fd/0x6e0
[  147.697071][ T6980]  ____sys_sendmsg+0xab5/0xc90
[  147.699104][ T6980]  ? copy_msghdr_from_user+0x10b/0x160
[  147.701409][ T6980]  ? __pfx_____sys_sendmsg+0x10/0x10
[  147.703691][ T6980]  ? find_held_lock+0x2d/0x110
[  147.709541][ T6980]  ? __pfx___lock_acquire+0x10/0x10
[  147.711586][ T6980]  ___sys_sendmsg+0x135/0x1e0
[  147.718932][ T6980]  ? __pfx____sys_sendmsg+0x10/0x10
[  147.721119][ T6980]  ? ksys_write+0x21c/0x260
[  147.722985][ T6980]  ? __fget_light+0x173/0x210
[  147.724970][ T6980]  __sys_sendmsg+0x117/0x1f0
[  147.726973][ T6980]  ? __pfx___sys_sendmsg+0x10/0x10
[  147.729141][ T6980]  do_syscall_64+0xcd/0x250
[  147.731057][ T6980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.748257][ T6980] RIP: 0033:0x7fb8a4575bd9
[  147.750278][ T6980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.770850][ T6980] RSP: 002b:00007fb8a53e0048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  147.774857][ T6980] RAX: ffffffffffffffda RBX: 00007fb8a4703f60 RCX: 00007fb8a4575bd9
[  147.778325][ T6980] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000009
[  147.782142][ T6980] RBP: 00007fb8a53e00a0 R08: 0000000000000000 R09: 0000000000000000
[  147.787040][ T6980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.791288][ T6980] R13: 000000000000000b R14: 00007fb8a4703f60 R15: 00007ffd3c703cf8
[  147.795361][ T6980]  </TASK>
[  147.933160][ T6985] FAULT_INJECTION: forcing a failure.
[  147.933160][ T6985] name failslab, interval 1, probability 0, space 0, times 0
[  147.985539][ T6985] CPU: 3 PID: 6985 Comm: syz.3.437 Not tainted 6.10.0-syzkaller #0
[  147.988896][ T6985] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.993240][ T6985] Call Trace:
[  147.994838][ T6985]  <TASK>
[  147.996080][ T6985]  dump_stack_lvl+0x16c/0x1f0
[  147.998351][ T6985]  should_fail_ex+0x497/0x5b0
[  148.014328][ T6985]  should_failslab+0x9/0x20
[  148.016233][ T6985]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  148.018471][ T6985]  ? prepare_creds+0x2e/0x750
[  148.020421][ T6985]  prepare_creds+0x2e/0x750
[  148.022322][ T6985]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  148.024822][ T6985]  lookup_user_key+0x394/0x12f0
[  148.041691][ T6985]  ? find_held_lock+0x2d/0x110
[  148.043891][ T6985]  ? __pfx_lookup_user_key+0x10/0x10
[  148.046676][ T6985]  ? __pfx_lock_release+0x10/0x10
[  148.048994][ T6985]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  148.052278][ T6985]  __do_sys_add_key+0x25a/0x460
[  148.054712][ T6985]  ? __pfx___do_sys_add_key+0x10/0x10
[  148.057202][ T6985]  ? ksys_write+0x1ab/0x260
[  148.059614][ T6985]  do_syscall_64+0xcd/0x250
[  148.064139][ T6985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.067476][ T6985] RIP: 0033:0x7fb8a4575bd9
[  148.068351][ T4634] Bluetooth: hci2: command tx timeout
[  148.070063][ T6985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.081893][ T6985] RSP: 002b:00007fb8a53e0048 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[  148.085284][ T6985] RAX: ffffffffffffffda RBX: 00007fb8a4703f60 RCX: 00007fb8a4575bd9
[  148.088868][ T6985] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000000
[  148.092525][ T6985] RBP: 00007fb8a53e00a0 R08: ffffffffffffffff R09: 0000000000000000
[  148.096081][ T6985] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  148.099796][ T6985] R13: 000000000000000b R14: 00007fb8a4703f60 R15: 00007ffd3c703cf8
[  148.104183][ T6985]  </TASK>
[  148.323124][ T6989] xt_TPROXY: Can be used only with -p tcp or -p udp
[  148.408369][ T6994] xt_TPROXY: Can be used only with -p tcp or -p udp
[  148.556650][ T7002] xt_TPROXY: Can be used only with -p tcp or -p udp
[  148.616572][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.621125][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.624576][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.642723][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.646278][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.650977][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.654519][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.679707][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.709960][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.713052][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.716141][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.721630][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.724911][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.741744][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.745872][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.748835][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.751724][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x4
[  148.786952][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.790594][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.795317][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x2
[  148.814869][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.818710][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.822291][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.828076][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.839221][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.842416][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.845824][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.850205][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.853204][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.868034][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.899053][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.902662][ T5243] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  148.908126][ T5243] hid-generic 0000:0000:0000.000F: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  148.930284][ T7011] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  149.495112][   T39] audit: type=1326 audit(1721074531.439:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7030 comm="syz.0.449" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7b7c175bd9 code=0x0
[  149.761107][ T7034] xt_TPROXY: Can be used only with -p tcp or -p udp
[  150.119707][ T7048] netlink: 'syz.1.455': attribute type 2 has an invalid length.
[  150.123920][ T7048] netlink: 'syz.1.455': attribute type 1 has an invalid length.
[  150.127020][ T7048] netlink: 181400 bytes leftover after parsing attributes in process `syz.1.455'.
[  150.465495][ T7057] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  150.481337][ T7058] XFS (nullb0): Invalid superblock magic number
[  150.552498][ T7057] Cannot find add_set index 0 as target
[  151.211427][ T7079] xt_TPROXY: Can be used only with -p tcp or -p udp
[  151.406566][ T7089] kernel profiling enabled (shift: 9)
[  151.456372][ T7090] netlink: 'syz.0.465': attribute type 2 has an invalid length.
[  151.465715][ T7090] netlink: 'syz.0.465': attribute type 1 has an invalid length.
[  151.474451][ T7090] netlink: 181400 bytes leftover after parsing attributes in process `syz.0.465'.
[  151.740926][   T39] audit: type=1400 audit(1721074533.679:455): avc:  denied  { connect } for  pid=7102 comm="syz.0.468" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  151.749515][   T39] audit: type=1400 audit(1721074533.679:456): avc:  denied  { setopt } for  pid=7102 comm="syz.0.468" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  151.758569][   T39] audit: type=1400 audit(1721074533.679:457): avc:  denied  { bind } for  pid=7102 comm="syz.0.468" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  151.821476][ T7114] xt_TPROXY: Can be used only with -p tcp or -p udp
[  151.843794][ T7116] xt_TPROXY: Can be used only with -p tcp or -p udp
[  151.967591][ T7124] xt_TPROXY: Can be used only with -p tcp or -p udp
[  152.130946][   T39] audit: type=1400 audit(1721074534.079:458): avc:  denied  { associate } for  pid=7133 comm="syz.2.476" name="cgroup.controllers" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  152.157988][ T5208] Bluetooth: hci1: command tx timeout
[  152.248659][ T7139] xt_TPROXY: Can be used only with -p tcp or -p udp
[  152.517005][ T7160] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  152.536605][ T7161] xt_TPROXY: Can be used only with -p tcp or -p udp
[  152.807965][  T828] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  152.917656][   T39] audit: type=1400 audit(1721074534.869:459): avc:  denied  { bind } for  pid=7166 comm="syz.2.485" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  152.920077][ T7167] FAULT_INJECTION: forcing a failure.
