last executing test programs:

1m46.861032497s ago: executing program 0 (id=286):
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
unlinkat(r1, &(0x7f0000000180)='./file0\x00', 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@gettaction={0x90, 0x32, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@action_gd=@TCA_ACT_TAB={0x18, 0x1, [{0x14, 0xf, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}]}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1, 0x1}}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0xa}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x38, 0x1, [{0xc, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ipt\x00'}}, {0x10, 0x16, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0xd, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x7}}, {0xc, 0xa, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x7}}]}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1}}]}, 0x90}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00"], 0x50}}, 0x4008840)

1m46.771766695s ago: executing program 0 (id=287):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000001140)=[{{0x0, 0x0, &(0x7f0000000240)=[{0x0}, {&(0x7f00000002c0)="04811ff500139d", 0x7}], 0x2}}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f00000007c0)="353a35d6094e4ee7d764b6993f65136c5d6b84d9b1324a0b25e094700c9a66f9181738098f32e3e48859c3878d53a9752474da0d6af299d849d48f2fa2c8c807d7a1521da940585790ff1e6f9da83e32b751d1af9cfac640c1361f5ae8b99c187dafe9ea854120f6eaab11e7fdeb3f2152ebdbc21520ca01f64bb821576deef4ed6696cdddc1768b5b4fbd68a687cb6ba52ecf5cc6f8f05062f26de19d6aaaeb6cbca00e", 0xa4}], 0x1}}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000300)="c54bf6a98ab7385352e2250e609e265e9af572d90dcb8dab076f8e096f4d7c9747683b850472ff12104f6a8cf2dd2e436dfd1deb710e256c8304506b", 0x3c}, {&(0x7f0000000380)="f2be0f0195eb17ae1a4ab4b88df54802c7134fab2121c88f01aaf9edaeae6bf059d0bf6d14a966d2e9578e3f3c218055676f00503c5d199ed75c44e3c715f968a6ab39e110c592cb50d395feacdeab93a46a412418794804b929fa629ad5f1227e346d782c84628c136288996bb5464e75c54e70a11904cf244134000f4bab4d622acc3115b4771e7ddffc693970a47387c3ee", 0x93}], 0x2}}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000640)="fdb51366d8bf47b29e84e4c5da69f3197f223e2abe7db8591aadf399965a04afa9ad66d31dbafedecb1cafd340d0ba505909e06af82cda530ec09bf835753b2c792759fa099e09ef63bd71c34f2eb4f2280d53cfdbd8b1cade4ff440438db6f27c1f0841d57d1e99bbd03ff936355711c7227d14f9a96e17abf65b317eafa28235819d4b79b83d4c1f45c161e962812820b2058d862096d4236a3321c3b631ab1baea8f0569bbc5ddc2e1157020000000b2bb7bdd4714852e84794a02e852e189d5e602fa35194fa548e9dbd6800"/216, 0xd8}, {&(0x7f0000000c80)="86efbada0169801185c95c9137e13e596029939a0abf2b4cb9494296e73a8b723e4a497a6fe00adb4d1c8086a810874c8557755432a57bd469754571388c562808b415bc5f331157b5a828e9a50524515ac81ed9db7059c03e54bc7c33a433007edb98083048a86133c7bb86d4bd54a252da0c6503842b878bf0e268584a159e0744a4084eda141e5d63cbb0fd1845e75cd9c70e0ba8d0ab22af9d154181201660a4af893011549120a0af7cae8a213065677a7f2313040e6e5daf70f2d88d3928053797844ecec3fe15fd5b083a6fa03afbaa645238e5c1566b", 0xda}, {&(0x7f0000000d80)="a3644a56384067083b752902b2bf24b801532f1099c6436814c7431327b28ec8e11a11327c8a2a328a5e9302adec71f041bab0bd582a271a70e301fe4caa2a22", 0x40}], 0x3}}], 0x4, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

1m46.770005653s ago: executing program 0 (id=288):
socket$nl_generic(0x10, 0x3, 0x10)
mknod(&(0x7f0000000080)='./bus\x00', 0x4, 0x6)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000100)='ext2\x00', 0x8080, &(0x7f00000001c0)='discard')
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0xea100, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x8000000000000000, 0x100000000, 0x9, 0x20, 0x2, 0x0, 0x2004cc, 0x8000002, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x4000000000000004, 0x767], 0xeeef0000})
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000080)={0x3}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x401, @loopback, 0x2}], 0x1c)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

1m46.586690845s ago: executing program 0 (id=293):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x1805406, 0x0)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$9p_unix(&(0x7f0000000100)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x12f34d8, 0x0)
quotactl$Q_SETINFO(0xffffffff80000602, &(0x7f0000000180)=@nullb, 0xee01, &(0x7f0000000200)={0xfffffffffffffe01, 0x2, 0x1, 0x2})
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x2a05004, 0x0)

1m46.52228234s ago: executing program 0 (id=294):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280), r0)
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000340)={&(0x7f0000000540)=ANY=[@ANYBLOB="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", @ANYRES16=r1, @ANYBLOB="00022cbd7000fddbdf250b000000080006000e0000005c0001800600020072000000060004004e240000080009005a00000014000300e000000100000000000000000000000008000b00736970000a0006006c626c63720000000800090007000000060004004e230000060001000a000000"], 0x78}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004810)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
r3 = add_key$fscrypt_v1(&(0x7f0000000440), &(0x7f0000000480)={'fscrypt:', @auto=[0x38, 0x30, 0x0, 0x62, 0x86cc4097e8288a3a, 0x0, 0x0, 0x39, 0x34, 0x63, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64]}, &(0x7f00000004c0)={0x0, "3e82554dc8ccfbc2e85ec82d4ee9df60f6ae16b1a5f2c848722ba3b132e4fde178c945bd950b0477e801fc8a1be9b4ebbe9c2289a6b0aa00"}, 0x48, 0xfffffffffffffffe)
pipe2$watch_queue(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x1d)
r6 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_WATCH_KEY(0x20, r6, r5, 0xcf)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r7, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
ioctl$TUNSETLINK(r2, 0x400454cd, 0x7)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
close(r8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480))
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000000)={'syzkaller0\x00', @broadcast})
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r9, 0x84, 0x7, &(0x7f0000000080)={0x3}, 0x4)
rt_sigprocmask(0x0, &(0x7f00000000c0)={[0xfffffeffffffffff]}, 0x0, 0x8)
r10 = gettid()
timer_create(0x1, &(0x7f0000000800)={0x0, 0x12, 0x4, @tid=r10}, &(0x7f0000000380)=<r11=>0x0)
timer_settime(r11, 0x1, &(0x7f0000000880)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_delete(r11)
r12 = gettid()
tkill(r12, 0x16)
r13 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r13, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="480000001e0001032abd7f000000000000000100000000000000000000000000000004d402002b00fe880000000000000000000000000101030000000035000008000c0001000100"], 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x401, @loopback, 0x2}], 0x1c)
sendto$inet6(r9, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

1m46.280260757s ago: executing program 0 (id=295):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000000)='befs\x00', 0x200000, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, r2, 0x28543634fae43ad, 0x40000}, 0x14}}, 0x0)
r3 = fcntl$dupfd(r0, 0x406, r0)
r4 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$setperm(0x5, r4, 0x0) (async)
r5 = socket$nl_audit(0x10, 0x3, 0x9)
getsockopt$sock_timeval(r5, 0x1, 0x43, 0x0, &(0x7f0000000040)) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) (async)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, &(0x7f0000000600)="c74424001c310000c744240206000000c7442406000000000f01142466b87a000f00d066b876000f00d0400f9ce4660f38823d00300000410f01dfb9800000c00f3235000400000f3045f7b300000000430f21e3420f00d5", 0x58}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_RUN(r8, 0xae80, 0x0) (async)
keyctl$invalidate(0x15, r4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) (async)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x12, 0x2, 0x200, &(0x7f0000003c40)="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"})

1m46.237534299s ago: executing program 32 (id=295):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000000)='befs\x00', 0x200000, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, r2, 0x28543634fae43ad, 0x40000}, 0x14}}, 0x0)
r3 = fcntl$dupfd(r0, 0x406, r0)
r4 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$setperm(0x5, r4, 0x0) (async)
r5 = socket$nl_audit(0x10, 0x3, 0x9)
getsockopt$sock_timeval(r5, 0x1, 0x43, 0x0, &(0x7f0000000040)) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) (async)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, &(0x7f0000000600)="c74424001c310000c744240206000000c7442406000000000f01142466b87a000f00d066b876000f00d0400f9ce4660f38823d00300000410f01dfb9800000c00f3235000400000f3045f7b300000000430f21e3420f00d5", 0x58}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_RUN(r8, 0xae80, 0x0) (async)
keyctl$invalidate(0x15, r4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) (async)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x12, 0x2, 0x200, &(0x7f0000003c40)="1ae19337aa151f36ae49bb3f8cb95c5bf840d4f1e55efaaf098d47a70eb36a73090000000000001b0f4743f490c585108c1331c7749299a25a705f5096cb268cbc6070d680e1be250700000000000000472471ff550c0010000007f3c7b61abe4162256004ea8ca5e5b5f379c6eb3257eda08f7e6959090000004d13184d382747e035b4722525e00ade86b4c6d1e157c75d15c1f961ebc0a64d7f2a73f8979fcecacaa64f9b9069ebcc1d5b471edbc4f6c7f1b98ae74e909aa6f25b7fa77bf9cd4ed36d5c53dc519d11c3cc1c22a3b86cf3c645413f4afbcea0c99ded703699d2bb6a4a663b99b6069da5aaf64785a5887c31261d4b9e57ee07000000def6f255ca26108f11f02047d47f2d0fec30f7e92482f71496e184214a4e0c5fdc48b0af0c0478940016d8f0990a0e1090fd515380aae83c5eaeed338701574b64200a16ef2811fadcf1e0f49a514df529061e09ce45e3da03a03fe9b4a6bcfa7d04594e4f6d0714a2e14ea127ab37d64a5e0db630cd4f4a2e6c985a542ff20a9b2193f265f93a258add6c9d6a926dd23d32425849c5d9210007660a617f22133b6cb5087f4c6057942aa18193172bd995fa70a1f949b196f2e2a3c175858575713be5ee3f7f4dcecc98123f9ded3afdebe13d79a7f7fcb2469ae0ac503111401612df7ee995f74fb97a63bf62d61f78c062f959119ab50c1f706a930121ebcd53ccb93d158186ed360750ca8e728150d988844b9a5cff46591ccaff416e5a8c25f9555da5ca6fdf75b86ea6171b046b856168f403b5253a5cc393430a09a4489a0895571e597ac8846f945ffb372a88d3a25978b463dc961616c80c55773f917020751ed51cfd73c1e06fbadd156d56bedc117af95d242d6dccbe2ce34dccd6005e944afa92b22ec9a698469c6edc06caa2cfcd61912607d459b4c28ebea9745bcd4697d75c9601fd333d3cd797963a3c71b7cc5fdc756da8d97207936e5f53b53b732533c2722e03002293517966611602f297de6ff5408777b7a93c45cee3ee5c5601a4e94266b295ea7a86812a7ab8896ec5ea1b12643e1844b185734528399e62bceb8700cc6cd491e4a4430d0a3ba329a5a2fa170fd0b1cc4ba8294de988cd35df2cd7344aa8a9f3432b96fb889c02f484f635a0cc3466a3c2733d45f176931b2db18dba54991a9553cedb7f585786388d4042dbae1c95b769e3d4e036e8afea0a04c04f542b152ca1fd1f8efee60425c5a122fd1b90e98635284abd9f217d9e19cb2a64b354c9d79509cc47d7305114990148a7291cb0fe2d1c773a6664b66ae04aa62c534d072ae54c2ca0d5962cc58945d8924abfc4d5af922462507430d8f2c17479a6678b0b3700000000000000000000000000000000000000000000f800"})

3.120919365s ago: executing program 1 (id=1798):
timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000040)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x20)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
syz_open_dev$loop(&(0x7f0000000100), 0xffffffffffffffff, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000040)={0x501a, 0x3, 0x3}, 0x18, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_DESTROY$ioas(r3, 0x3b80, &(0x7f0000000080)={0x8})
close(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
landlock_restrict_self(r1, 0x0)
bind$unix(r4, &(0x7f0000003000)=@file={0x1}, 0x6e)
connect$unix(r2, &(0x7f0000000640)=@file={0x1}, 0x6e)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=@gettclass={0x24, 0x2a, 0x200, 0x70bf2a, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x8, 0x5}, {0x9, 0xb}, {0x5, 0xd}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0xc0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$bt_hci(r5, &(0x7f0000000000)={0x27}, 0x74)
sendmmsg$unix(r5, &(0x7f0000000b00)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}, {{&(0x7f0000000e80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000001dc0)="bb", 0xfdef}, {0x0}], 0x2}}, {{&(0x7f0000000580)=@file={0x0, './file0/file0\x00'}, 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000600)='z', 0xfdef}], 0x1}}], 0x3, 0x0)
r6 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
dup3(0xffffffffffffffff, r6, 0x0)

3.050871334s ago: executing program 1 (id=1800):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="500100001a000100000000000200000002001c1f0000c808ffffffea080006000700000008000400", @ANYRES32=r0, @ANYBLOB="06001c004e21000008000100ac1414"], 0x150}, 0x1, 0xfffe, 0x0, 0x2000c094}, 0x4040084)

2.931814877s ago: executing program 1 (id=1801):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a3000000000090002"], 0x104}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)="d80000001c0081044e81f782db44b904021d080201000000040000a118000c000600142603600e1208000f0100810401a8001600200001", 0x37}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
recvmsg$can_j1939(r0, &(0x7f0000000240)={&(0x7f0000000140)=@l2={0x1f, 0x0, @none}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000380)=""/244, 0xf4}], 0x1}, 0x40012121)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/tcp_syncookies\x00', 0x1, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/softlockup_count', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x8)
syz_emit_ethernet(0x12, &(0x7f0000000240)={@remote, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1e}, @val={@void, {0x8100, 0x3, 0x0, 0x2}}, {@generic={0x4305}}}, 0x0)
timer_create(0x3, 0x0, &(0x7f0000044000))
timer_settime(0x0, 0x236bd4336e4642df, &(0x7f0000000300)={{0x0, 0x1}, {0x0, 0xe4c}}, 0x0)
timer_settime(0x0, 0xffffffffffffffff, &(0x7f0000000080)={{}, {0x0, 0x9}}, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x2)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r4, 0x29, 0x3e, &(0x7f0000000000)=0x101, 0x4)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000001c0)=0x3)
r5 = syz_open_dev$vim2m(&(0x7f0000000080), 0x8, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000000)={0xf0f043})
ppoll(&(0x7f0000000300)=[{r5, 0x2007}], 0x1, 0x0, 0x0, 0x0)
r6 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000040)=ANY=[], 0xfe33)

2.872116203s ago: executing program 1 (id=1803):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80b00, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000007c0)={"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"})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000580)={0x2, 0x0, @ioapic={0x4000, 0xb, 0xfffffffe, 0xf6a, 0x0, [{0x9, 0x5, 0x8, '\x00', 0xb4}, {0x83, 0xd2, 0x0, '\x00', 0x4b}, {0xf9, 0x9d, 0x7, '\x00', 0x40}, {0x0, 0x9, 0x40, '\x00', 0x6}, {0x9, 0x10, 0x8, '\x00', 0xa8}, {0x2, 0x5, 0x6, '\x00', 0xff}, {0x6, 0xf, 0x47, '\x00', 0x6}, {0x5, 0x8c, 0x4, '\x00', 0xe9}, {0xe, 0x9, 0x26, '\x00', 0x5}, {0x9, 0x5c, 0x6, '\x00', 0x4}, {0x1, 0xd, 0x15, '\x00', 0x9}, {0x8, 0x5, 0x6, '\x00', 0x7}, {0x4, 0x8a, 0x80, '\x00', 0xdd}, {0x3, 0xf1, 0x6, '\x00', 0x9}, {0x7, 0x65, 0x0, '\x00', 0xfd}, {0x6, 0x9b, 0x42, '\x00', 0x23}, {0x7, 0x2, 0x4, '\x00', 0x3}, {0xe7, 0x6, 0x9, '\x00', 0x4}, {0xf, 0x6, 0x6}, {0x9, 0x3, 0x3, '\x00', 0x4}, {0x41, 0x3, 0x7, '\x00', 0x4}, {0xd, 0x40, 0x7, '\x00', 0x5}, {0x15, 0xfd, 0x6, '\x00', 0x1c}, {0x92, 0x6, 0x7, '\x00', 0x42}]}})
ioctl$KVM_RUN(r2, 0xae80, 0x20000000000000)

2.74221814s ago: executing program 1 (id=1804):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x3, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)

2.742022138s ago: executing program 1 (id=1805):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYRESHEX=0x0], 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
writev(r0, &(0x7f0000000200)=[{&(0x7f0000000080)="b966c364734926dc5e440e9bc3ca93f764513bcaf970387d01323bc76b9d30e750d4639fced5c8147ef59cd623e8e77d3bb9b67c92da09a018d17be16a7d1ef9e823829c551c673a00923880a038b22cf1c9af9709346f3c38f8ac9a5a2a8249c34426f160cc8205d013d9aabd3fefcbb54cf2254c0a0eec9200ebebb239148f168d6347e023c9a6928a2eb413dbb730c2812ec6f6c9584ad318553c111b67be1d89b59151c6074847b0cd7cf6049dba3d489a86405c48615f83cf499a2e89786217e4f90315e5a216724426e02d24b6e6441bc92a44790faddf", 0xda}, {&(0x7f0000000180)="4dbfe572803507f019d39eaff2bef103af070e27a53e292f3538cff093e4efa1ec022fde3693c5a83cdb8af6db19322464a4ab9caf9548f4494a1c701d33c3b437ad8eef512e404830cc6bae03482033928995bf453c6de4824422cc15ca4ab16f81c3b944a781", 0x67}], 0x2)
open_by_handle_at(r0, &(0x7f00000002c0)=@OVL_FILEID_V1={0x81, 0xf8, {'\x00', {0x0, 0xfb, 0x7e, 0x7, 0x3, "fe121221f1c083c7151135d6fa31e026", "53607ad6b96555d8a1b65a061f56e48d11ab8fc1ffc64f5044029f0f788ab0062ad94d8d42933b43d114bfb77e4d8f1c4d9d3a1a4c03f27e6336351b0d648e0e5cb9dc23a99ead2ebcd9bd6b09f0a831dfc5d5efab83511214b2ab03961808dc6534ff639a8edd771b"}}}, 0x200000)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x101000)

1.971766937s ago: executing program 2 (id=1815):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newlink={0x34, 0x10, 0x1, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2180}, [@IFLA_IFNAME={0x14, 0x3, 'wlan0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x3f}, 0x0)

1.971567437s ago: executing program 2 (id=1816):
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
quotactl_fd$Q_GETNEXTQUOTA(r1, 0xffffffff80000901, 0xee00, &(0x7f0000000100))
r2 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r2, &(0x7f0000000040), 0x10)
r3 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000140)={0xe, 0x18, 0xfa00, @id_tos={0x0}}, 0x20)
mount$9p_virtio(&(0x7f0000000680), &(0x7f0000000480)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])

1.891520801s ago: executing program 2 (id=1817):
syz_emit_ethernet(0x72, &(0x7f00000005c0)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x14, 0x4, 0x2, 0x9, 0x64, 0x67, 0x0, 0x2, 0x1, 0x0, @remote, @multicast2, {[@lsrr={0x83, 0x27, 0xe2, [@dev={0xac, 0x14, 0x14, 0x26}, @loopback, @private=0xa010100, @rand_addr=0x64010101, @broadcast, @dev={0xac, 0x14, 0x14, 0x33}, @multicast1, @local, @empty]}, @ssrr={0x89, 0x13, 0x26, [@loopback, @multicast2, @local, @empty]}]}}, @timestamp_reply={0xe, 0x0, 0x0, 0x81, 0x8, 0x99f, 0x10000, 0x2}}}}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f00000001c0)={"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"})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000000080)="d8df0f23b3b9ce000000b807000000ba000000000f301b8154fea900600000c4e28ddc8dcd000000c182fd3f0000c8b950020000b801000000ba00000000b9c50d0000b800c80000ba000000000f300fc79d53bf0000c4e16dd3010f2202", 0x5e}], 0x1, 0x4d, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.592238927s ago: executing program 2 (id=1818):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x1000000, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000001180)='./bus\x00')
umount2(&(0x7f0000000100)='./file1\x00', 0xe)

1.541551396s ago: executing program 2 (id=1819):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x420002)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f00000006c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x8, [@fwd={0x2}, @ptr={0x0, 0x0, 0x0, 0x2, 0x3}, @func={0x6}]}, {0x0, [0x0, 0x61, 0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x44}, 0x20)
preadv(r0, &(0x7f0000000740)=[{0x0, 0xfdc5}, {&(0x7f0000000500)=""/97, 0x61}], 0x2, 0x7fff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000180)={&(0x7f0000000000)=[<r1=>0x0], &(0x7f0000000040)=[<r2=>0x0], &(0x7f0000000100)=[0x0, 0x0], &(0x7f0000000140)=[0x0], 0x1, 0x1, 0x2, 0x1})
ioctl$DRM_IOCTL_MODE_GETGAMMA(0xffffffffffffffff, 0xc02064a4, &(0x7f0000000280)={r2, 0x2, &(0x7f00000001c0)=[0xf6d5, 0x2], &(0x7f0000000200)=[0x4, 0x0, 0x7f, 0x7, 0x0, 0x5, 0x4, 0x8d28, 0x6, 0x9], &(0x7f0000000240)=[0x4, 0xf, 0xa, 0x200, 0x17fc, 0x5]})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000300)={&(0x7f00000002c0)=[r1], 0x1, 0x80800})
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000080)={0x4000000, 0xfffffffe, 0x800000000000003})

1.541189301s ago: executing program 2 (id=1820):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000001880)={'wg0\x00'})
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000006, 0x4132, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
r1 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbfc, 0x2ffffffff}, 0xc)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r4, 0x0, 0x0)
syz_usb_control_io$hid(r4, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="00222200000096231306e55d0b53743ff62a9000070900be00830000000057a90da1f60b00000400"], 0x0}, 0x0)
r5 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0xa0000)
ioctl$EVIOCGKEYCODE_V2(r5, 0x80284504, &(0x7f0000000100)=""/101)

611.872682ms ago: executing program 3 (id=1829):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80b00, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x2d8, 0x20, 0x0, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000580)={0x2, 0x0, @ioapic={0x4000, 0xb, 0xfffffffe, 0xf6a, 0x0, [{0x9, 0x5, 0x8, '\x00', 0xb4}, {0x83, 0xd2, 0x0, '\x00', 0x4b}, {0xf9, 0x9d, 0x7, '\x00', 0x40}, {0x0, 0x9, 0x40, '\x00', 0x6}, {0x9, 0x10, 0x8, '\x00', 0xa8}, {0x2, 0x5, 0x6, '\x00', 0xff}, {0x6, 0xf, 0x47, '\x00', 0x6}, {0x5, 0x8c, 0x4, '\x00', 0xe9}, {0xe, 0x9, 0x26, '\x00', 0x5}, {0x9, 0x5c, 0x6, '\x00', 0x4}, {0x1, 0xd, 0x15, '\x00', 0x9}, {0x8, 0x5, 0x6, '\x00', 0x7}, {0x4, 0x8a, 0x80, '\x00', 0xdd}, {0x3, 0xf1, 0x6, '\x00', 0x9}, {0x7, 0x65, 0x0, '\x00', 0xfd}, {0x6, 0x9b, 0x42, '\x00', 0x23}, {0x7, 0x2, 0x4, '\x00', 0x3}, {0xe7, 0x6, 0x9, '\x00', 0x4}, {0xf, 0x6, 0x6}, {0x9, 0x3, 0x3, '\x00', 0x4}, {0x41, 0x3, 0x7, '\x00', 0x4}, {0xd, 0x40, 0x7, '\x00', 0x5}, {0x15, 0xfd, 0x6, '\x00', 0x1c}, {0x92, 0x6, 0x7, '\x00', 0x42}]}})
ioctl$KVM_RUN(r2, 0xae80, 0x18000000000)

466.983275ms ago: executing program 3 (id=1831):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r0, &(0x7f00000018c0)=[{{&(0x7f0000000100)={0xa, 0x4e24, 0x7f, @loopback, 0xffff0000}, 0x1c, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="281708ef2f2c0502930000000000000029000000360000001101000017d0000005020003c204ffff"], 0x28}}], 0x1, 0x240408d0)
pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x3000007, 0x13, r2, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$RTC_ALM_SET(0xffffffffffffffff, 0x40247007, &(0x7f0000001940)={0x3c, 0xe, 0x7, 0xb, 0xb, 0x1, 0x5, 0x7c, 0xffffffffffffffff})
write$P9_RSYMLINK(r1, &(0x7f00000000c0)={0x14, 0x11, 0x2, {0x18, 0x1, 0x1}}, 0x14)
syz_clone(0x80040000, 0x0, 0x0, 0x0, 0x0, 0x0)

461.538454ms ago: executing program 4 (id=1832):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x3, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b7000000ff000000bfa30000ffffff3f07030000f0ffffff720af0fff8ffffff71a4f0ff000000002d040200000000001d400500000000004704000001ed00007b030000000000001d440000000000007a0a00fe00ffffffd703000040000000b5000000000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710e4d58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00c37dfca3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebba2c598b4fc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c3bfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed93517a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e96753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c25000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b393cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c7bc46dd12305a1ae9dd19e8d525206c0a728cfd42193abe8130b51d6c9b94c5513df2d85e8c01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ad1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef670000000000000000ba470bfe62fe2933082149d42e8a00"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)

401.228693ms ago: executing program 4 (id=1833):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="c0260000410007010000000007000000027c00000400fc80a72601801e", @ANYRESOCT=r5], 0x26c0}}, 0x4010)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000b80)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_GET_SURVEY(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0xb0b, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x40800)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x28, r2, 0x200, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x2, 0x11}}}}, ["", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40000d4}, 0x8880)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000060a0b0400000000000000000200000054000480500001800a0001006d6174636800000040000280080002400000000124000300d67a8527f76ec1d39e537c4c3060c6a405106c72848aa8bcb429b3a20d5324520e000100636f6e6e6c696d69740000000900010073797a30000000000900020073797a32"], 0xa8}}, 0x48800)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001640)={0x70, 0x40, 0x1, 0x7fffc, 0x4, {0x1}, [@typed={0x4}, @nested={0x4c, 0x1, 0x0, 0x1, [@nested={0x48, 0x10, 0x0, 0x1, [@nested={0x42, 0x8, 0x0, 0x1, [@generic="a831985351cb3d4a57729361f10318be72cb433d11a9b4781da90ad1a200b17485433caa6c97072c59b89aaa3987b4bfce08fe13e090413b9606330beb13"]}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x70}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="c0260000410007010000000007000000027c00000400fc80a72601801e", @ANYRESOCT=r5], 0x26c0}}, 0x4010) (async)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000b80)={'wlan1\x00'}) (async)
sendmsg$NL80211_CMD_GET_SURVEY(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0xb0b, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x40800) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00'}) (async)
sendmsg$NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x28, r2, 0x200, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x2, 0x11}}}}, ["", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40000d4}, 0x8880) (async)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000060a0b0400000000000000000200000054000480500001800a0001006d6174636800000040000280080002400000000124000300d67a8527f76ec1d39e537c4c3060c6a405106c72848aa8bcb429b3a20d5324520e000100636f6e6e6c696d69740000000900010073797a30000000000900020073797a32"], 0xa8}}, 0x48800) (async)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001640)={0x70, 0x40, 0x1, 0x7fffc, 0x4, {0x1}, [@typed={0x4}, @nested={0x4c, 0x1, 0x0, 0x1, [@nested={0x48, 0x10, 0x0, 0x1, [@nested={0x42, 0x8, 0x0, 0x1, [@generic="a831985351cb3d4a57729361f10318be72cb433d11a9b4781da90ad1a200b17485433caa6c97072c59b89aaa3987b4bfce08fe13e090413b9606330beb13"]}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x70}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094) (async)

