last executing test programs:

38.961386799s ago: executing program 1 (id=295):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000340)=@newsa={0xf0, 0x10, 0x713, 0x0, 0x2000000, {{@in=@private=0xa010101, @in6=@mcast1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x120}, {@in6=@private0={0xfc, 0x0, '\x00', 0x3}, 0xfffffffd, 0xff}, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0xffffffffffffffff, 0x0, 0x2000000000000000}, {}, 0x70bd26, 0x0, 0x2, 0x2, 0x0, 0x18}}, 0xf0}}, 0x804)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$pppoe(0x18, 0x1, 0x0)
r5 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSCTTY(r5, 0x540e, 0x9)
connect$pppoe(r4, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @broadcast, 'geneve0\x00'}}, 0x1e)
r6 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r6, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @broadcast, 'geneve1\x00'}}, 0x1e)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

38.777681446s ago: executing program 1 (id=298):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
preadv2(r0, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x1, 0x40000000, 0x0, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1857a024d0219a8d, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r0, @ANYRESOCT, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe0c, @void, @value}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
futex(&(0x7f0000004000), 0x5, 0x0, 0x0, &(0x7f00000002c0), 0x93020007)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
set_robust_list(&(0x7f0000000040)={0x0, 0x4}, 0x18)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
socket$inet6_mptcp(0xa, 0x1, 0x106)
memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x2a, 0x2, 0x0)
socket(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x9, 0x0, 0x8}}, {}, [], {{0x7, 0x1, 0xb, 0x1, 0x9, 0x10}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$packet(0x11, 0x2, 0x300)
socket$kcm(0x10, 0x2, 0x4)
socket$l2tp6(0xa, 0x2, 0x73)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_route(0x10, 0x3, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000300)={0x1, &(0x7f0000000000)=[{0x6, 0x40, 0x0, 0x7ffffffe}]})
dup(r4)
socket(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000600))

38.727641797s ago: executing program 1 (id=301):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x4, 0x92400)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000140)={&(0x7f0000000040)=[<r1=>0x0, <r2=>0x0, <r3=>0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, <r4=>0x0, 0x0, 0x0, <r5=>0x0, <r6=>0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0, <r7=>0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], 0x3, 0x9, 0x8, 0x1}) (async)
ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, &(0x7f0000000180)={0x0, <r8=>0x0}) (async, rerun: 32)
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xda63, 0x4, [<r9=>0x0, <r10=>0x0, 0x0, <r11=>0x0], [0xfffffffc, 0x3, 0x7c, 0x8b], [0x0, 0x0, 0x77, 0x8], [0x2, 0x7, 0x4, 0xfff]}) (rerun: 32)
ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, &(0x7f0000000240)={0x0, <r12=>0x0})
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f0000000280)={r3, 0x7856, 0x1, 0x1, 0x2, [r8, r9, 0x0, r12], [0x8001, 0x7fffffff, 0x81, 0x7], [0x5, 0x9, 0xb68, 0xff], [0x2, 0x1, 0x2, 0xffffffffffffff01]}) (async, rerun: 32)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000340)={&(0x7f0000000300)=[0x0, 0x0, 0x0, <r13=>0x0], 0x4}) (rerun: 32)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f00000003c0)={&(0x7f0000000380)=[r6, r7, r4, r13, r3, r6], 0x6, 0x0, 0x0, <r14=>0xffffffffffffffff}) (async)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000400)={r12, 0x0, <r15=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_ADDFB2(r15, 0xc06864b8, &(0x7f0000000440)={r1, 0xa, 0x2, 0xe, 0x0, [r11, r10, 0x0, r11], [0x4, 0x44, 0x8, 0x7], [0xa97, 0x2, 0xfffffffa, 0x8], [0xfffffffffffff15c, 0x0, 0xfffffffffffffff9, 0xfffffffffffffffa]}) (async)
r16 = openat$cgroup_ro(r14, &(0x7f00000004c0)='cpuset.effective_mems\x00', 0x0, 0x0)
ioctl$VT_OPENQRY(r16, 0x5600, &(0x7f0000000500))
getsockopt$inet6_mreq(r14, 0x29, 0x1c, &(0x7f0000000540)={@mcast1, <r17=>0x0}, &(0x7f0000000580)=0x14) (async)
ioctl$DRM_IOCTL_GET_CLIENT(r16, 0xc0286405, &(0x7f00000005c0)={0x0, 0x4, {}, {<r18=>0xee01}, 0x40, 0x5})
setsockopt$inet6_IPV6_XFRM_POLICY(r16, 0x29, 0x23, &(0x7f0000000600)={{{@in=@private=0xa010102, @in6=@dev={0xfe, 0x80, '\x00', 0x2c}, 0x4e22, 0x6, 0x4e23, 0x0, 0x2, 0x20, 0x0, 0x32, r17, r18}, {0x0, 0xc15, 0xef, 0xf9, 0x100000001, 0x81, 0x0, 0xffffffff}, {0x10000, 0x80, 0x9e, 0x1}, 0x8, 0x1, 0x2, 0x0, 0x1}, {{@in=@local, 0x4d6, 0x6c}, 0x2, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3503, 0x3, 0x1, 0x4, 0x7, 0x11, 0x6}}, 0xe8) (async, rerun: 32)
ioctl$DRM_IOCTL_GEM_OPEN(r16, 0xc010640b, &(0x7f0000000700)={0x0, <r19=>0x0}) (rerun: 32)
ioctl$DRM_IOCTL_MODE_ADDFB2(r15, 0xc06864b8, &(0x7f0000000740)={r2, 0x8, 0x0, 0x0, 0x2, [r9, r8, r19, r8], [0x7, 0x9, 0x8001, 0x4], [0x5, 0x2, 0x10001, 0x7], [0x1, 0x1, 0x1, 0x6]}) (async, rerun: 64)
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f00000007c0)={0x0, r5, 0x4, 0x8001, 0x3, 0x401, 0x81}) (async, rerun: 64)
ioctl$KVM_RUN(r16, 0xae80, 0x0)
socket$rxrpc(0x21, 0x2, 0x2) (async)
syz_open_dev$dri(&(0x7f0000000800), 0x3, 0x100000) (async)
close(0xffffffffffffffff)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000940)={&(0x7f0000000840)=[0x0], &(0x7f0000000880)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r20=>0x0], &(0x7f00000008c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000900)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x7, 0x4, 0x5})
ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x1) (async, rerun: 32)
syz_usb_connect$printer(0x3, 0x2d, &(0x7f0000000980)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x40, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x23, 0x20, 0x6, [{{0x9, 0x4, 0x0, 0x8, 0x2, 0x7, 0x1, 0x1, 0x0, "", {{{0x9, 0x5, 0x1, 0x2, 0x1d7, 0x7, 0x75, 0x3}}}}}]}}]}}, &(0x7f0000000c40)={0xa, &(0x7f00000009c0)={0xa, 0x6, 0x200, 0x4, 0x10, 0x7, 0x10, 0x7f}, 0xc0, &(0x7f0000000a00)={0x5, 0xf, 0xc0, 0x5, [@ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0x8, 0x91, 0x0, 0x9, 0xc7b, 0x2}, @generic={0x3, 0x10, 0xb}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x5, 0x1, 0x7, 0x7}, @generic={0xa0, 0x10, 0x3, "e1e6b35769af5f67921cc67bcbb4f44250b49cd31b838568aaae554ff5924079cf44816f631ddc408f298a9a109e53002f82c1807b1bf29da2d21d1d9acd7723eb6849963cad5afca3a76f46ae0e665a0e4e16b98df64e18e6f2fe88da9c14d08606ffec13a7368f9d7cc6502c9561f9163fcc0d6c91f17dba55df20a1ab3710245d9145029bb6edf38032cd487bda5e1229f07687b4856dff1851eeeb"}]}, 0x3, [{0x8d, &(0x7f0000000ac0)=@string={0x8d, 0x3, "d1d2958d97714404218b453ab86fee139126a63bf709aabfb8ca531536de06dd04b311aaa1b9959199d52a7ca885b8fd1a678d397fe2870cadbb514ddbda1ce8199f73e5abbf6cff3d7edf597aa4ebcedae70f984151d468802a0c60a7e5cc67af27b34bbd333b9fc4eebd5dee2a5c51cd3b763227160e0fe630c6bf129c239bad95ff9e7d95d4b73daa78"}}, {0x4, &(0x7f0000000b80)=@lang_id={0x4, 0x3, 0x81d}}, {0x64, &(0x7f0000000bc0)=@string={0x64, 0x3, "076de2db2117d3fbb9461088a784adb8e6e252fda571b21d66a609834fdcffbe0d70bed63b1dc0b5161350bb8c22d1eaaafef287be34116fe1b26923694777e54b17b2c4416f988f07dc4c599c7172561ef271b7ad6cf4ef2cb51d47fb9e933d4ed1"}}]}) (async, rerun: 32)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r15, 0xc00c642d, &(0x7f0000000c80)={r12}) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r16, 0xc01864b0, &(0x7f0000000cc0)={r20, r2, 0xc, 0x5, 0x80000001})
r21 = syz_usb_connect$printer(0x5, 0x36, &(0x7f0000000d00)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0xff, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x3, 0x10, 0xff, [{{0x9, 0x4, 0x0, 0x5, 0x2, 0x7, 0x1, 0x2, 0x22, "", {{{0x9, 0x5, 0x1, 0x2, 0x200, 0x6, 0x8, 0x3}}, [{{0x9, 0x5, 0x82, 0x2, 0x20, 0xf3, 0x7, 0xe}}]}}}]}}]}}, &(0x7f0000000e40)={0xa, &(0x7f0000000d40)={0xa, 0x6, 0x110, 0xff, 0x9, 0x7, 0x40, 0x8}, 0xc, &(0x7f0000000d80)={0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7, 0x10, 0x2, 0x4, 0x3, 0x4, 0x7f}]}, 0x1, [{0x7e, &(0x7f0000000dc0)=@string={0x7e, 0x3, "293816a6e2c5122ac5f1b26a9f608ecd87f9c10cef17c3d0d4664dd6851c8dc462307e82f999439810080f74e03257365c4a123611b0dad032d12bbf2e60ba992c05b92fbbba5cc68af2f756534e1850d80b7e0d2448a654f6b0ea86a06ae331ee072cf3f29de776cc749cbb5afce0b9f2842d47862767f0cb5480c0"}}]})
syz_usb_control_io$printer(r21, &(0x7f0000000f40)={0x14, &(0x7f0000000e80)={0x20, 0x4, 0x52, {0x52, 0x21, "10151ee717fe0181d6c6afea9ef986eb0acc7d2c6bb90232dd1a9110ff7f2e71be8aa1367ea46c2bda85cb1fe8f508ac9c1bdf0d53c24a68eb3d59626110ffecfaf1f927c63932b0e2edbe04424740a7"}}, &(0x7f0000000f00)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x408}}}, &(0x7f00000011c0)={0x34, &(0x7f0000000f80)={0x0, 0x3, 0xae, "ac365e65d6d4973aa8fbdba13a102a3cf876dca377ac0ff81ed564451ba9618919eec6d70584f1117df1184dc57d982c80e7e2e873e7a0257147499913dfb81d4e966d984027c283f3c3bf4049b248038628c8fcf5eb0b964503786aa4533ac72d822c8ad004406f826a6e660f49972cbdb8f8d9f3b47e2f3a55a1e258b45741e72d9f4a02cf9c435570e39d091be5fc96c27a45a42ff811e3159298f1e48c28503640b75fc867eb1d4a307aedd0"}, &(0x7f0000001040)={0x0, 0xa, 0x1, 0xd4}, &(0x7f0000001080)={0x0, 0x8, 0x1}, &(0x7f00000010c0)={0x20, 0x0, 0x74, {0x72, "2e51a08244c2b5b09c6bdd4a2cd17e5bb4f5ddf26f4b16f1eb278e18512c13ba5d9ea5d015f60e868c1d87bbdeae62e1cf4245096bea21ce037bbe7b14fb2af715bd3bd9e7dd363a7affd4cf8354c6fd34a0ec3152e99e0d9b909a4df0283bb901dd685c05f48feeaf146f5cbbad67e375ce"}}, &(0x7f0000001140)={0x20, 0x1, 0x1, 0x1}, &(0x7f0000001180)={0x20, 0x0, 0x1, 0xe5}})

38.670579107s ago: executing program 1 (id=302):
setrlimit(0x0, &(0x7f0000000980)={0x0, 0x62})
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
writev(r0, &(0x7f0000000580), 0x1000000000000297)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00), 0x8)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2288, &(0x7f0000000040))
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_LIMIT={0x8}]}}]}, 0x3c}}, 0x0)

38.670365427s ago: executing program 1 (id=303):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000100), 0xffffffffffffffff)
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f00000001c0)=0x20)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000001, 0x13, r2, 0xedaa7000)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)={0x40, r1, 0x10, 0x70bd2d, 0x25dfdbfd, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BACKEND_IDENTIFIER={0x17, 0xa, './binderfs/binder1\x00'}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x3}]}, 0x40}, 0x1, 0x0, 0x0, 0x810}, 0x4)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r5 = dup3(r4, r3, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x3, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000240)={0x18, 0x0, &(0x7f00000002c0)=[@request_death, @decrefs], 0x0, 0x0, 0x0})

38.60442821s ago: executing program 1 (id=305):
eventfd2(0x8, 0x80001)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_user\x00', 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000040)={'#! ', './file0', [{0x20, 'cpuacct.usage_user\x00'}], 0xa, "c717802cd18f2c530abdcf8249a9ac4368dcf2943b6f0fdecab1e07be42a2a869199763a0bf3dde4447f3a7673eb8f03eebce2157c0919920630b938972fa558fa434648b2cd2d4e52bf74afb849da8986946d0fd2c1d74e2ab07dba2b5d0bccf12881ea8adc601f6320ac5067adf53281002a010f0d874937b9d4d76475b8845ef3de185b44c94f3c4507b3b0fe716b56c3e27ffe9a149d53c4b4f71b89e656c537dabfe2239e5052b874a9c31fca41104e68e8d3c1d43bd5cdf1210cfd9bab7168bb9fdf096173a354dba50f8670be19ebcabf9c"}, 0xf4)
r1 = gettid()
r2 = syz_open_procfs(r1, &(0x7f0000000140)='net/ip_vs_stats_percpu\x00')
r3 = epoll_create1(0x0)
writev(r3, &(0x7f0000000240)=[{&(0x7f0000000180)="498fefa33de8101c58fa004f8dbf78fc9df418202d73a104fd7a8bed0e6f97a0db0799f34ad1414179738f14f98d9faa663eecc5160cfda8f041347ee591e2cc2b5748d90e3f3664ecfaf69ba475ba37b6e1e64a9785166590455b9d920cf5cad7c17e30dc2bbbfbc6d890c2bdd1cdd4ffc36a8832301ff3cfe608dc5de286db5dddb2a5a63a790d354f60dc68d8b0158b96ce8915ecc1d589", 0x99}], 0x1)
tgkill(r1, r1, 0x24)
r4 = syz_kvm_add_vcpu$x86(0x0, &(0x7f00000003c0)={0x0, &(0x7f0000000280)=[@code={0x1, 0x4e, {"66baf80cb8ae4c8c8eef66bafc0c66b861b366ef64440fc733420f300f01c367460f0e0f20c035000000200f22c040d9f3420f0864470f30c4210857d4"}}, @uexit={0x0, 0x18, 0xfffffffffffffffd}, @uexit={0x0, 0x18, 0x7}, @cpuid={0x2, 0x18, {0x9b, 0x6}}, @code={0x1, 0x5f, {"0f01760d48b89941198f4033655d0f23d00f21f835100000090f23f8660f38807865c4621d920cad1f00000066ba410066b8000066ef450f0092bc3d7b170f7819420f32410f01cfc4a1fc2f57db"}}, @cpuid={0x2, 0x18, {0x4, 0x3}}], 0x10d})
ioctl$KVM_GET_MSRS(r4, 0xc008ae88, &(0x7f0000000400)={0x6, 0x0, [{}, {}, {}, {}, {}, {}]})
close(r4)
fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f0000000480)=',!@\x00', &(0x7f00000004c0)='./file1\x00', 0xffffffffffffffff)
syz_open_dev$tty1(0xc, 0x4, 0x3)
sendto$inet(r2, &(0x7f0000000500)="270a5610daa2c6abac6dcbbc5ff7b23543d8b05acf", 0x15, 0x20000010, &(0x7f0000000540)={0x2, 0x4e24, @multicast1}, 0x10)
read$FUSE(r0, &(0x7f0000000580)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_STATX(r2, &(0x7f00000025c0)={0x130, 0x0, r5, {0x4, 0x4, 0x0, '\x00', {0x10, 0x3, 0x0, 0xfffffffa, 0xffffffffffffffff, 0xee00, 0x2000, '\x00', 0x3, 0x80, 0x4, 0xffffffff, {0x6, 0x8}, {0x9, 0x1}, {0xffffffffffffffff, 0x4}, {0x3, 0x80000000}, 0x7, 0x7, 0x2, 0x4}}}, 0x130)
ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r2, 0x80845663, &(0x7f0000002700)={0x0, @reserved})
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000002a80)=@filter={'filter\x00', 0xe, 0x2, 0x27c, [0x0, 0x200000002800, 0x200000002830, 0x200000002a4c], 0x0, &(0x7f00000027c0), &(0x7f0000002800)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x2, [{0x9, 0x20, 0x6002, 'virt_wifi0\x00', 'batadv_slave_1\x00', 'veth1_to_batadv\x00', 'pim6reg\x00', @remote, [0xff, 0xff, 0xff], @random="3f8aca55aa1c", [0xff, 0xff, 0xff, 0x0, 0xff, 0xff], 0x6e, 0x9e, 0x116, [], [@common=@redirect={'redirect\x00', 0x8, {{0xffffffffffffffff}}}], @common=@nflog={'nflog\x00', 0x50, {{0x4, 0x3, 0x3, 0x0, 0x0, "39e4b203153d19a14ae101c1fb089013acd7a1f0a6988961011075cc4033cfe2380cd6cc2828034a7d7a8f35bfabadaeb130247f75ddd2932dc9ef81fd505a22"}}}}, {0x11, 0x7, 0x8847, 'veth1_virt_wifi\x00', 'xfrm0\x00', 'veth1_macvtap\x00', 'veth0_virt_wifi\x00', @empty, [0x0, 0x0, 0xff], @local, [0xff, 0x0, 0xff, 0x0, 0xff], 0xa6, 0xa6, 0xd6, [@cluster={{'cluster\x00', 0x0, 0x10}, {{0x10000, 0x9, 0x10001}}}], [], @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}]}, {0x0, '\x00', 0x2}]}, 0x2f4)
r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000002b00), 0x450000, 0x0)
r7 = syz_create_resource$binfmt(&(0x7f0000002b40)='./file1\x00')
execveat$binfmt(r6, r7, &(0x7f0000002d00)={[&(0x7f0000002b80)=',!@\x00', &(0x7f0000002bc0)='\x00', &(0x7f0000002c00)='\x00', &(0x7f0000002c40)='\x00', &(0x7f0000002c80)='}{&\xd8%$}*(*/\xdf*#:#/!+^.\x00', &(0x7f0000002cc0)='veth1_to_batadv\x00']}, &(0x7f0000002d40), 0x1000)
ioctl$VIDIOC_S_CTRL(r6, 0xc008561c, &(0x7f0000002d80)={0x7, 0x849b})
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000002dc0)=0x9186735ce6f34f64, 0x4)
ioctl$VHOST_VSOCK_SET_RUNNING(r6, 0x4004af61, &(0x7f0000002e00))
ioctl$VT_RELDISP(r6, 0x5605)
getsockopt$PNPIPE_INITSTATE(r0, 0x113, 0x4, &(0x7f0000002e40), &(0x7f0000002e80)=0x4)
r8 = syz_open_dev$radio(&(0x7f0000002ec0), 0x1, 0x2)
ioctl$VIDIOC_G_PRIORITY(r8, 0x80045643, 0x1)
ioctl$USBDEVFS_SETCONFIGURATION(r0, 0x80045505, &(0x7f0000002f00)=0x6)
ioctl$TIOCL_SETVESABLANK(r6, 0x541c, &(0x7f0000002f40))