[  152.920077][ T7167] name failslab, interval 1, probability 0, space 0, times 0
[  152.933656][ T7167] CPU: 3 PID: 7167 Comm: syz.2.485 Not tainted 6.10.0-syzkaller #0
[  152.937600][ T7167] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  152.942669][ T7167] Call Trace:
[  152.944055][ T7167]  <TASK>
[  152.945544][ T7167]  dump_stack_lvl+0x16c/0x1f0
[  152.947718][ T7167]  should_fail_ex+0x497/0x5b0
[  152.949910][ T7167]  should_failslab+0x9/0x20
[  152.952258][ T7167]  kmalloc_trace_noprof+0x6b/0x300
[  152.954657][ T7167]  ? p9_fid_create+0x45/0x470
[  152.956681][ T7167]  ? __pfx_v9fs_xattr_handler_get+0x10/0x10
[  152.959468][ T7167]  p9_fid_create+0x45/0x470
[  152.962199][ T7167]  p9_client_xattrwalk+0x47/0x2b0
[  152.964743][ T7167]  ? __pfx_v9fs_xattr_handler_get+0x10/0x10
[  152.967272][ T7167]  v9fs_fid_xattr_get+0x108/0x320
[  152.969268][ T7167]  ? __pfx_v9fs_fid_xattr_get+0x10/0x10
[  152.971532][ T7167]  ? __pfx_v9fs_fid_find+0x10/0x10
[  152.973447][ T7167]  ? v9fs_fid_lookup+0xe9/0xf20
[  152.975300][ T7167]  v9fs_xattr_handler_get+0x6b/0x130
[  152.977200][ T7167]  __vfs_getxattr+0x13b/0x1a0
[  152.979071][ T7167]  ? __pfx___vfs_getxattr+0x10/0x10
[  152.981043][ T7167]  ? netfs_start_io_direct+0x116/0x260
[  152.983005][ T7167]  ? netfs_start_io_direct+0x116/0x260
[  152.985053][ T7167]  cap_inode_need_killpriv+0x40/0x60
[  152.986960][ T7167]  security_inode_need_killpriv+0x65/0xb0
[  152.989056][ T7167]  file_remove_privs_flags+0x3a6/0x5d0
[  152.991954][ T7167]  ? __pfx_file_remove_privs_flags+0x10/0x10
[  152.995230][ T7167]  ? generic_write_checks+0x322/0x490
[  152.998332][ T7167]  ? __pfx_generic_write_checks+0x10/0x10
[  153.001093][ T7167]  netfs_unbuffered_write_iter+0x291/0x7a0
[  153.004528][ T7167]  v9fs_file_write_iter+0xc5/0x100
[  153.007183][ T7167]  vfs_write+0x6b6/0x1140
[  153.009094][ T7167]  ? __pfx_v9fs_file_write_iter+0x10/0x10
[  153.011887][ T7167]  ? __pfx_vfs_write+0x10/0x10
[  153.015063][ T7167]  ? __pfx___mutex_lock+0x10/0x10
[  153.018445][ T7167]  ? __fget_files+0x256/0x400
[  153.020711][ T7167]  ksys_write+0x12f/0x260
[  153.022861][ T7167]  ? __pfx_ksys_write+0x10/0x10
[  153.026108][ T7167]  do_syscall_64+0xcd/0x250
[  153.029306][ T7167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.032829][ T7167] RIP: 0033:0x7ff83a575bd9
[  153.035340][ T7167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.044051][ T7167] RSP: 002b:00007ff83b30a048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  153.047608][ T7167] RAX: ffffffffffffffda RBX: 00007ff83a703f60 RCX: 00007ff83a575bd9
[  153.051858][ T7167] RDX: 000000000000fecc RSI: 0000000020000100 RDI: 0000000000000005
[  153.055891][ T7167] RBP: 00007ff83b30a0a0 R08: 0000000000000000 R09: 0000000000000000
[  153.060120][ T7167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.063600][ T7167] R13: 000000000000000b R14: 00007ff83a703f60 R15: 00007ffd2bbe0388
[  153.067321][ T7167]  </TASK>
[  153.119275][  T828] usb 6-1: too many configurations: 12, using maximum allowed: 8
[  153.144412][  T828] usb 6-1: New USB device found, idVendor=5bd3, idProduct=317c, bcdDevice= 4.5e
[  153.148733][  T828] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.163338][  T828] usb 6-1: config 0 descriptor??
[  153.378251][ T7175] xt_TPROXY: Can be used only with -p tcp or -p udp
[  153.465194][ T7188] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(8)
[  153.468007][ T7188] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  153.477245][ T7188] vhci_hcd vhci_hcd.0: Device attached
[  153.485549][ T7189] usbip_core: unknown command
[  153.487945][ T7189] vhci_hcd: unknown pdu 873187678
[  153.490708][ T7189] usbip_core: unknown command
[  153.498442][ T1093] vhci_hcd: stop threads
[  153.500186][ T1093] vhci_hcd: release socket
[  153.517419][ T1093] vhci_hcd: disconnect device
[  153.554587][ T7192] xt_TPROXY: Can be used only with -p tcp or -p udp
[  153.739055][ T7200] vxcan1: tx address claim with dlc 1
[  153.838700][   T39] audit: type=1400 audit(1721074535.779:460): avc:  denied  { write } for  pid=7201 comm="syz.2.495" name="binder0" dev="binder" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  153.892940][ T7202] 9pnet_fd: Insufficient options for proto=fd
[  153.967759][ T7207] netlink: 20 bytes leftover after parsing attributes in process `syz.2.496'.
[  154.027426][   T39] audit: type=1400 audit(1721074535.969:461): avc:  denied  { ioctl } for  pid=7206 comm="syz.2.496" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=17806 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  154.028091][ T5208] Bluetooth: Unexpected start frame (len 18)
[  154.043127][ T5243] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  154.057784][ T7211] netlink: 'syz.2.496': attribute type 2 has an invalid length.
[  154.345539][ T5243] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  154.350159][ T5243] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  154.360428][ T5243] usb 8-1: New USB device found, idVendor=0497, idProduct=c001, bcdDevice=cd.43
[  154.364719][ T5243] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.368220][ T5243] usb 8-1: Product: syz
[  154.370503][ T5243] usb 8-1: Manufacturer: syz
[  154.372351][ T5243] usb 8-1: SerialNumber: syz
[  154.385237][ T5243] usb 8-1: config 0 descriptor??
[  154.485209][ T7220] FAULT_INJECTION: forcing a failure.
[  154.485209][ T7220] name failslab, interval 1, probability 0, space 0, times 0
[  154.497954][ T7220] CPU: 1 PID: 7220 Comm: syz.2.501 Not tainted 6.10.0-syzkaller #0
[  154.502139][ T7220] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.506835][ T7220] Call Trace:
[  154.508231][ T7220]  <TASK>
[  154.509407][ T7220]  dump_stack_lvl+0x16c/0x1f0
[  154.511412][ T7220]  should_fail_ex+0x497/0x5b0
[  154.513347][ T7220]  should_failslab+0x9/0x20
[  154.515500][ T7220]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  154.517828][ T7220]  ? skb_clone+0x190/0x3f0
[  154.519836][ T7220]  skb_clone+0x190/0x3f0
[  154.521335][ T7220]  netlink_deliver_tap+0xab3/0xd90
[  154.524074][ T7220]  netlink_dump+0x6ff/0xe00
[  154.526154][ T7220]  ? __pfx_netlink_dump+0x10/0x10
[  154.528132][ T7220]  ? kfree_skbmem+0x10e/0x200
[  154.529830][ T7220]  ? kfree_skbmem+0x10e/0x200
[  154.531865][ T7220]  netlink_recvmsg+0xa0d/0xf30
[  154.533864][ T7220]  ? __pfx_netlink_recvmsg+0x10/0x10
[  154.536061][ T7220]  ? trace_kmalloc+0x2d/0xe0
[  154.538549][ T7220]  ? __kmalloc_noprof+0x20b/0x410
[  154.541190][ T7220]  ? security_socket_recvmsg+0x98/0xd0
[  154.543546][ T7220]  sock_recvmsg+0x1f6/0x250
[  154.545539][ T7220]  ____sys_recvmsg+0x21f/0x6b0
[  154.547789][ T7220]  ? __pfx_____sys_recvmsg+0x10/0x10
[  154.550312][ T7220]  ? find_held_lock+0x2d/0x110
[  154.552766][ T7220]  ___sys_recvmsg+0x115/0x1a0
[  154.555184][ T7220]  ? __pfx____sys_recvmsg+0x10/0x10
[  154.557474][ T7220]  ? timekeeping_debug_get_ns+0x3e0/0x5b0
[  154.559906][ T7220]  ? __fget_light+0x173/0x210
[  154.561817][ T7220]  do_recvmmsg+0x2ba/0x750
[  154.563601][ T7220]  ? __pfx_do_recvmmsg+0x10/0x10
[  154.565734][ T7220]  ? __pfx___might_resched+0x10/0x10
[  154.568007][ T7220]  ? __might_fault+0xe3/0x190
[  154.569962][ T7220]  ? __pfx_get_timespec64+0x10/0x10
[  154.572002][ T7220]  __x64_sys_recvmmsg+0x1a6/0x290
[  154.574017][ T7220]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  154.576240][ T7220]  do_syscall_64+0xcd/0x250
[  154.578574][ T7220]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.581216][ T7220] RIP: 0033:0x7ff83a575bd9
[  154.583119][ T7220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.593978][ T7220] RSP: 002b:00007ff83b30a048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  154.597868][ T7220] RAX: ffffffffffffffda RBX: 00007ff83a703f60 RCX: 00007ff83a575bd9
[  154.600980][ T7220] RDX: 04000000000003b4 RSI: 00000000200037c0 RDI: 0000000000000003
[  154.604925][ T7220] RBP: 00007ff83b30a0a0 R08: 0000000020003700 R09: 0000000000000000
[  154.604945][ T7220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  154.604954][ T7220] R13: 000000000000000b R14: 00007ff83a703f60 R15: 00007ffd2bbe0388
[  154.604966][ T7220]  </TASK>
[  154.687000][   T39] audit: type=1800 audit(1721074536.629:462): pid=7224 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.3.494" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[  155.526224][ T7247] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  155.818296][  T825] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  155.829842][  T828] usb 6-1: string descriptor 0 read error: -71
[  155.838411][  T828] usb 6-1: USB disconnect, device number 4
[  156.008742][  T825] usb 5-1: too many configurations: 12, using maximum allowed: 8
[  156.045440][  T825] usb 5-1: New USB device found, idVendor=5bd3, idProduct=317c, bcdDevice= 4.5e
[  156.049529][  T825] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.057445][  T825] usb 5-1: config 0 descriptor??