400.323189ms ago: executing program 3 (id=1834):
syz_emit_ethernet(0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x34004811)
setitimer(0x2, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x9071, 0xffffffffffffffff, 0x0)
getitimer(0x2, &(0x7f00000001c0))
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.limit_in_bytes\x00', 0x2, 0x0)
setitimer(0x0, &(0x7f0000000240)={{0x77359400}}, 0x0)
sendmsg$qrtr(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000600)="93", 0x1}], 0x1, &(0x7f0000000740)=ANY=[], 0x1278, 0x24048844}, 0x38)

330.823102ms ago: executing program 4 (id=1835):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
setresgid(0xee00, 0xee01, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000001300)=ANY=[@ANYBLOB="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"], 0x88}, 0x1, 0x0, 0x0, 0x800}, 0x0)
openat(r0, &(0x7f0000001440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xe4801, 0x10)
r3 = syz_clone(0x22180, 0x0, 0xa42f, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r4 = socket$kcm(0x29, 0x5, 0x0)
sendmsg$rds(r4, &(0x7f0000002940)={0x0, 0x0, &(0x7f0000002800)=[{&(0x7f0000002980)=""/4112, 0xfffffe09}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x10001, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48)
r5 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$selinux_load(r5, &(0x7f0000000140)={0xf97cff8c, 0x8, 'SE Linux', "048f9e5384f6eb5e03c3caa57100f78a"}, 0x20)
r6 = syz_open_procfs(r3, &(0x7f0000000040)='stat\x00')
pread64(r6, &(0x7f0000000140)=""/15, 0xf, 0x3)
r7 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r7, 0x10e, 0xc, &(0x7f0000000100)={0x80000000, 0x0, 0xfffffffc}, 0x10)
creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

141.448695ms ago: executing program 4 (id=1836):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @empty, 0x4000006}, 0x1c)
listen(r1, 0x6)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r3 = socket$inet6(0x10, 0x2, 0x4)
sendto$inet6(r3, &(0x7f0000000080)="4c005f3712001f15b9409b849ac00a00a5784002000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452509005ad94a461cdbfee9bdb942352359a351d1ec0cffb4792cd8000080", 0x4c, 0x0, 0x0, 0x0)