23.569961429s ago: executing program 32 (id=305):
eventfd2(0x8, 0x80001)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_user\x00', 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000040)={'#! ', './file0', [{0x20, 'cpuacct.usage_user\x00'}], 0xa, "c717802cd18f2c530abdcf8249a9ac4368dcf2943b6f0fdecab1e07be42a2a869199763a0bf3dde4447f3a7673eb8f03eebce2157c0919920630b938972fa558fa434648b2cd2d4e52bf74afb849da8986946d0fd2c1d74e2ab07dba2b5d0bccf12881ea8adc601f6320ac5067adf53281002a010f0d874937b9d4d76475b8845ef3de185b44c94f3c4507b3b0fe716b56c3e27ffe9a149d53c4b4f71b89e656c537dabfe2239e5052b874a9c31fca41104e68e8d3c1d43bd5cdf1210cfd9bab7168bb9fdf096173a354dba50f8670be19ebcabf9c"}, 0xf4)
r1 = gettid()
r2 = syz_open_procfs(r1, &(0x7f0000000140)='net/ip_vs_stats_percpu\x00')
r3 = epoll_create1(0x0)
writev(r3, &(0x7f0000000240)=[{&(0x7f0000000180)="498fefa33de8101c58fa004f8dbf78fc9df418202d73a104fd7a8bed0e6f97a0db0799f34ad1414179738f14f98d9faa663eecc5160cfda8f041347ee591e2cc2b5748d90e3f3664ecfaf69ba475ba37b6e1e64a9785166590455b9d920cf5cad7c17e30dc2bbbfbc6d890c2bdd1cdd4ffc36a8832301ff3cfe608dc5de286db5dddb2a5a63a790d354f60dc68d8b0158b96ce8915ecc1d589", 0x99}], 0x1)
tgkill(r1, r1, 0x24)
r4 = syz_kvm_add_vcpu$x86(0x0, &(0x7f00000003c0)={0x0, &(0x7f0000000280)=[@code={0x1, 0x4e, {"66baf80cb8ae4c8c8eef66bafc0c66b861b366ef64440fc733420f300f01c367460f0e0f20c035000000200f22c040d9f3420f0864470f30c4210857d4"}}, @uexit={0x0, 0x18, 0xfffffffffffffffd}, @uexit={0x0, 0x18, 0x7}, @cpuid={0x2, 0x18, {0x9b, 0x6}}, @code={0x1, 0x5f, {"0f01760d48b89941198f4033655d0f23d00f21f835100000090f23f8660f38807865c4621d920cad1f00000066ba410066b8000066ef450f0092bc3d7b170f7819420f32410f01cfc4a1fc2f57db"}}, @cpuid={0x2, 0x18, {0x4, 0x3}}], 0x10d})
ioctl$KVM_GET_MSRS(r4, 0xc008ae88, &(0x7f0000000400)={0x6, 0x0, [{}, {}, {}, {}, {}, {}]})
close(r4)
fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f0000000480)=',!@\x00', &(0x7f00000004c0)='./file1\x00', 0xffffffffffffffff)
syz_open_dev$tty1(0xc, 0x4, 0x3)
sendto$inet(r2, &(0x7f0000000500)="270a5610daa2c6abac6dcbbc5ff7b23543d8b05acf", 0x15, 0x20000010, &(0x7f0000000540)={0x2, 0x4e24, @multicast1}, 0x10)
read$FUSE(r0, &(0x7f0000000580)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_STATX(r2, &(0x7f00000025c0)={0x130, 0x0, r5, {0x4, 0x4, 0x0, '\x00', {0x10, 0x3, 0x0, 0xfffffffa, 0xffffffffffffffff, 0xee00, 0x2000, '\x00', 0x3, 0x80, 0x4, 0xffffffff, {0x6, 0x8}, {0x9, 0x1}, {0xffffffffffffffff, 0x4}, {0x3, 0x80000000}, 0x7, 0x7, 0x2, 0x4}}}, 0x130)
ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r2, 0x80845663, &(0x7f0000002700)={0x0, @reserved})
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000002a80)=@filter={'filter\x00', 0xe, 0x2, 0x27c, [0x0, 0x200000002800, 0x200000002830, 0x200000002a4c], 0x0, &(0x7f00000027c0), &(0x7f0000002800)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x2, [{0x9, 0x20, 0x6002, 'virt_wifi0\x00', 'batadv_slave_1\x00', 'veth1_to_batadv\x00', 'pim6reg\x00', @remote, [0xff, 0xff, 0xff], @random="3f8aca55aa1c", [0xff, 0xff, 0xff, 0x0, 0xff, 0xff], 0x6e, 0x9e, 0x116, [], [@common=@redirect={'redirect\x00', 0x8, {{0xffffffffffffffff}}}], @common=@nflog={'nflog\x00', 0x50, {{0x4, 0x3, 0x3, 0x0, 0x0, "39e4b203153d19a14ae101c1fb089013acd7a1f0a6988961011075cc4033cfe2380cd6cc2828034a7d7a8f35bfabadaeb130247f75ddd2932dc9ef81fd505a22"}}}}, {0x11, 0x7, 0x8847, 'veth1_virt_wifi\x00', 'xfrm0\x00', 'veth1_macvtap\x00', 'veth0_virt_wifi\x00', @empty, [0x0, 0x0, 0xff], @local, [0xff, 0x0, 0xff, 0x0, 0xff], 0xa6, 0xa6, 0xd6, [@cluster={{'cluster\x00', 0x0, 0x10}, {{0x10000, 0x9, 0x10001}}}], [], @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1}}}}]}, {0x0, '\x00', 0x2}]}, 0x2f4)
r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000002b00), 0x450000, 0x0)
r7 = syz_create_resource$binfmt(&(0x7f0000002b40)='./file1\x00')
execveat$binfmt(r6, r7, &(0x7f0000002d00)={[&(0x7f0000002b80)=',!@\x00', &(0x7f0000002bc0)='\x00', &(0x7f0000002c00)='\x00', &(0x7f0000002c40)='\x00', &(0x7f0000002c80)='}{&\xd8%$}*(*/\xdf*#:#/!+^.\x00', &(0x7f0000002cc0)='veth1_to_batadv\x00']}, &(0x7f0000002d40), 0x1000)
ioctl$VIDIOC_S_CTRL(r6, 0xc008561c, &(0x7f0000002d80)={0x7, 0x849b})
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000002dc0)=0x9186735ce6f34f64, 0x4)
ioctl$VHOST_VSOCK_SET_RUNNING(r6, 0x4004af61, &(0x7f0000002e00))
ioctl$VT_RELDISP(r6, 0x5605)
getsockopt$PNPIPE_INITSTATE(r0, 0x113, 0x4, &(0x7f0000002e40), &(0x7f0000002e80)=0x4)
r8 = syz_open_dev$radio(&(0x7f0000002ec0), 0x1, 0x2)
ioctl$VIDIOC_G_PRIORITY(r8, 0x80045643, 0x1)
ioctl$USBDEVFS_SETCONFIGURATION(r0, 0x80045505, &(0x7f0000002f00)=0x6)
ioctl$TIOCL_SETVESABLANK(r6, 0x541c, &(0x7f0000002f40))

4.190065548s ago: executing program 4 (id=719):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001140), 0x8200, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000b8d000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000440)="460f30c744240078000000c744240200800000c7442406000000000f01142466baf80cb8ce39d381ef66bafc0c66edb8010000000f01c1d9f8b8010000000f01d9f3470f2c6200c443215e7000cc6641dad10f01c8"}], 0x1, 0x0, 0x0, 0x32)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
read(r0, &(0x7f0000000040)=""/4, 0x4) (async)
read(r0, &(0x7f0000000040)=""/4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, 0x0}], 0x1, 0x46, &(0x7f0000000180)=[@cr4={0x1, 0x40002}], 0x1)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f00000002c0)="0f0d51f40f01d10fc75800f30fc73600102e0f71e100b800008ec0640f017400aa26b9e4080f01c966b81f6269e766ba000000000f30653e0f01c50c0cb8d09bbc8966efbafc0cedba4300ba210066ed3626f00fc70d", 0x56}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4.070311652s ago: executing program 4 (id=721):
r0 = socket$inet_sctp(0x2, 0x1, 0x84) (async)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDGKBMETA(r1, 0x4b62, 0xffffffffffffffff) (async, rerun: 32)
close_range(r0, r1, 0x0) (rerun: 32)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf) (async)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$TCFLSH(r3, 0x400455c8, 0x1000000000000002)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000200)=0x14) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r2, 0x0) (async)
cachestat(r2, &(0x7f0000000040)={0xffff, 0x10}, &(0x7f0000000080), 0x0)
getrandom(&(0x7f0000000640)=""/4096, 0x1000, 0x3) (async)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=@can_newroute={0x34, 0x18, 0x1, 0x0, 0x25dfdbfe, {}, [@CGW_CS_XOR={0x8, 0x5, {0x2, 0x4, 0x4, 0x8}}, @CGW_MOD_AND={0x15, 0x1, {{{0x2, 0x1, 0x1, 0x1}, 0x8, 0x0, 0x0, 0x0, "1a0b6e8c6211c9db"}, 0x5}}]}, 0x34}, 0x1, 0x0, 0x0, 0x24004884}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.sectors\x00', 0x26e1, 0x0)
close(r6) (async, rerun: 64)
ioctl$PPPIOCNEWUNIT(r6, 0xc004743e, &(0x7f0000000600)=0x2) (async, rerun: 64)
write$cgroup_subtree(r6, &(0x7f0000000100)=ANY=[@ANYBLOB="80fd", @ANYRES32=r6, @ANYRESDEC=r6], 0x9) (async, rerun: 32)
ioctl$SIOCGETSGCNT_IN6(r6, 0x89e1, &(0x7f00000000c0)={@rand_addr=' \x01\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}) (rerun: 32)
r7 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x22000)
ioctl$CEC_ADAP_G_LOG_ADDRS(r7, 0x805c6103, &(0x7f0000000040))

4.069967062s ago: executing program 4 (id=722):
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000100)={0x80, <r0=>0xffffffffffffffff, 0x1})
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x20, 0x0, 0x7, 0x201, 0x0, 0x0, {0x7, 0x0, 0x2}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x8000000000}]}, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x43609707f3153422)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r4 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(r4, &(0x7f0000003980)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_ATTR(r4, &(0x7f0000000240)={0x78, 0x0, r5, {0x2000000007, 0x0, 0x0, {0x0, 0x0, 0x55, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x0, 0x1ff, 0xa000}}}, 0x78)
r6 = dup3(r3, r2, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r7, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r7, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4cc}], 0x0, 0x0, 0x0})
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x200000a, 0x13, r1, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

3.981212229s ago: executing program 4 (id=724):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_LINKS(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, r1, 0x1, 0x70bd25, 0x25dfdbfe, {{}, {}, {0x8, 0x11, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x4080}, 0x4000880)
read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_ATTR(0xffffffffffffffff, &(0x7f00000000c0)={0x78, 0x0, r2, {0x1ca, 0x10, 0x0, {0x2, 0xfffffffffffffffe, 0x1, 0x3c, 0x0, 0x10, 0x444, 0xaa68, 0x0, 0xa000, 0x401, 0x0, 0x0, 0x48, 0x28}}}, 0x78)
mount$9p_virtio(&(0x7f0000000640), &(0x7f0000000680)='./file0/file0/..\x00', &(0x7f00000006c0), 0x2060000, &(0x7f0000000700)={'trans=virtio,', {[{@cachetag={'cachetag', 0x3d, ')((#'}}, {@nodevmap}, {@cachetag={'cachetag', 0x3d, 'TIPC\x00'}}, {@cache_readahead}], [{@hash}, {@fowner_lt}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x62, 0x30, 0x63, 0x32, 0x38, 0x32, 0x30], 0x2d, [0x32, 0x38, 0x32, 0x31], 0x2d, [0x34, 0x30], 0x2d, [0x35, 0x63, 0x38, 0x31], 0x2d, [0x30, 0x62, 0x30, 0x32, 0x66, 0x38, 0x62, 0x37]}}}, {@audit}, {@dont_hash}, {@fsuuid={'fsuuid', 0x3d, {[0x62, 0x32, 0x63, 0x61, 0x38, 0x52, 0x32, 0xc2], 0x2d, [0x66, 0x65, 0x35, 0x30], 0x2d, [0x62, 0x66, 0x64, 0x37], 0x2d, [0x30, 0x65, 0x61, 0x62], 0x2d, [0x31, 0x0, 0x0, 0x32, 0x38, 0x63, 0x61, 0x39]}}}, {@smackfstransmute={'smackfstransmute', 0x3d, '{&{[+'}}, {@smackfstransmute={'smackfstransmute', 0x3d, ']]'}}]}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000000c0), 0xc, &(0x7f0000000380)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000003e00000327bda2b36201df250adbf4888a4bb0b1a9e1000000"], 0x14}, 0x1, 0x0, 0x0, 0x678e8194aa363b5b}, 0x4054)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
chdir(&(0x7f0000000280)='./file0/file0/..\x00')
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r3, &(0x7f00000017c0)={&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7, @dev={0xfe, 0x80, '\x00', 0x3e}, 0xa, 0x2}, 0x80, &(0x7f00000003c0)=[{&(0x7f00000004c0)="7f", 0x1}], 0x1, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000084000000070000007f00000000000000b8"], 0xd0}, 0x480c4)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$F2FS_IOC_ABORT_ATOMIC_WRITE(r4, 0xf505, 0x0)
ioctl$VHOST_SET_OWNER(r4, 0xaf01, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r6, 0xaf01, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r6, 0x4004af61, &(0x7f00000002c0)=0x1)
sendmsg$kcm(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003400200000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000440)={'wg0\x00', &(0x7f0000000500)=@ethtool_rx_ntuple={0x35, {0x3, @sctp_ip4_spec={@loopback, @empty, 0x4e23, 0x4e22, 0x5}, @udp_ip4_spec={@empty, @private=0xa010101, 0x4e24, 0x4e21, 0x6}, 0x1, 0x7, 0x6, 0x5, 0x7ffffffffffffffe}}})
utime(&(0x7f0000000140)='./file0\x00', &(0x7f00000005c0)={0x7, 0x4})
ioctl$VHOST_GET_VRING_BASE(r4, 0xc008af12, &(0x7f00000001c0))
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='devpts\x00', 0x0, 0x0)
mount$binder(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x1026864, &(0x7f00000001c0)=ANY=[@ANYBLOB='max='])
syz_emit_vhci(&(0x7f0000000300)=ANY=[@ANYBLOB='\f\x00\b8\x00'], 0x11)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=<r7=>0x0)
syz_open_procfs(r7, &(0x7f0000000040)='net/kcm\x00')

3.901085524s ago: executing program 4 (id=725):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0) (async)
r0 = creat(&(0x7f0000000080)='./file0/file1\x00', 0x90)
read$FUSE(0xffffffffffffffff, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000004380)="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", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x90, 0x0, 0x4000000000000, {0x0, 0x200000000, 0x20000000, 0x4, 0x6, 0x0, {0x0, 0x10001, 0x0, 0xd, 0x0, 0x100, 0x10000, 0x2, 0x0, 0x0, 0xfffffffc, r2, 0x0, 0x7}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000004300)={0x50, 0x0, r1, {0x7, 0x26, 0x8, 0xfffffffff323ca46, 0x0, 0xfffc, 0x6, 0x5d3186cc, 0x0, 0x0, 0x1, 0x10001}}, 0x50) (async)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000002c0), &(0x7f0000000300)=0xc)
r3 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setregid(r4, 0x0) (async)
setregid(r4, 0x0)
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000000380)=<r5=>0x0)
r6 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r7) (async)
newfstatat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0/file1\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, <r8=>0x0}, 0x800) (async)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000480)={0x0, 0x0, <r9=>0x0}, &(0x7f00000004c0)=0xc) (async)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000500)={0x0, <r10=>0x0}, &(0x7f0000000540)=0xc) (async)
stat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
write$FUSE_DIRENTPLUS(r0, &(0x7f00000009c0)=ANY=[@ANYBLOB="9802000000000000", @ANYRES64=r1, @ANYBLOB="02000000000000000100000000000000070000000000000005000000000000000400000003000000060000000000000009000000000000000a000000000000000300000000000000030000000000000009000000000000000200000000100000040000000010000007000000", @ANYRES32=r7, @ANYRES32=r4, @ANYBLOB="1c000000000200000000000006000000000000000001000000000000010000000500000000000000000000000600000000000000010000000000000005000000000000000400000000000000010000000400000002000000000000000f0000000000000007000000000000000a000000000000000100000000000000ff0700000000000005000000030000000300000000200000000000001a14c2d8febd750dc832a8a7380c298d65d19e1dc887ce91af23dff9279b196f86e67c54e380c20ea945ec5fd082433c1b89b2d805cb858f70a4b520b1", @ANYRES32=r5, @ANYRES32=r7, @ANYBLOB="f9ffffff0800000000000000000000000000000000000000000000000c000000587b00002f6465762f766964656f23000000000005000000000000000200000000000000090000000000000002000000000000001be300008c0000000100000000000000ef000000000000000000000000000000090000000000000081000000000000000b000000000000006455000002000000070000000040000001000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="ff7f000000000000000000000600000000000000dc0d00000000000001000000ff01000000000000000000000100000000000000010000000000000006000000000000000300000000000000ff01000004000000050000000000000005000000000000008100000000000000ffffffffffffffff070000000000000001000100000000000200000006000000070000000060000003000000", @ANYRES32=r10, @ANYRES32=r11, @ANYBLOB="0600000004000000000000000200000000000000030000000000000005000000040000006164667300000000"], 0x298) (async)
unlink(&(0x7f0000000100)='./file0/file1\x00') (async)
r12 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r12, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10) (async)
listen(r12, 0x4) (async)
r13 = accept4$unix(r12, 0x0, 0x0, 0x800)
recvmmsg(r13, &(0x7f0000001fc0)=[{{0x0, 0x0, &(0x7f0000001a40)=[{&(0x7f0000000580)=""/178, 0xb2}], 0x1}, 0x80}, {{0x0, 0x0, &(0x7f0000001f40)=[{&(0x7f0000001b80)=""/68, 0x44}], 0x1}, 0x76c}], 0x2, 0x40000000, 0x0) (async)
getsockname(r13, &(0x7f0000000240)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, &(0x7f00000000c0)=0x80)
rmdir(&(0x7f0000000000)='./file0\x00')
r14 = syz_open_dev$vim2m(&(0x7f0000000340), 0x401, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r14, 0xc0405602, &(0x7f0000000140)={0x16, 0x1, 0x0, "18e889d15b38429faa8ff62438eaed752e68f3a6d09382b392b049e33958b16c"})
mount(&(0x7f00000001c0)=@sr0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000200)='adfs\x00', 0x221000d, 0x0)

3.736747478s ago: executing program 4 (id=737):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @private2, 0x63}}}, 0x30)
ptrace$setregs(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$setregs(0xd, r2, 0x0, &(0x7f00000003c0))
ptrace$getregset(0x4205, r2, 0x1, &(0x7f0000000180)={&(0x7f00000002c0)=""/48, 0x30})
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8917, &(0x7f0000000080)={'ip_vti0\x00', {0x2, 0x2, @rand_addr=0x64010102}})
r3 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x111000, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000200)={0x0, @sdr={0x2036315a, 0x6}})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1e2)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d6673"])
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0xc, &(0x7f00000044c0)={&(0x7f0000000340)=ANY=[@ANYRES32=r3], 0x60}}, 0x0)
socketpair(0x11, 0x1, 0x0, &(0x7f0000000000))
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000540)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched_retired(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000012100)=@newqdisc={0xfffffffffffffe4f, 0x24, 0x300, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffff}}}, 0x24}}, 0x0)
recvmmsg$unix(r5, &(0x7f0000006740)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000002c80)=""/147, 0x93}], 0x1}}], 0x1, 0x20, 0x0)
setsockopt$CAN_RAW_ERR_FILTER(r5, 0x65, 0x2, &(0x7f0000000100)=0x360, 0x4)

3.631969018s ago: executing program 33 (id=737):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @private2, 0x63}}}, 0x30)
ptrace$setregs(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$setregs(0xd, r2, 0x0, &(0x7f00000003c0))
ptrace$getregset(0x4205, r2, 0x1, &(0x7f0000000180)={&(0x7f00000002c0)=""/48, 0x30})
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8917, &(0x7f0000000080)={'ip_vti0\x00', {0x2, 0x2, @rand_addr=0x64010102}})
r3 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x111000, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000200)={0x0, @sdr={0x2036315a, 0x6}})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1e2)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d6673"])
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0xc, &(0x7f00000044c0)={&(0x7f0000000340)=ANY=[@ANYRES32=r3], 0x60}}, 0x0)
socketpair(0x11, 0x1, 0x0, &(0x7f0000000000))
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000540)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched_retired(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000012100)=@newqdisc={0xfffffffffffffe4f, 0x24, 0x300, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffff}}}, 0x24}}, 0x0)
recvmmsg$unix(r5, &(0x7f0000006740)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000002c80)=""/147, 0x93}], 0x1}}], 0x1, 0x20, 0x0)
setsockopt$CAN_RAW_ERR_FILTER(r5, 0x65, 0x2, &(0x7f0000000100)=0x360, 0x4)

3.171014938s ago: executing program 0 (id=748):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000380)=ANY=[@ANYBLOB="1400000004000000080000000600000000000000", @ANYRES32=0x1, @ANYRESHEX=r0, @ANYRES32=r0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r1, &(0x7f0000000140), 0x0, 0x4}, 0x20)
bind$netlink(0xffffffffffffffff, &(0x7f0000000400)={0x10, 0x0, 0x25dfdbfe, 0x400}, 0xc)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/raw6\x00')
pread64(r3, &(0x7f000001a240)=""/102396, 0x18ffc, 0x14a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='afs_call\x00', r3, 0x0, 0xf}, 0x18)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x58}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8b30, &(0x7f0000000040)={'wlan0\x00'})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x4c, 0x2c, 0xd27, 0x1, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0x7}, {0x10}, {0x7}}, [@filter_kind_options=@f_flow={{0x9}, {0x1c, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_XOR={0x8, 0x7, 0x15}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x2004c954}, 0x800)
r8 = socket$inet6(0xa, 0x802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_open_procfs(0x0, &(0x7f0000000340)='totmaps\x00')
getdents64(r9, &(0x7f0000002080)=""/4108, 0x100c)
getdents64(r9, 0x0, 0x0)
sendmsg$nl_generic(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x34}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
socket$inet6_sctp(0xa, 0x5, 0x84)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280))
setsockopt$inet6_buf(r8, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
r10 = openat$audio1(0xffffffffffffff9c, &(0x7f0000001580), 0x138a09f12d160b2d, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r10, 0x80045017, &(0x7f0000000000))
connect$inet6(r8, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback, 0x9}, 0x1c)
sendmmsg$inet6(r8, &(0x7f0000001840), 0x0, 0x0)

2.620129047s ago: executing program 0 (id=755):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1f0000000000000000000000001000"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000080), 0x0}, 0x20)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xc002)
r3 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\x01\x04\x00\x00\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
fgetxattr(r4, &(0x7f0000000000)=@known='system.sockprotoname\x00', &(0x7f00000000c0)=""/56, 0x38)
ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3)
ioctl$LOOP_CLR_FD(r2, 0x4c01)
r5 = socket(0x10, 0x803, 0x0)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000240)="3eae8f2a545a7fff3c29f4a5da14f2090a199ec4264f39a45d6ac3355e8dd2dc4979c6d3d8ff86f1eb68dea1f408484ba5d5e8f9002c7e570ec62add5c8fe0d78d57b9fee875bf8b9a4bc87e20d3be21ac6b4df8d6b9614b40cce9733a891b6b1caab3e839397eabdcb3617d50f6cb2bbef02299ca7dce2c8745a27c80a717ea22d6de90229c54854cd5f992e6a8b6beecf0447d", 0x94)
sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
socket(0xf, 0x800, 0x10040000)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
pipe(&(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
write(r8, &(0x7f0000000340), 0x11000)
vmsplice(r7, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r6, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

2.439586086s ago: executing program 2 (id=759):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="b40000004a00010000000000000000000a000000", @ANYRES32=0x0, @ANYBLOB="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"], 0xb4}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r2, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x6, 0x1, 0x801, 0x0, 0x0, {0x2, 0x0, 0x2}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000080}, 0x30008085)
r3 = socket$unix(0x1, 0x5, 0x0)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x4c, &(0x7f0000000080)=0xcdb, 0xfc3e)
r4 = syz_open_dev$vim2m(&(0x7f0000000340), 0x7f, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r4, 0xc0405602, &(0x7f0000000140)={0x16, 0x1, 0x0, "18e889d15b38429faa8ff62438eaed752e68f3a6d09382b392b049e33958b16c"})
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/rt_cache\x00')
connect$unix(r3, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r6 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x4e23, 0x400, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3b}}}, 0x1c)
r7 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
close(r7)
lseek(0xffffffffffffffff, 0x10001, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r11=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r10, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010040000000000002034400000008000300", @ANYRES32=r11, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140002"], 0x4c}}, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xbc, r9, 0x10, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_FRAME={0x41, 0x33, @action={{{0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x3384}, @broadcast, @broadcast, @initial, {0x2, 0x2}, @value=@ver_80211n={0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1}}, @tdls_chsw_req={0xc, 0x5, {0xb8, 0x6, @val={0x3e, 0x1, 0x2}, {0x65, 0x12, {@random='Iy\n:Rh', @broadcast}}, {0x68, 0x4, {0x7, 0x46}}}}}}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xf6}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xd5}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xd}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2b4}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x375}], @NL80211_ATTR_CSA_C_OFFSETS_TX={0x14, 0xcd, [0x7, 0xfff7, 0xb, 0x7, 0x3, 0xa, 0x1, 0x9]}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xb84}]}, 0xbc}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000001040)=@assoc_value={<r12=>0x0}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r7, 0x84, 0x1, &(0x7f0000000200)={r12, 0x9, 0x100, 0xa, 0x8, 0x200009e}, 0x14)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r5, 0x84, 0xf, &(0x7f0000000540)={r12, @in={{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x100, 0x7eab7a3d, 0x2, 0x6, 0x6}, &(0x7f0000000480)=0x98)
pipe2(&(0x7f0000000200), 0x80)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e21, 0xfffffffd, @empty, 0x6}, 0x1c)
socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCETHTOOL(r5, 0x8993, &(0x7f0000000500)={'bond0\x00', &(0x7f0000000000)=@ethtool_dump={0x3e, 0x4, 0xd02f}})
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000000c0)="d8000000140081044e81f782db44b9040a1d080211000000040000a118000200ff02000100000e1208000f0100810401a80016ea1f000840032e5f54c92011148ed08734843cb12b00000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c010000000000cb090000001fb791643a5e835913b06218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4bbbd52eb4edbb57a5025ccca9e00360d8bcc00400040fad95667e0060000000000000080bb9ad809d5e1cace81b341139fe3cd4032e8edb12d1d2eb0c0ed0bff", 0xd6}], 0x1, 0x0, 0xfffffffffffffdef, 0x7400}, 0x0)