[  156.083554][ T7256] netlink: 20 bytes leftover after parsing attributes in process `syz.2.510'.
[  156.101145][ T7256] usb 8-1: USB disconnect, device number 13
[  156.147341][ T7253] vivid-003: =================  START STATUS  =================
[  156.154398][ T7256] netlink: 'syz.2.510': attribute type 2 has an invalid length.
[  156.154402][ T7253] vivid-003: Radio HW Seek Mode: Bounded
[  156.161069][ T7253] vivid-003: Radio Programmable HW Seek: false
[  156.164851][ T7253] vivid-003: RDS Rx I/O Mode: Block I/O
[  156.168543][ T7253] vivid-003: Generate RBDS Instead of RDS: false
[  156.173315][ T7253] vivid-003: RDS Reception: true
[  156.175855][ T7253] vivid-003: RDS Program Type: 0 inactive
[  156.179116][ T7253] vivid-003: RDS PS Name:  inactive
[  156.181606][ T7253] vivid-003: RDS Radio Text:  inactive
[  156.184189][ T7253] vivid-003: RDS Traffic Announcement: false inactive
[  156.187256][ T7253] vivid-003: RDS Traffic Program: false inactive
[  156.190550][ T7253] vivid-003: RDS Music: false inactive
[  156.192934][ T7253] vivid-003: ==================  END STATUS  ==================
[  156.343573][ T7267] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(9)
[  156.346370][ T7267] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  156.349712][ T7267] vhci_hcd vhci_hcd.0: Device attached
[  156.487008][   T39] audit: type=1400 audit(1721074538.429:463): avc:  denied  { write } for  pid=7270 comm="syz.2.513" name="anycast6" dev="proc" ino=4026532981 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  156.549809][ T5243] vhci_hcd: vhci_device speed not set
[  156.618197][ T5243] usb 13-2: new full-speed USB device number 2 using vhci_hcd
[  156.763913][   T39] audit: type=1400 audit(1721074538.709:464): avc:  denied  { write } for  pid=7273 comm="syz.3.514" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  156.783140][   T39] audit: type=1400 audit(1721074538.729:465): avc:  denied  { read } for  pid=7273 comm="syz.3.514" name="ppp" dev="devtmpfs" ino=714 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  156.796873][   T39] audit: type=1400 audit(1721074538.729:466): avc:  denied  { open } for  pid=7273 comm="syz.3.514" path="/dev/ppp" dev="devtmpfs" ino=714 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  156.810477][   T39] audit: type=1400 audit(1721074538.749:467): avc:  denied  { shutdown } for  pid=7273 comm="syz.3.514" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  157.896538][ T7298] =======================================================
[  157.896538][ T7298] WARNING: The mand mount option has been deprecated and
[  157.896538][ T7298]          and is ignored by this kernel. Remove the mand
[  157.896538][ T7298]          option from the mount to silence this warning.
[  157.896538][ T7298] =======================================================
[  158.248215][ T7268] vhci_hcd: connection reset by peer
[  158.252928][  T825] usb 5-1: string descriptor 0 read error: -71
[  158.257827][ T6943] vhci_hcd: stop threads
[  158.262828][ T6943] vhci_hcd: release socket
[  158.266007][ T6943] vhci_hcd: disconnect device
[  158.284370][  T825] usb 5-1: USB disconnect, device number 6
[  158.305397][    C3] vkms_vblank_simulate: vblank timer overrun
[  158.757024][ T7302] xt_TPROXY: Can be used only with -p tcp or -p udp
[  159.055674][ T7310] netlink: 52 bytes leftover after parsing attributes in process `syz.1.526'.
[  159.116558][   T39] audit: type=1400 audit(1721074541.059:468): avc:  denied  { write } for  pid=7313 comm="syz.1.528" name="renderD128" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  160.017058][ T7328] xt_TPROXY: Can be used only with -p tcp or -p udp
[  160.126975][ T7331] xt_TPROXY: Can be used only with -p tcp or -p udp
[  160.317589][ T7336] xt_TPROXY: Can be used only with -p tcp or -p udp
[  160.742783][ T7340] vivid-003: =================  START STATUS  =================
[  160.746448][ T7340] vivid-003: Radio HW Seek Mode: Bounded
[  160.757894][ T7340] vivid-003: Radio Programmable HW Seek: false
[  160.762293][ T7340] vivid-003: RDS Rx I/O Mode: Block I/O
[  160.767800][ T7340] vivid-003: Generate RBDS Instead of RDS: false
[  160.773396][ T7340] vivid-003: RDS Reception: true
[  160.775639][ T7340] vivid-003: RDS Program Type: 0 inactive
[  160.786118][ T7340] vivid-003: RDS PS Name:  inactive
[  160.827931][ T7340] vivid-003: RDS Radio Text:  inactive
[  160.830371][ T7340] vivid-003: RDS Traffic Announcement: false inactive
[  160.833343][ T7340] vivid-003: RDS Traffic Program: false inactive
[  160.857694][ T7340] vivid-003: RDS Music: false inactive
[  160.860190][ T7340] vivid-003: ==================  END STATUS  ==================
[  161.783678][ T5243] vhci_hcd: vhci_device speed not set
[  162.112524][ T7360] kvm: pic: non byte write
[  162.295178][ T7367] xt_TPROXY: Can be used only with -p tcp or -p udp
[  162.464855][   T39] audit: type=1400 audit(1721074544.409:469): avc:  denied  { setopt } for  pid=7372 comm="syz.3.542" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  162.483186][   T39] audit: type=1400 audit(1721074544.419:470): avc:  denied  { write } for  pid=7372 comm="syz.3.542" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  163.268804][  T828] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  163.447971][  T828] usb 5-1: Using ep0 maxpacket: 8
[  163.452415][  T828] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  163.458429][  T828] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  163.463832][  T828] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  163.468437][  T828] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  163.474603][  T828] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  163.479410][  T828] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.514348][   T39] audit: type=1400 audit(1721074545.459:471): avc:  denied  { ioctl } for  pid=7386 comm="syz.2.548" path="/dev/rtc0" dev="devtmpfs" ino=865 ioctlcmd=0x700b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  163.531290][   T39] audit: type=1400 audit(1721074545.479:472): avc:  denied  { write } for  pid=4672 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  163.540869][   T39] audit: type=1400 audit(1721074545.479:473): avc:  denied  { remove_name } for  pid=4672 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  163.552190][   T39] audit: type=1400 audit(1721074545.479:474): avc:  denied  { add_name } for  pid=4672 comm="syslogd" name="messages.0" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  163.701037][   T39] audit: type=1400 audit(1721074545.649:475): avc:  denied  { bind } for  pid=7382 comm="syz.0.546" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  163.712678][   T39] audit: type=1400 audit(1721074545.659:476): avc:  denied  { write } for  pid=7382 comm="syz.0.546" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  163.713984][  T828] usb 5-1: GET_CAPABILITIES returned 0
[  163.739914][  T828] usbtmc 5-1:16.0: can't read capabilities
[  163.867154][   T39] audit: type=1400 audit(1721074545.809:477): avc:  denied  { connect } for  pid=7391 comm="syz.1.549" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  163.989186][ T7399] xt_TPROXY: Can be used only with -p tcp or -p udp
[  164.126020][  T828] usb 5-1: USB disconnect, device number 7
[  164.126373][ T7410] XFS (nullb0): Invalid superblock magic number
[  165.218119][ T6396] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  165.359947][ T7427] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  165.481660][ T6396] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  165.485508][ T6396] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  165.493054][ T6396] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  165.497974][ T6396] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  165.501474][ T6396] usb 7-1: Manufacturer: syz
[  165.535189][ T6396] usb 7-1: config 0 descriptor??