138.037569ms ago: executing program 3 (id=1837):
syz_emit_ethernet(0x13e, &(0x7f0000000140)={@multicast, @remote, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "fc1046", 0x108, 0x2f, 0x0, @private0, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x8100, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [0x101, 0x8]}, {}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x7, 0x20}}}, {0x8, 0x6558, 0x0, "d9c663d06f1d9d0f834b8181427d591be89747d5d67a5a8dd04edfa44b7c37665d1624180e8cf1b008e63df2874ce827bee96dbbc5303475237ea75984bfede5bcc1f536d154559651c634e9b893cf648fbbfc2b42642fb809879f772ae49994835139c3eb84ada19a8c39b0f2c65fd8d81d61463aef48a0f66aebd7b3abf4a9b27e5a3c516369cf72fd2fea1538b09e25cbeada8c12337633c13038d5e898e24733221f0327c57742794078fce816bb7112eb75ad0ff470de8d5a6600000000"}}}}}}}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000040)={&(0x7f0000000280)=@delchain={0x39e4, 0x65, 0x4, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xe}, {0xfff3, 0xffff}, {0x1, 0x9}}, [@TCA_CHAIN={0x8, 0xb, 0x8000}, @filter_kind_options=@f_cgroup={{0xb}, {0x355c, 0x2, [@TCA_CGROUP_EMATCHES={0x4b4, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x4}}, @TCA_EMATCH_TREE_LIST={0x174, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0x24, 0x1, 0x0, 0x0, {{0x71, 0x9, 0x2}, [@TCA_EM_IPT_MATCH_REVISION={0x5}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x3}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x7}]}}, @TCF_EM_IPSET={0x10, 0x2, 0x0, 0x0, {{0x3, 0x8, 0x8}, {0x4, 0x4, 0x3}}}, @TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x4, 0x8, 0xf420}, {0x1, 0x4}}}, @TCF_EM_NBYTE={0x18, 0x1, 0x0, 0x0, {{0x1, 0x2, 0x9}, {0x4, 0x6, 0x0, "57683a31ab5d"}}}, @TCF_EM_META={0x9c, 0x2, 0x0, 0x0, {{0x101, 0x4, 0x797}, [@TCA_EM_META_LVALUE={0x8, 0x2, [@TCF_META_TYPE_INT=0x2]}, @TCA_EM_META_RVALUE={0x17, 0x3, [@TCF_META_TYPE_VAR="e4bcc7815539", @TCF_META_TYPE_VAR="47b96bc6ae950a8143", @TCF_META_TYPE_INT=0x8]}, @TCA_EM_META_HDR={0xc, 0x1, {{0xcdf, 0x80, 0x2}, {0xfff7, 0x6}}}, @TCA_EM_META_LVALUE={0x14, 0x2, [@TCF_META_TYPE_INT, @TCF_META_TYPE_INT=0x8, @TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_INT]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x16, 0x81, 0x1}, {0x2, 0xfa, 0x1}}}, @TCA_EM_META_RVALUE={0x8, 0x3, [@TCF_META_TYPE_INT=0x6]}, @TCA_EM_META_LVALUE={0x8, 0x2, [@TCF_META_TYPE_INT=0x8]}, @TCA_EM_META_LVALUE={0x28, 0x2, [@TCF_META_TYPE_VAR="8a20a0f2a5af2e", @TCF_META_TYPE_VAR="924081af9b25", @TCF_META_TYPE_VAR='\"', @TCF_META_TYPE_VAR, @TCF_META_TYPE_VAR="0486e0c7e289d6d206", @TCF_META_TYPE_INT=0x7, @TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_VAR="d00feebb", @TCF_META_TYPE_VAR='L']}, @TCA_EM_META_HDR={0xc, 0x1, {{0x851, 0x1, 0x1}, {0x7, 0x1, 0x2}}}]}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x9, 0x8, 0xc}, {0x3, 0x3, 0x1}}}, @TCF_EM_IPT={0x38, 0x2, 0x0, 0x0, {{0x1, 0x9, 0x6}, [@TCA_EM_IPT_HOOK={0x8, 0x1, 0x4}, @TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0xd}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x2}, @TCA_EM_IPT_HOOK={0x8}]}}, @TCF_EM_CMP={0x18, 0x3, 0x0, 0x0, {{0x9, 0x1, 0x5}, {0x867, 0x2, 0x70, 0x0, 0x2, 0x2, 0x3}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0xfff9, 0x1, 0x1}, {0xf, 0xe, 0xe, 0x2, 0x8, 0x2, 0x2}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x8}}, @TCA_EMATCH_TREE_LIST={0x40, 0x2, 0x0, 0x1, [@TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x5}, {0x7fffffff, 0x1, 0x8, 0x9}}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x9954, 0x8, 0x5}, {0x2, 0x4, 0x2}}}, @TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x6, 0x8, 0x6}, {0x0, 0x2, 0x4}}}]}, @TCA_EMATCH_TREE_LIST={0x15c, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0x148, 0x1, 0x0, 0x0, {{0x10, 0x9, 0x10}, [@TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x3}, @TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0xe}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x1}, @TCA_EM_IPT_MATCH_DATA={0x2d, 0x5, "aac0b60673dfb6f41263b2e535bc442a55765cb661368abe3ffdfe05eb4ace3de6d4b1794626f25a9a"}, @TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x4}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x4}, @TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x3}, @TCA_EM_IPT_MATCH_DATA={0xc1, 0x5, "388f6506107e44be923b9afad1969aa3c0eaafd2036c01ab2fd591d1aa04ef0dc991960b707a9739cc0a04777d5de4bbd321e3148934d6a5d0fa53ed9df8e787b9d3ae5cfcdfd35ed527e4bc8087401f73cabded0c5ea112023b2cda8ae2a57faf791d163c4be55d14df5c1b81d945abe89ba2d1e86195c303322f8bcbae2b0dafa4486eeb2591cb328b2f6cc1cd0d81aef8d077932593f755fb1d84e4d7b9c4f39acfb25f942517f266eb53d5e77cd103b7c3276f6e8f59cbf26ec64d"}]}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x7, 0x8, 0x9}, {0x8, 0x0, 0x1}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x180, 0x2, 0x0, 0x1, [@TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x4, 0x3, 0xb}, {0xfffffffc, 0x8000, 0x5, 0x8}}}, @TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x1ff, 0x7, 0x6}, {{}, {0x4, 0x1, 0x1}}}}, @TCF_EM_META={0xc, 0x3, 0x0, 0x0, {{0x40, 0x4, 0x1}}}, @TCF_EM_NBYTE={0x1c, 0x3, 0x0, 0x0, {{0x2, 0x2, 0x8000}, {0x2, 0x9, 0x0, "b178f866c5c8b82bc0"}}}, @TCF_EM_CONTAINER={0x108, 0x2, 0x0, 0x0, {{0x4}, "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"}}, @TCF_EM_U32={0x1c, 0x2, 0x0, 0x0, {{0x9, 0x3, 0x600}, {0xfff, 0x7, 0x7fff, 0x2}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x62d5}}]}, @TCA_CGROUP_ACT={0x4fc, 0x1, [@m_skbmod={0xb8, 0x13, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24, 0x2, {{0x0, 0x1, 0x0, 0x4, 0x7}, 0x4}}]}, {0x68, 0x6, "54768881baa0d0d9956884423ded6ef12c0ea975e4be501a928c32646289394fe27dc5e03a9506488dffcef5838f43d1ea4bdb114e4a93c5485fdfd32f7268f1fc84e70584854e7d6db401dd5805c8655b3e842aacfbb56a89729c226c5a4b3fcf0ca723"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_skbedit={0xc4, 0x1a, 0x0, 0x0, {{0xc}, {0xc, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0xfff2, 0xc}}]}, {0x8f, 0x6, "30f4f37f82a61b7f064faecd2e42c2cf0bbe7903a3882518c1c504c8373e9fb7d4673355abce1b2da881361bc03c2c981f21ef6735230100d78b405d7c47a3d2c60c734f7eedf245c9abc917a320cc0ae3b2de66733daadad7696c701057dfe87f3ad05d37b126cee853725183abe3d3a72d7db145fa877d3c0974c4fdc1154b2ee733a4a854644a26eb8d"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_simple={0x180, 0x17, 0x0, 0x0, {{0xb}, {0x9c, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x5, 0x3, '\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x1, 0xb86f, 0x0, 0x3ff}}, @TCA_DEF_PARMS={0x18, 0x2, {0x6, 0x0, 0x4, 0x4, 0xd076}}, @TCA_DEF_PARMS={0x18, 0x2, {0x3ff, 0x7, 0x1, 0x8000, 0x6}}, @TCA_DEF_PARMS={0x18, 0x2, {0x8000, 0x7, 0x1, 0x4, 0x2}}, @TCA_DEF_PARMS={0x18, 0x2, {0x0, 0x9, 0x1, 0x5, 0x7ff}}, @TCA_DEF_PARMS={0x18, 0x2, {0x5, 0xb7, 0x4, 0x8, 0x7}}]}, {0xb9, 0x6, "93b1975884e72b0055a5afc59be2bf6a5dee37b39ca17c448a3611141915f6bd4206a57d09ab1f5cbe14826d89868bb1e2d265547426f6b574b8aaecfe8ee52087fc7a02d24c26ab9b8d1c92339627df407a68d114a97cd9117aba423e6b42b879da8a1b83f55def98237cc12d7420d06a9783cd4fdc6c8b4f04ecb5a81e3ec5efb37e96fb93df06777784329c45b62d7e5928e6e6ee84f06fb4ed78036af5f6aec81733871206999be77a4ad2015f5108e5b4f8a6"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_ct={0x148, 0x1a, 0x0, 0x0, {{0x7}, {0x68, 0x2, 0x0, 0x1, [@TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @local}, @TCA_CT_LABELS={0x14, 0x7, "8d90ef27c9fe6db27a4a26407655fe66"}, @TCA_CT_LABELS={0x14, 0x7, "7d9da8f1051edced6553b6269db39906"}, @TCA_CT_NAT_IPV4_MIN={0x8, 0x9, @multicast1}, @TCA_CT_NAT_PORT_MIN={0x6, 0xd, 0x4e23}, @TCA_CT_NAT_PORT_MAX={0x6, 0xe, 0x4e20}, @TCA_CT_ZONE={0x6, 0x4, 0xfff}, @TCA_CT_NAT_IPV4_MIN={0x8, 0x9, @multicast2}]}, {0xbb, 0x6, "adad238f180b9d73721c1662b09db21af7e392cf4c62fd662511136f352a2084a2003266645c213dd779a207030f40d8319a02581880187c387724290880618769eb47b5cbdcd7b60505fdafdcaf9df9cd577bbc6ec484678eac3b5a9b0afbf2feeb79c5b3d3da9f8725a7169a412e48d833bde902c54cc93696d4618f15f18a30cb8817dd288a7749f6918527953c7d67f3cf379938d63b590bb3783b9c6b18e39b62bcbd26465d360c395031abd1eb178173047e54d0"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_connmark={0xb4, 0x18, 0x0, 0x0, {{0xd}, {0x58, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xd, 0x20000000, 0x0, 0x3df, 0x7}, 0x9}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x4, 0x1c29, 0x5, 0x642, 0x72c}, 0x1800}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x80, 0x306, 0x7, 0x8000, 0x99}, 0x8}}]}, {0x2e, 0x6, "4581b1a349308c362906c2d3d165b43525267fe85cdb11e92f950813a7f512ae1e0e7e2544be0ceeef7a"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}, @TCA_CGROUP_EMATCHES={0x2cc, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x48, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0x44, 0x1, 0x0, 0x0, {{0x9, 0x0, 0x8b79}, "ed2103fe61de9c2b2456fc0f7ae239b52502bb3434840dae2db7ab89de18137ce46d290557ec0d2a1514fd1ee377a5b9146ef26fa8d4"}}]}, @TCA_EMATCH_TREE_LIST={0x198, 0x2, 0x0, 0x1, [@TCF_EM_META={0x90, 0x1, 0x0, 0x0, {{0x6, 0x4, 0x9}, [@TCA_EM_META_RVALUE={0x1a, 0x3, [@TCF_META_TYPE_VAR="9eb5c391", @TCF_META_TYPE_INT=0x2, @TCF_META_TYPE_INT=0x2, @TCF_META_TYPE_VAR="abb8c8b1337bffb0a427", @TCF_META_TYPE_VAR]}, @TCA_EM_META_RVALUE={0xb, 0x3, [@TCF_META_TYPE_VAR="2bbcaa6e", @TCF_META_TYPE_VAR="6c8e26"]}, @TCA_EM_META_RVALUE={0x18, 0x3, [@TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_INT=0x7, @TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_INT=0x5]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x7, 0x80, 0x1}, {0x81, 0x8}}}, @TCA_EM_META_HDR={0xc, 0x1, {{0x7f, 0x8, 0x1}, {0x1, 0x3, 0x1}}}, @TCA_EM_META_RVALUE={0x12, 0x3, [@TCF_META_TYPE_VAR='/', @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_VAR="275befde13eda26cb1"]}, @TCA_EM_META_LVALUE={0x17, 0x2, [@TCF_META_TYPE_VAR="2087", @TCF_META_TYPE_VAR="4ed5f021a1", @TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_INT=0x2]}]}}, @TCF_EM_IPT={0xd4, 0x2, 0x0, 0x0, {{0x3ff, 0x9, 0xb0d8}, [@TCA_EM_IPT_MATCH_DATA={0xc8, 0x5, "a86f28f6046b8060f5e7c79bf48ec5bd7cb60e910fbbef455dc25c2c05fa906fe21fc29fdce895a70e3b7f7752c9ba89910a3246b0ecdd80002edf8bd90a90715477bf18b013acd8df7d2c2a1aecbc511dd9654a0c47a33cb676877fd98bdd0c3e2839b531cfab3b896385a2f768679ead9af91e75d005b8c3e7c8ac68a56f4707844c6f658e11f9d946412dec93aa73de7b0933c211eb96dfc292bc2d2bbab699176787eba134185b1892e254c169f2c90c522dade1e0bb7a9a22bd456bc1dea14ffe93"}]}}, @TCF_EM_CANID={0x14, 0x3, 0x0, 0x0, {{0x9f8d, 0x7, 0x5}, {{0x0, 0x1, 0x1, 0x1}, {0x4, 0x0, 0x1, 0x1}}}}, @TCF_EM_U32={0x1c, 0x2, 0x0, 0x0, {{0x1ff, 0x3, 0x8001}, {0xa, 0xffffff80, 0xfffffff4, 0xbf3}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfff7}}, @TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x3, 0x0, 0x0, {{0x0, 0x2, 0x800}, {0x1000, 0x2, 0x2, "8bf9"}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x7, 0x1, 0x8967}, {0x7, 0x5, 0x6, 0x6, 0x4, 0x2}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3ffe}}, @TCA_EMATCH_TREE_LIST={0x38, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0x1000, 0x2, 0x7}, {0x8, 0x2, 0x2, "c940"}}}, @TCF_EM_IPSET={0x10, 0x2, 0x0, 0x0, {{0x401, 0x8, 0x8}, {0x1, 0x2, 0x1}}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x1000, 0x8, 0x800}, {0xffffffffffffffff, 0x6, 0x4}}}]}, @TCA_EMATCH_TREE_LIST={0x70, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x18, 0x1, 0x0, 0x0, {{0x0, 0x2, 0x80}, {0x3, 0x7, 0x0, "f7dde9b6fe51ea"}}}, @TCF_EM_META={0x54, 0x1, 0x0, 0x0, {{0x6a1e}, [@TCA_EM_META_LVALUE={0x2a, 0x2, [@TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_VAR="b446e71a", @TCF_META_TYPE_VAR="59b5a4b4ddda", @TCF_META_TYPE_VAR="3b621a0c", @TCF_META_TYPE_VAR="d59f72432bc89e97dd04", @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_VAR='\"\n']}, @TCA_EM_META_RVALUE={0x8, 0x3, [@TCF_META_TYPE_INT=0x9, @TCF_META_TYPE_VAR]}, @TCA_EM_META_RVALUE={0x12, 0x3, [@TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_VAR="6a745a2225d0b27ce73b"]}]}}]}]}, @TCA_CGROUP_POLICE={0x1894, 0x2, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x10001, 0xc, 0x4e0, 0x400, 0xffff, 0xf, 0x4, 0x19ad, 0x7, 0x3, 0x2, 0x4, 0xa, 0x9, 0x37c9, 0x1ff, 0x2, 0x743625b1, 0x100, 0x1, 0x7, 0x6, 0xb, 0x4, 0x3ff, 0x8, 0x9, 0x0, 0xf, 0x3, 0x3, 0x0, 0x2, 0x7, 0x80000000, 0x6, 0x5, 0x5b, 0x647a062, 0x7fff, 0x9, 0x3ff, 0x7, 0x7, 0x0, 0xe, 0x6, 0x9, 0x8, 0xc8fd, 0xfdd8, 0x2, 0x2000000, 0xffff5bec, 0x25, 0x2, 0x7, 0xd08, 0x6, 0x1, 0x10000, 0x50f, 0xfffffff9, 0x6, 0x10000, 0x6, 0x1, 0x2, 0xa, 0x4, 0x8001, 0x0, 0x1, 0x807, 0x4, 0x9, 0x9, 0x0, 0x10001, 0x4, 0x0, 0x1, 0x4, 0x80, 0xfff, 0x6, 0x5d, 0x1000, 0x3, 0x401, 0x4, 0x7, 0x1, 0x400, 0x2, 0x9, 0x6, 0xaf, 0x2, 0x7fff, 0x101, 0x5, 0x8, 0x7077, 0x80000000, 0x7701, 0x7, 0x7fff, 0xff, 0x3f5, 0x72, 0xffff, 0x3, 0x5, 0x1ff, 0x2, 0x3, 0x7fc, 0x9, 0x8, 0x6, 0x8, 0x0, 0xb, 0xc557, 0x40000000, 0x0, 0x0, 0x3, 0x10000, 0x3, 0x2, 0x10001, 0x8, 0xfffffffe, 0x5, 0x9, 0x9, 0x1, 0x5, 0x7, 0x4, 0x0, 0x8, 0x9, 0x8, 0x0, 0x6, 0x4, 0xd, 0xc, 0x200, 0x1, 0xaef, 0x7, 0x67, 0x9, 0x0, 0x0, 0x7, 0x2, 0x3, 0x8, 0x8, 0x3, 0x3e6dc294, 0x81, 0x7, 0x1, 0x80, 0x400, 0x7, 0x3, 0x1, 0x6, 0x6, 0x2, 0x4, 0x401, 0xfffff800, 0x8, 0x9, 0x10000, 0xc, 0x6, 0x9, 0x2, 0x1d0, 0xc, 0x6, 0x3, 0x0, 0x80, 0xc4, 0x8, 0x3, 0xf, 0x0, 0x3, 0x5663, 0x51c0, 0x8, 0x4, 0x47c, 0x81, 0x0, 0x9, 0x1, 0x0, 0xd, 0x9, 0x4, 0x3, 0x4, 0x8, 0xa, 0xc82, 0xe00000, 0x4, 0x0, 0x10000, 0x1, 0xef60, 0x2, 0x6, 0xd61, 0x6, 0xe3c, 0x10000, 0x80, 0xd87a, 0x8, 0x4, 0x8d1a, 0x7, 0xff, 0x4, 0x2ae5, 0x91, 0x4, 0x3, 0x101, 0x1, 0xffffff01, 0xfffff88c, 0xfff, 0x7, 0xff, 0x9e, 0x7, 0x10001, 0xe, 0x0, 0xe, 0x8000]}, @TCA_POLICE_RATE={0x404, 0x2, [0xffffffff, 0xf, 0x80000001, 0x5, 0x4, 0x2, 0x9, 0x3, 0x8, 0x1ff, 0x2, 0x1dc4, 0x3, 0x4, 0x8, 0xe, 0x1, 0x1, 0x8, 0x1, 0x9, 0xf, 0x8001, 0x7, 0x8, 0x800, 0x8001, 0x8, 0x6, 0xfffffff7, 0x6, 0x6, 0x40, 0x7fffffff, 0x7, 0x0, 0x80000000, 0x8000, 0x10, 0x52ab, 0x1, 0x5, 0x81, 0x2, 0x8, 0x200, 0xfffffffc, 0xffffff1e, 0x1, 0x200, 0x28000, 0x857, 0x7, 0x80000001, 0xffffffff, 0xfffffff7, 0x176, 0x8, 0x9, 0x401, 0x2, 0x0, 0x6, 0xd000, 0x15ed, 0x3, 0x5, 0xfffffffd, 0xd9a, 0x80, 0x6, 0x10001, 0x7, 0x0, 0xd95d, 0x4ba00000, 0x3, 0x8, 0x800, 0x5, 0x80000000, 0x80000000, 0xfffffffc, 0x8, 0x5, 0x5, 0x7, 0x8ec8, 0x8e5, 0x81, 0xff, 0x2, 0x80, 0xffffffc0, 0x7, 0x1000, 0xd, 0x8, 0x3ff, 0x401, 0x3, 0xffffffff, 0x2, 0x6, 0x3, 0x6, 0x4, 0x8, 0x8, 0x2, 0x40, 0x6, 0x3, 0x0, 0x6, 0x2, 0xc, 0x6, 0x1, 0x0, 0x4, 0x3, 0x5, 0x7fff, 0x0, 0x109f, 0x8, 0x0, 0x8, 0x2, 0xc46b, 0x1, 0x262e, 0x3, 0x5, 0x8000, 0x6, 0x4, 0x5, 0x7, 0xe, 0x4, 0xffffff87, 0x3b3, 0x80, 0xfffffffe, 0x40, 0x2, 0x60e9, 0x401, 0x400, 0x5, 0x5205, 0x6ca5, 0xfa, 0x10001, 0x24aa, 0x2, 0x3, 0x6, 0xb07, 0x10001, 0x1, 0xe, 0x7ff, 0x4, 0x3, 0x8, 0xb5c9, 0x3, 0x5, 0x6, 0x1b8, 0x8, 0x97, 0x24, 0x0, 0x1c170b88, 0x7, 0x152bcfc, 0x1000, 0x4e2, 0x8, 0xfffffffa, 0x7ff, 0x372c779b, 0x5, 0x1, 0x3, 0x6544, 0x9a, 0xfffffff9, 0x195ee4d6, 0xe, 0xdce7, 0x800, 0x3, 0x2, 0xddf, 0x80, 0x7fff, 0x1ff, 0xfffffc00, 0x1000, 0x9, 0x8, 0x1, 0xff, 0x73d, 0x7, 0x7, 0xc87, 0x401, 0xa, 0x8, 0xf, 0x2, 0x1, 0x3, 0x8, 0x5, 0x4, 0x8, 0x4, 0x0, 0x6, 0x800, 0x8f77, 0x7fff, 0x2, 0x9, 0x3, 0x40, 0xe, 0x9, 0x3, 0x3a, 0x4, 0xacb, 0x0, 0xfff, 0xfffffffc, 0x7f, 0x4, 0x4, 0x7fff, 0x4, 0x10, 0x9, 0x10, 0x7, 0x1, 0x800, 0x7, 0x6, 0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x7, 0xffffffffffffffff, 0x9, 0x2, 0x7f, {0x6, 0x0, 0x6efd, 0x3, 0x0, 0xc363}, {0xe7, 0x1, 0x400, 0x1, 0x1, 0x8a35}, 0x3, 0xa, 0x8}}, @TCA_POLICE_RATE={0x404, 0x2, [0x8, 0x9, 0x4, 0x80000000, 0x0, 0x100, 0x4, 0x4, 0x5, 0x4, 0x100, 0x5, 0xfffffff7, 0x1, 0xd, 0x2, 0x40, 0xf2, 0x4, 0x101, 0x6, 0x0, 0xe, 0x6, 0x5, 0x7, 0x80, 0x1, 0x6, 0x3, 0x8, 0xc5, 0x8, 0x2, 0x81, 0x7, 0x6, 0xd, 0x6, 0xff, 0x2ed0b059, 0x6f, 0x2, 0x5f0b, 0x5, 0xa2, 0x0, 0x5, 0x9, 0x6d, 0x6, 0x7, 0x1000000, 0x9d2, 0x40, 0x1, 0x6, 0x38c, 0xcdb7, 0xffffffff, 0x1ff, 0xa, 0x1, 0xe, 0x7, 0xa0, 0x88, 0x3, 0x6, 0x101, 0x9, 0x8, 0x6, 0xe36c, 0xd3, 0xfffffffa, 0x7643eea8, 0x6, 0xfffffffe, 0x2, 0x0, 0x7, 0x23, 0x7, 0x4d, 0x4, 0x7, 0x9, 0x1ff, 0x5, 0x8, 0x6, 0xe, 0x401, 0x4, 0x3, 0x80000000, 0x3, 0x5, 0x5, 0x79bc, 0x2, 0x3, 0x3, 0x2, 0x80, 0x3, 0x3fc000, 0x100, 0xb0, 0x7f, 0x7, 0x5, 0xa, 0x3, 0x7, 0x101, 0xffffff99, 0x7b69, 0x481, 0x8, 0xd64, 0x7, 0x10, 0x16a, 0x401, 0x4, 0x0, 0x6, 0x6, 0x7d, 0xa2, 0x10001, 0x4, 0x5, 0xf5, 0xa, 0x0, 0x5, 0x8, 0x7, 0x7, 0x80, 0x7, 0x1, 0xb465, 0x5, 0xfffffffc, 0xdf83, 0x3, 0x6, 0x5, 0xb0a4469c, 0x80000000, 0xfffffff7, 0xe, 0xffffff5d, 0x6, 0x6, 0x1, 0x6, 0xfb3d, 0x4, 0xa, 0x8, 0x8, 0x9, 0xb93, 0x5, 0x8, 0xdfb, 0x34, 0x10001, 0x5, 0x9, 0x4, 0xffff, 0x0, 0x9, 0x7, 0x9, 0x8, 0xfff, 0x80000001, 0xb, 0x8, 0x2, 0xd, 0x7fff, 0x1, 0x8, 0xff, 0x3, 0x2, 0x6, 0xff, 0x7f8f, 0x23800000, 0x6, 0x42bb, 0x7, 0x0, 0xb29, 0x8, 0xe, 0xab51, 0x0, 0x4, 0x1, 0x3ff, 0x3, 0x4, 0x80000000, 0xffe000, 0x5, 0x0, 0xf, 0x1, 0x4, 0x81, 0xe0000000, 0x7, 0x2, 0x0, 0x40, 0x1, 0xffffffff, 0x0, 0x80, 0x0, 0x6, 0x2b85, 0xaefa, 0x0, 0x7, 0x9, 0x0, 0x72b, 0x6, 0x7, 0x4, 0x900000, 0x2, 0x4, 0x7ff, 0x8, 0x7fff, 0x3ff, 0x7, 0x80000001, 0x5, 0x10, 0x6, 0x40, 0x8, 0x5]}, @TCA_POLICE_RATE={0x404, 0x2, [0x6, 0x80, 0x2, 0x81, 0x1, 0x3, 0x2, 0xde1, 0x6, 0x9d1, 0x7, 0x8, 0xfffffffd, 0xffff47c0, 0x235a73d, 0x5, 0x5, 0x5, 0x8, 0x5, 0x4, 0x4, 0x8, 0x14cb, 0x1, 0xfff, 0x52, 0x22, 0x1c4b20, 0x3, 0x1, 0x1, 0x3, 0xe22f, 0xffffffb9, 0x9, 0x7f, 0x5, 0x600, 0x1, 0x1, 0x7, 0x0, 0xc47, 0x4, 0xfff, 0x9, 0x1, 0x1, 0x9, 0x7, 0x5, 0x2, 0x1, 0x5, 0x5, 0x5, 0x1, 0xdb4, 0x9a, 0xd3fd, 0x0, 0x6, 0x4, 0x3, 0xc91, 0x2221c85b, 0x4, 0x400, 0x80000001, 0x7, 0xfff, 0x6, 0x3ff, 0x9, 0x67c, 0x8, 0x6, 0x9, 0x5, 0x3000, 0x7fffffff, 0x5, 0xffffffff, 0x7343, 0xdd6, 0x7f, 0x3, 0x7, 0x101, 0x6, 0x2, 0x6, 0x75, 0x10001, 0x384, 0x6, 0xfffffff9, 0x2, 0x80, 0x9, 0x9, 0x3, 0xdd, 0x7f31, 0xfac, 0xfffffff9, 0x5, 0x6, 0x8, 0x6, 0x7fff, 0x5, 0x3, 0x7f, 0x1, 0x7, 0x400, 0x762f, 0x6, 0x3, 0x401, 0x80, 0x5, 0x9b67, 0x8, 0x0, 0x1, 0x9, 0xa6ee, 0x7, 0x101, 0x2, 0x1, 0x4, 0x65c, 0x7, 0xfffffff7, 0x401, 0x0, 0x5, 0x89, 0xffffff00, 0x8, 0x9, 0x1000, 0xffffffff, 0x6d5, 0x4d, 0x8, 0x6, 0x7, 0x6, 0x3, 0x80000001, 0x5, 0x8000, 0x1, 0x5, 0x2, 0x115, 0x5, 0x6, 0x47, 0x7ff, 0x7, 0x6, 0x6, 0x8, 0x1, 0x6, 0x32d9a7ed, 0x2, 0x1, 0xfffffffd, 0x2, 0x64, 0x2c, 0x1, 0x3, 0x6, 0x1000, 0xdb, 0x7fffffff, 0x0, 0x200, 0x5, 0x0, 0x7, 0x80000001, 0x8, 0x5, 0x8, 0xf1c5, 0x1, 0x60e, 0x80, 0x7ff, 0x2, 0x5, 0x80000001, 0xb, 0xfffff000, 0x2, 0x1, 0x1000, 0x3, 0x0, 0xfffffffe, 0xdc, 0x9, 0x5, 0x6, 0x1b79, 0x9, 0x81, 0xfffffe01, 0xc, 0x7, 0xfffffffd, 0x800, 0x3, 0x9, 0xe, 0x18000, 0x6, 0x18, 0xfd, 0x3, 0x457, 0xb, 0xffffff01, 0x34d, 0x7, 0x4, 0x5000, 0xbad, 0x71fd52cb, 0x7, 0x1c6, 0x6, 0x8000, 0x0, 0x8, 0xfffffffd, 0x9, 0x3, 0x4, 0xffffffff, 0x40, 0x8, 0x2, 0x5, 0x2, 0x7, 0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0xe4778d7f, 0x30000001, 0x4, 0x9, 0xdbb, {0x0, 0x1, 0x61, 0x1, 0x1, 0x8}, {0x5, 0x0, 0x80, 0x97, 0x200, 0x8}, 0x9, 0xa8b, 0x5}}, @TCA_POLICE_RATE={0x404, 0x2, [0x264fbb43, 0x8, 0x8001, 0x0, 0x1b6f, 0x7, 0x10, 0x20000000, 0xffffffff, 0xc687, 0x5, 0x3ff, 0xe4e40000, 0xffff682c, 0xb32, 0x81, 0xfffffffe, 0x4, 0x1ff, 0xfffffffb, 0x9, 0x10001, 0x4, 0x30, 0xef5c, 0x2, 0x8001, 0x98, 0x401, 0x5, 0x0, 0x5, 0xf, 0x1, 0x4b, 0xfc0, 0x8be6, 0x100, 0x10000, 0x2, 0x2, 0x8000, 0x3, 0x3, 0x9, 0x9, 0x3a0c, 0xfffffffb, 0x2, 0x6, 0x5, 0x9d61, 0xfffffffd, 0x7, 0x1ff, 0x5, 0x8000, 0x6, 0x5, 0xb, 0x1, 0xffffffff, 0x1c, 0x7, 0x3, 0x8c, 0x6, 0x1, 0x90000, 0xffffffff, 0x4, 0x7f, 0x8193, 0x2, 0xd0, 0x1b2, 0x5, 0xc, 0x5, 0x1, 0x3a, 0x5, 0x8, 0x9, 0xffffffff, 0xffff, 0x5, 0x7, 0x8000, 0x5, 0x5, 0x2, 0x9, 0x3, 0x10001, 0x2, 0x7, 0x0, 0x2, 0x10, 0x4f57, 0x5, 0x5, 0x7, 0x2c, 0x1, 0x0, 0x0, 0xf, 0xc7df, 0x3, 0x9, 0x6, 0x2, 0x4, 0x4, 0x1b0a1d5c, 0x7230beaa, 0x8, 0x2, 0x6, 0xb538, 0x1, 0x4, 0x40, 0x700000, 0x0, 0x9, 0x5, 0x6, 0x101, 0x67dd, 0x9, 0x5, 0x8, 0x2, 0xf73e, 0xff, 0x1, 0x7c, 0xa, 0x7, 0xffffffff, 0xf, 0x6, 0x1, 0x9, 0x7, 0x3, 0x4, 0x8, 0x5, 0x1, 0x5, 0x2, 0x83, 0x956b, 0x9, 0x5, 0x8, 0x4, 0x7fff, 0xfffffff7, 0x80, 0x4, 0xfffffffa, 0x1, 0x10b, 0x3, 0x3, 0xd8, 0x7c, 0x0, 0x840, 0xa5, 0x6, 0x9, 0x8, 0x69, 0x9, 0x9, 0xf, 0x7, 0x3, 0x1, 0x200, 0xb, 0x9, 0x80000001, 0x4, 0x0, 0x92d, 0x4, 0x5, 0x8, 0xf, 0x9, 0xfa, 0x9, 0x5, 0xfffffffb, 0x9, 0x1, 0x3, 0x4a, 0x3, 0x4, 0x79, 0x5, 0x1ff, 0x3, 0x3, 0x2, 0x3, 0x5, 0x1000, 0x7, 0x5, 0x18, 0xce07, 0x6, 0x50, 0x7, 0x200, 0xffff0001, 0xffffffff, 0x7, 0x7ba, 0x1, 0x7f, 0xbad7926, 0x3df, 0x8001, 0x4, 0x152b, 0xf, 0xffffffff, 0x3, 0x4, 0xbbd, 0x6, 0x400, 0x9, 0x70, 0x9, 0x0, 0xfffffffc, 0x3, 0x7f, 0x4, 0x9, 0x4, 0xffffffff, 0x2, 0x1ff, 0x80000000]}, @TCA_POLICE_RATE={0x404, 0x2, [0x2, 0x4e, 0x1, 0xff, 0x101, 0x8001, 0xd4, 0x2, 0xcb, 0xa, 0x3, 0x34c0, 0x4, 0x7, 0x5, 0x5e, 0x5, 0xb, 0xfff, 0x5c8, 0x8, 0x8001, 0x4, 0x10, 0x6, 0x4, 0x3, 0xf, 0x758, 0xc9, 0xffff, 0xc, 0x59d, 0x4, 0x4, 0xe5, 0xfffffffd, 0x0, 0x2, 0x1000, 0x7, 0x10000, 0x10001, 0x7, 0x2, 0x4, 0x2, 0x7, 0x1, 0x3, 0x40, 0x5, 0xffff, 0xfffffe01, 0x401, 0x4, 0x800, 0x3, 0x8, 0x7ff, 0x5, 0x7, 0xf0, 0xfff, 0x7fffffff, 0x10, 0x8, 0xf, 0x3, 0x3, 0x3, 0x6, 0x6, 0x3, 0xe, 0x8, 0x3, 0xbae, 0xc, 0x0, 0x7fffffff, 0xffffffff, 0x1, 0x8001, 0x0, 0x80000001, 0x5, 0xfffffffb, 0x5, 0x1, 0xc71, 0x3, 0xee9, 0x2, 0x1c8f, 0x1, 0x1, 0x7, 0x5, 0x401, 0x8, 0x8000, 0x8000000, 0x7, 0x7, 0x3ff, 0x8, 0x4, 0x3, 0x9, 0x7, 0x5, 0xff, 0x75c, 0x8, 0x7, 0xdf, 0x6, 0xfffff801, 0x6, 0x5, 0x10000, 0x200, 0x1, 0x7, 0x1ab, 0x0, 0x1, 0x7, 0xfffffc01, 0x0, 0x5b265d57, 0x1ff, 0x0, 0x4, 0x6, 0xffffffff, 0x6, 0x1ff, 0x1, 0x2, 0x7ff, 0x3, 0x6, 0x1, 0x4, 0x1, 0x0, 0x80000001, 0x4, 0x9, 0xfff, 0x2, 0xa, 0x8, 0x4, 0x1b, 0x1, 0x2869, 0x3, 0x3, 0x200, 0xd, 0x7, 0x5, 0x5, 0xcba8, 0x10, 0x2, 0x4, 0x8, 0x4, 0x0, 0x2, 0xfffffc00, 0x5, 0x10000, 0x1ff, 0x7a, 0x7, 0x10001, 0x9, 0xd42, 0x3ff, 0xfffffff7, 0x8, 0x9, 0x4, 0x3, 0x0, 0x9, 0x3, 0x3, 0x100, 0x100, 0x3, 0x3, 0x1, 0x400, 0x0, 0x7, 0x800, 0x7, 0x4, 0x4, 0x1, 0x5, 0xd42, 0x4, 0x2, 0x6, 0x3c1e, 0x32, 0x0, 0x7, 0x7fffffff, 0x7, 0x200, 0x6, 0x32, 0xffff, 0xf, 0x7f, 0xe21, 0x0, 0x401, 0x2, 0x4, 0x145c, 0x1, 0x2, 0x204, 0x7fffffff, 0x9, 0x10, 0x6, 0x5, 0x2, 0xb1, 0x128b, 0x80, 0x2, 0x4, 0xfffffc01, 0x8, 0x6, 0x1, 0x1000, 0x2, 0xb, 0x9, 0x9, 0x6, 0xffff, 0x40, 0x400]}]}, @TCA_CGROUP_POLICE={0xc40, 0x2, [@TCA_POLICE_RATE64={0xc, 0x8, 0x3}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3}, @TCA_POLICE_RATE={0x404, 0x2, [0xd7df, 0x9, 0x4, 0x7, 0x80, 0x100, 0x9, 0x93, 0x1, 0xfff, 0x6, 0x100, 0x9, 0x7a, 0x4ded, 0x0, 0x40, 0x69970973, 0x6487, 0x2, 0xb67, 0x8000, 0x99, 0x9f11, 0x5, 0x9, 0x7, 0x25, 0x1, 0x9, 0x1, 0x1, 0x8, 0x2b8, 0x5f7, 0x3, 0x60000000, 0x2, 0x1, 0x8, 0x0, 0x84dd, 0x4, 0x1, 0x1, 0x2, 0x5, 0x1, 0x6, 0x2, 0x2, 0x0, 0x346, 0xdd0, 0x3, 0x2, 0x8, 0x4, 0x10001, 0x6, 0x6, 0xe67, 0xfffffff8, 0x6, 0xc, 0x800, 0xffffff5d, 0x1, 0x2, 0x101, 0x9365, 0x0, 0x3, 0x6, 0x5, 0x6025, 0x2b, 0x9, 0x922, 0x0, 0x7fffffff, 0x1, 0x6, 0x3, 0x40000000, 0x3, 0x8, 0x7, 0xe4, 0x1, 0xaf4, 0x7, 0x3, 0x6, 0x7, 0x7, 0x4, 0x10, 0x1000, 0x4, 0xffffff42, 0xfff, 0x9, 0xca8, 0x3869, 0x68d9, 0x1, 0x5, 0x36, 0x9, 0x9, 0x4, 0x7, 0xffffffff, 0x97, 0x800, 0xf, 0xba2e, 0x3, 0x9, 0x7fffffff, 0x100, 0x5, 0xfffffffc, 0x6, 0xfff, 0x6, 0x97c, 0x0, 0x0, 0xffffffff, 0x3, 0x9, 0x80, 0xfffffffd, 0x1, 0x7, 0x8, 0xfffffffd, 0x9, 0x1000, 0x6, 0x8000, 0x9, 0x6, 0x4, 0x7, 0x1, 0xd44a, 0x5, 0x3ff, 0x5, 0x40, 0x400, 0x80, 0x4, 0x0, 0x8c48, 0x9, 0x5, 0x9d5, 0xff, 0x0, 0x401, 0x3ff, 0x5, 0x80, 0x4, 0x9, 0x7fffffff, 0x1361, 0xd, 0xff, 0x3ff, 0x1, 0x5193, 0x9, 0xfd, 0xf936, 0x3, 0x2, 0x5, 0x3, 0x4, 0x10, 0x5, 0x8, 0x8, 0x0, 0xfffffffb, 0x1, 0x3, 0x3, 0x2, 0x1, 0x3ff, 0x6ee, 0x9, 0x400, 0x1, 0x523fcdec, 0x4, 0xfffffffe, 0x4, 0xfffffff9, 0x8, 0x3, 0x2, 0xffffffff, 0xff, 0xfff, 0x5, 0x9, 0x69a, 0x9, 0x6, 0x4, 0xfffffffc, 0x2, 0xf, 0x4, 0x4, 0x1, 0xfffffff7, 0x3, 0x6f7173d5, 0x7fffffff, 0x401, 0x8, 0x2, 0x8, 0x5, 0xff, 0x0, 0x0, 0x9, 0x7, 0x68b, 0x9, 0xfffffff8, 0xfe0, 0x6, 0x6, 0x40b4c1d7, 0x80, 0x5, 0x9a, 0x8, 0x4, 0xf8, 0x9, 0x80, 0x4, 0xfff, 0x10000, 0xffff0bb7]}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xa}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x6, 0x9, 0x0, 0x7, 0x40, 0x9, 0x4, 0xaad, 0x800, 0x5, 0x123, 0x0, 0x6, 0x8001, 0x1, 0x1f9, 0x4, 0xea, 0x5, 0x9, 0xf, 0x5, 0x2, 0x7316, 0x1, 0x6, 0x200, 0xefd67fca, 0x32f1baf0, 0x5, 0x10001, 0x80000001, 0x4, 0x800, 0x8, 0x7fffffff, 0x1, 0x1, 0x10, 0x100, 0x1, 0x8, 0x3, 0x1, 0x8, 0x89f0, 0x1, 0x1, 0x4, 0xa10f629, 0x5, 0xfffffffb, 0x7fffffff, 0x4, 0x5, 0x4, 0x9, 0x7, 0x4, 0x2c25f35b, 0xcb800000, 0x6, 0x1, 0x8, 0x8, 0x7, 0x81, 0xff, 0x7, 0xfffffff9, 0x6, 0x7ce2, 0x3, 0x80000001, 0x2, 0x30, 0x0, 0x7, 0x28, 0x9, 0xc0, 0xff, 0x9, 0xcf7e7690, 0x4, 0x3, 0xc, 0x4, 0x3ff, 0xa, 0xffffffff, 0x92c9, 0x4, 0x4, 0x8, 0x3db, 0xb0, 0xdb22, 0xfffffffd, 0x0, 0xffffffff, 0x2, 0x6a, 0xfffffffe, 0xffffff7d, 0x2, 0x8, 0x5a, 0x4, 0x7, 0x2, 0x8, 0x4, 0xe9a3, 0xc72d, 0x2, 0xa095, 0x2e37, 0x1, 0xe538, 0x10, 0x7a7, 0x23a4, 0xd24, 0x3, 0x8001, 0x7, 0x1, 0x8000, 0x989, 0x4, 0x3, 0xa9, 0xc, 0xfffffffb, 0x8, 0x2, 0x5, 0x4, 0x3, 0x56aaf1ae, 0x193, 0x1, 0x2, 0x0, 0xf8dd, 0x3, 0x0, 0x31c27b2c, 0x6, 0x10001, 0x1, 0x1, 0x1000, 0x3, 0xf44, 0x4, 0x40, 0x3, 0xb2c10000, 0x9, 0x8, 0x1000, 0x5, 0x8, 0x148bc324, 0xddb2, 0x27c1, 0xfff, 0x8, 0x2, 0x9, 0x6, 0x6, 0x0, 0x2, 0xfff, 0x7, 0x19dc3a3, 0x7, 0x1, 0x6, 0x5, 0x8, 0x9, 0x8, 0x6, 0x7, 0x2, 0x4, 0x8, 0x0, 0x0, 0x8, 0x718, 0x55e, 0x7a67, 0x10001, 0x8001, 0x7, 0x0, 0x8, 0x400, 0x8, 0x74d, 0xff, 0x7, 0x9, 0x32f, 0x10, 0x4, 0x40, 0xd453, 0x401, 0xf, 0xb, 0x0, 0x7, 0x7f, 0x100, 0xff, 0x3ff, 0x9, 0x400, 0x9, 0x14, 0x1fd, 0x0, 0x6d, 0x0, 0x7874, 0x5, 0xa9a, 0x4, 0xffffffff, 0x1, 0x5, 0x10, 0x0, 0x3, 0x1, 0x3, 0x0, 0x3, 0x101, 0x3, 0xd, 0x80000001, 0x87e, 0xe, 0x82e, 0x28b80000, 0x1]}, @TCA_POLICE_RATE={0x404, 0x2, [0x9, 0x9, 0xb45, 0xa, 0x7, 0xedf5, 0x1, 0x9, 0x7, 0x8, 0x4dd6f967, 0x80000001, 0x7700000, 0xfff, 0x4, 0x69a6ef9, 0x8001, 0xa, 0x6716, 0xb8, 0x2, 0x2, 0x5c5, 0x0, 0xd015, 0x6, 0x7, 0x9, 0x0, 0x100, 0x9, 0x1, 0x8, 0x9, 0x4, 0x4d, 0xd, 0xffffffff, 0x75, 0x0, 0x7, 0x3, 0x4, 0x80, 0x7ff, 0x3, 0x100, 0x10, 0x200, 0x0, 0x47, 0x5b, 0x6, 0x584683bc, 0x2, 0x80, 0x4, 0x8, 0x4, 0xefcc, 0x40, 0x1, 0x1, 0x9, 0xfffffff7, 0x8ed, 0xa, 0x1, 0x7, 0x6, 0x9, 0xa, 0xed45, 0x7, 0xf7, 0xa, 0x35, 0x9, 0x1, 0x2, 0x3, 0x3f, 0x154b, 0x9be9, 0x5a4, 0x5, 0x8, 0x3, 0x80, 0x9, 0x3, 0x2480, 0xb, 0x9915, 0x5, 0x4, 0x401, 0x2, 0x80, 0x7f, 0x0, 0x1, 0x8, 0x2, 0x8, 0x6, 0x8001, 0x17, 0x6, 0x7, 0x80, 0x7944, 0x1, 0xc1, 0x6, 0x8, 0x9, 0x6, 0x2, 0xc25e, 0xffffa7c1, 0x2, 0x0, 0x5, 0x2, 0x3, 0xfffffc00, 0x7f, 0x5, 0x8001, 0x935, 0xf, 0x3, 0x2, 0xb10, 0x3, 0x3, 0x4, 0x3, 0x81, 0x5, 0xa5, 0x400, 0x5, 0x1, 0xffff, 0xffffffff, 0x101, 0x5, 0xa, 0x6, 0x9, 0x9, 0x4, 0x0, 0x4, 0x5f, 0x3ff, 0x7, 0xfffffffe, 0x7, 0x491a, 0x8, 0x0, 0x3, 0x7, 0x0, 0x2, 0x6, 0x4, 0x8001, 0x100, 0x2a5, 0x7, 0x1000, 0x1, 0xb4a, 0x5, 0x9, 0x6, 0x9, 0x2, 0x1, 0x5, 0x7, 0x3, 0x401, 0x2, 0xb2f, 0x7fff, 0x5, 0x80000, 0x8, 0x8, 0xfffffffb, 0x3, 0x4, 0x3, 0x9, 0x9, 0x8, 0x8, 0x6, 0x9, 0xc4, 0x7, 0x7, 0x4, 0x0, 0xfffffffb, 0x8, 0x2, 0x3, 0x9, 0xe, 0x3, 0x0, 0x100, 0xf, 0x0, 0x7f, 0x0, 0x1, 0x101, 0x8, 0x80000001, 0x5, 0x80, 0x7, 0x1, 0x5, 0x85, 0x8, 0x4, 0x3, 0xa, 0x0, 0x3, 0x0, 0xfffffffe, 0x6, 0x2, 0x7fffffff, 0x0, 0x6, 0x1, 0xd, 0x5, 0x40, 0x101, 0x0, 0x8, 0xffffff20, 0x6, 0x0, 0xd726]}, @TCA_POLICE_RATE64={0xc, 0x8, 0x8}]}, @TCA_CGROUP_POLICE={0x408, 0x2, [@TCA_POLICE_RATE={0x404, 0x2, [0x51e, 0x10000, 0x0, 0xec, 0x2, 0x401, 0x7, 0x2, 0x7, 0x8, 0x10001, 0xffff78db, 0x101, 0x10, 0xffffffff, 0x3, 0x8, 0x6, 0x56, 0x9, 0x2, 0x2, 0x40, 0x3, 0x7, 0x5, 0x3, 0x348f, 0x7, 0x8, 0x1, 0x3, 0x2, 0x59, 0x8, 0x7fff, 0x200, 0x2, 0xffffff2f, 0x6, 0xf, 0x1ff, 0xab2, 0x922e, 0x2a, 0x3, 0xaa3, 0x2, 0x9, 0x9, 0x5, 0x7, 0x2, 0x1, 0x0, 0x3, 0x0, 0x417, 0x9, 0x10001, 0x531, 0x6, 0x7, 0xa, 0x54e, 0x8, 0x8, 0x6, 0x5, 0x9, 0xc9, 0x0, 0x5, 0x100, 0xb86, 0x2, 0x1, 0x48a, 0x5, 0x1, 0x2, 0x2, 0xfffffffe, 0x1, 0x6, 0x9, 0x1, 0x48000, 0x2, 0x3, 0x9, 0x5, 0x9, 0x4, 0x6, 0x3, 0x0, 0x8, 0x5f, 0x4c, 0x10, 0x6, 0xe, 0x2, 0x2, 0x8, 0x6, 0x3, 0x80, 0xffff, 0x4, 0x7, 0x9, 0x1, 0x4, 0x3, 0x7f, 0x7fffffff, 0x6402800, 0x3, 0xc0, 0x3, 0xac87, 0x2, 0x1e27, 0x1, 0x1, 0x8001, 0x3, 0xfffffff7, 0xb, 0x6, 0x7, 0x400, 0x1, 0x7, 0x1, 0x69f, 0x4, 0x8, 0x40, 0x2, 0x2c, 0x4, 0x2, 0x7, 0x0, 0x7f, 0xfffffffd, 0x0, 0x9, 0x8000, 0x1, 0x8, 0x1, 0x3ff, 0x3, 0x6, 0x80000000, 0x8, 0xccb, 0x2, 0x92, 0x2, 0x8, 0x7, 0x7, 0xfff, 0x8, 0x6, 0x3, 0x7721, 0x5, 0x2, 0x57a, 0x8001, 0x6, 0x1, 0x80000001, 0x3, 0x3, 0x40, 0x7, 0x400, 0x10000, 0x9, 0x1, 0x89, 0x8, 0x4, 0x2, 0x9, 0x9, 0x0, 0x1000, 0x200, 0x80, 0x8, 0x80000, 0x1, 0x0, 0x422, 0xb74f, 0x1c, 0x0, 0x7, 0x1, 0xe4e, 0x1, 0x9, 0x1ff, 0x6, 0xf512, 0x4c, 0xa7, 0x80000001, 0xd73, 0x81, 0x5, 0x2, 0x2, 0x4, 0x9, 0x40, 0x8001, 0x2, 0x4, 0x6, 0xfffff000, 0x6, 0xf, 0x8, 0x9, 0xfffffff9, 0x4, 0x5, 0x9, 0x7fffffff, 0x2, 0x8, 0x10000, 0x3, 0x7, 0x5, 0x1000, 0x4, 0x43e, 0x5, 0x6, 0x1, 0x9, 0x7, 0x7, 0x4, 0xd009, 0x9]}]}]}}, @TCA_RATE={0x6, 0x5, {0x1, 0x3}}, @TCA_RATE={0x6, 0x5, {0x10, 0x8}}, @TCA_CHAIN={0x8, 0xb, 0x100}, @TCA_RATE={0x6, 0x5, {0x3, 0x50}}, @filter_kind_options=@f_u32={{0x8}, {0x1c, 0x2, [@TCA_U32_MARK={0x10, 0xa, {0x1, 0x38000}}, @TCA_U32_LINK={0x8, 0x3, 0x7}]}}, @filter_kind_options=@f_basic={{0xa}, {0x3f8, 0x2, [@TCA_BASIC_EMATCHES={0x3f4, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x4}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x400}}, @TCA_EMATCH_TREE_LIST={0x248, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x3, 0x0, 0x0, {{0x1, 0x7, 0x80}, {{0x0, 0x0, 0x0, 0x1}, {0x2, 0x0, 0x0, 0x1}}}}, @TCF_EM_META={0x90, 0x2, 0x0, 0x0, {{0x2, 0x4, 0x100}, [@TCA_EM_META_LVALUE={0x17, 0x2, [@TCF_META_TYPE_INT=0x7, @TCF_META_TYPE_INT=0x8, @TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_INT=0x2, @TCF_META_TYPE_VAR="1b1971"]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x8, 0x9, 0x2}, {0x0, 0x8, 0x2}}}, @TCA_EM_META_RVALUE={0xf, 0x3, [@TCF_META_TYPE_VAR="e331e2", @TCF_META_TYPE_VAR="ee049a2f60feb4e0"]}, @TCA_EM_META_LVALUE={0x32, 0x2, [@TCF_META_TYPE_INT=0x7, @TCF_META_TYPE_VAR="239789884aaf", @TCF_META_TYPE_VAR="b0c1d5e244", @TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_INT=0x9, @TCF_META_TYPE_VAR="e65145bd6354f7", @TCF_META_TYPE_VAR, @TCF_META_TYPE_VAR="4353ef8f7b4651a7", @TCF_META_TYPE_VAR="cf8b3bba", @TCF_META_TYPE_INT=0x2]}, @TCA_EM_META_RVALUE={0x1b, 0x3, [@TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_VAR="c3d873a404", @TCF_META_TYPE_VAR="8893178625fa", @TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_INT=0xa]}]}}, @TCF_EM_CONTAINER={0x18, 0x10, 0x0, 0x0, {{0x10, 0x0, 0x2}, "b914b5f7dd169efb1c1cacbf"}}, @TCF_EM_IPSET={0x10, 0x2, 0x0, 0x0, {{0x2, 0x8, 0x7}, {0x4, 0x3, 0x5}}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x6, 0x3, 0x63}, {0x7bd9, 0x6af5adb0, 0x70, 0x80000001}}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x5, 0x7, 0x5}, {{0x1, 0x0, 0x1}, {0x2, 0x1}}}}, @TCF_EM_CMP={0x18, 0x3, 0x0, 0x0, {{0x1, 0x1, 0xfffd}, {0x8, 0xfffff801, 0x561, 0x0, 0x0, 0x2, 0x1}}}, @TCF_EM_CONTAINER={0xa8, 0x3, 0x0, 0x0, {{0xe, 0x0, 0x4}, "4d78378e5237449886a2238a79bf8026348999bdec3bcfb19e574b320e0bb138952464f212cfef17ad4604defd25aa59f65f3733cf7b9159a244d5354944d36ff8eb232eb534750f80c32e0a3e6f85a924f498427ff3f56b72ac208c109c7a3b19d7446b0178ef304ee33cca45cd914824e7fccfaf3e8de76fd1e3f89c7359213c587fcf9c3099f9db72da71b46c7671db03f94c8b3c081fabe951"}}, @TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0x2, 0x2, 0x5}, {0x8001, 0x1, 0x1, '\a'}}}, @TCF_EM_META={0x74, 0x1, 0x0, 0x0, {{0x72d, 0x4, 0x1}, [@TCA_EM_META_LVALUE={0x8, 0x2, [@TCF_META_TYPE_INT=0x7]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x4, 0x8}, {0x29a2, 0xd, 0x2}}}, @TCA_EM_META_LVALUE={0x15, 0x2, [@TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_VAR="6a8a74158f"]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x6, 0x6d, 0x1}, {0x1000, 0x29, 0x1}}}, @TCA_EM_META_LVALUE={0x2a, 0x2, [@TCF_META_TYPE_VAR="0e8a1f4bd2e134", @TCF_META_TYPE_VAR="18", @TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_VAR="e3e7", @TCF_META_TYPE_INT=0x4, @TCF_META_TYPE_INT=0x2, @TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_VAR="888e327f", @TCF_META_TYPE_INT=0xa]}, @TCA_EM_META_RVALUE={0x4, 0x3, [@TCF_META_TYPE_VAR]}]}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_LIST={0x190, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0x110, 0x2, 0x0, 0x0, {{0x0, 0x9, 0xfc71}, [@TCA_EM_IPT_MATCH_DATA={0xec, 0x5, "1dc1e14362d614e7422ee861f471e901830a93a6b47dbc58ee08307c751700d671bf90ea5f21336bf2bda1d322e3809b61dc96e9230101aec4f4e42e1b69844f37da8e5ff9d94cd8e942b28216facf4d08719e4f33721f36bb0853efc03560aac21da35cc19e7ee094abc7a95d82e949b3f5058df2a6221bd487a21b28fb85114651265eaae96a56800142977d4d8727f94743849ddc56906b67d7bf9d31849955d6aca1418cd5ee6adbc49142d3ef9869c36eafb865e96e022b646b00abcb29fe2a7efa7626bc234d54814f01241fcb41b7e6acbde8b47b37075699d0005f41fc5229f7f8a3d86b"}, @TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x40}, @TCA_EM_IPT_HOOK={0x8}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x1}]}}, @TCF_EM_CMP={0x18, 0x3, 0x0, 0x0, {{0x6, 0x1, 0x4}, {0x7fff, 0x10, 0x7, 0x0, 0x0, 0x2, 0x2}}}, @TCF_EM_CMP={0x18, 0x3, 0x0, 0x0, {{0x4}, {0x1ff, 0x511e7036, 0xc, 0x3, 0x6, 0x1}}}, @TCF_EM_META={0x18, 0x1, 0x0, 0x0, {{0x3, 0x4, 0x4}, [@TCA_EM_META_RVALUE={0xa, 0x3, [@TCF_META_TYPE_VAR="5d005d970600"]}]}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x7, 0x3, 0x1}, {0x8, 0xd6b, 0x80000000, 0x100}}}, @TCF_EM_NBYTE={0x18, 0x2, 0x0, 0x0, {{0x6, 0x2, 0x7fff}, {0xb1, 0x5, 0x1, "2993c9b894"}}}]}]}]}}, @TCA_CHAIN={0x8, 0xb, 0x5e1}]}, 0x39e4}, 0x1, 0x0, 0x0, 0x20000000}, 0x2)