2.300936187s ago: executing program 2 (id=760):
prlimit64(0x0, 0xc, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYRES32=0x41424344], 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f", 0x7, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4800000010000504", @ANYBLOB="ebffffffffffffff280012800b"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
setrlimit(0x6, &(0x7f0000000000)={0x0, 0x6})
r2 = syz_io_uring_setup(0x5c2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x3, 0x3d9}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000340)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x38, 0x3, r2, 0x0, 0x0, 0x0, 0x1, 0x1, {0x3}})
io_uring_enter(r2, 0x6e2, 0x3900, 0x1, 0x0, 0x0)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xffffffffffffff02, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r6 = dup(0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="300000004a00010000000000000000000a0080", @ANYRES64], 0x30}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r10, 0xae60)
ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x2)
ioctl$KVM_CAP_X2APIC_API(r10, 0x4068aea3, &(0x7f0000000000)={0x81, 0x0, 0x3})
ioctl$KVM_SIGNAL_MSI(r10, 0x4020aea5, &(0x7f0000000080)={0x4000, 0xffff1000, 0x7, 0x0, 0x8})
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(r5, 0x4002f516, &(0x7f0000000180)={0x10, 0x4})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003d000b08d25a80648c7494f90224fc60580002400c000400030082c137153e3719ac018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

2.300677253s ago: executing program 0 (id=761):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000001080)=0x8)
dup3(r2, r1, 0x80000)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x84, &(0x7f0000000380)={r3, @in6={{0xa, 0x4e20, 0x4, @empty, 0xc}}, 0x0, 0x2}, &(0x7f0000000340)=0x90)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={r3, 0xfff}, 0x8)
r4 = syz_open_dev$vbi(&(0x7f00000000c0), 0x2, 0x2)
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
ioctl$int_in(r5, 0x5452, &(0x7f0000000140)=0x9)
ppoll(&(0x7f0000000a40)=[{r5}], 0x1, 0x0, 0x0, 0x0)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r4, 0xc0405665, &(0x7f0000000280)={0x0, 0x2})

2.200406412s ago: executing program 0 (id=762):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001480)='./cgroup/syz1\x00', 0x200002, 0x0)
mkdirat$cgroup(r0, &(0x7f00000000c0)='syz1\x00', 0x1ff)
r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000200)=0x1, 0x12)
r2 = landlock_create_ruleset(&(0x7f0000000040)={0x3342, 0x3}, 0x18, 0x0)
landlock_restrict_self(r2, 0x5) (async)
r3 = memfd_create(&(0x7f0000001cc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc0sr\x95\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\x00\x01\x00\x00\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

2.200051303s ago: executing program 0 (id=763):
r0 = socket$inet(0x2, 0x800, 0x48)
openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NETID(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x1c, r1, 0x100, 0x70bd2b, 0x25dfdbfb, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r0, &(0x7f0000000140)='^', 0x1, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
r3 = syz_clone(0x8002100, &(0x7f0000000240)="3a9cd4f8d2ac21625622aac4bc93799c3fd8b7856534538e98fa1b8bedb1b68a7fc32a3285c57b23f0df59893eb6aa5aa8d2569295974234e4831fe337b5306016c9aec17d974e92f7641ce09b15e79b2c972dd258b027ae3b9b50bca29b0eb9f8a12241aa88bba7fd6b108665ef206bed18cbd4bbc842acf7b250919c755d746ea44fb892ef36c98423ff687005d0e2f9f047e2b0db33757ebb06457ba4c40101e92867ca2556a967cf97708fe712", 0xaf, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000300)="ac08bcb7a394852a7c613f8b577ca3b20295a8aa083dfb096ed4e8d4af326f99e9c4817fafff991f926309c4433f814e37904b08027de283172b7d3dd8afc3b95b5bab14a0f2a08a395c1284f8640b72819cc03a2ef1b3a1bde6c9c9a4a49e19f9d2fca96950fb74a1915387a9b22b2a1be85c984f5adae8f05d5f461cc0cd94a78e288ef435f74f427f1cc63d35ba6e640b942f73a0131a70d9f011cb82684ac5e95fef7e9a3f6742d8c899e1a0a312960e")
listen(r2, 0xda90)
r4 = syz_open_dev$cec(&(0x7f0000000180), 0x0, 0x400)
ioctl$CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, &(0x7f00000002c0)={"8d330ea9", 0x7, 0x5, 0x1, 0xffffffff, 0xa19, "68c82911c148b70a34976d69b28ebc", "8a9c91f2", "9ab0554c", "70b8cf05", ["a698f86c73c27e002587a2b4", "c4f87e32241c29dfcc00453d", "269fea61c3fc4d8c68b5b114", "7df75ab174ae97f84f03066d"]})
setsockopt$inet_opts(r2, 0x0, 0x4, 0x0, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace$setregs(0xd, r6, 0x102, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$getregset(0x4204, r3, 0x3, &(0x7f0000000200)={0x0})
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000040)={'\x00', 0x7ff, 0x5, 0xc, 0x5, 0x562b0888, r6})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000004c0)=ANY=[@ANYBLOB="240000001a00010027bd7000fedbdf251c101402ff00c8030016000008000100eaff01"], 0x24}, 0x1, 0x0, 0x0, 0x8890}, 0x2)
ioctl$SG_BLKTRACETEARDOWN(r5, 0x1276, 0x66000300)
ioctl$BLKTRACESTART(r5, 0x1274, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r9 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r9, 0x3b81, &(0x7f0000000200)={0xc, 0x0, <r10=>0x0})
ioctl$IOMMU_VFIO_IOAS$SET(r9, 0x3b88, &(0x7f0000000300)={0xc, r10})
ioctl$IOMMU_IOAS_MAP$PAGES(r9, 0x3b85, &(0x7f0000000340)={0x28, 0x4, r10, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2})
ioctl$IOMMU_VFIO_SET_IOMMU(r9, 0x3b66, 0x1)
ioctl$IOMMU_VFIO_IOMMU_UNMAP_DMA(r9, 0x3b72, &(0x7f0000000440)=ANY=[@ANYBLOB="1800007f000000000020"])

1.311581096s ago: executing program 2 (id=764):
r0 = socket(0xa, 0x2, 0x0)
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$sequencer(r1, 0x0, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x45, 0x0, &(0x7f0000cab000))

1.31132374s ago: executing program 2 (id=765):
r0 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
finit_module(r0, 0x0, 0x3)
keyctl$link(0x8, 0x0, 0x0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080), 0x801, 0x0)
ioctl$SOUND_PCM_READ_RATE(r1, 0x80045002, &(0x7f0000000400))
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f0000000000)={{0x2, 0x1, @dev={0xac, 0x14, 0x14, 0x30}}, {0x0, @link_local}, 0x16, {0x2, 0x4e21, @private=0xa010101}, 'wg1\x00'})
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0xfffffffffffffffc, &(0x7f00000002c0)={<r4=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000000)=0x1, r4, 0x0, 0x1, 0x4}}, 0x20)
write$cgroup_devices(r0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x8)
r5 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000), 0x125100, 0x0)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="81000000000000001e0200000000000044000001000000004daea6748e9985b77828003fc4c40457328922baac6742010ec3f283762aca35d08c6e28ea3ea2f264121d67550787e472fc47c33a74f02cb5da0fea9d9101575f94dac4951ddcbd70a8e38395b35a00365212cb1d1a279d63ccf45501626978768242060cda2c627b3640ae0154292d067e508916467bdeba4ad4a25dd520cbc745fb4971d6b7a774514df374db5f8e64"])

841.270827ms ago: executing program 2 (id=766):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x1, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = socket(0x15, 0x5, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008031, 0xffffffffffffffff, 0x2b559000)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x60000, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r1, 0x80489439, &(0x7f0000000840))
getsockopt(r0, 0x200000000114, 0x271b, &(0x7f0000000580)=""/102393, &(0x7f0000000040)=0x18ff9)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'bridge_slave_1\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x1d, &(0x7f0000000080)=0xc8, 0x4)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="7c0000001000010400"/20, @ANYRES32=r4, @ANYBLOB="00000000000000005c001280110001006272696467655f736c61766500000000440005800500050000000000050020000100000005000800000000000600", @ANYRES8=r2], 0x7c}}, 0x0)

840.142583ms ago: executing program 0 (id=767):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x20240, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101000, 0x59)
truncate(&(0x7f0000000000)='./file1\x00', 0xdb2)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r1, 0x26, &(0x7f0000000000)={0x1, 0x0, 0x0, 0xfff})
fcntl$lock(r1, 0x24, &(0x7f0000000140)={0x2, 0x0, 0x7, 0x4})
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000080)=@assoc_value, &(0x7f0000000140)=0x8)
pread64(r2, &(0x7f0000001440)=""/126, 0x7e, 0x41)

761.527028ms ago: executing program 3 (id=768):
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000080)={0x2a, 0x6, 0x0, {0x3, 0x0, 0x1, 0x0, '\\'}}, 0x2a) (async)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000080)={0x2a, 0x6, 0x0, {0x3, 0x0, 0x1, 0x0, '\\'}}, 0x2a)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x4c, 0x12, 0x1, 0x70bd2b, 0x0, {0xa, 0x3, 0x2, 0x0, {0x0, 0x4e22, [0x0, 0xffffffff, 0x0, 0x4], [], 0x0, [0x1, 0x3]}}}, 0x4c}}, 0x20004010)

701.362504ms ago: executing program 3 (id=769):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xb, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x8, 0x1, 0x0, "a701f6dd566a4aff01000000000000a83971e3aece62c53bb500", 0x20385655})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x101082, 0x0)
getsockopt$sock_timeval(r3, 0x1, 0x15, &(0x7f00000000c0), &(0x7f0000000100)=0x10)
r4 = accept(r1, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000300), &(0x7f00000002c0)=@tcp6=r4}, 0x47)
recvmmsg(r4, &(0x7f0000000480)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x12020, 0x0)

701.120748ms ago: executing program 3 (id=770):
syz_usbip_server_init(0x2)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0xfffffffffbfffff5]}, 0x8, 0x0)
readv(r0, &(0x7f0000002940)=[{&(0x7f0000000000)=""/93, 0x5d}, {0x0, 0x3c}], 0x2)
ioctl$MON_IOCH_MFLUSH(r0, 0x9208, 0x10000)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000e40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000300)=@ethtool_wolinfo={0x5, 0x7ff, 0xfffffa40, "999540b44119"}})
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r1, 0x50009405, &(0x7f0000000180))
write$usbip_server(r1, &(0x7f00000002c0)=@ret_unlink={{0x4, 0x3ff, 0x0, 0x1, 0x8}, {0x6}}, 0x30)
syz_usbip_server_init(0x2) (async)
signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0xfffffffffbfffff5]}, 0x8, 0x0) (async)
readv(r0, &(0x7f0000002940)=[{&(0x7f0000000000)=""/93, 0x5d}, {0x0, 0x3c}], 0x2) (async)
ioctl$MON_IOCH_MFLUSH(r0, 0x9208, 0x10000) (async)
openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
syz_init_net_socket$ax25(0x3, 0x3, 0x0) (async)
sendmmsg(r2, &(0x7f0000000e40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) (async)
socket$nl_audit(0x10, 0x3, 0x9) (async)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000300)=@ethtool_wolinfo={0x5, 0x7ff, 0xfffffa40, "999540b44119"}}) (async)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r1, 0x50009405, &(0x7f0000000180)) (async)
write$usbip_server(r1, &(0x7f00000002c0)=@ret_unlink={{0x4, 0x3ff, 0x0, 0x1, 0x8}, {0x6}}, 0x30) (async)

491.429808ms ago: executing program 2 (id=771):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd60000000001e0600fc000000000000d309c93f8c478baec091a91fe4c2d0877febfb75d181c09e39d8000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5002000090780000"], 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="170000003600"/20, @ANYRES32=0x1], 0x50)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000004c0))
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000001800), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000000)=0xa0000)
ioctl$IOCTL_VMCI_GET_CONTEXT_ID(r1, 0x7b3, &(0x7f0000001840))

489.923561ms ago: executing program 3 (id=772):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f00000000c0)=ANY=[@ANYRESHEX, @ANYRESHEX=0x0]) (async, rerun: 64)
r0 = syz_open_dev$vim2m(&(0x7f0000000680), 0x7ff, 0x2) (async, rerun: 64)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/ipv6_route\x00')
preadv(r1, &(0x7f00000002c0)=[{&(0x7f0000000540)=""/30, 0x1e}], 0x1, 0x10000000, 0x8) (async)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000340)={0x0, 0x4005, 0x2, {0x1, @win={{}, 0x0, 0xfffffff8, 0x0, 0x0, 0x0, 0x9}}}) (async)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) (async)
chdir(&(0x7f0000000080)='./file1\x00') (async, rerun: 64)
r2 = open(&(0x7f0000000100)='./bus\x00', 0x143142, 0xa2) (rerun: 64)
write$FUSE_INIT(r2, &(0x7f00000004c0)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x0, 0x40000, 0xa, 0x0, 0xe5, 0x0, 0x0, 0x0, 0x2, 0x3ff}}, 0x50) (async)
read$FUSE(r2, &(0x7f00000079c0)={0x2020}, 0x2020) (async)
ioctl$MON_IOCQ_RING_SIZE(r2, 0x9205)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x910802, &(0x7f00000005c0)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}, {@workdir={'workdir', 0x3d, './bus'}}, {@userxattr}]}) (async)
r3 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00') (async)
linkat(r3, &(0x7f0000000000)='./file1\x00', r3, &(0x7f0000000240)='./file0\x00', 0x0)
unlink(&(0x7f0000000080)='./file0\x00') (async)
unlink(&(0x7f0000001200)='./file1\x00') (async)
r4 = open(&(0x7f0000000000)='.\x00', 0x0, 0xc0) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
accept$inet6(r2, &(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000200)=0x1c) (async)
ioctl$TCFLSH(r5, 0x4b45, 0x2) (async)
chdir(&(0x7f0000000140)='./bus\x00') (async, rerun: 32)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) (async, rerun: 32)
ioctl$AUTOFS_IOC_PROTOSUBVER(r4, 0x40049366, 0x0) (async, rerun: 64)
openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (rerun: 64)

489.554582ms ago: executing program 3 (id=773):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000001e782a78d6328cfd592a1a0000200d5b04"], &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)=@generic={&(0x7f0000000040)='./file0\x00'}, 0x18)
r2 = socket(0x2a, 0x4, 0xe8)
r3 = accept4$inet6(r2, 0x0, 0x0, 0x80000)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
fcntl$getownex(r3, 0x10, &(0x7f0000000300)={0x0, <r6=>0x0})
ioctl$sock_FIOGETOWN(r5, 0x8903, &(0x7f0000000340)=<r7=>0x0)
close_range(r3, r4, 0x2)
r8 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000380), 0x200200, 0x0)
kcmp$KCMP_EPOLL_TFD(r6, r7, 0x7, r0, &(0x7f0000000400)={r8, r5, 0x3f})
sendmsg$nl_route_sched(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=@newtaction={0x14, 0x30, 0x800}, 0x14}}, 0x40)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000440)={0x64, 0x2, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0x2000}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0xfd}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_NETMASK={0x5, 0x14, 0x80}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x2}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x7f}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x400d4}, 0x84)
r11 = syz_open_dev$sndpcmp(&(0x7f0000000080), 0x0, 0x2)
ioctl$SNDRV_PCM_IOCTL_DRAIN(r11, 0x4144, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r1, &(0x7f00000000c0)="5eac563c5b97aa44592a9a30861a519325ac178d78e097b5dbd970512afac9142568ec2c3e7bb94f812778f62511f0e49d88593993b59f5711aa855f4624ddcb7ebe7bc27c676fa3289bd7302e2de3055245d06db5a8d3cc0e97c6616f94d1533ac98c159b87693eeb80fb7a4f809089dfea94b91a59745cb64721e9f6ce0ca62a29c0f6f5dc08c52c6b0aaceee816be9653bb176478cf96aa3f5ea38618c7a25ac110807dc59f068def98fb06cc4c546882010d9caa91fbf225217aac181fd6fd11978cb9051fb5b5c766c4c0a879983e0b9ca69f715615bf463ce1d305cfc492f2208dcdc9c7370c", &(0x7f0000000280)=@udp=r9}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000001e782a78d6328cfd592a1a0000200d5b04"], &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)=@generic={&(0x7f0000000040)='./file0\x00'}, 0x18) (async)
socket(0x2a, 0x4, 0xe8) (async)
accept4$inet6(r2, 0x0, 0x0, 0x80000) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
fcntl$getownex(r3, 0x10, &(0x7f0000000300)) (async)
ioctl$sock_FIOGETOWN(r5, 0x8903, &(0x7f0000000340)) (async)
close_range(r3, r4, 0x2) (async)
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000380), 0x200200, 0x0) (async)
kcmp$KCMP_EPOLL_TFD(r6, r7, 0x7, r0, &(0x7f0000000400)={r8, r5, 0x3f}) (async)
sendmsg$nl_route_sched(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=@newtaction={0x14, 0x30, 0x800}, 0x14}}, 0x40) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$IPSET_CMD_CREATE(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000440)={0x64, 0x2, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0x2000}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0xfd}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_NETMASK={0x5, 0x14, 0x80}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x2}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x7f}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x400d4}, 0x84) (async)
syz_open_dev$sndpcmp(&(0x7f0000000080), 0x0, 0x2) (async)
ioctl$SNDRV_PCM_IOCTL_DRAIN(r11, 0x4144, 0x0) (async)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r1, &(0x7f00000000c0)="5eac563c5b97aa44592a9a30861a519325ac178d78e097b5dbd970512afac9142568ec2c3e7bb94f812778f62511f0e49d88593993b59f5711aa855f4624ddcb7ebe7bc27c676fa3289bd7302e2de3055245d06db5a8d3cc0e97c6616f94d1533ac98c159b87693eeb80fb7a4f809089dfea94b91a59745cb64721e9f6ce0ca62a29c0f6f5dc08c52c6b0aaceee816be9653bb176478cf96aa3f5ea38618c7a25ac110807dc59f068def98fb06cc4c546882010d9caa91fbf225217aac181fd6fd11978cb9051fb5b5c766c4c0a879983e0b9ca69f715615bf463ce1d305cfc492f2208dcdc9c7370c", &(0x7f0000000280)=@udp=r9}, 0x20) (async)

391.362461ms ago: executing program 3 (id=774):
r0 = socket$inet(0x2, 0x3, 0x2)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r1, 0x65, 0x8, &(0x7f0000000200), 0x4)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc) (async)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @private, @multicast1}, @address_request={0x11, 0x2, 0x0, 0xe0000001}}}}}, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})

0s ago: executing program 5 (id=730):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x2404c8c0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x39, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x2, 0x200008, 0x5, 0x20000}, 0xffffffdd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r2], 0x4c}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="2880000000000000000000010000000000000000", @ANYRES32=r3, @ANYBLOB="b40200000000c1403a7f29"], 0x28}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000540))
ioctl$SIOCSIFHWADDR(r1, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x8203, 0x0)
close(r5)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})

kernel console output (not intermixed with test programs):