[  165.600206][ T6396] rc_core: IR keymap rc-hauppauge not found
[  165.603316][ T6396] Registered IR keymap rc-empty
[  165.615567][ T6396] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  165.635363][ T6396] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input9
[  166.054284][ T5208] Bluetooth: hci1: hardware error 0x00
[  166.226774][   T39] audit: type=1400 audit(1721074548.169:478): avc:  denied  { bind } for  pid=7440 comm="syz.3.560" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  166.779110][ T7448] xt_TPROXY: Can be used only with -p tcp or -p udp
[  168.032752][    C0] hrtimer: interrupt took 1745492 ns
[  168.048090][   T57] usb 7-1: USB disconnect, device number 7
[  168.134489][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  168.148103][ T5208] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  169.917522][ T7514] kvm: pic: non byte write
[  170.331415][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  170.533788][ T7533] EXT4-fs warning (device sda1): verify_group_input:136: Cannot add at group 262395 (only 8 groups)
[  170.643335][   T39] audit: type=1400 audit(1721074552.589:479): avc:  denied  { getopt } for  pid=7534 comm="syz.3.586" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  171.306267][   T39] audit: type=1400 audit(1721074553.249:480): avc:  denied  { mount } for  pid=7555 comm="syz.3.592" name="/" dev="hugetlbfs" ino=18129 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  171.335100][   T39] audit: type=1400 audit(1721074553.279:481): avc:  denied  { module_request } for  pid=7555 comm="syz.3.592" kmod="netdev-wlan1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  171.409104][ T7560] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  171.447043][   T39] audit: type=1400 audit(1721074553.389:482): avc:  denied  { unmount } for  pid=5201 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  171.570941][   T39] audit: type=1326 audit(1721074553.529:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.3.594" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a4575bd9 code=0x7ffc0000
[  171.580891][   T39] audit: type=1326 audit(1721074553.529:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.3.594" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a4575bd9 code=0x7ffc0000
[  171.607942][   T39] audit: type=1326 audit(1721074553.529:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.3.594" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8a4575bd9 code=0x7ffc0000
[  171.616778][   T39] audit: type=1326 audit(1721074553.529:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.3.594" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a4575bd9 code=0x7ffc0000
[  171.629193][   T39] audit: type=1326 audit(1721074553.529:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.3.594" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a4575bd9 code=0x7ffc0000
[  171.639426][   T39] audit: type=1326 audit(1721074553.529:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.3.594" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8a4575bd9 code=0x7ffc0000
[  171.708078][  T825] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  171.759965][ T7568] netlink: 134744 bytes leftover after parsing attributes in process `syz.0.596'.
[  171.823509][    C2] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  171.898977][  T825] usb 7-1: too many configurations: 12, using maximum allowed: 8
[  171.976939][  T825] usb 7-1: New USB device found, idVendor=5bd3, idProduct=317c, bcdDevice= 4.5e
[  171.981523][  T825] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.996816][  T825] usb 7-1: config 0 descriptor??
[  172.300215][ T7575] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(8)
[  172.302993][ T7575] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  172.308991][ T7575] vhci_hcd vhci_hcd.0: Device attached
[  172.324813][ T7576] usbip_core: unknown command
[  172.329032][ T7576] vhci_hcd: unknown pdu 873187678
[  172.333557][ T7576] usbip_core: unknown command
[  172.345180][ T6929] vhci_hcd: stop threads
[  172.347203][ T6929] vhci_hcd: release socket
[  172.353827][ T6929] vhci_hcd: disconnect device
[  172.830563][ T7581] kvm: pic: non byte write
[  173.487346][  T825] usb 7-1: string descriptor 0 read error: -71
[  173.493654][  T825] usb 7-1: USB disconnect, device number 8
[  174.078928][ T7601] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  174.447985][  T826] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  174.639953][  T826] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  174.644087][  T826] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  174.738445][  T826] usb 5-1: New USB device found, idVendor=0497, idProduct=c001, bcdDevice=cd.43
[  174.742200][  T826] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.745590][  T826] usb 5-1: Product: syz
[  174.748409][  T826] usb 5-1: Manufacturer: syz
[  174.750660][  T826] usb 5-1: SerialNumber: syz
[  174.771350][  T826] usb 5-1: config 0 descriptor??
[  174.839704][ T7628] tun0: tun_chr_ioctl cmd 1074025672
[  174.842451][ T7628] tun0: ignored: set checksum enabled
[  175.408420][ T7642] FAULT_INJECTION: forcing a failure.
[  175.408420][ T7642] name failslab, interval 1, probability 0, space 0, times 0
[  175.414530][ T7642] CPU: 0 PID: 7642 Comm: syz.1.613 Not tainted 6.10.0-syzkaller #0
[  175.418163][ T7642] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.422982][ T7642] Call Trace:
[  175.424390][ T7642]  <TASK>
[  175.425670][ T7642]  dump_stack_lvl+0x16c/0x1f0
[  175.427604][ T7642]  should_fail_ex+0x497/0x5b0
[  175.429616][ T7642]  should_failslab+0x9/0x20
[  175.431612][ T7642]  kmalloc_trace_noprof+0x6b/0x300
[  175.433909][ T7642]  ? ovl_init_fs_context+0x96/0x5d0
[  175.436292][ T7642]  ? kasan_save_track+0x14/0x30
[  175.438449][ T7642]  ovl_init_fs_context+0x96/0x5d0
[  175.440569][ T7642]  ? __pfx_ovl_init_fs_context+0x10/0x10
[  175.442765][ T7642]  alloc_fs_context+0x54a/0x9c0
[  175.444775][ T7642]  path_mount+0xb08/0x1f20
[  175.446965][ T7642]  ? kmem_cache_free+0x12f/0x3a0
[  175.449385][ T7642]  ? __pfx_path_mount+0x10/0x10
[  175.451543][ T7642]  ? putname+0x12e/0x170
[  175.453979][ T7642]  __x64_sys_mount+0x297/0x320
[  175.456962][ T7642]  ? __pfx___x64_sys_mount+0x10/0x10
[  175.459272][ T7642]  do_syscall_64+0xcd/0x250
[  175.461203][ T7642]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.463936][ T7642] RIP: 0033:0x7f7474375bd9
[  175.465943][ T7642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.474412][ T7642] RSP: 002b:00007f747518d048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  175.477914][ T7642] RAX: ffffffffffffffda RBX: 00007f7474504038 RCX: 00007f7474375bd9
[  175.481295][ T7642] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 0000000000000000
[  175.484852][ T7642] RBP: 00007f747518d0a0 R08: 0000000020000900 R09: 0000000000000000
[  175.488378][ T7642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  175.492502][ T7642] R13: 000000000000006e R14: 00007f7474504038 R15: 00007ffff9cc57c8
[  175.496575][ T7642]  </TASK>
[  175.582961][ T7654] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  175.704478][ T7661] EXT4-fs warning (device sda1): verify_group_input:136: Cannot add at group 262395 (only 8 groups)
[  175.973192][ T7666] netlink: 104 bytes leftover after parsing attributes in process `syz.1.618'.
[  175.990002][   T39] kauditd_printk_skb: 49 callbacks suppressed
[  175.990014][   T39] audit: type=1326 audit(1721074557.949:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7663 comm="syz.1.618" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7474375bd9 code=0x7fc00000
[  176.641581][   T39] audit: type=1400 audit(1721074558.589:539): avc:  denied  { create } for  pid=7677 comm="syz.2.622" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  176.650200][   T39] audit: type=1400 audit(1721074558.589:540): avc:  denied  { setopt } for  pid=7677 comm="syz.2.622" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  176.660897][   T39] audit: type=1400 audit(1721074558.589:541): avc:  denied  { write } for  pid=7677 comm="syz.2.622" path="socket:[20697]" dev="sockfs" ino=20697 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  176.730583][   T39] audit: type=1326 audit(1721074558.679:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7663 comm="syz.1.618" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7474375bd9 code=0x7fc00000
[  176.739905][   T39] audit: type=1326 audit(1721074558.679:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7663 comm="syz.1.618" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7474375bd9 code=0x7fc00000
[  176.757601][   T39] audit: type=1326 audit(1721074558.679:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7663 comm="syz.1.618" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7474375bd9 code=0x7fc00000
[  176.781794][   T39] audit: type=1326 audit(1721074558.679:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7663 comm="syz.1.618" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7474375bd9 code=0x7fc00000
[  176.794141][   T39] audit: type=1326 audit(1721074558.679:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7663 comm="syz.1.618" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7474375bd9 code=0x7fc00000
[  176.806613][   T39] audit: type=1326 audit(1721074558.679:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7663 comm="syz.1.618" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7474375bd9 code=0x7fc00000
[  176.973324][ T7687] sch_fq: defrate 0 ignored.
[  177.049278][ T7686] netlink: 'syz.1.623': attribute type 21 has an invalid length.
[  177.053222][ T7686] netlink: 132 bytes leftover after parsing attributes in process `syz.1.623'.
[  177.191753][  T825] usb 5-1: USB disconnect, device number 8
[  177.342666][ T7703] xt_TPROXY: Can be used only with -p tcp or -p udp
[  177.735526][    C2] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  177.771884][ T7718] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  177.922346][ T7720] EXT4-fs warning (device sda1): verify_group_input:136: Cannot add at group 262395 (only 8 groups)
[  178.947970][  T827] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  178.948231][ T7737] netlink: 176 bytes leftover after parsing attributes in process `syz.2.638'.
[  178.961925][ T7734] netlink: 'syz.2.638': attribute type 1 has an invalid length.