137.785477ms ago: executing program 4 (id=1838):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=ANY=[@ANYBLOB="60000000020603000000000000830000000000000900020073797a31000000000500010007000000050005000a00000014000780080013400000000008001240ffffffff12000300686173683a6e65742c706f7274000000050004"], 0x60}, 0x1, 0x0, 0x0, 0x4008801}, 0x40880) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={0x0, 0x0}}, 0x40)
mount(&(0x7f00000025c0)=@sg0, &(0x7f0000000300)='./file1\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, &(0x7f0000000380)='acl') (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x101040, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_GET_CPUID2(r4, 0xc008ae91, &(0x7f0000000000)) (async)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000273000/0x4000)=nil) (async)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3000004, 0x3032, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r6) (async)
r8 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_QOS_MAP(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01002bbd7000fcdbdf256800000008000300", @ANYRES32=r9, @ANYBLOB="1400c70004070f0600030b06a1264b1f417443511600c70081643e030806fa03050655275edec3d8d2a10000af86ebf810cfbe365772890dee3c198d3f040742dab3a86f924888300d8b11971a97bbd0715c0ad36b5b3cf109031c735195e1895fca8cc78601d798e5fe9eeca88c24db0223e107ce63dbad8a428c584ec6844f81f8f2eac7097915b296f6ba47e8eaa3537db92c011311510e25fc7ef50e8843272554767d8155b6afcc08efd623787b6331a568f1a940822936"], 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x30000814) (async)
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000080)={0x8})
r10 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r10, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) (async)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r10, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r11=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r10, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r11], 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000340)={&(0x7f0000000140)=[0x0, 0x0], &(0x7f00000001c0)=[0x0, <r12=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x2, 0x8, 0x6, 0x8}) (async)
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f0000000400)={0x0, 0x0, <r13=>0x0, 0x0, 0x0, 0x7, &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_SETPLANE(r5, 0xc03064b7, &(0x7f0000000440)={r11, r12, r13, 0x2b9, 0x7, 0x3, 0x2, 0x5, 0x2, 0x401, 0x1, 0x5})

71.412579ms ago: executing program 3 (id=1839):
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffb000/0x2000)=nil)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001000)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_DELRULE={0x38, 0x8, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0xa}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x2}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x8c}}, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x8fff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000002060101000000000000000000f90003050005000a0000000900020073797a3000000000050001009f"], 0x30}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000fdffffee0000000000000000850000002c0000"], 0x0, 0x5}, 0x94)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="300000001c0001000000000004086aa42d"], 0x30}}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r3)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000001c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_DEL_PMKSA(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x20, r5, 0x1, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_SSID={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000000}, 0x40)
r7 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f00000000c0))
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x28, r9, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1a}]}]}, 0x28}}, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r3, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x4c, r9, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private1}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}]}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x82}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x480d0}, 0x4040000)
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
ioctl$UFFDIO_CONTINUE(r7, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000820000/0x2000)=nil, 0x2000}, 0x1})
sendmsg$NL80211_CMD_GET_MESH_CONFIG(r1, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, r2, 0x300, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004044}, 0x40000)
move_pages(0x0, 0x20a0, &(0x7f0000000040), &(0x7f0000001180), &(0x7f0000000000), 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000002000)=""/102400, 0x19000)
execve(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000080)={[&(0x7f00000002c0)='\x7f\xb7\xc3\x7f\xa5a\xd6A*c\x9b\xd8R\xf02b\xefA|uiWb\x8f\xee\x1c\xc5\xdb^\x11\x16h\x83\x94y<yN\xfbXh[\xe9\xa9\x1702\x7f\x9e\xf0\x99\xad\xdc;p\x98R\a\xb1\x9d^\x0f\x121\xb3\xab7P\xd6\xcb\x06\xfe2~W\xd9\xad\x80\xd9!\x89%\xb80\xa3l;\x1eK\x90\x15\xc6\x11A\xfc\x7f\xc6\xed\xe7\xa3\x9f\xb4\xce\"\xef\xa8\x86F\x15\xb9\rj\f\xafa\xb0}\xde\'E\x84\xb2bO\xd2\xd4\x85F\xde1e\xe0\xf2\xa0/\xd3<\xda\xfe\x04,\xfa\x97\xb6\xf4\xcf\x0el\xf2\xbd\x18\x88\xd7\x02\xce\x99\x1f\xadj\x89\xd9\xb7\xae9\xb0\xb0{n.\xd7\x87C\x0eh|KZG\x108l\n\xcd\xe9\x04\xafM\xbf\x83#>\x89\xf1Y{\x87\xd5\xf3\xccMr\xc5\xbdT\x9e\xc4\x84\x06\xcd\x8b\xcd\t\x01']})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1e0000000000000b1fa10000001001000404000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
munmap(&(0x7f0000004000/0x3000)=nil, 0x3000)

1.794107ms ago: executing program 3 (id=1840):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80b00, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x2d8, 0x20, 0x0, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000580)={0x2, 0x0, @ioapic={0x4000, 0xb, 0xfffffffe, 0xf6a, 0x0, [{0x9, 0x5, 0x8, '\x00', 0xb4}, {0x83, 0xd2, 0x0, '\x00', 0x4b}, {0xf9, 0x9d, 0x7, '\x00', 0x40}, {0x0, 0x9, 0x40, '\x00', 0x6}, {0x9, 0x10, 0x8, '\x00', 0xa8}, {0x2, 0x5, 0x6, '\x00', 0xff}, {0x6, 0xf, 0x47, '\x00', 0x6}, {0x5, 0x8c, 0x4, '\x00', 0xe9}, {0xe, 0x9, 0x26, '\x00', 0x5}, {0x9, 0x5c, 0x6, '\x00', 0x4}, {0x1, 0xd, 0x15, '\x00', 0x9}, {0x8, 0x5, 0x6, '\x00', 0x7}, {0x4, 0x8a, 0x80, '\x00', 0xdd}, {0x3, 0xf1, 0x6, '\x00', 0x9}, {0x7, 0x65, 0x0, '\x00', 0xfd}, {0x6, 0x9b, 0x42, '\x00', 0x23}, {0x7, 0x2, 0x4, '\x00', 0x3}, {0xe7, 0x6, 0x9, '\x00', 0x4}, {0xf, 0x6, 0x6}, {0x9, 0x3, 0x3, '\x00', 0x4}, {0x41, 0x3, 0x7, '\x00', 0x4}, {0xd, 0x40, 0x7, '\x00', 0x5}, {0x15, 0xfd, 0x6, '\x00', 0x1c}, {0x92, 0x6, 0x7, '\x00', 0x42}]}})
ioctl$KVM_RUN(r2, 0xae80, 0x40000000000)

0s ago: executing program 4 (id=1841):
r0 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000580), 0x8000, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)={0x400, 0xa0, 0xa00, 0x600, 0x1800, 0x8, 0x0, 0x1, {0x3ff, 0x10001, 0x1}, {0x1c9, 0x7, 0x1}, {0xc7}, {0x3, 0x100, 0x1}, 0x0, 0x1dd, 0x6, 0x200, 0xddff, 0x8, 0x0, 0x10000, 0xa1fb, 0x101, 0x80000003, 0x5, 0xfbaebe444cba4e0a, 0x2, 0x2, 0x3})

kernel console output (not intermixed with test programs):