][ T5936] bridge_slave_0: entered promiscuous mode
[   45.731248][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.734423][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.737454][ T5935] bridge_slave_0: entered allmulticast mode
[   45.740237][ T5935] bridge_slave_0: entered promiscuous mode
[   45.753349][ T5936] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.755532][ T5936] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.757712][ T5936] bridge_slave_1: entered allmulticast mode
[   45.760238][ T5936] bridge_slave_1: entered promiscuous mode
[   45.769335][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.772455][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.775267][ T5935] bridge_slave_1: entered allmulticast mode
[   45.777806][ T5935] bridge_slave_1: entered promiscuous mode
[   45.923404][ T5938] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.926393][ T5938] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.929314][ T5938] bridge_slave_0: entered allmulticast mode
[   45.933220][ T5938] bridge_slave_0: entered promiscuous mode
[   45.939356][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.943822][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.949110][ T5936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.953895][ T5937] chnl_net:caif_netlink_parms(): no params data found
[   45.965300][ T5938] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.967961][ T5938] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.970101][ T5938] bridge_slave_1: entered allmulticast mode
[   45.975337][ T5938] bridge_slave_1: entered promiscuous mode
[   46.009815][ T5936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.050628][ T5935] team0: Port device team_slave_0 added
[   46.099470][ T5935] team0: Port device team_slave_1 added
[   46.104380][ T5936] team0: Port device team_slave_0 added
[   46.112492][ T5938] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.130608][ T5936] team0: Port device team_slave_1 added
[   46.138647][ T5938] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.227194][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.229933][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.240353][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.258239][ T5937] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.261228][ T5937] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.265389][ T5937] bridge_slave_0: entered allmulticast mode
[   46.268823][ T5937] bridge_slave_0: entered promiscuous mode
[   46.284960][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.287581][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.296410][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.300491][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.304020][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.311936][ T5936] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.316096][ T5937] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.319149][ T5937] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.322114][ T5937] bridge_slave_1: entered allmulticast mode
[   46.325849][ T5937] bridge_slave_1: entered promiscuous mode
[   46.331738][ T5938] team0: Port device team_slave_0 added
[   46.339592][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.342509][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.352256][ T5936] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.380963][ T5938] team0: Port device team_slave_1 added
[   46.469880][ T5937] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.517278][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.519434][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.527683][ T5938] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.534153][ T5937] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.540562][ T5935] hsr_slave_0: entered promiscuous mode
[   46.543636][ T5935] hsr_slave_1: entered promiscuous mode
[   46.548591][ T5936] hsr_slave_0: entered promiscuous mode
[   46.550853][ T5936] hsr_slave_1: entered promiscuous mode
[   46.553063][ T5936] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.555677][ T5936] Cannot create hsr debugfs directory
[   46.557786][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.559904][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.568436][ T5938] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.608200][ T5937] team0: Port device team_slave_0 added
[   46.654769][ T5937] team0: Port device team_slave_1 added
[   46.762091][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.764317][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.773651][ T5937] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.779876][ T5938] hsr_slave_0: entered promiscuous mode
[   46.782195][ T5938] hsr_slave_1: entered promiscuous mode
[   46.784302][ T5938] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.786664][ T5938] Cannot create hsr debugfs directory
[   46.800931][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.803260][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.811282][ T5937] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.953328][ T5937] hsr_slave_0: entered promiscuous mode
[   46.955687][ T5937] hsr_slave_1: entered promiscuous mode
[   46.957775][ T5937] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.960158][ T5937] Cannot create hsr debugfs directory
[   47.122937][ T5935] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   47.131326][ T5935] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   47.140093][ T5935] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   47.148697][ T5935] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   47.183414][ T5936] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   47.189171][ T5936] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   47.194271][ T5936] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   47.199284][ T5936] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   47.242431][ T5942] Bluetooth: hci1: command tx timeout
[   47.247731][ T5938] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   47.253404][ T5938] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   47.257734][ T5938] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   47.262670][ T5938] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   47.311761][ T5942] Bluetooth: hci0: command tx timeout
[   47.311922][   T63] Bluetooth: hci3: command tx timeout
[   47.312762][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.314221][ T5947] Bluetooth: hci2: command tx timeout
[   47.345526][ T5935] 8021q: adding VLAN 0 to HW filter on device team0
[   47.349907][ T5937] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   47.354140][ T5937] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   47.366476][ T5937] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   47.370443][ T5937] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   47.377942][   T91] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.380320][   T91] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.392986][   T91] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.395287][   T91] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.416451][ T5936] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.456227][ T5936] 8021q: adding VLAN 0 to HW filter on device team0
[   47.465097][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.467380][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.485886][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.488859][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.496312][ T5938] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.509397][   T40] audit: type=1400 audit(1748980884.915:89): avc:  denied  { sys_module } for  pid=5935 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   47.517245][ T5938] 8021q: adding VLAN 0 to HW filter on device team0
[   47.539453][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.541920][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.556219][   T61] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.558489][   T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.566320][ T5937] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.607424][ T5937] 8021q: adding VLAN 0 to HW filter on device team0
[   47.627096][ T1145] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.629477][ T1145] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.642748][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.645173][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.656220][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.706602][ T5935] veth0_vlan: entered promiscuous mode
[   47.715092][ T5935] veth1_vlan: entered promiscuous mode
[   47.720433][ T5936] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.737385][ T5935] veth0_macvtap: entered promiscuous mode
[   47.744086][ T5935] veth1_macvtap: entered promiscuous mode
[   47.762338][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.770240][ T5938] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.783448][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.791441][ T5935] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.794417][ T5935] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.797129][ T5935] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.799810][ T5935] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.804204][ T5936] veth0_vlan: entered promiscuous mode
[   47.816522][ T5936] veth1_vlan: entered promiscuous mode
[   47.847905][ T5937] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.857852][ T5938] veth0_vlan: entered promiscuous mode
[   47.874871][ T5938] veth1_vlan: entered promiscuous mode
[   47.878446][ T5936] veth0_macvtap: entered promiscuous mode
[   47.878506][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.884025][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.892017][ T5936] veth1_macvtap: entered promiscuous mode
[   47.911004][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.913840][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.920983][ T5937] veth0_vlan: entered promiscuous mode
[   47.926092][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.934852][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.938744][ T5936] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.941425][ T5936] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.945443][ T5936] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.948165][ T5936] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.954200][ T5938] veth0_macvtap: entered promiscuous mode
[   47.959354][ T5935] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   47.959699][ T5938] veth1_macvtap: entered promiscuous mode
[   47.966980][ T5937] veth1_vlan: entered promiscuous mode
[   47.990819][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.997634][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.010266][ T5938] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.015317][ T5938] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.018090][ T5938] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.020776][ T5938] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.030549][ T6002] Illegal XDP return value 1073741836 on prog  (id 2) dev syz_tun, expect packet loss!
[   48.034611][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.038917][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.057019][ T5937] veth0_macvtap: entered promiscuous mode
[   48.071331][ T5937] veth1_macvtap: entered promiscuous mode
[   48.071461][ T1190] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.076792][ T1190] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.103038][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.104716][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.105809][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.137012][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.145672][ T5937] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.148297][ T5937] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.151125][ T5937] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.154840][ T5937] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.160067][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.164121][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.204967][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.208199][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.229029][ T6018] netlink: 'syz.3.7': attribute type 10 has an invalid length.
[   48.250891][ T6023] Zero length message leads to an empty skb
[   48.260419][ T6018] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   48.265051][ T1190] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.267765][ T1190] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.370880][ T6034] FAULT_INJECTION: forcing a failure.
[   48.370880][ T6034] name failslab, interval 1, probability 0, space 0, times 1
[   48.384945][ T6034] CPU: 0 UID: 0 PID: 6034 Comm: syz.3.10 Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[   48.384962][ T6034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   48.384968][ T6034] Call Trace:
[   48.384972][ T6034]  <TASK>
[   48.384976][ T6034]  dump_stack_lvl+0x16c/0x1f0
[   48.384996][ T6034]  should_fail_ex+0x512/0x640
[   48.385008][ T6034]  ? fs_reclaim_acquire+0xae/0x150
[   48.385021][ T6034]  ? tomoyo_encode2+0x100/0x3e0
[   48.385032][ T6034]  should_failslab+0xc2/0x120
[   48.385048][ T6034]  __kmalloc_noprof+0xd2/0x510
[   48.385062][ T6034]  ? d_absolute_path+0x136/0x1a0
[   48.385076][ T6034]  tomoyo_encode2+0x100/0x3e0
[   48.385089][ T6034]  tomoyo_encode+0x29/0x50
[   48.385099][ T6034]  tomoyo_realpath_from_path+0x18f/0x6e0
[   48.385115][ T6034]  tomoyo_path_number_perm+0x245/0x580
[   48.385130][ T6034]  ? tomoyo_path_number_perm+0x237/0x580
[   48.385147][ T6034]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   48.385165][ T6034]  ? find_held_lock+0x2b/0x80
[   48.385190][ T6034]  ? find_held_lock+0x2b/0x80
[   48.385201][ T6034]  ? hook_file_ioctl_common+0x145/0x410
[   48.385217][ T6034]  ? __fget_files+0x20e/0x3c0
[   48.385234][ T6034]  security_file_ioctl+0x9b/0x240
[   48.385247][ T6034]  __x64_sys_ioctl+0xb7/0x210
[   48.385260][ T6034]  do_syscall_64+0xcd/0x4c0
[   48.385271][ T6034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.385281][ T6034] RIP: 0033:0x7fdd99b8e969
[   48.385289][ T6034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.385299][ T6034] RSP: 002b:00007fdd979f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   48.385309][ T6034] RAX: ffffffffffffffda RBX: 00007fdd99db5fa0 RCX: 00007fdd99b8e969
[   48.385315][ T6034] RDX: 0000200000000240 RSI: 00000000c0306201 RDI: 0000000000000003
[   48.385321][ T6034] RBP: 00007fdd979f6090 R08: 0000000000000000 R09: 0000000000000000
[   48.385326][ T6034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.385338][ T6034] R13: 0000000000000000 R14: 00007fdd99db5fa0 R15: 00007fffa68c8c38
[   48.385351][ T6034]  </TASK>
[   48.385436][ T6034] ERROR: Out of memory at tomoyo_realpath_from_path.
[   48.431372][ T6040] kernel read not supported for file /policy (pid: 6040 comm: syz.1.11)
[   48.547241][ T6050] program syz.1.15 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   48.666937][ T6070] netlink: 32 bytes leftover after parsing attributes in process `syz.1.21'.
[   48.670598][ T6071] netlink: 32 bytes leftover after parsing attributes in process `syz.1.21'.
[   48.699233][ T6073] FAULT_INJECTION: forcing a failure.
[   48.699233][ T6073] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   48.707751][ T6073] CPU: 3 UID: 0 PID: 6073 Comm: syz.1.22 Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[   48.707774][ T6073] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   48.707784][ T6073] Call Trace:
[   48.707791][ T6073]  <TASK>
[   48.707797][ T6073]  dump_stack_lvl+0x16c/0x1f0
[   48.707830][ T6073]  should_fail_ex+0x512/0x640
[   48.707854][ T6073]  _copy_from_user+0x2e/0xd0
[   48.707874][ T6073]  binder_ioctl+0x57a/0x7300
[   48.707905][ T6073]  ? tomoyo_path_number_perm+0x18d/0x580
[   48.707935][ T6073]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   48.707958][ T6073]  ? __pfx_binder_ioctl+0x10/0x10
[   48.707977][ T6073]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   48.708005][ T6073]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[   48.708024][ T6073]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[   48.708045][ T6073]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   48.708072][ T6073]  ? hook_file_ioctl_common+0x145/0x410
[   48.708102][ T6073]  ? selinux_file_ioctl+0x180/0x270
[   48.708119][ T6073]  ? selinux_file_ioctl+0xb4/0x270
[   48.708137][ T6073]  ? __pfx_binder_ioctl+0x10/0x10
[   48.708158][ T6073]  __x64_sys_ioctl+0x18b/0x210
[   48.708180][ T6073]  do_syscall_64+0xcd/0x4c0
[   48.708197][ T6073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.708214][ T6073] RIP: 0033:0x7fe80d58e969
[   48.708227][ T6073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.708242][ T6073] RSP: 002b:00007fe80e4c9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   48.708259][ T6073] RAX: ffffffffffffffda RBX: 00007fe80d7b5fa0 RCX: 00007fe80d58e969
[   48.708269][ T6073] RDX: 0000200000000240 RSI: 00000000c0306201 RDI: 0000000000000003
[   48.708279][ T6073] RBP: 00007fe80e4c9090 R08: 0000000000000000 R09: 0000000000000000
[   48.708289][ T6073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.708299][ T6073] R13: 0000000000000000 R14: 00007fe80d7b5fa0 R15: 00007ffd74bec868
[   48.708321][ T6073]  </TASK>
[   48.708329][ T6073] binder: 6072:6073 ioctl c0306201 200000000240 returned -14
[   48.864860][ T6077] cdrom: dropping to single frame dma
[   49.018252][ T6099] FAULT_INJECTION: forcing a failure.
[   49.018252][ T6099] name failslab, interval 1, probability 0, space 0, times 0
[   49.024149][ T6099] CPU: 0 UID: 0 PID: 6099 Comm: syz.0.32 Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[   49.024173][ T6099] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   49.024183][ T6099] Call Trace:
[   49.024189][ T6099]  <TASK>
[   49.024196][ T6099]  dump_stack_lvl+0x16c/0x1f0
[   49.024227][ T6099]  should_fail_ex+0x512/0x640
[   49.024245][ T6099]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   49.024269][ T6099]  should_failslab+0xc2/0x120
[   49.024295][ T6099]  __kmalloc_cache_noprof+0x6a/0x3e0
[   49.024316][ T6099]  ? binder_thread_write+0x2cfa/0x4df0
[   49.024340][ T6099]  binder_thread_write+0x2cfa/0x4df0
[   49.024379][ T6099]  ? __pfx_binder_thread_write+0x10/0x10
[   49.024400][ T6099]  ? binder_debug+0xde/0x1a0
[   49.024420][ T6099]  ? binder_debug+0xde/0x1a0
[   49.024435][ T6099]  ? __pfx_binder_debug+0x10/0x10
[   49.024452][ T6099]  ? find_held_lock+0x2b/0x80
[   49.024473][ T6099]  ? __might_fault+0xe3/0x190
[   49.024493][ T6099]  ? __might_fault+0x13b/0x190
[   49.024526][ T6099]  binder_ioctl+0x26a7/0x7300
[   49.024556][ T6099]  ? tomoyo_path_number_perm+0x18d/0x580
[   49.024588][ T6099]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   49.024611][ T6099]  ? __pfx_binder_ioctl+0x10/0x10
[   49.024630][ T6099]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   49.024657][ T6099]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[   49.024676][ T6099]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[   49.024698][ T6099]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   49.024725][ T6099]  ? hook_file_ioctl_common+0x145/0x410
[   49.024755][ T6099]  ? selinux_file_ioctl+0x180/0x270
[   49.024773][ T6099]  ? selinux_file_ioctl+0xb4/0x270
[   49.024792][ T6099]  ? __pfx_binder_ioctl+0x10/0x10
[   49.024813][ T6099]  __x64_sys_ioctl+0x18b/0x210
[   49.024835][ T6099]  do_syscall_64+0xcd/0x4c0
[   49.024853][ T6099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.024869][ T6099] RIP: 0033:0x7f90c2d8e969
[   49.024883][ T6099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.024898][ T6099] RSP: 002b:00007f90c3c77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   49.024914][ T6099] RAX: ffffffffffffffda RBX: 00007f90c2fb5fa0 RCX: 00007f90c2d8e969
[   49.024925][ T6099] RDX: 0000200000000240 RSI: 00000000c0306201 RDI: 0000000000000003
[   49.024935][ T6099] RBP: 00007f90c3c77090 R08: 0000000000000000 R09: 0000000000000000
[   49.024945][ T6099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.024954][ T6099] R13: 0000000000000000 R14: 00007f90c2fb5fa0 R15: 00007fff01b81528
[   49.024977][ T6099]  </TASK>
[   49.099688][ T6106] openvswitch: netlink: Missing key (keys=40, expected=80)
[   49.120382][ T6107] netlink: 'syz.3.31': attribute type 4 has an invalid length.
[   49.136447][ T6107] netlink: 152 bytes leftover after parsing attributes in process `syz.3.31'.
[   49.197915][ T6122] IPv6: NLM_F_CREATE should be specified when creating new route
[   49.270081][ T6119] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6119 comm=syz.3.34
[   49.275625][ T6119] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6119 comm=syz.3.34
[   49.279522][ T6119] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6119 comm=syz.3.34
[   49.304834][ T6136] syz.2.37: attempt to access beyond end of device
[   49.304834][ T6136] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[   49.308936][ T6136] (syz.2.37,6136,2):ocfs2_get_sector:1714 ERROR: status = -5
[   49.311325][ T6136] (syz.2.37,6136,2):ocfs2_sb_probe:753 ERROR: status = -5
[   49.312149][ T5947] Bluetooth: hci1: command tx timeout
[   49.315608][ T6136] (syz.2.37,6136,2):ocfs2_fill_super:989 ERROR: superblock probe failed!
[   49.318270][ T6136] (syz.2.37,6136,2):ocfs2_fill_super:1177 ERROR: status = -5
[   49.359221][ T6139] binder: 6138:6139 ioctl c0306201 200000000080 returned -14
[   49.392405][ T5947] Bluetooth: hci3: command tx timeout
[   49.392744][ T5942] Bluetooth: hci0: command tx timeout
[   49.625177][ T6156] sd 0:0:0:0: PR command failed: 1026
[   49.627389][ T6156] sd 0:0:0:0: Sense Key : Illegal Request [current] 
[   49.630034][ T6156] sd 0:0:0:0: Add. Sense: Invalid command operation code
[   49.671323][ T6164] FAULT_INJECTION: forcing a failure.
[   49.671323][ T6164] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.675811][ T6164] CPU: 2 UID: 0 PID: 6164 Comm: syz.2.42 Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[   49.675826][ T6164] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   49.675833][ T6164] Call Trace:
[   49.675836][ T6164]  <TASK>
[   49.675840][ T6164]  dump_stack_lvl+0x16c/0x1f0
[   49.675861][ T6164]  should_fail_ex+0x512/0x640
[   49.675875][ T6164]  _copy_to_user+0x32/0xd0
[   49.675888][ T6164]  binder_ioctl+0x265e/0x7300
[   49.675906][ T6164]  ? tomoyo_path_number_perm+0x18d/0x580
[   49.675925][ T6164]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   49.675939][ T6164]  ? __pfx_binder_ioctl+0x10/0x10
[   49.675951][ T6164]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   49.675966][ T6164]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[   49.675978][ T6164]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[   49.675991][ T6164]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   49.676007][ T6164]  ? hook_file_ioctl_common+0x145/0x410
[   49.676024][ T6164]  ? selinux_file_ioctl+0x180/0x270
[   49.676034][ T6164]  ? selinux_file_ioctl+0xb4/0x270
[   49.676045][ T6164]  ? __pfx_binder_ioctl+0x10/0x10
[   49.676057][ T6164]  __x64_sys_ioctl+0x18b/0x210
[   49.676070][ T6164]  do_syscall_64+0xcd/0x4c0
[   49.676081][ T6164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.676091][ T6164] RIP: 0033:0x7ff22138e969
[   49.676099][ T6164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.676109][ T6164] RSP: 002b:00007ff222276038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   49.676119][ T6164] RAX: ffffffffffffffda RBX: 00007ff2215b5fa0 RCX: 00007ff22138e969
[   49.676125][ T6164] RDX: 0000200000000240 RSI: 00000000c0306201 RDI: 0000000000000003
[   49.676131][ T6164] RBP: 00007ff222276090 R08: 0000000000000000 R09: 0000000000000000
[   49.676136][ T6164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.676142][ T6164] R13: 0000000000000000 R14: 00007ff2215b5fa0 R15: 00007ffe38c528c8
[   49.676154][ T6164]  </TASK>
[   49.676158][ T6164] binder: 6163:6164 ioctl c0306201 200000000240 returned -14
[   49.797112][ T6166] netlink: 32 bytes leftover after parsing attributes in process `syz.2.43'.
[   49.804683][ T6166] program syz.2.43 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   49.809343][ T6093] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   49.811342][ T6093] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[   49.822803][ T6093] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   49.825114][ T6093] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[   49.835079][ T6093] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   49.836954][ T6093] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[   49.842257][ T1114] ata1.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x0
[   49.844785][ T1114] ata1.00: irq_stat 0x40000000
[   49.846305][ T1114] ata1.00: failed command: ZAC MANAGEMENT OUT
[   49.848231][ T1114] ata1.00: cmd 9f/01:00:00:00:00/00:00:00:00:00/40 tag 5
[   49.848231][ T1114]          res 41/04:00:00:00:00/00:00:00:00:00/40 Emask 0x1 (device error)
[   49.853568][ T1114] ata1.00: status: { DRDY ERR }
[   49.854495][ T6093] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   49.855184][ T1114] ata1.00: error: { ABRT }
[   49.855207][ T1114] ata1.00: device reported invalid CHS sector 0
[   49.857105][ T6093] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[   49.858799][ T6167] =======================================================
[   49.858799][ T6167] WARNING: The mand mount option has been deprecated and
[   49.858799][ T6167]          and is ignored by this kernel. Remove the mand
[   49.858799][ T6167]          option from the mount to silence this warning.
[   49.858799][ T6167] =======================================================
[   49.898528][ T6166] netfs: Couldn't get user pages (rc=-14)
[   49.970994][   T40] kauditd_printk_skb: 145 callbacks suppressed
[   49.971008][   T40] audit: type=1400 audit(1748980887.375:235): avc:  denied  { create } for  pid=6172 comm="syz.3.46" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[   49.978532][ T6173] netlink: 24 bytes leftover after parsing attributes in process `syz.3.46'.
[   49.980534][   T40] audit: type=1400 audit(1748980887.375:236): avc:  denied  { setopt } for  pid=6172 comm="syz.3.46" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[   49.990863][   T40] audit: type=1400 audit(1748980887.375:237): avc:  denied  { write } for  pid=6172 comm="syz.3.46" name="udmabuf" dev="devtmpfs" ino=713 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   50.000192][   T40] audit: type=1400 audit(1748980887.375:238): avc:  denied  { ioctl } for  pid=6172 comm="syz.3.46" path="/dev/udmabuf" dev="devtmpfs" ino=713 ioctlcmd=0x7542 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   50.007982][   T40] audit: type=1400 audit(1748980887.405:239): avc:  denied  { create } for  pid=6176 comm="syz.1.48" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   50.009415][ T6177] netlink: 4 bytes leftover after parsing attributes in process `syz.1.48'.
[   50.014042][   T40] audit: type=1400 audit(1748980887.405:240): avc:  denied  { bind } for  pid=6176 comm="syz.1.48" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   50.043726][ T6177] netlink: 12 bytes leftover after parsing attributes in process `syz.1.48'.
[   50.063742][ T6183] input: syz1 as /devices/virtual/input/input6
[   50.067567][   T40] audit: type=1400 audit(1748980887.475:241): avc:  denied  { read } for  pid=5335 comm="acpid" name="event4" dev="devtmpfs" ino=2836 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   50.074952][   T40] audit: type=1400 audit(1748980887.475:242): avc:  denied  { open } for  pid=5335 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2836 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   50.076490][ T6185] FAULT_INJECTION: forcing a failure.
[   50.076490][ T6185] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.087082][   T40] audit: type=1400 audit(1748980887.475:243): avc:  denied  { ioctl } for  pid=5335 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2836 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   50.093439][ T6185] CPU: 3 UID: 0 PID: 6185 Comm: syz.2.51 Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[   50.093455][ T6185] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.093461][ T6185] Call Trace:
[   50.093465][ T6185]  <TASK>
[   50.093469][ T6185]  dump_stack_lvl+0x16c/0x1f0
[   50.093490][ T6185]  should_fail_ex+0x512/0x640
[   50.093504][ T6185]  _copy_to_user+0x32/0xd0
[   50.093517][ T6185]  binder_ioctl+0x265e/0x7300
[   50.093536][ T6185]  ? tomoyo_path_number_perm+0x18d/0x580
[   50.093555][ T6185]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   50.093569][ T6185]  ? __pfx_binder_ioctl+0x10/0x10
[   50.093589][ T6185]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   50.093605][ T6185]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[   50.093617][ T6185]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[   50.093630][ T6185]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   50.093645][ T6185]  ? hook_file_ioctl_common+0x145/0x410
[   50.093662][ T6185]  ? selinux_file_ioctl+0x180/0x270
[   50.093672][ T6185]  ? selinux_file_ioctl+0xb4/0x270
[   50.093684][ T6185]  ? __pfx_binder_ioctl+0x10/0x10
[   50.093696][ T6185]  __x64_sys_ioctl+0x18b/0x210
[   50.093709][ T6185]  do_syscall_64+0xcd/0x4c0
[   50.093719][ T6185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.093729][ T6185] RIP: 0033:0x7ff22138e969
[   50.093738][ T6185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.093748][ T6185] RSP: 002b:00007ff222276038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   50.093758][ T6185] RAX: ffffffffffffffda RBX: 00007ff2215b5fa0 RCX: 00007ff22138e969
[   50.093764][ T6185] RDX: 0000200000000240 RSI: 00000000c0306201 RDI: 0000000000000003
[   50.093770][ T6185] RBP: 00007ff222276090 R08: 0000000000000000 R09: 0000000000000000
[   50.093776][ T6185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.093782][ T6185] R13: 0000000000000000 R14: 00007ff2215b5fa0 R15: 00007ffe38c528c8
[   50.093794][ T6185]  </TASK>
[   50.093799][ T6185] binder: 6184:6185 ioctl c0306201 200000000240 returned -14
[   50.097389][   T40] audit: type=1400 audit(1748980887.505:244): avc:  denied  { read } for  pid=6182 comm="syz.3.50" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   50.240406][ T6197] netlink: 8 bytes leftover after parsing attributes in process `syz.1.54'.
[   50.337716][ T6209] kvm: emulating exchange as write
[   50.339702][ T6212] usb 2-1: USB disconnect, device number 2
[   50.380346][ T6212] hub 2-0:1.0: USB hub found
[   50.383249][ T6212] hub 2-0:1.0: 6 ports detected
[   50.391947][ T6218] FAULT_INJECTION: forcing a failure.
[   50.391947][ T6218] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.397276][ T6218] CPU: 2 UID: 0 PID: 6218 Comm: syz.2.61 Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[   50.397298][ T6218] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.397311][ T6218] Call Trace:
[   50.397317][ T6218]  <TASK>
[   50.397324][ T6218]  dump_stack_lvl+0x16c/0x1f0
[   50.397352][ T6218]  should_fail_ex+0x512/0x640
[   50.397374][ T6218]  _copy_from_user+0x2e/0xd0
[   50.397393][ T6218]  kstrtouint_from_user+0xd6/0x1d0
[   50.397416][ T6218]  ? __pfx_kstrtouint_from_user+0x10/0x10
[   50.397438][ T6218]  ? __lock_acquire+0xb8a/0x1c90
[   50.397473][ T6218]  proc_fail_nth_write+0x83/0x250