[  178.988013][   T57] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  179.148109][  T827] usb 5-1: Using ep0 maxpacket: 16
[  179.157398][  T827] usb 5-1: config 0 has no interfaces?
[  179.161700][  T827] usb 5-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  179.166445][  T827] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.174645][  T827] usb 5-1: config 0 descriptor??
[  179.180503][   T57] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  179.185526][   T57] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  179.194020][   T57] usb 6-1: New USB device found, idVendor=0497, idProduct=c001, bcdDevice=cd.43
[  179.200055][   T57] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.204409][   T57] usb 6-1: Product: syz
[  179.206677][   T57] usb 6-1: Manufacturer: syz
[  179.208864][   T57] usb 6-1: SerialNumber: syz
[  179.215780][   T57] usb 6-1: config 0 descriptor??
[  179.317339][ T7743] XFS (nullb0): Invalid superblock magic number
[  179.736725][ T7751] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  179.744314][ T7751] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  180.138806][    C1] vkms_vblank_simulate: vblank timer overrun
[  180.909391][ T7757] sch_fq: defrate 0 ignored.
[  181.653125][   T57] usb 5-1: USB disconnect, device number 9
[  181.686093][    T8] usb 6-1: USB disconnect, device number 5
[  182.134709][ T7784] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  182.439013][  T826] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  182.629227][  T826] usb 7-1: too many configurations: 12, using maximum allowed: 8
[  182.656200][  T826] usb 7-1: New USB device found, idVendor=5bd3, idProduct=317c, bcdDevice= 4.5e
[  182.660470][  T826] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.666394][  T826] usb 7-1: config 0 descriptor??
[  182.758136][ T4989] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  182.956146][ T4989] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  182.958235][ T7810] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(8)
[  182.960567][ T4989] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  182.962798][ T7810] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  182.969611][ T4989] usb 6-1: New USB device found, idVendor=0497, idProduct=c001, bcdDevice=cd.43
[  182.973284][ T4989] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.974297][ T7810] vhci_hcd vhci_hcd.0: Device attached
[  182.976615][ T4989] usb 6-1: Product: syz
[  182.976634][ T4989] usb 6-1: Manufacturer: syz
[  182.976648][ T4989] usb 6-1: SerialNumber: syz
[  182.988816][ T4989] usb 6-1: config 0 descriptor??
[  183.151563][ T7814] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  183.154748][ T7814] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  183.158066][ T7814] vhci_hcd vhci_hcd.0: Device attached
[  183.201595][   T25] vhci_hcd: vhci_device speed not set
[  183.220121][ T7816] vhci_hcd: connection closed
[  183.220369][ T6929] vhci_hcd: stop threads
[  183.224692][ T6929] vhci_hcd: release socket
[  183.226683][ T6929] vhci_hcd: disconnect device
[  183.254951][   T39] kauditd_printk_skb: 46 callbacks suppressed
[  183.254967][   T39] audit: type=1800 audit(1721074565.199:594): pid=7819 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.655" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  183.269973][   T25] usb 17-2: new full-speed USB device number 3 using vhci_hcd
[  183.523633][   T39] audit: type=1400 audit(1721074565.469:595): avc:  denied  { read } for  pid=7821 comm="syz.3.661" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  183.529119][ T7822] FAULT_INJECTION: forcing a failure.
[  183.529119][ T7822] name failslab, interval 1, probability 0, space 0, times 0
[  183.534219][   T39] audit: type=1400 audit(1721074565.469:596): avc:  denied  { open } for  pid=7821 comm="syz.3.661" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  183.538476][ T7822] CPU: 2 PID: 7822 Comm: syz.3.661 Not tainted 6.10.0-syzkaller #0
[  183.551862][ T7822] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  183.556737][ T7822] Call Trace:
[  183.558547][ T7822]  <TASK>
[  183.559736][ T7822]  dump_stack_lvl+0x16c/0x1f0
[  183.561596][ T7822]  should_fail_ex+0x497/0x5b0
[  183.563863][ T7822]  should_failslab+0x9/0x20
[  183.565850][ T7822]  __kmalloc_noprof+0xcf/0x410
[  183.568075][ T7822]  ? d_absolute_path+0x137/0x1b0
[  183.570086][ T7822]  tomoyo_encode2+0x100/0x3e0
[  183.571988][ T7822]  tomoyo_encode+0x29/0x50
[  183.573829][ T7822]  tomoyo_realpath_from_path+0x19d/0x720
[  183.576363][ T7822]  tomoyo_path_number_perm+0x245/0x590
[  183.578973][ T7822]  ? tomoyo_path_number_perm+0x232/0x590
[  183.581607][ T7822]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  183.584254][ T7822]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  183.587245][ T7822]  ? __fget_files+0x256/0x400
[  183.589365][ T7822]  security_file_ioctl+0x75/0xc0
[  183.591233][ T7822]  __x64_sys_ioctl+0xbb/0x220
[  183.593275][ T7822]  do_syscall_64+0xcd/0x250
[  183.595177][ T7822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.597461][ T7822] RIP: 0033:0x7fb8a4575bd9
[  183.599191][ T7822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.606093][ T7822] RSP: 002b:00007fb8a53e0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  183.609155][ T7822] RAX: ffffffffffffffda RBX: 00007fb8a4703f60 RCX: 00007fb8a4575bd9
[  183.612137][ T7822] RDX: 0000000000000000 RSI: 000000000000125f RDI: 0000000000000004
[  183.614948][ T7822] RBP: 00007fb8a53e00a0 R08: 0000000000000000 R09: 0000000000000000
[  183.617950][ T7822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.620982][ T7822] R13: 000000000000000b R14: 00007fb8a4703f60 R15: 00007ffd3c703cf8
[  183.624150][ T7822]  </TASK>
[  183.626886][ T7822] ERROR: Out of memory at tomoyo_realpath_from_path.
[  183.630401][   T39] audit: type=1400 audit(1721074565.579:597): avc:  denied  { ioctl } for  pid=7821 comm="syz.3.661" path="/dev/nullb0" dev="devtmpfs" ino=691 ioctlcmd=0x125f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  183.902611][ T7811] vhci_hcd: connection reset by peer
[  183.904326][  T826] usb 7-1: string descriptor 0 read error: -71
[  183.907408][   T78] vhci_hcd: stop threads
[  183.910640][   T78] vhci_hcd: release socket
[  183.912980][   T78] vhci_hcd: disconnect device
[  183.918130][  T826] usb 7-1: USB disconnect, device number 9
[  185.215063][ T7851] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  185.218024][ T7851] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  185.223367][ T7851] vhci_hcd vhci_hcd.0: Device attached
[  185.384207][   T57] usb 6-1: USB disconnect, device number 6
[  185.508519][ T4989] usb 13-1: new low-speed USB device number 3 using vhci_hcd
[  186.044105][ T7852] vhci_hcd: connection reset by peer
[  186.053464][   T13] vhci_hcd: stop threads
[  186.055352][   T13] vhci_hcd: release socket
[  186.057337][   T13] vhci_hcd: disconnect device
[  187.108881][ T7871] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  187.301848][ T7884] vivid-001: =================  START STATUS  =================
[  187.306468][ T7884] vivid-001: Radio HW Seek Mode: Bounded
[  187.310870][ T7884] vivid-001: Radio Programmable HW Seek: false
[  187.315192][ T7884] vivid-001: RDS Rx I/O Mode: Block I/O
[  187.317604][ T7884] vivid-001: Generate RBDS Instead of RDS: false
[  187.323203][ T7884] vivid-001: RDS Reception: true
[  187.327287][ T7884] vivid-001: RDS Program Type: 0 inactive
[  187.335690][ T7884] vivid-001: RDS PS Name:  inactive
[  187.342037][ T7884] vivid-001: RDS Radio Text:  inactive
[  187.345948][ T7884] vivid-001: RDS Traffic Announcement: false inactive
[  187.350272][ T7884] vivid-001: RDS Traffic Program: false inactive
[  187.353405][ T7884] vivid-001: RDS Music: false inactive
[  187.360421][ T7884] vivid-001: ==================  END STATUS  ==================
[  188.137554][ T7894] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 52581 - 0
[  188.153002][ T7894] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 52581 - 0
[  188.159266][ T7894] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 52581 - 0
[  188.164642][ T7894] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 52581 - 0
[  188.169610][ T7894] netdevsim netdevsim1 netdevsim0: set [1, 2] type 2 family 0 port 48203 - 0
[  188.174170][ T7894] netdevsim netdevsim1 netdevsim1: set [1, 2] type 2 family 0 port 48203 - 0
[  188.182638][ T7894] netdevsim netdevsim1 netdevsim2: set [1, 2] type 2 family 0 port 48203 - 0
[  188.187463][ T7894] netdevsim netdevsim1 netdevsim3: set [1, 2] type 2 family 0 port 48203 - 0
[  188.192926][ T7894] geneve2: entered promiscuous mode
[  188.195711][ T7894] geneve2: entered allmulticast mode
[  188.363960][   T39] audit: type=1326 audit(1721074570.309:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7899 comm="syz.1.682" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7474375bd9 code=0x0
[  188.398389][   T25] vhci_hcd: vhci_device speed not set
[  188.426721][   T39] audit: type=1400 audit(1721074570.369:599): avc:  denied  { write } for  pid=7899 comm="syz.1.682" name="nvram" dev="devtmpfs" ino=633 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  188.430581][ T7901] input: syz0 as /devices/virtual/input/input10
[  188.436260][   T39] audit: type=1400 audit(1721074570.369:600): avc:  denied  { open } for  pid=7899 comm="syz.1.682" path="/dev/nvram" dev="devtmpfs" ino=633 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  188.457766][   T39] audit: type=1400 audit(1721074570.379:601): avc:  denied  { wake_alarm } for  pid=7899 comm="syz.1.682" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  188.474488][ T7901] Bluetooth: MGMT ver 1.22
[  189.463557][ T7917] kvm: emulating exchange as write
[  189.539529][ T7926] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  189.542522][ T7926] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  189.547006][ T7926] vhci_hcd vhci_hcd.0: Device attached
[  189.566810][ T7929] netlink: 4 bytes leftover after parsing attributes in process `syz.1.688'.