l+0x10/0x10
[  105.641046][ T8969]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  105.641070][ T8969]  ? hook_file_ioctl_common+0x145/0x410
[  105.641086][ T8969]  ? selinux_file_ioctl+0x180/0x270
[  105.641102][ T8969]  ? selinux_file_ioctl+0xb4/0x270
[  105.641118][ T8969]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  105.641136][ T8969]  __x64_sys_ioctl+0x18b/0x210
[  105.641154][ T8969]  do_syscall_64+0xcd/0x4c0
[  105.641169][ T8969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.641181][ T8969] RIP: 0033:0x7f5e3e98ebe9
[  105.641191][ T8969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.641202][ T8969] RSP: 002b:00007f5e3f746038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  105.641213][ T8969] RAX: ffffffffffffffda RBX: 00007f5e3ebb5fa0 RCX: 00007f5e3e98ebe9
[  105.641220][ T8969] RDX: 0000200000000000 RSI: 000000008028640c RDI: 0000000000000003
[  105.641226][ T8969] RBP: 00007f5e3f746090 R08: 0000000000000000 R09: 0000000000000000
[  105.641233][ T8969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.641239][ T8969] R13: 00007f5e3ebb6038 R14: 00007f5e3ebb5fa0 R15: 00007fff33752048
[  105.641253][ T8969]  </TASK>
[  105.744582][ T5972] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  105.786560][   T40] audit: type=1400 audit(1756490978.653:452): avc:  denied  { write } for  pid=8974 comm="syz.3.1068" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  105.786831][ T8975] random: crng reseeded on system resumption
[  105.793077][   T40] audit: type=1400 audit(1756490978.653:453): avc:  denied  { append } for  pid=8974 comm="syz.3.1068" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  105.807370][ T5972] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  105.813945][ T8975] Restarting kernel threads ...
[  105.817353][ T8975] Done restarting kernel threads.
[  105.847506][ T8979] binder: 8978:8979 ioctl c0306201 200000000080 returned -14
[  105.939634][ T8988] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1075'.
[  105.946280][   T40] audit: type=1400 audit(1756490978.813:454): avc:  denied  { search } for  pid=8983 comm="syz.1.1073" name="/" dev="configfs" ino=3271 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  105.951255][ T8988] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  105.952423][ T8989] trusted_key: encrypted_key: keylen parameter is missing
[  105.957591][   T40] audit: type=1400 audit(1756490978.813:455): avc:  denied  { search } for  pid=8983 comm="syz.1.1073" name="/" dev="configfs" ino=3271 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  105.976381][   T40] audit: type=1400 audit(1756490978.813:456): avc:  denied  { search } for  pid=8983 comm="syz.1.1073" name="/" dev="configfs" ino=3271 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  106.016767][   T40] audit: type=1400 audit(1756490978.883:457): avc:  denied  { search } for  pid=8983 comm="syz.1.1073" name="/" dev="configfs" ino=3271 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  106.194340][ T8997] binder: 8996:8997 ioctl c0306201 0 returned -14
[  106.197804][ T8997] binder: 8996:8997 ioctl 4018620d 0 returned -22
[  106.339194][ T9007] netlink: 276 bytes leftover after parsing attributes in process `syz.2.1082'.
[  106.442990][ T9011] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  106.609865][ T5973] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  106.764952][ T5973] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  106.770658][ T5973] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  106.775468][ T5973] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  106.779592][ T5973] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  106.787474][ T5973] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.00
[  106.792174][ T5973] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.802089][ T5973] usb 7-1: config 0 descriptor??
[  107.215277][ T9022] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  107.219072][ T5973] keytouch 0003:0926:3333.0004: fixing up Keytouch IEC report descriptor
[  107.238339][ T5973] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0926:3333.0004/input/input11
[  107.329129][ T5973] keytouch 0003:0926:3333.0004: input,hidraw1: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0
[  107.346994][ T9026] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2305 sclass=netlink_route_socket pid=9026 comm=syz.3.1090
[  107.461869][ T9034] FAULT_INJECTION: forcing a failure.
[  107.461869][ T9034] name failslab, interval 1, probability 0, space 0, times 0
[  107.467621][ T9034] CPU: 2 UID: 0 PID: 9034 Comm: syz.4.1093 Not tainted syzkaller #0 PREEMPT(full) 
[  107.467647][ T9034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.467658][ T9034] Call Trace:
[  107.467665][ T9034]  <TASK>
[  107.467674][ T9034]  dump_stack_lvl+0x16c/0x1f0
[  107.467701][ T9034]  should_fail_ex+0x512/0x640
[  107.467721][ T9034]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  107.467744][ T9034]  should_failslab+0xc2/0x120
[  107.467765][ T9034]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  107.467782][ T9034]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  107.467808][ T9034]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  107.467835][ T9034]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  107.467868][ T9034]  mmu_topup_memory_caches+0x25/0x170
[  107.467889][ T9034]  kvm_mmu_load+0xd6/0x23c0
[  107.467905][ T9034]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  107.467923][ T9034]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  107.467943][ T9034]  ? kvm_apic_accept_pic_intr+0xe8/0x1a0
[  107.467964][ T9034]  ? __pfx_kvm_mmu_load+0x10/0x10
[  107.467979][ T9034]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  107.468007][ T9034]  ? kvm_check_and_inject_events+0x71c/0x1310
[  107.468038][ T9034]  vcpu_run+0x358c/0x5580
[  107.468062][ T9034]  ? __lock_acquire+0xb97/0x1ce0
[  107.468103][ T9034]  ? __pfx_vcpu_run+0x10/0x10
[  107.468130][ T9034]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  107.468153][ T9034]  ? __local_bh_enable_ip+0xa4/0x120
[  107.468181][ T9034]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  107.468205][ T9034]  kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  107.468238][ T9034]  kvm_vcpu_ioctl+0x5eb/0x1690
[  107.468264][ T9034]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  107.468287][ T9034]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  107.468309][ T9034]  ? do_vfs_ioctl+0x128/0x14f0
[  107.468336][ T9034]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  107.468360][ T9034]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  107.468394][ T9034]  ? hook_file_ioctl_common+0x145/0x410
[  107.468418][ T9034]  ? selinux_file_ioctl+0x180/0x270
[  107.468440][ T9034]  ? selinux_file_ioctl+0xb4/0x270
[  107.468463][ T9034]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  107.468487][ T9034]  __x64_sys_ioctl+0x18b/0x210
[  107.468513][ T9034]  do_syscall_64+0xcd/0x4c0
[  107.468550][ T9034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.468565][ T9034] RIP: 0033:0x7f57e018ebe9
[  107.468578][ T9034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.468592][ T9034] RSP: 002b:00007f57e0fd6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  107.468607][ T9034] RAX: ffffffffffffffda RBX: 00007f57e03b5fa0 RCX: 00007f57e018ebe9
[  107.468617][ T9034] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  107.468625][ T9034] RBP: 00007f57e0fd6090 R08: 0000000000000000 R09: 0000000000000000
[  107.468634][ T9034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  107.468642][ T9034] R13: 00007f57e03b6038 R14: 00007f57e03b5fa0 R15: 00007fff333d6318
[  107.468662][ T9034]  </TASK>
[  107.719927][   T24] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  107.746446][ T9042] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1095'.
[  107.884991][   T24] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  107.888645][   T24] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  107.891986][   T24] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  107.895097][   T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.901207][ T9026] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  107.909537][   T24] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  108.184528][ T9026] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  108.193273][ T9026] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  108.517148][ T5973] usb 7-1: reset high-speed USB device number 2 using dummy_hcd
[  109.172995][ T9051] FAULT_INJECTION: forcing a failure.
[  109.172995][ T9051] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.177737][ T9051] CPU: 3 UID: 0 PID: 9051 Comm: syz.1.1097 Not tainted syzkaller #0 PREEMPT(full) 
[  109.177757][ T9051] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.177765][ T9051] Call Trace:
[  109.177772][ T9051]  <TASK>
[  109.177778][ T9051]  dump_stack_lvl+0x16c/0x1f0
[  109.177797][ T9051]  should_fail_ex+0x512/0x640
[  109.177814][ T9051]  _copy_to_user+0x32/0xd0
[  109.177838][ T9051]  kvm_arch_vcpu_ioctl+0xad6/0x52d0
[  109.177856][ T9051]  ? stack_trace_save+0x8e/0xc0
[  109.177875][ T9051]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  109.177889][ T9051]  ? __lock_acquire+0xb97/0x1ce0
[  109.177910][ T9051]  ? kasan_save_stack+0x42/0x60
[  109.177922][ T9051]  ? kasan_save_stack+0x33/0x60
[  109.177936][ T9051]  ? kasan_save_track+0x14/0x30
[  109.177959][ T9051]  ? kasan_save_free_info+0x3b/0x60
[  109.177981][ T9051]  ? __kasan_slab_free+0x60/0x70
[  109.177997][ T9051]  ? kfree+0x2b4/0x4d0
[  109.178023][ T9051]  ? tomoyo_path_number_perm+0x470/0x580
[  109.178049][ T9051]  ? __lock_acquire+0xb97/0x1ce0
[  109.178074][ T9051]  ? __mutex_trylock_common+0xe9/0x250
[  109.178095][ T9051]  ? __pfx___mutex_trylock_common+0x10/0x10
[  109.178115][ T9051]  ? __pfx___might_resched+0x10/0x10
[  109.178132][ T9051]  ? rcu_is_watching+0x12/0xc0
[  109.178148][ T9051]  ? trace_contention_end+0xdd/0x130
[  109.178159][ T9051]  ? __mutex_lock+0x1c5/0x1060
[  109.178177][ T9051]  ? kasan_quarantine_put+0x10a/0x240
[  109.178190][ T9051]  ? __pfx___mutex_lock+0x10/0x10
[  109.178211][ T9051]  ? tomoyo_path_number_perm+0x18d/0x580
[  109.178233][ T9051]  ? kvm_vcpu_ioctl+0x1236/0x1690
[  109.178252][ T9051]  kvm_vcpu_ioctl+0x1236/0x1690
[  109.178270][ T9051]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  109.178286][ T9051]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  109.178302][ T9051]  ? do_vfs_ioctl+0x128/0x14f0
[  109.178321][ T9051]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  109.178340][ T9051]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  109.178364][ T9051]  ? hook_file_ioctl_common+0x145/0x410
[  109.178382][ T9051]  ? selinux_file_ioctl+0x180/0x270
[  109.178398][ T9051]  ? selinux_file_ioctl+0xb4/0x270
[  109.178416][ T9051]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  109.178433][ T9051]  __x64_sys_ioctl+0x18b/0x210
[  109.178453][ T9051]  do_syscall_64+0xcd/0x4c0
[  109.178468][ T9051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.178481][ T9051] RIP: 0033:0x7f5e3e98ebe9
[  109.178492][ T9051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.178504][ T9051] RSP: 002b:00007f5e3f746038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  109.178516][ T9051] RAX: ffffffffffffffda RBX: 00007f5e3ebb5fa0 RCX: 00007f5e3e98ebe9
[  109.178524][ T9051] RDX: 0000200000000080 RSI: 000000008040ae9f RDI: 0000000000000005
[  109.178531][ T9051] RBP: 00007f5e3f746090 R08: 0000000000000000 R09: 0000000000000000
[  109.178538][ T9051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.178545][ T9051] R13: 00007f5e3ebb6038 R14: 00007f5e3ebb5fa0 R15: 00007fff33752048
[  109.178562][ T9051]  </TASK>
[  109.506302][   T40] kauditd_printk_skb: 12 callbacks suppressed
[  109.506314][   T40] audit: type=1400 audit(1756490982.373:470): avc:  denied  { mounton } for  pid=9066 comm="syz.1.1104" path="/proc/604/task" dev="proc" ino=30428 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  109.525073][  T982] usb 8-1: USB disconnect, device number 8
[  109.542613][ T9070] max out of range
[  109.544971][ T9070] netlink: 188 bytes leftover after parsing attributes in process `syz.2.1105'.
[  109.711780][ T9067] netlink: 'syz.1.1104': attribute type 21 has an invalid length.
[  109.768509][ T9080] max out of range
[  109.770802][ T9080] netlink: 188 bytes leftover after parsing attributes in process `syz.2.1109'.
[  109.817935][ T9082] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1110'.
[  109.821175][ T9082] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1110'.
[  109.824161][ T9082] tipc: MTU too low for tipc bearer
[  109.866210][ T9084] I/O error, dev loop2, sector 128 op 0x0:(READ) flags 0x1800 phys_seg 1 prio class 2
[  109.869393][ T9084] gfs2: error -5 reading superblock
[  109.878029][   T40] audit: type=1400 audit(1756490982.743:471): avc:  denied  { create } for  pid=9087 comm="syz.4.1112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  109.889150][   T40] audit: type=1400 audit(1756490982.753:472): avc:  denied  { write } for  pid=9087 comm="syz.4.1112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  109.899152][   T40] audit: type=1400 audit(1756490982.753:473): avc:  denied  { nlmsg_write } for  pid=9087 comm="syz.4.1112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  109.947340][   T40] audit: type=1400 audit(1756490982.813:474): avc:  denied  { read write } for  pid=9094 comm="syz.4.1115" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  109.957642][   T40] audit: type=1400 audit(1756490982.813:475): avc:  denied  { open } for  pid=9094 comm="syz.4.1115" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  109.959230][ T9095] binder: 9094:9095 ioctl c0306201 0 returned -14
[  109.974603][ T9095] binder: 9094:9095 ioctl 4018620d 0 returned -22
[  110.058839][ T9100] max out of range
[  110.060932][ T9100] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1118'.
[  110.068399][ T9102] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.1117'.
[  110.109538][   T40] audit: type=1400 audit(1756490982.973:476): avc:  denied  { read } for  pid=9103 comm="syz.3.1119" name="usbmon9" dev="devtmpfs" ino=765 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  110.120005][   T40] audit: type=1400 audit(1756490982.983:477): avc:  denied  { open } for  pid=9103 comm="syz.3.1119" path="/dev/usbmon9" dev="devtmpfs" ino=765 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  110.129398][   T40] audit: type=1400 audit(1756490982.983:478): avc:  denied  { ioctl } for  pid=9103 comm="syz.3.1119" path="/dev/usbmon9" dev="devtmpfs" ino=765 ioctlcmd=0x9201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  110.171081][  T839] usb 7-1: USB disconnect, device number 2
[  110.298558][ T9115] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  110.303608][ T9115] netdevsim netdevsim3 netdevsim0: left allmulticast mode
[  110.321588][   T40] audit: type=1400 audit(1756490983.193:479): avc:  denied  { checkpoint_restore } for  pid=9114 comm="syz.3.1122" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  110.368178][ T5972] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  110.454370][ T9133] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1129'.
[  110.458183][ T9133] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1129'.
[  110.463711][ T9133] tipc: MTU too low for tipc bearer
[  110.497310][ T9137] max out of range
[  110.499268][ T9137] netlink: 188 bytes leftover after parsing attributes in process `syz.2.1131'.
[  110.564228][ T9139] netlink: 'syz.3.1132': attribute type 3 has an invalid length.
[  110.567671][ T9139] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1132'.
[  110.572484][ T9139] netlink: 'syz.3.1132': attribute type 3 has an invalid length.
[  110.630941][ T5972] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  110.884032][ T9172] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  111.112372][ T9181] binder: 9180:9181 ioctl c0306201 200000000080 returned -14
[  111.120617][ T9181] binder: BINDER_SET_CONTEXT_MGR already set
[  111.123838][ T9181] binder: 9180:9181 ioctl 4018620d 200000000040 returned -16
[  111.224090][ T9193] trusted_key: syz.3.1152 sent an empty control message without MSG_MORE.
[  111.266422][ T9196] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  111.292228][ T9200] netlink: 'syz.3.1155': attribute type 2 has an invalid length.
[  111.351464][ T9202] overlayfs: failed to resolve './file0': -2
[  112.274248][ T9228] netlink: 'syz.2.1166': attribute type 1 has an invalid length.
[  112.409588][ T9237] tipc: Started in network mode
[  112.413197][ T9237] tipc: Node identity ac1414aa, cluster identity 4711
[  112.418778][ T9237] tipc: Enabled bearer <udp:s>, priority 10
[  112.641045][ T5972] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  112.710139][ T9257] FAULT_INJECTION: forcing a failure.
[  112.710139][ T9257] name failslab, interval 1, probability 0, space 0, times 0
[  112.716963][ T9257] CPU: 2 UID: 0 PID: 9257 Comm: syz.3.1176 Not tainted syzkaller #0 PREEMPT(full) 
[  112.716989][ T9257] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.717001][ T9257] Call Trace:
[  112.717010][ T9257]  <TASK>
[  112.717019][ T9257]  dump_stack_lvl+0x16c/0x1f0
[  112.717072][ T9257]  should_fail_ex+0x512/0x640
[  112.717096][ T9257]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  112.717115][ T9257]  should_failslab+0xc2/0x120
[  112.717137][ T9257]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  112.717156][ T9257]  ? __alloc_skb+0x2b2/0x380
[  112.717176][ T9257]  __alloc_skb+0x2b2/0x380
[  112.717191][ T9257]  ? __pfx___alloc_skb+0x10/0x10
[  112.717204][ T9257]  ? find_held_lock+0x2b/0x80
[  112.717224][ T9257]  ? is_bpf_text_address+0x8a/0x1a0
[  112.717241][ T9257]  ? bpf_ksym_find+0x127/0x1c0
[  112.717266][ T9257]  alloc_skb_with_frags+0xe0/0x860
[  112.717287][ T9257]  ? __kernel_text_address+0xd/0x40
[  112.717306][ T9257]  ? unwind_get_return_address+0x59/0xa0
[  112.717330][ T9257]  sock_alloc_send_pskb+0x7fb/0x990
[  112.717356][ T9257]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  112.717375][ T9257]  ? __lock_acquire+0x62e/0x1ce0
[  112.717409][ T9257]  __ip6_append_data+0x2a98/0x4750
[  112.717435][ T9257]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  112.717470][ T9257]  ? __pfx___ip6_append_data+0x10/0x10
[  112.717488][ T9257]  ? __pfx_ip6_mtu+0x10/0x10
[  112.717511][ T9257]  ? ip6_setup_cork+0xc51/0x1530
[  112.717543][ T9257]  ip6_make_skb+0x2c8/0x3f0
[  112.717565][ T9257]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  112.717590][ T9257]  ? __pfx_ip6_make_skb+0x10/0x10
[  112.717609][ T9257]  ? find_held_lock+0x2b/0x80
[  112.717637][ T9257]  ? find_held_lock+0x2b/0x80
[  112.717657][ T9257]  ? ip6_dst_hoplimit+0x1a7/0x430
[  112.717682][ T9257]  ? udpv6_sendmsg+0x235c/0x2d20
[  112.717704][ T9257]  udpv6_sendmsg+0x235c/0x2d20
[  112.717728][ T9257]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  112.717757][ T9257]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  112.717792][ T9257]  ? avc_has_perm+0x144/0x1f0
[  112.717816][ T9257]  ? __pfx_stack_trace_save+0x10/0x10
[  112.717841][ T9257]  ? stack_depot_save_flags+0x29/0x9c0
[  112.717882][ T9257]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  112.717906][ T9257]  ? inet6_sendmsg+0x105/0x140
[  112.717929][ T9257]  inet6_sendmsg+0x105/0x140
[  112.717950][ T9257]  sock_sendmsg+0x2b3/0x470
[  112.717975][ T9257]  ? __pfx_sock_sendmsg+0x10/0x10
[  112.718009][ T9257]  ? find_held_lock+0x2b/0x80
[  112.718034][ T9257]  io_send_zc+0x2c1/0xb20
[  112.718053][ T9257]  ? __fget_files+0x20e/0x3c0
[  112.718075][ T9257]  __io_issue_sqe+0xe5/0x7c0
[  112.718101][ T9257]  io_issue_sqe+0x86/0xe50
[  112.718128][ T9257]  io_submit_sqes+0x94b/0x25c0
[  112.718159][ T9257]  __do_sys_io_uring_enter+0xd6a/0x1630
[  112.718181][ T9257]  ? __fget_files+0x20e/0x3c0
[  112.718199][ T9257]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  112.718219][ T9257]  ? fput+0x9b/0xd0
[  112.718242][ T9257]  ? ksys_write+0x1ac/0x250
[  112.718259][ T9257]  ? __pfx_ksys_write+0x10/0x10
[  112.718285][ T9257]  do_syscall_64+0xcd/0x4c0
[  112.718308][ T9257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.718328][ T9257] RIP: 0033:0x7f283958ebe9
[  112.718345][ T9257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.718362][ T9257] RSP: 002b:00007f28377f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  112.718381][ T9257] RAX: ffffffffffffffda RBX: 00007f28397b5fa0 RCX: 00007f283958ebe9
[  112.718393][ T9257] RDX: 0000000000000020 RSI: 00000000000022d2 RDI: 0000000000000005
[  112.718403][ T9257] RBP: 00007f28377f6090 R08: 0000000000000000 R09: 0000000000000000
[  112.718414][ T9257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.718424][ T9257] R13: 00007f28397b6038 R14: 00007f28397b5fa0 R15: 00007fff2b22b208
[  112.718447][ T9257]  </TASK>
[  113.026772][ T9263] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  113.085219][ T9265] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2560 sclass=netlink_route_socket pid=9265 comm=syz.4.1180
[  113.090508][ T9265] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2569 sclass=netlink_route_socket pid=9265 comm=syz.4.1180
[  113.096333][ T9265] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2572 sclass=netlink_route_socket pid=9265 comm=syz.4.1180
[  113.373603][ T9290] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  113.430026][ T6057] tipc: Node number set to 2886997162
[  113.513671][ T9302] netlink: 'syz.4.1195': attribute type 12 has an invalid length.
[  113.542241][ T9305] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  113.550025][   T24] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  113.614589][ T9309] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  113.640037][ T6011] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  113.711840][   T24] usb 8-1: config index 0 descriptor too short (expected 39, got 27)
[  113.714959][   T24] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  113.718364][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  113.723651][   T24] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  113.727705][   T24] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  113.731006][   T24] usb 8-1: Product: syz
[  113.732463][   T24] usb 8-1: Manufacturer: syz
[  113.734109][   T24] usb 8-1: SerialNumber: syz
[  113.738403][   T24] usb 8-1: config 0 descriptor??
[  113.742976][   T24] hub 8-1:0.0: bad descriptor, ignoring hub
[  113.745014][   T24] hub 8-1:0.0: probe with driver hub failed with error -5
[  113.748859][   T24] usb 8-1: selecting invalid altsetting 0
[  113.791773][ T6011] usb 6-1: Using ep0 maxpacket: 8
[  113.796358][ T6011] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  113.803241][ T6011] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  113.807589][ T6011] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  113.812205][ T6011] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  113.816496][ T6011] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  113.824682][ T6011] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  113.828238][ T6011] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  113.833212][ T6011] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  113.833530][ T9317] tipc: MTU too low for tipc bearer
[  113.838442][ T6011] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  113.838482][ T6011] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  113.840221][ T6011] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  113.853832][ T6011] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  113.857736][ T6011] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  113.863388][ T6011] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  113.867968][ T6011] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  113.875456][ T6011] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  113.879942][ T6011] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.884381][ T6011] usb 6-1: Product: syz
[  113.886227][ T6011] usb 6-1: Manufacturer: syz
[  113.888179][ T6011] usb 6-1: SerialNumber: syz
[  113.888906][ T9319] binder: 9318:9319 ioctl c0306201 0 returned -14
[  113.894825][ T9319] binder: 9318:9319 ioctl 4018620d 0 returned -22
[  114.060256][ T6041] usb 8-1: USB disconnect, device number 9
[  114.120483][ T6011] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  114.127638][ T6011] usb 6-1: USB disconnect, device number 3
[  114.570400][ T9323] FAULT_INJECTION: forcing a failure.
[  114.570400][ T9323] name failslab, interval 1, probability 0, space 0, times 0
[  114.576186][ T9323] CPU: 1 UID: 0 PID: 9323 Comm: syz.4.1203 Not tainted syzkaller #0 PREEMPT(full) 
[  114.576213][ T9323] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  114.576224][ T9323] Call Trace:
[  114.576232][ T9323]  <TASK>
[  114.576240][ T9323]  dump_stack_lvl+0x16c/0x1f0
[  114.576296][ T9323]  should_fail_ex+0x512/0x640
[  114.576323][ T9323]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  114.576344][ T9323]  should_failslab+0xc2/0x120
[  114.576365][ T9323]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  114.576382][ T9323]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  114.576410][ T9323]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  114.576441][ T9323]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  114.576475][ T9323]  mmu_topup_memory_caches+0x25/0x170
[  114.576497][ T9323]  kvm_mmu_load+0xd6/0x23c0
[  114.576516][ T9323]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  114.576535][ T9323]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  114.576557][ T9323]  ? kvm_apic_accept_pic_intr+0xe8/0x1a0
[  114.576581][ T9323]  ? __pfx_kvm_mmu_load+0x10/0x10
[  114.576598][ T9323]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  114.576625][ T9323]  ? kvm_check_and_inject_events+0x71c/0x1310
[  114.576655][ T9323]  vcpu_run+0x358c/0x5580
[  114.576680][ T9323]  ? __lock_acquire+0xb97/0x1ce0
[  114.576714][ T9323]  ? __pfx_vcpu_run+0x10/0x10
[  114.576750][ T9323]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  114.576773][ T9323]  ? __local_bh_enable_ip+0xa4/0x120
[  114.576800][ T9323]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  114.576824][ T9323]  kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  114.576856][ T9323]  kvm_vcpu_ioctl+0x5eb/0x1690
[  114.576883][ T9323]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  114.576907][ T9323]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  114.576929][ T9323]  ? do_vfs_ioctl+0x128/0x14f0
[  114.576957][ T9323]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  114.576983][ T9323]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  114.577016][ T9323]  ? hook_file_ioctl_common+0x145/0x410
[  114.577041][ T9323]  ? selinux_file_ioctl+0x180/0x270
[  114.577064][ T9323]  ? selinux_file_ioctl+0xb4/0x270
[  114.577089][ T9323]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  114.577114][ T9323]  __x64_sys_ioctl+0x18b/0x210
[  114.577161][ T9323]  do_syscall_64+0xcd/0x4c0
[  114.577182][ T9323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.577198][ T9323] RIP: 0033:0x7f57e018ebe9
[  114.577212][ T9323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.577227][ T9323] RSP: 002b:00007f57e0fd6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  114.577243][ T9323] RAX: ffffffffffffffda RBX: 00007f57e03b5fa0 RCX: 00007f57e018ebe9
[  114.577254][ T9323] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  114.577263][ T9323] RBP: 00007f57e0fd6090 R08: 0000000000000000 R09: 0000000000000000
[  114.577272][ T9323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  114.577282][ T9323] R13: 00007f57e03b6038 R14: 00007f57e03b5fa0 R15: 00007fff333d6318
[  114.577305][ T9323]  </TASK>
[  114.707474][ T9327] __nla_validate_parse: 13 callbacks suppressed
[  114.707513][ T9327] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1204'.
[  114.800761][ T9331] FAULT_INJECTION: forcing a failure.
[  114.800761][ T9331] name failslab, interval 1, probability 0, space 0, times 0
[  114.805368][ T9331] CPU: 0 UID: 0 PID: 9331 Comm: syz.4.1206 Not tainted syzkaller #0 PREEMPT(full) 
[  114.805387][ T9331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  114.805396][ T9331] Call Trace:
[  114.805401][ T9331]  <TASK>
[  114.805407][ T9331]  dump_stack_lvl+0x16c/0x1f0
[  114.805428][ T9331]  should_fail_ex+0x512/0x640
[  114.805445][ T9331]  should_failslab+0xc2/0x120
[  114.805460][ T9331]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  114.805474][ T9331]  ? __alloc_skb+0x2b2/0x380
[  114.805489][ T9331]  __alloc_skb+0x2b2/0x380
[  114.805500][ T9331]  ? __pfx___alloc_skb+0x10/0x10
[  114.805510][ T9331]  ? sctp_assoc_rwnd_decrease+0x296/0x500
[  114.805528][ T9331]  ? sctp_ulpevent_receive_data+0x47a/0x700
[  114.805541][ T9331]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  114.805557][ T9331]  _sctp_make_chunk+0x51/0x270
[  114.805576][ T9331]  sctp_make_control+0x2f/0x2d0
[  114.805593][ T9331]  sctp_make_sack+0x1af/0x520
[  114.805618][ T9331]  ? __pfx_sctp_make_sack+0x10/0x10
[  114.805640][ T9331]  ? sctp_sf_eat_data_6_2+0x574/0xba0
[  114.805656][ T9331]  sctp_do_sm+0x4215/0x5c80
[  114.805677][ T9331]  ? __pfx_sctp_do_sm+0x10/0x10
[  114.805709][ T9331]  ? ktime_get+0x200/0x310
[  114.805726][ T9331]  ? lockdep_hardirqs_on+0x7c/0x110
[  114.805756][ T9331]  sctp_assoc_bh_rcv+0x392/0x6f0
[  114.805773][ T9331]  sctp_inq_push+0x1d8/0x270
[  114.805788][ T9331]  sctp_backlog_rcv+0x169/0x590
[  114.805806][ T9331]  ? __pfx_sctp_backlog_rcv+0x10/0x10
[  114.805822][ T9331]  __release_sock+0x362/0x400
[  114.805836][ T9331]  ? selinux_sctp_bind_connect+0x112/0x2c0
[  114.805855][ T9331]  release_sock+0x5a/0x220
[  114.805871][ T9331]  sctp_sendmsg+0xec2/0x1e10
[  114.805890][ T9331]  ? __pfx_sctp_sendmsg+0x10/0x10
[  114.805906][ T9331]  ? __pfx_sock_has_perm+0x10/0x10
[  114.805927][ T9331]  ? __pfx_sctp_sendmsg+0x10/0x10
[  114.805942][ T9331]  inet_sendmsg+0x11c/0x140
[  114.805961][ T9331]  __sys_sendto+0x43c/0x520
[  114.805973][ T9331]  ? __pfx___sys_sendto+0x10/0x10
[  114.805996][ T9331]  ? ksys_write+0x1ac/0x250
[  114.806008][ T9331]  ? __pfx_ksys_write+0x10/0x10
[  114.806022][ T9331]  __x64_sys_sendto+0xe0/0x1c0
[  114.806032][ T9331]  ? do_syscall_64+0x91/0x4c0
[  114.806044][ T9331]  ? lockdep_hardirqs_on+0x7c/0x110
[  114.806056][ T9331]  do_syscall_64+0xcd/0x4c0
[  114.806070][ T9331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.806085][ T9331] RIP: 0033:0x7f57e018ebe9
[  114.806097][ T9331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.806109][ T9331] RSP: 002b:00007f57e0fd6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  114.806121][ T9331] RAX: ffffffffffffffda RBX: 00007f57e03b5fa0 RCX: 00007f57e018ebe9
[  114.806128][ T9331] RDX: 000000000000ffe0 RSI: 0000200000000100 RDI: 0000000000000004
[  114.806135][ T9331] RBP: 00007f57e0fd6090 R08: 0000200000000140 R09: 000000000000001c
[  114.806141][ T9331] R10: 000000002000c851 R11: 0000000000000246 R12: 0000000000000002
[  114.806148][ T9331] R13: 00007f57e03b6038 R14: 00007f57e03b5fa0 R15: 00007fff333d6318
[  114.806163][ T9331]  </TASK>
[  114.814823][   T40] kauditd_printk_skb: 17 callbacks suppressed
[  114.814839][   T40] audit: type=1326 audit(1756490987.683:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9328 comm="syz.2.1205" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fdffa58ebe9 code=0x0
[  114.919322][ T9342] binder: 9341:9342 ioctl c0306201 200000000080 returned -14
[  114.920645][   T40] audit: type=1400 audit(1756490987.723:498): avc:  denied  { mounton } for  pid=9334 comm="syz.4.1208" path="/224/file0" dev="gadgetfs" ino=6925 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=dir permissive=1
[  114.972568][   T40] audit: type=1400 audit(1756490987.813:499): avc:  denied  { associate } for  pid=9334 comm="syz.4.1208" name="cpuacct.usage_sys" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  114.981156][   T40] audit: type=1400 audit(1756490987.843:500): avc:  denied  { read append open } for  pid=9334 comm="syz.4.1208" path="/224/file0/cpuacct.usage_sys" dev="9p" ino=35913987 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  114.981202][   T40] audit: type=1400 audit(1756490987.843:501): avc:  denied  { lock } for  pid=9334 comm="syz.4.1208" path="/224/file0/cpuacct.usage_sys" dev="9p" ino=35913987 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  115.061409][   T40] audit: type=1400 audit(1756490987.933:502): avc:  denied  { setattr } for  pid=9349 comm="syz.1.1212" name="[io_uring]" dev="anon_inodefs" ino=36033 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  115.205596][ T9356] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1215'.
[  115.210629][ T5972] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  115.262410][ T9360] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1216'.
[  115.275410][ T9360] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  115.301477][ T9363] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9363 comm=syz.4.1217
[  115.348103][ T9369] netlink: zone id is out of range
[  115.351225][ T9369] netlink: zone id is out of range
[  115.353801][ T9369] netlink: zone id is out of range
[  115.422712][ T9373] futex_wake_op: syz.1.1220 tries to shift op by 32; fix this program
[  115.733216][ T9386] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  115.827473][ T9388] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9388 comm=syz.1.1226
[  115.944326][ T9392] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1228'.
[  115.955869][ T9392] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  116.125087][   T40] audit: type=1400 audit(1756490988.993:503): avc:  denied  { getopt } for  pid=9405 comm="syz.1.1234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  116.134517][   T40] audit: type=1400 audit(1756490988.993:504): avc:  denied  { write } for  pid=9405 comm="syz.1.1234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  116.193693][   T40] audit: type=1400 audit(1756490989.063:505): avc:  denied  { egress } for  pid=28 comm="ksoftirqd/1" saddr=fe80::1c daddr=ff02::2 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[  116.203816][   T40] audit: type=1400 audit(1756490989.063:506): avc:  denied  { sendto } for  pid=28 comm="ksoftirqd/1" saddr=fe80::1c daddr=ff02::2 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[  116.228516][ T9414] max out of range
[  116.232636][ T9412] can0: slcan on ptm0.
[  116.232640][ T9414] netlink: 188 bytes leftover after parsing attributes in process `syz.2.1238'.
[  116.473805][   T53] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  116.593462][ T9441] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1246'.
[  116.597594][ T9441] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1246'.
[  116.605000][ T9441] tipc: MTU too low for tipc bearer
[  116.625920][   T53] usb 6-1: config 0 has no interfaces?
[  116.628271][   T53] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  116.632050][   T53] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.646406][   T53] usb 6-1: config 0 descriptor??
[  116.651894][ T5972] Bluetooth: Unexpected start frame (len 28)
[  116.717611][ T9450] netlink: 80 bytes leftover after parsing attributes in process `syz.4.1251'.
[  116.725357][ T9450] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  116.736912][ T9452] netlink: 292 bytes leftover after parsing attributes in process `syz.2.1252'.
[  117.040571][   T24] usb 6-1: USB disconnect, device number 4
[  117.147554][ T9411] can0 (unregistered): slcan off ptm0.
[  117.166247][ T9488] binder: 9487:9488 ioctl c0306201 200000000080 returned -14
[  117.260460][ T6057] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  117.290438][ T9497] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1265'.
[  117.299055][ T9497] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  117.361657][ T5972] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  118.261142][ T9515] netlink: 'syz.2.1273': attribute type 12 has an invalid length.
[  118.263926][ T9518] No control pipe specified
[  118.308580][ T9517] netlink: 'syz.2.1273': attribute type 12 has an invalid length.
[  118.480679][ T9537] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  118.549913][   T10] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  118.717259][   T10] usb 8-1: config index 0 descriptor too short (expected 39, got 27)
[  118.721083][   T10] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  118.725445][   T10] usb 8-1: config 0 interface 0 has no altsetting 0
[  118.732047][   T10] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  118.736868][   T10] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  118.742619][   T10] usb 8-1: Product: syz
[  118.744436][   T10] usb 8-1: Manufacturer: syz
[  118.746559][   T10] usb 8-1: SerialNumber: syz
[  118.753146][   T10] usb 8-1: config 0 descriptor??
[  118.758043][   T10] hub 8-1:0.0: bad descriptor, ignoring hub
[  118.767706][   T10] hub 8-1:0.0: probe with driver hub failed with error -5
[  118.773052][   T10] usb 8-1: selecting invalid altsetting 0
[  118.853471][ T9544] binder: 9543:9544 ioctl c0306201 200000000080 returned -14
[  119.071898][ T9321] usb 8-1: USB disconnect, device number 10
[  119.247610][ T9557] bond_slave_0: entered promiscuous mode
[  119.249858][ T9557] bond_slave_1: entered promiscuous mode
[  119.252633][ T9557] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  119.256032][ T9557] bond_slave_0: left promiscuous mode
[  119.257756][ T9557] bond_slave_1: left promiscuous mode
[  119.294916][ T9558] binder: 9556:9558 ioctl c0306201 0 returned -14
[  119.298219][ T9558] binder: 9556:9558 ioctl 4018620d 0 returned -22
[  119.409873][   T53] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  119.559809][   T53] usb 6-1: Using ep0 maxpacket: 16
[  119.564744][   T53] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  119.570562][   T53] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  119.574729][   T53] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  119.580130][   T53] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  119.583961][   T53] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.590416][   T53] usb 6-1: config 0 descriptor??
[  120.001349][   T53] usbhid 6-1:0.0: can't add hid device: -71
[  120.003489][   T53] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  120.008366][   T53] usb 6-1: USB disconnect, device number 5
[  120.418036][ T9567] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  120.421354][ T9567] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  120.427655][ T9567] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  120.431022][ T9567] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  120.435813][ T9567] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  120.547681][ T9571] __nla_validate_parse: 7 callbacks suppressed
[  120.547702][ T9571] netlink: 196 bytes leftover after parsing attributes in process `syz.4.1291'.
[  120.554428][ T9571] netlink: 196 bytes leftover after parsing attributes in process `syz.4.1291'.
[  120.558073][ T9571] netlink: 19 bytes leftover after parsing attributes in process `syz.4.1291'.
[  120.799995][   T24] usb 9-1: new low-speed USB device number 4 using dummy_hcd
[  120.952745][   T24] usb 9-1: config 0 has an invalid interface number: 1 but max is 0
[  120.955570][   T24] usb 9-1: config 0 has no interface number 0
[  120.957755][   T24] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  120.961576][   T24] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  120.965039][   T24] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  120.967971][   T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.972300][   T24] usb 9-1: config 0 descriptor??
[  120.975081][ T9571] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  120.980992][   T24] iowarrior 9-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  121.183283][   T24] usb 9-1: USB disconnect, device number 4
[  121.325757][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  121.325783][   T40] audit: type=1400 audit(1756490994.193:512): avc:  denied  { map } for  pid=9576 comm="syz.2.1294" path="pipe:[36469]" dev="pipefs" ino=36469 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  121.338531][   T40] audit: type=1400 audit(1756490994.193:513): avc:  denied  { execute } for  pid=9576 comm="syz.2.1294" path="pipe:[36469]" dev="pipefs" ino=36469 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  121.347495][   T40] audit: type=1400 audit(1756490994.193:514): avc:  denied  { setopt } for  pid=9576 comm="syz.2.1294" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  121.354121][   T40] audit: type=1400 audit(1756490994.193:515): avc:  denied  { ioctl } for  pid=9576 comm="syz.2.1294" path="socket:[36871]" dev="sockfs" ino=36871 ioctlcmd=0x5438 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  121.358684][ T9579] binder: 9578:9579 ioctl c0306201 200000000080 returned -14
[  121.409436][ T9581] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  121.454274][ T9584] binder: 9580:9584 ioctl c0306201 0 returned -14