[   50.397496][ T6218]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   50.397524][ T6218]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   50.397544][ T6218]  vfs_write+0x29d/0x1150
[   50.397569][ T6218]  ? __pfx___mutex_lock+0x10/0x10
[   50.397584][ T6218]  ? __pfx_vfs_write+0x10/0x10
[   50.397611][ T6218]  ? __fget_files+0x20e/0x3c0
[   50.397640][ T6218]  ksys_write+0x12a/0x250
[   50.397660][ T6218]  ? __pfx_ksys_write+0x10/0x10
[   50.397681][ T6218]  ? fput+0x70/0xf0
[   50.397699][ T6218]  do_syscall_64+0xcd/0x4c0
[   50.397716][ T6218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.397731][ T6218] RIP: 0033:0x7ff22138d41f
[   50.397744][ T6218] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   50.397758][ T6218] RSP: 002b:00007ff222276030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   50.397772][ T6218] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff22138d41f
[   50.397783][ T6218] RDX: 0000000000000001 RSI: 00007ff2222760a0 RDI: 0000000000000005
[   50.397792][ T6218] RBP: 00007ff222276090 R08: 0000000000000000 R09: 0000000000000000
[   50.397801][ T6218] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   50.397810][ T6218] R13: 0000000000000000 R14: 00007ff2215b5fa0 R15: 00007ffe38c528c8
[   50.397832][ T6218]  </TASK>
[   50.466999][ T6221] SET target dimension over the limit!
[   50.526203][ T6228] syz.2.63: attempt to access beyond end of device
[   50.526203][ T6228] nbd2: rw=0, sector=2, nr_sectors = 2 limit=0
[   50.532595][ T6228] syz.2.63: attempt to access beyond end of device
[   50.532595][ T6228] nbd2: rw=0, sector=16, nr_sectors = 2 limit=0
[   50.551687][   T29] usb 2-1: new high-speed USB device number 3 using ehci-pci
[   50.617009][ T6232] netlink: 28 bytes leftover after parsing attributes in process `syz.2.66'.
[   50.620748][ T6232] netlink: 'syz.2.66': attribute type 7 has an invalid length.
[   50.628077][ T6232] netlink: 'syz.2.66': attribute type 8 has an invalid length.
[   50.633156][ T6232] netlink: 4 bytes leftover after parsing attributes in process `syz.2.66'.
[   50.755849][   T29] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   50.758793][   T29] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   50.761372][   T29] usb 2-1: Product: QEMU USB Tablet
[   50.764051][   T29] usb 2-1: Manufacturer: QEMU
[   50.765665][   T29] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   50.843859][   T29] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0002/input/input7
[   50.957471][   T29] hid-generic 0003:0627:0001.0002: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   51.302804][ T6239] netlink: 'syz.3.67': attribute type 5 has an invalid length.
[   51.305287][ T6239] netlink: 'syz.3.67': attribute type 7 has an invalid length.
[   51.312826][ T6239] : entered promiscuous mode
[   51.372363][ T6241] ISOFS: Unable to identify CD-ROM format.
[   51.439992][ T6249] netlink: 'syz.3.72': attribute type 1 has an invalid length.
[   51.489723][ T6257] netlink: 'syz.1.74': attribute type 2 has an invalid length.
[   51.493581][ T6257] nbd: must specify a device to reconfigure
[   51.509243][ T6249] veth3: entered promiscuous mode
[   51.541108][ T6264] vlan2: entered allmulticast mode
[   51.543203][ T6264] netdevsim netdevsim3 netdevsim3: entered allmulticast mode
[   51.595649][  T839] IPVS: starting estimator thread 0...
[   51.711735][ T6270] IPVS: using max 46 ests per chain, 110400 per kthread
[   52.519772][ T6311] IPv6: Can't replace route, no match found
[   52.524911][ T6311] tmpfs: Bad value for 'mpol'
[   52.549593][ T6317] warning: `syz.0.90' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   52.632402][ T5765] IPVS: starting estimator thread 0...
[   52.653557][ T6335] 
€Â: renamed from bridge_slave_0 (while UP)
[   52.732117][ T6329] IPVS: using max 46 ests per chain, 110400 per kthread
[   52.791330][ T6342] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.794766][ T6342] bridge0: port 1(
€Â) entered disabled state
[   52.847249][ T6342] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   52.855055][ T6342] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   52.914149][ T6342] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   52.919337][ T6342] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   52.927157][ T6342] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   52.930646][ T6342] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   52.949565][ T6341] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   53.023977][ T1114] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[   53.026893][ T1114] ata1: failed to read log page 10h (errno=-5)
[   53.029507][ T1114] ata1.00: exception Emask 0x1 SAct 0x40000 SErr 0x0 action 0x0
[   53.033364][ T1114] ata1.00: irq_stat 0x40000000
[   53.035271][ T1114] ata1.00: failed command: WRITE FPDMA QUEUED
[   53.037842][ T1114] ata1.00: cmd 61/b8:90:b6:04:10/00:00:00:00:00/40 tag 18 ncq dma 94208 out
[   53.037842][ T1114]          res 50/00:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   53.045087][ T1114] ata1.00: status: { DRDY }
[   53.049736][ T1114] ata1.00: configured for UDMA/100
[   53.053814][ T1114] ata1: EH complete
[   53.062904][ T6350] mmap: syz.1.100 (6350) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   53.233589][ T6359] /dev/sr0: Can't open blockdev
[   53.451601][   T10] usb 6-1: new full-speed USB device number 2 using dummy_hcd
[   53.490941][ T6392] tmpfs: User quota inode hardlimit too large.
[   53.616288][   T10] usb 6-1: config 1 interface 0 altsetting 253 endpoint 0x1 has invalid maxpacket 1023, setting to 64
[   53.631058][   T10] usb 6-1: config 1 interface 0 has no altsetting 0
[   53.636206][   T10] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   53.639547][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   53.642844][   T10] usb 6-1: Product: syz
[   53.644416][   T10] usb 6-1: Manufacturer: syz
[   53.646304][   T10] usb 6-1: SerialNumber: syz
[   53.652166][ T6364] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   53.865475][   T10] usb 6-1: USB disconnect, device number 2
[   54.015521][ T6431] __nla_validate_parse: 7 callbacks suppressed
[   54.015567][ T6431] netlink: 12 bytes leftover after parsing attributes in process `syz.2.123'.
[   54.020929][ T6431] netlink: 31 bytes leftover after parsing attributes in process `syz.2.123'.
[   54.024995][ T6431] netlink: 'syz.2.123': attribute type 3 has an invalid length.
[   54.027695][ T6431] netlink: 'syz.2.123': attribute type 2 has an invalid length.
[   54.030099][ T6431] netlink: 31 bytes leftover after parsing attributes in process `syz.2.123'.
[   54.046961][ T6435] netlink: 4 bytes leftover after parsing attributes in process `syz.3.125'.
[   54.061636][ T6437] netlink: 'syz.2.126': attribute type 1 has an invalid length.
[   54.117526][ T6441] netlink: 28 bytes leftover after parsing attributes in process `syz.3.127'.
[   54.120460][ T6441] netlink: 12 bytes leftover after parsing attributes in process `syz.3.127'.
[   54.160982][ T6443] loop4: detected capacity change from 0 to 524255232
[   54.185808][ T6445] can0: slcan on ptm0.
[   54.211674][ T6443] Invalid logical block size (4)
[   54.262852][ T6444] can0 (unregistered): slcan off ptm0.
[   54.426723][ T6459] Cannot find del_set index 1 as target
[   54.492577][   T29] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   54.511472][ T6474] netlink: 76 bytes leftover after parsing attributes in process `syz.0.138'.
[   54.631692][   T29] usb 7-1: device descriptor read/64, error -71
[   54.687921][ T6488] 9pnet_fd: Insufficient options for proto=fd
[   54.881648][ T5981] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   54.881697][   T29] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   55.021688][   T29] usb 7-1: device descriptor read/64, error -71
[   55.041604][ T5981] usb 6-1: Using ep0 maxpacket: 8
[   55.044530][ T5981] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[   55.046952][ T5981] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   55.050535][ T5981] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   55.054202][ T5981] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   55.057673][ T5981] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   55.062512][ T5981] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[   55.064853][ T5981] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   55.068237][ T5981] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   55.071995][ T5981] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   55.075399][ T5981] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   55.079563][ T5981] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[   55.081950][ T5981] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   55.085490][ T5981] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   55.089130][ T5981] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   55.092577][ T5981] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   55.098952][ T5981] usb 6-1: string descriptor 0 read error: -22
[   55.100949][ T5981] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   55.103843][ T5981] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   55.114368][ T5981] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   55.131950][   T29] usb usb7-port1: attempt power cycle
[   55.313617][  T840] usb 6-1: USB disconnect, device number 3
[   55.418477][   T40] kauditd_printk_skb: 77 callbacks suppressed
[   55.418493][   T40] audit: type=1400 audit(2000000005.760:322): avc:  denied  { listen } for  pid=6493 comm="syz.0.145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[   55.455010][ T6496] netlink: 164 bytes leftover after parsing attributes in process `syz.0.146'.
[   55.458763][ T6496] netlink: 164 bytes leftover after parsing attributes in process `syz.0.146'.
[   55.462253][ T6496] netlink: 60 bytes leftover after parsing attributes in process `syz.0.146'.
[   55.482061][   T29] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   55.510578][   T29] usb 7-1: device descriptor read/8, error -71
[   55.540359][ T6498] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[   55.595022][ T6506] autofs: Bad value for 'fd'
[   55.600227][   T40] audit: type=1400 audit(2000000005.940:323): avc:  denied  { append } for  pid=6504 comm="syz.0.148" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   55.611627][   T40] audit: type=1400 audit(2000000005.950:324): avc:  denied  { watch watch_reads } for  pid=6505 comm="syz.3.149" path="/53/file0" dev="tmpfs" ino=296 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   55.741971][   T40] audit: type=1400 audit(2000000006.090:325): avc:  denied  { unmount } for  pid=5938 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   55.755912][ T6522] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22
[   55.760337][   T40] audit: type=1400 audit(2000000006.100:326): avc:  denied  { mount } for  pid=6521 comm="syz.0.151" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[   55.786612][   T29] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   55.805325][   T40] audit: type=1400 audit(2000000006.150:327): avc:  denied  { watch } for  pid=6529 comm="syz.3.153" path="/55/file0" dev="tmpfs" ino=308 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   55.805353][   T40] audit: type=1400 audit(2000000006.150:328): avc:  denied  { watch_sb } for  pid=6529 comm="syz.3.153" path="/55/file0" dev="tmpfs" ino=308 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   55.820324][   T29] usb 7-1: device descriptor read/8, error -71
[   55.832688][   T40] audit: type=1400 audit(2000000006.180:329): avc:  denied  { read } for  pid=6527 comm="syz.0.152" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   55.849313][   T40] audit: type=1400 audit(2000000006.180:330): avc:  denied  { open } for  pid=6527 comm="syz.0.152" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   55.857947][   T40] audit: type=1400 audit(2000000006.180:331): avc:  denied  { ioctl } for  pid=6527 comm="syz.0.152" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x9379 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   55.862249][ T6533] xt_hashlimit: size too large, truncated to 1048576
[   55.871028][ T6535] program syz.0.155 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   55.932114][   T29] usb usb7-port1: unable to enumerate USB device
[   55.949640][ T6543] overlayfs: missing 'workdir'
[   55.953548][ T6543] overlayfs: missing 'workdir'
[   55.958623][ T6543] overlayfs: missing 'workdir'
[   55.965167][ T6543] overlayfs: missing 'workdir'
[   55.967338][ T6543] overlayfs: missing 'workdir'
[   55.969777][ T6543] overlayfs: missing 'workdir'
[   55.982450][ T6543] overlayfs: missing 'workdir'
[   55.982529][ T6547] capability: warning: `syz.3.158' uses deprecated v2 capabilities in a way that may be insecure
[   55.987825][ T6543] overlayfs: missing 'workdir'
[   55.989722][ T6543] overlayfs: missing 'workdir'
[   55.990226][ T6543] overlayfs: missing 'workdir'
[   55.992532][ T6543] overlayfs: missing 'workdir'
[   55.993013][ T6543] overlayfs: missing 'workdir'
[   55.993565][ T6543] overlayfs: missing 'workdir'
[   55.994121][ T6543] overlayfs: missing 'workdir'
[   56.004725][ T6543] overlayfs: missing 'workdir'
[   56.006626][ T6543] overlayfs: missing 'workdir'
[   56.009270][ T6543] overlayfs: missing 'workdir'
[   56.012335][ T6543] overlayfs: missing 'workdir'
[   56.015225][ T6543] overlayfs: missing 'workdir'
[   56.017756][ T6543] overlayfs: missing 'workdir'
[   56.019605][ T6543] overlayfs: missing 'workdir'
[   56.021462][ T6543] overlayfs: missing 'workdir'
[   56.023736][ T6543] overlayfs: missing 'workdir'
[   56.025610][ T6543] overlayfs: missing 'workdir'
[   56.028828][ T6543] overlayfs: missing 'workdir'
[   56.030702][ T6543] overlayfs: missing 'workdir'
[   56.032735][ T6543] overlayfs: missing 'workdir'
[   56.034666][ T6543] overlayfs: missing 'workdir'
[   56.036568][ T6543] overlayfs: missing 'workdir'
[   56.038513][ T6543] overlayfs: missing 'workdir'
[   56.040442][ T6543] overlayfs: missing 'workdir'
[   56.043157][ T6543] overlayfs: missing 'workdir'
[   56.045652][ T6543] overlayfs: missing 'workdir'
[   56.077969][ T6551] binder: 6550:6551 ioctl 942e 0 returned -22
[   56.098276][ T6553] sctp: failed to load transform for md5: -2
[   56.473059][ T6600] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   56.860602][ T6613] netlink: 'syz.0.179': attribute type 1 has an invalid length.
[   56.863595][ T6613] NCSI netlink: No device for ifindex 0
[   56.910686][ T6624] netlink: 'syz.3.182': attribute type 5 has an invalid length.
[   56.952664][ T6626] usb usb9: usbfs: process 6626 (syz.3.183) did not claim interface 0 before use
[   57.038983][ T6632] process 'syz.3.185' launched './file0' with NULL argv: empty string added
[   57.086078][ T6629] exFAT-fs (sr0): invalid boot record signature
[   57.088350][ T6629] exFAT-fs (sr0): failed to read boot sector
[   57.090352][ T6629] exFAT-fs (sr0): failed to recognize exfat type
[   57.336837][ T6662] program syz.2.195 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   57.345330][ T6662] program syz.2.195 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   57.349085][ T6672] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=6672 comm=syz.3.197
[   57.574049][ T6695] veth1_macvtap: left promiscuous mode
[   57.575862][ T6695] macsec0: entered promiscuous mode
[   57.577570][ T6695] macsec0: entered allmulticast mode
[   57.655877][ T6696] veth1_macvtap: entered promiscuous mode
[   57.657845][ T6696] veth1_macvtap: entered allmulticast mode
[   57.659951][ T6696] macsec0: left promiscuous mode
[   57.661777][ T6696] macsec0: left allmulticast mode
[   57.663385][ T6696] veth1_macvtap: left allmulticast mode
[   58.065526][ T6710] tmpfs: Bad value for 'mode'
[   58.224244][ T6718] netfs: Couldn't get user pages (rc=-14)
[   58.429130][ T6738] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   58.513418][ T6748] affs: No valid root block on device nullb0
[   58.756082][ T6786] IPVS: length: 184 != 24
[   58.898969][ T6806] netlink: 'syz.2.242': attribute type 1 has an invalid length.
[   58.902354][ T6806] overlayfs: missing 'lowerdir'
[   58.948475][ T6809] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   59.089542][ T6820] Bluetooth: hci4: Frame reassembly failed (-84)
[   59.094138][ T1146] Bluetooth: hci4: Frame reassembly failed (-84)
[   59.374397][ T6822] fuse: Bad value for 'user_id'
[   59.376294][ T6822] fuse: Bad value for 'user_id'
[   59.378189][ T6822] fuse: Bad value for 'user_id'
[   59.379863][ T6822] fuse: Bad value for 'user_id'
[   59.381908][ T6822] fuse: Bad value for 'user_id'
[   59.383619][ T6822] fuse: Bad value for 'user_id'
[   59.383775][ T6822] fuse: Bad value for 'user_id'
[   59.383783][ T6822] fuse: Bad value for 'user_id'
[   59.383927][ T6822] fuse: Bad value for 'user_id'
[   59.383934][ T6822] fuse: Bad value for 'user_id'
[   59.384059][ T6822] fuse: Bad value for 'user_id'
[   59.384066][ T6822] fuse: Bad value for 'user_id'
[   59.384217][ T6822] fuse: Bad value for 'user_id'
[   59.384223][ T6822] fuse: Bad value for 'user_id'
[   59.384351][ T6822] fuse: Bad value for 'user_id'
[   59.384358][ T6822] fuse: Bad value for 'user_id'
[   59.384542][ T6822] fuse: Bad value for 'user_id'
[   59.384562][ T6822] fuse: Bad value for 'user_id'
[   59.384882][ T6822] fuse: Bad value for 'user_id'
[   59.409079][ T6822] fuse: Bad value for 'user_id'
[   59.442640][ T6827] openvswitch: netlink: VXLAN extension message has 9 unknown bytes.
[   59.463267][ T6828] ALSA: mixer_oss: invalid OSS volume '¢'
[   59.476323][ T6827] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   59.484484][ T6827] __nla_validate_parse: 10 callbacks suppressed
[   59.484494][ T6827] netlink: 4 bytes leftover after parsing attributes in process `syz.0.248'.
[   59.537431][ T6836] usb usb8: usbfs: process 6836 (syz.3.251) did not claim interface 0 before use
[   59.546716][ T6836] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[   59.579337][ T6840] fuse: Bad value for 'fd'
[   59.584050][ T6841] input: syz0 as /devices/virtual/input/input9
[   59.596156][ T6841] No control pipe specified
[   59.624749][ T6846] 9pnet: Unknown protocol version 9p20\++}
[   59.627503][ T6846] netlink: 8 bytes leftover after parsing attributes in process `syz.1.255'.
[   59.630492][ T6849] netlink: 16 bytes leftover after parsing attributes in process `syz.0.254'.
[   59.630677][ T6846] openvswitch: netlink: nsh attr 0 has unexpected len 4 expected 0
[   59.636412][ T6846] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   59.722995][ T6859] netlink: 24 bytes leftover after parsing attributes in process `syz.0.259'.
[   59.749712][ T6853] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[   59.856550][ T6871] ieee802154 phy0 wpan0: encryption failed: -22
[   59.860028][ T6871] batadv0: entered promiscuous mode
[   59.863643][ T6871] batadv0: entered allmulticast mode
[   59.866517][ T6871] 8021q: adding VLAN 0 to HW filter on device batadv0
[   59.870554][ T6874] ieee802154 phy0 wpan0: encryption failed: -22
[   59.900446][ T6877] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[   59.902870][ T6877] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   59.907675][ T6877] vhci_hcd vhci_hcd.0: Device attached
[   59.919788][ T6878] vhci_hcd: connection closed
[   59.921358][ T1146] vhci_hcd: stop threads
[   59.924903][ T1146] vhci_hcd: release socket
[   59.926483][ T1146] vhci_hcd: disconnect device
[   59.956859][ T6884] netlink: 64 bytes leftover after parsing attributes in process `syz.1.268'.
[   60.053096][ T6893] macvlan0: entered promiscuous mode
[   60.055415][ T6893] macvlan0: entered allmulticast mode
[   60.057620][ T6893] veth1_vlan: entered allmulticast mode
[   60.089919][ T6895] sctp: [Deprecated]: syz.1.272 (pid 6895) Use of int in maxseg socket option.
[   60.089919][ T6895] Use struct sctp_assoc_value instead
[   60.421797][    T9] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   60.490657][   T40] kauditd_printk_skb: 66 callbacks suppressed
[   60.490673][   T40] audit: type=1400 audit(2000000010.830:398): avc:  denied  { mount } for  pid=6906 comm="syz.0.276" name="/" dev="hugetlbfs" ino=12016 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[   60.583506][    T9] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   60.588118][    T9] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   60.592649][    T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   60.596412][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   60.604713][ T6902] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   60.614241][    T9] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[   60.736074][   T40] audit: type=1400 audit(2000000011.080:399): avc:  denied  { bind } for  pid=6916 comm="syz.0.281" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   60.765371][ T6922] ip6t_REJECT: ECHOREPLY is not supported
[   60.797740][ T6924] netlink: 16 bytes leftover after parsing attributes in process `syz.0.283'.
[   60.807782][   T40] audit: type=1400 audit(2000000011.150:400): avc:  denied  { mount } for  pid=6923 comm="syz.0.283" name="/" dev="configfs" ino=1066 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   60.817220][   T40] audit: type=1400 audit(2000000011.160:401): avc:  denied  { search } for  pid=6923 comm="syz.0.283" name="/" dev="configfs" ino=1066 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   60.826131][  T840] usb 6-1: USB disconnect, device number 4
[   60.874990][   T40] audit: type=1400 audit(2000000011.220:402): avc:  denied  { search } for  pid=6923 comm="syz.0.283" name="/" dev="configfs" ino=1066 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   60.891093][   T40] audit: type=1400 audit(2000000011.230:403): avc:  denied  { search } for  pid=6923 comm="syz.0.283" name="/" dev="configfs" ino=1066 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   61.152249][ T5947] Bluetooth: hci4: command 0x1003 tx timeout
[   61.154729][ T5942] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   61.198885][   T40] audit: type=1400 audit(2000000011.540:404): avc:  denied  { getopt } for  pid=6927 comm="syz.2.284" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   61.245798][ T6930] vxcan1 speed is unknown, defaulting to 1000
[   61.250790][ T6930] vxcan1 speed is unknown, defaulting to 1000
[   61.257122][ T6930] vxcan1 speed is unknown, defaulting to 1000
[   61.303247][ T6931] syz.2.285: attempt to access beyond end of device
[   61.303247][ T6931] nbd2: rw=0, sector=6, nr_sectors = 2 limit=0
[   61.309001][ T6931] ADFS-fs (nbd2): error: unable to read block 3, try 0
[   61.319382][ T6932] syz.2.285: attempt to access beyond end of device
[   61.319382][ T6932] nbd2: rw=0, sector=6, nr_sectors = 2 limit=0
[   61.329106][ T6932] ADFS-fs (nbd2): error: unable to read block 3, try 0
[   61.343661][ T6930] infiniband syz0: set active
[   61.346231][ T5981] vxcan1 speed is unknown, defaulting to 1000
[   61.348389][ T6930] infiniband syz0: added vxcan1
[   61.373748][ T6930] RDS/IB: syz0: added
[   61.376140][ T6930] smc: adding ib device syz0 with port count 1
[   61.378806][ T6930] smc:    ib device syz0 port 1 has pnetid 
[   61.382662][ T6298] vxcan1 speed is unknown, defaulting to 1000
[   61.385212][ T6930] vxcan1 speed is unknown, defaulting to 1000
[   61.468077][ T6930] vxcan1 speed is unknown, defaulting to 1000
[   61.558018][   T40] audit: type=1400 audit(2000000011.900:405): avc:  denied  { create } for  pid=6934 comm="syz.0.286" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   61.608424][ T6930] vxcan1 speed is unknown, defaulting to 1000
[   61.660818][ T6951] netlink: 8 bytes leftover after parsing attributes in process `syz.1.291'.
[   61.663763][ T6951] netlink: 8 bytes leftover after parsing attributes in process `syz.1.291'.
[   61.797302][ T6930] vxcan1 speed is unknown, defaulting to 1000
[   61.837538][   T40] audit: type=1400 audit(2000000012.180:406): avc:  denied  { connect } for  pid=6965 comm="syz.1.295" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   61.955539][ T6977] futex_wake_op: syz.1.298 tries to shift op by 32; fix this program
[   61.992262][ T6979] netlink: 8 bytes leftover after parsing attributes in process `syz.2.300'.
[   61.998173][ T6979] netlink: 8 bytes leftover after parsing attributes in process `syz.2.300'.
[   62.003019][ T6979] lo speed is unknown, defaulting to 1000
[   62.005246][ T6979] lo speed is unknown, defaulting to 1000
[   62.007735][ T6979] lo speed is unknown, defaulting to 1000
[   62.011672][  T840] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   62.012426][ T6979] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   62.020583][ T6979] infiniband s: RDMA CMA: cma_listen_on_dev, error -98
[   62.034091][ T6979] lo speed is unknown, defaulting to 1000
[   62.041229][ T6979] lo speed is unknown, defaulting to 1000
[   62.043874][ T6979] lo speed is unknown, defaulting to 1000
[   62.046422][ T6979] lo speed is unknown, defaulting to 1000
[   62.066771][   T40] audit: type=1400 audit(2000000012.410:407): avc:  denied  { map } for  pid=6987 comm="syz.1.303" path="/73" dev="tmpfs" ino=406 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   62.172185][  T840] usb 5-1: Using ep0 maxpacket: 8
[   62.176718][  T840] usb 5-1: config 179 has an invalid descriptor of length 52, skipping remainder of the config
[   62.181050][  T840] usb 5-1: config 179 has 0 interfaces, different from the descriptor's value: 1
[   62.187051][  T840] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[   62.190374][ T6990] Bluetooth: MGMT ver 1.23
[   62.190867][  T840] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.409577][ T6968] netlink: 'syz.0.296': attribute type 30 has an invalid length.
[   62.416107][ T6968] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0)
[   62.418398][ T6998] overlayfs: missing 'lowerdir'
[   62.419871][ T6968] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255
[   62.493527][ T6968] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   62.499196][ T6968] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   62.504776][ T6968] bond0 (unregistering): Released all slaves
[   62.569648][  T840] usb 5-1: USB disconnect, device number 2
[   63.314210][ T7006] syz.0.311: attempt to access beyond end of device
[   63.314210][ T7006] loop0: rw=4096, sector=0, nr_sectors = 1 limit=0
[   63.321505][ T7006] XFS (loop0): SB validate failed with error -5.
[   63.613076][ T7018] syz.2.314 uses obsolete (PF_INET,SOCK_PACKET)
[   63.712850][ T7023] netlink: 'syz.0.316': attribute type 1 has an invalid length.
[   64.053569][ T7060] overlayfs: unescaped trailing colons in lowerdir mount option.
[   64.293068][ T7065] overlay: ./file0 is not a directory
[   64.522540][   T52] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   64.671588][   T52] usb 7-1: Using ep0 maxpacket: 8
[   64.677447][   T52] usb 7-1: unable to get BOS descriptor or descriptor too short
[   64.680765][   T52] usb 7-1: unable to read config index 0 descriptor/start: -71
[   64.683776][   T52] usb 7-1: can't read configurations, error -71
[   65.088196][ T7073] syz.3.332 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   65.236140][ T7085] capability: warning: `syz.0.334' uses 32-bit capabilities (legacy support in use)
[   65.396899][ T7113] __nla_validate_parse: 5 callbacks suppressed
[   65.396911][ T7113] netlink: 8 bytes leftover after parsing attributes in process `syz.3.343'.
[   65.405993][ T7113] input: syz0 as /devices/virtual/input/input10
[   65.423148][ T7100] netlink: 64 bytes leftover after parsing attributes in process `syz.2.341'.
[   65.438979][ T7103] 9pnet: Could not find request transport: 0xffffffffffffffff
[   65.499805][ T7128] netlink: 256 bytes leftover after parsing attributes in process `syz.3.346'.
[   65.504266][ T7128] unsupported nlmsg_type 40
[   65.550033][ T7136] netlink: 12 bytes leftover after parsing attributes in process `syz.3.348'.
[   65.553637][ T7136] netlink: 12 bytes leftover after parsing attributes in process `syz.3.348'.
[   65.598588][   T40] kauditd_printk_skb: 18 callbacks suppressed
[   65.598599][   T40] audit: type=1400 audit(2000000015.940:426): avc:  denied  { append } for  pid=7142 comm="syz.2.350" name="pmem0" dev="devtmpfs" ino=710 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   65.935006][ T7169] kvm: requested 6704 ns i8254 timer period limited to 200000 ns
[   66.124148][   T29] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   66.153717][ T7177] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   66.157662][ T7177] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[   66.163359][ T7177] overlayfs: missing 'lowerdir'
[   66.167497][ T7177] netlink: 40 bytes leftover after parsing attributes in process `syz.2.363'.
[   66.207088][ T7180] 9pnet: Unknown protocol version 9p200
[   66.215694][   T40] audit: type=1400 audit(2000000016.560:427): avc:  denied  { map } for  pid=7179 comm="syz.2.364" path="socket:[14753]" dev="sockfs" ino=14753 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   66.286693][   T29] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   66.289666][   T29] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   66.292958][   T29] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   66.298496][   T29] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[   66.301397][   T29] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[   66.305574][   T29] usb 5-1: Product: syz
[   66.306950][   T29] usb 5-1: Manufacturer: syz
[   66.308454][   T29] usb 5-1: SerialNumber: syz
[   66.520954][   T29] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 3 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   66.720141][   T40] audit: type=1400 audit(2000000017.060:428): avc:  denied  { read write } for  pid=7166 comm="syz.0.359" name="lp0" dev="devtmpfs" ino=2917 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[   66.730756][   T29] usb 5-1: USB disconnect, device number 3
[   66.742078][   T29] usblp0: removed
[   66.745614][   T40] audit: type=1400 audit(2000000017.060:429): avc:  denied  { open } for  pid=7166 comm="syz.0.359" path="/dev/usb/lp0" dev="devtmpfs" ino=2917 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[   66.873165][ T7189] libceph: resolve '40' (ret=-3): failed
[   66.885583][   T40] audit: type=1400 audit(2000000017.230:430): avc:  denied  { associate } for  pid=7188 comm="syz.3.368" name="devices.list" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   67.008338][ T7186] syz.2.367 (7186): drop_caches: 2
[   67.050142][   T40] audit: type=1400 audit(2000000017.390:431): avc:  denied  { setopt } for  pid=7190 comm="syz.2.370" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   67.059631][ T7190] delete_channel: no stack
[   67.576432][ T7211] netlink: 'syz.3.376': attribute type 1 has an invalid length.
[   67.579302][ T7211] netlink: 'syz.3.376': attribute type 2 has an invalid length.
[   67.751053][ T7222] dns_resolver: Unsupported server list version (0)
[   67.845900][ T7234] IPVS: length: 4096 != 8
[   67.848696][ T7234] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   67.878268][ T7237] bpf: Bad value for 'uid'
[   67.941636][ T7232] netlink: 12 bytes leftover after parsing attributes in process `syz.0.382'.
[   67.947496][ T7240] SELinux:  policydb magic number 0x4b07fa81 does not match expected magic number 0xf97cff8c
[   67.952105][   T40] audit: type=1400 audit(2000000018.290:432): avc:  denied  { load_policy } for  pid=7239 comm="syz.2.385" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   67.954324][ T7240] SELinux: failed to load policy