[  189.640257][ T7927] vhci_hcd: connection closed
[  189.648771][   T13] vhci_hcd: stop threads
[  189.653217][   T13] vhci_hcd: release socket
[  189.655342][   T13] vhci_hcd: disconnect device
[  189.700697][ T7932] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7932 comm=syz.0.693
[  189.914704][ T7935] vivid-001: =================  START STATUS  =================
[  189.922970][ T7935] vivid-001: Radio HW Seek Mode: Bounded
[  189.926357][ T7935] vivid-001: Radio Programmable HW Seek: false
[  189.931338][ T7935] vivid-001: RDS Rx I/O Mode: Block I/O
[  189.933948][ T7935] vivid-001: Generate RBDS Instead of RDS: false
[  189.936899][ T7935] vivid-001: RDS Reception: true
[  189.939486][ T7935] vivid-001: RDS Program Type: 0 inactive
[  189.942118][ T7935] vivid-001: RDS PS Name:  inactive
[  189.944447][ T7935] vivid-001: RDS Radio Text:  inactive
[  189.949748][ T7935] vivid-001: RDS Traffic Announcement: false inactive
[  189.952891][ T7935] vivid-001: RDS Traffic Program: false inactive
[  189.955878][ T7935] vivid-001: RDS Music: false inactive
[  189.958862][ T7935] vivid-001: ==================  END STATUS  ==================
[  190.648045][ T4989] vhci_hcd: vhci_device speed not set
[  190.790359][ T7959] xt_TPROXY: Can be used only with -p tcp or -p udp
[  191.400742][   T39] audit: type=1400 audit(1721074573.349:602): avc:  denied  { connect } for  pid=7966 comm="syz.3.703" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  191.426051][   T39] audit: type=1400 audit(1721074573.379:603): avc:  denied  { nlmsg_read } for  pid=7969 comm="syz.2.704" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  191.445408][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.451824][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.455737][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.459270][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.462723][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.466082][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.469780][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.473449][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.477799][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.481376][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.485031][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.488933][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.492306][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.504395][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.507740][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.511186][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.522623][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x4
[  191.536712][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.540903][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.545331][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x2
[  191.553651][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.557332][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.560821][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.570655][ T7973] XFS (nullb0): Invalid superblock magic number
[  191.572655][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.609480][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.612977][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.616650][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.621307][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.624629][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.628637][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.632547][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.635860][ T5276] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  191.662993][ T5276] hid-generic 0000:0000:0000.0010: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  191.988237][ T4634] Bluetooth: hci0: command 0x0406 tx timeout
[  192.000121][   T39] audit: type=1400 audit(1721074573.949:604): avc:  denied  { map } for  pid=7986 comm="syz.3.709" path="/175/file0/cpuacct.stat" dev="9p" ino=36575345 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  192.420323][ T8004] input: syz1 as /devices/virtual/input/input11
[  192.652455][  T827] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  192.666416][  T827] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  192.693153][    C3] ==================================================================
[  192.696776][    C3] BUG: KASAN: slab-use-after-free in __lock_acquire+0x2dd6/0x3b30
[  192.703156][    C3] Read of size 8 at addr ffff88803d333018 by task syz.3.717/8018
[  192.709290][    C3] 
[  192.710551][    C3] CPU: 3 PID: 8018 Comm: syz.3.717 Not tainted 6.10.0-syzkaller #0
[  192.713997][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  192.719713][    C3] Call Trace:
[  192.721468][    C3]  <IRQ>
[  192.723181][    C3]  dump_stack_lvl+0x116/0x1f0
[  192.728524][    C3]  print_report+0xc3/0x620
[  192.732034][    C3]  ? __virt_addr_valid+0x5e/0x590
[  192.735418][    C3]  ? __phys_addr+0xc6/0x150
[  192.739057][    C3]  kasan_report+0xd9/0x110
[  192.740856][    C3]  ? __lock_acquire+0x2dd6/0x3b30
[  192.744131][    C3]  ? __lock_acquire+0x2dd6/0x3b30
[  192.746658][    C3]  __lock_acquire+0x2dd6/0x3b30
[  192.748817][    C3]  ? try_to_wake_up+0x5d7/0x13e0
[  192.751245][    C3]  ? __pfx_lock_release+0x10/0x10
[  192.753972][    C3]  ? __raw_callee_save___pv_queued_spin_unlock_slowpath+0x15/0x30
[  192.758715][    C3]  ? __pfx___lock_acquire+0x10/0x10
[  192.761322][    C3]  ? do_raw_spin_unlock+0x172/0x230
[  192.764014][    C3]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  192.767534][    C3]  lock_acquire+0x1b1/0x560
[  192.770104][    C3]  ? p9_req_put+0xca/0x250
[  192.772842][    C3]  ? __pfx_lock_acquire+0x10/0x10
[  192.775243][    C3]  ? __raw_callee_save___pv_queued_spin_unlock_slowpath+0x15/0x30
[  192.778629][    C3]  ? do_raw_spin_unlock+0x53/0x230
[  192.780887][    C3]  ? .slowpath+0x9/0x18
[  192.782736][    C3]  _raw_spin_lock_irqsave+0x3a/0x60
[  192.784987][    C3]  ? p9_req_put+0xca/0x250
[  192.786746][    C3]  p9_req_put+0xca/0x250
[  192.788576][    C3]  req_done+0x1e7/0x2f0
[  192.790467][    C3]  ? __pfx_req_done+0x10/0x10
[  192.792477][    C3]  ? __pfx_req_done+0x10/0x10
[  192.794442][    C3]  vring_interrupt+0x31b/0x400
[  192.796249][    C3]  ? __pfx_vring_interrupt+0x10/0x10
[  192.798454][    C3]  __handle_irq_event_percpu+0x229/0x7c0
[  192.800877][    C3]  handle_irq_event+0xab/0x1e0
[  192.803194][    C3]  handle_edge_irq+0x263/0xd10
[  192.805575][    C3]  __common_interrupt+0xdf/0x250
[  192.807857][    C3]  common_interrupt+0xab/0xd0
[  192.809860][    C3]  </IRQ>
[  192.811131][    C3]  <TASK>
[  192.812322][    C3]  asm_common_interrupt+0x26/0x40
[  192.814434][    C3] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80
[  192.817406][    C3] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 66 4d 80 f6 48 89 df e8 4e ca 80 f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 <bf> 01 00 00 00 e8 05 07 72 f6 65 8b 05 96 53 18 75 85 c0 74 16 5b
[  192.824784][    C3] RSP: 0018:ffffc90003967b88 EFLAGS: 00000246
[  192.827591][    C3] RAX: 0000000000000002 RBX: ffff88802d170a00 RCX: 1ffffffff1fc88b9
[  192.830943][    C3] RDX: 0000000000000000 RSI: ffffffff8b2caee0 RDI: ffffffff8b903980
[  192.833888][    C3] RBP: 0000000000000287 R08: 0000000000000001 R09: 0000000000000001
[  192.836827][    C3] R10: ffffffff8fe48857 R11: ffff88806b228a00 R12: ffff88806b23ebc0
[  192.839788][    C3] R13: ffff88802d170014 R14: ffff88802d170a00 R15: ffffc90003967be8
[  192.842969][    C3]  try_to_wake_up+0x5d7/0x13e0
[  192.844942][    C3]  ? __pfx_try_to_wake_up+0x10/0x10
[  192.847626][    C3]  ? __pfx_lock_release+0x10/0x10
[  192.849963][    C3]  ? plist_check_head+0x9e/0x140
[  192.852121][    C3]  wake_up_q+0x91/0x140
[  192.854463][    C3]  ? do_raw_spin_unlock+0x172/0x230
[  192.856872][    C3]  futex_wake+0x43e/0x4e0
[  192.859151][    C3]  ? __pfx_futex_wake+0x10/0x10
[  192.861906][    C3]  ? __handle_mm_fault+0x4b7/0x5410
[  192.864582][    C3]  do_futex+0x1e5/0x350
[  192.866482][    C3]  ? __pfx_do_futex+0x10/0x10