[  121.457498][ T9584] binder: 9580:9584 ioctl 4018620d 0 returned -22
[  121.467207][ T9583] : entered promiscuous mode
[  121.717910][ T9597] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1301'.
[  121.721540][ T9597] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1301'.
[  121.728375][ T5972] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  121.761787][ T9603] netlink: 276 bytes leftover after parsing attributes in process `syz.1.1304'.
[  121.989912][ T6041] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  122.141155][ T6041] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  122.144760][ T6041] usb 9-1: config 0 has no interfaces?
[  122.149439][ T6041] usb 9-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  122.153016][ T6041] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  122.155613][ T6041] usb 9-1: Product: syz
[  122.157316][ T6041] usb 9-1: Manufacturer: syz
[  122.159105][ T6041] usb 9-1: SerialNumber: syz
[  122.164292][ T6041] usb 9-1: config 0 descriptor??
[  122.384427][   T40] audit: type=1400 audit(1756490995.253:516): avc:  denied  { connect } for  pid=9600 comm="syz.4.1303" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  122.393324][   T40] audit: type=1400 audit(1756490995.253:517): avc:  denied  { shutdown } for  pid=9600 comm="syz.4.1303" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  122.413345][ T9624] overlayfs: missing 'lowerdir'
[  122.424554][ T9626] FAULT_INJECTION: forcing a failure.
[  122.424554][ T9626] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.429584][ T9626] CPU: 3 UID: 0 PID: 9626 Comm: syz.2.1314 Not tainted syzkaller #0 PREEMPT(full) 
[  122.429600][ T9626] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  122.429607][ T9626] Call Trace:
[  122.429612][ T9626]  <TASK>
[  122.429618][ T9626]  dump_stack_lvl+0x16c/0x1f0
[  122.429679][ T9626]  should_fail_ex+0x512/0x640
[  122.429770][ T9626]  _copy_from_user+0x2e/0xd0
[  122.429786][ T9626]  copy_msghdr_from_user+0x98/0x160
[  122.429800][ T9626]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  122.429819][ T9626]  ___sys_sendmsg+0xfe/0x1d0
[  122.429832][ T9626]  ? __pfx____sys_sendmsg+0x10/0x10
[  122.429862][ T9626]  __sys_sendmsg+0x16d/0x220
[  122.429874][ T9626]  ? __pfx___sys_sendmsg+0x10/0x10
[  122.429891][ T9626]  ? fput+0x9b/0xd0
[  122.429909][ T9626]  do_syscall_64+0xcd/0x4c0
[  122.429923][ T9626]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.429935][ T9626] RIP: 0033:0x7fdffa58ebe9
[  122.429945][ T9626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.429956][ T9626] RSP: 002b:00007fdffb4c8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.429985][ T9626] RAX: ffffffffffffffda RBX: 00007fdffa7b5fa0 RCX: 00007fdffa58ebe9
[  122.429992][ T9626] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  122.429998][ T9626] RBP: 00007fdffb4c8090 R08: 0000000000000000 R09: 0000000000000000
[  122.430005][ T9626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.430011][ T9626] R13: 00007fdffa7b6038 R14: 00007fdffa7b5fa0 R15: 00007ffdb29448b8
[  122.430026][ T9626]  </TASK>
[  122.430047][ T5972] Bluetooth: hci0: command 0x040f tx timeout
[  122.430085][   T63] Bluetooth: hci1: command 0x0c1a tx timeout
[  122.430144][ T5328] Bluetooth: hci3: command 0x0c1a tx timeout
[  122.441644][   T40] audit: type=1400 audit(1756490995.313:518): avc:  denied  { getopt } for  pid=9600 comm="syz.4.1303" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  122.465864][ T9630] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1312'.
[  122.519008][   T40] audit: type=1400 audit(1756490995.383:519): avc:  denied  { ioctl } for  pid=9623 comm="syz.3.1312" path="/dev/nvram" dev="devtmpfs" ino=631 ioctlcmd=0x7040 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  122.530839][   T40] audit: type=1400 audit(1756490995.393:520): avc:  denied  { shutdown } for  pid=9631 comm="syz.2.1316" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  122.819921][ T9321] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  122.857183][ T9643] FAULT_INJECTION: forcing a failure.
[  122.857183][ T9643] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.860259][   T53] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  122.863954][ T9643] CPU: 2 UID: 0 PID: 9643 Comm: syz.1.1321 Not tainted syzkaller #0 PREEMPT(full) 
[  122.863991][ T9643] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  122.864009][ T9643] Call Trace:
[  122.864019][ T9643]  <TASK>
[  122.864030][ T9643]  dump_stack_lvl+0x16c/0x1f0
[  122.864067][ T9643]  should_fail_ex+0x512/0x640
[  122.864105][ T9643]  _copy_from_user+0x2e/0xd0
[  122.864142][ T9643]  memdup_user+0x6b/0xe0
[  122.864175][ T9643]  strndup_user+0x78/0xe0
[  122.864205][ T9643]  vt_do_kdgkb_ioctl+0xd7/0x490
[  122.864244][ T9643]  vt_ioctl+0x33b/0x30a0
[  122.864277][ T9643]  ? lockdep_hardirqs_on+0x7c/0x110
[  122.864327][ T9643]  ? __pfx_vt_ioctl+0x10/0x10
[  122.864364][ T9643]  ? __lock_acquire+0x62e/0x1ce0
[  122.864410][ T9643]  ? tomoyo_path_number_perm+0x18d/0x580
[  122.864453][ T9643]  ? find_held_lock+0x2b/0x80
[  122.864505][ T9643]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  122.864541][ T9643]  ? tty_jobctrl_ioctl+0x152/0xe00
[  122.864577][ T9643]  ? __pfx_vt_ioctl+0x10/0x10
[  122.864608][ T9643]  tty_ioctl+0x661/0x1680
[  122.864635][ T9643]  ? __pfx_tty_ioctl+0x10/0x10
[  122.864663][ T9643]  ? cred_has_capability.isra.0+0x190/0x310
[  122.864700][ T9643]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  122.864754][ T9643]  ? find_held_lock+0x2b/0x80
[  122.864798][ T9643]  ? selinux_file_ioctl+0xb4/0x270
[  122.864838][ T9643]  ? __pfx_tty_ioctl+0x10/0x10
[  122.864868][ T9643]  __x64_sys_ioctl+0x18b/0x210
[  122.864913][ T9643]  do_syscall_64+0xcd/0x4c0
[  122.864977][ T9643]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.865005][ T9643] RIP: 0033:0x7f5e3e98ebe9
[  122.865030][ T9643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.865056][ T9643] RSP: 002b:00007f5e3f746038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  122.865082][ T9643] RAX: ffffffffffffffda RBX: 00007f5e3ebb5fa0 RCX: 00007f5e3e98ebe9
[  122.865099][ T9643] RDX: 00002000000009c0 RSI: 0000000000004b49 RDI: 0000000000000003
[  122.865115][ T9643] RBP: 00007f5e3f746090 R08: 0000000000000000 R09: 0000000000000000
[  122.865130][ T9643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.865147][ T9643] R13: 00007f5e3ebb6038 R14: 00007f5e3ebb5fa0 R15: 00007fff33752048
[  122.865184][ T9643]  </TASK>
[  123.000052][ T9321] usb 7-1: Using ep0 maxpacket: 16
[  123.004165][ T9645] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  123.004380][ T9321] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  123.017908][ T9321] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  123.022706][ T9321] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  123.027571][ T9321] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  123.031010][ T9321] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.035734][ T9321] usb 7-1: config 0 descriptor??
[  123.101875][   T53] usb 8-1: config index 0 descriptor too short (expected 39, got 27)
[  123.105505][   T53] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  123.109493][   T53] usb 8-1: config 0 interface 0 has no altsetting 0
[  123.117431][   T53] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  123.121471][   T53] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  123.125178][   T53] usb 8-1: Product: syz
[  123.126972][   T53] usb 8-1: Manufacturer: syz
[  123.128957][   T53] usb 8-1: SerialNumber: syz
[  123.135602][   T53] usb 8-1: config 0 descriptor??
[  123.143600][   T53] hub 8-1:0.0: bad descriptor, ignoring hub
[  123.146561][   T53] hub 8-1:0.0: probe with driver hub failed with error -5
[  123.150360][ T9649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1324'.
[  123.152428][   T53] usb 8-1: selecting invalid altsetting 0
[  123.444718][ T9321] usbhid 7-1:0.0: can't add hid device: -71
[  123.447458][ T9321] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  123.451589][   T59] usb 8-1: USB disconnect, device number 11
[  123.459232][ T9321] usb 7-1: USB disconnect, device number 3
[  124.099161][ T9658] binder: 9657:9658 ioctl c0306201 200000000080 returned -14
[  124.177554][ T9664] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1330'.
[  124.510100][ T5972] Bluetooth: hci0: command 0x040f tx timeout
[  124.600363][ T9675] openvswitch: netlink: ct_state flags 0000ee01 unsupported
[  124.740888][   T40] audit: type=1400 audit(1756490997.613:521): avc:  denied  { execute } for  pid=9679 comm="syz.1.1333" path="/dev/comedi4" dev="devtmpfs" ino=1306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  124.769132][   T53] usb 9-1: USB disconnect, device number 5
[  125.150448][   T53] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  125.320041][   T53] usb 9-1: Using ep0 maxpacket: 16
[  125.325981][   T53] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  125.330567][   T53] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  125.334771][   T53] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  125.342044][   T53] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  125.346336][   T53] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.351477][   T53] usb 9-1: config 0 descriptor??
[  125.759220][   T53] HID 045e:07da: Invalid code 65791 type 1
[  125.767200][   T53] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/0003:045E:07DA.0005/input/input12
[  125.774310][   T53] microsoft 0003:045E:07DA.0005: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[  125.878040][ T5972] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  125.959530][   T10] usb 9-1: USB disconnect, device number 6
[  126.558934][ T9705] bridge: RTM_NEWNEIGH with invalid ether address
[  126.600756][ T5972] Bluetooth: hci0: command 0x040f tx timeout
[  126.613280][ T9708] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1342'.
[  126.618479][ T9708] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1342'.
[  126.622499][ T9707] netlink: 'syz.4.1342': attribute type 2 has an invalid length.
[  126.622517][ T9707] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.1342'.
[  126.622533][ T9707] nbd: must specify a device to reconfigure
[  126.633642][ T9708] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1342'.
[  126.777548][ T9722] FAULT_INJECTION: forcing a failure.
[  126.777548][ T9722] name failslab, interval 1, probability 0, space 0, times 0
[  126.785145][ T9722] CPU: 2 UID: 0 PID: 9722 Comm: syz.4.1348 Not tainted syzkaller #0 PREEMPT(full) 
[  126.785163][ T9722] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.785170][ T9722] Call Trace:
[  126.785174][ T9722]  <TASK>
[  126.785179][ T9722]  dump_stack_lvl+0x16c/0x1f0
[  126.785226][ T9722]  should_fail_ex+0x512/0x640
[  126.785257][ T9722]  should_failslab+0xc2/0x120
[  126.785280][ T9722]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  126.785301][ T9722]  ? skb_clone+0x190/0x3f0
[  126.785325][ T9722]  skb_clone+0x190/0x3f0
[  126.785341][ T9722]  netlink_deliver_tap+0xabd/0xd30
[  126.785357][ T9722]  netlink_unicast+0x71f/0x870
[  126.785373][ T9722]  ? __pfx_netlink_unicast+0x10/0x10
[  126.785388][ T9722]  ? __pfx_rtnl_bridge_dellink+0x10/0x10
[  126.785413][ T9722]  netlink_ack+0x696/0xb80
[  126.785437][ T9722]  netlink_rcv_skb+0x332/0x420
[  126.785453][ T9722]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  126.785473][ T9722]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  126.785505][ T9722]  ? netlink_deliver_tap+0x1ae/0xd30
[  126.785527][ T9722]  netlink_unicast+0x5aa/0x870
[  126.785542][ T9722]  ? __pfx_netlink_unicast+0x10/0x10
[  126.785555][ T9722]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  126.785573][ T9722]  netlink_sendmsg+0x8d1/0xdd0
[  126.785588][ T9722]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.785607][ T9722]  ____sys_sendmsg+0xa98/0xc70
[  126.785623][ T9722]  ? copy_msghdr_from_user+0x10a/0x160
[  126.785636][ T9722]  ? __pfx_____sys_sendmsg+0x10/0x10
[  126.785665][ T9722]  ___sys_sendmsg+0x134/0x1d0
[  126.785677][ T9722]  ? __pfx____sys_sendmsg+0x10/0x10
[  126.785707][ T9722]  __sys_sendmsg+0x16d/0x220
[  126.785719][ T9722]  ? __pfx___sys_sendmsg+0x10/0x10
[  126.785741][ T9722]  do_syscall_64+0xcd/0x4c0
[  126.785755][ T9722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.785767][ T9722] RIP: 0033:0x7f57e018ebe9
[  126.785777][ T9722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.785789][ T9722] RSP: 002b:00007f57e0fd6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  126.785800][ T9722] RAX: ffffffffffffffda RBX: 00007f57e03b5fa0 RCX: 00007f57e018ebe9
[  126.785808][ T9722] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  126.785814][ T9722] RBP: 00007f57e0fd6090 R08: 0000000000000000 R09: 0000000000000000
[  126.785821][ T9722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.785828][ T9722] R13: 00007f57e03b6038 R14: 00007f57e03b5fa0 R15: 00007fff333d6318
[  126.785842][ T9722]  </TASK>
[  127.014881][ T9745] netlink: 276 bytes leftover after parsing attributes in process `syz.2.1355'.
[  127.049066][ T9749] macvlan2: entered promiscuous mode
[  127.051926][ T9749] macvlan2: entered allmulticast mode
[  127.112764][ T9759] sp0: Synchronizing with TNC
[  127.280331][ T6057] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  127.345309][ T9779] netlink: 276 bytes leftover after parsing attributes in process `syz.2.1369'.
[  127.420402][   T53] usb 9-1: new full-speed USB device number 7 using dummy_hcd
[  127.583992][   T53] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  127.587643][   T53] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 2
[  127.590816][   T53] usb 9-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  127.594117][   T53] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.598941][   T53] usb 9-1: config 0 descriptor??
[  127.602845][   T53] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  127.605740][   T53] dvb-usb: bulk message failed: -22 (3/0)
[  127.617452][   T53] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  127.621438][   T53] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  127.624009][   T53] usb 9-1: media controller created
[  127.627477][   T53] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  127.636153][   T53] dvb-usb: bulk message failed: -22 (6/0)
[  127.638345][   T53] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  127.645181][   T53] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb9/9-1/input/input13
[  127.655017][   T53] dvb-usb: schedule remote query interval to 150 msecs.
[  127.657372][   T53] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  127.808352][ T9768] dibusb: i2c wr: len=62 is too big!
[  127.808352][ T9768] 
[  127.814423][ T9768] usb usb8: usbfs: process 9768 (syz.4.1365) did not claim interface 0 before use
[  127.823912][   T53] dvb-usb: bulk message failed: -22 (1/0)
[  127.825957][   T53] dvb-usb: error while querying for an remote control event.
[  127.826383][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  127.826398][   T40] audit: type=1400 audit(1756491000.693:524): avc:  denied  { mounton } for  pid=9767 comm="syz.4.1365" path="/270/file0" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:devpts_t tclass=dir permissive=1
[  127.841163][   T53] usb 9-1: USB disconnect, device number 7
[  127.866743][   T53] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  128.287173][ T9790] program syz.3.1375 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  128.300224][ T9793] binder: 9791:9793 ioctl c0306201 0 returned -14
[  128.303665][ T9793] binder: 9791:9793 ioctl 4018620d 0 returned -22
[  128.348197][ T9796] block nbd3: Attempted send on invalid socket
[  128.353582][ T1112] ata1.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x0
[  128.358091][ T1112] ata1.00: irq_stat 0x40000000
[  128.358712][ T9796] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  128.365452][ T9796] (syz.3.1375,9796,0):ocfs2_get_sector:1714 ERROR: status = -5
[  128.366882][ T1112] ata1.00: failed command: ZAC MANAGEMENT OUT
[  128.368662][ T9796] (syz.3.1375,9796,0):ocfs2_sb_probe:753 ERROR: status = -5
[  128.368703][ T9796] (syz.3.1375,9796,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  128.368716][ T9796] (syz.3.1375,9796,0):ocfs2_fill_super:1177 ERROR: status = -5
[  128.384059][ T1112] ata1.00: cmd 9f/01:00:00:00:00/00:00:00:00:00/40 tag 31
[  128.384059][ T1112]          res 41/04:00:00:00:00/00:00:00:00:00/40 Emask 0x1 (device error)
[  128.392335][ T1112] ata1.00: status: { DRDY ERR }
[  128.394478][ T1112] ata1.00: error: { ABRT }
[  128.396560][ T1112] ata1.00: device reported invalid CHS sector 0
[  128.451788][   T53] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  128.455885][ T9807] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  128.594913][ T9818] netlink: 'syz.4.1382': attribute type 3 has an invalid length.
[  128.616283][ T9818] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1382'.
[  128.619429][ T9818] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1382'.
[  129.468965][   T40] audit: type=1400 audit(1756491002.333:525): avc:  denied  { getopt } for  pid=9821 comm="syz.4.1384" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  129.626567][ T9841] bond_slave_0: entered promiscuous mode
[  129.629348][ T9841] bond_slave_1: entered promiscuous mode
[  129.630952][   T53] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  129.638188][ T9841] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  129.643068][ T9845] binder: 9838:9845 ioctl c0306201 0 returned -14
[  129.650638][ T9845] binder: 9838:9845 ioctl 4018620d 0 returned -22
[  129.655749][ T9841] bond_slave_0: left promiscuous mode
[  129.655808][ T9841] bond_slave_1: left promiscuous mode
[  130.647647][   T40] audit: type=1400 audit(1756491003.513:526): avc:  denied  { watch watch_reads } for  pid=9854 comm="syz.4.1396" path="pipe:[37557]" dev="pipefs" ino=37557 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  130.665111][ T9853] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  130.699994][ T9865] netlink: 276 bytes leftover after parsing attributes in process `syz.3.1401'.
[  130.773803][ T9873] FAULT_INJECTION: forcing a failure.
[  130.773803][ T9873] name failslab, interval 1, probability 0, space 0, times 0
[  130.778263][ T9873] CPU: 2 UID: 0 PID: 9873 Comm: syz.2.1400 Not tainted syzkaller #0 PREEMPT(full) 
[  130.778281][ T9873] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  130.778289][ T9873] Call Trace:
[  130.778293][ T9873]  <TASK>
[  130.778299][ T9873]  dump_stack_lvl+0x16c/0x1f0
[  130.778341][ T9873]  should_fail_ex+0x512/0x640
[  130.778361][ T9873]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  130.778376][ T9873]  should_failslab+0xc2/0x120
[  130.778390][ T9873]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  130.778400][ T9873]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  130.778418][ T9873]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  130.778440][ T9873]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  130.778470][ T9873]  mmu_topup_memory_caches+0x25/0x170
[  130.778489][ T9873]  kvm_mmu_load+0xd6/0x23c0
[  130.778507][ T9873]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  130.778526][ T9873]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  130.778552][ T9873]  ? kvm_apic_accept_pic_intr+0xe8/0x1a0
[  130.778576][ T9873]  ? __pfx_kvm_mmu_load+0x10/0x10
[  130.778591][ T9873]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  130.778612][ T9873]  ? kvm_check_and_inject_events+0x71c/0x1310
[  130.778631][ T9873]  vcpu_run+0x358c/0x5580
[  130.778647][ T9873]  ? __lock_acquire+0xb97/0x1ce0
[  130.778669][ T9873]  ? __pfx_vcpu_run+0x10/0x10
[  130.778686][ T9873]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  130.778701][ T9873]  ? __local_bh_enable_ip+0xa4/0x120
[  130.778719][ T9873]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  130.778734][ T9873]  kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  130.778754][ T9873]  kvm_vcpu_ioctl+0x5eb/0x1690
[  130.778771][ T9873]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  130.778786][ T9873]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  130.778803][ T9873]  ? do_vfs_ioctl+0x128/0x14f0
[  130.778821][ T9873]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  130.778838][ T9873]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  130.778860][ T9873]  ? hook_file_ioctl_common+0x145/0x410
[  130.778876][ T9873]  ? selinux_file_ioctl+0x180/0x270
[  130.778891][ T9873]  ? selinux_file_ioctl+0xb4/0x270
[  130.778907][ T9873]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  130.778922][ T9873]  __x64_sys_ioctl+0x18b/0x210
[  130.778941][ T9873]  do_syscall_64+0xcd/0x4c0
[  130.778956][ T9873]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.778967][ T9873] RIP: 0033:0x7fdffa58ebe9
[  130.778979][ T9873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.778990][ T9873] RSP: 002b:00007fdffb4a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  130.779001][ T9873] RAX: ffffffffffffffda RBX: 00007fdffa7b6090 RCX: 00007fdffa58ebe9
[  130.779009][ T9873] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  130.779015][ T9873] RBP: 00007fdffb4a6090 R08: 0000000000000000 R09: 0000000000000000
[  130.779022][ T9873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  130.779028][ T9873] R13: 00007fdffa7b6128 R14: 00007fdffa7b6090 R15: 00007ffdb29448b8
[  130.779042][ T9873]  </TASK>
[  130.906262][   T53] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  130.908326][    C2] ata1: illegal qc_active transition (00000000->00000100)
[  130.971676][ T9881] bond_slave_0: entered promiscuous mode
[  130.973747][ T9881] bond_slave_1: entered promiscuous mode
[  130.976151][ T9881] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  130.981833][ T9881] bond_slave_0: left promiscuous mode
[  130.984327][ T9881] bond_slave_1: left promiscuous mode
[  131.024465][ T9885] binder: 9880:9885 ioctl c0306201 0 returned -14
[  131.028366][ T9885] binder: 9880:9885 ioctl 4018620d 0 returned -22
[  131.232101][ T1112] ata1: SATA link up 1.5 Gbps (SStatus 113 SControl 300)
[  131.241821][ T1112] ata1.00: configured for UDMA/100
[  131.918650][ T5972] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  131.930586][ T9896] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1412'.
[  131.935579][ T9896] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1412'.
[  131.941571][ T9896] tipc: MTU too low for tipc bearer
[  132.023185][ T9901] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  132.120624][ T6057] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  132.171312][   T40] audit: type=1400 audit(1756491005.043:527): avc:  denied  { write } for  pid=9907 comm="syz.3.1417" name="file0" dev="9p" ino=35913811 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  132.208275][ T9914] binder: 9913:9914 ioctl c0306201 0 returned -14
[  132.210919][ T9914] binder: 9913:9914 ioctl 4018620d 0 returned -22
[  132.365405][ T9923] netlink: 276 bytes leftover after parsing attributes in process `syz.3.1421'.
[  132.573330][ T9934] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1424'.
[  132.577612][ T9934] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1424'.
[  134.231976][   T40] audit: type=1400 audit(1756491007.103:528): avc:  denied  { recv } for  pid=8052 comm="kworker/u32:19" saddr=10.0.2.2 src=67 daddr=255.255.255.255 dest=68 netif=eth0 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  137.952592][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  139.352331][   T40] audit: type=1400 audit(1756491012.223:529): avc:  denied  { append } for  pid=9962 comm="syz.2.1427" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  139.375072][ T9966] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  139.459913][ T9969] lo speed is unknown, defaulting to 1000
[  139.462327][ T9969] lo speed is unknown, defaulting to 1000
[  139.469164][ T9969] lo speed is unknown, defaulting to 1000
[  139.480213][ T6057] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  139.497999][ T9969] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  139.530211][ T9969] lo speed is unknown, defaulting to 1000
[  139.533919][ T9969] lo speed is unknown, defaulting to 1000
[  139.538089][ T9969] lo speed is unknown, defaulting to 1000
[  139.561476][ T9969] lo speed is unknown, defaulting to 1000
[  139.809674][T10000] bond_slave_0: entered promiscuous mode
[  139.812051][T10000] bond_slave_1: entered promiscuous mode
[  139.814703][T10000] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  139.818707][T10000] bond_slave_0: left promiscuous mode
[  139.820685][T10000] bond_slave_1: left promiscuous mode
[  139.866162][T10005] binder: 9999:10005 ioctl c0306201 0 returned -14
[  139.868894][T10004] netlink: 276 bytes leftover after parsing attributes in process `syz.4.1436'.
[  139.872851][T10005] binder: 9999:10005 ioctl 4018620d 0 returned -22
[  147.230474][T10033] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  147.452886][T10057] binder: 10056:10057 ioctl c0306201 0 returned -14
[  147.455715][T10057] binder: 10056:10057 ioctl 4018620d 0 returned -22
[  147.577703][T10060] lo speed is unknown, defaulting to 1000
[  147.742678][T10073] netlink: 276 bytes leftover after parsing attributes in process `syz.2.1450'.
[  147.996708][T10085] kvm: kvm [10084]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x7
[  148.001135][T10085] kvm: kvm [10084]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x7
[  148.093034][T10100] binder: 10099:10100 ioctl c0306201 200000000080 returned -14
[  148.330733][ T6057] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  148.393157][T10120] netlink: 276 bytes leftover after parsing attributes in process `syz.4.1468'.
[  148.394368][T10121] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1465'.
[  149.349657][   T40] audit: type=1400 audit(1756491022.213:530): avc:  denied  { setopt } for  pid=10129 comm="syz.1.1470" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  149.355417][T10130] bond_slave_0: entered promiscuous mode
[  149.357276][   T40] audit: type=1400 audit(1756491022.213:531): avc:  denied  { bind } for  pid=10129 comm="syz.1.1470" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  149.359806][T10130] bond_slave_1: entered promiscuous mode
[  149.372000][   T40] audit: type=1400 audit(1756491022.213:532): avc:  denied  { name_bind } for  pid=10129 comm="syz.1.1470" src=128 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  149.372766][T10130] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  149.381265][   T40] audit: type=1400 audit(1756491022.213:533): avc:  denied  { node_bind } for  pid=10129 comm="syz.1.1470" saddr=224.0.0.1 src=128 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  149.396525][   T40] audit: type=1400 audit(1756491022.223:534): avc:  denied  { getopt } for  pid=10129 comm="syz.1.1470" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  149.406067][T10130] bond_slave_0: left promiscuous mode
[  149.409144][T10130] bond_slave_1: left promiscuous mode
[  149.412539][T10138] binder: 10126:10138 ioctl c0306201 0 returned -14
[  149.416874][T10138] binder: 10126:10138 ioctl 4018620d 0 returned -22
[  149.597815][T10150] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1478'.
[  149.688002][   T40] audit: type=1400 audit(1756491022.553:535): avc:  denied  { nlmsg_read } for  pid=10158 comm="syz.4.1480" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  149.688036][T10159] netlink: 196 bytes leftover after parsing attributes in process `syz.4.1480'.
[  149.704950][T10159] binder: 10158:10159 ioctl 2283 200000000000 returned -22
[  150.080186][T10181] openvswitch: netlink: VXLAN extension message has 1 unknown bytes.
[  150.232434][T10185] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1491'.
[  150.265692][T10185] ptrace attach of "/syz-executor exec"[5968] was attempted by ""[10185]
[  150.316913][ T5972] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  150.523584][T10192] FAULT_INJECTION: forcing a failure.
[  150.523584][T10192] name failslab, interval 1, probability 0, space 0, times 0
[  150.528914][T10192] CPU: 3 UID: 0 PID: 10192 Comm: syz.1.1493 Not tainted syzkaller #0 PREEMPT(full) 
[  150.528941][T10192] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.528952][T10192] Call Trace:
[  150.528958][T10192]  <TASK>
[  150.528964][T10192]  dump_stack_lvl+0x16c/0x1f0
[  150.529021][T10192]  should_fail_ex+0x512/0x640
[  150.529049][T10192]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  150.529071][T10192]  should_failslab+0xc2/0x120
[  150.529092][T10192]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  150.529110][T10192]  ? find_held_lock+0x2b/0x80
[  150.529130][T10192]  ? __alloc_skb+0x2b2/0x380
[  150.529152][T10192]  __alloc_skb+0x2b2/0x380
[  150.529170][T10192]  ? __pfx___alloc_skb+0x10/0x10
[  150.529190][T10192]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  150.529216][T10192]  netlink_alloc_large_skb+0x69/0x130
[  150.529238][T10192]  netlink_sendmsg+0x6a1/0xdd0
[  150.529264][T10192]  ? __pfx_netlink_sendmsg+0x10/0x10
[  150.529295][T10192]  __sys_sendto+0x4a0/0x520
[  150.529312][T10192]  ? __pfx___sys_sendto+0x10/0x10
[  150.529350][T10192]  ? ksys_write+0x1ac/0x250
[  150.529368][T10192]  ? __pfx_ksys_write+0x10/0x10
[  150.529388][T10192]  __x64_sys_sendto+0xe0/0x1c0
[  150.529480][T10192]  ? do_syscall_64+0x91/0x4c0
[  150.529518][T10192]  ? lockdep_hardirqs_on+0x7c/0x110
[  150.529552][T10192]  do_syscall_64+0xcd/0x4c0
[  150.529622][T10192]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.529640][T10192] RIP: 0033:0x7f5e3e98ebe9
[  150.529655][T10192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.529683][T10192] RSP: 002b:00007f5e3f725038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  150.529737][T10192] RAX: ffffffffffffffda RBX: 00007f5e3ebb6090 RCX: 00007f5e3e98ebe9
[  150.529749][T10192] RDX: 000000000000004c RSI: 0000200000000080 RDI: 0000000000000005
[  150.529760][T10192] RBP: 00007f5e3f725090 R08: 0000000000000000 R09: 0000000000000000
[  150.529771][T10192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.529781][T10192] R13: 00007f5e3ebb6128 R14: 00007f5e3ebb6090 R15: 00007fff33752048
[  150.529806][T10192]  </TASK>
[  150.771069][   T40] audit: type=1400 audit(1756491023.643:536): avc:  denied  { write } for  pid=10196 comm="syz.2.1495" path="socket:[40595]" dev="sockfs" ino=40595 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  150.830270][T10199] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  150.952967][T10203] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.1498'.
[  151.066046][T10207] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  151.106774][T10208] binder: 10206:10208 ioctl c0306201 0 returned -14
[  151.109497][T10208] binder: 10206:10208 ioctl 4018620d 0 returned -22
[  151.342305][T10223] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1506'.
[  151.417883][ T5972] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  151.461921][T10231] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  151.464908][T10231] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  151.475760][T10235] FAULT_INJECTION: forcing a failure.
[  151.475760][T10235] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.481692][T10235] CPU: 3 UID: 0 PID: 10235 Comm: syz.3.1512 Not tainted syzkaller #0 PREEMPT(full) 
[  151.481711][T10235] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.481718][T10235] Call Trace:
[  151.481724][T10235]  <TASK>
[  151.481730][T10235]  dump_stack_lvl+0x16c/0x1f0
[  151.481750][T10235]  should_fail_ex+0x512/0x640
[  151.481766][T10235]  strncpy_from_user+0x3b/0x2e0
[  151.481780][T10235]  getname_flags.part.0+0x2d1/0x550
[  151.481800][T10235]  getname_flags+0x93/0xf0
[  151.481811][T10235]  do_sys_openat2+0xb8/0x1d0
[  151.481828][T10235]  ? __pfx_do_sys_openat2+0x10/0x10
[  151.481843][T10235]  ? __fget_files+0x20e/0x3c0
[  151.481860][T10235]  __x64_sys_creat+0xcc/0x120
[  151.481876][T10235]  ? __pfx___x64_sys_creat+0x10/0x10
[  151.481891][T10235]  ? __pfx_ksys_write+0x10/0x10
[  151.481904][T10235]  ? rcu_is_watching+0x12/0xc0
[  151.481919][T10235]  ? do_syscall_64+0x91/0x4c0
[  151.481933][T10235]  do_syscall_64+0xcd/0x4c0
[  151.481947][T10235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.481959][T10235] RIP: 0033:0x7f283958ebe9
[  151.481970][T10235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.482017][T10235] RSP: 002b:00007f28377f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  151.482028][T10235] RAX: ffffffffffffffda RBX: 00007f28397b5fa0 RCX: 00007f283958ebe9
[  151.482036][T10235] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[  151.482042][T10235] RBP: 00007f28377f6090 R08: 0000000000000000 R09: 0000000000000000
[  151.482048][T10235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.482055][T10235] R13: 00007f28397b6038 R14: 00007f28397b5fa0 R15: 00007fff2b22b208
[  151.482070][T10235]  </TASK>
[  151.586755][T10244] tipc: New replicast peer: 255.255.255.255
[  151.591348][T10244] tipc: Enabled bearer <udp:syz2>, priority 10
[  151.682500][T10249] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  151.755899][T10254] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1520'.
[  151.758992][T10254] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1520'.
[  151.764532][   T40] audit: type=1400 audit(1756491024.633:537): avc:  denied  { create } for  pid=10253 comm="syz.3.1520" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  151.772090][   T40] audit: type=1400 audit(1756491024.633:538): avc:  denied  { bind } for  pid=10253 comm="syz.3.1520" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  151.949890][ T5972] Bluetooth: hci0: command 0x040f tx timeout
[  151.990075][   T40] audit: type=1400 audit(1756491024.853:539): avc:  denied  { mount } for  pid=10278 comm="syz.1.1529" name="/" dev="9p" ino=35913810 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  152.012006][T10279] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  152.015925][T10279] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  152.026962][T10281] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  152.255023][T10305] binder: 10303:10305 ioctl c0306201 0 returned -14
[  152.257657][T10305] binder: 10303:10305 ioctl 4018620d 0 returned -22
[  152.290619][T10306] syz.4.1536 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  152.365089][T10313] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  152.368701][T10313] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  152.704026][T10325] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  152.914670][T10335] FAULT_INJECTION: forcing a failure.
[  152.914670][T10335] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.921024][T10335] CPU: 3 UID: 0 PID: 10335 Comm: syz.4.1548 Not tainted syzkaller #0 PREEMPT(full) 
[  152.921044][T10335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  152.921052][T10335] Call Trace:
[  152.921057][T10335]  <TASK>
[  152.921062][T10335]  dump_stack_lvl+0x16c/0x1f0
[  152.921084][T10335]  should_fail_ex+0x512/0x640
[  152.921103][T10335]  _copy_from_iter+0x29f/0x1720
[  152.921123][T10335]  ? __alloc_skb+0x200/0x380
[  152.921137][T10335]  ? __pfx__copy_from_iter+0x10/0x10
[  152.921156][T10335]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  152.921197][T10335]  netlink_sendmsg+0x829/0xdd0
[  152.921217][T10335]  ? __pfx_netlink_sendmsg+0x10/0x10
[  152.921239][T10335]  __sys_sendto+0x4a0/0x520
[  152.921253][T10335]  ? __pfx___sys_sendto+0x10/0x10
[  152.921280][T10335]  ? ksys_write+0x1ac/0x250
[  152.921294][T10335]  ? __pfx_ksys_write+0x10/0x10
[  152.921310][T10335]  __x64_sys_sendto+0xe0/0x1c0
[  152.921322][T10335]  ? do_syscall_64+0x91/0x4c0
[  152.921338][T10335]  ? lockdep_hardirqs_on+0x7c/0x110
[  152.921352][T10335]  do_syscall_64+0xcd/0x4c0
[  152.921369][T10335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.921384][T10335] RIP: 0033:0x7f57e018ebe9
[  152.921469][T10335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.921483][T10335] RSP: 002b:00007f57e0fd6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  152.921497][T10335] RAX: ffffffffffffffda RBX: 00007f57e03b5fa0 RCX: 00007f57e018ebe9
[  152.921505][T10335] RDX: 000000000000004c RSI: 0000200000000080 RDI: 0000000000000005
[  152.921513][T10335] RBP: 00007f57e0fd6090 R08: 0000000000000000 R09: 0000000000000000
[  152.921521][T10335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.921529][T10335] R13: 00007f57e03b6038 R14: 00007f57e03b5fa0 R15: 00007fff333d6318
[  152.921547][T10335]  </TASK>
[  153.179894][T10345] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1552'.
[  153.903540][T10395] netlink: 284 bytes leftover after parsing attributes in process `syz.3.1570'.
[  154.219447][T10419] FAULT_INJECTION: forcing a failure.
[  154.219447][T10419] name failslab, interval 1, probability 0, space 0, times 0
[  154.225227][T10419] CPU: 3 UID: 0 PID: 10419 Comm: syz.4.1578 Not tainted syzkaller #0 PREEMPT(full) 
[  154.225252][T10419] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.225264][T10419] Call Trace:
[  154.225271][T10419]  <TASK>
[  154.225279][T10419]  dump_stack_lvl+0x16c/0x1f0
[  154.225330][T10419]  should_fail_ex+0x512/0x640
[  154.225357][T10419]  ? fs_reclaim_acquire+0xae/0x150
[  154.225383][T10419]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  154.225409][T10419]  should_failslab+0xc2/0x120
[  154.225439][T10419]  __kmalloc_noprof+0xd2/0x510
[  154.225457][T10419]  ? tomoyo_realpath_from_path+0xb5/0x6e0
[  154.225489][T10419]  tomoyo_realpath_from_path+0xc2/0x6e0
[  154.225531][T10419]  ? tomoyo_profile+0x47/0x60
[  154.225553][T10419]  tomoyo_path_number_perm+0x245/0x580
[  154.225575][T10419]  ? tomoyo_path_number_perm+0x237/0x580
[  154.225599][T10419]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  154.225648][T10419]  ? d_alloc_parallel+0xae4/0x1480
[  154.225676][T10419]  ? current_check_access_path+0x33c/0x460
[  154.225699][T10419]  ? __pfx_current_check_access_path+0x10/0x10
[  154.225728][T10419]  tomoyo_path_mknod+0x10c/0x190
[  154.225746][T10419]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  154.225766][T10419]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  154.225791][T10419]  security_path_mknod+0x161/0x310
[  154.225817][T10419]  lookup_open.isra.0+0xc17/0x1580
[  154.225851][T10419]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  154.225892][T10419]  ? __pfx_down_write+0x10/0x10
[  154.225918][T10419]  ? mnt_get_write_access+0x20c/0x300
[  154.225949][T10419]  path_openat+0x893/0x2cb0
[  154.225970][T10419]  ? do_syscall_64+0xcd/0x4c0
[  154.225986][T10419]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.226002][T10419]  ? __pfx_path_openat+0x10/0x10
[  154.226019][T10419]  ? __lock_acquire+0xb97/0x1ce0
[  154.226048][T10419]  do_filp_open+0x20b/0x470
[  154.226068][T10419]  ? __pfx_do_filp_open+0x10/0x10
[  154.226105][T10419]  ? _raw_spin_unlock+0x28/0x50
[  154.226120][T10419]  ? alloc_fd+0x471/0x7d0
[  154.226145][T10419]  do_sys_openat2+0x11b/0x1d0
[  154.226169][T10419]  ? __pfx_do_sys_openat2+0x10/0x10
[  154.226192][T10419]  ? __fget_files+0x20e/0x3c0
[  154.226218][T10419]  __x64_sys_creat+0xcc/0x120
[  154.226240][T10419]  ? __pfx___x64_sys_creat+0x10/0x10
[  154.226262][T10419]  ? __pfx_ksys_write+0x10/0x10
[  154.226284][T10419]  ? rcu_is_watching+0x12/0xc0
[  154.226304][T10419]  ? do_syscall_64+0x91/0x4c0
[  154.226325][T10419]  do_syscall_64+0xcd/0x4c0
[  154.226348][T10419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.226365][T10419] RIP: 0033:0x7f57e018ebe9
[  154.226381][T10419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.226397][T10419] RSP: 002b:00007f57e0fd6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  154.226414][T10419] RAX: ffffffffffffffda RBX: 00007f57e03b5fa0 RCX: 00007f57e018ebe9
[  154.226432][T10419] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[  154.226442][T10419] RBP: 00007f57e0fd6090 R08: 0000000000000000 R09: 0000000000000000
[  154.226453][T10419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  154.226463][T10419] R13: 00007f57e03b6038 R14: 00007f57e03b5fa0 R15: 00007fff333d6318
[  154.226495][T10419]  </TASK>
[  154.226565][T10419] ERROR: Out of memory at tomoyo_realpath_from_path.
[  154.316281][T10416] kvm: kvm [10415]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x7
[  154.370684][ T6057] usb 8-1: new full-speed USB device number 12 using dummy_hcd
[  154.374956][T10416] kvm: kvm [10415]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x7
[  154.412870][T10426] netlink: 284 bytes leftover after parsing attributes in process `syz.4.1580'.
[  154.445165][T10431] futex_wake_op: syz.4.1581 tries to shift op by 32; fix this program
[  154.543708][ T6057] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  154.547544][ T6057] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 2
[  154.551541][ T6057] usb 8-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  154.554882][ T6057] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.560842][ T6057] usb 8-1: config 0 descriptor??