[   67.959838][   T40] audit: type=1400 audit(2000000018.290:433): avc:  denied  { ioctl } for  pid=7231 comm="syz.0.382" path="socket:[15504]" dev="sockfs" ino=15504 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   67.999383][   T40] audit: type=1400 audit(2000000018.340:434): avc:  denied  { write } for  pid=7241 comm="syz.0.386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   68.109275][ T7256] dlm: plock device version mismatch: kernel (1.2.0), user (4207687471.1574799195.3139252685)
[   68.202958][ T7258] : entered promiscuous mode
[   68.274726][   T60] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[   68.426413][   T60] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   68.430227][   T60] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   68.434242][   T60] usb 7-1: Product: syz
[   68.435961][   T60] usb 7-1: Manufacturer: syz
[   68.437819][   T60] usb 7-1: SerialNumber: syz
[   68.449170][   T60] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   68.477671][   T40] audit: type=1400 audit(2000000018.820:435): avc:  denied  { firmware_load } for  pid=6255 comm="kworker/3:3" path="/lib/firmware/ath9k_htc/htc_9271-1.4.0.fw" dev="sda1" ino=313 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[   68.489347][ T6255] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   68.802273][   T10] usb 7-1: USB disconnect, device number 8
[   69.347930][ T7268] netlink: 'syz.2.394': attribute type 1 has an invalid length.
[   69.352489][ T7268] fuse: Unknown parameter '0x0000000000000003Ù©š­ººŒOÀžÄÜ0jÁçz¯ðÍãcØ"Xž¡4´ËO{â¥ñ·Öbbž'
[   69.387959][ T7271] fuseblk: Bad value for 'max_read'
[   69.553249][ T6255] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[   69.556484][ T6255] ath9k_htc: Failed to initialize the device
[   69.559295][   T10] usb 7-1: ath9k_htc: USB layer deinitialized
[   69.561653][   T60] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[   69.573536][ T7280] cgroup: No subsys list or none specified
[   69.701675][   T60] usb 5-1: device descriptor read/64, error -71
[   69.961653][   T60] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[   70.091738][   T60] usb 5-1: device descriptor read/64, error -71
[   70.212276][   T60] usb usb5-port1: attempt power cycle
[   70.521475][ T7288] cgroup: Name too long
[   70.551677][   T60] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[   70.572217][   T60] usb 5-1: device descriptor read/8, error -71
[   70.811614][   T60] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[   70.832079][   T60] usb 5-1: device descriptor read/8, error -71
[   70.952091][   T60] usb usb5-port1: unable to enumerate USB device
[   71.043425][ T7292] ubi31: attaching mtd0
[   71.046993][ T7292] ubi31: scanning is finished
[   71.048505][ T7292] ubi31: empty MTD device detected
[   71.074868][ T1425] ieee802154 phy0 wpan0: encryption failed: -22
[   71.077080][ T1425] ieee802154 phy1 wpan1: encryption failed: -22
[   71.113080][ T7293] netlink: 176 bytes leftover after parsing attributes in process `syz.3.401'.
[   71.116978][ T7293] ip6gretap0: entered promiscuous mode
[   71.118963][ T7292] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[   71.119666][ T7293] netlink: 176 bytes leftover after parsing attributes in process `syz.3.401'.
[   71.122041][ T7292] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[   71.127896][ T7292] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[   71.130129][ T7292] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[   71.132493][ T7292] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[   71.134656][ T7292] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[   71.137141][ T7292] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3313765601
[   71.140242][ T7292] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[   71.144085][ T7294] ubi31: background thread "ubi_bgt31d" started, PID 7294
[   71.773310][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   71.833293][   T40] kauditd_printk_skb: 2 callbacks suppressed
[   71.833307][   T40] audit: type=1400 audit(2000000022.180:438): avc:  denied  { bind } for  pid=7334 comm="syz.3.408" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   71.833709][ T7335] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[   71.887406][ T7337] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   71.896639][ T7337] netlink: 4 bytes leftover after parsing attributes in process `syz.3.409'.
[   71.900351][ T7337] openvswitch: netlink: Flow key attr not present in new flow.
[   72.364349][   T40] audit: type=1400 audit(2000000022.710:439): avc:  denied  { module_request } for  pid=7342 comm="syz.0.412" kmod="netdev-fscrypt" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   72.506029][ T7358] netlink: 52 bytes leftover after parsing attributes in process `syz.2.416'.
[   72.549079][   T40] audit: type=1400 audit(2000000022.890:440): avc:  denied  { read } for  pid=7360 comm="syz.2.417" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   72.552857][ T7361] netlink: 14212 bytes leftover after parsing attributes in process `syz.2.417'.
[   72.620886][   T40] audit: type=1400 audit(2000000022.960:441): avc:  denied  { listen } for  pid=7364 comm="syz.0.419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   72.657713][   T40] audit: type=1400 audit(2000000023.000:442): avc:  denied  { accept } for  pid=7364 comm="syz.0.419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[   72.666603][   T40] audit: type=1400 audit(2000000023.010:443): avc:  denied  { create } for  pid=7364 comm="syz.0.419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[   72.705339][   T40] audit: type=1400 audit(2000000023.050:444): avc:  denied  { getopt } for  pid=7378 comm="syz.0.422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   72.710739][ T7379] netlink: 28 bytes leftover after parsing attributes in process `syz.0.422'.
[   72.723665][ T7381] netlink: 'syz.2.423': attribute type 39 has an invalid length.
[   72.757105][ T7383] sp0: Synchronizing with TNC
[   72.763547][ T7383] trusted_key: encrypted_key: keyword 'ÿew' not recognized
[   72.767895][ T7383] netlink: 'syz.0.424': attribute type 4 has an invalid length.
[   72.944725][   T40] audit: type=1400 audit(2000000023.290:445): avc:  denied  { read } for  pid=7387 comm="syz.0.426" path="socket:[15742]" dev="sockfs" ino=15742 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   72.996081][   T40] audit: type=1400 audit(2000000023.340:446): avc:  denied  { mounton } for  pid=7387 comm="syz.0.426" path="/proc/361/task" dev="proc" ino=15738 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[   73.072971][   T40] audit: type=1400 audit(2000000023.420:447): avc:  denied  { setopt } for  pid=7393 comm="syz.2.428" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   73.339994][ T7416] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=7416 comm=syz.2.435
[   73.372837][ T7418] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.436'.
[   73.376331][ T7418] netlink: zone id is out of range
[   73.378291][ T7418] netlink: get zone limit has 8 unknown bytes
[   73.409871][ T7420] netlink: 12 bytes leftover after parsing attributes in process `syz.2.437'.
[   73.417241][ T7420] netlink: 'syz.2.437': attribute type 2 has an invalid length.
[   73.645250][ T7429] netlink: 28 bytes leftover after parsing attributes in process `syz.2.441'.
[   73.674197][ T7431] SET target dimension over the limit!
[   74.798040][ T7460] netlink: 'syz.2.451': attribute type 21 has an invalid length.
[   74.800455][ T7460] netlink: 156 bytes leftover after parsing attributes in process `syz.2.451'.
[   75.006626][ T7469] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.009235][ T7469] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.104878][ T7474] netlink: 'syz.2.456': attribute type 12 has an invalid length.
[   75.222664][ T7477] xt_NFQUEUE: number of total queues is 0
[   75.326169][ T7484] netlink: 'syz.3.461': attribute type 10 has an invalid length.
[   75.329790][ T7484] netlink: 'syz.3.461': attribute type 3 has an invalid length.
[   75.697820][ T7517] vxcan1 speed is unknown, defaulting to 1000
[   75.754021][ T7524] netdevsim netdevsim3: Direct firmware load for .
[   75.754021][ T7524]  failed with error -2
[   75.758651][ T7524] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[   75.758651][ T7524] 
[   75.800927][ T7517] lo speed is unknown, defaulting to 1000
[   75.831581][ T6255] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[   75.981610][ T6255] usb 7-1: Using ep0 maxpacket: 8
[   75.984689][ T6255] usb 7-1: config 2 interface 0 has no altsetting 0
[   75.988572][ T6255] usb 7-1: New USB device found, idVendor=04e2, idProduct=1412, bcdDevice=ca.10
[   75.991478][ T6255] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   75.994299][ T6255] usb 7-1: Product: syz
[   75.995971][ T6255] usb 7-1: Manufacturer: syz
[   75.997623][ T6255] usb 7-1: SerialNumber: syz
[   76.223880][ T7529] __nla_validate_parse: 2 callbacks suppressed
[   76.223891][ T7529] netlink: 40 bytes leftover after parsing attributes in process `syz.0.472'.
[   76.227994][ T6255] usb 7-1: USB disconnect, device number 9
[   77.111837][ T7555] veth1_vlan: default FDB implementation only supports local addresses
[   77.124813][   T40] kauditd_printk_skb: 22 callbacks suppressed
[   77.124822][   T40] audit: type=1400 audit(2000000027.450:470): avc:  denied  { bind } for  pid=7554 comm="syz.2.481" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   77.161603][   T40] audit: type=1400 audit(2000000027.500:471): avc:  denied  { execute } for  pid=7556 comm="syz-executor" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   77.168914][   T40] audit: type=1400 audit(2000000027.500:472): avc:  denied  { execute_no_trans } for  pid=7556 comm="syz-executor" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   77.297596][ T7567] use of bytesused == 0 is deprecated and will be removed in the future,
[   77.304291][ T7567] use the actual size instead.
[   77.307822][ T7567] @: renamed from vlan0 (while UP)
[   77.316544][   T40] audit: type=1400 audit(2000000027.660:473): avc:  denied  { map } for  pid=7566 comm="syz.2.486" path="/proc/396/net/vlan/vlan0" dev="proc" ino=4026533722 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   77.317052][ T7567] xt_l2tp: v2 doesn't support IP mode
[   77.339824][   T40] audit: type=1400 audit(2000000027.660:474): avc:  denied  { execute } for  pid=7566 comm="syz.2.486" path="/proc/396/net/vlan/vlan0" dev="proc" ino=4026533722 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   77.387357][ T5947] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   77.392268][ T5947] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   77.399555][ T5947] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   77.405502][ T7573] openvswitch: netlink: IPv4 tun info is not correct
[   77.405568][ T7574] netlink: 8 bytes leftover after parsing attributes in process `syz.2.487'.
[   77.407806][ T5947] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   77.411171][ T7574] netlink: 12 bytes leftover after parsing attributes in process `syz.2.487'.
[   77.415562][ T5947] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   77.420460][ T7574] netlink: 'syz.2.487': attribute type 13 has an invalid length.
[   77.428015][ T5942] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   77.432567][ T5942] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   77.434978][ T5942] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   77.439558][ T5942] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   77.451975][ T5942] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   77.497185][ T7569] vxcan1 speed is unknown, defaulting to 1000
[   77.509991][ T7580] netlink: 12 bytes leftover after parsing attributes in process `syz.0.489'.
[   77.585139][ T6401] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.602752][ T7569] lo speed is unknown, defaulting to 1000
[   77.701297][ T6401] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.753096][ T7569] chnl_net:caif_netlink_parms(): no params data found
[   77.776734][ T7590] netlink: 12 bytes leftover after parsing attributes in process `syz.0.491'.
[   77.779494][   T40] audit: type=1400 audit(2000000028.120:475): avc:  denied  { create } for  pid=7589 comm="syz.0.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   77.793571][   T40] audit: type=1400 audit(2000000028.120:476): avc:  denied  { write } for  pid=7589 comm="syz.0.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   77.799827][   T40] audit: type=1400 audit(2000000028.120:477): avc:  denied  { nlmsg_write } for  pid=7589 comm="syz.0.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   77.822598][ T7590] netlink: 12 bytes leftover after parsing attributes in process `syz.0.491'.
[   77.832479][   T40] audit: type=1400 audit(2000000028.180:478): avc:  denied  { write } for  pid=7592 comm="syz.3.492" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   77.860126][   T40] audit: type=1400 audit(2000000028.190:479): avc:  denied  { read write } for  pid=7594 comm="syz.2.493" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   77.865620][ T6401] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.883315][ T7595] overlayfs: missing 'workdir'
[   77.894015][ T7600] overlayfs: missing 'workdir'
[   77.894528][ T7602] syz.3.495: attempt to access beyond end of device
[   77.894528][ T7602] loop3: rw=0, sector=1, nr_sectors = 1 limit=0
[   77.902263][ T7602] qnx4: unable to read the superblock
[   77.944941][ T6401] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.990369][ T7569] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.993258][ T7569] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.995575][ T7569] bridge_slave_0: entered allmulticast mode
[   77.998438][ T7569] bridge_slave_0: entered promiscuous mode
[   78.001597][ T7569] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.005474][ T7569] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.007776][ T7569] bridge_slave_1: entered allmulticast mode
[   78.011063][ T7569] bridge_slave_1: entered promiscuous mode
[   78.056198][ T7569] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   78.063187][ T7569] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   78.119305][ T7569] team0: Port device team_slave_0 added
[   78.136099][ T7569] team0: Port device team_slave_1 added
[   78.142937][   T10] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   78.187769][ T7569] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.190108][ T7569] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.198789][ T7569] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.203338][ T6401] bridge_slave_1: left allmulticast mode
[   78.205733][ T6401] bridge_slave_1: left promiscuous mode
[   78.208379][ T6401] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.215618][ T6401] bridge_slave_0: left allmulticast mode
[   78.217459][ T6401] bridge_slave_0: left promiscuous mode
[   78.220158][ T6401] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.271743][   T10] usb 5-1: device descriptor read/64, error -71
[   78.471084][ T6401] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   78.475843][ T6401] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   78.479492][ T6401] bond0 (unregistering): Released all slaves
[   78.486931][ T7569] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.489084][ T7569] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.497392][ T7569] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.524435][   T10] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[   78.593765][ T7569] hsr_slave_0: entered promiscuous mode
[   78.596498][ T7569] hsr_slave_1: entered promiscuous mode
[   78.599196][ T7569] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   78.602250][ T7569] Cannot create hsr debugfs directory
[   78.653082][   T10] usb 5-1: device descriptor read/64, error -71
[   78.753495][ T7569] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   78.757974][ T7569] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   78.762109][ T7569] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   78.765914][ T7569] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   78.772370][   T10] usb usb5-port1: attempt power cycle
[   78.801912][ T7569] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.847383][ T7569] 8021q: adding VLAN 0 to HW filter on device team0
[   78.856995][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.859305][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.874530][ T7638] vxcan1 speed is unknown, defaulting to 1000
[   78.875249][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.879151][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.929323][ T6401] hsr_slave_0: left promiscuous mode
[   78.939985][ T6401] hsr_slave_1: left promiscuous mode
[   78.952283][ T6401] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.954785][ T6401] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.958398][ T6401] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.960804][ T6401] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.999835][ T6401] veth1_macvtap: left promiscuous mode
[   79.003459][ T6401] veth0_macvtap: left promiscuous mode
[   79.005670][ T6401] veth1_vlan: left allmulticast mode
[   79.007940][ T6401] veth1_vlan: left promiscuous mode
[   79.009978][ T6401] veth0_vlan: left promiscuous mode
[   79.134000][   T10] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[   79.152659][   T10] usb 5-1: device descriptor read/8, error -71
[   79.392956][   T10] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[   79.413490][   T10] usb 5-1: device descriptor read/8, error -71
[   79.472090][ T5942] Bluetooth: hci1: command tx timeout
[   79.522152][   T10] usb usb5-port1: unable to enumerate USB device
[   79.525084][ T6401] team0 (unregistering): Port device team_slave_1 removed
[   79.584839][ T6401] team0 (unregistering): Port device team_slave_0 removed
[   80.000104][ T7638] lo speed is unknown, defaulting to 1000
[   80.075066][ T7569] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.101980][ T7655] fuse: Unknown parameter ''
[   80.267566][ T7569] veth0_vlan: entered promiscuous mode
[   80.274321][ T7569] veth1_vlan: entered promiscuous mode
[   80.291037][ T7569] veth0_macvtap: entered promiscuous mode
[   80.296528][ T7569] veth1_macvtap: entered promiscuous mode
[   80.301244][ T7672] team0: No ports can be present during mode change
[   80.307938][ T7672] netlink: 4 bytes leftover after parsing attributes in process `syz.2.506'.
[   80.311290][ T7569] batman_adv: batadv0: Interface activated: batadv_slave_0
[   80.390178][ T7672] team0 (unregistering): Port device team_slave_0 removed
[   80.397280][ T7672] team0 (unregistering): Port device team_slave_1 removed
[   80.411973][ T7569] batman_adv: batadv0: Interface activated: batadv_slave_1
[   80.430623][ T7569] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.433587][ T7569] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.436567][ T7569] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.439475][ T7569] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.450391][ T6401] IPVS: stop unused estimator thread 0...
[   80.493745][ T6399] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.496181][ T6399] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.517977][ T6399] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.520604][ T6399] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.635985][ T7690] netlink: 44 bytes leftover after parsing attributes in process `syz.3.510'.
[   80.638777][ T7690] netlink: 'syz.3.510': attribute type 6 has an invalid length.
[   80.641101][ T7690] netlink: 'syz.3.510': attribute type 5 has an invalid length.
[   80.644238][ T7690] netlink: 'syz.3.510': attribute type 4 has an invalid length.
[   80.658218][ T7690] block device autoloading is deprecated and will be removed.
[   80.726630][ T7702] netlink: 'syz.3.513': attribute type 4 has an invalid length.
[   80.737299][ T7704] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   81.123447][ T7752] xt_CT: You must specify a L4 protocol and not use inversions on it
[   81.332018][   T54] cfg80211: failed to load regulatory.db
[   81.343527][ T7773] sp0: Synchronizing with TNC
[   81.352983][ T7773] netlink: 8 bytes leftover after parsing attributes in process `syz.0.529'.
[   81.356355][ T7773] netlink: 12 bytes leftover after parsing attributes in process `syz.0.529'.
[   81.359527][ T7773] netlink: 'syz.0.529': attribute type 5 has an invalid length.
[   81.370014][ T7772] [U] è
[   81.449675][ T7782] binder: Unknown parameter 'pcr'
[   81.451822][ T7782] netlink: 'syz.0.531': attribute type 15 has an invalid length.
[   81.553197][ T5942] Bluetooth: hci1: command tx timeout
[   81.695721][ T7829] netlink: 28 bytes leftover after parsing attributes in process `syz.0.535'.
[   81.699475][ T7785] cgroup: fork rejected by pids controller in /syz4
[   81.826611][ T7836] 9pnet_virtio: no channels available for device syz
[   82.333570][   T40] kauditd_printk_skb: 19 callbacks suppressed
[   82.333582][   T40] audit: type=1400 audit(2000000032.680:499): avc:  denied  { ioctl } for  pid=7848 comm="syz.2.543" path="socket:[19140]" dev="sockfs" ino=19140 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   82.384096][   T40] audit: type=1400 audit(2000000032.730:500): avc:  denied  { read } for  pid=7852 comm="syz.4.542" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   82.425573][ T7855] vxcan1 speed is unknown, defaulting to 1000
[   82.440345][   T40] audit: type=1400 audit(2000000032.780:501): avc:  denied  { getopt } for  pid=7854 comm="syz.3.541" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   82.512054][ T7860] netlink: 'syz.2.546': attribute type 3 has an invalid length.
[   82.519050][ T7860] netlink: 8 bytes leftover after parsing attributes in process `syz.2.546'.
[   82.555723][ T7855] lo speed is unknown, defaulting to 1000
[   82.587062][ T7860] macvlan0: entered promiscuous mode
[   82.592200][ T7860] macvlan0: entered allmulticast mode
[   82.597023][ T7860] veth1_vlan: entered allmulticast mode
[   82.742984][ T7875] netlink: 24 bytes leftover after parsing attributes in process `syz.3.550'.
[   82.755994][ T7874] syzkaller1: entered promiscuous mode
[   82.757879][ T7874] syzkaller1: entered allmulticast mode
[   82.769566][ T7874] 8021q: VLANs not supported on syzkaller1
[   82.806001][   T40] audit: type=1400 audit(2000000033.150:502): avc:  denied  { ioctl } for  pid=7876 comm="syz.0.551" path="socket:[19234]" dev="sockfs" ino=19234 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[   82.818855][   T40] audit: type=1326 audit(2000000033.160:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7876 comm="syz.0.551" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f90c2d8e969 code=0x0
[   83.090543][   T40] audit: type=1400 audit(2000000033.430:504): avc:  denied  { connect } for  pid=7882 comm="syz.3.553" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   83.403061][ T7893] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[   83.426976][ T7891] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   83.434282][ T7891] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   83.472112][ T7891] veth1_vlan: left allmulticast mode
[   83.474525][ T7891] macvlan0: left promiscuous mode
[   83.476506][ T7891] macvlan0: left allmulticast mode
[   83.512584][ T7891] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   83.517941][ T7891] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   83.522239][ T7891] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   83.526698][ T7891] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   83.565986][   T54] vxcan1 speed is unknown, defaulting to 1000
[   83.568140][   T54] syz0: Port: 1 Link DOWN
[   83.570050][   T54] vxcan1 speed is unknown, defaulting to 1000
[   83.631684][ T5942] Bluetooth: hci1: command tx timeout
[   83.696740][ T7903] ip6t_srh: unknown srh invflags 7D00
[   83.723694][ T7786] syz.4.532 (7786) used greatest stack depth: 19240 bytes left
[   83.817239][ T7905] netlink: 8 bytes leftover after parsing attributes in process `syz.2.558'.
[   83.820117][ T7905] netlink: 12 bytes leftover after parsing attributes in process `syz.2.558'.
[   83.823205][ T7905] netlink: 'syz.2.558': attribute type 6 has an invalid length.
[   83.958023][ T7911] program syz.2.562 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   83.961870][ T7911] netlink: 'syz.2.562': attribute type 13 has an invalid length.
[   83.964393][ T7911] macvtap0: entered promiscuous mode
[   83.972559][ T7911] macvtap0: refused to change device tx_queue_len
[   84.019116][   T40] audit: type=1400 audit(2000000034.360:505): avc:  denied  { append } for  pid=7915 comm="syz.2.564" name="hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   84.033504][ T1339] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[   84.069607][ T7916] syzkaller0: entered promiscuous mode
[   84.072287][ T7916] syzkaller0: entered allmulticast mode
[   84.171644][ T1339] usb 5-1: device descriptor read/64, error -71
[   84.267872][ T7925] netlink: 'syz.2.567': attribute type 1 has an invalid length.
[   84.275075][ T7787] syz.4.532 (7787) used greatest stack depth: 19048 bytes left
[   84.301903][   T40] audit: type=1400 audit(2000000034.650:506): avc:  denied  { map } for  pid=7924 comm="syz.2.567" path="/dev/hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   84.311502][   T40] audit: type=1400 audit(2000000034.650:507): avc:  denied  { execute } for  pid=7924 comm="syz.2.567" path="/dev/hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   84.331614][   T40] audit: type=1400 audit(2000000034.670:508): avc:  denied  { ioctl } for  pid=7907 comm="syz.4.561" path="/dev/nullb0" dev="devtmpfs" ino=707 ioctlcmd=0x4c08 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   84.334126][ T7925] xt_hashlimit: overflow, rate too high: 0
[   84.441794][ T1339] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[   84.555399][ T7931] netlink: 48 bytes leftover after parsing attributes in process `syz.4.569'.
[   84.581610][ T1339] usb 5-1: device descriptor read/64, error -71
[   84.691785][ T1339] usb usb5-port1: attempt power cycle
[   85.031699][ T1339] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[   85.052091][ T1339] usb 5-1: device descriptor read/8, error -71
[   85.247013][ T7802] syz.4.532 (7802) used greatest stack depth: 18712 bytes left
[   85.301654][ T1339] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[   85.331965][ T1339] usb 5-1: device descriptor read/8, error -71
[   85.441871][ T1339] usb usb5-port1: unable to enumerate USB device
[   85.714650][ T5942] Bluetooth: hci1: command tx timeout
[   86.706272][ T7950] netlink: 'syz.4.573': attribute type 21 has an invalid length.
[   86.775821][ T7958] netlink: 20 bytes leftover after parsing attributes in process `syz.4.575'.
[   86.887775][ T7969] netlink: 8 bytes leftover after parsing attributes in process `syz.4.579'.
[   86.891633][ T5765] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[   86.896228][ T7969] netlink: 8 bytes leftover after parsing attributes in process `syz.4.579'.
[   86.899436][ T7966] vxcan1 speed is unknown, defaulting to 1000
[   86.928555][ T7972] netlink: 12 bytes leftover after parsing attributes in process `syz.0.580'.
[   86.931322][ T7972] netlink: 60 bytes leftover after parsing attributes in process `syz.0.580'.
[   86.935121][ T7972] netlink: 12 bytes leftover after parsing attributes in process `syz.0.580'.
[   86.937869][ T7972] netlink: 60 bytes leftover after parsing attributes in process `syz.0.580'.
[   86.940511][ T7972] netlink: 104 bytes leftover after parsing attributes in process `syz.0.580'.
[   86.999494][ T7975] macvtap0: entered promiscuous mode
[   87.001336][ T7975] macvtap0: entered allmulticast mode
[   87.003664][ T7975] veth0_macvtap: entered allmulticast mode
[   87.051323][ T7966] lo speed is unknown, defaulting to 1000
[   87.053541][ T5765] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   87.058146][ T5765] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   87.058319][ T7969] siw: device registration error -23
[   87.063106][ T5765] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   87.063765][ T7972] vxcan1 speed is unknown, defaulting to 1000
[   87.069846][ T5765] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.075221][ T7944] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   87.081406][ T5765] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[   87.267432][ T7972] lo speed is unknown, defaulting to 1000
[   87.284412][ T5765] usb 7-1: USB disconnect, device number 10
[   87.292890][ T7944] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   87.296467][ T7994] SELinux:  policydb magic number 0x4b07fa81 does not match expected magic number 0xf97cff8c
[   87.299921][ T7994] SELinux: failed to load policy
[   87.302820][ T7944] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   87.696005][   T40] kauditd_printk_skb: 8 callbacks suppressed
[   87.696015][   T40] audit: type=1326 audit(2000000038.040:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7965 comm="syz.0.580" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f90c2d8e969 code=0x7fc00000
[   87.904210][ T8009] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8009 comm=syz.2.590
[   87.908070][ T8009] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8009 comm=syz.2.590
[   87.923784][   T40] audit: type=1400 audit(2000000038.270:518): avc:  denied  { audit_write } for  pid=8008 comm="syz.2.590" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   87.979080][   T40] audit: type=1400 audit(2000000038.320:519): avc:  denied  { mount } for  pid=8010 comm="syz.2.591" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   87.989539][ T8011] netlink: 'syz.2.591': attribute type 10 has an invalid length.
[   87.995711][ T8011] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   88.001260][ T8010] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   88.235073][ T8016] netlink: 8 bytes leftover after parsing attributes in process `syz.0.592'.
[   88.270465][ T8024] SELinux:  Context system_u:object_r:getty_var_run_t:s0 is not valid (left unmapped).
[   88.282597][   T40] audit: type=1400 audit(2000000038.620:520): avc:  denied  { relabelto } for  pid=8022 comm="syz.0.594" name="memfd:.(-" dev="tmpfs" ino=1028 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:getty_var_run_t:s0"
[   88.299201][   T40] audit: type=1400 audit(2000000038.630:521): avc:  denied  { associate } for  pid=8022 comm="syz.0.594" name="memfd:.(-" dev="tmpfs" ino=1028 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:getty_var_run_t:s0"
[   88.330755][ T8031] rtc_cmos 00:05: Alarms can be up to one day in the future
[   88.334857][ T8031] tmpfs: Cannot change global quota limit on remount
[   88.336463][ T8023] kernel read not supported for file /policy (pid: 8023 comm: syz.4.593)
[   88.337215][   T40] audit: type=1400 audit(2000000038.680:522): avc:  denied  { module_load } for  pid=8021 comm="syz.4.593" path="/selinux/policy" dev="selinuxfs" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=system permissive=1
[   88.350651][ T8033] rtc_cmos 00:05: Alarms can be up to one day in the future
[   88.354435][   T40] audit: type=1400 audit(2000000038.700:523): avc:  denied  { name_bind } for  pid=8021 comm="syz.4.593" src=65534 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[   88.417817][ T8037] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer.