[  192.868593][    C3]  __x64_sys_futex+0x1e1/0x4c0
[  192.871011][    C3]  ? __pfx___x64_sys_futex+0x10/0x10
[  192.873870][    C3]  do_syscall_64+0xcd/0x250
[  192.875899][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.878509][    C3] RIP: 0033:0x7fb8a4575bd9
[  192.880469][    C3] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.888264][    C3] RSP: 002b:00007ffd3c703dd8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  192.891765][    C3] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb8a4575bd9
[  192.912051][    C3] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb8a4703f68
[  192.915572][    C3] RBP: 0000000000000a27 R08: 0000000000000030 R09: 000000023c7040ff
[  192.919318][    C3] R10: 00007fb8a4400000 R11: 0000000000000246 R12: 00007fb8a4703f6c
[  192.922481][    C3] R13: 0000000000000000 R14: 00007fb8a4703f60 R15: 00007fb8a4703f60
[  192.925638][    C3]  </TASK>
[  192.926972][    C3] 
[  192.928230][    C3] Allocated by task 8020:
[  192.930269][    C3]  kasan_save_stack+0x33/0x60
[  192.932453][    C3]  kasan_save_track+0x14/0x30
[  192.934809][    C3]  __kasan_kmalloc+0xaa/0xb0
[  192.936719][    C3]  p9_client_create+0xcf/0x1210
[  192.938873][    C3]  v9fs_session_init+0x1f8/0x1a80
[  192.940943][    C3]  v9fs_mount+0xc6/0xaa0
[  192.943106][    C3]  legacy_get_tree+0x109/0x220
[  192.945695][    C3]  vfs_get_tree+0x8f/0x380
[  192.947786][    C3]  path_mount+0x14e6/0x1f20
[  192.950014][    C3]  __x64_sys_mount+0x297/0x320
[  192.952722][    C3]  do_syscall_64+0xcd/0x250
[  192.955199][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.958676][    C3] 
[  192.959866][    C3] Freed by task 8020:
[  192.961787][    C3]  kasan_save_stack+0x33/0x60
[  192.964227][    C3]  kasan_save_track+0x14/0x30
[  192.966807][    C3]  kasan_save_free_info+0x3b/0x60
[  192.969327][    C3]  poison_slab_object+0xf7/0x160
[  192.972318][    C3]  __kasan_slab_free+0x32/0x50
[  192.974859][    C3]  kfree+0x12a/0x3b0
[  192.977830][    C3]  p9_client_create+0xaaa/0x1210
[  192.980289][    C3]  v9fs_session_init+0x1f8/0x1a80
[  192.982534][    C3]  v9fs_mount+0xc6/0xaa0
[  192.984649][    C3]  legacy_get_tree+0x109/0x220
[  192.984715][   T39] audit: type=1400 audit(1721074574.889:605): avc:  denied  { unmount } for  pid=8021 comm="syz.1.718" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  192.987695][    C3]  vfs_get_tree+0x8f/0x380
[  192.987721][    C3]  path_mount+0x14e6/0x1f20
[  192.987739][    C3]  __x64_sys_mount+0x297/0x320
[  193.009381][    C3]  do_syscall_64+0xcd/0x250
[  193.011581][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.018917][    C3] 
[  193.019962][    C3] The buggy address belongs to the object at ffff88803d333000
[  193.019962][    C3]  which belongs to the cache kmalloc-512 of size 512
[  193.026285][    C3] The buggy address is located 24 bytes inside of
[  193.026285][    C3]  freed 512-byte region [ffff88803d333000, ffff88803d333200)
[  193.032366][    C3] 
[  193.035737][ T8023] netlink: 44 bytes leftover after parsing attributes in process `syz.1.718'.
[  193.049578][    C3] The buggy address belongs to the physical page:
[  193.049588][    C3] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3d330
[  193.049601][    C3] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  193.049611][    C3] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  193.049623][    C3] page_type: 0xffffefff(slab)
[  193.049634][    C3] raw: 00fff00000000040 ffff888015442c80 0000000000000000 dead000000000001
[  193.049644][    C3] raw: 0000000000000000 0000000080100010 00000001ffffefff 0000000000000000
[  193.049654][    C3] head: 00fff00000000040 ffff888015442c80 0000000000000000 dead000000000001
[  193.049664][    C3] head: 0000000000000000 0000000080100010 00000001ffffefff 0000000000000000
[  193.049674][    C3] head: 00fff00000000002 ffffea0000f4cc01 ffffffffffffffff 0000000000000000
[  193.049684][    C3] head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000
[  193.049690][    C3] page dumped because: kasan: bad access detected
[  193.049696][    C3] page_owner tracks the page as allocated
[  193.049700][    C3] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5205, tgid 5205 (syz-executor), ts 70606956676, free_ts 70541129480
[  193.049721][    C3]  post_alloc_hook+0x2d1/0x350
[  193.049737][    C3]  get_page_from_freelist+0x1353/0x2e50
[  193.049752][    C3]  __alloc_pages_noprof+0x22b/0x2460
[  193.049765][    C3]  alloc_slab_page+0x56/0x110
[  193.049777][    C3]  new_slab+0x84/0x260
[  193.049792][    C3]  ___slab_alloc+0xdac/0x1870
[  193.049807][    C3]  __slab_alloc.constprop.0+0x56/0xb0
[  193.049823][    C3]  __kmalloc_noprof+0x36d/0x410
[  193.049833][    C3]  fib6_info_alloc+0x40/0x160
[  193.049852][    C3]  ip6_route_info_create+0x337/0x1940
[  193.049865][    C3]  addrconf_f6i_alloc+0x393/0x670
[  193.049879][    C3]  ipv6_add_addr+0x538/0x2090
[  193.049895][    C3]  inet6_addr_add+0x3bb/0xbe0
[  193.049906][    C3]  inet6_rtm_newaddr+0x11e7/0x1ab0
[  193.049917][    C3]  rtnetlink_rcv_msg+0x3c7/0xea0
[  193.049931][    C3]  netlink_rcv_skb+0x16b/0x440
[  193.049946][    C3] page last free pid 5253 tgid 5253 stack trace:
[  193.049952][    C3]  free_unref_page+0x64a/0xe40
[  193.049964][    C3]  __put_partials+0x14c/0x170
[  193.049978][    C3]  qlist_free_all+0x4e/0x140
[  193.049992][    C3]  kasan_quarantine_reduce+0x192/0x1e0
[  193.050006][    C3]  __kasan_slab_alloc+0x69/0x90
[  193.050022][    C3]  kmem_cache_alloc_noprof+0x121/0x2f0
[  193.050032][    C3]  getname_flags.part.0+0x50/0x4f0
[  193.050045][    C3]  getname_flags+0x9b/0xf0
[  193.050058][    C3]  vfs_fstatat+0x9a/0x150
[  193.050068][    C3]  __do_sys_newfstatat+0xa6/0x130
[  193.050080][    C3]  do_syscall_64+0xcd/0x250
[  193.050096][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.050113][    C3] 
[  193.050116][    C3] Memory state around the buggy address:
[  193.050122][    C3]  ffff88803d332f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  193.050130][    C3]  ffff88803d332f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  193.050137][    C3] >ffff88803d333000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  193.050143][    C3]                             ^
[  193.050149][    C3]  ffff88803d333080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  193.050156][    C3]  ffff88803d333100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  193.050162][    C3] ==================================================================
[  193.050168][    C3] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  193.050174][    C3] CPU: 3 PID: 8018 Comm: syz.3.717 Not tainted 6.10.0-syzkaller #0
[  193.050186][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  193.050206][    C3] Call Trace:
[  193.050213][    C3]  <IRQ>
[  193.050218][    C3]  dump_stack_lvl+0x3d/0x1f0
[  193.050237][    C3]  panic+0x6f5/0x7a0
[  193.050253][    C3]  ? __pfx_panic+0x10/0x10
[  193.050269][    C3]  ? rcu_is_watching+0x12/0xc0
[  193.050280][    C3]  ? __pfx_lock_release+0x10/0x10
[  193.050298][    C3]  ? check_panic_on_warn+0x1f/0xb0
[  193.050314][    C3]  check_panic_on_warn+0xab/0xb0
[  193.050330][    C3]  end_report+0x117/0x180
[  193.050347][    C3]  kasan_report+0xe9/0x110
[  193.050358][    C3]  ? __lock_acquire+0x2dd6/0x3b30
[  193.050374][    C3]  ? __lock_acquire+0x2dd6/0x3b30
[  193.050390][    C3]  __lock_acquire+0x2dd6/0x3b30
[  193.050406][    C3]  ? try_to_wake_up+0x5d7/0x13e0
[  193.050419][    C3]  ? __pfx_lock_release+0x10/0x10
[  193.050435][    C3]  ? __raw_callee_save___pv_queued_spin_unlock_slowpath+0x15/0x30
[  193.050452][    C3]  ? __pfx___lock_acquire+0x10/0x10
[  193.050468][    C3]  ? do_raw_spin_unlock+0x172/0x230
[  193.050480][    C3]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  193.050495][    C3]  lock_acquire+0x1b1/0x560
[  193.050511][    C3]  ? p9_req_put+0xca/0x250
[  193.050527][    C3]  ? __pfx_lock_acquire+0x10/0x10
[  193.050543][    C3]  ? __raw_callee_save___pv_queued_spin_unlock_slowpath+0x15/0x30
[  193.050559][    C3]  ? do_raw_spin_unlock+0x53/0x230
[  193.050571][    C3]  ? .slowpath+0x9/0x18
[  193.050584][    C3]  _raw_spin_lock_irqsave+0x3a/0x60