[  154.566038][ T6057] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  154.568299][ T6057] dvb-usb: bulk message failed: -22 (3/0)
[  154.576275][ T6057] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  154.579526][ T6057] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  154.582194][ T6057] usb 8-1: media controller created
[  154.584939][ T6057] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  154.593177][ T6057] dvb-usb: bulk message failed: -22 (6/0)
[  154.595524][ T6057] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  154.603789][ T6057] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb8/8-1/input/input14
[  154.612252][ T6057] dvb-usb: schedule remote query interval to 150 msecs.
[  154.616797][ T6057] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  154.766479][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  154.766496][   T40] audit: type=1400 audit(1756491027.633:542): avc:  denied  { read } for  pid=10406 comm="syz.3.1574" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  154.774238][ T6057] dvb-usb: bulk message failed: -22 (1/0)
[  154.781226][   T40] audit: type=1400 audit(1756491027.633:543): avc:  denied  { open } for  pid=10406 comm="syz.3.1574" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  154.787064][ T6057] dvb-usb: error while querying for an remote control event.
[  154.810177][T10453] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1589'.
[  154.822373][T10453] openvswitch: netlink: IP tunnel dst address not specified
[  154.952683][ T6057] dvb-usb: bulk message failed: -22 (1/0)
[  154.956274][ T6057] dvb-usb: error while querying for an remote control event.
[  154.990375][ T5973] usb 8-1: USB disconnect, device number 12
[  155.012590][ T5973] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  155.219801][T10467] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1592'.
[  155.225483][T10467] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10467 comm=syz.2.1592
[  155.233322][T10467] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  155.244229][T10467] overlayfs: failed lookup in lower (/, name='file1', err=-66): unsupported object type
[  155.455888][   T40] audit: type=1400 audit(1756491028.323:544): avc:  denied  { ioctl } for  pid=10472 comm="syz.2.1594" path="socket:[41891]" dev="sockfs" ino=41891 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  155.645220][T10481] kvm: kvm [10480]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x7
[  155.649288][T10481] kvm: kvm [10480]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x7
[  155.727199][T10496] tmpfs: Unknown parameter 'usrquota0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.727199][T10496] 0
[  155.937468][T10505] netlink: 276 bytes leftover after parsing attributes in process `syz.3.1605'.
[  155.993818][T10508] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  156.571784][T10537] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  156.604696][T10539] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1616'.
[  156.605358][   T40] audit: type=1400 audit(1756491029.473:545): avc:  denied  { write } for  pid=10538 comm="syz.3.1616" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  156.615798][T10539] loop6: detected capacity change from 0 to 7
[  156.626000][T10539] Buffer I/O error on dev loop6, logical block 0, async page read
[  156.629370][T10539] Buffer I/O error on dev loop6, logical block 0, async page read
[  156.633159][T10539] Buffer I/O error on dev loop6, logical block 0, async page read
[  156.637401][T10539] Buffer I/O error on dev loop6, logical block 0, async page read
[  156.641727][T10539] Buffer I/O error on dev loop6, logical block 0, async page read
[  156.644936][T10539] Buffer I/O error on dev loop6, logical block 0, async page read
[  156.647991][T10539] Buffer I/O error on dev loop6, logical block 0, async page read
[  156.651492][T10539] ldm_validate_partition_table(): Disk read failed.
[  156.654843][T10539] Buffer I/O error on dev loop6, logical block 0, async page read
[  156.659404][T10539] Buffer I/O error on dev loop6, logical block 0, async page read
[  156.663552][T10539] Buffer I/O error on dev loop6, logical block 0, async page read
[  156.667152][T10539] Dev loop6: unable to read RDB block 0
[  156.670224][T10539]  loop6: unable to read partition table
[  156.674476][T10539] loop6: partition table beyond EOD, truncated
[  156.678582][T10539] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[  156.814778][T10549] FAULT_INJECTION: forcing a failure.
[  156.814778][T10549] name failslab, interval 1, probability 0, space 0, times 0
[  156.818692][T10549] CPU: 2 UID: 0 PID: 10549 Comm: syz.3.1620 Not tainted syzkaller #0 PREEMPT(full) 
[  156.818709][T10549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.818717][T10549] Call Trace:
[  156.818723][T10549]  <TASK>
[  156.818733][T10549]  dump_stack_lvl+0x16c/0x1f0
[  156.818754][T10549]  should_fail_ex+0x512/0x640
[  156.818770][T10549]  should_failslab+0xc2/0x120
[  156.818784][T10549]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  156.818797][T10549]  ? skb_clone+0x190/0x3f0
[  156.818812][T10549]  skb_clone+0x190/0x3f0
[  156.818825][T10549]  netlink_deliver_tap+0xabd/0xd30
[  156.818841][T10549]  netlink_dump+0xa5f/0xd30
[  156.818855][T10549]  ? __pfx_netlink_dump+0x10/0x10
[  156.818872][T10549]  ? __inet_diag_dump_start+0x434/0x7f0
[  156.818894][T10549]  __netlink_dump_start+0x6d6/0x990
[  156.818909][T10549]  inet_diag_rcv_msg_compat+0x275/0x2d0
[  156.818927][T10549]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  156.818945][T10549]  ? __pfx_inet_diag_dump_start_compat+0x10/0x10
[  156.818962][T10549]  ? __pfx_inet_diag_dump_compat+0x10/0x10
[  156.818978][T10549]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  156.818997][T10549]  ? sock_diag_rcv_msg+0x315/0x790
[  156.819011][T10549]  sock_diag_rcv_msg+0x34a/0x790
[  156.819023][T10549]  netlink_rcv_skb+0x155/0x420
[  156.819036][T10549]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  156.819048][T10549]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  156.819066][T10549]  ? netlink_deliver_tap+0x1ae/0xd30
[  156.819081][T10549]  netlink_unicast+0x5aa/0x870
[  156.819096][T10549]  ? __pfx_netlink_unicast+0x10/0x10
[  156.819135][T10549]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  156.819159][T10549]  netlink_sendmsg+0x8d1/0xdd0
[  156.819174][T10549]  ? __pfx_netlink_sendmsg+0x10/0x10
[  156.819193][T10549]  __sys_sendto+0x4a0/0x520
[  156.819204][T10549]  ? __pfx___sys_sendto+0x10/0x10
[  156.819227][T10549]  ? ksys_write+0x1ac/0x250
[  156.819238][T10549]  ? __pfx_ksys_write+0x10/0x10
[  156.819251][T10549]  __x64_sys_sendto+0xe0/0x1c0
[  156.819261][T10549]  ? do_syscall_64+0x91/0x4c0
[  156.819273][T10549]  ? lockdep_hardirqs_on+0x7c/0x110
[  156.819285][T10549]  do_syscall_64+0xcd/0x4c0
[  156.819299][T10549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.819311][T10549] RIP: 0033:0x7f283958ebe9
[  156.819322][T10549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.819333][T10549] RSP: 002b:00007f28377f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  156.819350][T10549] RAX: ffffffffffffffda RBX: 00007f28397b5fa0 RCX: 00007f283958ebe9
[  156.819358][T10549] RDX: 000000000000004c RSI: 0000200000000080 RDI: 0000000000000005
[  156.819366][T10549] RBP: 00007f28377f6090 R08: 0000000000000000 R09: 0000000000000000
[  156.819373][T10549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  156.819381][T10549] R13: 00007f28397b6038 R14: 00007f28397b5fa0 R15: 00007fff2b22b208
[  156.819398][T10549]  </TASK>
[  157.000184][ T6057] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  157.170041][ T6057] usb 6-1: Using ep0 maxpacket: 16
[  157.173747][ T6057] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.177787][ T6057] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.183184][ T6057] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  157.189557][ T6057] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  157.195345][ T6057] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.204618][ T6057] usb 6-1: config 0 descriptor??
[  157.612906][ T6057] HID 045e:07da: Invalid code 65791 type 1
[  157.619153][ T6057] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:045E:07DA.0006/input/input15
[  157.626772][ T6057] microsoft 0003:045E:07DA.0006: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  157.821307][ T6057] usb 6-1: USB disconnect, device number 6
[  158.958535][T10615] SELinux:  policydb version 1402900228 does not match my version range 15-35
[  158.960765][   T40] audit: type=1400 audit(1756491031.823:546): avc:  denied  { load_policy } for  pid=10613 comm="syz.3.1639" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  158.962436][T10615] SELinux: failed to load policy
[  158.977166][   T40] audit: type=1400 audit(1756491031.843:547): avc:  denied  { associate } for  pid=10613 comm="syz.3.1639" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  159.160843][T10642] vlan2: entered promiscuous mode
[  159.206417][T10642] bridge0: entered promiscuous mode
[  159.208309][T10647] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10647 comm=syz.4.1644
[  159.239536][T10638] lo speed is unknown, defaulting to 1000
[  159.351761][T10656] lo speed is unknown, defaulting to 1000
[  159.367853][T10660] loop6: detected capacity change from 0 to 7
[  159.401865][T10663] netlink: 276 bytes leftover after parsing attributes in process `syz.4.1648'.
[  159.700442][T10675] netlink: 'syz.2.1652': attribute type 10 has an invalid length.
[  159.708159][T10675] 8021q: adding VLAN 0 to HW filter on device bond0
[  159.716950][T10675] team0: Port device bond0 added
[  159.744752][ T5972] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  159.766956][T10684] ISOFS: Unable to identify CD-ROM format.
[  159.788202][T10675] ISOFS: Unable to identify CD-ROM format.
[  160.039051][T10702] netlink: 276 bytes leftover after parsing attributes in process `syz.2.1664'.
[  160.055681][   T40] audit: type=1400 audit(1756491032.923:548): avc:  denied  { read write } for  pid=10697 comm="syz.3.1662" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  160.069967][   T40] audit: type=1400 audit(1756491032.923:549): avc:  denied  { open } for  pid=10697 comm="syz.3.1662" path="/368/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  160.228439][T10715] bond_slave_0: entered promiscuous mode
[  160.230492][T10715] bond_slave_1: entered promiscuous mode
[  160.234357][T10715] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  160.239569][T10715] bond_slave_0: left promiscuous mode
[  160.241428][T10715] bond_slave_1: left promiscuous mode
[  160.276031][T10718] binder: 10714:10718 ioctl c0306201 0 returned -14
[  160.279562][T10718] binder: 10714:10718 ioctl 4018620d 0 returned -22
[  161.521843][T10753] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  161.526079][T10753] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  161.530524][T10753] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  161.636069][T10772] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1688'.
[  161.698888][T10774] binder: 10773:10774 ioctl c0306201 0 returned -14
[  161.703375][T10774] binder: 10773:10774 ioctl 4018620d 0 returned -22
[  161.776125][T10779] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  161.908578][T10789] FAULT_INJECTION: forcing a failure.
[  161.908578][T10789] name failslab, interval 1, probability 0, space 0, times 0
[  161.913998][T10789] CPU: 0 UID: 0 PID: 10789 Comm: syz.1.1694 Not tainted syzkaller #0 PREEMPT(full) 
[  161.914023][T10789] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.914033][T10789] Call Trace:
[  161.914040][T10789]  <TASK>
[  161.914048][T10789]  dump_stack_lvl+0x16c/0x1f0
[  161.914073][T10789]  should_fail_ex+0x512/0x640
[  161.914093][T10789]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  161.914118][T10789]  should_failslab+0xc2/0x120
[  161.914140][T10789]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  161.914156][T10789]  ? __io_alloc_req_refill+0x27d/0x500
[  161.914180][T10789]  ? getname_flags.part.0+0x4c/0x550
[  161.914207][T10789]  getname_flags.part.0+0x4c/0x550
[  161.914232][T10789]  getname_flags+0x93/0xf0
[  161.914252][T10789]  __io_openat_prep+0x16d/0x420
[  161.914276][T10789]  io_submit_sqes+0x850/0x25c0
[  161.914309][T10789]  __do_sys_io_uring_enter+0xd6a/0x1630
[  161.914330][T10789]  ? __fget_files+0x20e/0x3c0
[  161.914348][T10789]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  161.914366][T10789]  ? fput+0x9b/0xd0
[  161.914386][T10789]  ? ksys_write+0x1ac/0x250
[  161.914405][T10789]  ? __pfx_ksys_write+0x10/0x10
[  161.914431][T10789]  do_syscall_64+0xcd/0x4c0
[  161.914454][T10789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.914471][T10789] RIP: 0033:0x7f5e3e98ebe9
[  161.914485][T10789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.914500][T10789] RSP: 002b:00007f5e3f746038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  161.914515][T10789] RAX: ffffffffffffffda RBX: 00007f5e3ebb5fa0 RCX: 00007f5e3e98ebe9
[  161.914534][T10789] RDX: 0000000000000000 RSI: 00000000000047bc RDI: 0000000000000010
[  161.914542][T10789] RBP: 00007f5e3f746090 R08: 0000000000000000 R09: 0000000000000000
[  161.914551][T10789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.914563][T10789] R13: 00007f5e3ebb6038 R14: 00007f5e3ebb5fa0 R15: 00007fff33752048
[  161.914591][T10789]  </TASK>
[  162.035576][T10791] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  162.045112][T10791] overlayfs: failed lookup in lower (/, name='file1', err=-66): unsupported object type
[  162.109003][   T40] audit: type=1400 audit(1756491034.973:550): avc:  denied  { ioctl } for  pid=10796 comm="syz.1.1698" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0x941e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  162.313549][T10806] netlink: 276 bytes leftover after parsing attributes in process `syz.4.1702'.
[  162.370932][T10809] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  162.538588][T10814] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  163.550104][ T5328] Bluetooth: hci0: command 0x040f tx timeout
[  163.550198][ T5972] Bluetooth: hci3: command 0x0c1a tx timeout
[  164.750110][T10821] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  164.750179][ T5972] Bluetooth: hci1: command 0x0c1a tx timeout
[  165.624848][T10821] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  165.628090][T10821] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  165.690441][T10844] bond_slave_0: entered promiscuous mode
[  165.692720][T10844] bond_slave_1: entered promiscuous mode
[  165.694966][T10844] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  165.699538][T10844] bond_slave_0: left promiscuous mode
[  165.702522][T10844] bond_slave_1: left promiscuous mode
[  165.736748][T10846] binder: 10842:10846 ioctl c0306201 0 returned -14
[  165.740651][T10846] binder: 10842:10846 ioctl 4018620d 0 returned -22
[  165.926918][ T8042] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  166.041442][ T5972] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  166.582671][T10873] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  166.616612][T10874] block nbd3: Send control failed (result -22)
[  166.618949][T10874] block nbd3: Request send failed, requeueing
[  166.625785][ T1206] block nbd3: Dead connection, failed to find a fallback
[  166.628172][ T1206] block nbd3: shutting down sockets
[  166.631842][ T1206] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[  166.682819][T10881] PKCS8: Unsupported PKCS#8 version
[  166.743532][T10887] batadv_slave_0: entered promiscuous mode
[  166.749258][T10887] erspan0: entered promiscuous mode
[  166.789098][T10896] binder: 10894:10896 ioctl c0306201 0 returned -14
[  166.793952][T10896] binder: 10894:10896 ioctl 4018620d 0 returned -22
[  166.840384][ T5328] Bluetooth: hci3: command 0x0c1a tx timeout
[  166.964245][T10897] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  166.967507][T10897] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  166.971199][T10897] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  167.032878][   T61] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  167.110758][T10916] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  167.189935][   T61] usb 8-1: Using ep0 maxpacket: 16
[  167.193443][   T61] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  167.197663][   T61] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  167.201297][   T61] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  167.205489][   T61] usb 8-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  167.208347][   T61] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.212568][   T61] usb 8-1: config 0 descriptor??
[  167.235275][   T40] audit: type=1400 audit(1756491040.103:551): avc:  denied  { create } for  pid=10917 comm="syz.4.1735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  167.621769][   T61] HID 045e:07da: Invalid code 65791 type 1
[  167.627908][   T61] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/0003:045E:07DA.0007/input/input16
[  167.642922][T10934] overlayfs: failed to resolve './file1': -2
[  167.646359][   T61] microsoft 0003:045E:07DA.0007: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  167.738287][ T5972] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  167.774474][T10944] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1743'.
[  167.818135][T10937] SELinux:  policydb version 1402900228 does not match my version range 15-35
[  167.823417][T10937] SELinux: failed to load policy
[  167.824219][   T61] usb 8-1: USB disconnect, device number 13
[  168.023905][T10947] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  168.026916][T10947] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  168.029678][T10947] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  168.079054][   T40] audit: type=1400 audit(1756491040.943:552): avc:  denied  { mount } for  pid=10956 comm="syz.4.1748" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  168.080891][T10957] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  168.091178][T10957] overlayfs: missing 'lowerdir'
[  168.111337][   T40] audit: type=1400 audit(1756491040.983:553): avc:  denied  { unmount } for  pid=6845 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  168.187212][T10963] overlayfs: failed to resolve './file1': -2
[  168.213867][T10966] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1753'.
[  168.217370][T10966] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1753'.
[  168.265584][T10970] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  168.269061][T10970] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  168.346657][T10975] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=23 sclass=netlink_tcpdiag_socket pid=10975 comm=syz.1.1756
[  168.490599][T10982] lo speed is unknown, defaulting to 1000
[  168.528001][T10985] netlink: 'syz.3.1759': attribute type 6 has an invalid length.
[  168.547417][T10985] IPv6: syztnl2: Disabled Multicast RS
[  169.128229][T10999] overlayfs: failed to resolve './file1': -2
[  169.148348][T10995] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  169.154860][T10995] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  169.160093][T10995] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  169.192680][T11001] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  169.196366][T11001] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  169.253526][T11008] fuse: Bad value for 'group_id'
[  169.255652][T11008] fuse: Bad value for 'group_id'
[  169.298620][T11012] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1771'.
[  169.329890][T11017] netlink: 276 bytes leftover after parsing attributes in process `syz.4.1772'.
[  169.379096][ T5972] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  169.493899][T11025] bond_slave_0: entered promiscuous mode
[  169.495993][T11025] bond_slave_1: entered promiscuous mode
[  169.498929][T11025] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  169.503913][T11025] bond_slave_0: left promiscuous mode
[  169.506085][T11025] bond_slave_1: left promiscuous mode
[  169.539098][T11026] binder: 11024:11026 ioctl c0306201 0 returned -14
[  169.542450][T11026] binder: 11024:11026 ioctl 4018620d 0 returned -22
[  170.362158][T11031] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  170.366843][T11031] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  170.373035][T11031] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  170.481484][T11049] overlayfs: failed to resolve './file0': -2
[  170.524573][T11055] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  170.527691][T11055] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  170.533416][T11055] vhci_hcd vhci_hcd.0: Device attached
[  170.567607][T11060] 8021q: adding VLAN 0 to HW filter on device bond1
[  170.585166][   T40] audit: type=1400 audit(1756491043.453:554): avc:  denied  { write } for  pid=11059 comm="syz.3.1788" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  170.710195][ T6057] vhci_hcd: vhci_device speed not set
[  170.769965][ T6057] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[  170.771076][   T61] usb 7-1: new low-speed USB device number 4 using dummy_hcd
[  170.870383][T11072] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=11072 comm=syz.3.1791
[  170.929889][   T59] usb 9-1: new low-speed USB device number 8 using dummy_hcd
[  170.936502][   T61] usb 7-1: config 0 has no interfaces?
[  170.938351][   T61] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  170.941547][   T61] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.945580][   T61] usb 7-1: config 0 descriptor??
[  170.974098][T11074] 9pnet_fd: Insufficient options for proto=fd
[  170.976775][T11074] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  170.980184][T11074] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  171.091623][   T59] usb 9-1: config 0 has an invalid interface number: 1 but max is 0
[  171.094701][   T59] usb 9-1: config 0 has no interface number 0
[  171.096980][   T59] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  171.100926][   T59] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  171.105171][   T59] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  171.109250][   T59] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.116422][   T59] usb 9-1: config 0 descriptor??
[  171.126275][   T59] iowarrior 9-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  171.149783][T11056] usbip_core: unknown command
[  171.151805][T11056] vhci_hcd: unknown pdu 0
[  171.157453][T11056] usbip_core: unknown command
[  171.163911][ T8052] vhci_hcd: stop threads
[  171.165914][ T8052] vhci_hcd: release socket
[  171.179645][ T8052] vhci_hcd: disconnect device
[  171.219945][ T6057] vhci_hcd: vhci_device speed not set
[  171.244766][   T59] usb 7-1: USB disconnect, device number 4
[  171.321504][T11063] iowarrior 9-1:0.1: Error -90 while submitting URB
[  171.330047][ T9321] usb 9-1: USB disconnect, device number 8
[  171.376219][T11087] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  171.380091][T11087] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  171.484108][T11091] netlink: 276 bytes leftover after parsing attributes in process `syz.1.1800'.
[  171.532546][T11093] netlink: 'syz.1.1801': attribute type 12 has an invalid length.
[  171.535121][T11093] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1801'.
[  171.594439][T11097] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3507366080 (224471429120 ns) > initial count (25249277504 ns). Using initial count to start timer.
[  171.940174][   T61] syz2: Port: 1 Link ACTIVE
[  171.967670][ T9321] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  172.109863][ T9321] usb 6-1: device descriptor read/64, error -71
[  172.179934][   T53] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  172.280939][ T5972] Bluetooth: hci1: command 0x0c1a tx timeout
[  172.331654][   T53] usb 9-1: config index 0 descriptor too short (expected 39, got 27)
[  172.336054][   T53] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  172.340990][   T53] usb 9-1: config 0 interface 0 has no altsetting 0
[  172.346494][   T53] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  172.350459][   T53] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  172.354339][   T53] usb 9-1: Product: syz
[  172.356359][   T53] usb 9-1: Manufacturer: syz
[  172.358233][   T53] usb 9-1: SerialNumber: syz
[  172.363514][   T53] usb 9-1: config 0 descriptor??
[  172.370051][ T9321] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  172.370403][   T53] hub 9-1:0.0: bad descriptor, ignoring hub
[  172.376074][   T53] hub 9-1:0.0: probe with driver hub failed with error -5
[  172.383420][   T53] usb 9-1: selecting invalid altsetting 0
[  172.430099][ T5972] Bluetooth: hci3: command 0x0c1a tx timeout
[  172.432657][ T5328] Bluetooth: hci0: command 0x040f tx timeout
[  172.511216][ T9321] usb 6-1: device descriptor read/64, error -71
[  172.511801][T11131] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request
[  172.630147][ T9321] usb usb6-port1: attempt power cycle
[  172.671975][T11134] kvm: kvm [11133]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x7
[  172.675704][T11134] kvm: kvm [11133]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x7
[  172.831107][   T53] usb 9-1: reset high-speed USB device number 9 using dummy_hcd
[  172.838788][   T53] usb 9-1: device reset changed ep0 maxpacket size!
[  172.850483][   T53] usb 9-1: USB disconnect, device number 9
[  172.858920][T11138] overlayfs: failed to resolve './file0': -2
[  172.980036][ T9321] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  173.011148][ T9321] usb 6-1: device descriptor read/8, error -71
[  173.179888][   T59] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  173.199840][   T53] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  173.250580][ T9321] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  173.278076][ T9321] usb 6-1: device descriptor read/8, error -71
[  173.311711][T11144] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  173.315017][T11144] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  173.330024][   T59] usb 7-1: Using ep0 maxpacket: 16
[  173.334012][   T59] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  173.339196][   T59] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  173.343108][   T59] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  173.347636][   T59] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  173.351883][   T59] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  173.356702][   T59] usb 7-1: config 0 descriptor??
[  173.369995][   T53] usb 9-1: Using ep0 maxpacket: 8
[  173.380189][   T53] usb 9-1: unable to get BOS descriptor or descriptor too short
[  173.383057][   T53] usb 9-1: no configurations
[  173.384861][   T53] usb 9-1: can't read configurations, error -22
[  173.390190][ T9321] usb usb6-port1: unable to enumerate USB device
[  173.496590][T11149] netlink: 276 bytes leftover after parsing attributes in process `syz.3.1823'.
[  173.674573][T11161] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1826'.
[  173.678521][T11161] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1826'.
[  173.682537][T11161] tipc: MTU too low for tipc bearer
[  173.719139][   T40] audit: type=1400 audit(1756491046.583:555): avc:  denied  { mount } for  pid=11162 comm="syz.3.1827" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  173.721152][ T5972] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  173.728670][   T40] audit: type=1400 audit(1756491046.583:556): avc:  denied  { remount } for  pid=11162 comm="syz.3.1827" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  173.743230][   T40] audit: type=1400 audit(1756491046.613:557): avc:  denied  { unmount } for  pid=5968 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  173.765709][   T59] HID 045e:07da: Invalid code 65791 type 1
[  173.768483][T11165] loop2: detected capacity change from 0 to 7
[  173.770698][   T59] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:045E:07DA.0008/input/input17
[  173.781586][T11165]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  173.781801][   T59] microsoft 0003:045E:07DA.0008: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  173.784210][T11165] loop2: partition table partially beyond EOD, truncated
[  173.793313][T11165] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  173.849411][T11126] udevd[11126]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  173.966732][   T59] usb 7-1: USB disconnect, device number 5
[  174.043193][T11178] netlink: zone id is out of range
[  174.045448][T11178] netlink: zone id is out of range
[  174.048327][T11178] netlink: del zone limit has 4 unknown bytes
[  174.064098][T11178] netlink: 'syz.4.1833': attribute type 1 has an invalid length.
[  174.213272][T11185] SELinux:  policydb version 1402900228 does not match my version range 15-35
[  174.216750][T11185] SELinux: failed to load policy
[  174.316573][T11191] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0xf
[  174.347184][T11193] /dev/sg0: Can't lookup blockdev
[  174.509875][    C2] ------------[ cut here ]------------
[  174.513234][    C2] workqueue: cannot queue hci_cmd_timeout on wq hci0
[  174.516544][    C2] WARNING: CPU: 2 PID: 6845 at kernel/workqueue.c:2255 __queue_work+0xd03/0x1160
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  174.520685][    C2] Modules linked in:
[  174.523547][    C2] CPU: 2 UID: 0 PID: 6845 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  174.530926][    C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.535174][    C2] RIP: 0010:__queue_work+0xd03/0x1160
[  174.537021][    C2] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 4b 04 00 00 48 8b 75 18 4c 89 fa 48 c7 c7 a0 00 ac 8b e8 be 1e f7 ff 90 <0f> 0b 90 90 e9 2f f7 ff ff e8 ef 78 38 00 90 0f 0b 90 e9 b4 f5 ff
[  174.543370][    C2] RSP: 0018:ffffc90000648be8 EFLAGS: 00010082
[  174.545510][    C2] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a3358
[  174.547917][    C2] RDX: ffff8880291a0000 RSI: ffffffff817a3365 RDI: 0000000000000001
[  174.550440][    C2] RBP: ffff888055250970 R08: 0000000000000001 R09: 0000000000000000
[  174.553058][    C2] R10: 0000000000000000 R11: 0000000000000000 R12: 1ffff920000c918f
[  174.556067][    C2] R13: 0000000080000100 R14: ffffffff81832460 R15: ffff8880360de978
[  174.559353][    C2] FS:  0000000000000000(0000) GS:ffff8880d68b8000(0000) knlGS:0000000000000000
[  174.562381][    C2] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  174.564974][    C2] CR2: 00007fff333d1d28 CR3: 000000004f491000 CR4: 0000000000352ef0
[  174.567738][    C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  174.570227][    C2] DR3: 0000000000000014 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  174.572954][    C2] Call Trace:
[  174.574151][    C2]  <IRQ>
[  174.575449][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  174.577985][    C2]  call_timer_fn+0x197/0x620
[  174.579496][    C2]  ? __pfx_call_timer_fn+0x10/0x10
[  174.581196][    C2]  ? __run_timers+0x559/0x960
[  174.583076][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  174.585744][    C2]  __run_timers+0x569/0x960
[  174.588139][    C2]  ? __pfx___run_timers+0x10/0x10
[  174.590394][    C2]  run_timer_base+0x114/0x190
[  174.592231][    C2]  ? __pfx_run_timer_base+0x10/0x10
[  174.594306][    C2]  run_timer_softirq+0x1a/0x40
[  174.596248][    C2]  handle_softirqs+0x216/0x8e0
[  174.598102][    C2]  ? __pfx_handle_softirqs+0x10/0x10
[  174.600282][    C2]  __irq_exit_rcu+0x109/0x170
[  174.603007][    C2]  irq_exit_rcu+0x9/0x30
[  174.605132][    C2]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  174.607682][    C2]  </IRQ>
[  174.608887][    C2]  <TASK>
[  174.609898][    C2]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  174.611816][    C2] RIP: 0010:lock_acquire+0x62/0x350
[  174.613651][    C2] Code: b9 3e 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 52 8b 13 0f 0f 82 74 02 00 00 8b 35 0a bd 13 0f 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 a9 b8 3e 12 0f 85 c7 02 00 00 48 83 c4
[  174.620329][    C2] RSP: 0018:ffffc900032b7908 EFLAGS: 00000206
[  174.622460][    C2] RAX: 0000000000000046 RBX: ffff8880360de948 RCX: 0000000000000001
[  174.625123][    C2] RDX: 0000000000000000 RSI: ffffffff8de2b508 RDI: ffffffff8c162980
[  174.627680][    C2] RBP: 0000000000000000 R08: b92b706bcd515707 R09: ffffffff96bfce30
[  174.630571][    C2] R10: 0000000000000008 R11: 0000000000000001 R12: 0000000000000001
[  174.633740][    C2] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  174.637121][    C2]  ? lockdep_init_map_type+0x5c/0x280
[  174.639031][    C2]  ? touch_wq_lockdep_map+0x9c/0x1c0
[  174.640911][    C2]  touch_wq_lockdep_map+0xad/0x1c0
[  174.642710][    C2]  ? touch_wq_lockdep_map+0x9c/0x1c0
[  174.644433][    C2]  __flush_workqueue+0x128/0x1230
[  174.646474][    C2]  ? drain_workqueue+0xd1/0x3d0
[  174.648305][    C2]  ? __pfx___flush_workqueue+0x10/0x10
[  174.650193][    C2]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  174.652231][    C2]  ? __pfx_enable_work+0x10/0x10
[  174.654291][    C2]  drain_workqueue+0x199/0x3d0
[  174.656147][    C2]  hci_dev_close_sync+0x39b/0x11d0
[  174.658546][    C2]  ? __pfx_hci_dev_close_sync+0x10/0x10
[  174.660450][    C2]  ? up_write+0x1b2/0x520
[  174.661951][    C2]  hci_dev_do_close+0x2e/0x90
[  174.663765][    C2]  hci_unregister_dev+0x227/0x640
[  174.665555][    C2]  ? __pfx_vhci_release+0x10/0x10
[  174.667493][    C2]  vhci_release+0x79/0xf0
[  174.668930][    C2]  __fput+0x402/0xb70
[  174.670339][    C2]  task_work_run+0x14d/0x240
[  174.672272][    C2]  ? __pfx_task_work_run+0x10/0x10
[  174.674344][    C2]  ? switch_task_namespaces+0xeb/0x100
[  174.676596][    C2]  do_exit+0x86f/0x2bf0
[  174.678192][    C2]  ? do_raw_spin_lock+0x12c/0x2b0
[  174.679885][    C2]  ? __pfx_do_exit+0x10/0x10
[  174.681871][    C2]  ? rcu_is_watching+0x12/0xc0
[  174.683621][    C2]  do_group_exit+0xd3/0x2a0
[  174.685334][    C2]  __x64_sys_exit_group+0x3e/0x50
[  174.687023][    C2]  x64_sys_call+0x14fa/0x1720
[  174.688810][    C2]  do_syscall_64+0xcd/0x4c0
[  174.691192][    C2]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.694348][    C2] RIP: 0033:0x7f57e018ebe9
[  174.696559][    C2] Code: Unable to access opcode bytes at 0x7f57e018ebbf.
[  174.699094][    C2] RSP: 002b:00007fff333d43a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  174.701797][    C2] RAX: ffffffffffffffda RBX: 00007f57e0211c89 RCX: 00007f57e018ebe9
[  174.704440][    C2] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  174.707216][    C2] RBP: 0000000000000001 R08: 00007fff333d2147 R09: 00007fff333d5660
[  174.709691][    C2] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff333d5660
[  174.712523][    C2] R13: 00007f57e0211c05 R14: 0000555591ef74a8 R15: 00007fff333d6730
[  174.715837][    C2]  </TASK>
[  174.717274][    C2] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  174.719724][    C2] CPU: 2 UID: 0 PID: 6845 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  174.722758][    C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.726943][    C2] Call Trace:
[  174.728190][    C2]  <IRQ>
[  174.729110][    C2]  dump_stack_lvl+0x3d/0x1f0
[  174.730786][    C2]  vpanic+0x6e8/0x7a0
[  174.732534][    C2]  ? __pfx_vpanic+0x10/0x10
[  174.734107][    C2]  ? __queue_work+0xd03/0x1160
[  174.736124][    C2]  panic+0xca/0xd0
[  174.737381][    C2]  ? __pfx_panic+0x10/0x10
[  174.738861][    C2]  ? check_panic_on_warn+0x1f/0xb0
[  174.740674][    C2]  check_panic_on_warn+0xab/0xb0
[  174.742264][    C2]  __warn+0xf6/0x3c0
[  174.743551][    C2]  ? __queue_work+0xd03/0x1160
[  174.745281][    C2]  report_bug+0x3c3/0x580
[  174.747136][    C2]  ? __queue_work+0xd03/0x1160
[  174.748989][    C2]  handle_bug+0x184/0x210
[  174.750415][    C2]  exc_invalid_op+0x17/0x50
[  174.752071][    C2]  asm_exc_invalid_op+0x1a/0x20
[  174.753682][    C2] RIP: 0010:__queue_work+0xd03/0x1160
[  174.755782][    C2] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 4b 04 00 00 48 8b 75 18 4c 89 fa 48 c7 c7 a0 00 ac 8b e8 be 1e f7 ff 90 <0f> 0b 90 90 e9 2f f7 ff ff e8 ef 78 38 00 90 0f 0b 90 e9 b4 f5 ff
[  174.763242][    C2] RSP: 0018:ffffc90000648be8 EFLAGS: 00010082
[  174.765529][    C2] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a3358
[  174.768149][    C2] RDX: ffff8880291a0000 RSI: ffffffff817a3365 RDI: 0000000000000001
[  174.770893][    C2] RBP: ffff888055250970 R08: 0000000000000001 R09: 0000000000000000
[  174.773841][    C2] R10: 0000000000000000 R11: 0000000000000000 R12: 1ffff920000c918f
[  174.777838][    C2] R13: 0000000080000100 R14: ffffffff81832460 R15: ffff8880360de978
[  174.780401][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  174.782262][    C2]  ? __warn_printk+0x198/0x350
[  174.783830][    C2]  ? __warn_printk+0x1a5/0x350
[  174.785959][    C2]  ? __queue_work+0xd02/0x1160
[  174.788087][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  174.790761][    C2]  call_timer_fn+0x197/0x620
[  174.793069][    C2]  ? __pfx_call_timer_fn+0x10/0x10
[  174.795486][    C2]  ? __run_timers+0x559/0x960
[  174.797491][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  174.799895][    C2]  __run_timers+0x569/0x960
[  174.801804][    C2]  ? __pfx___run_timers+0x10/0x10
[  174.803919][    C2]  run_timer_base+0x114/0x190
[  174.806307][    C2]  ? __pfx_run_timer_base+0x10/0x10
[  174.808617][    C2]  run_timer_softirq+0x1a/0x40
[  174.811015][    C2]  handle_softirqs+0x216/0x8e0
[  174.813240][    C2]  ? __pfx_handle_softirqs+0x10/0x10
[  174.815288][    C2]  __irq_exit_rcu+0x109/0x170
[  174.817051][    C2]  irq_exit_rcu+0x9/0x30
[  174.818642][    C2]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  174.820807][    C2]  </IRQ>
[  174.822015][    C2]  <TASK>
[  174.823672][    C2]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  174.826719][    C2] RIP: 0010:lock_acquire+0x62/0x350
[  174.828849][    C2] Code: b9 3e 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 52 8b 13 0f 0f 82 74 02 00 00 8b 35 0a bd 13 0f 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 a9 b8 3e 12 0f 85 c7 02 00 00 48 83 c4
[  174.836127][    C2] RSP: 0018:ffffc900032b7908 EFLAGS: 00000206
[  174.839102][    C2] RAX: 0000000000000046 RBX: ffff8880360de948 RCX: 0000000000000001
[  174.842899][    C2] RDX: 0000000000000000 RSI: ffffffff8de2b508 RDI: ffffffff8c162980
[  174.846530][    C2] RBP: 0000000000000000 R08: b92b706bcd515707 R09: ffffffff96bfce30
[  174.849854][    C2] R10: 0000000000000008 R11: 0000000000000001 R12: 0000000000000001
[  174.853375][    C2] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  174.856577][    C2]  ? lockdep_init_map_type+0x5c/0x280
[  174.860071][    C2]  ? touch_wq_lockdep_map+0x9c/0x1c0
[  174.862906][    C2]  touch_wq_lockdep_map+0xad/0x1c0
[  174.865157][    C2]  ? touch_wq_lockdep_map+0x9c/0x1c0
[  174.867579][    C2]  __flush_workqueue+0x128/0x1230
[  174.869755][    C2]  ? drain_workqueue+0xd1/0x3d0
[  174.872043][    C2]  ? __pfx___flush_workqueue+0x10/0x10
[  174.874292][    C2]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  174.877090][    C2]  ? __pfx_enable_work+0x10/0x10
[  174.879558][    C2]  drain_workqueue+0x199/0x3d0
[  174.882349][    C2]  hci_dev_close_sync+0x39b/0x11d0
[  174.885232][    C2]  ? __pfx_hci_dev_close_sync+0x10/0x10
[  174.887630][    C2]  ? up_write+0x1b2/0x520
[  174.889513][    C2]  hci_dev_do_close+0x2e/0x90
[  174.891841][    C2]  hci_unregister_dev+0x227/0x640
[  174.894280][    C2]  ? __pfx_vhci_release+0x10/0x10
[  174.896669][    C2]  vhci_release+0x79/0xf0
[  174.898604][    C2]  __fput+0x402/0xb70
[  174.900188][    C2]  task_work_run+0x14d/0x240
[  174.901949][    C2]  ? __pfx_task_work_run+0x10/0x10
[  174.904666][    C2]  ? switch_task_namespaces+0xeb/0x100
[  174.907224][    C2]  do_exit+0x86f/0x2bf0
[  174.908984][    C2]  ? do_raw_spin_lock+0x12c/0x2b0
[  174.911102][    C2]  ? __pfx_do_exit+0x10/0x10
[  174.913368][    C2]  ? rcu_is_watching+0x12/0xc0
[  174.915240][    C2]  do_group_exit+0xd3/0x2a0
[  174.917164][    C2]  __x64_sys_exit_group+0x3e/0x50
[  174.920126][    C2]  x64_sys_call+0x14fa/0x1720
[  174.921999][    C2]  do_syscall_64+0xcd/0x4c0
[  174.923833][    C2]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.926246][    C2] RIP: 0033:0x7f57e018ebe9
[  174.927894][    C2] Code: Unable to access opcode bytes at 0x7f57e018ebbf.
[  174.930160][    C2] RSP: 002b:00007fff333d43a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  174.933109][    C2] RAX: ffffffffffffffda RBX: 00007f57e0211c89 RCX: 00007f57e018ebe9
[  174.936199][    C2] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  174.938795][    C2] RBP: 0000000000000001 R08: 00007fff333d2147 R09: 00007fff333d5660
[  174.941998][    C2] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff333d5660
[  174.944698][    C2] R13: 00007f57e0211c05 R14: 0000555591ef74a8 R15: 00007fff333d6730
[  174.947704][    C2]  </TASK>
[  174.949584][    C2] Kernel Offset: disabled
[  174.951125][    C2] Rebooting in 86400 seconds..