[   88.424694][   T40] audit: type=1400 audit(2000000038.770:524): avc:  denied  { watch_mount } for  pid=8036 comm="syz.0.596" path="/164" dev="tmpfs" ino=892 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   88.441709][   T40] audit: type=1400 audit(2000000038.780:525): avc:  denied  { ioctl } for  pid=8036 comm="syz.0.596" path="socket:[19823]" dev="sockfs" ino=19823 ioctlcmd=0x8916 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   89.469097][   T40] audit: type=1400 audit(2000000039.810:526): avc:  denied  { block_suspend } for  pid=8049 comm="syz.4.600" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   90.497347][ T8125] misc userio: Invalid payload size
[   90.497591][ T1144] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[   90.726125][ T8139] fuse: Bad value for 'fd'
[   90.756111][ T8147] openvswitch: netlink: VXLAN extension 149 out of range max 1
[   90.887792][ T8157] netlink: 16 bytes leftover after parsing attributes in process `syz.0.629'.
[   90.929358][ T8163] xt_policy: input policy not valid in POSTROUTING and OUTPUT
[   90.960446][ T8165] program syz.0.633 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   90.994170][ T8170] /dev/nullb0: Can't open blockdev
[   91.021270][ T8174] /dev/nullb0: Can't open blockdev
[   91.024084][ T8173] /dev/nullb0: Can't open blockdev
[   91.300824][ T8198] sctp: [Deprecated]: syz.2.643 (pid 8198) Use of int in max_burst socket option deprecated.
[   91.300824][ T8198] Use struct sctp_assoc_value instead
[   91.361322][ T8208] netlink: 'syz.0.642': attribute type 10 has an invalid length.
[   91.365478][ T8208] dummy0: entered promiscuous mode
[   91.367768][ T8208] bridge0: port 3(dummy0) entered blocking state
[   91.369885][ T8208] bridge0: port 3(dummy0) entered disabled state
[   91.373260][ T8208] dummy0: entered allmulticast mode
[   92.261611][ T8284] __nla_validate_parse: 2 callbacks suppressed
[   92.261624][ T8284] netlink: 4 bytes leftover after parsing attributes in process `syz.3.661'.
[   92.490196][ T8307] netlink: 28 bytes leftover after parsing attributes in process `syz.3.667'.
[   92.501961][ T8311] vxcan1 speed is unknown, defaulting to 1000
[   92.513333][ T8307] hsr0: default FDB implementation only supports local addresses
[   92.710517][   T40] kauditd_printk_skb: 152 callbacks suppressed
[   92.710529][   T40] audit: type=1400 audit(2000000043.050:679): avc:  denied  { connect } for  pid=8330 comm="syz.3.672" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   92.711297][ T8329] IPv6: sit1: Disabled Multicast RS
[   92.712614][   T40] audit: type=1400 audit(2000000043.050:680): avc:  denied  { write } for  pid=8330 comm="syz.3.672" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   92.724288][ T8329] sit1: entered allmulticast mode
[   92.728282][   T40] audit: type=1400 audit(2000000043.050:681): avc:  denied  { read } for  pid=8330 comm="syz.3.672" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   92.736863][   T40] audit: type=1400 audit(2000000043.070:682): avc:  denied  { read } for  pid=8323 comm="syz.4.671" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   92.746630][   T40] audit: type=1400 audit(2000000043.070:683): avc:  denied  { open } for  pid=8323 comm="syz.4.671" path="/58/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   92.753817][   T40] audit: type=1400 audit(2000000043.090:684): avc:  denied  { unmount } for  pid=7569 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[   92.779537][   T40] audit: type=1400 audit(2000000043.120:685): avc:  denied  { create } for  pid=8337 comm="syz.4.674" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   92.787026][   T40] audit: type=1400 audit(2000000043.130:686): avc:  denied  { setopt } for  pid=8337 comm="syz.4.674" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   92.876266][   T40] audit: type=1400 audit(2000000043.220:687): avc:  denied  { append } for  pid=8342 comm="syz.4.675" name="001" dev="devtmpfs" ino=743 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   92.881077][ T8348] netlink: 'syz.2.676': attribute type 10 has an invalid length.
[   92.928118][ T8352] netlink: 32 bytes leftover after parsing attributes in process `syz.4.675'.
[   92.934657][   T40] audit: type=1400 audit(2000000043.280:688): avc:  denied  { write } for  pid=8342 comm="syz.4.675" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   92.974744][ T8351] fuse: Unknown parameter 'ÿ0x00000000000000080000000000000000000102600000000000000000000'
[   92.991406][ T8351] netlink: 28 bytes leftover after parsing attributes in process `syz.2.677'.
[   93.026117][ T8357] netlink: 88 bytes leftover after parsing attributes in process `syz.2.678'.
[   93.767891][ T8402] netlink: 44 bytes leftover after parsing attributes in process `syz.3.689'.
[   93.847040][ T8415] netlink: 4 bytes leftover after parsing attributes in process `syz.2.691'.
[   93.897080][ T8418] netlink: 'syz.4.694': attribute type 2 has an invalid length.
[   93.900384][ T8418] netlink: 'syz.4.694': attribute type 8 has an invalid length.
[   93.904303][ T8418] netlink: 1148 bytes leftover after parsing attributes in process `syz.4.694'.
[   94.001200][ T8429] sp0: Synchronizing with TNC
[   94.047944][ T8434] nbd: couldn't find a device at index -1605786504
[   94.088374][ T8439] netlink: 4 bytes leftover after parsing attributes in process `syz.2.700'.
[   94.094428][ T8438] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   94.096673][ T8438] IPv6: NLM_F_CREATE should be set when creating new route
[   94.145110][ T8438] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[   94.154549][ T8438] syzkaller0: entered promiscuous mode
[   94.156978][ T8438] syzkaller0: entered allmulticast mode
[   94.251240][ T8439] syz.2.700 (8439): drop_caches: 2
[   94.511742][    C2] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[   95.336306][ T8470] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8470 comm=syz.4.711
[   95.345559][ T8470] overlayfs: missing 'lowerdir'
[   95.387850][ T8476] netlink: 12 bytes leftover after parsing attributes in process `syz.0.714'.
[   95.483996][ T8482] kvm: MWAIT instruction emulated as NOP!
[   95.515576][ T8484] overlayfs: failed to resolve './file0': -2
[   95.534376][ T8486] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[   95.541161][ T8486] syzkaller0: entered promiscuous mode
[   95.544040][ T8486] syzkaller0: entered allmulticast mode
[   96.658140][ T8506] CUSE: unknown device info "ÿ
"
[   96.659990][ T8506] CUSE: zero length info key specified
[   96.725615][ T8509] netlink: 'syz.4.724': attribute type 4 has an invalid length.
[   96.746888][ T8509] : renamed from bond0 (while UP)
[   96.759283][ T8509] devpts: Bad value for 'max'
[   97.011130][ T7326] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.115305][ T8529] team_slave_0: entered promiscuous mode
[   97.117780][ T8529] team_slave_0: left promiscuous mode
[   97.140714][ T7326] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.214240][ T8540] NILFS (nbd2): device size too small
[   97.240637][ T5947] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   97.245717][ T5947] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   97.249335][ T5947] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   97.256520][ T5947] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   97.260770][ T5947] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   97.282497][ T7326] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.310283][ T8542] vxcan1 speed is unknown, defaulting to 1000
[   97.367147][ T7326] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.380597][ T8554] __nla_validate_parse: 2 callbacks suppressed
[   97.380609][ T8554] netlink: 9 bytes leftover after parsing attributes in process `syz.2.741'.
[   97.386999][ T8554] gretap0: entered promiscuous mode
[   97.389359][ T8554] netlink: 5 bytes leftover after parsing attributes in process `syz.2.741'.
[   97.392588][ T8554] 0ªX¹¦D: renamed from gretap0
[   97.397314][ T8554] 0ªX¹¦D: left promiscuous mode
[   97.399205][ T8554] 0ªX¹¦D: entered allmulticast mode
[   97.403807][ T8554] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[   97.509842][ T8572] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=257 sclass=netlink_route_socket pid=8572 comm=syz.3.746
[   97.543704][ T8573] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   97.555225][ T7326] bridge_slave_1: left allmulticast mode
[   97.557051][ T7326] bridge_slave_1: left promiscuous mode
[   97.559669][ T7326] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.563742][ T7326] bridge_slave_0: left allmulticast mode
[   97.565568][ T7326] bridge_slave_0: left promiscuous mode
[   97.568280][ T7326] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.866006][ T7326]  (unregistering): (slave bond_slave_0): Releasing backup interface
[   97.870033][ T7326]  (unregistering): (slave bond_slave_1): Releasing backup interface
[   97.873727][ T7326]  (unregistering): Released all slaves
[   97.919947][ T8542] chnl_net:caif_netlink_parms(): no params data found
[   97.962323][ T8600] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request
[   98.007974][ T8606] mkiss: ax0: crc mode is auto.
[   98.009924][ T8606] netlink: 172 bytes leftover after parsing attributes in process `syz.3.754'.
[   98.093557][ T8542] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.096184][ T8542] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.098778][   T40] kauditd_printk_skb: 47 callbacks suppressed
[   98.098786][   T40] audit: type=1400 audit(2000000048.440:736): avc:  denied  { read } for  pid=8613 comm="syz.2.756" name="event0" dev="devtmpfs" ino=942 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   98.103698][ T8542] bridge_slave_0: entered allmulticast mode
[   98.110562][ T8542] bridge_slave_0: entered promiscuous mode
[   98.110608][ T8615] netlink: 'syz.2.756': attribute type 1 has an invalid length.
[   98.120510][ T8542] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.124176][ T8542] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.126609][   T40] audit: type=1400 audit(2000000048.450:737): avc:  denied  { open } for  pid=8613 comm="syz.2.756" path="/dev/input/event0" dev="devtmpfs" ino=942 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   98.126712][ T8542] bridge_slave_1: entered allmulticast mode
[   98.136644][ T8542] bridge_slave_1: entered promiscuous mode
[   98.138024][ T8612] netlink: 'syz.0.755': attribute type 1 has an invalid length.
[   98.151640][   T40] audit: type=1400 audit(2000000048.450:738): avc:  denied  { ioctl } for  pid=8613 comm="syz.2.756" path="/dev/input/event0" dev="devtmpfs" ino=942 ioctlcmd=0x4524 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   98.154304][ T8614] ip6gretap1: entered promiscuous mode
[   98.161916][ T8614] ip6gretap1: entered allmulticast mode
[   98.207074][ T8615] 8021q: adding VLAN 0 to HW filter on device bond1
[   98.239545][   T40] audit: type=1400 audit(2000000048.580:739): avc:  denied  { create } for  pid=8627 comm="syz.2.758" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   98.240317][ T8612] 8021q: adding VLAN 0 to HW filter on device bond0
[   98.248898][   T40] audit: type=1400 audit(2000000048.590:740): avc:  denied  { kexec_image_load } for  pid=8621 comm="syz.3.757" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[   98.287123][   T40] audit: type=1400 audit(2000000048.630:741): avc:  denied  { ioctl } for  pid=8632 comm="syz.2.759" path="socket:[24599]" dev="sockfs" ino=24599 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   98.292863][ T8619] 8021q: adding VLAN 0 to HW filter on device bond0
[   98.299819][ T8619] bond0: (slave vxcan3): The slave device specified does not support setting the MAC address
[   98.305064][ T8619] bond0: (slave vxcan3): Error -95 calling set_mac_address
[   98.340378][ T8542] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   98.346501][ T8542] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   98.387255][ T8636] io-wq is not configured for unbound workers
[   98.406740][ T8542] team0: Port device team_slave_0 added
[   98.419822][ T8542] team0: Port device team_slave_1 added
[   98.438653][ T8639] netlink: 20 bytes leftover after parsing attributes in process `syz.2.760'.
[   98.528658][ T8542] batman_adv: batadv0: Adding interface: batadv_slave_0
[   98.531023][ T8542] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   98.540306][ T8542] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   98.549192][ T7326] hsr_slave_0: left promiscuous mode
[   98.551327][ T7326] hsr_slave_1: left promiscuous mode
[   98.554179][ T7326] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   98.556553][ T7326] batman_adv: batadv0: Removing interface: batadv_slave_0
[   98.559212][ T7326] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   98.561592][ T7326] batman_adv: batadv0: Removing interface: batadv_slave_1
[   98.585456][ T7326] veth1_macvtap: left promiscuous mode
[   98.587276][ T7326] veth0_macvtap: left promiscuous mode
[   98.589055][ T7326] veth1_vlan: left promiscuous mode
[   98.590745][ T7326] veth0_vlan: left promiscuous mode
[   98.691282][   T40] audit: type=1400 audit(2000000049.030:742): avc:  denied  { append } for  pid=8643 comm="syz.0.763" name="sg0" dev="devtmpfs" ino=722 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   99.222843][ T7326] team0 (unregistering): Port device team_slave_1 removed
[   99.290248][ T7326] team0 (unregistering): Port device team_slave_0 removed
[   99.314755][ T5942] Bluetooth: hci1: command tx timeout
[   99.388697][ T8655] dlm: non-version read from control device 0
[   99.424253][   T40] audit: type=1400 audit(2000000049.770:743): avc:  denied  { read write } for  pid=8656 comm="syz.2.765" name="rdma_cm" dev="devtmpfs" ino=1295 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   99.437328][   T40] audit: type=1400 audit(2000000049.780:744): avc:  denied  { open } for  pid=8656 comm="syz.2.765" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1295 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   99.800103][ T8542] batman_adv: batadv0: Adding interface: batadv_slave_1
[   99.802670][ T8542] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.810619][ T8542] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   99.867210][   T40] audit: type=1400 audit(2000000050.210:745): avc:  denied  { create } for  pid=8661 comm="syz.2.766" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   99.888193][ T8542] hsr_slave_0: entered promiscuous mode
[   99.890587][ T8542] hsr_slave_1: entered promiscuous mode
[   99.892958][ T8542] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   99.895577][ T8542] Cannot create hsr debugfs directory
[  100.051912][ T8674] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  100.054026][ T8674] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  100.062406][ T8674] vhci_hcd vhci_hcd.0: Device attached
[  100.085001][ T8662] netlink: 'syz.2.766': attribute type 6 has an invalid length.
[  100.087763][ T8662] netlink: 32 bytes leftover after parsing attributes in process `syz.2.766'.
[  100.146483][ T8683] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(9)
[  100.148570][ T8683] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  100.152272][ T8542] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  100.154358][ T8683] vhci_hcd vhci_hcd.0: Device attached
[  100.159026][ T8542] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  100.164041][ T8542] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  100.167079][ T8687] vhci_hcd: connection closed
[  100.167957][   T13] vhci_hcd: stop threads
[  100.168404][ T8542] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  100.169470][   T13] vhci_hcd: release socket
[  100.175962][   T13] vhci_hcd: disconnect device
[  100.177912][ T8675] vhci_hcd: connection closed
[  100.178118][   T13] vhci_hcd: stop threads
[  100.181148][   T13] vhci_hcd: release socket
[  100.185222][   T13] vhci_hcd: disconnect device
[  100.222986][ T8542] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.251744][   T52] vhci_hcd: vhci_device speed not set
[  100.256780][ T8542] 8021q: adding VLAN 0 to HW filter on device team0
[  100.263939][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.266211][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  100.285508][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.287743][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  100.432420][ T8542] 8021q: adding VLAN 0 to HW filter on device batadv0
[  100.565624][ T8542] veth0_vlan: entered promiscuous mode
[  100.572529][ T8542] veth1_vlan: entered promiscuous mode
[  100.588829][ T8542] veth0_macvtap: entered promiscuous mode
[  100.592628][ T8542] veth1_macvtap: entered promiscuous mode
[  100.601017][ T8542] batman_adv: batadv0: Interface activated: batadv_slave_0
[  100.606580][ T8542] batman_adv: batadv0: Interface activated: batadv_slave_1
[  100.615062][ T8542] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.617878][ T8542] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.620607][ T8542] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.624718][ T8542] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.673754][ T7326] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.676182][ T7326] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.694132][ T7326] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.696661][ T7326] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.721832][    C0] ==================================================================
[  100.722970][    C2] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] SMP KASAN NOPTI
[  100.724527][    C0] BUG: KASAN: slab-out-of-bounds in __find_rr_leaf+0xd40/0xe00
[  100.728276][    C2] KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f]
[  100.731754][    C0] Read of size 1 at addr ffff888025b5651e by task kworker/0:4/8734
[  100.734992][    C2] CPU: 2 UID: 0 PID: 13 Comm: kworker/u32:1 Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  100.737403][    C0] 
[  100.740956][    C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  100.741737][    C0] CPU: 0 UID: 0 PID: 8734 Comm: kworker/0:4 Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  100.741752][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  100.741760][    C0] Workqueue: mld mld_ifc_work
[  100.741779][    C0] Call Trace:
[  100.741783][    C0]  <IRQ>
[  100.741788][    C0]  dump_stack_lvl+0x116/0x1f0
[  100.741805][    C0]  print_report+0xcd/0x680
[  100.741821][    C0]  ? __virt_addr_valid+0x81/0x610
[  100.741832][    C0]  ? __phys_addr+0xe8/0x180
[  100.741843][    C0]  ? __find_rr_leaf+0xd40/0xe00
[  100.741855][    C0]  kasan_report+0xe0/0x110
[  100.741869][    C0]  ? __find_rr_leaf+0xd40/0xe00
[  100.741882][    C0]  __find_rr_leaf+0xd40/0xe00
[  100.741895][    C0]  ? __pfx___find_rr_leaf+0x10/0x10
[  100.741907][    C0]  ? fib6_node_lookup+0x12d/0x190
[  100.741921][    C0]  ? __pfx_fib6_node_lookup+0x10/0x10
[  100.741934][    C0]  fib6_table_lookup+0x7b3/0xa30
[  100.741950][    C0]  ? __pfx_fib6_table_lookup+0x10/0x10
[  100.741965][    C0]  ip6_pol_route+0x1cc/0x1230
[  100.741978][    C0]  ? __pfx_ip6_pol_route+0x10/0x10
[  100.741994][    C0]  ? __pfx_ip6_pol_route_input+0x10/0x10
[  100.742007][    C0]  fib6_rule_lookup+0x536/0x720
[  100.742019][    C0]  ? __pfx_fib6_rule_lookup+0x10/0x10
[  100.742030][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  100.742044][    C0]  ? sched_clock+0x38/0x60
[  100.742056][    C0]  ? nf_nat_ipv6_fn+0xff/0x2e0
[  100.742071][    C0]  ? __pfx_nf_nat_ipv6_fn+0x10/0x10
[  100.742085][    C0]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  100.742098][    C0]  ip6_route_input+0x662/0xc00
[  100.742111][    C0]  ? __pfx_ip6_route_input+0x10/0x10
[  100.742123][    C0]  ? lock_acquire+0x179/0x350
[  100.742142][    C0]  ? sock_wfree+0x46a/0x880
[  100.742156][    C0]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  100.742173][    C0]  ip6_rcv_finish_core.constprop.0+0x1a0/0x5d0
[  100.742188][    C0]  ipv6_rcv+0x1e8/0x680
[  100.742200][    C0]  ? __pfx_ipv6_rcv+0x10/0x10
[  100.742213][    C0]  __netif_receive_skb_one_core+0x12d/0x1e0
[  100.742227][    C0]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  100.742242][    C0]  ? lock_acquire+0x179/0x350
[  100.742257][    C0]  ? process_backlog+0x3f0/0x15e0
[  100.742270][    C0]  __netif_receive_skb+0x1d/0x160
[  100.742283][    C0]  process_backlog+0x442/0x15e0
[  100.742298][    C0]  __napi_poll.constprop.0+0xba/0x550
[  100.742313][    C0]  net_rx_action+0xa9f/0xfe0
[  100.742328][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  100.742343][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  100.742357][    C0]  ? sched_clock+0x38/0x60
[  100.742368][    C0]  ? sched_clock_cpu+0x6c/0x530
[  100.742385][    C0]  ? mark_held_locks+0x49/0x80
[  100.742400][    C0]  handle_softirqs+0x219/0x8e0
[  100.742412][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  100.742424][    C0]  ? __dev_queue_xmit+0x896/0x43e0
[  100.742437][    C0]  do_softirq+0xb2/0xf0
[  100.742448][    C0]  </IRQ>
[  100.742451][    C0]  <TASK>
[  100.742455][    C0]  __local_bh_enable_ip+0x100/0x120
[  100.742466][    C0]  ? __dev_queue_xmit+0x896/0x43e0
[  100.742478][    C0]  __dev_queue_xmit+0x8ab/0x43e0
[  100.742493][    C0]  ? ip6mr_fib_lookup+0x136/0x1a0
[  100.742505][    C0]  ? __pfx___dev_queue_xmit+0x10/0x10
[  100.742518][    C0]  ? look_up_lock_class+0x59/0x150
[  100.742533][    C0]  ? __lock_acquire+0x622/0x1c90
[  100.742547][    C0]  ? __lock_acquire+0xb8a/0x1c90
[  100.742566][    C0]  ip6_finish_output2+0xe98/0x2020
[  100.742581][    C0]  ip6_finish_output+0x3f9/0x1360
[  100.742594][    C0]  ip6_output+0x1f9/0x540
[  100.742607][    C0]  mld_sendpack+0x9e9/0x1220
[  100.742621][    C0]  ? __pfx_mld_sendpack+0x10/0x10
[  100.742638][    C0]  mld_ifc_work+0x740/0xca0
[  100.742654][    C0]  process_one_work+0x9cf/0x1b70
[  100.742666][    C0]  ? __pfx_process_one_work+0x10/0x10
[  100.742678][    C0]  ? assign_work+0x1a0/0x250
[  100.742697][    C0]  worker_thread+0x6c8/0xf10
[  100.742709][    C0]  ? __kthread_parkme+0x19e/0x250
[  100.742722][    C0]  ? __pfx_worker_thread+0x10/0x10
[  100.742732][    C0]  kthread+0x3c5/0x780
[  100.742741][    C0]  ? __pfx_kthread+0x10/0x10
[  100.742750][    C0]  ? rcu_is_watching+0x12/0xc0
[  100.742763][    C0]  ? __pfx_kthread+0x10/0x10
[  100.742772][    C0]  ret_from_fork+0x5d4/0x6f0
[  100.742785][    C0]  ? __pfx_kthread+0x10/0x10
[  100.742794][    C0]  ret_from_fork_asm+0x1a/0x30
[  100.742807][    C0]  </TASK>
[  100.742811][    C0] 
[  100.745020][    C2] Workqueue: ipv6_addrconf addrconf_dad_work
[  100.748792][    C0] Allocated by task 8542:
[  100.752045][    C2] 
[  100.752052][    C2] RIP: 0010:__find_rr_leaf+0x668/0xe00
[  100.753741][    C0]  kasan_save_stack+0x33/0x60
[  100.754764][    C2] Code: 0f 85 ce 00 00 00 48 89 4c 24 38 e8 52 8c 8f f7 49 8d 7e 19 48 8b 4c 24 38 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 9f 06 00 00
[  100.755785][    C0]  kasan_save_track+0x14/0x30
[  100.757212][    C2] RSP: 0018:ffffc900006484d0 EFLAGS: 00010206
[  100.758739][    C0]  __kasan_kmalloc+0xaa/0xb0
[  100.760279][    C2] 
[  100.761734][    C0]  binderfs_binder_device_create.isra.0+0x189/0xc30
[  100.763225][    C2] RAX: dffffc0000000000 RBX: ffff888025b56400 RCX: ffff888025b564c0
[  100.764649][    C0]  binderfs_fill_super+0x8d4/0x1360
[  100.766144][    C2] RDX: 0000000000000003 RSI: ffffffff8a2c8b0e RDI: 0000000000000019
[  100.767875][    C0]  get_tree_nodev+0xdd/0x190
[  100.769452][    C2] RBP: dffffc0000000000 R08: 0000000000000001 R09: 0000000000000000
[  100.771240][    C0]  vfs_get_tree+0x8e/0x340
[  100.772990][    C2] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888025b56464
[  100.774748][    C0]  path_mount+0x14d4/0x1f70
[  100.776401][    C2] R13: ffffc900006487d8 R14: 0000000000000000 R15: 0000000000000001
[  100.778037][    C0]  __x64_sys_mount+0x28d/0x310
[  100.779603][    C2] FS:  0000000000000000(0000) GS:ffff8880d6965000(0000) knlGS:0000000000000000
[  100.781438][    C0]  do_syscall_64+0xcd/0x4c0
[  100.782959][    C2] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  100.784937][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.786541][    C2] CR2: 0000558927dee000 CR3: 000000003b2f2000 CR4: 0000000000352ef0
[  100.788048][    C0] 
[  100.789524][    C2] DR0: 0000000000000007 DR1: 0000000000004e6a DR2: 0000000000000007
[  100.791217][    C0] The buggy address belongs to the object at ffff888025b56400
[  100.791217][    C0]  which belongs to the cache kmalloc-512 of size 512
[  100.793027][    C2] DR3: 00000000000002d5 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  100.794721][    C0] The buggy address is located 6 bytes to the right of
[  100.794721][    C0]  allocated 280-byte region [ffff888025b56400, ffff888025b56518)
[  100.796336][    C2] Call Trace:
[  100.797956][    C0] 
[  100.797962][    C0] The buggy address belongs to the physical page:
[  100.799359][    C2]  <IRQ>
[  100.801091][    C0] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x25b54
[  100.802983][    C2]  ? __pfx___find_rr_leaf+0x10/0x10
[  100.804510][    C0] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  100.805951][    C2]  ? fib6_node_lookup+0x12d/0x190
[  100.808002][    C0] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  100.809945][    C2]  ? __pfx_fib6_node_lookup+0x10/0x10
[  100.811489][    C0] page_type: f5(slab)
[  100.813028][    C2]  fib6_table_lookup+0x7b3/0xa30
[  100.814795][    C0] raw: 00fff00000000040 ffff88801b842c80 0000000000000000 dead000000000001
[  100.816286][    C2]  ? __pfx_fib6_table_lookup+0x10/0x10
[  100.818169][    C0] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  100.819582][    C2]  ip6_pol_route+0x1cc/0x1230
[  100.821211][    C0] head: 00fff00000000040 ffff88801b842c80 0000000000000000 dead000000000001
[  100.822814][    C2]  ? __pfx_ip6_pol_route+0x10/0x10
[  100.824190][    C0] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  100.825655][    C2]  ? __pfx_rt6_multipath_hash+0x10/0x10
[  100.827142][    C0] head: 00fff00000000002 ffffea000096d501 00000000ffffffff 00000000ffffffff
[  100.828614][    C2]  ? __pfx_ip6_pol_route_input+0x10/0x10
[  100.830242][    C0] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  100.831808][    C2]  fib6_rule_lookup+0x536/0x720
[  100.833091][    C0] page dumped because: kasan: bad access detected
[  100.834045][    C2]  ? __pfx_fib6_rule_lookup+0x10/0x10
[  100.835023][    C0] page_owner tracks the page as allocated
[  100.836576][    C2]  ? nf_nat_ipv6_fn+0xff/0x2e0
[  100.838409][    C0] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5935, tgid 5935 (syz-executor), ts 47923922557, free_ts 47846178989
[  100.839936][    C2]  ? __pfx_nf_nat_ipv6_fn+0x10/0x10
[  100.841769][    C0]  post_alloc_hook+0x1c0/0x230
[  100.843429][    C2]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  100.844999][    C0]  get_page_from_freelist+0x1321/0x3890
[  100.846530][    C2]  ip6_route_input+0x662/0xc00
[  100.848051][    C0]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  100.849624][    C2]  ? __pfx_ip6_route_input+0x10/0x10
[  100.851178][    C0]  alloc_pages_mpol+0x1fb/0x550
[  100.852498][    C2]  ? lock_acquire+0x179/0x350
[  100.853949][    C0]  new_slab+0x23b/0x330
[  100.855490][    C2]  ? sock_wfree+0x46a/0x880
[  100.856881][    C0]  ___slab_alloc+0xd9c/0x1940
[  100.858387][    C2]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  100.860033][    C0]  __slab_alloc.constprop.0+0x56/0xb0
[  100.861437][    C2]  ip6_rcv_finish_core.constprop.0+0x1a0/0x5d0
[  100.863039][    C0]  __kmalloc_noprof+0x2f2/0x510
[  100.864585][    C2]  ipv6_rcv+0x1e8/0x680
[  100.866392][    C0]  tomoyo_init_log+0x1385/0x2140
[  100.867645][    C2]  ? __pfx_ipv6_rcv+0x10/0x10
[  100.869096][    C0]  tomoyo_supervisor+0x302/0x13b0
[  100.870563][    C2]  __netif_receive_skb_one_core+0x12d/0x1e0
[  100.871989][    C0]  tomoyo_path_number_perm+0x448/0x580
[  100.873411][    C2]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  100.874878][    C0]  tomoyo_path_mkdir+0x9b/0xe0
[  100.876345][    C2]  ? lock_acquire+0x179/0x350
[  100.877491][    C0]  security_path_mkdir+0x154/0x2f0
[  100.878251][    C2]  ? process_backlog+0x3f0/0x15e0
[  100.880308][    C0]  do_mkdirat+0x175/0x3e0
[  100.881643][    C2]  __netif_receive_skb+0x1d/0x160
[  100.882434][    C0]  __x64_sys_mkdirat+0x83/0xb0
[  100.884094][    C2]  process_backlog+0x442/0x15e0
[  100.885826][    C0]  do_syscall_64+0xcd/0x4c0
[  100.891615][    C2]  __napi_poll.constprop.0+0xba/0x550
[  100.893259][    C0] page last free pid 5935 tgid 5935 stack trace:
[  100.895111][    C2]  net_rx_action+0xa9f/0xfe0
[  100.896736][    C0]  __free_frozen_pages+0x7fe/0x1180
[  100.897496][    C2]  ? __pfx_net_rx_action+0x10/0x10
[  100.899692][    C0]  qlist_free_all+0x4d/0x120
[  100.902111][    C2]  ? lock_acquire+0x140/0x350
[  100.903911][    C0]  kasan_quarantine_reduce+0x195/0x1e0
[  100.906288][    C2]  ? find_held_lock+0x2b/0x80
[  100.907999][    C0]  __kasan_slab_alloc+0x69/0x90
[  100.910391][    C2]  ? kvm_sched_clock_read+0x11/0x20
[  100.912007][    C0]  __kmalloc_noprof+0x1d4/0x510
[  100.914434][    C2]  ? sched_clock+0x38/0x60
[  100.916055][    C0]  tomoyo_supervisor+0x45b/0x13b0
[  100.918439][    C2]  ? sched_clock_cpu+0x6c/0x530
[  100.920042][    C0]  tomoyo_path_permission+0x270/0x3b0
[  100.922761][    C2]  ? mark_held_locks+0x49/0x80
[  100.924269][    C0]  tomoyo_check_open_permission+0x349/0x3c0
[  100.926263][    C2]  handle_softirqs+0x219/0x8e0
[  100.928067][    C0]  tomoyo_file_open+0x6b/0x90
[  100.930470][    C2]  ? __pfx_handle_softirqs+0x10/0x10
[  100.931229][    C0]  security_file_open+0x84/0x1e0
[  100.933663][    C2]  ? irqtime_account_irq+0x18d/0x2e0
[  100.937914][    C0]  do_dentry_open+0x596/0x1c10
[  100.940366][    C2]  ? __dev_queue_xmit+0x896/0x43e0
[  100.944826][    C0]  vfs_open+0x82/0x3f0
[  100.945876][    C2]  do_softirq+0xb2/0xf0
[  100.946665][    C0]  path_openat+0x1de4/0x2cb0
[  100.948601][    C2]  </IRQ>
[  100.949500][    C0]  do_filp_open+0x20b/0x470
[  100.952129][    C2]  <TASK>
[  100.953723][    C0]  do_sys_openat2+0x11b/0x1d0
[  100.956234][    C2]  __local_bh_enable_ip+0x100/0x120
[  100.957781][    C0]  __x64_sys_openat+0x174/0x210
[  100.960196][    C2]  ? __dev_queue_xmit+0x896/0x43e0
[  100.961887][    C0] 
[  100.961892][    C0] Memory state around the buggy address:
[  100.963136][    C2]  __dev_queue_xmit+0x8ab/0x43e0
[  100.964707][    C0]  ffff888025b56400: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  100.967321][    C2]  ? __lock_acquire+0x622/0x1c90
[  100.969245][    C0]  ffff888025b56480: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  100.972224][    C2]  ? __pfx___dev_queue_xmit+0x10/0x10
[  100.973779][    C0] >ffff888025b56500: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[  100.976380][    C2]  ? look_up_lock_class+0x6b/0x150
[  100.977996][    C0]                             ^
[  100.980591][    C2]  ? __lock_acquire+0xb8a/0x1c90
[  100.982279][    C0]  ffff888025b56580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  100.984884][    C2]  ? __asan_memcpy+0x3c/0x60
[  100.986954][    C0]  ffff888025b56600: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  100.989555][    C2]  ? eth_header+0x11c/0x1f0
[  100.991462][    C0] ==================================================================
[  100.991569][    C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  101.138732][    C0] Kernel Offset: disabled
[  101.140073][    C0] Rebooting in 86400 seconds..