[  193.050596][    C3]  ? p9_req_put+0xca/0x250
[  193.050611][    C3]  p9_req_put+0xca/0x250
[  193.050625][    C3]  req_done+0x1e7/0x2f0
[  193.050638][    C3]  ? __pfx_req_done+0x10/0x10
[  193.050651][    C3]  ? __pfx_req_done+0x10/0x10
[  193.050663][    C3]  vring_interrupt+0x31b/0x400
[  193.050678][    C3]  ? __pfx_vring_interrupt+0x10/0x10
[  193.050692][    C3]  __handle_irq_event_percpu+0x229/0x7c0
[  193.050705][    C3]  handle_irq_event+0xab/0x1e0
[  193.050716][    C3]  handle_edge_irq+0x263/0xd10
[  193.050734][    C3]  __common_interrupt+0xdf/0x250
[  193.050840][    C3]  common_interrupt+0xab/0xd0
[  193.050853][    C3]  </IRQ>
[  193.050857][    C3]  <TASK>
[  193.050861][    C3]  asm_common_interrupt+0x26/0x40
[  193.050873][    C3] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80
[  193.050888][    C3] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 66 4d 80 f6 48 89 df e8 4e ca 80 f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 <bf> 01 00 00 00 e8 05 07 72 f6 65 8b 05 96 53 18 75 85 c0 74 16 5b
[  193.050899][    C3] RSP: 0018:ffffc90003967b88 EFLAGS: 00000246
[  193.050910][    C3] RAX: 0000000000000002 RBX: ffff88802d170a00 RCX: 1ffffffff1fc88b9
[  193.050918][    C3] RDX: 0000000000000000 RSI: ffffffff8b2caee0 RDI: ffffffff8b903980
[  193.050926][    C3] RBP: 0000000000000287 R08: 0000000000000001 R09: 0000000000000001
[  193.050933][    C3] R10: ffffffff8fe48857 R11: ffff88806b228a00 R12: ffff88806b23ebc0
[  193.050941][    C3] R13: ffff88802d170014 R14: ffff88802d170a00 R15: ffffc90003967be8
[  193.050952][    C3]  try_to_wake_up+0x5d7/0x13e0
[  193.050966][    C3]  ? __pfx_try_to_wake_up+0x10/0x10
[  193.050979][    C3]  ? __pfx_lock_release+0x10/0x10
[  193.050994][    C3]  ? plist_check_head+0x9e/0x140
[  193.051013][    C3]  wake_up_q+0x91/0x140
[  193.051025][    C3]  ? do_raw_spin_unlock+0x172/0x230
[  193.051037][    C3]  futex_wake+0x43e/0x4e0
[  193.051054][    C3]  ? __pfx_futex_wake+0x10/0x10
[  193.051071][    C3]  ? __handle_mm_fault+0x4b7/0x5410
[  193.051089][    C3]  do_futex+0x1e5/0x350
[  193.051104][    C3]  ? __pfx_do_futex+0x10/0x10
[  193.051119][    C3]  __x64_sys_futex+0x1e1/0x4c0
[  193.051135][    C3]  ? __pfx___x64_sys_futex+0x10/0x10
[  193.051152][    C3]  do_syscall_64+0xcd/0x250
[  193.051169][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.051189][    C3] RIP: 0033:0x7fb8a4575bd9
[  193.051199][    C3] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.051211][    C3] RSP: 002b:00007ffd3c703dd8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  193.051224][    C3] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb8a4575bd9
[  193.051238][    C3] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb8a4703f68
[  193.051247][    C3] RBP: 0000000000000a27 R08: 0000000000000030 R09: 000000023c7040ff
[  193.051255][    C3] R10: 00007fb8a4400000 R11: 0000000000000246 R12: 00007fb8a4703f6c
[  193.051264][    C3] R13: 0000000000000000 R14: 00007fb8a4703f60 R15: 00007fb8a4703f60
[  193.051276][    C3]  </TASK>
[  193.061456][    C3] Kernel Offset: disabled

VM DIAGNOSIS:
20:16:14  Registers:
info registers vcpu 0

CPU#0
RAX=00000002000008fb RBX=0000000000000001 RCX=0000000000000830 RDX=0000000000000002
RSI=00000000000000fb RDI=0000000000000002 RBP=0000000000000001 RSP=ffffc90003837b28
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffffff8161f940
R12=0000000000000001 R13=0000000000000000 R14=ffff88806b13ebc0 R15=ffff888024ee4c01
RIP=ffffffff813b8ce8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00005555756d3500 ffffffff 00c00000
GS =0000 ffff88806b000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020c1c000 CR3=000000003e47c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b7c1e4325
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b7c1e4332
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b7c1e432c
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b7c1e4340
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b7c1e43c6
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7b7c1e44a4
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000fc
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000002a80bd RBX=0000000000000001 RCX=ffffffff8ae7e779 RDX=0000000000000000
RSI=ffffffff8b2caee0 RDI=ffffffff8b903980 RBP=ffffed1002fd6910 RSP=ffffc90000187e08
R8 =0000000000000001 R9 =ffffed100d626fdd R10=ffff88806b137eeb R11=0000000000000000
R12=0000000000000001 R13=ffff888017eb4880 R14=ffffffff8fe48850 R15=0000000000000000
RIP=ffffffff8ae7fb6f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b100000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f7b7c159760 CR3=0000000042e6c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 006e696765625f6e 6f69746e65746e6f
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f74743e4325
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f74743e4332
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f74743e432c
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f74743e4340
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f74743e43c6
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f74743e44a4
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4002000880020014 0000746300010007 8001002080040024 0000000200000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100110000001400 000000327a797300 0200090000000004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004004000811 0000004002000880 0200140000746300 0100078001002080
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000006 0000000000000000 0000000000000000 0000000000000340
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000018c1d5 RBX=0000000000000002 RCX=ffffffff8ae7e779 RDX=0000000000000000
RSI=ffffffff8b2caee0 RDI=ffffffff8b903980 RBP=ffffed1002fd9000 RSP=ffffc90000197e08
R8 =0000000000000001 R9 =ffffed100d646fdd R10=ffff88806b237eeb R11=0000000000000000
R12=0000000000000002 R13=ffff888017ec8000 R14=ffffffff8fe48850 R15=0000000000000000
RIP=ffffffff8ae7fb6f RFL=00000242 [---Z---] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b200000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020001000 CR3=000000002a5cc000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a45e4325
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a45e4332
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a45e432c
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a45e4340
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a45e43c6
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a45e44a4
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a46d4488 00007fb8a46d4480 00007fb8a46d4478 00007fb8a46d4450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a523d100 00007fb8a46d4440 00007fb8a46d4458 00007fb8a46d44a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a46d4498 00007fb8a46d4490 00007fb8a46d4488 00007fb8a46d4480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff84fda705 RDI=ffffffff94dde1e0 RBP=ffffffff94dde1a0 RSP=ffffc90000908610
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552
R12=0000000000000000 R13=0000000000000066 R14=ffffffff84fda6a0 R15=0000000000000000
RIP=ffffffff84fda72f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055556368e500 ffffffff 00c00000
GS =0000 ffff88806b300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b3101fffc CR3=000000002a5cc000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c646e657478656f 6e2c6f6974726976
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a45e4325
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a45e4332
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a45e432c
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a45e4340
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a45e43c6
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a45e44a4
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a46d4488 00007fb8a46d4480 00007fb8a46d4478 00007fb8a46d4450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a523d100 00007fb8a46d4440 00007fb8a46d4458 00007fb8a46d44a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb8a46d4498 00007fb8a46d4490 00007fb8a46d4488 00007fb8a46d4480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000