VM DIAGNOSIS:
18:10:47  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffea0000ec3b00 RCX=0000000000000001 RDX=0000000000000000
RSI=00000000ffffffff RDI=ffff888039e834a8 RBP=ffffc900062afb38 RSP=ffffc900062af990
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffff88803c2b2440 R13=00000000ffffffff R14=0000000000000001 R15=1ffff92000c55f6a
RIP=ffffffff8b93f045 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555556788500 ffffffff 00c00000
GS =0000 ffff8880d66b8000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fdffa558010 CR3=0000000026320000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000c400000 Opmask01=00000000e0000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb2944c40 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb2944dc6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb2944dc6 00007ffdb2944dcc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 69702f732500756c 6c257a79732f6465 6966696e752f7075 6f7267637a79732f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4c550a5600005049 49005f5c560a4140 4c434c4b500a5550 4a5742465f5c560a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000011f36d RBX=0000000000000001 RCX=ffffffff8b93fc29 RDX=0000000000000000
RSI=ffffffff8de50a38 RDI=ffffffff8c162980 RBP=ffffed1003bd7488 RSP=ffffc90000177df8
R8 =0000000000000001 R9 =ffffed100d4a6655 R10=ffff88806a5332ab R11=0000000000000000
R12=0000000000000001 R13=ffff88801deba440 R14=ffffffff90ab5290 R15=0000000000000000
RIP=ffffffff8b93e78f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d67b8000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000555556788808 CR3=000000004f491000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=00000000e0000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb2944c40 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb2944dc6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb2944dc6 00007ffdb2944dcc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85643ab5 RDI=ffffffff9b1120a0 RBP=ffffffff9b112060 RSP=ffffc90000648550
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9b112060 R15=ffffffff85643a50
RIP=ffffffff85643adf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d68b8000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fff333d1d28 CR3=000000004f491000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000014 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=00000000e0000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb2944c40 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb2944dc6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb2944dc6 00007ffdb2944dcc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdffa612fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000001 RCX=1ffffffff35cbe10 RDX=dffffc0000000000
RSI=ffffffff8de2b508 RDI=0000000000000001 RBP=ffff88807ffd6500 RSP=ffffc90003857730
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000001 R13=0000000000000008 R14=dffffc0000000000 R15=0000000000000000
RIP=ffffffff81881342 RFL=00000a02 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00000000
FS =0000 0000000000000000 ffffffff 00000000
GS =0000 ffff8880d69b8000 ffffffff 00000000
LDT=0000 0000000000000000 ffffffff 00000000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fe6b9ae7d60 CR3=000000000e380000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe6b8f876c3 00007fe6b8f876c3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd3692d8d0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557b967d6a 000055557b967b40
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557b9756f4 000055557b9756f0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557b978ff4 000055557b978510
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0798030408000790 0304080007880308 d1a0eef6b4adc7eb 08000780030a0800
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0105800402988208 0001000000080606 0118d60000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000001ffffffff ffffffffdf0807a0 0306080007980304 0800079003040800
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 07880308d1a0eef6 b4adc7eb08000780 030a080006f80310 80808086080006f0
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030482080006e803 0587f6080006e003 088080080006d803 00080006d0031008
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000