VM DIAGNOSIS:
20:02:18  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85599945 RDI=ffffffff9b077320 RBP=ffffffff9b0772e0 RSP=ffffc90000006f40
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=53414b203a475542
R12=0000000000000000 R13=0000000000000065 R14=ffffffff9b0772e0 R15=ffffffff855998e0
RIP=ffffffff8559996f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6765000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055fa1d3cfce8 CR3=0000000050f1b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000040000400 Opmask01=0000000000000000 Opmask02=0000000002fefefe Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff01b818b0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90c2e11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90c2e11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90c2e11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90c2e11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90c2e11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90c2e11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=00000000000450ab RCX=ffffffff822e80bc RDX=ffff888031780000
RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000001 RSP=ffffc90003ea7760
R8 =0000000000000005 R9 =0000000000000000 R10=0000000080000001 R11=0000000000000000
R12=0000000000000005 R13=0000000000000001 R14=dffffc0000000000 R15=00000000000001fd
RIP=ffffffff81bc12a8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6865000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fabb6ce7d60 CR3=00000000339a1000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fabb61836a3 00007fabb61836a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc185b26e0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555594942683 000055559493d070
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055559492ee12 000055559492eb10
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100000a08060201 03ec000400048886 080002800401c710 00080a4a92006e75
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0103800404a4a808 000100000a080606 0122b2ffffffffff ff01ffffffffffff
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fffff30803a00300 0000000000307265 6c6c616b7a797301 ffffffffffffffff
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 df08038003088004 0008000210000210 00080170c0010000 0a0806020103ec00
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0400048886080002 800401c71000080a 4a92006e75742f74 656e2f7665642f01
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000032 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85599945 RDI=ffffffff9b077320 RBP=ffffffff9b0772e0 RSP=ffffc90000647ed0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=0000000000000032 R14=ffffffff9b0772e0 R15=ffffffff855998e0
RIP=ffffffff8559996f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6965000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000558927dee000 CR3=000000003b2f2000 CR4=00352ef0
DR0=0000000000000007 DR1=0000000000004e6a DR2=0000000000000007 DR3=00000000000002d5 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000040000400 Opmask01=0000000000000000 Opmask02=0000000002fefcfe Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe38c52c50 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff221411a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff221411a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff221411a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff221411aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff221411b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff221411c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffff88806a443a60 RCX=ffffffff81affbcd RDX=ffff88805543c880
RSI=ffffffff81affba9 RDI=0000000000000005 RBP=0000000000000001 RSP=ffffc9000689f690
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=dffffc0000000000 R13=0000000000000003 R14=ffffed100d48874d R15=ffff88806a73cf40
RIP=ffffffff81affbab RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055555f2dc500 ffffffff 00c00000
GS =0000 ffff8880d6a65000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f28787cab30 CR3=000000005cff1000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000040000400 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffde082fc10 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2877a11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2877a11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2877a11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2877a11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2877a11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2877a11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000